Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Toolbar lässt ich nicht entfernen

Toolbar lässt ich nicht entfernen


Plagegeister aller Art und deren Bekämpfung: Toolbar lässt ich nicht entfernen

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 20.01.2014, 16:34   #1
xNato
 
Toolbar lässt ich nicht entfernen - Unglücklich

Toolbar lässt ich nicht entfernen


Hallo liebe Gemeinde bin neu hier

Ich habe folgendes Problem aus irgendwelchen Gründen wurde über dem Browser eine Toolbar installiert die bei Malwarebytes als Virus angezeigt wird jedoch wenn ich HijackThis drüber laufen lasse kann ich nichts finden ich bin mir nicht sicher ob die Schadsoftware noch auf meinem PC ist brauche da bitte hilfe.

Und auch noch folgendes:
1. Benutze Avast Premier als Virenprogramm jedoch die gecrackte Version macht es Sinn das Original zu kaufen.
2. Welche Tools bzw. Programme kann ich am PC installieren der alles findet und entfernt sprich: Malware. Spyware, Viren sowie Toolbars.
3. Welche sind da zu empfehlen.
__________________
Zitat:
Es gehört zu den Merkmalen eines Politikers, sich grundsätzlich an nichts erinnern zu können.

Alt 20.01.2014, 16:49   #2
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Toolbar lässt ich nicht entfernen - Standard

Toolbar lässt ich nicht entfernen


Hallo und


Lesestoff:
Bitte keine Hijackthis-Logfiles posten!!!

Zitat:
Zitat von Larusso Beitrag anzeigen
Uns ist klar, dass HijackThis wahrscheinlich eines der bekanntesten Analysetools ist.
Jedoch scannt es nur noch sehr oberflächlich und gibt uns für eine genaue Analyse eures Systems zu wenig Informationen.

Darum, bitte keine HijackThis Logfiles posten, sondern folgendes lesen und abarbeiten.

http://www.trojaner-board.de/69886-a...-beachten.html

Nur mit diesen Informationen können wir euch helfen.

Danke





Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!



Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST Download FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)



Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
__________________

__________________
Alt 20.01.2014, 16:57   #3
xNato
 
Toolbar lässt ich nicht entfernen - Standard

Toolbar lässt ich nicht entfernen


FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 19-01-2014 04
Ran by Jan (administrator) on JAN-PC on 20-01-2014 16:54:53
Running from C:\Users\Jan\Downloads
Windows 7 Ultimate Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal



==================== Processes (Whitelisted) =================

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LGDevAgt.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\Applets\LCDCountdown.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\Applets\LCDClock.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\Applets\LCDRSS.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\Applets\LCDMedia.exe
(Logitech Inc.) C:\Program Files\Logitech\GamePanel Software\Applets\LCDPop3.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(MSI) C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Program Files\Windows Media Player\WMPSideShowGadget.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [RTHDVCPL] - C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [6463592 2012-02-03] (Realtek Semiconductor)
HKLM\...\Run: [Launch LgDeviceAgent] - C:\Program Files\Logitech\GamePanel Software\LgDevAgt.exe [415816 2010-06-11] (Logitech Inc.)
HKLM\...\Run: [Launch LCDMon] - C:\Program Files\Logitech\GamePanel Software\LCD Manager\LCDMon.exe [2413128 2010-06-11] (Logitech Inc.)
HKLM\...\Run: [Launch LGDCore] - C:\Program Files\Logitech\GamePanel Software\G-series Software\LGDCore.exe [4725320 2010-06-11] (Logitech Inc.)
HKLM\...\Run: [NvBackend] - C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-10] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] - C:\Windows\system32\nvspcap64.dll [1100248 2013-12-10] (NVIDIA Corporation)
HKLM-x32\...\Run: [USB3MON] - C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-01-26] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

ProxyServer: 221.10.102.199:80
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
SearchScopes: HKLM - DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzuzz0Czzzy0AyD0C0AtA0D0DtAtA0CyByEtN0D0Tzu0SyCzyyEtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1974270314&ir=
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzuzz0Czzzy0AyD0C0AtA0D0DtAtA0CyByEtN0D0Tzu0SyCzyyEtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1974270314&ir=
SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd1103&cd=2XzuyEtN2Y1L1Qzuzz0Czzzy0AyD0C0AtA0D0DtAtA0CyByEtN0D0Tzu0SyCzyyEtN1L2XzutBtFtBtFtCyEtFtCtAyBzytN1L1CzutCyD1B1P1R&cr=1974270314&ir=
BHO: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - D:\Programme\MS-Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\Programme\MS-Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - D:\Programme\MS-Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - D:\Programme\MS-Office\Office15\MSOSB.DLL (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

Chrome: 
=======
CHR HomePage: hxxp://www.google.de/
CHR Extension: (Google Docs) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-11-24]
CHR Extension: (Google Drive) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-11-24]
CHR Extension: (YouTube) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-11-24]
CHR Extension: (Google-Suche) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-11-24]
CHR Extension: (avast! Online Security) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2013-11-26]
CHR Extension: (Hedgehog in the fog) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\haocganpkafanhkfldbbmhcpaelmkejg [2013-11-27]
CHR Extension: (Google Wallet) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-11-24]
CHR Extension: (Google Mail) - C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-11-24]

==================== Services (Whitelisted) =================

S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [49152 2014-01-08] ()
S2 HOSTS Anti-PUPs; C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs\HOSTS_Anti-Adware.exe [285795 2014-01-19] ()
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [133120 2012-02-02] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-01-20] (Intel Corporation)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super-Charger\ChargeService.exe [138768 2012-01-03] (MSI)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [15129376 2013-12-10] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2013-11-24] ()

