Zurück   Trojaner-Board > Web/PC > Alles rund um Windows

Alles rund um Windows: Immer wieder öffnen sich Tabs mit Werbungen automatisch!

Windows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 - als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows.

Antwort
Alt 23.05.2014, 19:14   #1
WorldShine
 
Immer wieder öffnen sich Tabs mit Werbungen automatisch! - Ausrufezeichen

Problem: Immer wieder öffnen sich Tabs mit Werbungen automatisch!



Guten Abend,

ich brauche dringend Hilfe. Ich vermute, dass mein PC von einem Virus überfallen wurde.
Jedes mal, wenn ich Mozilla oder Chrome öffne, öffnen sich automatisch neue Tabs oder Fenster mit Werbungen. Es sind nicht nur 1-2 Werbungen, sondern mehr. Das nervt unglaublich. Ich habe schon sämtliche Programme deinstalliert - ohne Erfolg. Ich hoffe ihr könnt mir helfen!
Vielen Dank im Voraus.

Alt 23.05.2014, 19:18   #2
Keckrem
 
Immer wieder öffnen sich Tabs mit Werbungen automatisch! - Standard

Immer wieder öffnen sich Tabs mit Werbungen automatisch! Anleitung / Hilfe



Hi,

Das klingt nach Adware. Arbeite diese Anleitung ab und eröffne hier ein neues Thema.

Wenn möglich alles in Code-Tags posten. Wird so gemacht:

[code]Hier steht das Log[/code]

Und das sieht dann so aus:

Code:
ATTFilter
Hier steht das Log
         
__________________


Alt 23.05.2014, 21:23   #3
WorldShine
 
Immer wieder öffnen sich Tabs mit Werbungen automatisch! - Standard

Immer wieder öffnen sich Tabs mit Werbungen automatisch! Details



Okay, also ich hoffe sehr, dass ich das jetzt richtig gemacht habe..

Hier ist Schritt 2

Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 21-05-2014
Ran by User (administrator) on USER-HP on 23-05-2014 20:36:56
Running from C:\Users\User\Downloads
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(AMD) C:\Windows\System32\atieclxx.exe
(EasyBits Software AS) C:\Windows\SysWOW64\ezSharedSvcHost.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccsvchst.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Symantec Corporation) C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccsvchst.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
() C:\Users\User\AppData\Local\Genesis_05231333\Genesis_05231333.exe
(Easybits) C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
(Hewlett-Packard Company) C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Hewlett-Packard Development Company L.P.) C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Cherished Technololgy LIMITED) C:\ProgramData\WPM\wprotectmanager.exe
(Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
() C:\Program Files (x86)\fst_de_19\fst_de_19.exe
() C:\Users\User\AppData\Local\fst_de_19\upfst_de_19.exe
( ) C:\Users\User\AppData\Roaming\VOPackage\VOPackage.exe
() C:\Users\User\AppData\Roaming\VOPackage\VOsrv.exe
() C:\Program Files\003\buuoujqmrk64.exe
(MyPCBackup.com) C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe
(PC Utilities Software Limited) C:\Program Files (x86)\Optimizer Pro\OptProStart.exe
(Wajam Internet Technologies Inc.) C:\Program Files (x86)\Wajam\Wajam Internet Enhancer\WajamInternetEnhancerService.exe
() C:\Program Files (x86)\Wajam\Wajam Internet Enhancer\WajamHttpServer.exe
(Wajam Internet Technologies Inc.) C:\Program Files (x86)\Wajam\Wajam Internet Enhancer\WajamInternetEnhancer.exe
() C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [524800 2010-12-14] (IDT, Inc.)
HKLM\...\Run: [HPWirelessAssistant] => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe [363064 2010-07-21] (Hewlett-Packard Company)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [336384 2010-12-17] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Magic Desktop for HP notification] => C:\ProgramData\Easybits Magic Desktop for HP\mdhpSUN.exe [1243656 2013-12-07] (Easybits)
HKLM-x32\...\Run: [fst_de_19] => C:\Program Files (x86)\fst_de_19\fst_de_19.exe [3984336 2014-05-19] ()
HKLM-x32\...\Runonce: [Del1502445] - cmd.exe /Q /D /c del "C:\Users\User\AppData\Local\Temp\0.del" [X]
HKLM-x32\...\RunOnce: [upfst_de_19.exe] - C:\Users\User\AppData\Local\fst_de_19\upfst_de_19.exe -runonce [3267568 2014-05-19] ()
HKLM-x32\...\RunOnce: [VOPackage] - C:\Users\User\AppData\Roaming\VOPackage\VOPackage.exe /runonce [277579 2014-05-23] ( )
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKU\S-1-5-21-366207020-1323974887-3744425127-1000\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248208 2013-08-27] (TomTom)
HKU\S-1-5-21-366207020-1323974887-3744425127-1000\...\Run: [genesis_05231333] => c:\users\user\appdata\local\genesis_05231333\genesis_05231333.exe [3244032 2014-05-23] ()
HKU\S-1-5-21-366207020-1323974887-3744425127-1000\...\Run: [Optimizer Pro] => C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe [135112 2014-05-22] (PC Utilities Software Limited)
HKU\S-1-5-21-366207020-1323974887-3744425127-1000\...\RunOnce: [Del1502430] - cmd.exe /Q /D /c del "C:\Users\User\AppData\Local\Temp\0.del"
HKU\S-1-5-21-366207020-1323974887-3744425127-1000\...\Policies\system: [DisableLockWorkstation] 0
HKU\S-1-5-21-366207020-1323974887-3744425127-1000\...\Policies\system: [DisableChangePassword] 0
AppInit_DLLs: C:\PROGRA~2\SupTab\SEARCH~2.DLL => C:\Program Files (x86)\SupTab\SearchProtect64.dll [102512 2014-05-08] (Skytech Co., Ltd.)
AppInit_DLLs:  C:\PROGRA~2\OPTIMI~1\OPTPRO~3.DLL => C:\Program Files (x86)\Optimizer Pro\OptProCrash_x64.dll [2720144 2014-05-23] ()
AppInit_DLLs-x32: c:\progra~2\suptab\search~1.dll => C:\Program Files (x86)\SupTab\SearchProtect32.dll [91248 2014-05-08] (Skytech Co., Ltd.)
AppInit_DLLs-x32:  c:\progra~2\optimi~1\optpro~2.dll => C:\Program Files (x86)\Optimizer Pro\OptProCrash.dll [3620296 2014-05-23] ()
Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\MyPC Backup.lnk
ShortcutTarget: MyPC Backup.lnk -> C:\Program Files (x86)\MyPC Backup\MyPC Backup.exe (MyPCBackup.com)

