Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Pup Optional und dwm notification

Pup Optional und dwm notification


Plagegeister aller Art und deren Bekämpfung: Pup Optional und dwm notification

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 15.04.2014, 09:16   #9
vincentlbk
 
Pup Optional und dwm notification - Standard

Pup Optional und dwm notification


Code:
ATTFilter
# AdwCleaner v3.023 - Bericht erstellt am 15/04/2014 um 09:50:38
# Aktualisiert 01/04/2014 von Xplode
# Betriebssystem : Windows 8  (64 bits)
# Benutzername : 
# Gestartet von : C:\Users\lulu\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****

[#] Dienst Gelöscht : NewPlayerUpdaterService

***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\Users\lulu\AppData\Local\Tuguu_SL
Ordner Gelöscht : C:\Users\lulu\AppData\Roaming\Mozilla\Firefox\Profiles\7eaxiflz.default\Extensions\0c822a17-a68f-4066-9257-d229458d21ca@9c178d17-dc61-4aaf-b2da-1425ac7300ac.com
Ordner Gelöscht : C:\Users\lulu\AppData\Roaming\Mozilla\Firefox\Profiles\7eaxiflz.default\Extensions\quick_start@gmail.com

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Browser ] *****

-\\ Internet Explorer v10.0.9200.16537


-\\ Mozilla Firefox v23.0.1 (de)

[ Datei : C:\Users\lulu\AppData\Roaming\Mozilla\Firefox\Profiles\7eaxiflz.default\prefs.js ]


[ Datei : C:\Users\lulu\AppData\Roaming\Mozilla\Firefox\Profiles\7eaxiflz.default\prefs.js ]


[ Datei : C:\Users\lulu\AppData\Roaming\Mozilla\Firefox\Profiles\7eaxiflz.default\prefs.js ]


-\\ Google Chrome v34.0.1847.116

[ Datei : C:\Users\lulu\AppData\Local\Google\Chrome\User Data\Default\preferences ]