==================== Drivers (Whitelisted) ====================

R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283200 2014-01-11] (DT Soft Ltd)
R3 ikbevent; C:\Windows\System32\DRIVERS\ikbevent.sys [25536 2012-02-02] ()
R3 imsevent; C:\Windows\System32\DRIVERS\imsevent.sys [25536 2012-02-02] ()
R3 ISCT; C:\Windows\System32\DRIVERS\ISCTD64.sys [44992 2012-02-02] ()
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super-Charger\NTIOLib_X64.sys [14136 2010-01-18] (MSI)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [39200 2013-12-05] (NVIDIA Corporation)
R3 SaiMini; C:\Windows\System32\DRIVERS\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\System32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
R3 WPRO_41_2001; C:\Windows\System32\drivers\WPRO_41_2001.sys [34752 2014-01-20] ()
S3 MSICDSetup; \??\H:\CDriver64.sys [x]
S3 NTIOLib_1_0_C; \??\H:\NTIOLib_X64.sys [x]
S3 VGPU; System32\drivers\rdvgkmd.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-20 16:54 - 2014-01-20 16:55 - 00010901 _____ C:\Users\Jan\Downloads\FRST.txt
2014-01-20 16:54 - 2014-01-20 16:54 - 02076672 _____ (Farbar) C:\Users\Jan\Downloads\FRST64.exe
2014-01-20 16:54 - 2014-01-20 16:54 - 00000000 ____D C:\FRST
2014-01-20 16:52 - 2014-01-20 16:52 - 21956657 _____ C:\Users\Jan\Downloads\Nicht bestätigt 492522.crdownload
2014-01-20 16:51 - 2014-01-20 16:51 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-01-19 22:45 - 2014-01-19 22:45 - 00000000 ____D C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs
2014-01-19 22:35 - 2014-01-19 22:53 - 00000000 ____D C:\AdwCleaner
2014-01-19 22:35 - 2014-01-19 22:35 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Malwarebytes
2014-01-19 22:35 - 2014-01-19 22:35 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-19 22:10 - 2014-01-19 22:21 - 00000000 ____D C:\Program Files (x86)\Stellar Phoenix Photo Recovery
2014-01-19 22:08 - 2014-01-19 22:08 - 00000000 ____D C:\Users\Jan\.android
2014-01-19 21:59 - 2014-01-19 21:59 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
2014-01-19 21:59 - 2014-01-19 21:59 - 00000000 ____D C:\Program Files (x86)\Convar
2014-01-19 20:14 - 1998-06-18 00:00 - 00089360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VB5DB.DLL
2014-01-18 22:27 - 2014-01-18 22:27 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-01-16 16:17 - 2014-01-16 16:17 - 00005327 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-15 16:04 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 16:04 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 16:04 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 16:04 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 16:04 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 16:04 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 16:04 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 16:04 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-15 16:04 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-12 20:56 - 2014-01-12 20:56 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-12 20:56 - 2014-01-12 20:56 - 00000000 ____D C:\Program Files\WinRAR
2014-01-12 20:49 - 2014-01-16 16:18 - 00000000 ____D C:\ProgramData\Oracle
2014-01-12 20:49 - 2014-01-16 16:17 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-12 20:49 - 2014-01-12 20:49 - 00000000 ____D C:\ProgramData\Sun
2014-01-12 20:49 - 2013-12-18 21:09 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-12 20:49 - 2013-12-18 21:04 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-12 20:49 - 2013-12-18 21:04 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-12 20:49 - 2013-12-18 21:03 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-12 13:21 - 2014-01-12 13:21 - 04126711 _____ C:\Users\Jan\Downloads\dreamboxedit_setup.exe.zip
2014-01-12 13:17 - 2014-01-12 13:18 - 04188532 _____ C:\Users\Jan\Downloads\dcc296.zip
2014-01-11 16:27 - 2014-01-11 16:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-11 16:26 - 2014-01-11 16:26 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2014-01-11 16:26 - 2014-01-11 16:26 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2014-01-11 15:32 - 2014-01-11 15:32 - 00000000 __RHD C:\MSOCache
2014-01-11 15:21 - 2014-01-11 15:21 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Windows\PCHEALTH
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2014-01-11 15:19 - 2014-01-15 16:08 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-11 15:19 - 2014-01-11 15:19 - 00000000 ____D C:\Users\Jan\AppData\Local\Microsoft Help
2014-01-11 15:19 - 2014-01-11 15:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2014-01-11 15:17 - 2014-01-11 15:19 - 00000000 ____D C:\Users\Jan\AppData\Roaming\DAEMON Tools Pro
2014-01-11 15:17 - 2014-01-11 15:17 - 00283200 _____ (DT Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-01-11 15:17 - 2014-01-11 15:17 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Pro
2014-01-11 15:16 - 2014-01-11 15:19 - 00000000 ____D C:\ProgramData\DAEMON Tools Pro
2014-01-11 15:07 - 2014-01-11 15:07 - 00000000 ____D C:\ProgramData\DAEMON Tools Ult
2014-01-11 15:05 - 2014-01-11 15:07 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Ultra
2014-01-11 14:58 - 2014-01-11 14:58 - 00000000 ____D C:\Users\Jan\AppData\Roaming\DAEMON Tools Ult
2014-01-11 14:57 - 2014-01-11 14:57 - 00000000 ____D C:\Users\Jan\AppData\Local\Disc_Soft_Ltd