==================== Internet (Whitelisted) ====================

ProxyEnable: Internet Explorer proxy is enabled.
ProxyServer: http=127.0.0.1:56331;https=127.0.0.1:56331
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.sweet-page.com/?type=hp&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.sweet-page.com/?type=hp&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.sweet-page.com/web/?type=ds&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1&q={searchTerms}
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = 
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKLM-x32 - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1&q={searchTerms}
SearchScopes: HKLM-x32 - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1&q={searchTerms}
SearchScopes: HKLM-x32 - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKCU - DefaultScope {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.sweet-page.com/web/?type=ds&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1&q={searchTerms}
SearchScopes: HKCU - {D944BB61-2E34-4DBF-A683-47E505C587DC} URL = hxxp://rover.ebay.com/rover/1/707-111076-19270-3/4?mpre=hxxp://shop.ebay.com/?_nkw={searchTerms}
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO-x32: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO-x32: IETabPage Class - {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} - C:\Program Files (x86)\SupTab\SupTab.dll (Thinknice Co. Limited)
BHO-x32: Norton Identity Protection - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coIEPlg.dll (Symantec Corporation)
BHO-x32: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\IPS\IPSBHO.DLL (Symantec Corporation)
BHO-x32: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll (Google Inc.)
Toolbar: HKLM-x32 - Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\coIEPlg.dll (Symantec Corporation)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU - No Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  No File
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
ShellExecuteHooks-x32: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll [52920 2011-01-04] (EasyBits Software Corp.)
ShellExecuteHooks-x32:  - UPB:{B5A7F190-DDA6-4420-B3BA-52453494E6CD} -  No File [ ]
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ald4yzn8.default
FF user.js: detected! => C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ald4yzn8.default\user.js
FF NewTab: chrome://quick_start/content/index.html
FF DefaultSearchEngine: sweet-page
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_13_0_0_214.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_13_0_0_214.dll ()
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1211151.dll (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/JavaPlugin - C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.24.7\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ald4yzn8.default\searchplugins\trovi-search.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\sweet-page.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: Quick Start - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ald4yzn8.default\Extensions\quick_start@gmail.com [2014-05-23]
FF Extension: Protegere - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ald4yzn8.default\Extensions\security@protegere.org [2014-05-15]
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ald4yzn8.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20]
FF HKLM-x32\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPlgn\
FF Extension: Norton Vulnerability Protection - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\IPSFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}] - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn\
FF Extension: Norton Toolbar - C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\coFFPlgn\ []
FF HKLM-x32\...\Firefox\Extensions: [quick_start@gmail.com] - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ald4yzn8.default\extensions\quick_start@gmail.com
FF Extension: Quick Start - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\ald4yzn8.default\extensions\quick_start@gmail.com [2014-05-23]

Chrome: 
=======
CHR HomePage: hxxp://www.sweet-page.com/?type=hp&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1
CHR StartupUrls: "hxxp://www.sweet-page.com/?type=hp&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1"
CHR DefaultSearchKeyword: sweet-page
CHR DefaultSearchProvider: sweet-page
CHR DefaultSearchURL: hxxp://www.sweet-page.com/web/?type=ds&ts=1400866907&from=cor&uid=ST9640320AS_5WX37SB1&q={searchTerms}
CHR DefaultNewTabURL: 
CHR Extension: (Norton Identity Safe for Google Chrome™) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfokfffehpeedafpekjeddnmnjhmcmk [2013-07-13]
CHR Extension: (Google Wallet) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-04]
CHR HKLM-x32\...\Chrome\Extension: [mkfokfffehpeedafpekjeddnmnjhmcmk] - C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\Exts\Chrome.crx [2013-04-03]

==================== Services (Whitelisted) =================

R2 70e6ca8c; c:\Program Files (x86)\Optimizer Pro\OptProCrash.dll [3620296 2014-05-23] ()
S2 BackupStack; C:\Program Files (x86)\MyPC Backup\BackupStack.exe [36392 2014-03-14] (Just Develop It)
R2 buuoujqmrk64; C:\Program Files\003\buuoujqmrk64.exe [706560 2014-05-23] ()
R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [704112 2014-05-08] (Cherished Technololgy LIMITED)
R2 NewPlayerUpdaterService; C:\Program Files (x86)\NewPlayer\NewPlayerUpdaterService.exe [11776 2014-04-16] ()
R2 NIS; C:\Program Files (x86)\Norton Internet Security\Engine\19.9.1.14\ccSvcHst.exe [138272 2012-06-16] (Symantec Corporation)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [87040 2012-03-23] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2409272 2013-12-10] (TuneUp Software)
R2 vosr; C:\Users\User\AppData\Roaming\VOPackage\VOsrv.exe [53248 2014-05-23] ()
R2 Wajam Internet Enhancer Service; C:\Program Files (x86)\Wajam\Wajam Internet Enhancer\WajamInternetEnhancerService.exe [293888 2014-05-21] (Wajam Internet Technologies Inc.)
R2 Wpm; C:\ProgramData\WPM\wprotectmanager.exe [549008 2014-05-12] (Cherished Technololgy LIMITED)

