Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Websteroids & Safe Web Alliance - Status der Infektion unbekannt

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 11.12.2013, 15:12   #1
Niko91
 
Websteroids & Safe Web Alliance - Status der Infektion unbekannt - Beitrag

Websteroids & Safe Web Alliance - Status der Infektion unbekannt



Grüß euch liebes Trojaner Board,

ich hab vor ca. 1 Woche ein Problem mit "Websteroids" und "Safe Web Alliance" gehabt.

Zu Websteroids: Während der Anwedung von Firefox tauchten immer wieder kleine Raumschiffe auf dem Bildschirm auf. Websteroids war in den Addons von Firefox eingetragen, eine Deinstallation über Firefox zeigte aber keiner Wirkung - nach Neustart von Firefox stand es wieder drin.

Zu Safe Web Alliance:

Beim surfen im Web, insbesondere bei der Verwendung von google wurde ich immer wieder auf eine Seite geschickt, die sich "Safe Web Alliance" schimpfte, die mich vor den "Gefahren" der von mir gewählten Internetseiten warnte.

Außerdem öffneten sich immer wieder Werbefenster.

Ich vermute, dass ich mir die Maleware mit dem Programm "SplitCam" gezogen habe. Ich suchte damals nach einem Programm, mit dem ich meine Webcam heller und den Contrast erhöhen konnte, da stieß ich über chip.de auf SplitCam. Um aber eine aktuelle Version des Programms zu laden, nutzte ich nicht den chip.de download, sondern den von der splitCam HP. Kaspersky meldete mir bei der Ausführung der Installation ein Risiko. Da das Programm von chip.de empfohlen wurde, habe ich naiv auf "vertrauen" geklickt.

Dann fingen also die Probleme an und ich machte folgende Schritte:

Habe mit Kaspersky Pure 3.0 einen vollständigen Scan gemacht, ohne Ergebnis.

Zusätzlich habe ich mir Malewarebytes geholt, was auch zu jeder Menge Ergebnisse führte:
Code:
ATTFilter
 Malwarebytes Anti-Malware  (Test) 1.75.0.1300
www.malwarebytes.org

Datenbank Version: v2013.12.05.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16428
Niko :: QUESTMASTER3000 [Administrator]

Schutz: Aktiviert

05.12.2013 19:05:30
mbam-log-2013-12-05 (19-05-30).txt

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|E:\|)
Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM
Deaktivierte Suchlaufeinstellungen: P2P
Durchsuchte Objekte: 544851
Laufzeit: 2 Stunde(n), 19 Minute(n), 51 Sekunde(n)

Infizierte Speicherprozesse: 4
C:\ProgramData\RHelpers\ChromeHelper\ChromeHelper.exe (PUP.Optional.SearchDonkey.A) -> 5952 -> Löschen bei Neustart.
C:\ProgramData\RHelpers\FirefoxHelper\FirefoxHelper.exe (PUP.Optional.SearchDonkey.A) -> 864 -> Löschen bei Neustart.
C:\ProgramData\RHelpers\IeHelper\IeHelper.exe (PUP.Optional.SearchDonkey.A) -> 4664 -> Löschen bei Neustart.
C:\ProgramData\Updater\updater.exe (Trojan.Agent) -> 9144 -> Löschen bei Neustart.

Infizierte Speichermodule: 0
(Keine bösartigen Objekte gefunden)

Infizierte Registrierungsschlüssel: 12
HKCR\CLSID\{F63AAEDC-3602-49EF-AA45-262380A98980} (PUP.Optional.ValueApps) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\TypeLib\{C9A54DFE-051F-49C5-9FC7-ECB81DC6C69F} (PUP.Optional.ValueApps) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCR\Interface\{8050556E-4AD3-40BD-B338-7DBB0D5C10C8} (PUP.Optional.ValueApps) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F63AAEDC-3602-49EF-AA45-262380A98980} (PUP.Optional.ValueApps) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{F63AAEDC-3602-49EF-AA45-262380A98980} (PUP.Optional.ValueApps) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{F63AAEDC-3602-49EF-AA45-262380A98980} (PUP.Optional.ValueApps) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F63AAEDC-3602-49EF-AA45-262380A98980} (PUP.Optional.ValueApps) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} (PUP.Optional.SafeMonitor.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{44ED99E2-16A6-4B89-80D6-5B21CF42E78B} (PUP.Optional.SafeMonitor.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\Systweak\RegClean Pro (PUP.Optional.RegCleanerPro.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Registrierungswerte: 4
HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Updater (Trojan.Agent) -> Daten: C:\ProgramData\Updater\Updater.exe -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|Updater (Trojan.Agent) -> Daten: C:\ProgramData\Updater\Updater.exe -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKCU\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Daten: {5C65A93A-1057-11E1-9795-6C626D05B0FE} -> Erfolgreich gelöscht und in Quarantäne gestellt.
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Daten: {5C65A93A-1057-11E1-9795-6C626D05B0FE} -> Erfolgreich gelöscht und in Quarantäne gestellt.

Infizierte Dateiobjekte der Registrierung: 0
(Keine bösartigen Objekte gefunden)

Infizierte Verzeichnisse: 8
C:\Users\Niko\AppData\Roaming\OpenCandy (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Roaming\OpenCandy\01708241D6364ED18B5EE832B934F19B (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Roaming\OpenCandy\98D435569D5645809B3BA6A582E1489A (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Roaming\OpenCandy\B80E78FA4809483D89860B59BC5DD0F6 (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Roaming\OpenCandy\OpenCandy_98D435569D5645809B3BA6A582E1489A (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\RHelpers\ChromeHelper (PUP.Optional.Searchagent) -> Löschen bei Neustart.
C:\ProgramData\RHelpers\FirefoxHelper (PUP.Optional.Searchagent) -> Löschen bei Neustart.
C:\ProgramData\RHelpers\IeHelper (PUP.Optional.Searchagent) -> Löschen bei Neustart.

Infizierte Dateien: 17
C:\ProgramData\RHelpers\ChromeHelper\ChromeHelper.exe (PUP.Optional.SearchDonkey.A) -> Löschen bei Neustart.
C:\ProgramData\RHelpers\FirefoxHelper\FirefoxHelper.exe (PUP.Optional.SearchDonkey.A) -> Löschen bei Neustart.
C:\ProgramData\RHelpers\IeHelper\IeHelper.exe (PUP.Optional.SearchDonkey.A) -> Löschen bei Neustart.
C:\Users\Niko\AppData\Roaming\ValueApps\IE\MonPrx.dll (PUP.Optional.ValueApps) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\877WGCL5\sp-downloader[1].exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWOAVKPB\checktbexist[1].exe (PUP.Optional.Conduit) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\JWOAVKPB\SPSetup[1].exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PJ80OHB9\mamstub[1].exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PJ80OHB9\Setup_DE[1].exe (PUP.Optional.SearchDonkey.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\Z8X9CVOJ\spstub[1].exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\Downloads\privitize_secure.exe (PUP.Optional.Topmedia) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\Downloads\SplitCamSetup.exe (PUP.Optional.Conduit.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Program Files (x86)\Mozilla Firefox\plugins\npmieze.dll (PUP.LoadTubes) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\ProgramData\Updater\updater.exe (Trojan.Agent) -> Löschen bei Neustart.
C:\Users\Niko\AppData\Roaming\OpenCandy\01708241D6364ED18B5EE832B934F19B\speedupmypcDE.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Roaming\OpenCandy\98D435569D5645809B3BA6A582E1489A\TuneUpUtilities2012_de-DE_1002174.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.
C:\Users\Niko\AppData\Roaming\OpenCandy\B80E78FA4809483D89860B59BC5DD0F6\driverscannerDE.exe (PUP.Optional.OpenCandy) -> Erfolgreich gelöscht und in Quarantäne gestellt.

(Ende)
         
Die sichtbaren Störfaktoren sind seitdem behoben, ein zweiter Scan von Malewarebytes findet keine Gefahren mehr.

Wie kann ich nun sicher gehen, dass tatsächlich alle Gefahren behoben sind und vor allem, ob meine persönlichen Daten sicher sind?

FRST und GMER folgen im nächsten Post.

Alt 11.12.2013, 15:53   #2
Niko91
 
Websteroids & Safe Web Alliance - Status der Infektion unbekannt - Standard

Websteroids & Safe Web Alliance - Status der Infektion unbekannt



defogger_disable.log
Code:
ATTFilter
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 13:45 on 11/12/2013 (Niko)

Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
HKCU:DAEMON Tools Lite -> Removed

Checking for services/drivers...


-=E.O.F=-
         
FRST.txt


FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 10-12-2013 01
Ran by Niko (administrator) on QUESTMASTER3000 on 11-12-2013 13:53:16
Running from C:\Users\Niko\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe
(Infowatch) C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(LULU Software Limited) C:\Program Files (x86)\Soda PDF 5\HelperService.exe
(LULU Software Limited) C:\Program Files (x86)\Soda PDF 5\ConversionService.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Logitech Inc.) C:\Program Files\Common Files\Logitech\G-series Software\LGDCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
() C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\klwtblfs.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\WINWORD.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe
(Adobe Systems, Inc.) C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_9_900_152.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Launch LGDCore] - C:\Program Files\Common Files\Logitech\G-series Software\LGDCore.exe [1783296 2006-07-23] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13374568 2011-12-13] (Realtek Semiconductor)
HKCU\...\Run: [] - [x]
MountPoints2: G - G:\pushinst.exe
MountPoints2: {1f2ae42a-6c2a-11e1-b0a8-6c626d05b0fe} - H:\Startme.exe
MountPoints2: {379e72df-efc9-11df-8b4a-bc0543012beb} - G:\autorun.exe
MountPoints2: {5a9cca7b-9dd3-11e0-84c8-6c626d05b0fe} - G:\AUTORUN.EXE
MountPoints2: {5cad3377-32e1-11e0-b4ea-bc0543012beb} - G:\Setup.exe
MountPoints2: {6aab9b84-3ad2-11e1-9c2a-6c626d05b0fe} - J:\AUTORUN.EXE
MountPoints2: {9a03c870-d632-11df-9e2c-806e6f6e6963} - F:\aoesetup.exe /autorun
MountPoints2: {a4e48009-2754-11e1-acab-6c626d05b0fe} - G:\AUTORUN.EXE
MountPoints2: {d76988f4-d636-11df-8edb-6c626d05b0fe} - H:\pushinst.exe
MountPoints2: {f77b1307-55ad-11e3-b52c-6c626d05b0fe} - G:\AUTORUN.EXE
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2010-01-22] (NEC Electronics Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [hpqSRMon] - C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [356128 2013-12-04] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
Startup: C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://start.icq.com/
HKCU\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - DefaultScope {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKCU - {014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} URL = hxxp://search.conduit.com/Results.aspx?ctid=CT3320188&octid=EB_ORIGINAL_CTID&SearchSource=58&CUI=&UM=2&UP=SPBC99A23D-B5CB-433E-9B0D-AC299B4025F0&q={searchTerms}&SSPV=
SearchScopes: HKCU - {6552C7DD-90A4-4387-B795-F8F96747DE19} URL = hxxp://search.icq.com/search/results.php?q={searchTerms}&ch_id=osd
BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Kaspersky Passsword Manager Toolbar - {215BA832-75A3-426E-A4FC-7C5B58CE6A10} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\spIEBho.dll (Kaspersky Lab)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Soda PDF 5 IE Helper - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Program Files (x86)\Soda PDF 5\PDFIEHelper.dll (LULU Software Limited)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} -  No File
Toolbar: HKLM-x32 - No Name - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} -  No File
Toolbar: HKLM-x32 - Soda PDF 5 IE Toolbar - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Program Files (x86)\Soda PDF 5\PDFIEPlugin.dll (LULU Software Limited)
Toolbar: HKLM-x32 - Kaspersky Passsword Manager Toolbar - {215BA832-75A3-426E-A4FC-7C5B58CE6A10} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\spIEBho.dll (Kaspersky Lab)
Toolbar: HKCU - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\C:\ProgramData\Kaspersky Lab\SafeBrowser\S-1-5-21-1216835461-190305365-3235199106-1000\FireFox
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\foxsearch.src
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: QuickStores-Toolbar - C:\Program Files (x86)\Mozilla Firefox\extensions\quickstores@quickstores.de
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [{ACAA314B-EEBA-48e4-AD47-84E31C44796C}] - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\ff\
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKLM-x32\...\Firefox\Extensions: [FFSodaPDF5Converter@sodapdf.com] - C:\Program Files (x86)\Soda PDF 5\FFSoda5Ext
FF Extension: Soda PDF 5 Converter For Firefox - C:\Program Files (x86)\Soda PDF 5\FFSoda5Ext
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\url_advisor@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com
FF HKLM-x32\...\Thunderbird\Extensions: [te_9.0@nokia.com] - C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0
FF Extension: Thunderbird Address Book Synchronisation Extension - C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome: 
=======
CHR HomePage: hxxp://start.icq.com/
CHR DefaultSearchKeyword: google.de
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Niko\AppData\Local\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Niko\AppData\Local\Google\Chrome\Application\29.0.1547.66\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Niko\AppData\Local\Google\Chrome\Application\29.0.1547.66\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.4.6_0\npcoplgn.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Shockwave for Director) - C:\Program Files (x86)\Mozilla Firefox\plugins\np32dsw.dll (Macromedia, Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Gutscheinmieze-Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmieze.dll No File
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Google Update) - C:\Users\Niko\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0
CHR Extension: (Safe Money) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\13.0.1.4190_0
CHR Extension: (Content Blocker) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0
CHR Extension: (Virtual Keyboard) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4292_0
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.1_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Anti-Banner) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\13.0.1.4190_0
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\urladvisor.crx
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\online_banking_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\content_blocker_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\virtkbd.crx
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\ab.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [356128 2013-12-04] (Kaspersky Lab ZAO)
R2 CSObjectsSrv; C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [819040 2012-12-21] (Infowatch)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75064 2011-01-08] ()
R2 Soda PDF 5 Helper Service; C:\Program Files (x86)\Soda PDF 5\HelperService.exe [1097544 2013-06-12] (LULU Software Limited)
R2 Soda PDF 5 Service; C:\Program Files (x86)\Soda PDF 5\ConversionService.exe [794440 2013-06-12] (LULU Software Limited)

