Amazon Phishing Link angeklickt...

Winchess · 08.02.2015, 12:10

Code:

ATTFilter

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-02-2015
Ran by Anna at 2015-02-08 11:59:41 Run:1
Running from C:\Users\Anna\Downloads
Loaded Profiles: Anna (Available profiles: Anna)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\11BDZU4E\spstub[1].exe

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\70XGV79G\eGdpSvc[1].exe

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\70XGV79G\SPSetup[1].exe

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\70XGV79G\SPSetup[2].exe

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A795CMF7\MinibarFirefox[1].exe

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A795CMF7\SPIdentifierImpl[1].exe

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RRFOMZFK\bpo_serp_m[1].js

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RRFOMZFK\IMinentToolbar[1].exe

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RRFOMZFK\metro[1].exe

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RRFOMZFK\monetizationLoader[1].js

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VCM3035R\Setup[1].exe

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VCM3035R\SPSetup[1].exe

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W8BECEDV\SPSetup[1].exe

C:\Users\Anna\AppData\Local\Temp\KMP_3.8.0.123.exe

C:\Users\Anna\AppData\Local\Temp\KMP_3.9.0.126.exe

C:\Users\Anna\AppData\Local\Temp\C6A37CF6-BAB0-7891-B8B5-D069103CB12C\BExternal.dll

C:\Users\Anna\AppData\Local\Temp\C6A37CF6-BAB0-7891-B8B5-D069103CB12C\IECookieLow.dll

C:\Users\Anna\AppData\Local\Temp\C6A37CF6-BAB0-7891-B8B5-D069103CB12C\Setup.exe

C:\Users\Anna\AppData\Local\Temp\DMR\dmr_72.exe

C:\Users\Anna\AppData\Local\Temp\is-5NUKM.tmp\OptProCrash.dll

C:\Users\Anna\AppData\Local\Temp\is1070216317\MyBabylonTB.exe

C:\Users\Anna\AppData\Local\Temp\Java.exe\d86247066e694257a7e78f6517c796ea\software\Cloud_Backup_Setup.exe

C:\Users\Anna\AppData\Local\Temp\Java.exe\d86247066e694257a7e78f6517c796ea\software\OptimizerPro.exe

C:\Users\Anna\AppData\Local\Temp\Omigaplus\eInstall\eInstall.exe

C:\Users\Anna\Downloads\yWriter5Full_CB-DL-Manager.exe

C:\Windows\AppPatch\AppPatch64
Task: {E17507B7-F68A-43EF-8B00-E97F3209AC68} - \Desk 365 RunAsStdUser No Task File <==== ATTENTION

Task: {FD3D072B-DE71-415B-BEF6-6C06015F3A89} - System32\Tasks\Omiga Plus RunAsStdUser => C:\Program Files (x86)\Omiga Plus\omigaplus.exe <==== ATTENTION
Emptytemp:
         
*****************

C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\11BDZU4E\spstub[1].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\70XGV79G\eGdpSvc[1].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\70XGV79G\SPSetup[1].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\70XGV79G\SPSetup[2].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A795CMF7\MinibarFirefox[1].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\A795CMF7\SPIdentifierImpl[1].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RRFOMZFK\bpo_serp_m[1].js => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RRFOMZFK\IMinentToolbar[1].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RRFOMZFK\metro[1].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RRFOMZFK\monetizationLoader[1].js => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VCM3035R\Setup[1].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VCM3035R\SPSetup[1].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W8BECEDV\SPSetup[1].exe => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\KMP_3.8.0.123.exe => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\KMP_3.9.0.126.exe => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\C6A37CF6-BAB0-7891-B8B5-D069103CB12C\BExternal.dll => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\C6A37CF6-BAB0-7891-B8B5-D069103CB12C\IECookieLow.dll => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\C6A37CF6-BAB0-7891-B8B5-D069103CB12C\Setup.exe => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\DMR\dmr_72.exe => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\is-5NUKM.tmp\OptProCrash.dll => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\is1070216317\MyBabylonTB.exe => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\Java.exe\d86247066e694257a7e78f6517c796ea\software\Cloud_Backup_Setup.exe => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\Java.exe\d86247066e694257a7e78f6517c796ea\software\OptimizerPro.exe => Moved successfully.
C:\Users\Anna\AppData\Local\Temp\Omigaplus\eInstall\eInstall.exe => Moved successfully.
C:\Users\Anna\Downloads\yWriter5Full_CB-DL-Manager.exe => Moved successfully.
C:\Windows\AppPatch\AppPatch64 => Moved successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E17507B7-F68A-43EF-8B00-E97F3209AC68} => Key not found. 
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Desk 365 RunAsStdUser => Key not found. 
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FD3D072B-DE71-415B-BEF6-6C06015F3A89} => Key not found. 
C:\Windows\System32\Tasks\Omiga Plus RunAsStdUser not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Omiga Plus RunAsStdUser => Key not found. 
EmptyTemp: => Removed 5 GB temporary data.