==================== Drivers (Whitelisted) ====================

R1 BHDrvx64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\BASHDefs\20130620.001\BHDrvx64.sys [1393240 2013-05-31] (Symantec Corporation)
R1 ccSet_NIS; C:\Windows\system32\drivers\NISx64\1309010.00E\ccSetx64.sys [167072 2012-06-07] (Symantec Corporation)
R1 eeCtrl; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [484512 2013-01-19] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [138912 2012-08-09] (Symantec Corporation)
R1 IDSVia64; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\IPSDefs\20130626.001\IDSvia64.sys [513184 2012-09-01] (Symantec Corporation)
S3 NAVENG; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20130626.022\ENG64.SYS [126040 2013-05-23] (Symantec Corporation)
S3 NAVEX15; C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.1.0.28\Definitions\VirusDefs\20130626.022\EX64.SYS [2098776 2013-05-23] (Symantec Corporation)
S3 SRTSP; C:\Windows\System32\Drivers\NISx64\1309010.00E\SRTSP64.SYS [737952 2012-07-06] (Symantec Corporation)
R1 SRTSPX; C:\Windows\system32\drivers\NISx64\1309010.00E\SRTSPX64.SYS [37536 2012-07-06] (Symantec Corporation)
R0 SymDS; C:\Windows\System32\drivers\NISx64\1309010.00E\SYMDS64.SYS [451192 2011-07-25] (Symantec Corporation)
R0 SymEFA; C:\Windows\System32\drivers\NISx64\1309010.00E\SYMEFA64.SYS [1129120 2012-05-22] (Symantec Corporation)
R3 SymEvent; C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [175736 2012-07-07] (Symantec Corporation)
R1 SymIRON; C:\Windows\system32\drivers\NISx64\1309010.00E\Ironx64.SYS [190072 2012-04-18] (Symantec Corporation)
R1 SymNetS; C:\Windows\System32\Drivers\NISx64\1309010.00E\SYMNETS.SYS [405624 2012-04-18] (Symantec Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [11880 2012-09-19] (TuneUp Software)
R1 {f64c1459-b911-4fd8-a74e-36a496bf26e3}Gw64; C:\Windows\System32\drivers\{f64c1459-b911-4fd8-a74e-36a496bf26e3}Gw64.sys [61112 2014-04-24] (StdLib)
U2 wuaserv; 
S3 X6va015; \??\C:\Windows\SysWOW64\Drivers\X6va015 [X]
S3 X6va017; \??\C:\Windows\SysWOW64\Drivers\X6va017 [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-05-23 20:32 - 2014-05-23 20:32 - 00807928 _____ () C:\Users\User\Downloads\Setup (2).exe
2014-05-23 20:32 - 2014-05-23 20:32 - 00003122 _____ () C:\Windows\System32\Tasks\{DD1A6BD7-2447-4D74-BE86-E47B7B5076DA}
2014-05-23 20:32 - 2014-05-23 20:32 - 00001929 _____ () C:\Users\User\Desktop\Sync Folder.lnk
2014-05-23 20:32 - 2014-05-23 20:32 - 00001073 _____ () C:\Users\Public\Desktop\NewPlayer.lnk
2014-05-23 20:32 - 2014-05-23 20:32 - 00001022 _____ () C:\Users\User\Desktop\Optimizer Pro.lnk
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\Users\User\AppData\Local\newplayer
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\Users\User\AppData\Local\com
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\Program Files (x86)\Wajam
2014-05-23 20:31 - 2014-05-23 20:34 - 00000000 ____D () C:\Users\User\AppData\Local\fst_de_19
2014-05-23 20:31 - 2014-05-23 20:32 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro
2014-05-23 20:31 - 2014-05-23 20:32 - 00000000 ____D () C:\Program Files (x86)\NewPlayer
2014-05-23 20:31 - 2014-05-23 20:32 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-05-23 20:31 - 2014-05-23 20:31 - 00001047 _____ () C:\Users\User\Desktop\MyPC Backup.lnk
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Users\User\AppData\Roaming\VOPackage
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeSoftToday
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Program Files\suprasavings
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Program Files\003
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Program Files (x86)\fst_de_19
2014-05-23 20:30 - 2014-05-23 20:31 - 00000000 _____ () C:\END
2014-05-23 20:30 - 2014-05-23 20:30 - 00807928 _____ () C:\Users\User\Downloads\Setup.exe
2014-05-23 20:30 - 2014-05-23 20:30 - 00807928 _____ () C:\Users\User\Downloads\Setup (1).exe
2014-05-23 20:30 - 2014-05-23 20:30 - 00000000 ____D () C:\Users\User\AppData\Local\SearchProtect
2014-05-23 20:27 - 2014-05-23 20:27 - 00050477 _____ () C:\Users\User\Downloads\Defogger.exe
2014-05-23 20:05 - 2014-05-23 20:05 - 00003140 _____ () C:\Windows\System32\Tasks\{0E015FC3-4A75-4554-8218-CCBD9BA53B19}
2014-05-23 20:02 - 2014-05-23 20:02 - 00000000 ____D () C:\Users\User\AppData\Local\{DBA22C33-4352-4058-A2DA-F4210F1F7C51}
2014-05-23 19:54 - 2014-05-23 19:55 - 00038990 _____ () C:\Users\User\Downloads\Addition.txt
2014-05-23 19:53 - 2014-05-23 20:36 - 00023137 _____ () C:\Users\User\Downloads\FRST.txt
2014-05-23 19:53 - 2014-05-23 20:36 - 00000000 ____D () C:\FRST
2014-05-23 19:52 - 2014-05-23 19:53 - 02067456 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-05-23 19:46 - 2014-05-23 19:46 - 00000000 __SHD () C:\Users\User\AppData\Local\EmieUserList
2014-05-23 19:46 - 2014-05-23 19:46 - 00000000 __SHD () C:\Users\User\AppData\Local\EmieSiteList
2014-05-23 19:46 - 2014-05-23 19:46 - 00000000 ____D () C:\Users\User\Documents\PC Speed Maximizer
2014-05-23 19:44 - 2014-05-23 19:45 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mipony
2014-05-23 19:42 - 2014-05-23 19:43 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-05-23 19:42 - 2014-05-23 19:42 - 00000000 ____D () C:\Users\User\AppData\Roaming\SupTab
2014-05-23 19:42 - 2014-05-23 19:42 - 00000000 ____D () C:\Users\User\AppData\Roaming\0D0S1L2Z1P1B0T1P1B2Z
2014-05-23 19:42 - 2014-05-23 19:42 - 00000000 ____D () C:\ProgramData\WPM
2014-05-23 19:42 - 2014-05-23 19:42 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-05-23 19:41 - 2014-05-23 20:04 - 00000000 ____D () C:\Users\User\AppData\Roaming\sweet-page
2014-05-23 19:41 - 2014-05-23 19:41 - 00003224 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-05-23 19:41 - 2014-05-23 19:41 - 00000288 _____ () C:\Windows\Tasks\Digital Sites.job
2014-05-23 19:41 - 2014-05-23 19:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\WorldofTanks
2014-05-23 19:41 - 2014-05-23 19:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\DigitalSites
2014-05-23 19:41 - 2014-05-23 19:41 - 00000000 ____D () C:\Users\User\AppData\Local\WorldofTanks
2014-05-23 19:41 - 2014-05-23 19:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiPony
2014-05-23 19:40 - 2014-05-23 19:41 - 00675936 _____ () C:\Users\User\Downloads\DownloadAcceleratorSetup.exe
2014-05-23 18:48 - 2014-05-23 18:48 - 00883352 _____ (SlimWare Utilities, Inc.) C:\Users\User\Downloads\DriverUpdate-setup.exe
2014-05-23 16:01 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\SysWOW64\sqlite3.dll
2014-05-23 16:00 - 2014-05-23 19:16 - 00000000 ____D () C:\AdwCleaner
2014-05-23 15:59 - 2014-05-23 15:59 - 01326389 _____ () C:\Users\User\Downloads\adwcleaner_3.210.exe
2014-05-23 15:42 - 2014-05-23 15:42 - 00003166 _____ () C:\Windows\System32\Tasks\{AC704617-E2B5-449E-BB23-56EDDA567C6E}
2014-05-23 15:33 - 2014-05-23 20:33 - 00000000 ____D () C:\Users\User\AppData\Local\Genesis_05231333
2014-05-23 15:30 - 2014-05-23 15:30 - 00809984 _____ () C:\Users\User\Downloads\New player.exe
2014-05-23 15:21 - 2014-05-23 15:21 - 00000000 ____D () C:\Users\User\AppData\Local\{4B433409-04B2-4F28-A6DA-C8EE680F3D60}
2014-05-20 16:11 - 2014-05-20 16:12 - 12997551 _____ () C:\Users\User\Downloads\PowerPoint Parfüm.pptx
2014-05-19 17:21 - 2014-05-19 17:21 - 00000000 ____D () C:\Users\User\AppData\Local\{04CB1D35-29C3-45A1-93E7-344740801FB0}
2014-05-18 20:29 - 2014-05-18 20:29 - 00000000 ____D () C:\Users\User\AppData\Local\{DBE54EF2-0DE9-4BFF-A3E6-C6E5F079E644}
2014-05-17 13:12 - 2014-05-17 13:12 - 00000000 ____D () C:\Users\User\AppData\Local\{1C0FEF4C-2336-4049-BAD0-B77FF8E11E27}
2014-05-16 14:33 - 2014-05-16 14:33 - 00284360 _____ (Mozilla) C:\Users\User\Downloads\Firefox Setup Stub 30.0b4.exe
2014-05-15 21:35 - 2014-05-15 21:35 - 00003266 _____ () C:\Windows\System32\Tasks\{38CDDE71-F277-4AD9-84CF-0231C50B3FC5}
2014-05-15 21:29 - 2014-05-15 21:29 - 00000000 ____D () C:\Users\User\AppData\Local\Microsoft_Corporation
2014-05-15 16:59 - 2014-04-24 12:33 - 00061112 _____ (StdLib) C:\Windows\system32\Drivers\{f64c1459-b911-4fd8-a74e-36a496bf26e3}Gw64.sys
2014-05-15 13:42 - 2014-05-15 13:43 - 00000000 ____D () C:\Users\User\AppData\Roaming\Security System 2
2014-05-15 13:40 - 2014-05-15 13:40 - 00467784 _____ () C:\Users\User\Downloads\soft32_Microsoft PowerPoint 2010_1.0.exe
2014-05-14 20:22 - 2014-05-14 20:22 - 00000000 ____D () C:\Users\User\AppData\Local\{EDABC126-BF19-42B4-B2D2-9D5E84DAC7B8}
2014-05-14 14:36 - 2014-05-06 06:40 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-14 14:36 - 2014-05-06 06:17 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-14 14:36 - 2014-05-06 05:25 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-14 14:36 - 2014-05-06 05:07 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-14 14:36 - 2014-05-06 05:00 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-14 14:36 - 2014-05-06 04:10 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-14 11:58 - 2014-05-09 08:14 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-14 11:58 - 2014-05-09 08:11 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-14 11:58 - 2014-04-12 04:22 - 00155072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-05-14 11:58 - 2014-04-12 04:22 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2014-05-14 11:58 - 2014-04-12 04:19 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-05-14 11:58 - 2014-04-12 04:19 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2014-05-14 11:58 - 2014-04-12 04:19 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2014-05-14 11:58 - 2014-04-12 04:19 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2014-05-14 11:58 - 2014-04-12 04:19 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2014-05-14 11:58 - 2014-04-12 04:12 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-05-14 11:58 - 2014-04-12 04:10 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-05-14 11:58 - 2014-03-25 04:43 - 14175744 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-05-14 11:58 - 2014-03-25 04:09 - 12874240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-05-14 11:58 - 2014-03-04 11:47 - 05550016 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-05-14 11:58 - 2014-03-04 11:44 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-05-14 11:58 - 2014-03-04 11:44 - 00722944 _____ (Microsoft Corporation) C:\Windows\system32\objsel.dll
