Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Pop-up Plage bei Firefox

Pop-up Plage bei Firefox


Plagegeister aller Art und deren Bekämpfung: Pop-up Plage bei Firefox

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 11.04.2014, 17:20   #1
Rattle07
 
Pop-up Plage bei Firefox - Standard

Pop-up Plage bei Firefox



FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014  01 (ATTENTION: ====> FRST version is 29 days old and could be outdated)
Ran by vera (administrator) on VERA-PC on 11-04-2014 18:18:56
Running from C:\Users\vera\Desktop
Microsoft Windows 7 Ultimate  Service Pack 1 (X86) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\system32\nvvsvc.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
() C:\Program Files\ASUS\ASUS Live Update\ALU.exe
() C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
(ATK) C:\Program Files\ASUS\Splendid\ACMON.exe
(Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Absolute Software Corp.) C:\Windows\system32\rpcnet.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\ATKOSD.exe
(ASUSTeK) C:\Windows\System32\ACEngSvr.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\WDC.exe
(Software 2000 Limited) C:\Windows\system32\spool\DRIVERS\W32X86\3\HP1006MC.EXE
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ASUS) C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe
(ASUS) C:\Program Files\ASUS\ATK Media\DMedia.exe
(ASUS) C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe
(AlcorMicro Co., Ltd.) C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
(Acronis) C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe
(Acronis) C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe
(Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe
(Adobe Systems, Inc.) C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_12_0_0_77.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [ETDWare] - C:\Program Files\Elantech\ETDCtrl.exe [497024 2009-07-30] (ELAN Microelectronic Corp.)
HKLM\...\Run: [HControlUser] - C:\Program Files\ASUS\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM\...\Run: [ATKMEDIA] - C:\Program Files\ASUS\ATK Media\DMedia.exe [170624 2009-08-19] (ASUS)
HKLM\...\Run: [ATKOSD2] - C:\Program Files\ASUS\ATKOSD2\ATKOSD2.exe [6859392 2009-08-17] (ASUS)
HKLM\...\Run: [AmIcoSinglun] - C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe [233472 2009-09-01] (AlcorMicro Co., Ltd.)
HKLM\...\Run: [SAOB Monitor] - C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe [2570688 2010-11-16] (Acronis)
HKLM\...\Run: [TrueImageMonitor.exe] - C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [5578920 2010-11-23] (Acronis)
HKLM\...\Run: [Acronis Scheduler2 Service] - C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [391240 2010-11-23] (Acronis)
HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-01-28] (Apple Inc.)
HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [AvastUI.exe] - C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-04-08] (AVAST Software)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://at.msn.com/?ocid=iehp
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xB0E5C05352FDCC01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-AT
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&r=805
SearchScopes: HKCU - {6B409211-D885-43D8-82F3-5E4F85A29934} URL = hxxp://www.google.de/search?q={searchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {41545534-0076-A76A-76A7-7A786E7484D7} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\vera\AppData\Roaming\Mozilla\Firefox\Profiles\ya58hpm6.default
FF DefaultSearchEngine: benefind
FF SelectedSearchEngine: benefind
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin: @java.com/DTPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Users\vera\AppData\Roaming\Mozilla\Firefox\Profiles\ya58hpm6.default\searchplugins\benefind.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\vera\AppData\Roaming\Mozilla\Firefox\Profiles\ya58hpm6.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-04-09]
FF Extension: No Name - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-03-29]
FF HKLM\...\Firefox\Extensions: [virtualKeyboard@kaspersky.ru] - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2012\FFExt\virtualKeyboard@kaspersky.ru
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-04-08]

========================== Services (Whitelisted) =================

R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [120088 2013-10-11] (SUPERAntiSpyware.com)
R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [805032 2010-11-23] (Acronis)
R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3246040 2012-02-26] (Acronis)
R2 ASLDRService; C:\Program Files\ASUS\ATK Hotkey\ASLDRSrv.exe [84536 2009-06-15] (ASUS)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-08] (AVAST Software)
R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1363584 2014-03-03] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1748608 2014-03-03] (Microsoft Corporation)
R2 rpcnet; C:\Windows\system32\rpcnet.exe [58288 2012-11-22] (Absolute Software Corp.)