==================== Drivers (Whitelisted) ====================

R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [84536 2011-06-02] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys [66616 2011-06-02] (Infowatch)
R3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [304784 2010-03-23] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-25] (Disc Soft Ltd)
S3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [552704 2009-03-20] (AVM GmbH)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [7717984 2013-12-04] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [626272 2013-12-04] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [28504 2012-08-02] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2013-12-04] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-12-04] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54368 2013-12-04] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178448 2013-12-04] (Kaspersky Lab ZAO)
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [115240 2008-05-16] (MCCI Corporation)
S3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [23552 2013-04-24] (Windows (R) Win 7 DDK provider)
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 VMC31D; C:\Windows\System32\Drivers\VMC31D.sys [179968 2008-04-09] (Vimicro Corporation)
S3 AODDriver; \??\C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver.sys [x]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [90208 2013-12-04] (Kaspersky Lab ZAO)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-11 13:53 - 2013-12-11 13:53 - 00024414 _____ C:\Users\Niko\Downloads\FRST.txt
2013-12-11 13:53 - 2013-12-11 13:53 - 00000000 ____D C:\FRST
2013-12-11 13:52 - 2013-12-11 13:52 - 01928212 _____ (Farbar) C:\Users\Niko\Downloads\FRST64.exe
2013-12-11 13:45 - 2013-12-11 13:45 - 00050477 _____ C:\Users\Niko\Downloads\Defogger.exe
2013-12-11 13:45 - 2013-12-11 13:45 - 00000540 _____ C:\Users\Niko\Downloads\defogger_disable.log
2013-12-11 13:45 - 2013-12-11 13:45 - 00000168 _____ C:\Users\Niko\defogger_reenable
2013-12-11 13:02 - 2013-12-11 13:02 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-05 21:49 - 2013-12-05 21:49 - 00000000 ____D C:\ProgramData\Websteroids
2013-12-05 20:25 - 2013-12-05 20:25 - 00000000 ____D C:\Users\Niko\Desktop\avz4
2013-12-05 19:04 - 2013-12-05 19:04 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-05 19:04 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-05 19:03 - 2013-12-05 19:03 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Niko\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-05 17:38 - 2013-04-24 09:45 - 00810496 _____ C:\Windows\SysWOW64\xvidcore.dll
2013-12-05 17:38 - 2013-04-24 09:45 - 00183808 _____ C:\Windows\SysWOW64\xvidvfw.dll
2013-12-05 17:38 - 2013-04-24 09:45 - 00080896 _____ C:\Windows\SysWOW64\ff_vfw.dll
2013-12-05 17:38 - 2013-04-24 09:45 - 00000590 _____ C:\Windows\SysWOW64\ff_vfw.dll.manifest
2013-12-05 17:36 - 2013-12-05 23:41 - 00000000 ____D C:\ProgramData\Updater
2013-12-05 17:36 - 2013-12-05 23:41 - 00000000 ____D C:\ProgramData\RHelpers
2013-12-05 17:36 - 2013-12-05 17:37 - 74022496 _____ (SplitCam Co.) C:\Users\Niko\Downloads\SplitCamSetup1.exe
2013-12-05 17:19 - 2013-12-09 16:57 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-12-05 17:19 - 2013-12-05 17:20 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Tlapia
2013-12-05 17:18 - 2013-12-05 17:19 - 04754256 _____ (Tlapia) C:\Users\Niko\Downloads\samsung-syncmaster-2263uw-.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02241694 _____ (Megaify Software                                            ) C:\Users\Niko\Downloads\driver_setup.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02035048 _____ (Easeware                                                    ) C:\Users\Niko\Downloads\DriversDownloader_for_2063W_2263_Driver_Jan2009.exe
2013-12-04 14:43 - 2012-10-11 04:08 - 00044928 _____ (ManyCam LLC) C:\Windows\system32\Drivers\mcvidrv_x64.sys
2013-12-04 14:38 - 2013-12-04 14:38 - 10799192 _____ (ManyCam LLC) C:\Users\Niko\Downloads\ManyCamSetup.exe
2013-12-04 12:00 - 2013-12-04 12:00 - 00002216 _____ C:\Users\Niko\Desktop\Sicherer Zahlungsverkehr.lnk
2013-12-04 12:00 - 2013-12-04 11:59 - 00001078 _____ C:\Users\Public\Desktop\Kaspersky PURE 3.0.lnk
2013-12-04 11:59 - 2013-12-11 12:40 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-04 11:59 - 2013-12-04 12:22 - 00626272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-12-04 11:59 - 2013-12-04 12:22 - 00090208 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2013-12-04 11:59 - 2013-12-04 12:22 - 00000000 ____D C:\Windows\ELAMBKUP
2013-12-04 11:59 - 2013-12-04 11:59 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-12-04 11:59 - 2012-07-11 17:09 - 00064856 _____ (Kaspersky Lab) C:\Windows\system32\klfphc.dll
2013-12-04 11:59 - 2011-06-02 14:39 - 00084536 _____ (Infowatch) C:\Windows\system32\Drivers\CSCrySec.sys
2013-12-04 11:59 - 2011-06-02 14:39 - 00066616 _____ (Infowatch) C:\Windows\system32\Drivers\CSVirtualDiskDrv.sys
2013-12-03 19:42 - 2013-12-03 19:44 - 00299284 _____ C:\Users\Niko\Downloads\kavremvr 2013-12-03 19-42-28 (pid 4816).log
2013-12-03 19:42 - 2013-12-03 19:42 - 05876192 _____ (Kaspersky Lab ZAO) C:\Users\Niko\Downloads\kavremover.exe
2013-12-02 21:39 - 2013-12-02 21:39 - 00000569 _____ C:\Users\Public\Desktop\Age of Empires II.lnk
2013-12-02 18:24 - 2013-12-02 19:55 - 188740896 _____ (Kaspersky Lab) C:\Users\Niko\Downloads\pure13.0.2.558DE_4340.exe
2013-12-02 15:30 - 2013-12-02 15:30 - 00002934 _____ C:\Windows\System32\Tasks\{B56D80DE-2BF5-4431-AE7D-EF6AC461BA36}
2013-11-29 20:13 - 2013-11-29 20:13 - 00002938 _____ C:\Windows\System32\Tasks\{8B0B2FA5-AECC-4577-BBE1-F36F579EC056}
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{9D45BAF4-090B-416A-BEAE-58E186B7AF81}
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{6E25A4CC-0165-4D47-BC2D-737AE62E5A05}
2013-11-26 22:08 - 2013-11-26 22:08 - 00002956 _____ C:\Windows\System32\Tasks\{39C61096-0393-49FE-9103-79A8C49767C3}
2013-11-25 23:55 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-25 23:52 - 2013-11-25 23:52 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-25 23:52 - 2013-11-25 23:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-25 23:52 - 2013-11-25 23:52 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-25 23:52 - 2013-11-25 23:52 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-25 23:52 - 2013-11-25 23:52 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-25 23:50 - 2013-11-25 23:55 - 00009768 _____ C:\Windows\IE11_main.log
2013-11-25 18:30 - 2013-11-25 18:30 - 00002924 _____ C:\Windows\System32\Tasks\{7D743872-4514-4F70-8963-CD993D7B3DA9}
2013-11-25 18:17 - 2013-11-25 18:26 - 00000000 ____D C:\Emergency
2013-11-25 14:12 - 2013-11-25 18:14 - 538612890 _____ C:\Users\Niko\Downloads\em1.7z
2013-11-25 13:43 - 2013-11-25 14:12 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.001
2013-11-25 13:12 - 2013-11-25 13:42 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.002
2013-11-25 12:58 - 2013-11-25 13:11 - 119182490 _____ C:\Users\Niko\Downloads\em1.7z.003
2013-11-25 10:36 - 2013-11-25 10:36 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-25 10:36 - 2013-11-25 10:36 - 00001950 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-25 10:36 - 2013-11-25 10:36 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-25 10:31 - 2013-11-25 10:31 - 00002924 _____ C:\Windows\System32\Tasks\{5ACEA32C-AE59-480F-ABC6-FBDB0BCA4D14}
2013-11-23 20:14 - 2013-11-23 20:17 - 160691006 _____ (soldnersecretwars.de                                        ) C:\Users\Niko\Downloads\SSWLangPack_German_v11.exe
2013-11-23 20:13 - 2013-11-23 20:20 - 545943206 _____ (soldnersecretwars.de                                        ) C:\Users\Niko\Downloads\SSW_CE_33960_Installer.exe
2013-11-20 13:39 - 2013-11-20 13:41 - 00000000 ____D C:\populous
2013-11-19 21:57 - 2013-11-19 21:57 - 00173578 _____ C:\Users\Niko\Downloads\populous.zip
2013-11-17 11:36 - 2013-11-17 11:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-14 18:26 - 2013-10-05 21:25 - 01474048 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2013-11-14 18:26 - 2013-10-05 20:57 - 01168384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2013-11-14 18:26 - 2013-09-28 02:09 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2013-11-14 18:25 - 2013-10-12 03:30 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2013-11-14 18:25 - 2013-10-12 03:29 - 00859648 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2013-11-14 18:25 - 2013-10-12 03:29 - 00324096 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2013-11-14 18:25 - 2013-10-12 03:03 - 00656896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2013-11-14 18:25 - 2013-10-12 03:01 - 00216576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2013-11-14 18:25 - 2013-10-04 03:28 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\SmartcardCredentialProvider.dll
2013-11-14 18:25 - 2013-10-04 03:25 - 00197120 _____ (Microsoft Corporation) C:\Windows\system32\credui.dll
2013-11-14 18:25 - 2013-10-04 03:24 - 01930752 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2013-11-14 18:25 - 2013-10-04 02:58 - 00152576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SmartcardCredentialProvider.dll
2013-11-14 18:25 - 2013-10-04 02:56 - 01796096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\authui.dll
2013-11-14 18:25 - 2013-10-04 02:56 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credui.dll
2013-11-14 18:25 - 2013-10-03 03:23 - 00404480 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2013-11-14 18:25 - 2013-10-03 03:00 - 00311808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2013-11-14 18:25 - 2013-09-25 03:26 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2013-11-14 18:25 - 2013-09-25 03:26 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2013-11-14 18:25 - 2013-09-25 03:23 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2013-11-14 18:25 - 2013-09-25 03:23 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2013-11-14 18:25 - 2013-09-25 03:23 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2013-11-14 18:25 - 2013-09-25 03:22 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2013-11-14 18:25 - 2013-09-25 03:21 - 01447936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2013-11-14 18:25 - 2013-09-25 03:21 - 00307200 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2013-11-14 18:25 - 2013-09-25 02:58 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2013-11-14 18:25 - 2013-09-25 02:57 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2013-11-14 18:25 - 2013-09-25 02:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2013-11-14 18:25 - 2013-09-25 02:56 - 00220160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2013-11-14 18:25 - 2013-09-25 02:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2013-11-14 18:25 - 2013-07-04 13:18 - 00458712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2013-11-13 18:26 - 2013-11-13 18:26 - 00000963 _____ C:\Users\Public\Desktop\Soda PDF 5.lnk
2013-11-13 18:25 - 2013-11-13 18:25 - 00000000 ____D C:\Users\Niko\Documents\Soda PDF 5 Files
2013-11-13 18:25 - 2013-11-13 18:25 - 00000000 ____D C:\Program Files (x86)\Soda PDF 5
2013-11-13 18:24 - 2013-11-13 18:27 - 00000000 ____D C:\Users\Niko\AppData\Roaming\PDF Software
2013-11-13 18:23 - 2013-11-13 18:23 - 07104648 _____ (LULU Software) C:\Users\Niko\Downloads\Soda_PDF_5_Installer.exe
2013-11-13 18:06 - 2013-11-13 18:21 - 00000000 ____D C:\Users\Niko\AppData\Roaming\WordToPDF
2013-11-13 18:06 - 2013-11-13 18:06 - 01594813 _____ (Mario Noack                                                 ) C:\Users\Niko\Downloads\SetupWordToPDF_237_v2.9.exe
2013-11-13 18:06 - 2013-11-13 18:06 - 00001019 _____ C:\Users\Niko\Desktop\WordToPDF.lnk
2013-11-13 18:06 - 2013-11-13 18:06 - 00000000 ____D C:\Program Files (x86)\WordToPDF

==================== One Month Modified Files and Folders =======

2013-12-11 13:53 - 2013-12-11 13:53 - 00024414 _____ C:\Users\Niko\Downloads\FRST.txt
2013-12-11 13:53 - 2013-12-11 13:53 - 00000000 ____D C:\FRST
2013-12-11 13:52 - 2013-12-11 13:52 - 01928212 _____ (Farbar) C:\Users\Niko\Downloads\FRST64.exe
2013-12-11 13:51 - 2012-04-01 18:41 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 13:51 - 2012-04-01 18:41 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 13:51 - 2012-04-01 18:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-11 13:51 - 2011-06-01 09:06 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 13:45 - 2013-12-11 13:45 - 00050477 _____ C:\Users\Niko\Downloads\Defogger.exe
2013-12-11 13:45 - 2013-12-11 13:45 - 00000540 _____ C:\Users\Niko\Downloads\defogger_disable.log
2013-12-11 13:45 - 2013-12-11 13:45 - 00000168 _____ C:\Users\Niko\defogger_reenable
2013-12-11 13:45 - 2010-10-12 20:05 - 00000000 ____D C:\Users\Niko
2013-12-11 13:38 - 2010-10-13 19:31 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Skype
2013-12-11 13:04 - 2010-10-12 20:50 - 00000000 ____D C:\Users\Niko\AppData\Local\Adobe
2013-12-11 13:02 - 2013-12-11 13:02 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-11 13:02 - 2010-10-12 20:17 - 00000000 ____D C:\ProgramData\Adobe
2013-12-11 13:02 - 2010-10-12 20:17 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-11 12:40 - 2013-12-04 11:59 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-11 12:32 - 2009-07-14 05:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-11 12:32 - 2009-07-14 05:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-11 12:29 - 2010-10-12 20:00 - 01159390 _____ C:\Windows\WindowsUpdate.log
2013-12-11 12:23 - 2012-05-23 17:39 - 00091876 _____ C:\Windows\setupact.log
2013-12-11 12:23 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-09 16:57 - 2013-12-05 17:19 - 00000000 __SHD C:\Windows\SysWOW64\AI_RecycleBin
2013-12-08 15:43 - 2012-04-15 19:12 - 00000000 ____D C:\Users\Niko\Desktop\Fakultät 10
2013-12-07 11:48 - 2009-07-14 18:58 - 00699416 _____ C:\Windows\system32\perfh007.dat
2013-12-07 11:48 - 2009-07-14 18:58 - 00149556 _____ C:\Windows\system32\perfc007.dat
2013-12-07 11:48 - 2009-07-14 06:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-05 23:56 - 2012-05-23 17:39 - 00844894 _____ C:\Windows\PFRO.log
2013-12-05 23:41 - 2013-12-05 17:36 - 00000000 ____D C:\ProgramData\Updater
2013-12-05 23:41 - 2013-12-05 17:36 - 00000000 ____D C:\ProgramData\RHelpers
2013-12-05 21:49 - 2013-12-05 21:49 - 00000000 ____D C:\ProgramData\Websteroids
2013-12-05 20:57 - 2011-11-03 15:21 - 00000000 ____D C:\Users\Niko\Desktop\Bewerbungszeug
2013-12-05 20:25 - 2013-12-05 20:25 - 00000000 ____D C:\Users\Niko\Desktop\avz4
2013-12-05 19:04 - 2013-12-05 19:04 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-05 19:03 - 2013-12-05 19:03 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Niko\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-05 17:37 - 2013-12-05 17:36 - 74022496 _____ (SplitCam Co.) C:\Users\Niko\Downloads\SplitCamSetup1.exe
2013-12-05 17:37 - 2010-10-12 20:42 - 00000000 ____D C:\Users\Niko\AppData\Local\CrashDumps
2013-12-05 17:20 - 2013-12-05 17:19 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Tlapia
2013-12-05 17:19 - 2013-12-05 17:18 - 04754256 _____ (Tlapia) C:\Users\Niko\Downloads\samsung-syncmaster-2263uw-.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02241694 _____ (Megaify Software                                            ) C:\Users\Niko\Downloads\driver_setup.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02035048 _____ (Easeware                                                    ) C:\Users\Niko\Downloads\DriversDownloader_for_2063W_2263_Driver_Jan2009.exe
2013-12-04 14:38 - 2013-12-04 14:38 - 10799192 _____ (ManyCam LLC) C:\Users\Niko\Downloads\ManyCamSetup.exe
2013-12-04 12:22 - 2013-12-04 11:59 - 00626272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-12-04 12:22 - 2013-12-04 11:59 - 00090208 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2013-12-04 12:22 - 2013-12-04 11:59 - 00000000 ____D C:\Windows\ELAMBKUP
2013-12-04 12:22 - 2012-10-18 14:50 - 00054368 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kltdi.sys
2013-12-04 12:22 - 2012-09-03 18:23 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klmouflt.sys
2013-12-04 12:22 - 2012-09-03 17:57 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys
2013-12-04 12:22 - 2012-08-13 16:49 - 00178448 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2013-12-04 12:22 - 2012-06-19 17:28 - 07717984 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2013-12-04 12:00 - 2013-12-04 12:00 - 00002216 _____ C:\Users\Niko\Desktop\Sicherer Zahlungsverkehr.lnk
2013-12-04 11:59 - 2013-12-04 12:00 - 00001078 _____ C:\Users\Public\Desktop\Kaspersky PURE 3.0.lnk
2013-12-04 11:59 - 2013-12-04 11:59 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-12-04 11:20 - 2010-10-13 19:29 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-04 11:20 - 2010-10-13 19:29 - 00000000 ____D C:\ProgramData\Skype
2013-12-03 20:19 - 2010-10-12 20:05 - 00000000 ____D C:\Users\Niko\AppData\Local\VirtualStore
2013-12-03 19:44 - 2013-12-03 19:42 - 00299284 _____ C:\Users\Niko\Downloads\kavremvr 2013-12-03 19-42-28 (pid 4816).log
2013-12-03 19:42 - 2013-12-03 19:42 - 05876192 _____ (Kaspersky Lab ZAO) C:\Users\Niko\Downloads\kavremover.exe
2013-12-03 18:29 - 2010-10-12 20:21 - 00098864 _____ C:\Users\Niko\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-03 18:29 - 2009-07-14 05:45 - 00382984 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-02 21:39 - 2013-12-02 21:39 - 00000569 _____ C:\Users\Public\Desktop\Age of Empires II.lnk
2013-12-02 19:55 - 2013-12-02 18:24 - 188740896 _____ (Kaspersky Lab) C:\Users\Niko\Downloads\pure13.0.2.558DE_4340.exe
2013-12-02 18:52 - 2010-10-14 17:51 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-12-02 15:30 - 2013-12-02 15:30 - 00002934 _____ C:\Windows\System32\Tasks\{B56D80DE-2BF5-4431-AE7D-EF6AC461BA36}
2013-11-30 10:59 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-29 20:13 - 2013-11-29 20:13 - 00002938 _____ C:\Windows\System32\Tasks\{8B0B2FA5-AECC-4577-BBE1-F36F579EC056}
2013-11-27 14:20 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{9D45BAF4-090B-416A-BEAE-58E186B7AF81}
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{6E25A4CC-0165-4D47-BC2D-737AE62E5A05}
2013-11-26 22:08 - 2013-11-26 22:08 - 00002956 _____ C:\Windows\System32\Tasks\{39C61096-0393-49FE-9103-79A8C49767C3}
2013-11-26 17:49 - 2010-10-12 20:06 - 00001421 _____ C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-26 17:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-25 23:55 - 2013-11-25 23:50 - 00009768 _____ C:\Windows\IE11_main.log
2013-11-25 23:52 - 2013-11-25 23:52 - 23212032 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 17142784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 12995584 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 11220992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 05765120 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 04240384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-25 23:52 - 2013-11-25 23:52 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-25 23:52 - 2013-11-25 23:52 - 02332160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 02166272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01993728 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-25 23:52 - 2013-11-25 23:52 - 01926656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-25 23:52 - 2013-11-25 23:52 - 01818112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01394176 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01156608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-25 23:50 - 2012-04-29 12:34 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-11-25 18:30 - 2013-11-25 18:30 - 00002924 _____ C:\Windows\System32\Tasks\{7D743872-4514-4F70-8963-CD993D7B3DA9}
2013-11-25 18:26 - 2013-11-25 18:17 - 00000000 ____D C:\Emergency
2013-11-25 18:14 - 2013-11-25 14:12 - 538612890 _____ C:\Users\Niko\Downloads\em1.7z
2013-11-25 14:12 - 2013-11-25 13:43 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.001
2013-11-25 13:42 - 2013-11-25 13:12 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.002
2013-11-25 13:11 - 2013-11-25 12:58 - 119182490 _____ C:\Users\Niko\Downloads\em1.7z.003
2013-11-25 10:46 - 2011-01-08 17:16 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-11-25 10:37 - 2011-01-08 17:16 - 00000000 ____D C:\Users\Niko\AppData\Roaming\DAEMON Tools Lite
2013-11-25 10:36 - 2013-11-25 10:36 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-25 10:36 - 2013-11-25 10:36 - 00001950 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-25 10:36 - 2013-11-25 10:36 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-25 10:31 - 2013-11-25 10:31 - 00002924 _____ C:\Windows\System32\Tasks\{5ACEA32C-AE59-480F-ABC6-FBDB0BCA4D14}
2013-11-23 20:34 - 2011-11-21 23:19 - 00000000 ____D C:\Program Files (x86)\SoldnerSecretWars
2013-11-23 20:26 - 2012-01-25 22:45 - 00000000 ___RD C:\Users\Niko\Desktop\Spiele
2013-11-23 20:20 - 2013-11-23 20:13 - 545943206 _____ (soldnersecretwars.de                                        ) C:\Users\Niko\Downloads\SSW_CE_33960_Installer.exe
2013-11-23 20:17 - 2013-11-23 20:14 - 160691006 _____ (soldnersecretwars.de                                        ) C:\Users\Niko\Downloads\SSWLangPack_German_v11.exe
2013-11-23 00:28 - 2010-10-12 20:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-20 18:30 - 2012-05-10 15:12 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2013-11-20 13:41 - 2013-11-20 13:39 - 00000000 ____D C:\populous
2013-11-20 10:34 - 2011-02-05 15:59 - 00000000 ____D C:\PopulousTB
2013-11-19 21:57 - 2013-11-19 21:57 - 00173578 _____ C:\Users\Niko\Downloads\populous.zip
2013-11-17 16:52 - 2012-05-04 11:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-11-17 11:36 - 2013-11-17 11:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-11-16 17:41 - 2011-04-10 14:41 - 00000000 ____D C:\Users\Niko\AppData\Roaming\vlc
2013-11-14 19:08 - 2013-08-15 10:15 - 00000000 ____D C:\Windows\system32\MRT
2013-11-14 19:04 - 2010-10-13 22:11 - 82896128 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-11-13 19:10 - 2010-11-22 16:12 - 00000000 ____D C:\Users\Niko\Documents\Eigene Scans
2013-11-13 18:27 - 2013-11-13 18:24 - 00000000 ____D C:\Users\Niko\AppData\Roaming\PDF Software
2013-11-13 18:26 - 2013-11-13 18:26 - 00000963 _____ C:\Users\Public\Desktop\Soda PDF 5.lnk
2013-11-13 18:25 - 2013-11-13 18:25 - 00000000 ____D C:\Users\Niko\Documents\Soda PDF 5 Files
2013-11-13 18:25 - 2013-11-13 18:25 - 00000000 ____D C:\Program Files (x86)\Soda PDF 5
2013-11-13 18:23 - 2013-11-13 18:23 - 07104648 _____ (LULU Software) C:\Users\Niko\Downloads\Soda_PDF_5_Installer.exe
2013-11-13 18:21 - 2013-11-13 18:06 - 00000000 ____D C:\Users\Niko\AppData\Roaming\WordToPDF
2013-11-13 18:06 - 2013-11-13 18:06 - 01594813 _____ (Mario Noack                                                 ) C:\Users\Niko\Downloads\SetupWordToPDF_237_v2.9.exe
2013-11-13 18:06 - 2013-11-13 18:06 - 00001019 _____ C:\Users\Niko\Desktop\WordToPDF.lnk
2013-11-13 18:06 - 2013-11-13 18:06 - 00000000 ____D C:\Program Files (x86)\WordToPDF
2013-11-13 15:27 - 2011-08-02 17:43 - 00000000 ____D C:\Users\Niko\Documents\Anno 1404
2013-11-13 15:27 - 2011-08-02 17:33 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Ubisoft