[ Datei : C:\Users\lulu\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [2252 octets] - [15/04/2014 09:49:51]
AdwCleaner[S0].txt - [1517 octets] - [15/04/2014 09:50:38]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1577 octets] ##########
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 8 x64
Ran  on 15.04.2014 at  9:58:14,28
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 15.04.2014 at 10:07:22,47
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 14-04-2014
Ranon 15-04-2014 10:10:57
Running from C:\Users\lulu\Downloads
Windows 8 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AMD) C:\Windows\system32\atiesrxx.exe
(AMD) C:\Windows\system32\atieclxx.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Windows\system32\dashost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\DllHost.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.EXE
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16.4.4206.722_x64__8wekyb3d8bbwe\LiveComm.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Qualcomm Atheros) C:\Program Files (x86)\Bluetooth Suite\BtTray.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Spotify Ltd) C:\Users\lulu\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Synaptics Incorporated) C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(BillP Studios) C:\Program Files (x86)\BillP Studios\WinPatrol\WinPatrol.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Sony Corporation) C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Panda Security) C:\Program Files (x86)\Panda USB Vaccine\USBVaccine.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Sony\VAIO Care\VCPerfService.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
() C:\Program Files\Sony\VAIO Care\listener.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Microsoft Corporation) C:\Windows\SysWOW64\notepad.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCService.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCAgent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Farbar) C:\Users\lulu\Downloads\FRST64 (1).exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1214608 2012-09-28] (Realtek Semiconductor)
HKLM\...\Run: [BtTray] => C:\Program Files (x86)\Bluetooth Suite\BtTray.exe [766080 2012-11-05] (Qualcomm Atheros)
HKLM\...\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [127616 2012-11-05] (Atheros Communications)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2930488 2012-10-23] (Synaptics Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642216 2012-08-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [724576 2012-07-27] (Sony Corporation)
HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2012-10-04] (Intel Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [185896 2013-10-28] (Geek Software GmbH)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [3854640 2014-04-15] (AVAST Software)
HKLM\...\Policies\Explorer: [NoControlPanel] 0
HKU\S-1-5-21-1135051811-991919262-1634789686-1001\...\Run: [Spotify] => C:\Users\lulu\AppData\Roaming\Spotify\spotify.exe [6087224 2014-04-13] (Spotify Ltd)
HKU\S-1-5-21-1135051811-991919262-1634789686-1001\...\Run: [Spotify Web Helper] => C:\Users\lulu\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1171000 2014-04-13] (Spotify Ltd)
HKU\S-1-5-21-1135051811-991919262-1634789686-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [759384 2013-07-08] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-1135051811-991919262-1634789686-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [20473504 2013-10-02] (Skype Technologies S.A.)
HKU\S-1-5-21-1135051811-991919262-1634789686-1001\...\Run: [WinPatrol] => C:\Program Files (x86)\BillP Studios\WinPatrol\winpatrol.exe [456768 2013-10-19] (BillP Studios)
Startup: C:\Users\lulu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Screen Clipper and Launcher.lnk
ShortcutTarget: OneNote 2010 Screen Clipper and Launcher.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://vaioportal.sony.eu
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKCU - URL hxxp://search.conduit.com/Results.aspx?ctid=CT3322287&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=4&UP=SPC86DED40-3480-449D-A55D-E90A87121C7A&q={searchTerms}&SSPV=
SearchScopes: HKCU - SuggestionsURL_JSON hxxp://suggest.search.conduit.com/CSuggestJson.ashx?prefix={searchTerms}
SearchScopes: HKCU - {16727879-BEF8-421A-944A-C14CFB80BEB9} URL = hxxp://www.bing.com/search?q={searchTerms}&form=IE10TR&src=IE10TR&pc=MASEJS
SearchScopes: HKCU - {70026B5F-02EA-490F-A80B-2042D4E1AE6F} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKCU - {A236D83C-2C6E-4DA1-867B-702412B2964C} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-Q113&_nkw={searchTerms}
BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: CIESpeechBHO Class - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll (Qualcomm Atheros Commnucations)
BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -  No File
Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\lulu\AppData\Roaming\Mozilla\Firefox\Profiles\7eaxiflz.default
FF NewTab: about:newtab
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_12_0_0_77.dll ()
FF Plugin: @java.com/DTPlugin,version=10.25.2 - C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_12_0_0_77.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.9.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3508.0205 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.23.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Adblock Plus - C:\Users\lulu\AppData\Roaming\Mozilla\Firefox\Profiles\7eaxiflz.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-07-16]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2013-08-03]

Chrome: 
=======
CHR Extension: (Docs) - C:\Users\lulu\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-10-21]
CHR Extension: (Google Drive) - C:\Users\lulu\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-10-21]
CHR Extension: (YouTube) - C:\Users\lulu\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-10-21]
CHR Extension: (Google-Suche) - C:\Users\lulu\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-10-21]
CHR Extension: (Google Wallet) - C:\Users\lulu\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-31]
CHR Extension: (Google Mail) - C:\Users\lulu\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-10-21]

==================== Services (Whitelisted) =================

S2 0283551397484059mcinstcleanup; C:\Users\lulu\AppData\Local\Temp\028355~1.EXE [833616 2013-01-30] (McAfee, Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [231040 2012-11-05] (Qualcomm Atheros Commnucations)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-04-15] (AVAST Software)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128896 2012-09-29] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-09-29] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [623784 2012-10-18] (Sony Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [474208 2012-07-27] (Sony Corporation)
R2 SampleCollector; C:\Program Files\Sony\VAIO Care\VCPerfService.exe [156672 2012-08-06] ()
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [183896 2013-07-08] (Sandboxie Holdings, LLC)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [964608 2012-09-28] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\VUAgent.exe [1265824 2012-10-23] (Sony Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [16048 2013-10-25] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2012-11-05] (Atheros)