The system needed a reboot. 

==== End of Fixlog 12:02:41 ====

FRST Logfile:

Code:

ATTFilter

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-02-2015
Ran by Anna (administrator) on ANNA-TOSH on 08-02-2015 12:07:45
Running from C:\Users\Anna\Downloads
Loaded Profiles: Anna (Available profiles: Anna)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 9 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Realsil Microelectronics Inc.) C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\BulletinBoard\TosNcCore.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Spotify Ltd) C:\Users\Anna\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe
(Toshiba) C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Brother\ControlCenter3\BrccMCtl.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Farbar) C:\Users\Anna\Downloads\FRST64(1).exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [TosNC] => C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [597928 2011-03-03] (TOSHIBA Corporation)
HKLM\...\Run: [TosReelTimeMonitor] => C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [38304 2010-12-14] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba TEMPRO] => C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1546720 2011-02-10] (Toshiba Europe GmbH)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11101800 2010-07-28] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2120808 2010-07-28] (Realtek Semiconductor)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [566184 2010-09-28] (TOSHIBA Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\Toshiba\SmoothView\SmoothView.exe [570680 2009-08-13] (TOSHIBA Corporation)
HKLM\...\Run: [00TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [915320 2010-05-10] (TOSHIBA Corporation)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2052392 2010-03-10] (Synaptics Incorporated)
HKLM\...\Run: [SmartFaceVWatcher] => C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatcher.exe [238080 2009-10-19] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [709976 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] => C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe [150992 2011-07-27] (Toshiba Europe GmbH)
HKLM-x32\...\Run: [HWSetup] => C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [423936 2010-03-04] (TOSHIBA Electronics, Inc.)
HKLM-x32\...\Run: [SVPWUTIL] => C:\Program Files (x86)\TOSHIBA\Utilities\SVPWUTIL.exe [352256 2010-03-03] (TOSHIBA)
HKLM-x32\...\Run: [KeNotify] => C:\Program Files (x86)\TOSHIBA\Utilities\KeNotify.exe [34160 2010-08-15] (TOSHIBA CORPORATION)
HKLM-x32\...\Run: [ToshibaServiceStation] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [1294136 2009-10-06] (TOSHIBA Corporation)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation)
HKLM-x32\...\Run: [ControlCenter3] => C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2621440 2010-02-09] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-05-10] (Hewlett-Packard)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [162856 2013-07-22] (Geek Software GmbH)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [256896 2014-07-25] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-19\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\S-1-5-20\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
HKU\S-1-5-21-1570079354-119620537-2907084576-1000\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\TOPI.exe [846936 2011-05-16] (TOSHIBA)
HKU\S-1-5-21-1570079354-119620537-2907084576-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [718208 2010-03-16] (Microsoft Corporation)
HKU\S-1-5-21-1570079354-119620537-2907084576-1000\...\Run: [Spotify Web Helper] => C:\Users\Anna\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1676344 2014-12-11] (Spotify Ltd)
HKU\S-1-5-21-1570079354-119620537-2907084576-1000\...\Run: [Facebook Update] => C:\Users\Anna\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2014-10-23] (Facebook Inc.)
HKU\S-1-5-18\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [846936 2011-05-16] (TOSHIBA)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.8.150\SSScheduler.exe (McAfee, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Toshiba Places Icon Utility.lnk
ShortcutTarget: Toshiba Places Icon Utility.lnk -> C:\Program Files\TOSHIBA\TOSHIBA Places Icon Utility\TosDIMonitor.exe (Toshiba)
Startup: C:\Users\Anna\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Photosmart 5510d series.lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Photosmart 5510d series.lnk -> C:\Program Files\HP\HP Photosmart 5510d series\Bin\HPStatusBL.dll (Hewlett-Packard Co.)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyEnable: [S-1-5-21-1570079354-119620537-2907084576-1000] => Internet Explorer proxy is enabled.
HKU\S-1-5-21-1570079354-119620537-2907084576-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=TEUA&bmod=TEUA
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
BHO: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\system32\mscoree.dll (Microsoft Corporation)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: MSS+ Identifier -> {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} -> C:\Program Files\McAfee Security Scan\3.8.150\McAfeeMSS_IE.dll (McAfee, Inc.)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\SysWOW64\mscoree.dll (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: TOSHIBA Media Controller Plug-in -> {F3C88694-EFFA-4d78-B409-54B7B2535B14} -> C:\Program Files (x86)\TOSHIBA\TOSHIBA Media Controller Plug-in\TOSHIBAMediaControllerIE.dll (<TOSHIBA>)
Toolbar: HKU\S-1-5-21-1570079354-119620537-2907084576-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