2014-01-11 14:55 - 2014-01-11 15:07 - 00000000 ____D C:\ProgramData\DAEMON Tools Ultra
2014-01-11 14:55 - 2014-01-11 14:56 - 00000000 ____D C:\Users\Jan\AppData\Roaming\DAEMON Tools Ultra
2014-01-09 12:37 - 2014-01-09 12:37 - 00000000 ____D C:\Users\Jan\AppData\Local\DayZCommander
2014-01-09 12:36 - 2014-01-10 21:38 - 00000000 ____D C:\Program Files (x86)\Dotjosh Studios
2014-01-09 12:36 - 2014-01-09 12:36 - 00001345 _____ C:\Users\Public\Desktop\DayZ Commander.lnk
2014-01-09 12:34 - 2014-01-09 12:34 - 00000000 ____D C:\Users\Jan\AppData\Local\ArmA 2
2014-01-08 15:34 - 2013-12-19 21:33 - 30372640 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglv64.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 25257248 _____ (NVIDIA Corporation) C:\Windows\system32\nvcompiler.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 22960416 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglv32.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 18222008 _____ (NVIDIA Corporation) C:\Windows\system32\nvd3dumx.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 17560352 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcompiler.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 15877216 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvwgf2um.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 12645664 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvlddmkm.sys
2014-01-08 15:34 - 2013-12-19 21:33 - 11605752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 11554264 _____ (NVIDIA Corporation) C:\Windows\system32\nvopencl.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 09700224 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 09657464 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvopencl.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 03132704 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 03125024 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvenc.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 02947872 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 02747680 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvenc.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 01884448 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispco6433221.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 01511712 _____ (NVIDIA Corporation) C:\Windows\system32\nvdispgenco6433221.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 01242400 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvumdshim.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00882464 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00879392 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00852768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00847648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00479520 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00405280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00357152 _____ C:\Windows\system32\NvIFROpenGL.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00317472 _____ (NVIDIA Corporation) C:\Windows\system32\nvoglshim64.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00314656 _____ C:\Windows\SysWOW64\NvIFROpenGL.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00266984 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvoglshim32.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00168616 _____ (NVIDIA Corporation) C:\Windows\system32\nvinitx.dll
2014-01-08 15:34 - 2013-12-19 21:33 - 00141336 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvinit.dll
2014-01-08 15:34 - 2013-11-28 14:38 - 00197408 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhda64v.sys
2014-01-08 15:34 - 2013-11-28 14:38 - 00031520 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdap64.dll
2014-01-08 15:34 - 2013-11-22 09:36 - 01515296 _____ (NVIDIA Corporation) C:\Windows\system32\nvhdagenco6420103.dll
2014-01-08 15:08 - 2014-01-08 15:08 - 00000000 ____D C:\Program Files (x86)\Six Networks
2014-01-08 14:58 - 2014-01-10 21:38 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2014-01-08 14:56 - 2014-01-09 21:05 - 00000000 ____D C:\Users\Jan\AppData\Local\ArmA 2 OA
2014-01-08 14:56 - 2014-01-08 14:56 - 00000000 ____D C:\ProgramData\Bohemia Interactive Studio
2014-01-08 14:54 - 2014-01-10 21:38 - 00000000 ____D C:\Users\Jan\Documents\arma 2
2014-01-08 14:52 - 2014-01-08 15:08 - 00000000 ____D C:\Users\Jan\AppData\Local\SIX Networks
2014-01-08 14:52 - 2014-01-08 14:52 - 00000000 ____D C:\Users\Jan\AppData\Roaming\SIX Networks
2014-01-08 14:52 - 2014-01-08 14:52 - 00000000 ____D C:\Users\Jan\AppData\Local\IsolatedStorage
2014-01-08 14:52 - 2014-01-08 14:52 - 00000000 ____D C:\ProgramData\SIX Networks
2014-01-08 02:40 - 2014-01-17 13:09 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-08 00:59 - 2014-01-08 00:59 - 00000000 ____D C:\Windows\system32\appmgmt
2014-01-08 00:57 - 2014-01-08 00:57 - 00000000 ____D C:\Users\Jan\AppData\Local\SmartTechnology
2014-01-08 00:55 - 2014-01-08 01:11 - 00000000 ____D C:\Program Files\SmartTechnology
2014-01-07 12:36 - 2014-01-07 12:40 - 00000000 ____D C:\Users\Public\Documents\Speedbit
2014-01-02 20:21 - 2014-01-02 20:23 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Notepad++
2014-01-02 20:21 - 2014-01-02 20:21 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-01-02 20:21 - 2014-01-02 20:21 - 00000000 ____D C:\Program Files (x86)\Notepad++