Some content of TEMP:
====================
C:\Users\Niko\AppData\Local\Temp\pid16.dll
C:\Users\Niko\AppData\Local\Temp\pid32.dll


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-10 09:30

==================== End Of Log ============================
         
--- --- ---

--- --- ---


Addition.txt
Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 10-12-2013 01
Ran by Niko at 2013-12-11 13:53:53
Running from C:\Users\Niko\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AV: Kaspersky PURE 3.0 (Enabled - Up to date) {C3113FBF-4BCB-4461-D78D-6EDFEC9593E5}
AS: Kaspersky PURE 3.0 (Enabled - Up to date) {7870DE5B-6DF1-4BEF-ED3D-55AD9712D958}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky PURE 3.0 (Enabled) {FB2ABE9A-01A4-4539-FCD2-C7EA1246D49E}

==================== Installed Programs ======================

64 Bit HP CIO Components Installer (Version: 7.2.8)
Acrobat.com (x32 Version: 2.3.0)
Acrobat.com (x32 Version: 2.3.0.0)
Adobe AIR (x32 Version: 1.5.3.9130)
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170)
Adobe Reader XI (11.0.04) - Deutsch (x32 Version: 11.0.04)
AMD Drag and Drop Transcoding (Version: 2.00.0000)
AMD USB Filter Driver (x32 Version: 1.0.15.94)
Apple Mobile Device Support (Version: 4.0.0.97)
applicationupdater (HKCU)
ATI AVIVO64 Codecs (Version: 11.6.0.50527)
ATI Catalyst Install Manager (Version: 3.0.778.0)
BufferChm (x32 Version: 130.0.331.000)
C6300 (x32 Version: 130.0.365.000)
Canon Utilities Digital Photo Professional 3.11 (x32 Version: 3.11.30.3)
Canon Utilities EOS Sample Music (x32 Version: 1.0.1.1)
Canon Utilities EOS Utility (x32 Version: 2.11.3.0)
Canon Utilities ImageBrowser EX (x32 Version: 1.2.1.13)
Canon Utilities PhotoStitch (x32 Version: 3.1.23.47)
Canon Utilities Picture Style Editor (x32 Version: 1.10.2.0)
Catalyst Control Center - Branding (x32 Version: 1.00.0000)
Catalyst Control Center Graphics Previews Common (x32 Version: 2010.0527.1242.20909)
Catalyst Control Center Graphics Previews Vista (x32 Version: 2010.0527.1242.20909)
Catalyst Control Center InstallProxy (x32 Version: 2010.0527.1242.20909)
Catalyst Control Center Localization All (x32 Version: 2010.0527.1242.20909)
CCC Help Chinese Standard (x32 Version: 2010.0527.1241.20909)
CCC Help Chinese Traditional (x32 Version: 2010.0527.1241.20909)
CCC Help Czech (x32 Version: 2010.0527.1241.20909)
CCC Help Danish (x32 Version: 2010.0527.1241.20909)
CCC Help Dutch (x32 Version: 2010.0527.1241.20909)
CCC Help English (x32 Version: 2010.0527.1241.20909)
CCC Help Finnish (x32 Version: 2010.0527.1241.20909)
CCC Help French (x32 Version: 2010.0527.1241.20909)
CCC Help German (x32 Version: 2010.0527.1241.20909)
CCC Help Greek (x32 Version: 2010.0527.1241.20909)
CCC Help Hungarian (x32 Version: 2010.0527.1241.20909)
CCC Help Italian (x32 Version: 2010.0527.1241.20909)
CCC Help Japanese (x32 Version: 2010.0527.1241.20909)
CCC Help Korean (x32 Version: 2010.0527.1241.20909)
CCC Help Norwegian (x32 Version: 2010.0527.1241.20909)
CCC Help Polish (x32 Version: 2010.0527.1241.20909)
CCC Help Portuguese (x32 Version: 2010.0527.1241.20909)
CCC Help Russian (x32 Version: 2010.0527.1241.20909)
CCC Help Spanish (x32 Version: 2010.0527.1241.20909)
CCC Help Swedish (x32 Version: 2010.0527.1241.20909)
CCC Help Thai (x32 Version: 2010.0527.1241.20909)
CCC Help Turkish (x32 Version: 2010.0527.1241.20909)
ccc-core-static (x32 Version: 2010.0527.1242.20909)
ccc-utility64 (Version: 2010.0527.1242.20909)
CCleaner (Version: 3.13)
Cisco AnyConnect Secure Mobility Client  (x32 Version: 3.0.10057)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.0.10057)
Cisco Systems VPN Client 5.0.07.0290 (Version: 5.0.7)
Compatibility Pack for the 2007 Office system (x32 Version: 12.0.6612.1000)
D3DX10 (x32 Version: 15.4.2368.0902)
DAEMON Tools Lite (x32 Version: 4.48.1.0347)
Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (x32)
Destinations (x32 Version: 130.0.0.0)
DeviceDiscovery (x32 Version: 130.0.465.000)
DocProc (x32 Version: 13.0.0.0)
Dropbox (HKCU Version: 2.0.22)
EndNote X4 (x32 Version: 14.0.0.4845)
Express Scribe (x32)
Free 3GP Video Converter version 5.0.21.1212 (x32 Version: 5.0.21.1212)
Free Audio CD to MP3 Converter version 1.3.12.1228 (x32 Version: 1.3.12.1228)
Free Audio Converter version 5.0.23.320 (x32 Version: 5.0.23.320)
Free YouTube Download version 3.1.42.1212 (x32 Version: 3.1.42.1212)
Free YouTube to MP3 Converter version 3.11.37.1212 (x32 Version: 3.11.37.1212)
GameSpy Arcade (x32)
GPBaseService2 (x32 Version: 130.0.371.000)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Photosmart C6300 All-In-One Driver Software 13.0 Rel. 4 (Version: 13.0)
HP Photosmart Essential 3.5 (Version: 3.5)
HP Smart Web Printing 4.51 (Version: 4.51)
HP Solution Center 13.0 (Version: 13.0)
HP Update (x32 Version: 5.003.001.001)
HPDiagnosticAlert (x32 Version: 1.00.0000)
HPPhotoGadget (x32 Version: 130.0.282.000)
HPPhotoSmartDiscLabelContent1 (x32 Version: 2.04.0000)
HPPhotosmartEssential (x32 Version: 2.04.0000)
HPProductAssistant (x32 Version: 130.0.371.000)
HPSSupply (x32 Version: 130.0.371.000)
HydraVision (x32 Version: 4.2.166.0)
IBM SPSS Statistics 19 (Version: 19.0.0)
IBM SPSS Statistics 21 (Version: 21.0.0.0)
iTunes (Version: 10.5.2.11)
Java 7 Update 45 (x32 Version: 7.0.450)
Java Auto Updater (x32 Version: 2.1.9.8)
Kaspersky PURE 3.0 (x32 Version: 13.0.2.558)
Logitech G11 Keyboard Software 1.03 (Version: 1.3.166.0)
Malwarebytes Anti-Malware Version 1.75.0.1300 (x32 Version: 1.75.0.1300)
MarketResearch (x32 Version: 130.0.374.000)
Mendeley Desktop 1.3.1 (x32 Version: 1.3.1)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended DEU Language Pack (Version: 4.0.30319)
Microsoft .NET Framework 4.5 (Version: 4.5.50709)
Microsoft Age of Empires II (x32)
Microsoft Application Error Reporting (Version: 12.0.6015.5000)
Microsoft Games for Windows - LIVE Redistributable (x32 Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (x32 Version: 3.5.50.0)
Microsoft Office Access MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Excel MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003)
Microsoft Office Home and Student 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1)
Microsoft Office Office 64-bit Components 2010 (Version: 14.0.7015.1000)
Microsoft Office OneNote MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Outlook MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office PowerPoint MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (English) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (French) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proof (Italian) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Proofing (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Publisher MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Shared 64-bit MUI (German) 2010 (Version: 14.0.7015.1000)
Microsoft Office Shared MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Single Image 2010 (x32 Version: 14.0.7015.1000)
Microsoft Office Word MUI (German) 2010 (x32 Version: 14.0.7015.1000)
Microsoft Silverlight (Version: 5.1.20913.0)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (x32 Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.56336)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.59193)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.59192)
Microsoft Visual C++ 2005 Redistributable (x64) (Version: 8.0.61000)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (x32 Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (Version: 10.0.40219)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319)
Microsoft Works (x32 Version: 08.04.0702)
Microsoft Works Suite-Add-Ins für Microsoft Word (x32 Version: 8.0.0.0000)
Microsoft WSE 3.0 Runtime (x32 Version: 3.0.5305.0)
Microsoft_VC100_CRT_SP1_x64 (Version: 10.0.40219.1)
Microsoft_VC100_CRT_SP1_x86 (x32 Version: 10.0.40219.1)
Mozilla Firefox 25.0.1 (x86 de) (x32 Version: 25.0.1)
Mozilla Maintenance Service (x32 Version: 25.0.1)
MSVC80_x64_v2 (Version: 1.0.3.0)
MSVC80_x86_v2 (x32 Version: 1.0.3.0)
MSVC90_x64 (Version: 1.0.1.2)
MSVC90_x86 (x32 Version: 1.0.1.2)
MSVCRT (x32 Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0)
Network64 (Version: 130.0.572.000)
Nokia Connectivity Cable Driver (x32 Version: 7.1.69.0)
Nokia Suite (x32 Version: 3.3.86.0)
Norton Online Backup (x32 Version: 2.0.0.36)
Notation Composer 2.6.3 Trial (x32 Version: 2.6.3)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
Origin (x32 Version: 8.5.2.23)
PC Connectivity Solution (x32 Version: 11.5.29.0)
Populous: The Beginning (x32 Version: 1.03)
PS_AIO_04_C6300_Software_Min (x32 Version: 130.0.365.000)
Realtek Ethernet Controller Driver For Windows Vista and Later (x32 Version: 1.00.0011)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6526)
ResearchSoft Direct Export Helper (x32)
Scan (x32 Version: 13.0.0.0)
ScummVM Git (x32)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (x32)
Setup-Start von Microsoft Works 2005 (x32)
Shockwave (x32)
Shop for HP Supplies (Version: 13.0)
Skype Click to Call (x32 Version: 5.9.9216)
Skype™ 6.11 (x32 Version: 6.11.102)
SmartWebPrinting (x32 Version: 130.0.457.000)
Soda PDF 5 (x32 Version: 5.1.192.10803)
Söldner Secret Wars - Community Edition Version 33960 (x32 Version: 33960)
Söldner Secret Wars Language Pack German Version 1.1 (x32 Version: 1.1)
SolutionCenter (x32 Version: 130.0.373.000)
Sony Ericsson Update Engine (x32 Version: 2.12.12.41)
Sony PC Companion 2.10.108 (x32 Version: 2.10.108)
Spelling Dictionaries Support For Adobe Reader 9 (x32 Version: 9.0.0)
Status (x32 Version: 130.0.469.000)
Steam (x32 Version: 1.0.0.0)
Switch Audiodatei-Konverter (x32 Version: 4.48)
Tales of Monkey Island: Chapter 1 - Launch of the Screaming Narwhal (x32)
Tales of Monkey Island: Chapter 2 - The Siege of Spinner Cay  (x32)
Tales of Monkey Island: Chapter 3 - Lair of the Leviathan  (x32)
Tales of Monkey Island: Chapter 4 - The Trial and Execution of Guybrush Threepwood  (x32)
Tales of Monkey Island: Chapter 5 - Rise of the Pirate God (x32)
Team Fortress 2 (x32)
TeamSpeak 3 Client (HKCU Version: 3.0.13)
TomTom HOME 2.8.2.2264 (x32 Version: 2.8.2.2264)
TomTom HOME Visual Studio Merge Modules (x32 Version: 1.0.2)
Toolbox (x32 Version: 130.0.648.000)
TrayApp (x32 Version: 130.0.422.000)
Ubisoft Game Launcher (x32 Version: 1.0.0.0)
UnloadSupport (x32 Version: 11.0.0)
Update for Microsoft .NET Framework 4.5 (KB2750147) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805221) (x32 Version: 1)
Update for Microsoft .NET Framework 4.5 (KB2805226) (x32 Version: 1)
Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (x32)
Update for Microsoft Filter Pack 2.0 (KB2810071) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (x32)
Update for Microsoft Office 2010 (KB2826026) 32-Bit Edition (x32)
Update for Microsoft OneNote 2010 (KB2810072) 32-Bit Edition (x32)
Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (x32)
Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (x32)
Update for Microsoft Word 2010 (KB2827323) 32-Bit Edition (x32)
Updater (x32 Version: 2.6.49)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0)
VLC media player 1.1.8 (x32 Version: 1.1.8)
WebReg (x32 Version: 130.0.132.017)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3502.0922)
Windows Live Essentials (x32 Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (x32 Version: 15.4.3502.0922)
Windows Live Language Selector (Version: 15.4.3555.0308)
Windows Live Messenger (x32 Version: 15.4.3538.0513)
Windows Live Photo Common (x32 Version: 15.4.3502.0922)
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109)
Windows Live SOXE (x32 Version: 15.4.3502.0922)
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922)
Windows Live UX Platform (x32 Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109)
Windows Media Player Firefox Plugin (x32 Version: 1.0.0.8)
WinRAR
WordToPDF 2.9 (x32 Version: 2.9)
Works Update (x32 Version: 8.0.0.0000)

==================== Restore Points  =========================

09-12-2013 15:58:56 DirectX wurde installiert
11-12-2013 11:59:11 Removed Adobe Reader XI (11.0.05).