FireFox:
========
FF ProfilePath: C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\8q6hwia0.default-1412951732901
FF DefaultSearchEngine: Google
FF SelectedSearchEngine: Google
FF NetworkProxy: "ftp", "181.198.116.90"
FF NetworkProxy: "ftp_port", 80
FF NetworkProxy: "gopher", "181.198.116.90"
FF NetworkProxy: "gopher_port", 80
FF NetworkProxy: "http", "181.198.116.90"
FF NetworkProxy: "http_port", 80
FF NetworkProxy: "socks", "181.198.116.90"
FF NetworkProxy: "socks_port", 80
FF NetworkProxy: "ssl", "181.198.116.90"
FF NetworkProxy: "ssl_port", 80
FF NetworkProxy: "type", 0
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll No File
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.67.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1570079354-119620537-2907084576-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\Anna\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll (Skype Limited)
FF Extension: EPUBReader - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\8q6hwia0.default-1412951732901\Extensions\{5384767E-00D9-40E9-B72F-9CC39D655D6F} [2015-02-03]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\8q6hwia0.default-1412951732901\Extensions\{B64D9B05-48E1-4CEB-BF58-E0643994E900}.xpi [2015-01-17]
FF Extension: Adblock Plus - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\8q6hwia0.default-1412951732901\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-10-11]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-01-27]
FF HKLM-x32\...\Firefox\Extensions: [{8AA36F4F-6DC7-4c06-77AF-5035170634FE}] - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox
FF Extension: Citavi Picker - C:\ProgramData\Swiss Academic Software\Citavi Picker\Firefox [2014-04-10]
FF HKU\S-1-5-21-1570079354-119620537-2907084576-1000\...\Firefox\Extensions: [{e4f94d1e-2f53-401e-8885-681602c0ddd8}] - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi
FF Extension: No Name - C:\ProgramData\McAfee Security Scan\Extensions\{e4f94d1e-2f53-401e-8885-681602c0ddd8}.xpi [2014-04-04]
FF HKU\S-1-5-21-1570079354-119620537-2907084576-1000\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Anna\AppData\Roaming\Mozilla\Firefox\Profiles\q1imk4nn.default\extensions\cliqz@cliqz.com