==================== Drivers (Whitelisted) ====================

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-04-08] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-04-08] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-04-08] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [776976 2014-04-08] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [411552 2014-04-08] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [67264 2014-04-08] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [180760 2014-04-08] ()
R3 ETD; C:\Windows\System32\DRIVERS\ETD.sys [87040 2009-07-29] (ELAN Microelectronic Corp.)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATKACPI.sys [7680 2007-07-31] (ATK0100)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1766592 2009-06-06] ()
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-11 18:18 - 2014-04-11 18:19 - 00011423 _____ () C:\Users\vera\Desktop\FRST.txt
2014-04-11 17:22 - 2014-04-11 17:22 - 01145856 _____ (Farbar) C:\Users\vera\Desktop\FRST.exe
2014-04-11 16:03 - 2014-04-11 16:03 - 00001867 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2014-04-11 16:03 - 2014-04-11 16:03 - 00000000 ____D () C:\Program Files\Defraggler
2014-04-11 15:36 - 2014-04-11 15:36 - 00000000 ____D () C:\Windows\ERUNT
2014-04-11 15:33 - 2014-04-11 15:44 - 00000112 _____ () C:\Windows\setupact.log
2014-04-11 15:33 - 2014-04-11 15:33 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-11 08:38 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-04-11 08:38 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-04-11 08:37 - 2014-03-06 11:19 - 17387008 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-11 08:37 - 2014-03-06 10:32 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-11 08:37 - 2014-03-06 10:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-04-11 08:37 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-11 08:37 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-04-11 08:37 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-11 08:37 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-11 08:37 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-11 08:37 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-11 08:37 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-04-11 08:37 - 2014-03-06 09:38 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-04-11 08:37 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-04-11 08:37 - 2014-03-06 09:28 - 00646144 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-04-11 08:37 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-04-11 08:37 - 2014-03-06 09:18 - 00575488 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-11 08:37 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-04-11 08:37 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-11 08:37 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-04-11 08:37 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-11 08:37 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-04-11 08:37 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-11 08:37 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-04-11 08:37 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-11 08:37 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-10 12:47 - 2014-04-11 15:32 - 00000000 ____D () C:\AdwCleaner
2014-04-10 12:33 - 2014-04-10 12:34 - 00224646 _____ () C:\Users\vera\Documents\cc_20140410_123354.reg
2014-04-09 23:26 - 2014-04-11 18:18 - 00000000 ____D () C:\FRST
2014-04-09 22:08 - 2014-04-10 19:45 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-09 22:08 - 2014-04-09 22:08 - 00001064 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-09 22:08 - 2014-04-09 22:08 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-09 22:08 - 2014-04-09 22:08 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-04-09 22:08 - 2014-04-03 09:51 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-09 22:08 - 2014-04-03 09:51 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-09 22:08 - 2014-04-03 09:50 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-04-09 10:26 - 2014-04-09 10:26 - 00000000 ____D () C:\SUPERDelete