==================== Drivers (Whitelisted) ====================

U5 AppMgmt; C:\Windows\system32\svchost.exe [29696 2012-10-20] (Microsoft Corporation)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [79184 2014-04-15] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-04-15] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-04-15] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1039096 2014-04-15] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [423240 2014-04-15] (AVAST Software)
R3 aswStm; C:\Windows\system32\drivers\aswStm.sys [84816 2014-04-15] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [208928 2014-04-15] ()
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdW86.sys [91648 2012-10-23] (Advanced Micro Devices)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [76952 2012-11-05] (Qualcomm Atheros)
R3 BTATH_VDP; C:\Windows\system32\drivers\btath_vdp.sys [427416 2012-11-05] (Qualcomm Atheros)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [202752 2012-07-26] (Microsoft Corporation)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [199384 2013-07-08] (Sandboxie Holdings, LLC)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [44344 2012-10-23] (Synaptics Incorporated)
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-04-15 10:10 - 2014-04-15 10:10 - 02054144 _____ (Farbar) C:\Users\lulu\Downloads\FRST64 (1).exe
2014-04-15 10:07 - 2014-04-15 10:07 - 00000612 _____ () C:\Users\lulu\Desktop\JRT.txt
2014-04-15 09:57 - 2014-04-15 09:57 - 01016261 _____ (Thisisu) C:\Users\lulu\Downloads\JRT.exe
2014-04-15 09:57 - 2014-04-15 09:57 - 00001657 _____ () C:\Users\lulu\Desktop\AdwCleaner[S0].txt
2014-04-15 09:49 - 2014-04-15 09:50 - 00000000 ____D () C:\AdwCleaner
2014-04-15 09:49 - 2014-04-15 09:49 - 01426178 _____ () C:\Users\lulu\Downloads\adwcleaner.exe
2014-04-15 09:33 - 2014-04-15 09:33 - 00084816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-15 09:33 - 2014-04-15 09:33 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-14 16:01 - 2014-04-14 16:01 - 03218352 _____ (McAfee, Inc.) C:\Users\lulu\Downloads\MCPR.exe
2014-04-14 15:48 - 2014-04-14 15:48 - 00000000 ____D () C:\Users\lulu\AppData\Local\Citrix
2014-04-14 15:48 - 2014-04-14 15:48 - 00000000 ____D () C:\Program Files (x86)\Citrix
2014-04-14 14:51 - 2014-04-14 14:52 - 03218352 _____ (McAfee, Inc.) C:\Users\lulu\Downloads\MCPR68.exe
2014-04-14 11:27 - 2014-04-15 10:10 - 00018763 _____ () C:\Users\lulu\Downloads\FRST.txt
2014-04-14 11:27 - 2014-04-14 11:28 - 00045455 _____ () C:\Users\lulu\Downloads\Addition.txt
2014-04-14 11:26 - 2014-04-15 10:10 - 00000000 ____D () C:\FRST
2014-04-14 11:15 - 2014-04-14 11:15 - 02157568 _____ (Farbar) C:\Users\lulu\Downloads\FRST64.exe
2014-04-13 17:03 - 2014-04-13 17:03 - 01066024 _____ (BillP Studios) C:\Users\lulu\Downloads\wpsetup (1).exe
2014-04-12 20:31 - 2014-03-07 02:48 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-04-12 20:31 - 2014-03-07 02:47 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-04-12 20:31 - 2014-03-07 02:47 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-04-12 20:31 - 2014-02-04 01:56 - 00332632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2014-04-12 20:31 - 2014-02-04 01:56 - 00278872 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2014-04-12 20:31 - 2014-01-31 05:55 - 00209712 _____ (Microsoft Corporation) C:\Windows\system32\NotificationUI.exe
2014-04-12 20:31 - 2014-01-31 02:48 - 00564736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSShared.dll
2014-04-12 20:31 - 2014-01-31 02:48 - 00485888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2014-04-12 20:31 - 2014-01-31 02:48 - 00143872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.dll
2014-04-12 20:31 - 2014-01-31 02:48 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-12 20:31 - 2014-01-31 02:06 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\WSShared.dll
2014-04-12 20:31 - 2014-01-31 02:06 - 00599040 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-04-12 20:31 - 2014-01-31 02:06 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-04-12 20:31 - 2014-01-27 05:42 - 02232664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-04-12 20:31 - 2014-01-27 05:39 - 01939288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2014-04-12 20:31 - 2014-01-27 02:52 - 17561088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-04-12 20:31 - 2014-01-27 02:31 - 19752448 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-04-12 20:31 - 2014-01-27 01:17 - 00386722 _____ () C:\Windows\system32\ApnDatabase.xml