==================== Hosts content: ==========================

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (whitelisted) =============

Task: {07F14CBB-44D8-4976-8119-8C69192C48BE} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-09-05] (Adobe Systems Incorporated)
Task: {0897BBC7-D121-4F07-9838-F12C6DA30141} - System32\Tasks\{B24CB037-AB4D-4C95-B81B-9C8AF6B600E5} => C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-11-14] (Skype Technologies S.A.)
Task: {1DEADAE6-FC5C-4ACE-9D0A-A8C54D135654} - System32\Tasks\{BCCDA5D3-2212-4AB4-921C-831790D4D59D} => D:\Niko\LucasArts\Monkey Island 2 LeChucks Revenge Special Edition\Monkey2.exe
Task: {263007BF-6B17-4D8F-9A49-C962FE28CE4F} - System32\Tasks\{BE69D37A-D45C-41C5-97D7-ABBBE8F4B4E0} => F:\AUTORUN.EXE
Task: {2EB67EBE-7D0C-41A7-9EBA-71964B81DDC3} - System32\Tasks\{4D2E3DDC-0A55-4CDF-8193-B49A86F1F31E} => D:\Siedler\BLUEBYTE\SIEDLER2\SIEDLER2.EXE [2010-10-18] ()
Task: {2F2FD535-9B25-4027-8EBD-0B5D41894E69} - System32\Tasks\{42A8F30A-90D7-4932-A9A4-B8209AE63396} => D:\Siedler\BLUEBYTE\SIEDLER2\SIEDLER2.EXE [2010-10-18] ()
Task: {31250475-1FD8-4276-BF00-173EF208248E} - System32\Tasks\{E01AF9FC-3534-45FD-BB90-68DCF6FEBE07} => C:\Team17\Worms World Party\wwp.exe
Task: {3F2EC12C-BB24-4328-9E03-212A0E98C8AE} - System32\Tasks\{6E25A4CC-0165-4D47-BC2D-737AE62E5A05} => D:\worms_arma\Worms_2_Armageddon\wa.exe
Task: {42C7E264-7A69-4C6F-B0D9-F094D128A31D} - System32\Tasks\{B56D80DE-2BF5-4431-AE7D-EF6AC461BA36} => D:\110\commandos\betasux.exe
Task: {4DCBCB29-8F7E-4FE8-912B-619F7D1E7495} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02] (Oracle Corporation)
Task: {5A881D11-A8FE-42C7-9CBF-F78D4299B07C} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {5CAEF151-92A5-464D-A104-F71852FA71ED} - System32\Tasks\DLL-files.com Fixer => C:\Program Files (x86)\Dll-Files.com
Task: {76894412-422E-4900-8D40-6790C3A00453} - System32\Tasks\{9D45BAF4-090B-416A-BEAE-58E186B7AF81} => D:\worms_arma\Worms_2_Armageddon\wa.exe
Task: {9A8A89BE-938A-4831-8769-494B98020A9B} - System32\Tasks\NCH Software\scribeShakeIcon => C:\Program Files (x86)\NCH Software\Scribe\scribe.exe [2012-09-28] (NCH Software)
Task: {A2304F2E-408C-4F08-B751-AF3D3391A72F} - System32\Tasks\{574609B5-BCD2-44A3-B1D5-4E616F5A71AC} => Firefox.exe hxxp://ui.skype.com/ui/0/5.1.0.112.259/en/abandoninstall?page=tsMain&amp;installinfo=google-toolbar:notoffered;ienotdefaultbrowser2,google-chrome:notoffered;alreadyoffered
Task: {A562E7FB-0709-4640-BC44-D8CFB206FDBE} - System32\Tasks\{573FC5F3-DC3E-4A8B-AA99-DF270D6A24BB} => G:\setup.exe [1998-04-23] (Promotion Software Tübingen)
Task: {B0F4B8B8-3F9B-47E1-9473-ECE741C7827C} - System32\Tasks\{7D743872-4514-4F70-8963-CD993D7B3DA9} => C:\Emergency\emergy.exe [1998-04-28] ()
Task: {B3DBC25B-6B8A-48DC-932E-F0BC48AA544C} - System32\Tasks\{39C61096-0393-49FE-9103-79A8C49767C3} => D:\worms_arma\Worms_2_Armageddon\wa.exe
Task: {B80AB8E9-E2F9-4398-8999-9E034F9B1FAC} - System32\Tasks\{4CBDF0BE-AB76-4389-9BAE-03E1C5DA06AB} => D:\Niko\LucasArts\Monkey2Launcher.exe [2010-07-29] ()
Task: {BB150135-744B-435F-A4AE-20E7CF156FEF} - System32\Tasks\{8B0B2FA5-AECC-4577-BBE1-F36F579EC056} => D:\Pizza Syndicate\Autorun.exe
Task: {CD9599FB-F604-4398-97A6-61B6CF25C24C} - System32\Tasks\{CE267232-BC30-4FDC-886D-92AB01325001} => C:\Team17\Worms World Party\wwp.exe
Task: {D76172FF-1B90-4522-A342-21585159C3BD} - System32\Tasks\{4B5AA4C3-6DB9-4CC9-8377-6D0F7AA73424} => D:\Emergency\emergy.exe
Task: {D9757778-8515-40E2-B097-7560A21885A3} - System32\Tasks\{94D78FD0-AA40-47FB-AF1F-DBE3E932BA82} => Firefox.exe hxxp://ui.skype.com/ui/0/6.1.73.129.457/de/abandoninstall?page=tsWLM
Task: {DADA45EF-CA2A-4370-9830-DEDBDDAE3B82} - System32\Tasks\{FF640566-487F-493B-976D-AF61DDA0251F} => D:\Emergency\emergy.exe
Task: {DB8B467B-773D-4B13-8609-3809862037B2} - System32\Tasks\{5ACEA32C-AE59-480F-ABC6-FBDB0BCA4D14} => D:\Emergency\emergy.exe
Task: {EED55FB9-B7AE-4B1C-9B93-2D0D99F61F4E} - System32\Tasks\{191935BD-D718-4812-86E7-D3C695199D12} => D:\Siedler\BLUEBYTE\SIEDLER2\SIEDLER2.EXE [2010-10-18] ()
Task: {F7EBD3BC-9E4B-41A0-9FE6-21A0E7A55BA1} - System32\Tasks\{3B40AD84-DD3D-4E71-9400-424EEECF6903} => D:\Niko\LucasArts\Monkey Island 2 LeChucks Revenge Special Edition\Monkey2.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Loaded Modules (whitelisted) =============

2010-10-12 21:38 - 2010-03-15 10:28 - 00166400 _____ () C:\Program Files\WinRAR\rarext.dll
2012-12-20 18:19 - 2012-12-20 18:19 - 00479752 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\dblite.dll
2012-12-20 18:19 - 2012-12-20 18:19 - 01310728 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\kpcengine.2.2.dll
2010-03-23 13:26 - 2010-03-23 13:26 - 00201512 _____ () C:\Program Files (x86)\Cisco Systems\VPN Client\vpnapi.dll
2013-04-05 22:59 - 2013-01-29 18:45 - 00112128 _____ () C:\Program Files (x86)\Canon\ImageBrowser EX\MFMFileSystemWatcher.dll
2013-11-17 11:36 - 2013-11-17 11:36 - 03363952 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2012-09-23 20:43 - 2012-09-23 20:43 - 00313992 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\sqlite.dll
2013-09-05 15:04 - 2013-09-05 15:04 - 14588632 _____ () C:\Program Files (x86)\Adobe\Reader 11.0\Reader\NPSWF32.dll
2013-11-16 09:49 - 2013-11-16 09:49 - 16237448 ____N () C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_152.dll

==================== Alternate Data Streams (whitelisted) =========


==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Photosmart C6300 series
Description: Photosmart C6300 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart C6300 series
Description: Photosmart C6300 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart C6300 series
Description: Photosmart C6300 series
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service: 
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Cisco Systems VPN Adapter for 64-bit Windows
Description: Cisco Systems VPN Adapter for 64-bit Windows
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: CVirtA
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP Photosmart C6300
Description: HP Photosmart C6300
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Hewlett-Packard
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Photosmart C6300 series
Description: Photosmart C6300 series
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: HP
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (12/09/2013 04:28:52 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (12/09/2013 04:27:40 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "6.0.0.6u9b41" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (12/09/2013 04:26:38 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "6.0.0.6u9b41" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (12/07/2013 08:38:53 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (12/07/2013 08:37:28 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "6.0.0.6u9b41" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (12/07/2013 08:36:10 PM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "6.0.0.6u9b41" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (12/05/2013 05:38:45 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: SplitCamService.exe, Version: 1.0.0.1, Zeitstempel: 0x526782ae
Name des fehlerhaften Moduls: SplitCamService.exe, Version: 1.0.0.1, Zeitstempel: 0x526782ae
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000015e0
ID des fehlerhaften Prozesses: 0x2334
Startzeit der fehlerhaften Anwendung: 0xSplitCamService.exe0
Pfad der fehlerhaften Anwendung: SplitCamService.exe1
Pfad des fehlerhaften Moduls: SplitCamService.exe2
Berichtskennung: SplitCamService.exe3

Error: (12/05/2013 05:37:23 PM) (Source: Application Error) (User: )
Description: Name der fehlerhaften Anwendung: ValueApps.exe, Version: 1.0.0.1, Zeitstempel: 0x5267f8d5
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0055005c
ID des fehlerhaften Prozesses: 0x20cc
Startzeit der fehlerhaften Anwendung: 0xValueApps.exe0
Pfad der fehlerhaften Anwendung: ValueApps.exe1
Pfad des fehlerhaften Moduls: ValueApps.exe2
Berichtskennung: ValueApps.exe3

Error: (12/05/2013 05:32:19 PM) (Source: MsiInstaller) (User: Questmaster3000)
Description: Product: Fwink -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.

Error: (12/05/2013 05:20:03 PM) (Source: MsiInstaller) (User: Questmaster3000)
Description: Product: Download your driver -- Error 1720. There is a problem with this Windows Installer package. A script required for this install to complete could not be run. Contact your support personnel or package vendor.  Custom action GetTextConstants.vbs script error -2146827864, Laufzeitfehler in Microsoft VBScript: Objekt erforderlich: 'xmlDoc.GetElementsByTagName(...).item(...)' Line 7, Column 1,


System errors:
=============
Error: (12/11/2013 00:27:50 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (12/11/2013 00:27:07 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (12/11/2013 00:26:25 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (12/11/2013 00:25:43 PM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (12/11/2013 00:25:27 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows-Bilderfassung (WIA)" wurde nicht richtig gestartet.

Error: (12/11/2013 00:24:00 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Apple Mobile Device" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (12/11/2013 00:24:00 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Apple Mobile Device erreicht.

Error: (12/10/2013 11:08:41 AM) (Source: bowser) (User: )
Description: Der Hauptsuchdienst erhielt eine Serverankündigung vom Computer "GAST-PC",
der der Hauptsuchdienst der Domäne für den NetBT_Tcpip_{B1BCECC2-475A-46EA-AF15-1D84FEA5E409}-Transport zu sein scheint.
Der Hauptsuchdienst wurde beendet oder es wird eine Auswahl erzwungen.

Error: (12/10/2013 09:04:56 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (12/10/2013 09:04:14 AM) (Source: DCOM) (User: NT-AUTORITÄT)
Description: ComputerstandardLokalAktivierung{10DA4F3C-CC99-4190-BE4D-58330754E882}{7DDEFEA6-98EE-4F13-A25B-EC83D9BC5541}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)


Microsoft Office Sessions:
=========================
Error: (12/09/2013 04:28:52 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (12/09/2013 04:27:40 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversion6.0.0.6u9b41C:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack.dllC:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack.dll19

Error: (12/09/2013 04:26:38 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversion6.0.0.6u9b41C:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack200.exeC:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack200.exe19

Error: (12/07/2013 08:38:53 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversionMAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINORC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dllC:\Program Files (x86)\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll3

Error: (12/07/2013 08:37:28 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversion6.0.0.6u9b41C:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack.dllC:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack.dll19

Error: (12/07/2013 08:36:10 PM) (Source: SideBySide)(User: )
Description: assemblyIdentityversion6.0.0.6u9b41C:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack200.exeC:\Program Files\IBM\SPSS\Statistics\19\JRE\bin\unpack200.exe19

Error: (12/05/2013 05:38:45 PM) (Source: Application Error)(User: )
Description: SplitCamService.exe1.0.0.1526782aeSplitCamService.exe1.0.0.1526782aec0000005000015e0233401cef1d876309767C:\Program Files (x86)\SplitCam\SplitCamService.exeC:\Program Files (x86)\SplitCam\SplitCamService.exeb4ac6bd9-5dcb-11e3-81aa-6c626d05b0fe

Error: (12/05/2013 05:37:23 PM) (Source: Application Error)(User: )
Description: ValueApps.exe1.0.0.15267f8d5unknown0.0.0.000000000c00000050055005c20cc01cef1d839d6561cC:\Users\Niko\AppData\Roaming\ValueApps\IE\ValueApps.exeunknown843f51c3-5dcb-11e3-81aa-6c626d05b0fe

Error: (12/05/2013 05:32:19 PM) (Source: MsiInstaller)(User: Questmaster3000)
Description: Product: Fwink -- Error 1500. Another installation is in progress. You must complete that installation before continuing this one.(NULL)(NULL)(NULL)(NULL)(NULL)

Error: (12/05/2013 05:20:03 PM) (Source: MsiInstaller)(User: Questmaster3000)
Description: Product: Download your driver -- Error 1720. There is a problem with this Windows Installer package. A script required for this install to complete could not be run. Contact your support personnel or package vendor.  Custom action GetTextConstants.vbs script error -2146827864, Laufzeitfehler in Microsoft VBScript: Objekt erforderlich: 'xmlDoc.GetElementsByTagName(...).item(...)' Line 7, Column 1,  (NULL)(NULL)(NULL)(NULL)(NULL)


CodeIntegrity Errors:
===================================
  Date: 2013-12-05 19:40:10.409
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-05 19:40:10.408
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-05 19:40:10.406
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-05 19:30:43.821
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\p\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-05 19:30:43.819
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\p\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-05 19:30:43.817
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\p\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-05 19:30:43.741
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\b\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-05 19:30:43.739
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\b\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-05 19:30:43.738
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\ProgramData\Kaspersky Lab\PURE13\Data\Updater\Temporary Files\rollback\patch\AutoPatches\kts9\13.0.2.558_d\drv64\b\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2013-12-05 19:22:48.425
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\KLELAMX64\klelam.sys" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Percentage of memory in use: 33%
Total physical RAM: 8191.18 MB
Available physical RAM: 5417.41 MB
Total Pagefile: 16380.54 MB
Available Pagefile: 13372.1 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:152.34 GB) (Free:24.89 GB) NTFS
Drive d: () (Fixed) (Total:380.86 GB) (Free:175.03 GB) NTFS
Drive e: () (Fixed) (Total:398.21 GB) (Free:157.9 GB) NTFS
Drive f: (AOE2) (CDROM) (Total:0.32 GB) (Free:0 GB) CDFS
Drive g: () (CDROM) (Total:0.28 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: BAFBAE4D)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=152 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=381 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=398 GB) - (Type=07 NTFS)

==================== End Of Log ============================
         
GMER.log
Code:
ATTFilter
GMER 2.1.19163 - hxxp://www.gmer.net
Rootkit scan 2013-12-11 15:28:33
Windows 6.1.7601 Service Pack 1 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 SAMSUNG_HD103SJ rev.1AJ10001 931,51GB
Running: gmer_2.1.19163.exe; Driver: C:\Users\Niko\AppData\Local\Temp\fwldiaoc.sys


---- User code sections - GMER 2.1 ----

.text  C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe[1760] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                              0000000075861465 2 bytes [86, 75]
.text  C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe[1760] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                             00000000758614bb 2 bytes [86, 75]
.text  ...                                                                                                                                                                                  * 2
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2328] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 322                                                                                              0000000072b21a22 2 bytes [B2, 72]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2328] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 496                                                                                              0000000072b21ad0 2 bytes [B2, 72]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2328] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 552                                                                                              0000000072b21b08 2 bytes [B2, 72]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2328] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 730                                                                                              0000000072b21bba 2 bytes [B2, 72]
.text  C:\Windows\SysWOW64\PnkBstrA.exe[2328] C:\Windows\SysWOW64\WSOCK32.dll!setsockopt + 762                                                                                              0000000072b21bda 2 bytes [B2, 72]
.text  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe[1808] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69                                                             0000000075861465 2 bytes [86, 75]
.text  C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe[1808] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155                                                            00000000758614bb 2 bytes [86, 75]
.text  ...                                                                                                                                                                                  * 2

---- Registry - GMER 2.1 ----

Reg    HKCU\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Persisted@SIGN.MEDIA=26F42A7 TREIBER\Windows XP\Intel\xae Matrix Storage Manager\Setup.exe  1

---- EOF - GMER 2.1 ----
         
__________________


Alt 14.12.2013, 14:02   #3
Niko91
 
Websteroids & Safe Web Alliance - Status der Infektion unbekannt - Standard

Websteroids & Safe Web Alliance - Status der Infektion unbekannt



Kann ich noch auf Hilfe hoffen?
__________________

Alt 15.12.2013, 23:03   #4
schrauber
/// the machine
/// TB-Ausbilder
 

Websteroids & Safe Web Alliance - Status der Infektion unbekannt - Standard

Websteroids & Safe Web Alliance - Status der Infektion unbekannt



hi,

Downloade Dir bitte AdwCleaner Logo Icon AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
  • Starte die AdwCleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • Winsock Einstellungen zurücksetzen
    • Proxy Einstellungen zurücksetzen
    • Internet Explorer Richtlinien zurücksetzen
    • Chrome Richtlinien zurücksetzen
    • Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
Bitte lade Junkware Removal Tool auf Deinen Desktop