2014-04-09 08:20 - 2014-03-04 11:17 - 00868352 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-09 08:20 - 2014-02-04 04:07 - 00234432 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-09 08:20 - 2014-02-04 04:07 - 00149440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-09 08:20 - 2014-02-04 04:07 - 00027072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Diskdump.sys
2014-04-09 08:20 - 2014-02-04 04:00 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\iologmsg.dll
2014-04-09 08:20 - 2014-01-24 04:18 - 01212352 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-09 00:01 - 2014-04-11 17:26 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-08 23:42 - 2014-04-08 23:42 - 00000000 ____D () C:\Users\vera\AppData\Roaming\AVAST Software
2014-04-08 23:42 - 2014-04-08 23:41 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-08 23:42 - 2014-04-08 23:41 - 00411552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-04-08 23:42 - 2014-04-08 23:41 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-04-08 23:42 - 2014-04-08 23:41 - 00180760 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-08 23:42 - 2014-04-08 23:41 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-08 23:42 - 2014-04-08 23:41 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-04-08 23:42 - 2014-04-08 23:41 - 00067264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-08 23:42 - 2014-04-08 23:41 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-08 23:41 - 2014-04-08 23:41 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-08 23:41 - 2014-04-08 23:41 - 00000000 ____D () C:\Program Files\AVAST Software
2014-04-08 23:39 - 2014-04-08 23:40 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-08 23:31 - 2014-04-08 23:31 - 00000000 ____D () C:\Windows\pss
2014-04-08 23:28 - 2014-02-23 15:57 - 00000426 _____ () C:\AVScanner.ini
2014-04-08 23:27 - 2014-04-08 23:27 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-08 23:27 - 2014-04-08 23:27 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-04-08 23:27 - 2014-04-08 23:26 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-08 23:26 - 2014-04-08 23:26 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-08 23:26 - 2014-04-08 23:26 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-08 23:26 - 2014-04-08 23:26 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-04-08 23:26 - 2014-04-08 23:26 - 00000969 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-04-08 23:26 - 2014-04-08 23:26 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-08 23:10 - 2014-04-08 23:10 - 00000000 ____D () C:\Users\vera\AppData\Roaming\SUPERAntiSpyware.com
2014-04-08 23:09 - 2014-04-08 23:10 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-04-08 23:09 - 2014-04-08 23:09 - 00001965 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-04-08 23:09 - 2014-04-08 23:09 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-03-29 12:35 - 2014-03-29 12:35 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-03-19 00:47 - 2014-03-19 00:47 - 00000000 ____D () C:\c56d08af38be7df8785080855f55
2014-03-13 13:53 - 2014-02-07 03:07 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-03-13 13:53 - 2014-02-04 04:04 - 01230336 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-03-13 13:53 - 2014-02-04 04:04 - 00509440 _____ (Microsoft Corporation) C:\Windows\system32\qedit.dll
2014-03-13 13:53 - 2014-01-29 04:06 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\wer.dll
2014-03-13 13:53 - 2014-01-28 04:07 - 00185344 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll

==================== One Month Modified Files and Folders =======

2014-04-11 18:19 - 2014-04-11 18:18 - 00011423 _____ () C:\Users\vera\Desktop\FRST.txt
2014-04-11 18:18 - 2014-04-09 23:26 - 00000000 ____D () C:\FRST
2014-04-11 18:18 - 2012-02-26 21:56 - 01815725 _____ () C:\Windows\WindowsUpdate.log
2014-04-11 18:18 - 2012-02-26 21:53 - 00017408 _____ () C:\Windows\system32\rpcnetp.exe
2014-04-11 17:26 - 2014-04-09 00:01 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-11 17:22 - 2014-04-11 17:22 - 01145856 _____ (Farbar) C:\Users\vera\Desktop\FRST.exe
2014-04-11 16:35 - 2012-02-26 23:55 - 00000000 ____D () C:\Users\vera\AppData\Roaming\Skype
2014-04-11 16:03 - 2014-04-11 16:03 - 00001867 _____ () C:\Users\Public\Desktop\Defraggler.lnk
2014-04-11 16:03 - 2014-04-11 16:03 - 00000000 ____D () C:\Program Files\Defraggler
2014-04-11 15:51 - 2009-07-14 06:34 - 00020704 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-04-11 15:51 - 2009-07-14 06:34 - 00020704 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-04-11 15:44 - 2014-04-11 15:33 - 00000112 _____ () C:\Windows\setupact.log
2014-04-11 15:44 - 2012-02-26 22:12 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-04-11 15:44 - 2012-02-26 22:06 - 00058288 _____ (Absolute Software Corp.) C:\Windows\system32\rpcnet.dll
2014-04-11 15:44 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-11 15:36 - 2014-04-11 15:36 - 00000000 ____D () C:\Windows\ERUNT
2014-04-11 15:33 - 2014-04-11 15:33 - 00000000 _____ () C:\Windows\setuperr.log
2014-04-11 15:32 - 2014-04-10 12:47 - 00000000 ____D () C:\AdwCleaner
2014-04-11 08:59 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-04-10 19:45 - 2014-04-09 22:08 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-04-10 12:34 - 2014-04-10 12:33 - 00224646 _____ () C:\Users\vera\Documents\cc_20140410_123354.reg
2014-04-10 12:31 - 2012-02-26 21:53 - 00000000 ____D () C:\Windows\Panther
2014-04-10 12:25 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-04-10 12:22 - 2012-04-11 17:13 - 00000000 ____D () C:\Program Files\DsNET Corp
2014-04-10 09:39 - 2009-07-14 06:52 - 00000000 ____D () C:\Windows\twain_32
2014-04-10 08:44 - 2013-09-04 09:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-09 23:37 - 2012-02-26 23:14 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-09 23:33 - 2010-06-24 10:43 - 88028728 _____ (Microsoft Corporation) C:\Windows\system32\mrt.exe
2014-04-09 22:08 - 2014-04-09 22:08 - 00001064 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-04-09 22:08 - 2014-04-09 22:08 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-04-09 22:08 - 2014-04-09 22:08 - 00000000 ____D () C:\Program Files\ Malwarebytes Anti-Malware 
2014-04-09 12:14 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-04-09 10:26 - 2014-04-09 10:26 - 00000000 ____D () C:\SUPERDelete
2014-04-09 00:01 - 2013-03-20 01:11 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2014-04-09 00:01 - 2012-02-26 22:17 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2014-04-08 23:42 - 2014-04-08 23:42 - 00000000 ____D () C:\Users\vera\AppData\Roaming\AVAST Software