2014-04-12 20:31 - 2014-01-16 01:42 - 00118784 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2014-04-12 20:31 - 2014-01-11 08:48 - 05979648 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-04-12 20:31 - 2014-01-11 07:06 - 05092352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-04-12 20:31 - 2014-01-03 01:35 - 00365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2014-04-12 20:31 - 2014-01-03 01:32 - 00523264 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2014-04-12 20:31 - 2013-05-16 00:37 - 00044032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UXInit.dll
2014-04-12 20:31 - 2013-02-21 12:29 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-04-12 20:31 - 2013-02-21 12:29 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-04-12 20:31 - 2013-02-19 11:53 - 00534528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\uxtheme.dll
2014-04-12 20:31 - 2012-07-26 05:06 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-04-12 20:30 - 2014-03-07 02:48 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-04-12 20:30 - 2014-03-07 02:47 - 14357504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-04-12 20:30 - 2014-03-07 02:47 - 13760512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-04-12 20:30 - 2014-03-07 02:47 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-04-12 20:30 - 2014-03-07 02:47 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-04-12 20:30 - 2014-03-07 02:47 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-04-12 20:30 - 2014-03-07 02:08 - 19273216 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-04-12 20:30 - 2014-03-07 02:08 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-04-12 20:30 - 2014-03-07 02:08 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-04-12 20:30 - 2014-03-07 02:08 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-04-12 20:30 - 2014-03-07 02:08 - 02240000 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-04-12 20:30 - 2014-03-07 02:08 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-04-12 20:30 - 2014-03-07 02:08 - 00915968 _____ (Microsoft Corporation) C:\Windows\system32\uxtheme.dll
2014-04-12 20:30 - 2014-03-07 02:08 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-04-12 20:30 - 2014-03-07 02:08 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-04-12 20:30 - 2014-03-07 02:08 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-04-12 20:30 - 2013-05-16 00:35 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\UXInit.dll
2014-04-12 20:30 - 2013-05-14 15:14 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-04-12 20:30 - 2013-05-14 11:23 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-04-12 20:30 - 2013-02-21 12:29 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-04-12 20:30 - 2013-02-21 12:29 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-04-12 20:30 - 2013-02-21 12:14 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-04-12 20:30 - 2013-02-21 12:14 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-04-12 20:30 - 2012-11-08 06:20 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-04-12 20:30 - 2012-11-08 06:20 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-04-12 01:00 - 2014-02-06 01:41 - 01257984 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2014-04-12 01:00 - 2014-02-06 01:41 - 00978432 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-04-12 01:00 - 2014-02-06 01:26 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-04-12 01:00 - 2014-02-06 01:19 - 00974848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2014-04-12 00:25 - 2014-04-12 00:25 - 00447840 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-03-31 21:30 - 2014-03-31 21:30 - 00000000 ____D () C:\Users\lulu\Documents\OneNote Notebooks
2014-03-25 13:53 - 2014-03-25 13:53 - 00000115 _____ () C:\Users\lulu\Downloads\ATT00001.txt
2014-03-22 00:51 - 2014-03-22 00:51 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-03-18 00:59 - 2014-03-18 00:59 - 00000000 ____D () C:\Users\lulu\Documents\DVDVideoSoft
2014-03-17 23:32 - 2014-03-17 23:32 - 00001199 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2014-03-17 23:26 - 2014-03-17 23:34 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-03-17 23:23 - 2014-03-17 23:24 - 91109888 _____ (DVDVideoSoft Ltd. ) C:\Users\lulu\Downloads\FreeStudio_6.2.13.304.exe
2014-03-17 23:19 - 2014-03-17 23:19 - 06658791 _____ () C:\Users\lulu\Desktop\waveshop-1.0.14.001-portable-x86-x64.zip
2014-03-17 23:17 - 2014-03-17 23:17 - 00300850 _____ () C:\Users\lulu\Downloads\mp3DC219 (1).exe
2014-03-17 23:16 - 2014-03-17 23:16 - 00300850 _____ () C:\Users\lulu\Desktop\mp3DC219.exe
2014-03-17 23:02 - 2014-03-17 23:02 - 00930952 _____ (CNET Download.com) C:\Users\lulu\Downloads\cbsidlm-cbsi183-3GP_to_MP3_Converter-ORG-10969186.exe