==================== One Month Modified Files and Folders =======

2014-01-20 16:55 - 2014-01-20 16:54 - 00010901 _____ C:\Users\Jan\Downloads\FRST.txt
2014-01-20 16:55 - 2013-11-24 12:52 - 01945928 _____ C:\Windows\WindowsUpdate.log
2014-01-20 16:54 - 2014-01-20 16:54 - 02076672 _____ (Farbar) C:\Users\Jan\Downloads\FRST64.exe
2014-01-20 16:54 - 2014-01-20 16:54 - 00000000 ____D C:\FRST
2014-01-20 16:52 - 2014-01-20 16:52 - 21956657 _____ C:\Users\Jan\Downloads\Nicht bestätigt 492522.crdownload
2014-01-20 16:51 - 2014-01-20 16:51 - 00094656 _____ (CACE Technologies) C:\Windows\system32\WPRO_41_2001woem.tmp
2014-01-20 16:51 - 2013-11-26 18:47 - 00001100 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-20 16:51 - 2013-11-25 13:22 - 00023640 _____ C:\Windows\setupact.log
2014-01-20 16:51 - 2013-11-24 18:34 - 00000000 ____D C:\ProgramData\AVAST Software
2014-01-20 16:51 - 2013-11-24 13:53 - 00000000 ____D C:\ProgramData\NVIDIA
2014-01-20 16:51 - 2013-11-24 13:05 - 00034752 _____ C:\Windows\system32\Drivers\WPRO_41_2001.sys
2014-01-20 16:51 - 2010-11-21 04:47 - 00245998 _____ C:\Windows\PFRO.log
2014-01-20 16:51 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-20 16:33 - 2009-07-14 05:45 - 00025872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-20 16:33 - 2009-07-14 05:45 - 00025872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-20 16:32 - 2013-11-24 21:48 - 00699416 _____ C:\Windows\system32\perfh007.dat
2014-01-20 16:32 - 2013-11-24 21:48 - 00149556 _____ C:\Windows\system32\perfc007.dat
2014-01-20 16:32 - 2009-07-14 06:13 - 01620612 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-20 15:57 - 2013-11-26 18:47 - 00001104 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-19 23:01 - 2013-11-24 18:35 - 00000000 _____ C:\Windows\SysWOW64\config.nt
2014-01-19 22:53 - 2014-01-19 22:35 - 00000000 ____D C:\AdwCleaner
2014-01-19 22:45 - 2014-01-19 22:45 - 00000000 ____D C:\Program Files (x86)\Hosts_Anti_Adwares_PUPs
2014-01-19 22:35 - 2014-01-19 22:35 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Malwarebytes
2014-01-19 22:35 - 2014-01-19 22:35 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-19 22:21 - 2014-01-19 22:10 - 00000000 ____D C:\Program Files (x86)\Stellar Phoenix Photo Recovery
2014-01-19 22:08 - 2014-01-19 22:08 - 00000000 ____D C:\Users\Jan\.android
2014-01-19 22:08 - 2013-11-24 12:53 - 00000000 ____D C:\Users\Jan
2014-01-19 21:59 - 2014-01-19 21:59 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Convar
2014-01-19 21:59 - 2014-01-19 21:59 - 00000000 ____D C:\Program Files (x86)\Convar
2014-01-19 20:22 - 2013-11-24 13:05 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-19 20:03 - 2013-11-24 18:12 - 00000000 ____D C:\Program Files (x86)\Origin
2014-01-18 22:27 - 2014-01-18 22:27 - 00000000 ____H C:\Windows\system32\Drivers\Msft_User_WpdFs_01_09_00.Wdf
2014-01-18 21:52 - 2013-11-24 19:34 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.exe
2014-01-18 21:35 - 2013-11-24 19:34 - 00214392 _____ C:\Windows\SysWOW64\PnkBstrB.ex0
2014-01-17 13:09 - 2014-01-08 02:40 - 00000000 ____D C:\Program Files (x86)\Steam
2014-01-16 18:28 - 2013-11-24 13:48 - 00111520 _____ C:\Users\Jan\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-16 16:18 - 2014-01-12 20:49 - 00000000 ____D C:\ProgramData\Oracle
2014-01-16 16:17 - 2014-01-16 16:17 - 00005327 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-16 16:17 - 2014-01-12 20:49 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-15 16:19 - 2009-07-14 05:45 - 00441160 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-15 16:08 - 2014-01-11 15:19 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-15 16:08 - 2013-11-24 14:41 - 00000000 ____D C:\Windows\system32\MRT
2014-01-15 16:08 - 2009-07-14 03:34 - 00000478 _____ C:\Windows\win.ini
2014-01-15 16:07 - 2013-11-24 14:41 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-15 16:04 - 2013-11-26 10:39 - 00000000 ____D C:\Users\Jan\AppData\Local\CrashDumps
2014-01-12 20:56 - 2014-01-12 20:56 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2014-01-12 20:56 - 2014-01-12 20:56 - 00000000 ____D C:\Program Files\WinRAR
2014-01-12 20:49 - 2014-01-12 20:49 - 00000000 ____D C:\ProgramData\Sun
2014-01-12 13:21 - 2014-01-12 13:21 - 04126711 _____ C:\Users\Jan\Downloads\dreamboxedit_setup.exe.zip
2014-01-12 13:18 - 2014-01-12 13:17 - 04188532 _____ C:\Users\Jan\Downloads\dcc296.zip
2014-01-11 16:27 - 2014-01-11 16:27 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2014-01-11 16:26 - 2014-01-11 16:26 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2014-01-11 16:26 - 2014-01-11 16:26 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2014-01-11 15:32 - 2014-01-11 15:32 - 00000000 __RHD C:\MSOCache