  • Starte das Tool mit Doppelklick. Ab Windows Vista (oder höher) bitte mit Rechtsklick "als Administrator ausführen" starten.
  • Drücke eine beliebige Taste, um das Tool zu starten.
  • Je nach System kann der Scan eine Weile dauern.
  • Wenn das Tool fertig ist wird das Logfile (JRT.txt) auf dem Desktop gespeichert und automatisch geöffnet.
  • Bitte poste den Inhalt der JRT.txt in Deiner nächsten Antwort.


und ein frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 17.12.2013, 20:54   #5
Niko91
 
Websteroids & Safe Web Alliance - Status der Infektion unbekannt - Standard

Websteroids & Safe Web Alliance - Status der Infektion unbekannt



Und hier die gewünschten Protokolle:

AdwCleaner:
Code:
ATTFilter
# AdwCleaner v3.015 - Bericht erstellt am 17/12/2013 um 20:31:27
# Updated 10/12/2013 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : Niko - QUESTMASTER3000
# Gestartet von : C:\Users\Niko\Downloads\adwcleaner.exe
# Option : Löschen

***** [ Dienste ] *****


***** [ Dateien / Ordner ] *****

Ordner Gelöscht : C:\ProgramData\ICQ\ICQToolbar
Ordner Gelöscht : C:\ProgramData\NCH Software
Ordner Gelöscht : C:\ProgramData\Premium
Ordner Gelöscht : C:\Program Files (x86)\ICQ6Toolbar
Ordner Gelöscht : C:\Program Files (x86)\NCH Software
Ordner Gelöscht : C:\Program Files (x86)\Common Files\DVDVideoSoft\TB
Ordner Gelöscht : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar
Ordner Gelöscht : C:\Users\Niko\AppData\Roaming\dvdvideosoftiehelpers
Ordner Gelöscht : C:\Users\Niko\AppData\Roaming\NCH Software
Ordner Gelöscht : C:\Users\Niko\AppData\Roaming\Systweak
Ordner Gelöscht : C:\Users\Niko\AppData\Roaming\Tlapia
Ordner Gelöscht : C:\Users\Niko\AppData\Roaming\ValueApps
Ordner Gelöscht : C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\77dp60xc.default\ICQToolbarData
Ordner Gelöscht : C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\77dp60xc.default\SweetIMToolbarData
Ordner Gelöscht : C:\Program Files (x86)\Mozilla Firefox\Extensions\quickstores@quickstores.de
Datei Gelöscht : C:\Windows\System32\roboot64.exe
Datei Gelöscht : C:\Users\Niko\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickStores.url
Datei Gelöscht : C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\QuickStores.url
Datei Gelöscht : C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\77dp60xc.default\user.js
Datei Gelöscht : C:\Windows\System32\Tasks\NCH Software

***** [ Verknüpfungen ] *****


***** [ Registrierungsdatenbank ] *****

Wert Gelöscht : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [{ACAA314B-EEBA-48E4-AD47-84E31C44796C}]
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\DOMStorage\conduit.com
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolBar
Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\driverscanner
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\speedupmypc
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\AskInstallChecker-1_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_emergency_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_emergency_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_switch-audio-file-converter_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_switch-audio-file-converter_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_unlocker_RASAPI32
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_fuer_unlocker_RASMANCS
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{02478D38-C3F9-4EFB-9B51-7695ECA05670}
Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{EF99BD32-C1FB-11D2-892F-0090271D4F88}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9}
Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F63AAEDC-3602-49EF-AA45-262380A98980}
Schlüssel Gelöscht : HKCU\Software\APN PIP
Schlüssel Gelöscht : HKCU\Software\Conduit
Schlüssel Gelöscht : HKCU\Software\NCH Software
Schlüssel Gelöscht : HKCU\Software\Softonic
Schlüssel Gelöscht : HKCU\Software\StartSearch
Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\DynConIE
Schlüssel Gelöscht : HKLM\Software\Conduit
Schlüssel Gelöscht : HKLM\Software\ICQ\ICQToolbar
Schlüssel Gelöscht : HKLM\Software\NCH Software
Schlüssel Gelöscht : HKLM\Software\Uniblue

***** [ Browser ] *****

-\\ Internet Explorer v11.0.9600.16428

Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
Einstellung Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]

-\\ Mozilla Firefox v26.0 (de)

[ Datei : C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\Profiles\77dp60xc.default\prefs.js ]

Zeile gelöscht : user_pref("extensions.dynconff.cache.forum.kaspersky.com.content", "<package expire=\"3600\" es=\"914\" pcdids=\"_1500_1520_1164_1524_1146_1169_1348_1482_1493_1521_1619\"><content id=\"us810_commonScr[...]
Zeile gelöscht : user_pref("extensions.dynconff.cache.www.google.de.content", "<package expire=\"3600\" es=\"914\" pcdids=\"_1500_1520_1164_1524_1146_1169_1348_1482_1521_1619\"><content id=\"us810_commonScript\">\r\n<[...]
Zeile gelöscht : user_pref("extensions.dynconff.cache.www.gutefrage.net.content", "<package expire=\"3600\" es=\"914\" pcdids=\"_1500_1520_1164_1524_1146_1169_1348_1482_1493_1521_1619\"><content id=\"us810_commonScrip[...]
Zeile gelöscht : user_pref("icqtoolbar.allowSendURL", false);
Zeile gelöscht : user_pref("icqtoolbar.displayHistory", false);
Zeile gelöscht : user_pref("icqtoolbar.engineVerified", true);
Zeile gelöscht : user_pref("icqtoolbar.hiddenElements", "itb_options itb_highlight itb_games itb_zoom_default itb_zoom_out itb_zoom_in itb_people");
Zeile gelöscht : user_pref("icqtoolbar.historyCapacity", 0);
Zeile gelöscht : user_pref("icqtoolbar.installTime", "1287604665");
Zeile gelöscht : user_pref("icqtoolbar.installsource", "1");
Zeile gelöscht : user_pref("icqtoolbar.newtab_state", "0");
Zeile gelöscht : user_pref("icqtoolbar.numberOfSearches", 0);
Zeile gelöscht : user_pref("icqtoolbar.previousFFVersion", "3.6.11");
Zeile gelöscht : user_pref("icqtoolbar.searchOnDrop", false);
Zeile gelöscht : user_pref("icqtoolbar.shownElements", "");
Zeile gelöscht : user_pref("icqtoolbar.skip_default_search", "yes");
Zeile gelöscht : user_pref("icqtoolbar.suggestions", false);
Zeile gelöscht : user_pref("icqtoolbar.uniqueID", "128757383612875737941287604665830");
Zeile gelöscht : user_pref("icqtoolbar.usageStatstTimestamp", 1287604667);
Zeile gelöscht : user_pref("icqtoolbar.xmlEnableSuggestions", false);
Zeile gelöscht : user_pref("icqtoolbar.xmlLanguage", "de");
Zeile gelöscht : user_pref("keyword.URL", "hxxp://www.finduny.com?client=mozilla-firefox&cd=UTF-8&search=1&q=");
Zeile gelöscht : user_pref("sweetim.toolbar.highlight.colors", "#FFFF00,#00FFE4,#5AFF00,#0087FF,#FFCC00,#FF00F0");
Zeile gelöscht : user_pref("sweetim.toolbar.logger.ConsoleHandler.MinReportLevel", "7");
Zeile gelöscht : user_pref("sweetim.toolbar.logger.FileHandler.FileName", "ff-toolbar.log");
Zeile gelöscht : user_pref("sweetim.toolbar.logger.FileHandler.MaxFileSize", "200000");
Zeile gelöscht : user_pref("sweetim.toolbar.logger.FileHandler.MinReportLevel", "7");
Zeile gelöscht : user_pref("sweetim.toolbar.mode.debug", "false");
Zeile gelöscht : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", "foxsearch");
Zeile gelöscht : user_pref("sweetim.toolbar.previous.browser.search.defaulturl", "");
Zeile gelöscht : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "foxsearch");
Zeile gelöscht : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "google.de");
Zeile gelöscht : user_pref("sweetim.toolbar.previous.keyword.URL", "hxxp://www.finduny.com?client=mozilla-firefox&cd=UTF-8&search=1&q=");
Zeile gelöscht : user_pref("sweetim.toolbar.search.external", "<?xml version=\"1.0\"?><TOOLBAR><EXTERNAL_SEARCH engine=\"hxxp://*google.*\" param=\"q=\" /><EXTERNAL_SEARCH engine=\"hxxp://search.yahoo.com/*\" param=\"[...]
Zeile gelöscht : user_pref("sweetim.toolbar.search.history.capacity", "10");
Zeile gelöscht : user_pref("sweetim.toolbar.searchguard.enable", "true");
Zeile gelöscht : user_pref("sweetim.toolbar.simapp_id", "{5C65A93A-1057-11E1-9795-6C626D05B0FE}");
Zeile gelöscht : user_pref("sweetim.toolbar.urls.homepage", "hxxp://home.sweetim.com");
Zeile gelöscht : user_pref("sweetim.toolbar.version", "1.2.0.2");

-\\ Google Chrome v

[ Datei : C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Gelöscht : homepage

*************************

AdwCleaner[R0].txt - [10476 octets] - [17/12/2013 20:30:00]
AdwCleaner[S0].txt - [9713 octets] - [17/12/2013 20:31:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9773 octets] ##########
         
JRT
Code:
ATTFilter
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.0.8 (11.05.2013:1)
OS: Windows 7 Home Premium x64
Ran by Niko on 17.12.2013 at 20:36:00,04
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-1216835461-190305365-3235199106-1000\Software\sweetim