Chrome: 
=======
CHR HKLM-x32\...\Chrome\Extension: [aaaaoggiphohkihibdkcnhnokmkfmhnj] - C:\Users\Anna\AppData\Local\APN\GoogleCRXs\aaaaoggiphohkihibdkcnhnokmkfmhnj_7.14.1.0.crx [Not Found]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14]
CHR HKLM-x32\...\Chrome\Extension: [ohgndokldibnndfnjnagojmheejlengn] - C:\Program Files (x86)\Citavi 4\Pickers\Chrome\ChromePicker.crx [2014-02-07]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation)
R2 IconMan_R; C:\Program Files (x86)\Realtek\Realtek USB 2.0 Card Reader\RIconMan.exe [1811456 2010-08-27] (Realsil Microelectronics Inc.) [File not signed]
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.8.150\McCHSvc.exe [289256 2014-04-09] (McAfee, Inc.)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [112080 2011-02-10] (Toshiba Europe GmbH)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 avgtp; C:\Windows\system32\drivers\avgtpx64.sys [50976 2014-08-12] (AVG Technologies)
S3 Impcd; C:\Windows\System32\DRIVERS\Impcd.sys [158976 2010-02-27] (Intel Corporation) [File not signed]
S3 s217bus; C:\Windows\System32\DRIVERS\s217bus.sys [108072 2007-11-02] (MCCI Corporation)
S3 s217mdfl; C:\Windows\System32\DRIVERS\s217mdfl.sys [19496 2007-11-02] (MCCI Corporation)
S3 s217mdm; C:\Windows\System32\DRIVERS\s217mdm.sys [145448 2007-11-02] (MCCI Corporation)
S3 s217nd5; C:\Windows\System32\DRIVERS\s217nd5.sys [33832 2007-11-02] (MCCI Corporation)
S3 s217obex; C:\Windows\System32\DRIVERS\s217obex.sys [124968 2007-11-02] (MCCI Corporation)
S3 s217unic; C:\Windows\System32\DRIVERS\s217unic.sys [138792 2007-11-02] (MCCI)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-08 11:58 - 2015-02-08 11:58 - 02132992 _____ (Farbar) C:\Users\Anna\Downloads\FRST64(1).exe
2015-02-07 18:49 - 2015-02-07 18:49 - 00000000 ____D () C:\Users\Anna\Downloads\FRST-OlderVersion
2015-02-07 18:01 - 2015-02-07 18:01 - 01388274 _____ (Thisisu) C:\Users\Anna\Downloads\JRT.exe
2015-02-07 16:11 - 2015-02-07 16:11 - 02347384 _____ (ESET) C:\Users\Anna\Downloads\esetsmartinstaller_deu.exe
2015-02-07 14:54 - 2015-02-07 14:56 - 00000000 ____D () C:\AdwCleaner
2015-02-07 14:13 - 2015-02-07 14:14 - 02112512 _____ () C:\Users\Anna\Downloads\AdwCleaner_4.110.exe
2015-02-07 12:58 - 2015-02-07 12:58 - 00037337 _____ () C:\Users\Anna\Downloads\Addition.txt
2015-02-07 12:57 - 2015-02-08 12:07 - 00021161 _____ () C:\Users\Anna\Downloads\FRST.txt
2015-02-07 12:57 - 2015-02-08 12:07 - 00000000 ____D () C:\FRST
2015-02-07 12:55 - 2015-02-07 18:49 - 02132992 _____ (Farbar) C:\Users\Anna\Downloads\FRST64.exe
2015-02-07 12:53 - 2015-02-07 12:53 - 00076290 _____ () C:\Users\Anna\Downloads\Extras.Txt
2015-02-07 12:50 - 2015-02-07 12:50 - 00086660 _____ () C:\Users\Anna\Downloads\OTL.Txt
2015-02-07 12:42 - 2015-02-07 12:42 - 00602112 _____ (OldTimer Tools) C:\Users\Anna\Downloads\OTL.exe
2015-02-07 12:10 - 2015-02-07 12:10 - 00000000 ____D () C:\ProgramData\Malwarebytes
2015-02-07 12:08 - 2015-02-07 12:09 - 20447072 _____ (Malwarebytes Corporation ) C:\Users\Anna\Downloads\mbam-setup-2.0.4.1028.exe
2015-01-31 14:12 - 2015-01-31 14:12 - 00626365 _____ () C:\Users\Anna\Downloads\KanaTyping(1).zip
2015-01-27 01:05 - 2015-01-27 01:05 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2015-01-25 22:32 - 2015-01-30 12:05 - 02848423 _____ () C:\Users\Anna\Desktop\berliner-verlag-präsentation.pptx
2015-01-19 17:09 - 2015-01-19 17:09 - 00001744 _____ () C:\Users\Anna\Downloads\ivwdaten.csv
2015-01-17 00:11 - 2015-01-17 00:11 - 00001248 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2015-01-17 00:11 - 2015-01-17 00:11 - 00000000 ____D () C:\Program Files (x86)\Free Codec Pack
2015-01-17 00:08 - 2015-01-17 00:08 - 03534792 _____ (DVDVideoSoft Ltd. ) C:\Users\Anna\Downloads\FreeYouTubeToMP3Converter.exe