==================== One Month Modified Files and Folders =======

2014-04-15 10:11 - 2014-04-14 11:27 - 00018763 _____ () C:\Users\lulu\Downloads\FRST.txt
2014-04-15 10:10 - 2014-04-15 10:10 - 02054144 _____ (Farbar) C:\Users\lulu\Downloads\FRST64 (1).exe
2014-04-15 10:10 - 2014-04-14 11:26 - 00000000 ____D () C:\FRST
2014-04-15 10:07 - 2014-04-15 10:07 - 00000612 _____ () C:\Users\lulu\Desktop\JRT.txt
2014-04-15 09:59 - 2013-07-08 15:31 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-04-15 09:57 - 2014-04-15 09:57 - 01016261 _____ (Thisisu) C:\Users\lulu\Downloads\JRT.exe
2014-04-15 09:57 - 2014-04-15 09:57 - 00001657 _____ () C:\Users\lulu\Desktop\AdwCleaner[S0].txt
2014-04-15 09:57 - 2013-01-22 00:15 - 00753134 _____ () C:\Windows\system32\perfh007.dat
2014-04-15 09:57 - 2013-01-22 00:15 - 00155826 _____ () C:\Windows\system32\perfc007.dat
2014-04-15 09:57 - 2012-07-26 09:28 - 01745416 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-04-15 09:54 - 2013-08-03 00:10 - 00001120 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-04-15 09:52 - 2012-08-03 04:22 - 00200432 _____ () C:\Windows\PFRO.log
2014-04-15 09:52 - 2012-07-26 09:22 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-04-15 09:51 - 2013-01-22 00:41 - 01543648 _____ () C:\Windows\WindowsUpdate.log
2014-04-15 09:51 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\BBI
2014-04-15 09:50 - 2014-04-15 09:49 - 00000000 ____D () C:\AdwCleaner
2014-04-15 09:49 - 2014-04-15 09:49 - 01426178 _____ () C:\Users\lulu\Downloads\adwcleaner.exe
2014-04-15 09:42 - 2013-08-03 00:10 - 00001124 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-04-15 09:34 - 2013-08-03 00:10 - 00001966 _____ () C:\Users\Public\Desktop\avast! Free Antivirus.lnk
2014-04-15 09:33 - 2014-04-15 09:33 - 00084816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2014-04-15 09:33 - 2014-04-15 09:33 - 00043152 _____ (AVAST Software) C:\Windows\avastSS.scr
2014-04-15 09:33 - 2013-08-03 00:10 - 01039096 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2014-04-15 09:33 - 2013-08-03 00:10 - 00423240 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2014-04-15 09:33 - 2013-08-03 00:10 - 00208928 _____ () C:\Windows\system32\Drivers\aswVmm.sys
2014-04-15 09:33 - 2013-08-03 00:10 - 00093568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2014-04-15 09:33 - 2013-08-03 00:10 - 00065776 _____ () C:\Windows\system32\Drivers\aswRvrt.sys
2014-04-15 09:33 - 2013-08-03 00:09 - 00334648 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2014-04-15 09:33 - 2013-08-03 00:09 - 00079184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2014-04-15 09:33 - 2013-08-03 00:09 - 00003924 _____ () C:\Windows\System32\Tasks\avast! Emergency Update