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\Users\Niko\AppData\Roaming\dll-files.com"
Successfully deleted: [Folder] "C:\Windows\syswow64\ai_recyclebin"
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{01806B34-54F5-415A-A0E8-3831E0DACC86}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{02F04FEC-FC34-4305-86B9-D952BACF4794}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{03F6B88E-FDD9-4D84-8A5E-8A05315A5895}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{0474FFBE-E6E9-45D4-AC94-F250DA0BE631}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{0540DB0B-8426-4717-B11C-BB45BB70DB9D}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{0624EC62-FF32-4293-BF6D-F74E69F1B4EB}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{081D084D-5023-437E-B31F-59A284F2254A}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{08DC3C37-5610-4EB5-AB32-369E02F07F5D}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{09C2D010-F524-43C9-ADC9-30E199F54743}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{0AC213D3-E1D5-4782-A5F7-DA28321EB943}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{0C82D94E-96E2-45FF-A355-634764D9CAA1}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{0DFEC968-48CD-4937-BE48-982B8609785C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{0EF045FF-04E7-4B85-9802-95734D564630}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{0FD7CBAB-D7E7-47A9-A276-326F1E06C6B2}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{1272A18C-D1E0-43A5-A903-743E26E24A3A}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{12ABDE8F-B198-48D6-A404-CCDBAB094903}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{130E7FF3-E2DB-4BAE-B4BD-B01805C55BD7}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{13C48936-D116-4FD8-A487-36544D06667E}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{14475D5F-40C9-4A7D-9E0E-6DF022CFDBFC}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{15231E89-6DC0-4222-AF50-BF0FD3E1F8E8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{178DBA75-A3CC-449D-BAB4-1D8DF5BB46B1}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{19860CAA-0696-455D-A44B-60DC79F52B65}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{1A12DBF9-7E89-4A29-B24E-572E77B29B10}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{1B774CFC-79AD-4CB9-A4C7-6AAD01B99C51}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{1C84F1D0-79F9-4BB4-96B2-37208EB222BC}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{1C9CDECD-1F36-4EFD-A5CA-2AC3463A08FF}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{1E172E6C-B62C-46D6-A606-125935208B98}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{1F648B25-0E6B-4ABF-A9E9-750BC522A218}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{20D54FFF-9BD4-4DE9-B965-6C7503E14455}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{213208C1-2D50-40CC-9F4E-094F5A959125}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{214268B3-A932-40E4-A76A-64E66105B31D}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{225FD25D-5BCC-445B-ABE0-F9D731005FA3}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{2681E069-AD28-42C1-97E7-DC4FAD4FFCD0}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{2756B899-E9E0-4FE2-87A5-81A5BC3BB0D8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{2926EB94-B30C-404D-96E8-7BB3D3DF13A1}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{2AB4A03C-E7F8-49DF-83BF-58584721C13E}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{2AFCAEAF-2DE0-4757-A19E-3615B1114094}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{2B834F5C-D72A-4B97-B232-FA3AE31F417C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{2D89DC8D-4763-427D-809D-DB737B9F787E}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{2ED5B6E5-69C7-412D-82E2-93CA4CC553FC}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{2F7B409D-87BC-47BB-8826-2AA297CB8DC9}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{2FC1E153-8412-47D8-89A9-BC0A987DB4F0}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{312683C2-B96D-438C-87FE-789B46063BB7}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{31293FCC-FF1C-4EB6-BDF4-AF3B32E186B8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{319092CD-E5D5-4913-9214-B7323B040B33}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{321E1190-9B79-4227-B0B2-435A472DD7BA}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{35B38333-F433-46EA-89B8-C99994EC372A}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{3629C66F-A04A-4DE1-94E0-3F4D045AEB01}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{364B304B-D2AD-4F19-9994-EB3016700792}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{3687C3B2-FCA9-4124-9AE9-E3AC4F55DA5F}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{36ED2D90-0E4D-4D40-A7EC-2E0B2E6394A2}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{372B513B-A51C-45A8-ACD5-E66E4C07E1A4}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{3767EA41-00ED-4624-A778-F0EA1D480EEF}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{3784FE61-E5E3-413F-8738-86F75C252BBD}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{38589771-EDFE-4FD2-9D4D-1F07C021832F}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{3BC03EE3-7023-4BD2-BE0B-4F5EB58C357B}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{3C6AE0E9-8C0E-48CF-BBE1-2AE2DF68F731}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{3FB57A8D-F264-4987-A9C9-40F1716AAA47}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{3FE33125-0F7C-4DCC-9F33-81CA9E1316FC}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{407D9BAC-670B-45B8-AA12-A78A500AC5A0}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{41538C29-F3CA-479A-9F26-F747782F09EB}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{41B7E0B0-B8F3-427E-9522-A14C436C8C75}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{424A9ED3-9E21-4CB3-B901-2215B0FC4FF5}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{45C49180-8A32-4E7E-9A0C-6E40E21EC874}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{45C8E7CF-55C2-4DD4-A7A5-086F95854ED5}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{4A4E367B-E54D-4F2D-B7E6-F8EE83272C35}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{4A901B85-FBEE-4940-9F57-241CB33A9F39}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{4BE9A9BA-8427-4867-9A7C-3A15E0EDC252}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{4D71ECFA-DBA8-4BB2-A61F-9F246227CD07}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{4E7925F8-3A2C-4364-93AA-E1DAF3C8C48C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{4FB843D3-F404-4C83-A4D7-22A918993448}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{4FC90A54-F9D2-44BA-85C6-9D187E0C1681}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{518935F8-C53C-4791-8676-CF5DD2BA2194}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{51F84A81-6D72-4222-B18F-D562DFBB1FB8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{530B64CD-61CE-4250-868F-B6CF2EC8F447}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5350E3D1-A310-4612-8434-1C6448590655}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{55183B5F-A1E5-4894-AAC5-FDA9CA2D817B}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{55373E42-69C6-431C-8EDD-AE2509296CED}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{56321C49-83F1-4217-BDB5-CA2BD9FBB9C0}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{575268EE-F66B-42A2-A3E6-DD978EB311D8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5847BF80-430E-4DC5-B365-7E8342E99C05}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{588D7775-85FE-4AE1-92B2-6206954367F3}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{59B47931-0554-4392-B2B6-54E49D731A2D}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{59E63A59-D105-4464-8CA9-D62A1C738995}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5A046B61-524B-4916-B752-A4268EA72648}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5AEC0A90-5392-4654-A346-BE9CE6F9B181}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5B073487-61BE-47B4-A340-85E0851ED895}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5C60B82E-F066-4746-870A-8E64B024A4E6}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5DA691E1-6B31-424E-8264-AEDB3A2D6F03}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5E12B5A4-89ED-4961-B8B8-8F5407DFDF5A}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5E50B501-E366-46AC-AD7A-266F15D402E8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5EB21C6E-53F2-45E9-8901-CAB71C6230B8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{5FDC651E-4B3B-4916-8258-B50AAB50DB01}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{60EFF0F5-10FA-4FAF-9152-D13FDA287A3A}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{64C5A71B-3EF7-457A-977B-11BB8CF12AE5}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{6605F3E2-56AE-4386-9C89-18DB47FD430C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{66F05D44-B4A2-49B7-83D1-7D0A0DF8B31D}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{66FA4FDA-81F2-47FE-A44F-A0E3872A7206}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{67DA0FD2-31A0-4B1A-BE0A-18DC16EE2BE2}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{68561E36-45DE-4EA9-A51D-6BD51E117694}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{68993D7A-C488-4399-A391-DD281ED47E42}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{68EC6122-1CD8-4EB8-87D7-92FF9527EA31}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{6FA8F8FB-CB7C-42DF-87C2-A09BF29E62EA}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{7037393B-3A79-44CF-B7A9-2BC8468651CD}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{71F0127F-CC6F-45C2-AFB0-FD4A0F64FB15}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{72AC7AB4-E639-4766-845B-A08B73B630CD}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{7559185E-04B2-42EC-B214-7C2330D14F68}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{767CD60E-5CEB-462C-95C5-C12F4308E21D}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{7C3A90B0-7C43-4613-8C08-E9F9BC45588E}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{7C628EEE-EEA6-4046-B9C5-FAAB305B6E00}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{7D0CE6F7-3D1A-4736-B110-46D2368F3CD3}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{7D17AD17-BDE8-4FCA-B9F4-54EA6ED87C3B}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{7F7CABD5-463F-483C-95D5-B9A3969A8303}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{801ECA79-3363-46F3-95A3-E42251F920F0}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{80861498-69BA-4E8B-AB9D-743A11A735E3}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{8185C2E2-1F3D-48CB-B1D4-E49BACBA7998}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{81D1DD4B-66C9-4C00-9CE0-98996B6A8367}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{82197305-9CFD-4653-AFB4-50C9C255535C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{82281D12-D71C-40DE-B0C9-24E319009514}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{82EB86FA-8780-4219-A552-A9DEB01E94BA}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{83378EE4-FB47-4843-BF75-38B6BC9495E4}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{83DCBB37-FDD0-4A8E-B899-E7BBD29974A2}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{84C86A48-188C-4EB6-B2D3-01084C2B5706}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{86AF1C81-9F88-4A79-9C2C-B17C52B469AF}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{874D0713-BA23-427D-BDE0-AEB76CF0251B}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{877A8279-4D79-4BFD-B7DD-ABD75575DCFF}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{87DF042A-5ED5-4FF9-9787-56AC55ADA5B6}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{8B79CEBE-0249-4F45-B1E7-06428588C0AF}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{8BA89FAE-0CCE-4D0D-BF18-6CA122FEB838}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{8C0787B7-563B-49CE-B2CF-6FC9D8CC5A2B}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{8C5F0DA7-9666-4398-8243-A33F4B3768BD}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{8D594950-8795-4A2A-8429-DED5993DEF7C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{908404C7-8D2E-4D20-91F0-D3EA6058294C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{91257482-07A2-4538-AA01-F37C0E0B0B04}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{91B3CBF9-F019-4DCB-963B-4697A6EFDBC5}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{9227198E-C955-424B-B010-97A6F6E7AEE6}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{931C40F9-2122-42BD-9EC7-992D2A9C9E26}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{959B2CD5-7B0D-48E7-8418-431611489746}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{95ACE7F7-4575-4664-9D47-D9C60A334DF6}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{95D07D45-3338-4E43-908E-C2F20E7B9D8B}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{972B80BA-8A66-4A0D-80AB-E81395E2A141}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{979ADD44-F3F0-4C0A-ACC8-D014E1EAD9C2}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{98C8FCC7-3455-40F1-927F-A24D76699B9A}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{98D17BB7-F9A2-4C89-B31A-8905B49996B1}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{98D68B65-983E-4B8E-8097-8771E2E3C4E6}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{99F24B25-7C1C-4AD8-890E-E589933CFF7A}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{9AFB4045-AC9A-48F8-934C-75F37FE7EBD0}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{9BE9965D-F246-4B58-94B4-C2F3383A1F3A}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{9C6CEEF6-F339-4882-9B86-DB680233B12E}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{9CFE35BE-97A9-49DC-B76E-4581D6D9E34F}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{9DD40871-2BC5-4BBD-9442-B13FF9830CAC}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{9EE9DC3D-7907-4DC7-9015-77BE21B11D31}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{A18E2BC8-FDB3-400B-8188-E7E2704F18A1}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{A20AF203-964B-4EB3-B95B-C85D6C0FF1A4}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{A39EA81A-7029-4494-B8FA-62BAEE2040B6}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{A427DC96-D955-4C2B-BD31-C3A04F6B9B91}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{A4594A9F-0252-4D25-98B2-158ACE8E6780}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{A5226BD4-94B8-4983-AE43-4B240DDB3650}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{A6435788-A5A3-483C-BE7B-69890D32B5C4}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{A75C1A7E-627D-4ACE-BF48-532CAFC4AE89}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{A7A45611-B3A8-440C-92F4-25C91F7E33CE}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{AA75CFF6-5157-4387-9093-1B895E758B94}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{AABAD942-90AB-4828-B157-45E56B60A4C2}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{AB5316C3-1BA5-4C7F-B601-0401D072A59E}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{AE48296B-9CC7-4379-A19A-43736EF4C415}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{AF740672-1D45-45A8-9E10-07F5FB0AE880}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{B0B290D3-E196-4BE3-B139-3A66F9638531}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{B1FF64B6-A854-49C8-AC90-9CDB8C54B43A}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{B208933E-CD9D-4B22-B1BE-672B972079DB}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{B35BCAD3-ADA0-4A3F-991B-3F463950540C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{B446F067-C8E5-479E-AF49-E6B29E4D9BD8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{B6764131-0934-4195-B2FC-B30B832B0DC6}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{B8455B46-816A-4598-A43F-5732E49999A9}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{B8C7C014-5DB6-4BA9-99F1-2BBE1121C14F}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{BB37020B-1CD2-4563-972C-4C860B05D4BD}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{BD646C74-F4F6-4DFF-866C-0A9A3A8368D8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{BD8BB528-AFDE-4666-A97F-EA1835E5F287}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{BE2E9EB5-938C-47DE-AB12-AA6917C7C7A8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{BF3485C2-F828-4135-BA00-B0906DA8D0EE}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C1963A28-239D-4CC4-9BAB-76777298DAA3}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C24A72E0-F4C9-406B-A183-EF06C54D676B}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C27BD2F6-FBCC-4066-9F2E-8ADAA65C9175}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C407A65E-CA92-4528-A486-333692FC763E}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C40A11CB-2234-46EC-9BFD-161C3C7C5794}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C554731C-E93A-41F1-BFB1-09863A0B4DFC}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C63B5828-D913-4D69-9D8F-0B1685FDCEAA}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C69E32A4-44DC-4AE3-A302-5CBF0C4A8619}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C7938587-015E-44D7-BA65-45F2CAC8CEBB}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C84B325A-6675-4532-8528-D82A51C156CA}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C84C6158-96F2-4E25-843A-DF52518892FC}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C9072427-C256-4C5C-A09E-1C60F45181B8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C9457E72-2624-4CD1-BAD5-DE0F8AB7283A}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{C99DC4B3-BAD9-4936-957C-33170801B594}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{CA9967DA-871D-479C-BC5D-BC2C5E781EEA}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{CD6C998C-AE66-4F1A-B5DA-005E77D0C212}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{CED4288B-1AE0-41D2-8940-461BBEFD22FD}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{D058040D-7843-4CB1-B759-26E3F16915F6}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{D2CE4B1F-8AEB-4E7B-BB88-FB8422F2A464}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{D2F20CFE-7272-466E-85AA-E99EECD0C23B}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{D310FDA4-B205-4DA4-BD64-C28DFA39D186}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{D40E3970-2464-41E6-9BE3-472BE26EEAC9}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{D5C45F31-9E5E-4258-9F18-91498F1C64FB}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{D6F9DED1-98E4-4B59-9F9D-F861B989D60D}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{D7F7FDE7-BE5D-4802-B045-C75358AD1104}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{D989CE91-D100-4078-A76C-D341632BBC51}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{DA14AC0D-B78B-4140-A782-62B756C814DB}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{DC90B05A-A93D-4D20-B7CA-AB94F2D665A8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{DDB5CAEC-F2F0-4A76-BB2B-4C1828B373CA}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{DE6A93B2-7D6D-46DF-93A8-7E41EF6A89EF}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{DEC14CEE-997E-49CA-AA52-5458C7C370FD}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{DEDAA5DE-146C-4167-A9A8-8C88B80F3EC1}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E0D08095-D706-4ECB-BFEA-6380AD030CF6}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E0FE94F7-8422-473C-8B3D-412A0A2B3ECB}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E1B15DCC-CBDC-4B80-BB5F-E1627B94E07C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E2950E00-576E-4142-8A28-1D4DC5D520A0}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E2D46772-93EF-4673-B89C-D177A9C2899B}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E2D557D2-28E6-468C-AB4B-A980BF6F9CA5}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E35150CE-4CB9-463D-889C-1EECDAC54B57}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E49D5D13-3A0E-47E5-9E07-12E5C8E92951}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E562BD0C-EA5C-4958-B3C0-C3347D644777}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E590E90D-D030-48CE-8EFB-FB574DD7A990}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E592787A-D316-48D1-9F89-31544D7343DC}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E68FCF58-2F21-4AEC-A6A0-F4484E46950E}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E77CA90E-C253-4AE1-8344-90F228667568}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{E7CDC7EE-2C32-4EC0-9589-CF52B8A41CE1}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{EACBC592-A93E-437C-967C-833812A970D8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{EBBB1436-0C70-42FA-911C-A2F730E2AC8D}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{EC95D101-37B9-4B4A-8B83-75B1C8A69435}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{EDD313BD-2443-49CF-A5F8-CE1A15BC7CD2}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{EDFC5E66-4F23-44A8-885C-C1CDDE8DF314}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{EE2F7E61-767A-4E4E-8989-214C42462551}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{EF5CAD3C-8F3B-48CF-AA00-3CC70409EDE0}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{F300FBEC-1814-45EF-93BE-A23D86CBBB85}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{F9171397-8EF9-44B9-A13F-94DC9BBE40C8}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{FBE987E5-C1A7-4D9B-98EB-B878287C7D1C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{FCBEA30B-9796-4129-B20E-14226C195EE0}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{FD4296C5-B7AE-4F96-A611-06765218BE89}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{FD725207-F899-4EF7-A20F-9ECCA4FA27C5}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{FDBDB2FB-048F-42FB-8BD7-2C1EF47C3E4C}
Successfully deleted: [Empty Folder] C:\Users\Niko\appdata\local\{FE21D2A0-5422-4271-AB3B-AEB245E9CDE4}



~~~ FireFox

Emptied folder: C:\Users\Niko\AppData\Roaming\mozilla\firefox\profiles\77dp60xc.default\minidumps [392 files]



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 17.12.2013 at 20:40:57,52
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
         