2014-04-08 23:41 - 2014-04-08 23:42 - 00776976 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-08 23:41 - 2014-04-08 23:42 - 00411552 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-04-08 23:41 - 2014-04-08 23:42 - 00271264 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-04-08 23:41 - 2014-04-08 23:42 - 00180760 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-08 23:41 - 2014-04-08 23:42 - 00081768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-08 23:41 - 2014-04-08 23:42 - 00067824 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-04-08 23:41 - 2014-04-08 23:42 - 00067264 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-08 23:41 - 2014-04-08 23:42 - 00049944 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-08 23:41 - 2014-04-08 23:41 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-08 23:41 - 2014-04-08 23:41 - 00000000 ____D () C:\Program Files\AVAST Software
2014-04-08 23:40 - 2014-04-08 23:39 - 00000000 ____D () C:\ProgramData\AVAST Software
2014-04-08 23:32 - 2012-02-26 23:38 - 00000000 ____D () C:\ProgramData\Kaspersky Lab
2014-04-08 23:31 - 2014-04-08 23:31 - 00000000 ____D () C:\Windows\pss
2014-04-08 23:31 - 2012-04-23 14:17 - 00000000 ___RD () C:\Users\vera\Dropbox
2014-04-08 23:27 - 2014-04-08 23:27 - 00000000 ____D () C:\ProgramData\Oracle
2014-04-08 23:27 - 2014-04-08 23:27 - 00000000 ____D () C:\Program Files\Common Files\Java
2014-04-08 23:26 - 2014-04-08 23:27 - 00264616 _____ (Oracle Corporation) C:\Windows\system32\javaws.exe
2014-04-08 23:26 - 2014-04-08 23:26 - 00175016 _____ (Oracle Corporation) C:\Windows\system32\javaw.exe
2014-04-08 23:26 - 2014-04-08 23:26 - 00174504 _____ (Oracle Corporation) C:\Windows\system32\java.exe
2014-04-08 23:26 - 2014-04-08 23:26 - 00094632 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2014-04-08 23:26 - 2014-04-08 23:26 - 00000969 _____ () C:\Users\Public\Desktop\CCleaner.lnk
2014-04-08 23:26 - 2014-04-08 23:26 - 00000000 ____D () C:\Program Files\CCleaner
2014-04-08 23:26 - 2012-02-26 23:53 - 00000000 ____D () C:\Program Files\Java
2014-04-08 23:19 - 2012-04-23 14:14 - 00000000 ____D () C:\Users\vera\AppData\Roaming\Dropbox
2014-04-08 23:10 - 2014-04-08 23:10 - 00000000 ____D () C:\Users\vera\AppData\Roaming\SUPERAntiSpyware.com
2014-04-08 23:10 - 2014-04-08 23:09 - 00000000 ____D () C:\Program Files\SUPERAntiSpyware
2014-04-08 23:09 - 2014-04-08 23:09 - 00001965 _____ () C:\Users\Public\Desktop\SUPERAntiSpyware Free Edition.lnk
2014-04-08 23:09 - 2014-04-08 23:09 - 00000000 ____D () C:\ProgramData\SUPERAntiSpyware.com
2014-04-08 14:08 - 2012-06-02 23:04 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-04-04 07:52 - 2012-02-26 22:09 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-03 09:51 - 2014-04-09 22:08 - 00073432 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-04-03 09:51 - 2014-04-09 22:08 - 00051416 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-04-03 09:50 - 2014-04-09 22:08 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-03-29 12:35 - 2014-03-29 12:35 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-03-19 00:47 - 2014-03-19 00:47 - 00000000 ____D () C:\c56d08af38be7df8785080855f55
2014-03-14 19:22 - 2009-07-14 06:33 - 00408696 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-14 19:21 - 2012-12-14 11:08 - 00000000 ____D () C:\Program Files\Microsoft Silverlight