2014-04-14 22:59 - 2013-12-08 16:49 - 00000000 ____D () C:\Users\lulu\Desktop\FEP  WS 2013.14
2014-04-14 17:11 - 2013-07-07 21:51 - 00003598 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1135051811-991919262-1634789686-1001
2014-04-14 16:44 - 2013-07-07 21:40 - 00000000 ____D () C:\Users\lulu\AppData\Local\Packages
2014-04-14 16:44 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\AUInstallAgent
2014-04-14 16:02 - 2012-07-26 10:12 - 00000000 ___HD () C:\Windows\ELAMBKUP
2014-04-14 16:01 - 2014-04-14 16:01 - 03218352 _____ (McAfee, Inc.) C:\Users\lulu\Downloads\MCPR.exe
2014-04-14 15:48 - 2014-04-14 15:48 - 00000000 ____D () C:\Users\lulu\AppData\Local\Citrix
2014-04-14 15:48 - 2014-04-14 15:48 - 00000000 ____D () C:\Program Files (x86)\Citrix
2014-04-14 14:52 - 2014-04-14 14:51 - 03218352 _____ (McAfee, Inc.) C:\Users\lulu\Downloads\MCPR68.exe
2014-04-14 13:26 - 2013-07-07 22:12 - 00000000 ____D () C:\Users\lulu\AppData\Local\CrashDumps
2014-04-14 11:28 - 2014-04-14 11:27 - 00045455 _____ () C:\Users\lulu\Downloads\Addition.txt
2014-04-14 11:15 - 2014-04-14 11:15 - 02157568 _____ (Farbar) C:\Users\lulu\Downloads\FRST64.exe
2014-04-13 22:58 - 2013-07-07 23:05 - 00000000 ____D () C:\Users\lulu\AppData\Roaming\Spotify
2014-04-13 17:04 - 2013-10-27 21:48 - 00000000 ____D () C:\ProgramData\InstallMate
2014-04-13 17:03 - 2014-04-13 17:03 - 01066024 _____ (BillP Studios) C:\Users\lulu\Downloads\wpsetup (1).exe
2014-04-13 11:39 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\rescache
2014-04-13 11:22 - 2013-07-07 23:05 - 00000000 ____D () C:\Users\lulu\AppData\Local\Spotify
2014-04-13 11:01 - 2013-07-07 21:43 - 00000000 ___RD () C:\Users\lulu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-04-13 11:01 - 2013-07-07 21:43 - 00000000 ___RD () C:\Users\lulu\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-04-13 10:55 - 2012-07-26 07:26 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-04-13 10:47 - 2012-07-26 10:12 - 00000000 ___RD () C:\Windows\ToastData
2014-04-13 10:47 - 2012-07-26 10:12 - 00000000 ____D () C:\Windows\WinStore
2014-04-12 13:25 - 2013-07-08 00:30 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-04-12 13:21 - 2013-08-15 09:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-04-12 13:17 - 2013-07-08 09:49 - 90655440 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-04-12 00:25 - 2014-04-12 00:25 - 00447840 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-04-11 13:46 - 2013-08-03 00:11 - 00002135 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-04-08 20:11 - 2013-07-08 20:31 - 00000000 ____D () C:\Users\lulu\Documents\Bewerbungen