FRST

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 17-12-2013 02
Ran by Niko (administrator) on QUESTMASTER3000 on 17-12-2013 20:44:21
Running from C:\Users\Niko\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Infowatch) C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(LULU Software Limited) C:\Program Files (x86)\Soda PDF 5\HelperService.exe
(LULU Software Limited) C:\Program Files (x86)\Soda PDF 5\ConversionService.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Logitech Inc.) C:\Program Files\Common Files\Logitech\G-series Software\LGDCore.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
() C:\Program Files (x86)\Canon\ImageBrowser EX\MFManager.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Launch LGDCore] - C:\Program Files\Common Files\Logitech\G-series Software\LGDCore.exe [1783296 2006-07-23] (Logitech Inc.)
HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13374568 2011-12-13] (Realtek Semiconductor)
HKCU\...\Run: [] - [x]
MountPoints2: G - G:\pushinst.exe
MountPoints2: {1f2ae42a-6c2a-11e1-b0a8-6c626d05b0fe} - H:\Startme.exe
MountPoints2: {379e72df-efc9-11df-8b4a-bc0543012beb} - G:\autorun.exe
MountPoints2: {5a9cca7b-9dd3-11e0-84c8-6c626d05b0fe} - G:\AUTORUN.EXE
MountPoints2: {5cad3377-32e1-11e0-b4ea-bc0543012beb} - G:\Setup.exe
MountPoints2: {6aab9b84-3ad2-11e1-9c2a-6c626d05b0fe} - J:\AUTORUN.EXE
MountPoints2: {9a03c870-d632-11df-9e2c-806e6f6e6963} - F:\aoesetup.exe /autorun
MountPoints2: {a4e48009-2754-11e1-acab-6c626d05b0fe} - G:\AUTORUN.EXE
MountPoints2: {d76988f4-d636-11df-8edb-6c626d05b0fe} - H:\pushinst.exe
MountPoints2: {f77b1307-55ad-11e3-b52c-6c626d05b0fe} - G:\AUTORUN.EXE
HKLM-x32\...\Run: [NUSB3MON] - C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2010-01-22] (NEC Electronics Corporation)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [hpqSRMon] - C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe [150528 2008-07-22] (Hewlett-Packard)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM-x32\...\Run: [AVP] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [356128 2013-12-04] (Kaspersky Lab ZAO)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-09-05] (Adobe Systems Incorporated)
Startup: C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2010 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

BHO: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\x64\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
BHO-x32: Kaspersky Passsword Manager Toolbar - {215BA832-75A3-426E-A4FC-7C5B58CE6A10} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\spIEBho.dll (Kaspersky Lab)
BHO-x32: Content Blocker Plugin - {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Virtual Keyboard Plugin - {73455575-E40C-433C-9784-C78DC7761455} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Safe Money Plugin - {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\OnlineBanking\online_banking_bho.dll (Kaspersky Lab ZAO)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Soda PDF 5 IE Helper - {C737F472-1193-4281-BF53-A00B67AB3E19} - C:\Program Files (x86)\Soda PDF 5\PDFIEHelper.dll (LULU Software Limited)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: URL Advisor Plugin - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\IEExt\UrlAdvisor\klwtbbho.dll (Kaspersky Lab ZAO)
BHO-x32: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\smart web printing\hpswp_BHO.dll (Hewlett-Packard Co.)
Toolbar: HKLM-x32 - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} -  No File
Toolbar: HKLM-x32 - Soda PDF 5 IE Toolbar - {F335ABA2-FDB4-4644-92B2-5CC4B0FC91D6} - C:\Program Files (x86)\Soda PDF 5\PDFIEPlugin.dll (LULU Software Limited)
Toolbar: HKLM-x32 - Kaspersky Passsword Manager Toolbar - {215BA832-75A3-426E-A4FC-7C5B58CE6A10} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\spIEBho.dll (Kaspersky Lab)
Toolbar: HKCU - No Name - {DFEFCDEE-CF1A-4FC8-88AD-48514E463B27} -  No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} -  No File
Handler-x32: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

FireFox:
========
FF ProfilePath: C:\Users\Niko\AppData\Roaming\Mozilla\Firefox\C:\ProgramData\Kaspersky Lab\SafeBrowser\S-1-5-21-1216835461-190305365-3235199106-1000\FireFox
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.45.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~2\MIF5BA~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: pandonetworks.com/PandoWebPlugin - C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin HKCU: ubisoft.com/uplaypc - C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\foxsearch.src
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF HKLM-x32\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF HKLM-x32\...\Firefox\Extensions: [FFSodaPDF5Converter@sodapdf.com] - C:\Program Files (x86)\Soda PDF 5\FFSoda5Ext
FF Extension: Soda PDF 5 Converter For Firefox - C:\Program Files (x86)\Soda PDF 5\FFSoda5Ext
FF HKLM-x32\...\Firefox\Extensions:  - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\url_advisor@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\virtual_keyboard@kaspersky.com
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\content_blocker@kaspersky.com
FF Extension: Content Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\anti_banner@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\FFExt\online_banking@kaspersky.com
FF HKLM-x32\...\Thunderbird\Extensions: [te_9.0@nokia.com] - C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0
FF Extension: Thunderbird Address Book Synchronisation Extension - C:\Program Files (x86)\Nokia\Nokia Suite\Connectors\Thunderbird Connector\ThunderbirdExtension_9.0
FF HKCU\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome: 
=======
CHR HomePage: hxxp://www.google.com
CHR DefaultSearchKeyword: google.de
CHR DefaultSearchProvider: Google
CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Users\Niko\AppData\Local\Google\Chrome\Application\29.0.1547.66\ppGoogleNaClPluginChrome.dll No File
CHR Plugin: (Chrome PDF Viewer) - C:\Users\Niko\AppData\Local\Google\Chrome\Application\29.0.1547.66\pdf.dll No File
CHR Plugin: (Shockwave Flash) - C:\Users\Niko\AppData\Local\Google\Chrome\Application\29.0.1547.66\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll No File
CHR Plugin: (Norton Confidential) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk\2012.5.4.6_0\npcoplgn.dll No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll No File
CHR Plugin: (Shockwave for Director) - C:\Program Files (x86)\Mozilla Firefox\plugins\np32dsw.dll (Macromedia, Inc.)
CHR Plugin: (Java Deployment Toolkit 6.0.310.5) - C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll No File
CHR Plugin: (Java(TM) Platform SE 6 U31) - C:\Program Files (x86)\Java\jre6\bin\plugin2\npjp2.dll No File
CHR Plugin: (Gutscheinmieze-Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmieze.dll No File
CHR Plugin: (2007 Microsoft Office system) - C:\Program Files (x86)\Mozilla Firefox\plugins\NPOFF12.DLL No File
CHR Plugin: (Microsoft Office Live Plug-in for Firefox) - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
CHR Plugin: (iTunes Application Detector) - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
CHR Plugin: (Google Update) - C:\Users\Niko\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Extension: (Kaspersky URL Advisor) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchlnpcodkpfdpacogkljefecpegganj\13.0.1.4190_0
CHR Extension: (Safe Money) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hakdifolhalapjijoafobooafbilfakh\13.0.1.4190_0
CHR Extension: (Content Blocker) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\hghkgaeecgjhjkannahfamoehjmkjail\13.0.1.4190_0
CHR Extension: (Virtual Keyboard) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\jagncdcchgajhfhijbbhecadmaiegcmh\13.0.1.4292_0
CHR Extension: (DVDVideoSoft Browser Extension) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nikpibnbobmbdbheedjfogjlikpgpnhp\1.0.1.1_0
CHR Extension: (Chrome In-App Payments service) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.10_0
CHR Extension: (Anti-Banner) - C:\Users\Niko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjldcfjmnllhmgjclecdnfampinooman\13.0.1.4190_0
CHR HKLM-x32\...\Chrome\Extension: [dchlnpcodkpfdpacogkljefecpegganj] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\urladvisor.crx
CHR HKLM-x32\...\Chrome\Extension: [hakdifolhalapjijoafobooafbilfakh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\online_banking_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [hghkgaeecgjhjkannahfamoehjmkjail] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\content_blocker_chrome.crx
CHR HKLM-x32\...\Chrome\Extension: [jagncdcchgajhfhijbbhecadmaiegcmh] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\virtkbd.crx
CHR HKLM-x32\...\Chrome\Extension: [pjldcfjmnllhmgjclecdnfampinooman] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\ChromeExt\ab.crx
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Services (Whitelisted) =================

R2 AVP; C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\avp.exe [356128 2013-12-04] (Kaspersky Lab ZAO)
R2 CSObjectsSrv; C:\Program Files (x86)\Common Files\InfoWatch\CryptoStorage\ProtectedObjectsSrv.exe [819040 2012-12-21] (Infowatch)
S2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [75064 2011-01-08] ()
R2 Soda PDF 5 Helper Service; C:\Program Files (x86)\Soda PDF 5\HelperService.exe [1097544 2013-06-12] (LULU Software Limited)
R2 Soda PDF 5 Service; C:\Program Files (x86)\Soda PDF 5\ConversionService.exe [794440 2013-06-12] (LULU Software Limited)

==================== Drivers (Whitelisted) ====================

R0 CSCrySec; C:\Windows\System32\DRIVERS\CSCrySec.sys [84536 2011-06-02] (Infowatch)
R1 CSVirtualDiskDrv; C:\Windows\System32\DRIVERS\CSVirtualDiskDrv.sys [66616 2011-06-02] (Infowatch)
R3 CVPNDRVA; C:\Windows\system32\Drivers\CVPNDRVA.sys [304784 2010-03-23] ()
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-11-25] (Disc Soft Ltd)
S3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [552704 2009-03-20] (AVM GmbH)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [7717984 2013-12-04] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [626272 2013-12-04] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [28504 2012-08-02] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [29280 2013-12-04] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-12-04] (Kaspersky Lab ZAO)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [54368 2013-12-04] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [178448 2013-12-04] (Kaspersky Lab ZAO)
S3 ManyCam; C:\Windows\System32\DRIVERS\mcvidrv_x64.sys [44928 2012-10-11] (ManyCam LLC)
S3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
S3 mcaudrv_simple; C:\Windows\System32\drivers\mcaudrv_x64.sys [28160 2013-01-31] (ManyCam LLC)
S3 s0016bus; C:\Windows\System32\DRIVERS\s0016bus.sys [115240 2008-05-16] (MCCI Corporation)
S3 scvad_simple; C:\Windows\System32\drivers\SplitCamAudio.sys [23552 2013-04-24] (Windows (R) Win 7 DDK provider)
R1 Serial; C:\Windows\System32\DRIVERS\serial.sys [94208 2009-07-14] (Brother Industries Ltd.)
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
S3 VMC31D; C:\Windows\System32\Drivers\VMC31D.sys [179968 2008-04-09] (Vimicro Corporation)
S3 AODDriver; \??\C:\Program Files (x86)\AMD\OverDrive\amd64\AODDriver.sys [x]
U5 klflt; C:\Windows\System32\Drivers\klflt.sys [90208 2013-12-04] (Kaspersky Lab ZAO)
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [59904 2009-07-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-12-17 20:44 - 2013-12-17 20:44 - 00000000 ____D C:\Users\Niko\Downloads\FRST-OlderVersion
2013-12-17 20:40 - 2013-12-17 20:41 - 00026293 _____ C:\Users\Niko\Desktop\JRT.txt
2013-12-17 20:35 - 2013-12-17 20:35 - 00000000 ____D C:\Windows\ERUNT
2013-12-17 20:33 - 2013-12-17 20:33 - 00009865 _____ C:\Users\Niko\Desktop\AdwCleaner[S0].txt
2013-12-17 20:29 - 2013-12-17 20:31 - 00000000 ____D C:\AdwCleaner
2013-12-17 20:29 - 2013-12-17 20:29 - 01034531 _____ (Thisisu) C:\Users\Niko\Downloads\JRT.exe
2013-12-17 20:27 - 2013-12-17 20:27 - 01226750 _____ C:\Users\Niko\Downloads\adwcleaner.exe
2013-12-14 15:21 - 2013-12-14 15:21 - 00043370 _____ C:\Users\Niko\Downloads\Klausuren(1)
2013-12-13 18:11 - 2013-05-10 06:56 - 14631424 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2013-12-13 18:11 - 2013-05-10 06:56 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2013-12-13 18:11 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2013-12-13 18:11 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2013-12-13 18:09 - 2013-11-26 12:54 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-12-13 18:09 - 2013-11-26 11:19 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-12-13 18:09 - 2013-11-26 11:18 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-12-13 18:09 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-12-13 18:09 - 2013-11-26 10:48 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-12-13 18:09 - 2013-11-26 10:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-12-13 18:09 - 2013-11-26 10:41 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-12-13 18:09 - 2013-11-26 10:29 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-12-13 18:09 - 2013-11-26 10:27 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-12-13 18:09 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-12-13 18:09 - 2013-11-26 10:21 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-12-13 18:09 - 2013-11-26 10:18 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-12-13 18:09 - 2013-11-26 10:18 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-12-13 18:09 - 2013-11-26 10:16 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-12-13 18:09 - 2013-11-26 09:57 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-12-13 18:09 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-12-13 18:09 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-12-13 18:09 - 2013-11-26 09:35 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-12-13 18:09 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-12-13 18:09 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-12-13 18:09 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-12-13 18:09 - 2013-11-26 09:02 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-12-13 18:09 - 2013-11-26 08:48 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-12-13 18:09 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-12-13 18:09 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-12-13 18:09 - 2013-11-26 08:07 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-12-13 18:09 - 2013-11-26 07:40 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-12-13 18:09 - 2013-11-26 07:34 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-12-13 18:09 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-12-13 18:09 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-12-13 18:09 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-12-13 13:54 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-12-13 13:54 - 2013-11-23 18:47 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-12-13 13:54 - 2013-11-12 03:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2013-12-13 13:54 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2013-12-13 13:54 - 2013-10-30 03:32 - 00335360 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll
2013-12-13 13:54 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msieftp.dll
2013-12-13 13:54 - 2013-10-30 02:24 - 03155968 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2013-12-13 13:54 - 2013-10-19 03:18 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll
2013-12-13 13:54 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imagehlp.dll
2013-12-13 13:54 - 2013-10-12 03:32 - 00150016 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx
2013-12-13 13:54 - 2013-10-12 03:31 - 00202752 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll
2013-12-13 13:54 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshom.ocx
2013-12-13 13:54 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\scrrun.dll
2013-12-13 13:54 - 2013-10-12 02:33 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe
2013-12-13 13:54 - 2013-10-12 02:33 - 00156160 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe
2013-12-13 13:54 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscript.exe
2013-12-13 13:54 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cscript.exe
2013-12-13 13:54 - 2013-10-04 03:16 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys
2013-12-13 13:54 - 2013-10-04 02:36 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys
2013-12-12 10:27 - 2013-12-12 10:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-11 15:16 - 2013-12-11 15:16 - 00377856 _____ C:\Users\Niko\Downloads\gmer_2.1.19163.exe
2013-12-11 13:53 - 2013-12-17 20:44 - 00022190 _____ C:\Users\Niko\Downloads\FRST.txt
2013-12-11 13:53 - 2013-12-17 20:44 - 00000000 ____D C:\FRST
2013-12-11 13:53 - 2013-12-11 13:54 - 00037846 _____ C:\Users\Niko\Downloads\Addition.txt
2013-12-11 13:52 - 2013-12-17 20:44 - 01928214 _____ (Farbar) C:\Users\Niko\Downloads\FRST64.exe
2013-12-11 13:45 - 2013-12-11 13:45 - 00050477 _____ C:\Users\Niko\Downloads\Defogger.exe
2013-12-11 13:45 - 2013-12-11 13:45 - 00000540 _____ C:\Users\Niko\Desktop\defogger_disable.log
2013-12-11 13:45 - 2013-12-11 13:45 - 00000168 _____ C:\Users\Niko\defogger_reenable
2013-12-11 13:02 - 2013-12-11 13:02 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-05 21:49 - 2013-12-05 21:49 - 00000000 ____D C:\ProgramData\Websteroids
2013-12-05 20:25 - 2013-12-05 20:25 - 00000000 ____D C:\Users\Niko\Desktop\avz4
2013-12-05 19:04 - 2013-12-05 19:04 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-05 19:04 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2013-12-05 19:03 - 2013-12-05 19:03 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Niko\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-05 17:38 - 2013-04-24 09:45 - 00810496 _____ C:\Windows\SysWOW64\xvidcore.dll
2013-12-05 17:38 - 2013-04-24 09:45 - 00183808 _____ C:\Windows\SysWOW64\xvidvfw.dll
2013-12-05 17:38 - 2013-04-24 09:45 - 00080896 _____ C:\Windows\SysWOW64\ff_vfw.dll
2013-12-05 17:38 - 2013-04-24 09:45 - 00000590 _____ C:\Windows\SysWOW64\ff_vfw.dll.manifest
2013-12-05 17:36 - 2013-12-05 23:41 - 00000000 ____D C:\ProgramData\Updater
2013-12-05 17:36 - 2013-12-05 23:41 - 00000000 ____D C:\ProgramData\RHelpers
2013-12-05 17:36 - 2013-12-05 17:37 - 74022496 _____ (SplitCam Co.) C:\Users\Niko\Downloads\SplitCamSetup1.exe
2013-12-05 17:18 - 2013-12-05 17:19 - 04754256 _____ (Tlapia) C:\Users\Niko\Downloads\samsung-syncmaster-2263uw-.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02241694 _____ (Megaify Software                                            ) C:\Users\Niko\Downloads\driver_setup.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02035048 _____ (Easeware                                                    ) C:\Users\Niko\Downloads\DriversDownloader_for_2063W_2263_Driver_Jan2009.exe
2013-12-04 14:43 - 2012-10-11 04:08 - 00044928 _____ (ManyCam LLC) C:\Windows\system32\Drivers\mcvidrv_x64.sys
2013-12-04 14:38 - 2013-12-04 14:38 - 10799192 _____ (ManyCam LLC) C:\Users\Niko\Downloads\ManyCamSetup.exe
2013-12-04 12:00 - 2013-12-04 12:00 - 00002216 _____ C:\Users\Niko\Desktop\Sicherer Zahlungsverkehr.lnk
2013-12-04 12:00 - 2013-12-04 11:59 - 00001078 _____ C:\Users\Public\Desktop\Kaspersky PURE 3.0.lnk
2013-12-04 11:59 - 2013-12-17 20:42 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-04 11:59 - 2013-12-04 12:22 - 00626272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-12-04 11:59 - 2013-12-04 12:22 - 00090208 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2013-12-04 11:59 - 2013-12-04 12:22 - 00000000 ____D C:\Windows\ELAMBKUP
2013-12-04 11:59 - 2013-12-04 11:59 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-12-04 11:59 - 2012-07-11 17:09 - 00064856 _____ (Kaspersky Lab) C:\Windows\system32\klfphc.dll
2013-12-04 11:59 - 2011-06-02 14:39 - 00084536 _____ (Infowatch) C:\Windows\system32\Drivers\CSCrySec.sys
2013-12-04 11:59 - 2011-06-02 14:39 - 00066616 _____ (Infowatch) C:\Windows\system32\Drivers\CSVirtualDiskDrv.sys
2013-12-03 19:42 - 2013-12-03 19:44 - 00299284 _____ C:\Users\Niko\Downloads\kavremvr 2013-12-03 19-42-28 (pid 4816).log
2013-12-03 19:42 - 2013-12-03 19:42 - 05876192 _____ (Kaspersky Lab ZAO) C:\Users\Niko\Downloads\kavremover.exe
2013-12-02 21:39 - 2013-12-02 21:39 - 00000569 _____ C:\Users\Public\Desktop\Age of Empires II.lnk
2013-12-02 18:24 - 2013-12-02 19:55 - 188740896 _____ (Kaspersky Lab) C:\Users\Niko\Downloads\pure13.0.2.558DE_4340.exe
2013-12-02 15:30 - 2013-12-02 15:30 - 00002934 _____ C:\Windows\System32\Tasks\{B56D80DE-2BF5-4431-AE7D-EF6AC461BA36}
2013-11-29 20:13 - 2013-11-29 20:13 - 00002938 _____ C:\Windows\System32\Tasks\{8B0B2FA5-AECC-4577-BBE1-F36F579EC056}
2013-11-27 14:54 - 2008-04-08 20:55 - 04774927 _____ C:\Users\Niko\Desktop\kaiser2_v220.exe
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{9D45BAF4-090B-416A-BEAE-58E186B7AF81}
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{6E25A4CC-0165-4D47-BC2D-737AE62E5A05}
2013-11-26 22:08 - 2013-11-26 22:08 - 00002956 _____ C:\Windows\System32\Tasks\{39C61096-0393-49FE-9103-79A8C49767C3}
2013-11-25 23:55 - 2013-10-14 18:00 - 00028368 _____ (Microsoft Corporation) C:\Windows\system32\IEUDINIT.EXE
2013-11-25 23:52 - 2013-11-25 23:52 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-25 23:50 - 2013-11-25 23:55 - 00009768 _____ C:\Windows\IE11_main.log
2013-11-25 18:30 - 2013-11-25 18:30 - 00002924 _____ C:\Windows\System32\Tasks\{7D743872-4514-4F70-8963-CD993D7B3DA9}
2013-11-25 18:17 - 2013-11-25 18:26 - 00000000 ____D C:\Emergency
2013-11-25 14:12 - 2013-11-25 18:14 - 538612890 _____ C:\Users\Niko\Downloads\em1.7z
2013-11-25 13:43 - 2013-11-25 14:12 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.001
2013-11-25 13:12 - 2013-11-25 13:42 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.002
2013-11-25 12:58 - 2013-11-25 13:11 - 119182490 _____ C:\Users\Niko\Downloads\em1.7z.003