Some content of TEMP:
====================
C:\Users\vera\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\system32\winlogon.exe => MD5 is legit
C:\Windows\system32\wininit.exe => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\services.exe => MD5 is legit
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit
C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-09 12:06

==================== End Of Log ============================
--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014  01
Ran by vera at 2014-04-11 18:19:36
Running from C:\Users\vera\Desktop
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

Acronis*True*Image*Home 2011 (HKLM\...\{04A3A6B0-8E19-49BB-82FF-65C5A55F917D}) (Version: 14.0.6574 - Acronis)
Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.06) - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.06 - Adobe Systems Incorporated)
Alcor Micro USB Card Reader (HKLM\...\InstallShield_{F4BF5F6B-F695-4762-AEB2-D095A4C34D89}) (Version: 1.5.17.25482 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (Version: 1.5.17.25482 - Alcor Micro Corp.) Hidden
Apple Application Support (HKLM\...\{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}) (Version: 2.3.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASUS Live Update (HKLM\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0028 - ASUS)
ASUS Virtual Camera (HKLM\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.17 - asus)
ATK Hotkey (HKLM\...\{7C05592D-424B-46CB-B505-E0013E8E75C9}) (Version: 1.0.0052 - ASUS)
ATK Media (HKLM\...\{D1E5870E-E3E5-4475-98A6-ADD614524ADF}) (Version: 2.0.0006 - ASUS)
ATKOSD2 (HKLM\...\{3B05F2FB-745B-4012-ADF2-439F36B2E70B}) (Version: 7.0.0006 - ASUS)
avast! Free Antivirus (HKLM\...\Avast) (Version: 9.0.2016 - Avast Software)
CCleaner (HKLM\...\CCleaner) (Version: 4.12 - Piriform)
ControlDeck (HKLM\...\{5B65EF64-1DFA-414A-8C94-7BB726158E21}) (Version: 1.0.3 - ASUS)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5971CA1F-6BDE-498F-952C-9F2BF94070A4}) (Version:  - Microsoft)
Defraggler (HKLM\...\Defraggler) (Version: 2.17 - Piriform)
Dropbox (HKCU\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)
ETDWare PS/2-x86 7.0.5.7_WHQL (HKLM\...\Elantech) (Version:  - )
HappyFoto-Designer 4.5 (HKLM\...\HappyFoto-Designer_is1) (Version:  - )
iTunes (HKLM\...\{268278CF-FB69-4D98-B70E-BFEC1CDCA225}) (Version: 11.0.2.26 - Apple Inc.)
Java 7 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217051FF}) (Version: 7.0.510 - Oracle)
Java Auto Updater (Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
Malwarebytes Anti-Malware Version 2.0.1.1004 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.1.1004 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.1 (DEU) (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Office Access MUI (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Excel MUI (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Groove MUI (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2010 (Version: 14.0.4734.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)
Mozilla Firefox 28.0 (x86 de) (HKLM\...\Mozilla Firefox 28.0 (x86 de)) (Version: 28.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 28.0 - Mozilla)
NVIDIA 3D Vision Treiber 295.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 295.73 - NVIDIA Corporation)
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.3 - NVIDIA Corporation)
NVIDIA Grafiktreiber 295.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 295.73 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.62.312 - NVIDIA Corporation) Hidden
NVIDIA PhysX (Version: 9.12.0209 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.12.0209 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.0209 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (Version: 7.17.12.9573 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 295.73 (Version: 295.73 - NVIDIA Corporation) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype Click to Call (HKLM\...\{BB285C9F-C821-4770-8970-56C4AB52C87E}) (Version: 7.1.15383.6004 - Microsoft Corporation)
Skype™ 6.14 (HKLM\...\{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}) (Version: 6.14.104 - Skype Technologies S.A.)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)
Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)
Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2494150) (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)
Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)
Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)
Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)
Update for Microsoft PowerPoint 2010 (KB2837579) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{2BA40F82-F3A4-441C-BF1A-ED4C42FF4872}) (Version:  - Microsoft)
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)
Update for Microsoft Visio 2010 (KB2553444) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{799005D3-9B70-4219-AFE0-BC479614CC4D}) (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (HKLM\...\{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{8C55AA83-54C2-4236-A622-78440A411DC5}) (Version:  - Microsoft)
USB 2.0 1.3M UVC WebCam (HKLM\...\USB 2.0 1.3M UVC WebCam) (Version:  - )
Windows Driver Package - Broadcom Bluetooth  (06/15/2009 6.2.0.9000) (HKLM\...\B7541EC5F72AA713F557569278EB6273725F5607) (Version: 06/15/2009 6.2.0.9000 - Broadcom)
Windows Driver Package - Broadcom Bluetooth  (07/30/2009 6.2.0.9405) (HKLM\...\A6A8668C0A13640CA28FE2A7D9654BE4AE478B13) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (HKLM\...\BF20603967CFDCB2BBF91950E8A56DFBC5C833FE) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
WinZip 15.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240C1}) (Version: 15.0.9411 - WinZip Computing, S.L. )

==================== Restore Points  =========================

08-04-2014 21:25:40 Installed Java 7 Update 51
08-04-2014 21:40:45 avast! antivirus system restore point
08-04-2014 21:56:45 Windows Defender Checkpoint
09-04-2014 21:32:25 Windows Update
10-04-2014 10:22:50 Removed Bonjour
10-04-2014 10:23:47 Removed DriverBoost.
10-04-2014 10:25:14 TubeBox! wird entfernt
11-04-2014 06:35:37 Windows Update