2014-04-05 13:35 - 2014-03-10 20:20 - 00000000 ____D () C:\Users\lulu\AppData\Local\Windows Live
2014-04-03 17:02 - 2012-07-26 09:21 - 00026390 _____ () C:\Windows\setupact.log
2014-04-02 13:37 - 2013-08-03 00:10 - 00004096 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-04-02 13:37 - 2013-08-03 00:10 - 00003860 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-03-31 23:18 - 2013-11-15 23:16 - 00694232 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-03-31 23:18 - 2013-11-15 23:16 - 00078296 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-03-31 21:30 - 2014-03-31 21:30 - 00000000 ____D () C:\Users\lulu\Documents\OneNote Notebooks
2014-03-31 20:17 - 2014-02-23 00:47 - 00000000 ____D () C:\Users\lulu\Desktop\Fachpraktikum GE WS 2013.14
2014-03-31 20:16 - 2013-07-08 20:31 - 00000000 ____D () C:\Users\lulu\Documents\UNI
2014-03-27 00:30 - 2013-07-08 20:31 - 00000000 ____D () C:\Users\lulu\Documents\alles
2014-03-25 13:53 - 2014-03-25 13:53 - 00000115 _____ () C:\Users\lulu\Downloads\ATT00001.txt
2014-03-25 08:45 - 2013-07-07 21:44 - 00000000 ____D () C:\Users\lulu\AppData\Roaming\Atheros
2014-03-24 12:14 - 2013-07-07 21:44 - 00000000 ____D () C:\Users\lulu\Documents\Bluetooth Folder
2014-03-22 01:17 - 2013-08-15 22:29 - 00000000 ____D () C:\Users\lulu\AppData\Roaming\vlc
2014-03-22 00:51 - 2014-03-22 00:51 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_LocationProvider_01_11_00.Wdf
2014-03-18 00:59 - 2014-03-18 00:59 - 00000000 ____D () C:\Users\lulu\Documents\DVDVideoSoft
2014-03-17 23:35 - 2014-03-10 11:51 - 00000000 ____D () C:\Users\lulu\AppData\Roaming\DVDVideoSoft
2014-03-17 23:34 - 2014-03-17 23:26 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2014-03-17 23:32 - 2014-03-17 23:32 - 00001199 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2014-03-17 23:24 - 2014-03-17 23:23 - 91109888 _____ (DVDVideoSoft Ltd. ) C:\Users\lulu\Downloads\FreeStudio_6.2.13.304.exe
2014-03-17 23:19 - 2014-03-17 23:19 - 06658791 _____ () C:\Users\lulu\Desktop\waveshop-1.0.14.001-portable-x86-x64.zip
2014-03-17 23:17 - 2014-03-17 23:17 - 00300850 _____ () C:\Users\lulu\Downloads\mp3DC219 (1).exe
2014-03-17 23:16 - 2014-03-17 23:16 - 00300850 _____ () C:\Users\lulu\Desktop\mp3DC219.exe
2014-03-17 23:02 - 2014-03-17 23:02 - 00930952 _____ (CNET Download.com) C:\Users\lulu\Downloads\cbsidlm-cbsi183-3GP_to_MP3_Converter-ORG-10969186.exe
2014-03-17 09:41 - 2013-08-02 23:53 - 00001276 _____ () C:\DelFix.txt