2013-11-25 10:36 - 2013-11-25 10:36 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-25 10:36 - 2013-11-25 10:36 - 00001950 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-25 10:36 - 2013-11-25 10:36 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-25 10:31 - 2013-11-25 10:31 - 00002924 _____ C:\Windows\System32\Tasks\{5ACEA32C-AE59-480F-ABC6-FBDB0BCA4D14}

==================== One Month Modified Files and Folders =======

2013-12-17 20:45 - 2013-12-11 13:53 - 00022190 _____ C:\Users\Niko\Downloads\FRST.txt
2013-12-17 20:44 - 2013-12-17 20:44 - 00000000 ____D C:\Users\Niko\Downloads\FRST-OlderVersion
2013-12-17 20:44 - 2013-12-11 13:53 - 00000000 ____D C:\FRST
2013-12-17 20:44 - 2013-12-11 13:52 - 01928214 _____ (Farbar) C:\Users\Niko\Downloads\FRST64.exe
2013-12-17 20:42 - 2013-12-04 11:59 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2013-12-17 20:42 - 2009-07-14 05:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2013-12-17 20:42 - 2009-07-14 05:45 - 00015152 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2013-12-17 20:41 - 2013-12-17 20:40 - 00026293 _____ C:\Users\Niko\Desktop\JRT.txt
2013-12-17 20:35 - 2013-12-17 20:35 - 00000000 ____D C:\Windows\ERUNT
2013-12-17 20:33 - 2013-12-17 20:33 - 00009865 _____ C:\Users\Niko\Desktop\AdwCleaner[S0].txt
2013-12-17 20:33 - 2012-05-23 17:39 - 00092660 _____ C:\Windows\setupact.log
2013-12-17 20:33 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2013-12-17 20:32 - 2010-10-12 20:00 - 01378086 _____ C:\Windows\WindowsUpdate.log
2013-12-17 20:31 - 2013-12-17 20:29 - 00000000 ____D C:\AdwCleaner
2013-12-17 20:31 - 2012-05-10 15:12 - 00000000 ____D C:\Windows\System32\Tasks\NCH Software
2013-12-17 20:29 - 2013-12-17 20:29 - 01034531 _____ (Thisisu) C:\Users\Niko\Downloads\JRT.exe
2013-12-17 20:27 - 2013-12-17 20:27 - 01226750 _____ C:\Users\Niko\Downloads\adwcleaner.exe
2013-12-17 20:26 - 2010-10-13 19:31 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Skype
2013-12-16 23:51 - 2012-04-01 18:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2013-12-15 22:44 - 2012-04-15 19:12 - 00000000 ____D C:\Users\Niko\Desktop\FK 10
2013-12-15 22:04 - 2013-08-15 10:15 - 00000000 ____D C:\Windows\system32\MRT
2013-12-15 22:04 - 2010-10-13 22:11 - 90708896 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2013-12-15 15:29 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2013-12-14 15:21 - 2013-12-14 15:21 - 00043370 _____ C:\Users\Niko\Downloads\Klausuren(1)
2013-12-14 13:43 - 2009-07-14 18:58 - 00699416 _____ C:\Windows\system32\perfh007.dat
2013-12-14 13:43 - 2009-07-14 18:58 - 00149556 _____ C:\Windows\system32\perfc007.dat
2013-12-14 13:43 - 2009-07-14 06:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI
2013-12-14 13:38 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2013-12-14 13:36 - 2009-07-14 05:45 - 00382984 _____ C:\Windows\system32\FNTCACHE.DAT
2013-12-13 18:10 - 2012-04-29 12:34 - 00000000 ____D C:\ProgramData\Microsoft Help
2013-12-12 17:09 - 2012-05-04 11:43 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-12 10:27 - 2013-12-12 10:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-11 18:31 - 2012-05-23 17:39 - 00845668 _____ C:\Windows\PFRO.log
2013-12-11 15:16 - 2013-12-11 15:16 - 00377856 _____ C:\Users\Niko\Downloads\gmer_2.1.19163.exe
2013-12-11 13:54 - 2013-12-11 13:53 - 00037846 _____ C:\Users\Niko\Downloads\Addition.txt
2013-12-11 13:51 - 2012-04-01 18:41 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2013-12-11 13:51 - 2012-04-01 18:41 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2013-12-11 13:51 - 2011-06-01 09:06 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2013-12-11 13:45 - 2013-12-11 13:45 - 00050477 _____ C:\Users\Niko\Downloads\Defogger.exe
2013-12-11 13:45 - 2013-12-11 13:45 - 00000540 _____ C:\Users\Niko\Desktop\defogger_disable.log
2013-12-11 13:45 - 2013-12-11 13:45 - 00000168 _____ C:\Users\Niko\defogger_reenable
2013-12-11 13:45 - 2010-10-12 20:05 - 00000000 ____D C:\Users\Niko
2013-12-11 13:04 - 2010-10-12 20:50 - 00000000 ____D C:\Users\Niko\AppData\Local\Adobe
2013-12-11 13:02 - 2013-12-11 13:02 - 00002019 _____ C:\Users\Public\Desktop\Adobe Reader XI.lnk
2013-12-11 13:02 - 2010-10-12 20:17 - 00000000 ____D C:\ProgramData\Adobe
2013-12-11 13:02 - 2010-10-12 20:17 - 00000000 ____D C:\Program Files (x86)\Adobe
2013-12-05 23:41 - 2013-12-05 17:36 - 00000000 ____D C:\ProgramData\Updater
2013-12-05 23:41 - 2013-12-05 17:36 - 00000000 ____D C:\ProgramData\RHelpers
2013-12-05 21:49 - 2013-12-05 21:49 - 00000000 ____D C:\ProgramData\Websteroids
2013-12-05 20:57 - 2011-11-03 15:21 - 00000000 ____D C:\Users\Niko\Desktop\Bewerbungszeug
2013-12-05 20:25 - 2013-12-05 20:25 - 00000000 ____D C:\Users\Niko\Desktop\avz4
2013-12-05 19:04 - 2013-12-05 19:04 - 00001109 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\ProgramData\Malwarebytes
2013-12-05 19:04 - 2013-12-05 19:04 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-12-05 19:03 - 2013-12-05 19:03 - 10285040 _____ (Malwarebytes Corporation                                    ) C:\Users\Niko\Downloads\mbam-setup-1.75.0.1300.exe
2013-12-05 17:37 - 2013-12-05 17:36 - 74022496 _____ (SplitCam Co.) C:\Users\Niko\Downloads\SplitCamSetup1.exe
2013-12-05 17:37 - 2010-10-12 20:42 - 00000000 ____D C:\Users\Niko\AppData\Local\CrashDumps
2013-12-05 17:19 - 2013-12-05 17:18 - 04754256 _____ (Tlapia) C:\Users\Niko\Downloads\samsung-syncmaster-2263uw-.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02241694 _____ (Megaify Software                                            ) C:\Users\Niko\Downloads\driver_setup.exe
2013-12-05 17:13 - 2013-12-05 17:13 - 02035048 _____ (Easeware                                                    ) C:\Users\Niko\Downloads\DriversDownloader_for_2063W_2263_Driver_Jan2009.exe
2013-12-04 14:38 - 2013-12-04 14:38 - 10799192 _____ (ManyCam LLC) C:\Users\Niko\Downloads\ManyCamSetup.exe
2013-12-04 12:22 - 2013-12-04 11:59 - 00626272 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klif.sys
2013-12-04 12:22 - 2013-12-04 11:59 - 00090208 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klflt.sys
2013-12-04 12:22 - 2013-12-04 11:59 - 00000000 ____D C:\Windows\ELAMBKUP
2013-12-04 12:22 - 2012-10-18 14:50 - 00054368 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kltdi.sys
2013-12-04 12:22 - 2012-09-03 18:23 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klmouflt.sys
2013-12-04 12:22 - 2012-09-03 17:57 - 00029280 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\klkbdflt.sys
2013-12-04 12:22 - 2012-08-13 16:49 - 00178448 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kneps.sys
2013-12-04 12:22 - 2012-06-19 17:28 - 07717984 _____ (Kaspersky Lab ZAO) C:\Windows\system32\Drivers\kl1.sys
2013-12-04 12:00 - 2013-12-04 12:00 - 00002216 _____ C:\Users\Niko\Desktop\Sicherer Zahlungsverkehr.lnk
2013-12-04 11:59 - 2013-12-04 12:00 - 00001078 _____ C:\Users\Public\Desktop\Kaspersky PURE 3.0.lnk
2013-12-04 11:59 - 2013-12-04 11:59 - 00000000 ____D C:\Program Files (x86)\Kaspersky Lab
2013-12-04 11:20 - 2010-10-13 19:29 - 00000000 ___RD C:\Program Files (x86)\Skype
2013-12-04 11:20 - 2010-10-13 19:29 - 00000000 ____D C:\ProgramData\Skype
2013-12-03 20:19 - 2010-10-12 20:05 - 00000000 ____D C:\Users\Niko\AppData\Local\VirtualStore
2013-12-03 19:44 - 2013-12-03 19:42 - 00299284 _____ C:\Users\Niko\Downloads\kavremvr 2013-12-03 19-42-28 (pid 4816).log
2013-12-03 19:42 - 2013-12-03 19:42 - 05876192 _____ (Kaspersky Lab ZAO) C:\Users\Niko\Downloads\kavremover.exe
2013-12-03 18:29 - 2010-10-12 20:21 - 00098864 _____ C:\Users\Niko\AppData\Local\GDIPFONTCACHEV1.DAT
2013-12-02 21:39 - 2013-12-02 21:39 - 00000569 _____ C:\Users\Public\Desktop\Age of Empires II.lnk
2013-12-02 19:55 - 2013-12-02 18:24 - 188740896 _____ (Kaspersky Lab) C:\Users\Niko\Downloads\pure13.0.2.558DE_4340.exe
2013-12-02 18:52 - 2010-10-14 17:51 - 00000000 ____D C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2013-12-02 15:30 - 2013-12-02 15:30 - 00002934 _____ C:\Windows\System32\Tasks\{B56D80DE-2BF5-4431-AE7D-EF6AC461BA36}
2013-11-30 10:59 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2013-11-29 20:13 - 2013-11-29 20:13 - 00002938 _____ C:\Windows\System32\Tasks\{8B0B2FA5-AECC-4577-BBE1-F36F579EC056}
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{9D45BAF4-090B-416A-BEAE-58E186B7AF81}
2013-11-26 22:10 - 2013-11-26 22:10 - 00002956 _____ C:\Windows\System32\Tasks\{6E25A4CC-0165-4D47-BC2D-737AE62E5A05}
2013-11-26 22:08 - 2013-11-26 22:08 - 00002956 _____ C:\Windows\System32\Tasks\{39C61096-0393-49FE-9103-79A8C49767C3}
2013-11-26 17:49 - 2010-10-12 20:06 - 00001421 _____ C:\Users\Niko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2013-11-26 17:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\PolicyDefinitions
2013-11-26 12:54 - 2013-12-13 18:09 - 23183360 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2013-11-26 11:19 - 2013-12-13 18:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2013-11-26 11:18 - 2013-12-13 18:09 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2013-11-26 11:11 - 2013-12-13 18:09 - 17112576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2013-11-26 10:48 - 2013-12-13 18:09 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2013-11-26 10:46 - 2013-12-13 18:09 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2013-11-26 10:41 - 2013-12-13 18:09 - 02764288 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2013-11-26 10:29 - 2013-12-13 18:09 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2013-11-26 10:27 - 2013-12-13 18:09 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2013-11-26 10:23 - 2013-12-13 18:09 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2013-11-26 10:21 - 2013-12-13 18:09 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2013-11-26 10:18 - 2013-12-13 18:09 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2013-11-26 10:18 - 2013-12-13 18:09 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2013-11-26 10:16 - 2013-12-13 18:09 - 00708608 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2013-11-26 09:57 - 2013-12-13 18:09 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2013-11-26 09:38 - 2013-12-13 18:09 - 02166784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2013-11-26 09:38 - 2013-12-13 18:09 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2013-11-26 09:35 - 2013-12-13 18:09 - 05769216 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2013-11-26 09:32 - 2013-12-13 18:09 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2013-11-26 09:28 - 2013-12-13 18:09 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2013-11-26 09:16 - 2013-12-13 18:09 - 04243968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2013-11-26 09:02 - 2013-12-13 18:09 - 01995264 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2013-11-26 08:48 - 2013-12-13 18:09 - 12996608 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2013-11-26 08:32 - 2013-12-13 18:09 - 01928192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2013-11-26 08:26 - 2013-12-13 18:09 - 11221504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2013-11-26 08:07 - 2013-12-13 18:09 - 02334208 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2013-11-26 07:40 - 2013-12-13 18:09 - 01395200 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2013-11-26 07:34 - 2013-12-13 18:09 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2013-11-26 07:34 - 2013-12-13 18:09 - 00703488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2013-11-26 07:33 - 2013-12-13 18:09 - 01820160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2013-11-26 07:27 - 2013-12-13 18:09 - 01157632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2013-11-25 23:55 - 2013-11-25 23:50 - 00009768 _____ C:\Windows\IE11_main.log
2013-11-25 23:52 - 2013-11-25 23:52 - 01228800 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 01051136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00942592 _____ (Microsoft Corporation) C:\Windows\system32\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00774144 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00645120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsIntl.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00626176 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00616104 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dat
2013-11-25 23:52 - 2013-11-25 23:52 - 00610304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00523776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00413696 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00367104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00337408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2013-11-25 23:52 - 2013-11-25 23:52 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00263376 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00247808 _____ (Microsoft Corporation) C:\Windows\system32\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00244736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00243200 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00238288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00235008 _____ (Microsoft Corporation) C:\Windows\system32\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00233472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\url.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00208384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00194048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\elshyph.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00182272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msls31.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00167424 _____ (Microsoft Corporation) C:\Windows\system32\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00151552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iexpress.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00147968 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00143872 _____ (Microsoft Corporation) C:\Windows\system32\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00139264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wextract.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00131072 _____ (Microsoft Corporation) C:\Windows\system32\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00127488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00111616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IEAdvpack.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00105984 _____ (Microsoft Corporation) C:\Windows\system32\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00101376 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesysprep.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00086016 _____ (Microsoft Corporation) C:\Windows\system32\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00083456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00077312 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00074240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SetIEInstalledDate.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00071680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RegisterIEPKEYs.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00069120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\icardie.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2013-11-25 23:52 - 2013-11-25 23:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00056832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pngfilt.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00052224 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\mshtmler.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedsbs.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00040448 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imgutil.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00034816 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\licmgr10.dll
2013-11-25 23:52 - 2013-11-25 23:52 - 00013824 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshta.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2013-11-25 23:52 - 2013-11-25 23:52 - 00012800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeedssync.exe
2013-11-25 18:30 - 2013-11-25 18:30 - 00002924 _____ C:\Windows\System32\Tasks\{7D743872-4514-4F70-8963-CD993D7B3DA9}
2013-11-25 18:26 - 2013-11-25 18:17 - 00000000 ____D C:\Emergency
2013-11-25 18:14 - 2013-11-25 14:12 - 538612890 _____ C:\Users\Niko\Downloads\em1.7z
2013-11-25 14:12 - 2013-11-25 13:43 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.001
2013-11-25 13:42 - 2013-11-25 13:12 - 209715200 _____ C:\Users\Niko\Downloads\em1.7z.002
2013-11-25 13:11 - 2013-11-25 12:58 - 119182490 _____ C:\Users\Niko\Downloads\em1.7z.003
2013-11-25 10:46 - 2011-01-08 17:16 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2013-11-25 10:37 - 2011-01-08 17:16 - 00000000 ____D C:\Users\Niko\AppData\Roaming\DAEMON Tools Lite
2013-11-25 10:36 - 2013-11-25 10:36 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2013-11-25 10:36 - 2013-11-25 10:36 - 00001950 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2013-11-25 10:36 - 2013-11-25 10:36 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite
2013-11-25 10:31 - 2013-11-25 10:31 - 00002924 _____ C:\Windows\System32\Tasks\{5ACEA32C-AE59-480F-ABC6-FBDB0BCA4D14}
2013-11-23 20:26 - 2012-01-25 22:45 - 00000000 ___RD C:\Users\Niko\Desktop\Spiele
2013-11-23 19:26 - 2013-12-13 13:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMPhoto.dll
2013-11-23 18:47 - 2013-12-13 13:54 - 00465920 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll
2013-11-23 00:28 - 2010-10-12 20:12 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2013-11-20 13:41 - 2013-11-20 13:39 - 00000000 ____D C:\populous
2013-11-20 10:34 - 2011-02-05 15:59 - 00000000 ____D C:\PopulousTB
2013-11-19 21:57 - 2013-11-19 21:57 - 00173578 _____ C:\Users\Niko\Downloads\populous.zip

Some content of TEMP:
====================
C:\Users\Niko\AppData\Local\Temp\pid16.dll
C:\Users\Niko\AppData\Local\Temp\pid32.dll
C:\Users\Niko\AppData\Local\Temp\Quarantine.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2013-12-10 09:30

==================== End Of Log ============================
         
--- --- ---


Alt 18.12.2013, 10:40   #6
schrauber
/// the machine
/// TB-Ausbilder
 

Websteroids & Safe Web Alliance - Status der Infektion unbekannt - Standard

Websteroids & Safe Web Alliance - Status der Infektion unbekannt




ESET Online Scanner

  • Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
  • Lade und starte Eset Online Scanner
  • Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
  • Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
  • Klicke auf Starten.
  • Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
  • Klicke am Ende des Suchlaufs auf Fertig stellen.
  • Schließe das Fenster von ESET.
  • Explorer öffnen.
  • C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
  • Logfile hier posten.
  • Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
  • Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset


Downloade Dir bitte SecurityCheck und:

  • Speichere es auf dem Desktop.
  • Starte SecurityCheck.exe und folge den Anweisungen in der DOS-Box.
  • Wenn der Scan beendet wurde sollte sich ein Textdokument (checkup.txt) öffnen.
Poste den Inhalt bitte hier.

und ein frisches FRST log bitte. Noch Probleme?
__________________
--> Websteroids & Safe Web Alliance - Status der Infektion unbekannt

Antwort

Themen zu Websteroids & Safe Web Alliance - Status der Infektion unbekannt
administrator, bildschirm, chip.de, download, kaspersky, malwarebytes, microsoft, problem, programm, pup.loadtubes, pup.optional.conduit, pup.optional.conduit.a, pup.optional.opencandy, pup.optional.regcleanerpro.a, pup.optional.safemonitor.a, pup.optional.searchagent, pup.optional.searchdonkey.a, pup.optional.sweetim.a, pup.optional.topmedia, pup.optional.valueapps, regclean, safe web alliance, trojan.agent, trojaner board, websteroids



Ähnliche Themen: Websteroids & Safe Web Alliance - Status der Infektion unbekannt


  1. Windows 8.1: Größtenteils behandelte Infektion, Symptome unbekannt
    Log-Analyse und Auswertung - 09.12.2014 (9)
  2. Websteroids 2.6.53 installiert sich immer wieder automatisch
    Plagegeister aller Art und deren Bekämpfung - 07.09.2014 (3)
  3. PUP.Optional.WebSteroids.A
    Plagegeister aller Art und deren Bekämpfung - 18.08.2014 (9)
  4. Avast: Infektion blockiert , Infektion: URL:Mal (bei Ebay.de)
    Plagegeister aller Art und deren Bekämpfung - 21.05.2014 (3)
  5. Websteroids lässt sich nicht entfernen - mit MyPhoneExplorer wohl installiert
    Plagegeister aller Art und deren Bekämpfung - 18.04.2014 (19)
  6. Websteroids entfernen
    Anleitungen, FAQs & Links - 06.12.2013 (2)
  7. "Dark Mail Alliance" arbeitet an abhörsicherer Mail
    Nachrichten - 31.10.2013 (0)
  8. Pay Safe - PC gesperrt
    Plagegeister aller Art und deren Bekämpfung - 26.06.2013 (15)
  9. MSC unbekannt
    Alles rund um Windows - 20.06.2013 (3)
  10. Status: 0x00000e9 und Status:0xc0000001
    Plagegeister aller Art und deren Bekämpfung - 25.08.2010 (1)
  11. TR/Atraps.Gen Unklarer Status Infektion
    Plagegeister aller Art und deren Bekämpfung - 12.10.2009 (1)
  12. Status: Netzwerkadresse beziehen
    Netzwerk und Hardware - 18.01.2007 (9)
  13. error safe
    Plagegeister aller Art und deren Bekämpfung - 26.04.2006 (1)
  14. Error.Safe
    Plagegeister aller Art und deren Bekämpfung - 28.01.2006 (1)
  15. F@H-FAQ...Status?
    Lob, Kritik und Wünsche - 25.04.2005 (5)
  16. AGP Status aktivieren, wie?
    Netzwerk und Hardware - 07.02.2005 (2)

Zum Thema Websteroids & Safe Web Alliance - Status der Infektion unbekannt - Grüß euch liebes Trojaner Board, ich hab vor ca. 1 Woche ein Problem mit "Websteroids" und "Safe Web Alliance" gehabt. Zu Websteroids: Während der Anwedung von Firefox tauchten immer wieder - Websteroids & Safe Web Alliance - Status der Infektion unbekannt...
Archiv
Du betrachtest: Websteroids & Safe Web Alliance - Status der Infektion unbekannt auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.