==================== Hosts content: ==========================

2009-07-14 04:04 - 2009-06-10 23:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {0763411B-3642-4ED2-9F90-0359143863DA} - System32\Tasks\ACMON => C:\Program Files\ASUS\Splendid\ACMON.exe [2009-07-23] (ATK)
Task: {0B01B8C8-59B7-4C4F-A6B7-91390CB2F599} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2014-04-08] (AVAST Software)
Task: {14B73B1A-B00E-47AE-A26B-9EDF1F97E74F} - System32\Tasks\{B9C5BFBA-BFBD-4ABF-9165-BABDF4712363} => C:\Program Files\asus\VirtualCamera\VirCam.exe [2009-04-20] ()
Task: {3CD9160D-70A9-47FE-BFC7-0D857EEF0C28} - \AdobeFlashPlayerUpdate 2 No Task File
Task: {81B86144-09D1-4B01-9708-4EA86B55750B} - System32\Tasks\ASUS Live Update => C:\Program Files\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {894C0A1F-1AB8-43D8-BF1C-D4CAE0576BB9} - System32\Tasks\{7DAF8F45-B1EE-4143-9612-8C782D05A1B6} => C:\Program Files\asus\VirtualCamera\VirCam.exe [2009-04-20] ()
Task: {8D4373F1-3823-48F4-8F6E-53931D4E0139} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-04-09] (Adobe Systems Incorporated)
Task: {93BD8D91-C39C-45F8-948C-31B96EFDA3CE} - System32\Tasks\KMS Activation for Office => C:\Windows\KMSAct.exe
Task: {948F288A-335D-44AD-B70A-CB274238EBE7} - System32\Tasks\ASUSControlDeck => C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe [2009-09-03] ()
Task: {99CA6247-421A-404D-AA4F-7B2BB588D0C9} - \AdobeFlashPlayerUpdate No Task File
Task: {A7321127-AD4D-4743-AD40-99925C194994} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-03-18] (Piriform Ltd)
Task: {BD8900CB-FB90-4E1F-BC93-6D1360769B01} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2014-04-11 15:23 - 2014-04-11 15:23 - 02209792 _____ () C:\Program Files\AVAST Software\Avast\defs\14041100\algo.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 00087912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2011-11-02 00:26 - 2011-11-02 00:26 - 01242472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2012-02-26 22:48 - 2007-11-30 12:20 - 00051768 _____ () C:\Program Files\ASUS\ASUS Live Update\ALU.exe
2009-09-03 11:33 - 2009-09-03 11:33 - 00054400 _____ () C:\Program Files\ASUS\ControlDeck\ControlDeckStartUp.exe
2008-10-01 00:02 - 2008-10-01 00:02 - 00009216 _____ () C:\Program Files\ASUS\Splendid\GLCDdll.dll
2010-11-23 09:18 - 2010-11-23 09:18 - 11183072 _____ () C:\Program Files\Acronis\TrueImageHome\Common\ti_managers.dll
2014-04-08 23:41 - 2014-04-08 23:41 - 19336120 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-03-29 12:35 - 2014-03-29 12:35 - 03642480 _____ () C:\Program Files\Mozilla Firefox\mozjs.dll
2012-02-09 21:05 - 2012-02-09 21:05 - 00360768 _____ () C:\Program Files\NVIDIA Corporation\3D Vision\Nv3DVStreaming.dll
2014-04-09 00:01 - 2014-04-09 00:01 - 16276872 _____ () C:\Windows\system32\Macromed\Flash\NPSWF32_12_0_0_77.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Disabled items from MSCONFIG ==============

MSCONFIG\startupfolder: C:^Users^vera^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: DriverBoost => C:\Program Files\DriverBoost\DriverBoost\DriverBoost.exe /applicationMode:systemTray /showWelcome:false
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: SUPERAntiSpyware => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