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-08 12:03 - 2014-06-28 11:34 - 00000436 _____ () C:\Windows\system32\Drivers\etc\hosts.ics
2015-02-08 12:03 - 2011-07-27 09:59 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-08 12:03 - 2009-07-14 06:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-02-08 12:03 - 2009-07-14 05:51 - 00205776 _____ () C:\Windows\setupact.log
2015-02-08 12:02 - 2012-02-18 04:29 - 01389140 _____ () C:\Windows\WindowsUpdate.log
2015-02-08 12:01 - 2012-07-05 20:21 - 00000254 _____ () C:\Windows\Tasks\HP Photo Creations Messager.job
2015-02-08 11:58 - 2009-07-14 05:45 - 00024912 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-02-08 11:58 - 2009-07-14 05:45 - 00024912 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-02-08 11:51 - 2010-11-21 04:47 - 00353926 _____ () C:\Windows\PFRO.log
2015-02-08 02:54 - 2012-03-10 10:33 - 00000000 ____D () C:\Users\Anna\AppData\Local\Google
2015-02-08 02:54 - 2011-07-27 09:59 - 00000000 ____D () C:\Program Files (x86)\Google
2015-02-08 02:36 - 2012-05-02 16:43 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-02-08 02:36 - 2011-07-27 09:59 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-08 01:08 - 2014-10-23 18:00 - 00000924 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1570079354-119620537-2907084576-1000UA.job
2015-02-07 19:58 - 2010-11-21 07:50 - 00647174 _____ () C:\Windows\system32\perfh007.dat
2015-02-07 19:58 - 2010-11-21 07:50 - 00126484 _____ () C:\Windows\system32\perfc007.dat
2015-02-07 19:58 - 2009-07-14 06:13 - 01478106 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-02-07 19:56 - 2014-10-23 18:00 - 00000902 _____ () C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1570079354-119620537-2907084576-1000Core.job
2015-02-07 18:39 - 2011-07-27 09:41 - 00000000 ____D () C:\Program Files (x86)\TOSHIBA Games
2015-02-07 18:34 - 2009-07-14 06:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-02-07 18:33 - 2011-07-27 09:41 - 00000000 ____D () C:\ProgramData\WildTangent
2015-02-07 18:22 - 2012-10-10 18:43 - 00000000 ____D () C:\Program Files (x86)\Adobe
2015-02-07 18:19 - 2014-08-03 21:29 - 00000000 ____D () C:\Users\Anna\Documents\My Digital Editions
2015-02-07 15:00 - 2014-06-28 11:27 - 00000000 ____D () C:\Program Files\Adobe
2015-02-07 14:59 - 2014-06-27 22:31 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2015-02-07 14:58 - 2014-11-13 23:24 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\Opera Software
2015-02-07 14:58 - 2014-11-13 23:24 - 00000000 ____D () C:\Users\Anna\AppData\Local\Opera Software
2015-02-07 14:58 - 2014-11-13 23:24 - 00000000 ____D () C:\Program Files (x86)\Opera
2015-02-07 14:56 - 2014-05-21 16:12 - 00000000 ____D () C:\Users\Anna\AppData\Local\AVG SafeGuard toolbar
2015-02-07 12:04 - 2012-03-20 14:30 - 00000000 ____D () C:\Users\Anna\AppData\Local\Adobe
2015-02-07 11:55 - 2013-07-04 17:22 - 00000000 ____D () C:\Users\Anna\Desktop\Uni
2015-02-05 15:36 - 2012-05-02 16:43 - 00701616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-02-05 15:36 - 2012-05-02 16:43 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-02-05 15:36 - 2012-03-18 22:36 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-02-04 19:31 - 2013-06-20 12:16 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\Spotify
2015-02-04 16:32 - 2013-06-20 12:16 - 00000000 ____D () C:\Users\Anna\AppData\Local\Spotify
2015-02-04 15:19 - 2013-03-27 13:07 - 00000000 ____D () C:\Users\Anna\Desktop\Bücher
2015-02-04 14:31 - 2011-07-27 09:59 - 00004106 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-02-04 14:31 - 2011-07-27 09:59 - 00003854 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-02-02 18:49 - 2012-06-26 14:49 - 00000000 ____D () C:\Users\Anna\Desktop\Bewerbung
2015-01-30 12:06 - 2012-03-24 20:13 - 00000000 ____D () C:\Users\Anna\Desktop\Fiot
2015-01-28 13:47 - 2012-03-27 11:42 - 00000000 ____D () C:\Users\Anna\AppData\Local\Windows Live
2015-01-27 16:09 - 2012-05-11 16:38 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2015-01-23 15:20 - 2009-07-14 04:20 - 00000000 ____D () C:\Windows\system32\NDF
2015-01-17 00:11 - 2014-02-14 19:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2015-01-17 00:11 - 2014-02-14 19:31 - 00000000 ____D () C:\Users\Anna\AppData\Roaming\DVDVideoSoft
2015-01-17 00:11 - 2014-02-14 19:31 - 00000000 ____D () C:\Program Files (x86)\DVDVideoSoft
2015-01-15 17:24 - 2009-07-14 06:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT

==================== Files in the root of some directories =======

2014-05-21 16:11 - 2014-06-02 18:36 - 0000000 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2012-05-31 21:13 - 2014-06-25 15:33 - 0013312 _____ () C:\Users\Anna\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-27 12:42 - 2014-04-27 12:42 - 0002081 _____ () C:\Users\Anna\AppData\Local\recently-used.xbel
2012-07-05 20:19 - 2012-07-05 20:19 - 0000057 _____ () C:\ProgramData\Ament.ini

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-02-04 18:29

==================== End Of Log ============================

--- --- ---

Danke für deine Hilfe!

Amazon Phishing Link angeklickt...

Plagegeister aller Art und deren Bekämpfung: Amazon Phishing Link angeklickt...

Amazon Phishing Link angeklickt...

Ähnliche Themen: Amazon Phishing Link angeklickt...