2014-01-11 15:21 - 2014-01-11 15:21 - 00000000 ____D C:\Windows\System32\Tasks\OfficeSoftwareProtectionPlatform
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Windows\PCHEALTH
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Program Files\Microsoft SQL Server
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Program Files\Microsoft Analysis Services
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Program Files\Common Files\DESIGNER
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server
2014-01-11 15:20 - 2014-01-11 15:20 - 00000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2014-01-11 15:20 - 2010-11-21 08:16 - 00000000 ____D C:\Windows\ShellNew
2014-01-11 15:20 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\System
2014-01-11 15:20 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Common Files\Microsoft Shared
2014-01-11 15:19 - 2014-01-11 15:19 - 00000000 ____D C:\Users\Jan\AppData\Local\Microsoft Help
2014-01-11 15:19 - 2014-01-11 15:19 - 00000000 ____D C:\Program Files (x86)\Microsoft Office
2014-01-11 15:19 - 2014-01-11 15:17 - 00000000 ____D C:\Users\Jan\AppData\Roaming\DAEMON Tools Pro
2014-01-11 15:19 - 2014-01-11 15:16 - 00000000 ____D C:\ProgramData\DAEMON Tools Pro
2014-01-11 15:17 - 2014-01-11 15:17 - 00283200 _____ (DT Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-01-11 15:17 - 2014-01-11 15:17 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Pro
2014-01-11 15:09 - 2013-11-24 17:15 - 00000000 ____D C:\Program Files (x86)\JDownloader
2014-01-11 15:07 - 2014-01-11 15:07 - 00000000 ____D C:\ProgramData\DAEMON Tools Ult
2014-01-11 15:07 - 2014-01-11 15:05 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Ultra
2014-01-11 15:07 - 2014-01-11 14:55 - 00000000 ____D C:\ProgramData\DAEMON Tools Ultra
2014-01-11 14:58 - 2014-01-11 14:58 - 00000000 ____D C:\Users\Jan\AppData\Roaming\DAEMON Tools Ult
2014-01-11 14:57 - 2014-01-11 14:57 - 00000000 ____D C:\Users\Jan\AppData\Local\Disc_Soft_Ltd
2014-01-11 14:56 - 2014-01-11 14:55 - 00000000 ____D C:\Users\Jan\AppData\Roaming\DAEMON Tools Ultra
2014-01-10 21:38 - 2014-01-09 12:36 - 00000000 ____D C:\Program Files (x86)\Dotjosh Studios
2014-01-10 21:38 - 2014-01-08 14:58 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bohemia Interactive
2014-01-10 21:38 - 2014-01-08 14:54 - 00000000 ____D C:\Users\Jan\Documents\arma 2
2014-01-10 21:38 - 2013-11-24 13:07 - 00000000 ___HD C:\SuperChargerProfile
2014-01-10 21:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2014-01-10 21:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppCompat
2014-01-10 12:56 - 2013-11-24 13:52 - 01593956 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2014-01-09 21:05 - 2014-01-08 14:56 - 00000000 ____D C:\Users\Jan\AppData\Local\ArmA 2 OA
2014-01-09 12:37 - 2014-01-09 12:37 - 00000000 ____D C:\Users\Jan\AppData\Local\DayZCommander
2014-01-09 12:36 - 2014-01-09 12:36 - 00001345 _____ C:\Users\Public\Desktop\DayZ Commander.lnk
2014-01-09 12:34 - 2014-01-09 12:34 - 00000000 ____D C:\Users\Jan\AppData\Local\ArmA 2
2014-01-09 12:34 - 2013-11-24 19:32 - 00044769 _____ C:\Windows\DirectX.log
2014-01-09 01:59 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-08 15:35 - 2013-11-24 13:53 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2014-01-08 15:08 - 2014-01-08 15:08 - 00000000 ____D C:\Program Files (x86)\Six Networks
2014-01-08 15:08 - 2014-01-08 14:52 - 00000000 ____D C:\Users\Jan\AppData\Local\SIX Networks
2014-01-08 14:56 - 2014-01-08 14:56 - 00000000 ____D C:\ProgramData\Bohemia Interactive Studio
2014-01-08 14:52 - 2014-01-08 14:52 - 00000000 ____D C:\Users\Jan\AppData\Roaming\SIX Networks
2014-01-08 14:52 - 2014-01-08 14:52 - 00000000 ____D C:\Users\Jan\AppData\Local\IsolatedStorage
2014-01-08 14:52 - 2014-01-08 14:52 - 00000000 ____D C:\ProgramData\SIX Networks
2014-01-08 01:11 - 2014-01-08 00:55 - 00000000 ____D C:\Program Files\SmartTechnology
2014-01-08 00:59 - 2014-01-08 00:59 - 00000000 ____D C:\Windows\system32\appmgmt
2014-01-08 00:57 - 2014-01-08 00:57 - 00000000 ____D C:\Users\Jan\AppData\Local\SmartTechnology
2014-01-07 12:40 - 2014-01-07 12:36 - 00000000 ____D C:\Users\Public\Documents\Speedbit
2014-01-02 20:23 - 2014-01-02 20:21 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Notepad++
2014-01-02 20:21 - 2014-01-02 20:21 - 00000000 ____D C:\Users\Jan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
2014-01-02 20:21 - 2014-01-02 20:21 - 00000000 ____D C:\Program Files (x86)\Notepad++
2013-12-30 00:40 - 2013-12-05 22:05 - 00000000 ____D C:\Program Files (x86)\World of Warcraft
2013-12-22 12:21 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD

Some content of TEMP:
====================
C:\Users\Jan\AppData\Local\Temp\cabex.dll
C:\Users\Jan\AppData\Local\Temp\ChangeIcon.exe
C:\Users\Jan\AppData\Local\Temp\devcon64.exe
C:\Users\Jan\AppData\Local\Temp\Install_HOSTS_Anti-Adware.exe
C:\Users\Jan\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Jan\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Jan\AppData\Local\Temp\nvStInst.exe
C:\Users\Jan\AppData\Local\Temp\ose00000.exe
C:\Users\Jan\AppData\Local\Temp\Quarantine.exe
C:\Users\Jan\AppData\Local\Temp\setup.exe
C:\Users\Jan\AppData\Local\Temp\sonarinst.exe
C:\Users\Jan\AppData\Local\Temp\unelevate.exe
C:\Users\Jan\AppData\Local\Temp\VARemove.exe
C:\Users\Jan\AppData\Local\Temp\VAUninstall.exe
C:\Users\Jan\AppData\Local\Temp\xmlUpdater.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-19 00:16

==================== End Of Log ============================
--- --- ---

--- --- ---


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 19-01-2014 04
Ran by Jan at 2014-01-20 16:55:12
Running from C:\Users\Jan\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

Adobe Reader XI (11.0.06) - Deutsch (x32 Version: 11.0.06 - Adobe Systems Incorporated)
Arma 2 (x32 Version:  - Bohemia Interactive)
ARMA 2 Army of The Czech Republic - Data cache removal (x32 Version:  - )
Arma 2: Operation Arrowhead (x32 Version:  - Bohemia Interactive)
Battlefield 4™ (x32 Version: 1.0.0.1 - Electronic Arts)
Battlelog Web Plugins (x32 Version: 2.3.2 - EA Digital Illusions CE AB)
BattlEye for OA Uninstall (x32 Version:  - )
BattlEye Uninstall (x32 Version:  - )
Canon MP250 series MP Drivers (Version:  - )
DAEMON Tools Pro (x32 Version: 5.1.0.0333 - DT Soft Ltd)
DayZ Commander (x32 Version: 0.92.91 - Dotjosh Studios)
Definition Update for Microsoft Office 2013 (KB2760587) 64-Bit Edition (Version:  - Microsoft)
ESN Sonar (x32 Version: 0.70.4 - ESN Social Software AB)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Intel(R) Management Engine Components (x32 Version: 8.0.1.1399 - Intel Corporation)
Intel(R) Smart Connect Technology 2.0 x64 (Version: 2.0.1069.0 - Intel)
Intel(R) USB 3.0 eXtensible Host Controller Driver (x32 Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (Version: 1.23.219.2 - Intel Corporation)
Java 7 Update 51 (x32 Version: 7.0.510 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.8 - Sun Microsystems, Inc.) Hidden
JDownloader 0.9 (x32 Version: 0.9 - AppWork GmbH)
Logitech GamePanel Software 3.05.151 (Version: 3.05.151 - Logitech Inc.)
Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 DEU Language Pack (Version: 4.5.50709 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Access MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft DCF MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Excel MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Groove MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft InfoPath MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Lync MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office 32-bit Components 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Korrekturhilfen 2013 - Deutsch (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office OSM UX MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - English (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2013 - Italiano (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared 32-bit MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft OneNote MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Outlook MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft PowerPoint MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Publisher MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (x32 Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 (Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 (x32 Version: 11.0.60610 - Microsoft Corporation) Hidden
Microsoft Word MUI (German) 2013 (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
Notepad++ (x32 Version: 6.5.3 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA GeForce Experience 1.8.1 (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 332.21 (Version: 332.21 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
NVIDIA LED Visualizer 1.0 (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.13.0725 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.13.0725 (Version: 9.13.0725 - NVIDIA Corporation)
NVIDIA ShadowPlay 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.3221 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
NVIDIA Virtual Audio 1.2.19 (Version: 1.2.19 - NVIDIA Corporation)
Origin (x32 Version: 9.3.6.4639 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4420.1017 - Microsoft Corporation) Hidden
PunkBuster Services (x32 Version: 0.993 - Even Balance, Inc.)
Realtek Ethernet Controller Driver (x32 Version: 7.50.1123.2011 - Realtek)
Realtek High Definition Audio Driver (x32 Version: 6.0.1.6564 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Speccy (Version: 1.24 - Piriform)
Steam (x32 Version:  - Valve Corporation)
Super-Charger (x32 Version: 1.2.006 - MSI)
TeamSpeak 3 Client (HKCU Version: 3.0.13 - TeamSpeak Systems GmbH)
Update for Microsoft Access 2013 (KB2768008) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Access 2013 (KB2827233) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft InfoPath 2013 (KB2837648) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Lync 2013 (KB2817678) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2726954) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2726996) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2738038) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760224) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760242) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760267) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760539) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760553) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2760610) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2767845) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2768016) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817314) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817316) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817490) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2817626) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2826004) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2827225) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2827227) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2827230) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2827239) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2837626) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2837637) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2837638) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2837655) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Office 2013 (KB2850066) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft OneNote 2013 (KB2850063) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Outlook 2013 (KB2850061) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft PowerPoint 2013 (KB2767850) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Project 2013 (KB2727085) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Publisher 2013 (KB2837635) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft SkyDrive Pro (KB2817495) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft SkyDrive Pro (KB2837652) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Visio 2013 (KB2817306) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Visio Viewer 2013 (KB2768338) 64-Bit Edition (Version:  - Microsoft)
Update for Microsoft Word 2013 (KB2837647) 64-Bit Edition (Version:  - Microsoft)
VLC media player 2.1.1 (Version: 2.1.1 - VideoLAN)
WinRAR 5.01 (64-Bit) (Version: 5.01.0 - win.rar GmbH)

==================== Restore Points  =========================

11-01-2014 14:17:23 Gerätetreiber-Paketinstallation: DT Soft Ltd Systemgeräte
11-01-2014 14:19:42 Installed Microsoft Office Professional Plus 2013
11-01-2014 14:19:47 PROPLUS
11-01-2014 15:25:04 Windows Update
12-01-2014 19:49:42 Installed Java 7 Update 45
14-01-2014 15:46:40 Windows Update
15-01-2014 15:07:45 Windows Update
16-01-2014 15:17:34 Installed Java 7 Update 51
18-01-2014 18:53:30 Windows Update
19-01-2014 19:14:34 Installiert PC Inspector smart recovery
19-01-2014 19:22:41 Entfernt PC Inspector smart recovery
19-01-2014 22:01:45 avast! antivirus system restore point
20-01-2014 15:49:59 avast! Premier Setup

==================== Hosts content: ==========================

2009-07-14 03:34 - 2014-01-20 16:51 - 00432595 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 08sr.combineads.info # hosts anti-adware / pups
127.0.0.1 08srvr.combineads.info # hosts anti-adware / pups
127.0.0.1 12srvr.combineads.info # hosts anti-adware / pups
127.0.0.1 2010-fr.com # hosts anti-adware / pups
127.0.0.1 2012-new.biz # hosts anti-adware / pups
127.0.0.1 212link.com # hosts anti-adware / pups
127.0.0.1 2319825.ourtoolbar.com # hosts anti-adware / pups
127.0.0.1 24h00business.com # hosts anti-adware / pups
127.0.0.1 a.adorika.net # hosts anti-adware / pups
127.0.0.1 a.ad-sys.com # hosts anti-adware / pups
127.0.0.1 a.daasafterdusk.com # hosts anti-adware / pups
127.0.0.1 ad.adn360.com # hosts anti-adware / pups
127.0.0.1 adeartss.eu # hosts anti-adware / pups
127.0.0.1 adesoeasy.eu # hosts anti-adware / pups
127.0.0.1 adf.girldatesforfree.net # hosts anti-adware / pups
127.0.0.1 adm.soft365.com # hosts anti-adware / pups
127.0.0.1 adomicileavail.googlepages.com # hosts anti-adware / pups
127.0.0.1 ads7.complexadveising.com # hosts anti-adware / pups
127.0.0.1 ads.adplxmd.com # hosts anti-adware / pups
127.0.0.1 ads.aff.co # hosts anti-adware / pups
127.0.0.1 ads.alpha00001.com # hosts anti-adware / pups
127.0.0.1 ads.cloud4ads.com # hosts anti-adware / pups
127.0.0.1 ads.egdating.net # hosts anti-adware / pups
127.0.0.1 ads.eorezo.com # hosts anti-adware / pups
127.0.0.1 ads.hooqy.com # hosts anti-adware / pups
127.0.0.1 ads.pornerbros.com # hosts anti-adware / pups
127.0.0.1 ads.realken.com # hosts anti-adware / pups
127.0.0.1 ads.regiedepub.com # hosts anti-adware / pups
127.0.0.1 ads.sucomspot.com # hosts anti-adware / pups

There are 1000 more lines.