2014-05-14 11:58 - 2014-03-04 11:44 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2014-05-14 11:58 - 2014-03-04 11:44 - 00340992 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-05-14 11:58 - 2014-03-04 11:44 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-05-14 11:58 - 2014-03-04 11:44 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-05-14 11:58 - 2014-03-04 11:44 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-05-14 11:58 - 2014-03-04 11:44 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\wincredprovider.dll
2014-05-14 11:58 - 2014-03-04 11:43 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-05-14 11:58 - 2014-03-04 11:43 - 00057344 _____ (Microsoft Corporation) C:\Windows\system32\cngprovider.dll
2014-05-14 11:58 - 2014-03-04 11:43 - 00056832 _____ (Microsoft Corporation) C:\Windows\system32\adprovider.dll
2014-05-14 11:58 - 2014-03-04 11:43 - 00053760 _____ (Microsoft Corporation) C:\Windows\system32\capiprovider.dll
2014-05-14 11:58 - 2014-03-04 11:43 - 00052736 _____ (Microsoft Corporation) C:\Windows\system32\dpapiprovider.dll
2014-05-14 11:58 - 2014-03-04 11:43 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\dimsroam.dll
2014-05-14 11:58 - 2014-03-04 11:43 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-05-14 11:58 - 2014-03-04 11:20 - 03969984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2014-05-14 11:58 - 2014-03-04 11:20 - 03914176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2014-05-14 11:58 - 2014-03-04 11:17 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00538112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\objsel.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00247808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cngprovider.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00049664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adprovider.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\capiprovider.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dpapiprovider.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dimsroam.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wincredprovider.dll
2014-05-14 11:58 - 2014-03-04 11:17 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-05-14 11:58 - 2014-03-04 11:16 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2014-05-13 18:19 - 2014-05-13 18:19 - 00000000 ____D () C:\Users\User\AppData\Local\{10D191C5-EF31-4430-BD55-6AA84877F701}
2014-05-10 20:31 - 2014-05-10 20:31 - 00000000 ____D () C:\Users\User\AppData\Local\{0CE31039-FF64-43CA-9A22-0F5E828D8C65}
2014-05-10 19:00 - 2014-05-10 19:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 12:12 - 2014-05-10 12:12 - 00000000 ____D () C:\Users\User\AppData\Local\{1ABAA3D8-C7E2-4B36-A314-C1B6C8010111}
2014-05-09 18:01 - 2014-05-09 18:01 - 00000000 ____D () C:\Users\User\AppData\Local\{9B70068D-83C2-4384-ABEA-8DE4D2AA0B42}
2014-05-08 12:33 - 2014-05-08 12:33 - 00000000 ____D () C:\Users\User\AppData\Roaming\TERA
2014-05-08 12:32 - 2014-05-08 12:32 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\User\Downloads\TERASetup.exe
2014-05-08 12:32 - 2014-05-08 12:32 - 00000000 ____D () C:\Users\User\AppData\Local\{46415CE7-A354-4B81-9A10-56232F8F8A06}
2014-05-08 10:49 - 2014-05-08 10:49 - 00000000 ____D () C:\Users\User\AppData\Local\{7149EE4B-6F12-4009-A178-6DF6F2EB022F}
2014-05-07 11:49 - 2014-03-06 11:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-05-07 11:49 - 2014-03-06 10:59 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-05-07 11:49 - 2014-03-06 10:57 - 00548352 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-05-07 11:49 - 2014-03-06 10:57 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-05-07 11:49 - 2014-03-06 10:53 - 02767360 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-05-07 11:49 - 2014-03-06 10:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-05-07 11:49 - 2014-03-06 10:39 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-05-07 11:49 - 2014-03-06 10:32 - 00574976 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-05-07 11:49 - 2014-03-06 10:29 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-05-07 11:49 - 2014-03-06 10:29 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-05-07 11:49 - 2014-03-06 10:28 - 00752640 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-05-07 11:49 - 2014-03-06 10:15 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-05-07 11:49 - 2014-03-06 10:11 - 05784064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-05-07 11:49 - 2014-03-06 10:09 - 00453120 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-05-07 11:49 - 2014-03-06 10:03 - 00586240 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-05-07 11:49 - 2014-03-06 10:02 - 00455168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-05-07 11:49 - 2014-03-06 10:02 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-05-07 11:49 - 2014-03-06 10:01 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-05-07 11:49 - 2014-03-06 09:56 - 00038400 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-05-07 11:49 - 2014-03-06 09:48 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-05-07 11:49 - 2014-03-06 09:47 - 02178048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-05-07 11:49 - 2014-03-06 09:46 - 04254720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-05-07 11:49 - 2014-03-06 09:46 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-05-07 11:49 - 2014-03-06 09:45 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-05-07 11:49 - 2014-03-06 09:42 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-05-07 11:49 - 2014-03-06 09:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-05-07 11:49 - 2014-03-06 09:38 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-05-07 11:49 - 2014-03-06 09:36 - 00592896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-05-07 11:49 - 2014-03-06 09:22 - 00367616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-05-07 11:49 - 2014-03-06 09:21 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-05-07 11:49 - 2014-03-06 09:13 - 00032256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-05-07 11:49 - 2014-03-06 09:11 - 02043904 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-05-07 11:49 - 2014-03-06 09:07 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-05-07 11:49 - 2014-03-06 09:01 - 00244224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-05-07 11:49 - 2014-03-06 08:53 - 13551104 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-05-07 11:49 - 2014-03-06 08:46 - 00524288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-05-07 11:49 - 2014-03-06 08:40 - 01967104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-05-07 11:49 - 2014-03-06 08:36 - 11745792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-05-07 11:49 - 2014-03-06 08:22 - 02260480 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-05-07 11:49 - 2014-03-06 07:58 - 01400832 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-05-07 11:49 - 2014-03-06 07:50 - 00846336 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-05-07 11:49 - 2014-03-06 07:43 - 00704512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-05-07 11:49 - 2014-03-06 07:41 - 01789440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-05-07 11:49 - 2014-03-06 07:36 - 01143808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-05-07 11:48 - 2014-05-14 14:42 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-07 11:48 - 2014-05-07 11:48 - 00000000 ____D () C:\Users\User\AppData\Local\{242BA7FF-CE38-4EA4-86A0-1F3A89CC67AC}
2014-05-05 14:33 - 2014-05-05 14:33 - 00000000 ____D () C:\Users\User\AppData\Local\{CE46A441-9394-4AA5-8393-05DA6A453540}
2014-05-04 16:55 - 2014-05-04 16:55 - 00000000 ____D () C:\Users\User\AppData\Local\{3A727AFA-4946-42D0-ABF1-F2500A87AF49}
2014-05-03 15:24 - 2014-05-03 15:24 - 00000000 ____D () C:\Users\User\AppData\Local\{B7625851-D6E1-4DCE-8B75-D86D8BAEFF5D}
2014-05-02 14:06 - 2014-05-02 14:06 - 00000000 ____D () C:\Users\User\AppData\Local\{82FDC237-43E2-4E57-AF63-127E9CF56F5A}
2014-05-01 19:21 - 2014-05-01 19:21 - 00000000 ____D () C:\Users\User\AppData\Local\{60AAF42D-68BE-424D-97B2-BDFF32B3016E}
2014-04-30 12:15 - 2014-04-30 12:15 - 00000000 ____D () C:\Users\User\AppData\Local\{AD2833D6-1F83-44DA-AF3B-3A4B5BC15041}
2014-04-29 15:27 - 2014-04-29 15:27 - 00000000 ____D () C:\Users\User\AppData\Local\{21BDFDA4-9552-4ACC-8F74-3025609DC9BF}
2014-04-27 20:26 - 2014-04-27 20:26 - 00000000 ____D () C:\Users\User\AppData\Local\{BF061703-AF22-47C4-A802-34B180D6AF19}
2014-04-27 12:06 - 2014-04-27 12:07 - 00000000 ____D () C:\Users\User\AppData\Local\{E2A6CAA0-5114-40E0-A53F-12B654D48A2E}
2014-04-23 19:40 - 2014-04-23 19:40 - 00000000 ____D () C:\Users\User\AppData\Local\{5889243A-BFDD-4D1D-BEBA-66B4A2235EFE}
2014-04-23 15:47 - 2014-04-23 15:47 - 03249480 _____ (Unity Technologies ApS) C:\Users\User\Downloads\UnityWebPlayer.exe

