Webseiten werden auf Werbung umgeleitet

schrauber · 30.05.2014, 22:06

Du drückst warscheinlich zu früh F8. Aber egal, jetzt ist es ja weg. FRST log vom Desktop bitte.

Kerrigan · 06.06.2014, 17:09

Hallo,

sorry das ich mich so lange nicht gemeldet habe, aber ich hab keine Mail bekommen das es eine neue Antwort gab.

Und eben wollte ich mal nachfragen was da los ist und merke du hast schon längst geantwortet.

ALSO.... hier ist erstmal der Scan:

FRST Logfile:

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 06-06-2014
Ran by User1 (administrator) on User1-PC-NE on 06-06-2014 17:55:13
Running from C:\Users\User1\Desktop
Platform: Windows 7 Professional Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 10
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(AMD) C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpertService.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
() C:\Program Files (x86)\AMD\RAIDXpert\bin\RAIDXpert.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Crawler.com) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avwebgrd.exe
() C:\Windows\SysWOW64\WinMsgBalloonServer.exe
() C:\Windows\SysWOW64\WinMsgBalloonClient.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\EPU-4 Engine\FourEngine.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Crawler.com) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
(Spotify Ltd) C:\Users\User1\AppData\Roaming\Spotify\spotify.exe
(Spotify Ltd) C:\Users\User1\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Cerulean Studios) C:\Program Files (x86)\Trillian\trillian.exe
(Renesas Electronics Corporation) C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
(ASUSTeK Computer Inc.) C:\Program Files\ASUS\Turbo Key\TurboKey.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Gaming Mouse\Monitor.exe
(Game Inc.) C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Crawler.com) C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Users\User1\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\User1\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\User1\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\User1\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Users\User1\AppData\Roaming\Spotify\Data\SpotifyHelper.exe
() C:\Program Files (x86)\Trillian\plugins\skypekit.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7560296 2011-12-12] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1832760 2012-09-20] (Logitech, Inc.)
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [2777736 2013-04-03] (Crawler.com)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [3684488 2013-04-03] (Crawler.com)
HKLM-x32\...\Run: [RUSB3MON] => C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation)
HKLM-x32\...\Run: [Cpu Level Up help] => C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe [887936 2009-12-28] ()
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2014-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Turbo Key] => C:\Program Files\ASUS\Turbo Key\TurboKey.exe [1874432 2009-11-24] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [737872 2014-06-04] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [766208 2013-08-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [Gaming mouse] => C:\Program Files (x86)\Gaming Mouse\Monitor.exe [761856 2013-07-17] ()
HKLM-x32\...\Run: [GamingKeyboard] => C:\Program Files (x86)\SHARKOON Skiller\GameMon.exe [1803264 2012-06-07] (Game Inc.)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKU\S-1-5-21-196019333-3621520618-2838316431-1000\...\Run: [Spotify] => C:\Users\User1\AppData\Roaming\Spotify\Spotify.exe [6170168 2014-05-14] (Spotify Ltd)
HKU\S-1-5-21-196019333-3621520618-2838316431-1000\...\Run: [Spotify Web Helper] => C:\Users\User1\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1176632 2014-05-14] (Spotify Ltd)
Startup: C:\Users\User1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CurseClientStartup.ccip ()
Startup: C:\Users\User1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Trillian.lnk
ShortcutTarget: Trillian.lnk -> C:\Program Files (x86)\Trillian\trillian.exe (Cerulean Studios)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Filter: text/xml - {807553E5-5146-11D5-A672-00B0D022E945} -  No File
Tcpip\Parameters: [DhcpNameServer] 121.157.39.117 114.114.114.114

FireFox:
========
FF Plugin-x32: @java.com/DTPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.55.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

Chrome: 
=======
CHR Extension: (Google Docs) - C:\Users\User1\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-05-15]
CHR Extension: (Google Drive) - C:\Users\User1\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-05-15]
CHR Extension: (YouTube) - C:\Users\User1\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-05-15]
CHR Extension: (Google-Suche) - C:\Users\User1\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-05-15]
CHR Extension: (Google Wallet) - C:\Users\User1\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-05-15]
CHR Extension: (Google Mail) - C:\Users\User1\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-05-15]