==================== Scheduled Tasks (whitelisted) =============

Task: {2D0289B2-2EE9-46FE-8F94-1196B6D2C1F2} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => D:\Programme\MS-Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {4FC6A9E8-34FB-43C7-9C65-D4574E0589E1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-26] (Google Inc.)
Task: {6C5E9681-FEB0-4516-A68C-0E54CDF32C23} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => D:\Programme\MS-Office\Office15\msoia.exe [2012-10-01] (Microsoft Corporation)
Task: {8F91C353-2D4F-43AF-B4C8-0CD661FAA533} - System32\Tasks\FRAPS => C:\Fraps\fraps.exe
Task: {BB7E0CDD-4E7F-4987-99EB-8CDA562000BF} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2012-10-01] (Microsoft Corporation)
Task: {D860B0E7-126D-4FA8-B01E-A2095DDED104} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-11-26] (Google Inc.)
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-01-14 21:58 - 2014-01-11 11:28 - 00715544 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libglesv2.dll
2014-01-14 21:58 - 2014-01-11 11:28 - 00100120 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libegl.dll
2014-01-14 21:58 - 2014-01-11 11:29 - 04055320 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\pdf.dll
2014-01-14 21:58 - 2014-01-11 11:29 - 00399640 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
2014-01-14 21:58 - 2014-01-11 11:28 - 01634584 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll
2013-11-24 13:06 - 2012-01-20 04:23 - 01198872 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (whitelisted) =========

AlternateDataStreams: C:\ProgramData\TEMP:58DD92AC

==================== Safe Mode (whitelisted) ===================


==================== Faulty Device Manager Devices =============

Name: Programmable Root Enumerator
Description: Programming Support
Class Guid: {678dcf40-e2e6-11d5-8cd5-e960089ea00a}
Manufacturer: Mad Catz
Service: SaiNtBus
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver

Name: avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: avast! Firewall NDIS Filter Miniport
Description: avast! Firewall NDIS Filter Miniport
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: ALWIL Software
Service: aswNdis
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
 This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (01/20/2014 04:53:20 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2014 04:51:57 PM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/20/2014 04:51:07 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2014 04:49:45 PM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/20/2014 04:27:29 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2014 04:26:07 PM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/20/2014 03:49:47 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2014 03:48:30 PM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/19/2014 11:01:09 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/19/2014 10:59:47 PM) (Source: ISCT Agent) (User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2


System errors:
=============
Error: (01/20/2014 04:51:57 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "HOSTS Anti-PUPs" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/20/2014 04:51:57 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst HOSTS Anti-PUPs erreicht.

Error: (01/20/2014 04:49:44 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "HOSTS Anti-PUPs" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/20/2014 04:49:44 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst HOSTS Anti-PUPs erreicht.

Error: (01/20/2014 04:26:06 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "HOSTS Anti-PUPs" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/20/2014 04:26:06 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst HOSTS Anti-PUPs erreicht.

Error: (01/20/2014 03:48:25 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "HOSTS Anti-PUPs" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/20/2014 03:48:25 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst HOSTS Anti-PUPs erreicht.

Error: (01/19/2014 10:59:47 PM) (Source: Service Control Manager) (User: )
Description: Der Dienst "HOSTS Anti-PUPs" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (01/19/2014 10:59:47 PM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst HOSTS Anti-PUPs erreicht.


Microsoft Office Sessions:
=========================
Error: (01/20/2014 04:53:20 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2014 04:51:57 PM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/20/2014 04:51:07 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2014 04:49:45 PM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/20/2014 04:27:29 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2014 04:26:07 PM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/20/2014 03:49:47 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/20/2014 03:48:30 PM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2

Error: (01/19/2014 11:01:09 PM) (Source: WinMgmt)(User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/19/2014 10:59:47 PM) (Source: ISCT Agent)(User: )
Description: CAgentState::DoPeriodicSuspendResume    ****Error in initialize NetDetect, status = 0x2


==================== Memory info =========================== 

Percentage of memory in use: 15%
Total physical RAM: 16334.92 MB
Available physical RAM: 13875.76 MB
Total Pagefile: 32668.02 MB
Available Pagefile: 30054.75 MB
Total Virtual: 8192 MB
Available Virtual: 8191.79 MB

==================== Drives ================================

Drive c: (Windows 7) (Fixed) (Total:232.88 GB) (Free:134.79 GB) NTFS
Drive d: (HDD Daten) (Fixed) (Total:250 GB) (Free:244.68 GB) NTFS
Drive e: (HDD) (Fixed) (Total:181.41 GB) (Free:172.44 GB) NTFS
Drive f: (SSD) (Fixed) (Total:55.67 GB) (Free:54.53 GB) NTFS
Drive g: (HDD Games) (Fixed) (Total:499.9 GB) (Free:498.19 GB) NTFS ==>[System with boot components (obtained from reading drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 233 GB) (Disk ID: A04EDF14)
Partition 1: (Not Active) - (Size=233 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 932 GB) (Disk ID: E315B32D)
Partition 1: (Active) - (Size=500 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=250 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=181 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 56 GB) (Disk ID: E315B311)

Partition: GPT Partition Type
==================== End Of Log ============================
__________________
__________________
Alt 20.01.2014, 16:58   #4
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Toolbar lässt ich nicht entfernen - Standard

Toolbar lässt ich nicht entfernen


Da hab ich doch glatt vergessen was zu posten!