==================== One Month Modified Files and Folders =======

2014-05-23 20:37 - 2014-05-23 19:53 - 00023137 _____ () C:\Users\User\Downloads\FRST.txt
2014-05-23 20:36 - 2014-05-23 19:53 - 00000000 ____D () C:\FRST
2014-05-23 20:34 - 2014-05-23 20:31 - 00000000 ____D () C:\Users\User\AppData\Local\fst_de_19
2014-05-23 20:33 - 2014-05-23 15:33 - 00000000 ____D () C:\Users\User\AppData\Local\Genesis_05231333
2014-05-23 20:32 - 2014-05-23 20:32 - 00807928 _____ () C:\Users\User\Downloads\Setup (2).exe
2014-05-23 20:32 - 2014-05-23 20:32 - 00003122 _____ () C:\Windows\System32\Tasks\{DD1A6BD7-2447-4D74-BE86-E47B7B5076DA}
2014-05-23 20:32 - 2014-05-23 20:32 - 00001929 _____ () C:\Users\User\Desktop\Sync Folder.lnk
2014-05-23 20:32 - 2014-05-23 20:32 - 00001073 _____ () C:\Users\Public\Desktop\NewPlayer.lnk
2014-05-23 20:32 - 2014-05-23 20:32 - 00001022 _____ () C:\Users\User\Desktop\Optimizer Pro.lnk
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\Users\User\AppData\Local\newplayer
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\Users\User\AppData\Local\com
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wajam
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Optimizer Pro v3.2
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NewPlayer
2014-05-23 20:32 - 2014-05-23 20:32 - 00000000 ____D () C:\Program Files (x86)\Wajam
2014-05-23 20:32 - 2014-05-23 20:31 - 00000000 ____D () C:\Program Files (x86)\Optimizer Pro
2014-05-23 20:32 - 2014-05-23 20:31 - 00000000 ____D () C:\Program Files (x86)\NewPlayer
2014-05-23 20:32 - 2014-05-23 20:31 - 00000000 ____D () C:\Program Files (x86)\MyPC Backup
2014-05-23 20:31 - 2014-05-23 20:31 - 00001047 _____ () C:\Users\User\Desktop\MyPC Backup.lnk
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Users\User\AppData\Roaming\VOPackage
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VOPackage
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MyPC Backup
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeSoftToday
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Program Files\suprasavings
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Program Files\003
2014-05-23 20:31 - 2014-05-23 20:31 - 00000000 ____D () C:\Program Files (x86)\fst_de_19
2014-05-23 20:31 - 2014-05-23 20:30 - 00000000 _____ () C:\END
2014-05-23 20:31 - 2012-07-04 19:15 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-05-23 20:30 - 2014-05-23 20:30 - 00807928 _____ () C:\Users\User\Downloads\Setup.exe
2014-05-23 20:30 - 2014-05-23 20:30 - 00807928 _____ () C:\Users\User\Downloads\Setup (1).exe
2014-05-23 20:30 - 2014-05-23 20:30 - 00000000 ____D () C:\Users\User\AppData\Local\SearchProtect
2014-05-23 20:27 - 2014-05-23 20:27 - 00050477 _____ () C:\Users\User\Downloads\Defogger.exe
2014-05-23 20:12 - 2012-07-16 17:08 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-05-23 20:05 - 2014-05-23 20:05 - 00003140 _____ () C:\Windows\System32\Tasks\{0E015FC3-4A75-4554-8218-CCBD9BA53B19}
2014-05-23 20:04 - 2014-05-23 19:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\sweet-page
2014-05-23 20:02 - 2014-05-23 20:02 - 00000000 ____D () C:\Users\User\AppData\Local\{DBA22C33-4352-4058-A2DA-F4210F1F7C51}
2014-05-23 19:55 - 2014-05-23 19:54 - 00038990 _____ () C:\Users\User\Downloads\Addition.txt
2014-05-23 19:53 - 2014-05-23 19:52 - 02067456 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe
2014-05-23 19:46 - 2014-05-23 19:46 - 00000000 __SHD () C:\Users\User\AppData\Local\EmieUserList
2014-05-23 19:46 - 2014-05-23 19:46 - 00000000 __SHD () C:\Users\User\AppData\Local\EmieSiteList
2014-05-23 19:46 - 2014-05-23 19:46 - 00000000 ____D () C:\Users\User\Documents\PC Speed Maximizer
2014-05-23 19:45 - 2014-05-23 19:44 - 00000000 ____D () C:\Users\User\AppData\Roaming\Mipony
2014-05-23 19:44 - 2013-07-13 14:14 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-05-23 19:44 - 2009-07-14 06:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-05-23 19:44 - 2009-07-14 06:45 - 00023024 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-05-23 19:43 - 2014-05-23 19:42 - 00000000 ____D () C:\ProgramData\IePluginServices
2014-05-23 19:42 - 2014-05-23 19:42 - 00000000 ____D () C:\Users\User\AppData\Roaming\SupTab
2014-05-23 19:42 - 2014-05-23 19:42 - 00000000 ____D () C:\Users\User\AppData\Roaming\0D0S1L2Z1P1B0T1P1B2Z
2014-05-23 19:42 - 2014-05-23 19:42 - 00000000 ____D () C:\ProgramData\WPM
2014-05-23 19:42 - 2014-05-23 19:42 - 00000000 ____D () C:\Program Files (x86)\SupTab
2014-05-23 19:41 - 2014-05-23 19:41 - 00003224 _____ () C:\Windows\System32\Tasks\Digital Sites
2014-05-23 19:41 - 2014-05-23 19:41 - 00000288 _____ () C:\Windows\Tasks\Digital Sites.job
2014-05-23 19:41 - 2014-05-23 19:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\WorldofTanks
2014-05-23 19:41 - 2014-05-23 19:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\DigitalSites
2014-05-23 19:41 - 2014-05-23 19:41 - 00000000 ____D () C:\Users\User\AppData\Local\WorldofTanks
2014-05-23 19:41 - 2014-05-23 19:41 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiPony
2014-05-23 19:41 - 2014-05-23 19:40 - 00675936 _____ () C:\Users\User\Downloads\DownloadAcceleratorSetup.exe
2014-05-23 19:23 - 2012-07-06 10:03 - 00000000 ____D () C:\Users\User\AppData\Local\CrashDumps
2014-05-23 19:21 - 2011-05-09 01:57 - 01425316 _____ () C:\Windows\WindowsUpdate.log
2014-05-23 19:17 - 2013-07-13 14:14 - 00001102 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-05-23 19:16 - 2014-05-23 16:00 - 00000000 ____D () C:\AdwCleaner
2014-05-23 19:16 - 2011-05-09 01:59 - 00145624 _____ () C:\Windows\PFRO.log
2014-05-23 19:16 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-05-23 19:16 - 2009-07-14 06:51 - 00196146 _____ () C:\Windows\setupact.log
2014-05-23 19:15 - 2009-07-14 07:32 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-05-23 18:48 - 2014-05-23 18:48 - 00883352 _____ (SlimWare Utilities, Inc.) C:\Users\User\Downloads\DriverUpdate-setup.exe
2014-05-23 16:02 - 2013-07-13 14:16 - 00001238 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-05-23 16:02 - 2013-07-13 14:16 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2014-05-23 16:02 - 2012-09-03 23:10 - 00001021 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-05-23 16:02 - 2012-09-03 23:10 - 00001009 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-05-23 16:02 - 2012-07-04 19:15 - 00000993 _____ () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2014-05-23 15:59 - 2014-05-23 15:59 - 01326389 _____ () C:\Users\User\Downloads\adwcleaner_3.210.exe
2014-05-23 15:42 - 2014-05-23 15:42 - 00003166 _____ () C:\Windows\System32\Tasks\{AC704617-E2B5-449E-BB23-56EDDA567C6E}
2014-05-23 15:30 - 2014-05-23 15:30 - 00809984 _____ () C:\Users\User\Downloads\New player.exe
2014-05-23 15:21 - 2014-05-23 15:21 - 00000000 ____D () C:\Users\User\AppData\Local\{4B433409-04B2-4F28-A6DA-C8EE680F3D60}