CodeIntegrity Errors:
===================================
  Date: 2013-11-08 21:43:42.197
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-11-08 21:43:42.193
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-11-08 21:43:42.188
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-11-08 21:43:42.175
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-11-08 21:43:42.166
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-11-08 21:43:42.159
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-29 19:41:46.385
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-29 19:41:46.375
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-29 19:41:46.375
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-10-29 19:41:46.365
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 2013\KLELAMX86\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 49%
Total physical RAM: 3583.27 MB
Available physical RAM: 1807.95 MB
Total Pagefile: 7164.83 MB
Available Pagefile: 5453.9 MB
Total Virtual: 2047.88 MB
Available Virtual: 1893.98 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:116.44 GB) (Free:70.91 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:104.73 GB) (Free:59.49 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 233 GB) (Disk ID: 97646C29)
Partition 1: (Not Active) - (Size=12 GB) - (Type=1C)
Partition 2: (Active) - (Size=116 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=105 GB) - (Type=OF Extended)

==================== End Of Log ============================

Antwort

Themen zu Pop-up Plage bei Firefox
administrator, adobe, antivirus, avast, bonjour, browser, defender, excel, explorer, firefox, flash player, malware, mozilla, nvidia, pop-ups, registry, security, services.exe, software, svchost.exe, system, temp, usb, windows, winlogon.exe


« Kontakte bekommen E-Mails von ähnlicher E-Mailadresse wie Orignal nur mit .com am Ende statt .de | Probleme seit Best Practice Installation »


Ähnliche Themen: Pop-up Plage bei Firefox


  1. Die Plage Sality und Abuse Sperre vom Provider
    Plagegeister aller Art und deren Bekämpfung - 18.08.2015 (3)
  2. Pop-up Plage bei Firefox - Teil 2
    Plagegeister aller Art und deren Bekämpfung - 16.04.2014 (19)
  3. Pop-up Plage Teil 3
    Plagegeister aller Art und deren Bekämpfung - 13.04.2014 (6)
  4. 95p.com Plage
    Plagegeister aller Art und deren Bekämpfung - 05.01.2012 (4)
  5. Malware Defense - Die neue Plage...aber woher?
    Diskussionsforum - 11.01.2010 (10)
  6. Plage in C:\WINXP\system32\drivers\etc\hosts
    Log-Analyse und Auswertung - 10.12.2009 (25)
  7. Bifrost plage
    Mülltonne - 01.01.2009 (0)
  8. Virtumonde.dll - Plage
    Plagegeister aller Art und deren Bekämpfung - 15.10.2008 (9)
  9. Upload nahezu nicht vorhanden, Surfen eine Plage
    Plagegeister aller Art und deren Bekämpfung - 04.08.2008 (16)
  10. Csrss.exe Plage
    Plagegeister aller Art und deren Bekämpfung - 12.06.2008 (2)
  11. Trojaner Plage!!
    Plagegeister aller Art und deren Bekämpfung - 12.01.2008 (1)
  12. ESTALIVE Plage / HJT Logfile
    Plagegeister aller Art und deren Bekämpfung - 10.07.2007 (1)
  13. Desktop Plage
    Plagegeister aller Art und deren Bekämpfung - 29.12.2005 (11)
  14. Internet Explorer Popup-Plage, Bitte helft mir!
    Log-Analyse und Auswertung - 18.12.2005 (10)
  15. pop-up plage - brauche hilfe!
    Plagegeister aller Art und deren Bekämpfung - 15.11.2005 (8)
  16. Hallo Highjaker Plage trotz Anti Virus Help!!
    Log-Analyse und Auswertung - 27.08.2005 (2)
  17. Die Plage mit Startpage Trojaner
    Log-Analyse und Auswertung - 25.02.2005 (3)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Pop-up Plage bei Firefox - FRST Logfile: Code: Alles auswählen Aufklappen ATTFilter Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014 01 ( ATTENTION: ====> FRST version is 29 days old and could - Pop-up Plage bei Firefox...
Archiv
Du betrachtest: Pop-up Plage bei Firefox auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27