Zitat:
1. Benutze Avast Premier als Virenprogramm jedoch die gecrackte Version macht es Sinn das Original zu kaufen.
Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________
Logfiles bitte immer in CODE-Tags posten

Alt 20.01.2014, 17:00   #5
xNato
 
Toolbar lässt ich nicht entfernen - Standard

Toolbar lässt ich nicht entfernen


Zitat:
Zitat von cosinus Beitrag anzeigen
Da hab ich doch glatt vergessen was zu posten!



Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
Wurde entfernt !

__________________
Zitat:
Es gehört zu den Merkmalen eines Politikers, sich grundsätzlich an nichts erinnern zu können.

Alt 20.01.2014, 20:59   #6
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Toolbar lässt ich nicht entfernen - Standard

Toolbar lässt ich nicht entfernen


Malwarebytes Anti-Rootkit (MBAR)

Downloade dir bitte Malwarebytes Anti-Rootkit Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
  • Starte bitte die mbar.exe.
  • Folge den Anweisungen auf deinem Bildschirm gemäß Anleitung zu Malwarebytes Anti-Rootkit
  • Aktualisiere unbedingt die Datenbank und erlaube dem Tool, dein System zu scannen.
  • Klicke auf den CleanUp Button und erlaube den Neustart.
  • Während dem Neustart wird MBAR die gefundenen Objekte entfernen, also bleib geduldig.
  • Nach dem Neustart starte die mbar.exe erneut.
  • Sollte nochmal was gefunden werden, wiederhole den CleanUp Prozess.
Das Tool wird im erstellten Ordner eine Logfile ( mbar-log-<Jahr-Monat-Tag>.txt ) erzeugen. Bitte poste diese hier.

Starte keine andere Datei in diesem Ordner ohne Anweisung eines Helfers
__________________
--> Toolbar lässt ich nicht entfernen

Antwort

Themen zu Toolbar lässt ich nicht entfernen
angezeigt, avast, brauche, browser, empfehlen, entfernen, entfernt, folge, folgendes, hijack, hijackthis, installieren, installiert, laufen, malwarebytes, neu, nichts, problem, programm, programme, spyware, toolbar, tools, version, viren, virus


« Fehlermeldung: "Problem beim Starten von: wgsdgsdgdsgsd.dll Das angegebene Modul wurde nicht gefunden. | GVU Interpol Trojaner! »


Ähnliche Themen: Toolbar lässt ich nicht entfernen


  1. Myserach toolbar lässt sich nicht mehr entfernen
    Log-Analyse und Auswertung - 08.04.2015 (7)
  2. tlbsearch.com Toolbar lässt sich nicht mehr entfernen
    Plagegeister aller Art und deren Bekämpfung - 09.12.2014 (13)
  3. windows 7 64-bit yahoo toolbar lässt sich nicht deinstalieren
    Alles rund um Windows - 09.01.2014 (4)
  4. ASK Toolbar lässt sich nicht deinstallieren
    Plagegeister aller Art und deren Bekämpfung - 12.08.2013 (21)
  5. mapsgalaxy toolbar und mindspark toolbar platform plugin stub - wie entfernen?
    Log-Analyse und Auswertung - 08.05.2013 (8)
  6. Entrusted Toolbar und DVDVideoSoftTB Toolbar lassen sich nicht deinstaliern
    Plagegeister aller Art und deren Bekämpfung - 24.03.2013 (4)
  7. Toolbar INCREDIBAR lässt sich nicht mehr löschen
    Plagegeister aller Art und deren Bekämpfung - 21.01.2013 (13)
  8. MyStart by IncrediBar - Toolbar lässt sich nicht mehr entfernen
    Log-Analyse und Auswertung - 30.12.2012 (7)
  9. Claro-Toolbar läßt sich nicht aus Mozilla Firefox entfernen
    Plagegeister aller Art und deren Bekämpfung - 10.11.2012 (12)
  10. Chatzum Toolbar lässt sich nicht entfernen!/ Ist mein Computer verunreinigt?
    Plagegeister aller Art und deren Bekämpfung - 15.10.2012 (36)
  11. (2x) chatzum Toolbar lässt nicht entfernen
    Mülltonne - 22.09.2012 (1)
  12. Toolbar lässt sich nicht löschen, Internet extrem langsam geworden
    Plagegeister aller Art und deren Bekämpfung - 24.06.2012 (1)
  13. Yahoo Toolbar laesst sich nicht entfernen
    Plagegeister aller Art und deren Bekämpfung - 22.06.2012 (5)
  14. Searchqu-Toolbar lässt sich nicht deinstallieren
    Log-Analyse und Auswertung - 05.01.2012 (7)
  15. (Neuling)IE8/ICQ Toolbar infiziert/lässt sich nicht deeinstallieren.
    Plagegeister aller Art und deren Bekämpfung - 20.12.2010 (1)
  16. Hilfe!! Security Toolbar 7.1 lässt sich nicht entfernen (W32.Myzor.FK@yf)
    Mülltonne - 27.05.2007 (1)
  17. Smitfraud-c. Toolbar 888 lässt sich nicht entfernen
    Plagegeister aller Art und deren Bekämpfung - 30.03.2007 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Toolbar lässt ich nicht entfernen - Hallo liebe Gemeinde bin neu hier Ich habe folgendes Problem aus irgendwelchen Gründen wurde über dem Browser eine Toolbar installiert die bei Malwarebytes als Virus angezeigt wird jedoch wenn ich - Toolbar lässt ich nicht entfernen...
Archiv
Du betrachtest: Toolbar lässt ich nicht entfernen auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129