==================== Services (Whitelisted) =================

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2013-08-30] (Advanced Micro Devices, Inc.)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [430160 2014-06-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [430160 2014-06-04] (Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [1039440 2014-06-04] (Avira Operations GmbH & Co. KG)
R2 AsSysCtrlService; C:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [96896 2009-12-29] (ASUSTeK Computer Inc.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
R2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [1149104 2013-04-03] (Crawler.com)
S2 MDM; "C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE" [X]

==================== Drivers (Whitelisted) ====================

R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2010-08-25] ()
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [13368 2009-07-07] ()
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [112080 2014-06-04] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-06-04] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-11-25] (Avira Operations GmbH & Co. KG)
R3 GameKB; C:\Windows\System32\drivers\GameKB.sys [27648 2012-05-11] ()
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-18] ()
R3 RTL8192cu; C:\Windows\System32\DRIVERS\RTL8192cu.sys [806400 2011-02-11] (Realtek Semiconductor Corporation                           )
R3 rusb3hub; C:\Windows\System32\DRIVERS\rusb3hub.sys [114568 2012-08-27] (Renesas Electronics Corporation)
R3 rusb3xhc; C:\Windows\System32\DRIVERS\rusb3xhc.sys [230280 2012-08-27] (Renesas Electronics Corporation)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2014-06-04] (Windows (R) Win 7 DDK provider)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)
S3 cleanhlp; \??\C:\Program Files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [X]
S2 sbapifs; system32\DRIVERS\sbapifs.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-04 18:25 - 2014-06-06 10:58 - 00000000 ____D () C:\ProgramData\Spyware Terminator
2014-06-04 18:25 - 2014-06-04 18:25 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\stflt.sys
2014-06-04 18:25 - 2014-06-04 18:25 - 00001046 _____ () C:\Users\Public\Desktop\Spyware Terminator 2012.lnk
2014-06-04 18:25 - 2014-06-04 18:25 - 00000000 ____D () C:\Users\User1\AppData\Roaming\Spyware Terminator
2014-06-04 18:25 - 2014-06-04 18:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2012
2014-06-04 18:25 - 2014-06-04 18:25 - 00000000 ____D () C:\Program Files (x86)\Spyware Terminator
2014-06-04 18:23 - 2014-06-04 18:23 - 05049344 _____ (Crawler.com ) C:\Users\User1\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-05-22 00:21 - 2014-05-22 00:21 - 00000963 _____ () C:\Users\User1\Desktop\RKreport[0]_DN_05222014_002154.txt
2014-05-22 00:20 - 2014-05-22 00:57 - 00001912 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05222014_002056.txt
2014-05-22 00:18 - 2014-05-22 00:18 - 00001880 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05222014_001801.txt
2014-05-22 00:18 - 2014-05-22 00:18 - 00000930 _____ () C:\Users\User1\Desktop\RKreport[0]_DN_05222014_001829.txt
2014-05-17 01:19 - 2014-05-06 07:14 - 19274752 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-17 01:19 - 2014-05-06 07:14 - 00097280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-17 01:19 - 2014-05-06 05:48 - 14367232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-17 01:19 - 2014-05-06 05:48 - 00080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-17 01:19 - 2014-05-06 05:37 - 02706432 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-17 01:19 - 2014-05-06 05:26 - 02706432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-17 01:19 - 2013-12-21 11:39 - 00600064 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-17 01:19 - 2013-12-21 09:56 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 02238976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-15 19:51 - 2014-05-15 19:51 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-15 19:51 - 2014-05-15 19:51 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-05-15 19:51 - 2014-05-15 19:51 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-05-15 19:51 - 2014-05-15 19:51 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-05-15 19:51 - 2014-05-15 19:51 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-05-15 19:51 - 2014-05-15 19:51 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-05-15 19:51 - 2014-05-15 19:51 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-05-15 19:51 - 2014-05-15 19:51 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-05-15 19:48 - 2014-05-15 19:49 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-15 19:48 - 2014-05-04 17:12 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-15 19:47 - 2014-05-15 19:47 - 00002027 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2014-05-15 00:43 - 2014-05-15 00:43 - 00001846 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05152014_004326.txt