2014-05-23 14:13 - 2011-01-04 23:09 - 00699682 _____ () C:\Windows\system32\perfh007.dat
2014-05-23 14:13 - 2011-01-04 23:09 - 00149790 _____ () C:\Windows\system32\perfc007.dat
2014-05-23 14:13 - 2009-07-14 07:13 - 01620684 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-05-20 16:12 - 2014-05-20 16:11 - 12997551 _____ () C:\Users\User\Downloads\PowerPoint Parfüm.pptx
2014-05-19 17:21 - 2014-05-19 17:21 - 00000000 ____D () C:\Users\User\AppData\Local\{04CB1D35-29C3-45A1-93E7-344740801FB0}
2014-05-18 20:29 - 2014-05-18 20:29 - 00000000 ____D () C:\Users\User\AppData\Local\{DBE54EF2-0DE9-4BFF-A3E6-C6E5F079E644}
2014-05-17 14:30 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-05-17 13:12 - 2014-05-17 13:12 - 00000000 ____D () C:\Users\User\AppData\Local\{1C0FEF4C-2336-4049-BAD0-B77FF8E11E27}
2014-05-16 14:33 - 2014-05-16 14:33 - 00284360 _____ (Mozilla) C:\Users\User\Downloads\Firefox Setup Stub 30.0b4.exe
2014-05-15 21:35 - 2014-05-15 21:35 - 00003266 _____ () C:\Windows\System32\Tasks\{38CDDE71-F277-4AD9-84CF-0231C50B3FC5}
2014-05-15 21:29 - 2014-05-15 21:29 - 00000000 ____D () C:\Users\User\AppData\Local\Microsoft_Corporation
2014-05-15 21:21 - 2009-07-14 04:34 - 00000580 _____ () C:\Windows\win.ini
2014-05-15 13:43 - 2014-05-15 13:42 - 00000000 ____D () C:\Users\User\AppData\Roaming\Security System 2
2014-05-15 13:40 - 2014-05-15 13:40 - 00467784 _____ () C:\Users\User\Downloads\soft32_Microsoft PowerPoint 2010_1.0.exe
2014-05-14 20:22 - 2014-05-14 20:22 - 00000000 ____D () C:\Users\User\AppData\Local\{EDABC126-BF19-42B4-B2D2-9D5E84DAC7B8}
2014-05-14 20:12 - 2012-07-16 17:08 - 00692400 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-05-14 20:12 - 2012-07-16 17:08 - 00070832 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-05-14 20:12 - 2012-07-16 17:08 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-05-14 14:45 - 2012-07-04 19:15 - 00000000 ___RD () C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
2014-05-14 14:42 - 2014-05-07 11:48 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-05-14 14:36 - 2012-11-20 18:45 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-05-14 14:35 - 2013-08-16 13:10 - 00000000 ____D () C:\Windows\system32\MRT
2014-05-14 14:34 - 2012-07-04 19:46 - 93223848 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-05-13 18:19 - 2014-05-13 18:19 - 00000000 ____D () C:\Users\User\AppData\Local\{10D191C5-EF31-4430-BD55-6AA84877F701}
2014-05-10 20:46 - 2012-09-03 23:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-05-10 20:31 - 2014-05-10 20:31 - 00000000 ____D () C:\Users\User\AppData\Local\{0CE31039-FF64-43CA-9A22-0F5E828D8C65}
2014-05-10 19:00 - 2014-05-10 19:00 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-05-10 12:12 - 2014-05-10 12:12 - 00000000 ____D () C:\Users\User\AppData\Local\{1ABAA3D8-C7E2-4B36-A314-C1B6C8010111}
2014-05-09 18:01 - 2014-05-09 18:01 - 00000000 ____D () C:\Users\User\AppData\Local\{9B70068D-83C2-4384-ABEA-8DE4D2AA0B42}
2014-05-09 08:14 - 2014-05-14 11:58 - 00477184 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-05-09 08:11 - 2014-05-14 11:58 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-05-08 17:39 - 2013-07-13 14:14 - 00004102 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-05-08 17:39 - 2013-07-13 14:14 - 00003850 _____ () C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-05-08 14:19 - 2009-07-14 07:08 - 00032640 _____ () C:\Windows\Tasks\SCHEDLGU.TXT
2014-05-08 12:33 - 2014-05-08 12:33 - 00000000 ____D () C:\Users\User\AppData\Roaming\TERA
2014-05-08 12:32 - 2014-05-08 12:32 - 15366160 _____ (Gameforge Productions GmbH ) C:\Users\User\Downloads\TERASetup.exe
2014-05-08 12:32 - 2014-05-08 12:32 - 00000000 ____D () C:\Users\User\AppData\Local\{46415CE7-A354-4B81-9A10-56232F8F8A06}
2014-05-08 10:49 - 2014-05-08 10:49 - 00000000 ____D () C:\Users\User\AppData\Local\{7149EE4B-6F12-4009-A178-6DF6F2EB022F}
2014-05-07 13:09 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-05-07 11:48 - 2014-05-07 11:48 - 00000000 ____D () C:\Users\User\AppData\Local\{242BA7FF-CE38-4EA4-86A0-1F3A89CC67AC}
2014-05-06 06:40 - 2014-05-14 14:36 - 23544320 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-05-06 06:17 - 2014-05-14 14:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-05-06 05:25 - 2014-05-14 14:36 - 17382912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-05-06 05:07 - 2014-05-14 14:36 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-05-06 05:00 - 2014-05-14 14:36 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-05-06 04:10 - 2014-05-14 14:36 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-05-05 14:33 - 2014-05-05 14:33 - 00000000 ____D () C:\Users\User\AppData\Local\{CE46A441-9394-4AA5-8393-05DA6A453540}
2014-05-04 16:55 - 2014-05-04 16:55 - 00000000 ____D () C:\Users\User\AppData\Local\{3A727AFA-4946-42D0-ABF1-F2500A87AF49}
2014-05-03 15:24 - 2014-05-03 15:24 - 00000000 ____D () C:\Users\User\AppData\Local\{B7625851-D6E1-4DCE-8B75-D86D8BAEFF5D}
2014-05-02 14:06 - 2014-05-02 14:06 - 00000000 ____D () C:\Users\User\AppData\Local\{82FDC237-43E2-4E57-AF63-127E9CF56F5A}
2014-05-01 19:21 - 2014-05-01 19:21 - 00000000 ____D () C:\Users\User\AppData\Local\{60AAF42D-68BE-424D-97B2-BDFF32B3016E}
2014-05-01 19:19 - 2011-01-04 15:05 - 00000000 ____D () C:\Windows\SysWOW64\Adobe
2014-05-01 18:39 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\system32\NDF
2014-04-30 14:57 - 2013-11-08 18:25 - 00000000 ____D () C:\Users\User\AppData\Local\TomTom
2014-04-30 14:57 - 2013-11-08 18:25 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom
2014-04-30 12:15 - 2014-04-30 12:15 - 00000000 ____D () C:\Users\User\AppData\Local\{AD2833D6-1F83-44DA-AF3B-3A4B5BC15041}
2014-04-29 15:27 - 2014-04-29 15:27 - 00000000 ____D () C:\Users\User\AppData\Local\{21BDFDA4-9552-4ACC-8F74-3025609DC9BF}
2014-04-29 14:25 - 2012-08-03 20:08 - 00000340 _____ () C:\Windows\Tasks\HPCeeScheduleForUSER-HP$.job
2014-04-29 14:25 - 2012-07-04 19:18 - 00003216 _____ () C:\Windows\System32\Tasks\HPCeeScheduleForUSER-HP$
2014-04-27 20:26 - 2014-04-27 20:26 - 00000000 ____D () C:\Users\User\AppData\Local\{BF061703-AF22-47C4-A802-34B180D6AF19}
2014-04-27 13:31 - 2014-04-07 17:43 - 00000000 ____D () C:\Users\User\Documents\FIP Dokumentation
2014-04-27 12:07 - 2014-04-27 12:06 - 00000000 ____D () C:\Users\User\AppData\Local\{E2A6CAA0-5114-40E0-A53F-12B654D48A2E}
2014-04-24 12:33 - 2014-05-15 16:59 - 00061112 _____ (StdLib) C:\Windows\system32\Drivers\{f64c1459-b911-4fd8-a74e-36a496bf26e3}Gw64.sys
2014-04-23 19:40 - 2014-04-23 19:40 - 00000000 ____D () C:\Users\User\AppData\Local\{5889243A-BFDD-4D1D-BEBA-66B4A2235EFE}
2014-04-23 15:47 - 2014-04-23 15:47 - 03249480 _____ (Unity Technologies ApS) C:\Users\User\Downloads\UnityWebPlayer.exe
2014-04-23 10:38 - 2013-07-01 19:41 - 00000000 ____D () C:\Users\User\AppData\Roaming\Skype