Some content of TEMP:
====================
C:\Users\lulu\AppData\Local\temp\0283551397484059mcinst.exe
C:\Users\lulu\AppData\Local\temp\BackupSetup.exe
C:\Users\lulu\AppData\Local\temp\ICReinstall_ZipExtractorSetup.exe
C:\Users\lulu\AppData\Local\temp\Quarantine.exe
C:\Users\lulu\AppData\Local\temp\vcredist_x64.exe
C:\Users\lulu\AppData\Local\temp\vlc-2.1.3-win32.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-04-08 20:23

==================== End Of Log ============================
--- --- ---

--- --- ---

 

Themen zu Pup Optional und dwm notification
abgebrochen, anti-malware, appdata, automatischer download, autostart, awesomehp, awesomehp entfernen, bildschirm schwarz, code, download, explorer, google, icon, internetseite, klick, malwarebytes, namen, neustarten, pup.optional.quickstart.a, runterfahren, seite, software, speicher, taskleiste


« TR/BProtector.Gen auf Windows 7 | viel zu hoch ausgelasteter Arbeitsspeicher »


Ähnliche Themen: Pup Optional und dwm notification


  1. GMER stürzt ab - MBAM erkennt PUP.Optional.Agent, PUP.Optional.IEBho.A, PUP.Optional.MyFreeze.A
    Plagegeister aller Art und deren Bekämpfung - 07.02.2015 (13)
  2. WIN7: Fund PUP.Optional.DigitalSites.A, PUP.Optional.OpenCandy, PUP.Optional.Softonic.A, PUP.Optional.Updater.A. Weitere Vorgehensweise
    Log-Analyse und Auswertung - 08.10.2014 (11)
  3. Trojaner: PUP.Optional.CrossRider.A, PUP.Optional.MySearchDial.A, PUP.Optional.Babylon.A, PUP.Optional.BuenoSearch
    Plagegeister aller Art und deren Bekämpfung - 17.07.2014 (3)
  4. This is an automatically generated Delivery Status Notification.
    Smartphone, Tablet & Handy Security - 08.05.2014 (2)
  5. Security.Hijack, PUP.Optional.OpenCandy, PUP.Optional.Somoto, PUP.Optional.MoviesToolBar etc gefunden
    Plagegeister aller Art und deren Bekämpfung - 16.04.2014 (1)
  6. PUP.Optional.DomalQ / PUP.Optional.BProtector / PUP.Optional.InstallMonetizer.A
    Plagegeister aller Art und deren Bekämpfung - 11.03.2014 (9)
  7. Windows 8: Fund von TR/Dropper.gen, PUP.Optional.Iminent.A, PUP.Optional.BizzyBolt, PUP.Optional.DigitalSites.A
    Log-Analyse und Auswertung - 10.12.2013 (13)
  8. Windows Vista: PUP.Optional.Tarma.A PUP.Optional.OpenCandy PUP.Optional.InstallCore.A
    Plagegeister aller Art und deren Bekämpfung - 11.09.2013 (13)
  9. 2x Windows Vista: PUP.Optional.Tarma.A PUP.Optional.OpenCandy PUP.Optional.InstallCore.A
    Mülltonne - 08.09.2013 (1)
  10. PUP.Optional.BrowserDefender.A, PUP.Optional.Babylon.A, PUP.Optional.Delta
    Log-Analyse und Auswertung - 25.08.2013 (8)
  11. Als attackierend gemeldete Webseite! // Malware notification from Google
    Log-Analyse und Auswertung - 19.06.2013 (23)
  12. ADP Spam: Funding Notification - Debit Draft
    Diskussionsforum - 30.05.2013 (0)
  13. Delivery Status Notification (Failure)
    Plagegeister aller Art und deren Bekämpfung - 11.02.2011 (1)
  14. Delivery Status Notification (Failure) SPAM!
    Überwachung, Datenschutz und Spam - 08.05.2010 (9)
  15. Was ist das Windows Genuine Advantage Notification?
    Überwachung, Datenschutz und Spam - 07.10.2008 (9)
  16. Windows Security Notification
    Mülltonne - 24.08.2007 (0)
  17. ERhalte Dauernd eine Delivery Status Notification
    Plagegeister aller Art und deren Bekämpfung - 08.06.2006 (7)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Pup Optional und dwm notification - Code: Alles auswählen Aufklappen ATTFilter # AdwCleaner v3.023 - Bericht erstellt am 15/04/2014 um 09:50:38 # Aktualisiert 01/04/2014 von Xplode # Betriebssystem : Windows 8 (64 bits) # Benutzername : - Pup Optional und dwm notification...
Archiv
Du betrachtest: Pup Optional und dwm notification auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27