2014-05-15 00:38 - 2014-05-15 00:38 - 00000000 ____D () C:\Users\User1\AppData\Local\Adobe
2014-05-15 00:22 - 2014-06-06 17:34 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-15 00:22 - 2014-06-06 17:32 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-15 00:22 - 2014-05-22 23:43 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-15 00:22 - 2014-05-15 00:27 - 00004112 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-15 00:22 - 2014-05-15 00:27 - 00003860 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-15 00:22 - 2014-05-15 00:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-14 23:36 - 2014-05-15 00:09 - 38410232 _____ (Google Inc.) C:\Users\User1\Downloads\ChromeStandaloneSetup_34.0.1847.137.exe
2014-05-14 23:28 - 2014-04-14 20:05 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-05-14 23:08 - 2014-05-14 23:21 - 00041697 _____ () C:\Users\User1\Desktop\Shortcut.txt
2014-05-14 17:49 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 17:49 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 17:49 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 17:49 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 17:49 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 17:49 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 17:49 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 17:49 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 17:49 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 17:49 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 17:49 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 17:49 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 17:49 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 17:49 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 17:49 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 17:49 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 17:49 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 17:49 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 17:49 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 17:49 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 17:49 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 17:49 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 17:49 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 17:49 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 17:49 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 17:49 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 17:49 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 17:49 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 17:49 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 17:49 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 17:49 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 17:49 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 17:49 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 17:49 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-13 17:41 - 2014-05-13 17:41 - 00002445 _____ () C:\Users\User1\Desktop\RKreport[0]_D_05132014_174137.txt
2014-05-13 17:41 - 2014-05-13 17:41 - 00000860 _____ () C:\Users\User1\Desktop\RKreport[0]_DN_05132014_174143.txt
2014-05-13 17:39 - 2014-05-13 17:39 - 00002346 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05132014_173940.txt
2014-05-12 14:37 - 2014-05-12 14:44 - 00017189 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05122014_143749.txt
2014-05-12 14:35 - 2014-05-12 14:35 - 00017160 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05122014_143525.txt
2014-05-12 14:33 - 2014-05-12 14:33 - 04527616 _____ () C:\Users\User1\Desktop\RogueKillerX64 (1).exe
2014-05-12 14:32 - 2014-05-12 14:32 - 04527616 _____ () C:\Users\User1\Downloads\RogueKillerX64.exe
2014-05-12 14:31 - 2014-05-13 17:41 - 00000000 ____D () C:\Users\User1\Desktop\RK_Quarantine
2014-05-12 14:31 - 2014-03-26 13:57 - 04493824 _____ () C:\Users\User1\Desktop\RogueKillerX64.exe
2014-05-12 14:31 - 2014-03-26 13:57 - 03945472 _____ () C:\Users\User1\Desktop\RogueKiller.exe
2014-05-12 14:30 - 2014-05-12 14:30 - 02619924 _____ () C:\Users\User1\Downloads\RogueKiller_8.8.14 (1).zip
2014-05-12 14:29 - 2014-05-12 14:29 - 02619924 _____ () C:\Users\User1\Downloads\RogueKiller_8.8.14.zip