Some content of TEMP:
====================
C:\Users\User\AppData\Local\Temp\BackupSetup.exe
C:\Users\User\AppData\Local\Temp\cloud_backup_setup.exe
C:\Users\User\AppData\Local\Temp\f978377c-b7d4-4536-8e10-14ca97b13394.exe
C:\Users\User\AppData\Local\Temp\freesofttoday.exe
C:\Users\User\AppData\Local\Temp\genesisinstaller.exe
C:\Users\User\AppData\Local\Temp\lly_webssearches.exe
C:\Users\User\AppData\Local\Temp\newvideoplayersetup.exe
C:\Users\User\AppData\Local\Temp\nsd5C7B.exe
C:\Users\User\AppData\Local\Temp\nsd6331.exe
C:\Users\User\AppData\Local\Temp\nsi2CBE.exe
C:\Users\User\AppData\Local\Temp\nsi2FCB.exe
C:\Users\User\AppData\Local\Temp\nsk5A34.exe
C:\Users\User\AppData\Local\Temp\nsn5FC6.exe
C:\Users\User\AppData\Local\Temp\nsy32E8.exe
C:\Users\User\AppData\Local\Temp\optimizerpro.exe
C:\Users\User\AppData\Local\Temp\Quarantine.exe
C:\Users\User\AppData\Local\Temp\speedupmypc.exe
C:\Users\User\AppData\Local\Temp\spidentifierimpl.exe
C:\Users\User\AppData\Local\Temp\vopackage.exe
C:\Users\User\AppData\Local\Temp\wajam_download.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-05-17 14:23