==================== One Month Modified Files and Folders =======

2014-06-06 17:55 - 2014-04-22 16:16 - 00013802 _____ () C:\Users\User1\Desktop\FRST.txt
2014-06-06 17:55 - 2014-04-09 18:30 - 00000000 ____D () C:\FRST
2014-06-06 17:55 - 2013-10-08 20:20 - 00000000 ____D () C:\Users\User1\AppData\Local\Temp
2014-06-06 17:54 - 2014-04-24 17:58 - 00000000 ____D () C:\Users\User1\Desktop\FRST-OlderVersion
2014-06-06 17:54 - 2014-04-22 16:15 - 02072576 _____ (Farbar) C:\Users\User1\Desktop\FRST64.exe
2014-06-06 17:41 - 2013-10-08 22:34 - 00000330 _____ () C:\Windows\Tasks\RtlNICDiagVistaStart.job
2014-06-06 17:34 - 2014-05-15 00:22 - 00001112 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-06-06 17:34 - 2013-11-26 19:49 - 00000000 ____D () C:\Users\User1\AppData\Roaming\Spotify
2014-06-06 17:32 - 2014-05-15 00:22 - 00001116 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-06-06 17:26 - 2009-07-14 06:45 - 00025280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-06-06 17:26 - 2009-07-14 06:45 - 00025280 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-06-06 17:23 - 2013-10-08 19:57 - 01626243 _____ () C:\Windows\WindowsUpdate.log
2014-06-06 17:19 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-06-06 17:19 - 2009-07-14 06:51 - 00040744 _____ () C:\Windows\setupact.log
2014-06-06 10:58 - 2014-06-04 18:25 - 00000000 ____D () C:\ProgramData\Spyware Terminator
2014-06-06 01:14 - 2013-10-14 14:04 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-06-04 18:58 - 2013-11-26 19:49 - 00000000 ____D () C:\Users\User1\AppData\Local\Spotify
2014-06-04 18:51 - 2013-10-09 18:22 - 00130584 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avipbb.sys
2014-06-04 18:51 - 2013-10-09 18:22 - 00112080 _____ (Avira Operations GmbH & Co. KG) C:\Windows\system32\Drivers\avgntflt.sys
2014-06-04 18:25 - 2014-06-04 18:25 - 00051496 _____ (Windows (R) Win 7 DDK provider) C:\Windows\system32\Drivers\stflt.sys
2014-06-04 18:25 - 2014-06-04 18:25 - 00001046 _____ () C:\Users\Public\Desktop\Spyware Terminator 2012.lnk
2014-06-04 18:25 - 2014-06-04 18:25 - 00000000 ____D () C:\Users\User1\AppData\Roaming\Spyware Terminator
2014-06-04 18:25 - 2014-06-04 18:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2012
2014-06-04 18:25 - 2014-06-04 18:25 - 00000000 ____D () C:\Program Files (x86)\Spyware Terminator
2014-06-04 18:23 - 2014-06-04 18:23 - 05049344 _____ (Crawler.com ) C:\Users\User1\Downloads\SpywareTerminatorSetup_3.0.0.82.exe
2014-06-02 02:44 - 2013-10-09 19:48 - 00000000 ____D () C:\Users\User1\AppData\Local\Battle.net
2014-06-01 23:08 - 2013-10-09 13:41 - 00000000 ____D () C:\World of Warcraft
2014-06-01 23:07 - 2013-11-27 19:23 - 00000000 ____D () C:\Program Files (x86)\Hearthstone
2014-06-01 23:03 - 2013-10-22 18:07 - 00000000 ____D () C:\Program Files (x86)\StarCraft II
2014-06-01 22:58 - 2013-10-09 19:48 - 00000000 ____D () C:\Program Files (x86)\Battle.net
2014-05-29 17:22 - 2011-04-12 09:43 - 00699092 _____ () C:\Windows\system32\perfh007.dat
2014-05-29 17:22 - 2011-04-12 09:43 - 00149232 _____ () C:\Windows\system32\perfc007.dat
2014-05-29 17:22 - 2009-07-14 07:13 - 01619284 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-22 23:43 - 2014-05-15 00:22 - 00002183 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-22 00:57 - 2014-05-22 00:20 - 00001912 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05222014_002056.txt
2014-05-22 00:21 - 2014-05-22 00:21 - 00000963 _____ () C:\Users\User1\Desktop\RKreport[0]_DN_05222014_002154.txt
2014-05-22 00:18 - 2014-05-22 00:18 - 00001880 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05222014_001801.txt
2014-05-22 00:18 - 2014-05-22 00:18 - 00000930 _____ () C:\Users\User1\Desktop\RKreport[0]_DN_05222014_001829.txt
2014-05-17 00:43 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-15 20:00 - 2013-10-08 20:20 - 00001417 _____ () C:\Users\User1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-15 19:57 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-15 19:56 - 2013-10-14 15:35 - 00020687 _____ () C:\Windows\IE10_main.log
2014-05-15 19:51 - 2014-05-15 19:51 - 15404544 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 13761024 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 03959808 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 02877952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 02648576 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 02238976 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 02049536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 01766400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 01509376 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-15 19:51 - 2014-05-15 19:51 - 01441280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-15 19:51 - 2014-05-15 19:51 - 01400416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2014-05-15 19:51 - 2014-05-15 19:51 - 01400416 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2014-05-15 19:51 - 2014-05-15 19:51 - 01365504 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 01140736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 01054720 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00905728 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00855552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00762368 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00719360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00629248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00603136 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00526336 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00493056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00452096 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00441856 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-05-15 19:51 - 2014-05-15 19:51 - 00391168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00361984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-05-15 19:51 - 2014-05-15 19:51 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00281600 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00242200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00232960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00226816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00185344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00173568 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00150528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00149504 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00144896 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00138752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00137216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00136704 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00125440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00117248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00110592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00109056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00089600 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00082432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2014-05-15 19:51 - 2014-05-15 19:51 - 00073728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00067072 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2014-05-15 19:51 - 2014-05-15 19:51 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00057344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00039936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00038400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00027648 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00023040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2014-05-15 19:51 - 2014-05-15 19:51 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00012800 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-05-15 19:51 - 2014-05-15 19:51 - 00011776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2014-05-15 19:49 - 2014-05-15 19:48 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-15 19:47 - 2014-05-15 19:47 - 00002027 _____ () C:\Users\Public\Desktop\Adobe Reader X.lnk
2014-05-15 19:47 - 2013-10-08 22:23 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
2014-05-15 19:42 - 2013-10-08 22:23 - 00000000 ____D () C:\ProgramData\Adobe
2014-05-15 19:42 - 2013-10-08 20:20 - 00000000 ___RD () C:\Users\User1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-15 19:42 - 2013-10-08 20:20 - 00000000 ___RD () C:\Users\User1\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-15 19:37 - 2014-05-01 00:03 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-15 19:37 - 2010-11-21 05:47 - 00285442 _____ () C:\Windows\PFRO.log
2014-05-15 00:43 - 2014-05-15 00:43 - 00001846 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05152014_004326.txt
2014-05-15 00:38 - 2014-05-15 00:38 - 00000000 ____D () C:\Users\User1\AppData\Local\Adobe
2014-05-15 00:38 - 2013-10-09 13:36 - 00000000 ____D () C:\Users\User1\AppData\Roaming\Adobe
2014-05-15 00:27 - 2014-05-15 00:22 - 00004112 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-15 00:27 - 2014-05-15 00:22 - 00003860 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-15 00:22 - 2014-05-15 00:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-15 00:22 - 2013-10-08 21:40 - 00000000 ____D () C:\Users\User1\AppData\Local\Google
2014-05-15 00:22 - 2013-10-08 21:40 - 00000000 ____D () C:\Program Files (x86)\Google
2014-05-15 00:09 - 2014-05-14 23:36 - 38410232 _____ (Google Inc.) C:\Users\User1\Downloads\ChromeStandaloneSetup_34.0.1847.137.exe
2014-05-14 23:27 - 2013-10-22 20:11 - 00000000 ____D () C:\Program Files (x86)\Java
2014-05-14 23:21 - 2014-05-14 23:08 - 00041697 _____ () C:\Users\User1\Desktop\Shortcut.txt
2014-05-14 23:21 - 2014-04-24 17:59 - 00025318 _____ () C:\Users\User1\Desktop\Addition.txt
2014-05-14 19:15 - 2013-10-14 14:04 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 19:15 - 2013-10-14 14:04 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 19:15 - 2013-10-14 14:04 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-13 17:42 - 2014-04-21 15:02 - 00000000 ____D () C:\Scans
2014-05-13 17:41 - 2014-05-13 17:41 - 00002445 _____ () C:\Users\User1\Desktop\RKreport[0]_D_05132014_174137.txt
2014-05-13 17:41 - 2014-05-13 17:41 - 00000860 _____ () C:\Users\User1\Desktop\RKreport[0]_DN_05132014_174143.txt
2014-05-13 17:41 - 2014-05-12 14:31 - 00000000 ____D () C:\Users\User1\Desktop\RK_Quarantine
2014-05-13 17:39 - 2014-05-13 17:39 - 00002346 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05132014_173940.txt
2014-05-12 14:44 - 2014-05-12 14:37 - 00017189 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05122014_143749.txt
2014-05-12 14:35 - 2014-05-12 14:35 - 00017160 _____ () C:\Users\User1\Desktop\RKreport[0]_S_05122014_143525.txt
2014-05-12 14:33 - 2014-05-12 14:33 - 04527616 _____ () C:\Users\User1\Desktop\RogueKillerX64 (1).exe
2014-05-12 14:32 - 2014-05-12 14:32 - 04527616 _____ () C:\Users\User1\Downloads\RogueKillerX64.exe
2014-05-12 14:30 - 2014-05-12 14:30 - 02619924 _____ () C:\Users\User1\Downloads\RogueKiller_8.8.14 (1).zip
2014-05-12 14:29 - 2014-05-12 14:29 - 02619924 _____ () C:\Users\User1\Downloads\RogueKiller_8.8.14.zip
2014-05-09 08:14 - 2014-05-14 17:49 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-14 17:49 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll

Some content of TEMP:
====================
C:\Users\User1\AppData\Local\Temp\avgnt.exe
C:\Users\User1\AppData\Local\Temp\ntdll_dump.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-06-01 20:50

==================== End Of Log ============================

--- --- ---

--- --- ---

Eine kurze Zusammenfassung der Ereignisse;

Nachdem der Werbeterror kurzzeitig weg war ( cirka 6 Stunden lang ) kam er wieder und nervte mich erfolgreich bis vorgestern. Dann brachte mich eine Freundin auf den Gedanken mal zu vergleichen was bei meinem Hauptrechner anders ist ( Der ja nicht befallen wird von dem Ding ) und dabei bin ich darauf gekommen das dort ein Programm läuft was auf meinem zweit Rechner nicht installiert ist. Ich habe dann auch auf dem Rechner hier Spyware Terminator installiert und es durchlaufen lassen. Gefunden wurde jede Menge Malware. Nach dem Scan und dem löschen der Malware habe ich den PC neu gestartet und Chrome aufgemacht. Werbeterror noch da....

Am nächsten Tag startete ich ganz normal den PC. Spyware Terminator lief wieder durch, fand noch ein paar kleine Infektionen im IE und entfernte auch diese. Seit dem ist keine Spur mehr von meinem Plagegeist zu entdecken! JIPPPPIYYYYYY! Seit zwei Tagen Ruhe vor dem Werbeterror. Ein TRAUM!

Meinst du das reicht aus um alles zu beseitigen? Siehst du irgendwas böses noch in dem Scan?

schrauber · 07.06.2014, 11:16

Die FRST Logs sind nach dem Scan mit Spyware Terminator?

Kerrigan · 07.06.2014, 11:37

Ja genau die sind nach dem Scan entstanden.

schrauber · 08.06.2014, 09:26

und jetzt keine Probleme mehr? Gibt es mehrere Rechner in deinem Netzwerk? Wenn ja bitte mal ein FRST log von einem anderne Rechner. Ich würde gerne was checken.

30.05.2014, 22:06	#46
schrauber /// the machine /// TB-Ausbilder	Webseiten werden auf Werbung umgeleitet Du drückst warscheinlich zu früh F8. Aber egal, jetzt ist es ja weg. FRST log vom Desktop bitte. __________________ gruß, schrauber *Proud Member of UNITE and ASAP since 2009* Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM!

07.06.2014, 11:16	#48
schrauber /// the machine /// TB-Ausbilder	Webseiten werden auf Werbung umgeleitet Die FRST Logs sind nach dem Scan mit Spyware Terminator? __________________ __________________

Webseiten werden auf Werbung umgeleitet

Plagegeister aller Art und deren Bekämpfung: Webseiten werden auf Werbung umgeleitet