==================== End Of Log ============================
         



__________________
Angehängte Dateien
Dateityp: txt Malware.txt (73,6 KB, 206x aufgerufen)

Alt 23.05.2014, 21:32   #4
Keckrem
 
Immer wieder öffnen sich Tabs mit Werbungen automatisch! - Standard

Lösung: Immer wieder öffnen sich Tabs mit Werbungen automatisch!



Öhm... Du solltest ein neues Thema erstellen...

Lies dir nochmal meinen Beitrag durch. Es ist übrigens was drauf.

Antwort

Themen zu Immer wieder öffnen sich Tabs mit Werbungen automatisch!
abend, automatisch, brauche, chrome, deinstalliert, dringend, fenster, gen, guten, hoffe, immer wieder, mozilla, nervt, neue, neue tabs, programme, sich automatisch, sämtliche, vermute, virus, werbung auf jeder internetseite, werbungen, überfallen, öffnen



Ähnliche Themen: Immer wieder öffnen sich Tabs mit Werbungen automatisch!


  1. Unter Google Chrome öffnen sich automatisch Tabs
    Plagegeister aller Art und deren Bekämpfung - 23.03.2015 (15)
  2. zwei neue Tabs öffnen sich in Chrome automatisch
    Log-Analyse und Auswertung - 17.02.2015 (3)
  3. Tabs öffnen sich automatisch
    Plagegeister aller Art und deren Bekämpfung - 02.02.2015 (7)
  4. Zwei Tabs mit Werbung öffnen sich gleichzeitig automatisch in Google Chrom
    Log-Analyse und Auswertung - 10.01.2015 (19)
  5. Tabs öffnen sich automatisch
    Log-Analyse und Auswertung - 15.12.2014 (5)
  6. Tabs öffnen sich automatisch
    Log-Analyse und Auswertung - 02.12.2014 (7)
  7. Browser startet automatisch, Tabs öffnen sich eigenständig mit Werbung
    Plagegeister aller Art und deren Bekämpfung - 13.10.2014 (13)
  8. Tabs öffnen sich automatisch
    Plagegeister aller Art und deren Bekämpfung - 17.09.2014 (31)
  9. Chrome Tabs öffnen sich automatisch
    Log-Analyse und Auswertung - 29.06.2014 (19)
  10. Tabs öffnen sich automatisch
    Plagegeister aller Art und deren Bekämpfung - 16.05.2014 (10)
  11. tabs öffnen sich automatisch, reg-Eintrag lässt sich mit mbam nicht löschen
    Plagegeister aller Art und deren Bekämpfung - 29.12.2011 (13)
  12. Feststelltaste verselbständigt sich, Firefox Tabs öffnen automatisch
    Log-Analyse und Auswertung - 01.05.2011 (12)
  13. Win7 64Bit | Firefox-> TABS öffnen sich automatisch
    Log-Analyse und Auswertung - 04.11.2010 (6)
  14. Tabs öffnen sich automatisch - Scan durchgeführt - ist mein Laptop wieder sauber?
    Plagegeister aller Art und deren Bekämpfung - 20.09.2010 (24)
  15. Tabs öffnen sich automatisch
    Plagegeister aller Art und deren Bekämpfung - 10.12.2009 (7)
  16. Tabs öffnen sich automatisch im IE und im Firefox
    Log-Analyse und Auswertung - 11.11.2008 (1)
  17. Hijack Problem - Tabs im IE öffnen sich automatisch
    Log-Analyse und Auswertung - 19.07.2008 (12)

Zum Thema Immer wieder öffnen sich Tabs mit Werbungen automatisch! - Guten Abend, ich brauche dringend Hilfe. Ich vermute, dass mein PC von einem Virus überfallen wurde. Jedes mal, wenn ich Mozilla oder Chrome öffne, öffnen sich automatisch neue Tabs oder - Immer wieder öffnen sich Tabs mit Werbungen automatisch!...
Archiv
Du betrachtest: Immer wieder öffnen sich Tabs mit Werbungen automatisch! auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.