Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Windows 7 - Werbefenster öffnen sich überall

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 24.08.2014, 10:30   #16
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7 - Werbefenster öffnen sich überall - Standard

Windows 7 - Werbefenster öffnen sich überall



Nee das ist ein neuer Lauf von Combofix. Warte mal mit deinstallieren.

Revo Uninstaller - Download - Filepony
damit Firefox deinstallieren, keine Daten behalten, Reste entfernen lassen, neu installieren.

Dann:
https://support.mozilla.org/de/kb/fi...einfach-loesen


Frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 24.08.2014, 11:14   #17
Petant1205
 
Windows 7 - Werbefenster öffnen sich überall - Standard

Windows 7 - Werbefenster öffnen sich überall




FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:23-08-2014
Ran by Petra (administrator) on PETRA-PC on 24-08-2014 12:12:32
Running from C:\Users\Petra\Downloads
Platform: Microsoft Windows 7 Home Premium  Service Pack 1 (X86) OS Language: Deutsch (Deutschland)
Internet Explorer Version 9
Boot Mode: Normal


==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Lenovo) C:\Windows\System32\ibmpmsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Lenovo) C:\Program Files\Lenovo\Access Connections\AcPrfMgrSvc.exe
(Andrea Electronics Corporation) C:\Windows\System32\AEADISRV.EXE
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\System32\FXSSVC.exe
(Lenovo) C:\Program Files\Lenovo\Access Connections\AcSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Apple Inc.) C:\Program Files\QuickTime\QTTask.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
(Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicatorCom.exe
(Lenovo) C:\Program Files\Lenovo\Access Connections\SvcGuiHlpr.exe
(Hewlett-Packard Co.) C:\Program Files\HP\HP Officejet 6700\Bin\HPNetworkCommunicator.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe
(Lenovo.) C:\Program Files\ThinkPad\Utilities\DOZESVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Intel Corporation) C:\Windows\System32\igfxext.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Lenovo) C:\Program Files\ThinkPad\Utilities\PWMDBSVC.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Windows\System32\OptionalFeatures.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-08-07] (Intel Corporation)
HKLM\...\Run: [AcWin7Hlpr] => C:\Program Files\Lenovo\Access Connections\AcTBenabler.exe [64608 2012-05-30] (Lenovo)
HKLM\...\Run: [PWMTRV] => rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWMTR32V.DLL,PwrMgrBkGndMonitor
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1314816 2009-05-18] (Analog Devices, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2342200 2012-07-05] (Synaptics Incorporated)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [HP Software Update] => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [49208 2011-10-28] (Hewlett-Packard)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2010-11-29] (Apple Inc.)
HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [951576 2014-03-11] (Microsoft Corporation)
HKU\S-1-5-21-4103409644-2115618623-1480157512-1001\...\Run: [HP Officejet 6700 (NET)] => C:\Program Files\HP\HP Officejet 6700\Bin\ScanToPCActivationApp.exe [1837672 2012-10-17] (Hewlett-Packard Co.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\Users\Petra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Petra\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Petra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Tintenwarnungen überwachen - HP Officejet 6700 (Netzwerk).lnk
ShortcutTarget: Tintenwarnungen überwachen - HP Officejet 6700 (Netzwerk).lnk -> C:\Program Files\HP\HP Officejet 6700\Bin\HPStatusBL.dll (Hewlett-Packard Co.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xABF32BFAA22CCE01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-AT
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
DPF: {D27CDB6E-AE6D-11CF-96B8-720720720720} hxxp://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Petra\AppData\Roaming\Mozilla\Firefox\Profiles\7tc8krds.default-1408875048191
FF Homepage: www.google.at
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml

Chrome: 
=======
CHR Extension: (Docs) - C:\Users\Petra\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-05-31]
CHR Extension: (Google Drive) - C:\Users\Petra\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-24]
CHR Extension: (YouTube) - C:\Users\Petra\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-24]
CHR Extension: (Google-Suche) - C:\Users\Petra\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-24]
CHR Extension: (Google Mail) - C:\Users\Petra\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-24]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 AcPrfMgrSvc; C:\Program Files\Lenovo\Access Connections\AcPrfMgrSvc.exe [134240 2012-05-30] (Lenovo)
R2 AcSvc; C:\Program Files\Lenovo\Access Connections\AcSvc.exe [273504 2012-05-30] (Lenovo)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [22216 2014-03-11] (Microsoft Corporation)
S3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [279776 2014-03-11] (Microsoft Corporation)
S3 PwmEWSvc; C:\Program Files\ThinkPad\Utilities\PWMEWSVC.EXE [1665120 2012-05-16] (Lenovo Group Limited)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [231960 2014-01-25] (Microsoft Corporation)
S3 SmbDrv; C:\Windows\system32\drivers\Smb_driver_AMDASF.sys [22840 2012-07-05] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\system32\drivers\Smb_driver_Intel.sys [23608 2012-07-05] (Synaptics Incorporated)
R3 SWNC8U01; C:\Windows\System32\DRIVERS\SWNC8U01.sys [102144 2007-01-12] (Sierra Wireless Inc.)
R3 SWUMX01; C:\Windows\System32\DRIVERS\swumx01.sys [70656 2007-01-12] (Sierra Wireless Inc.)
R1 wStLibG; C:\Windows\System32\drivers\wStLibG.sys [52920 2014-04-21] (StdLib)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
R3 catchme; \??\C:\Users\Petra\AppData\Local\Temp\catchme.sys [X]
S3 HSF_DPV; system32\DRIVERS\HSX_DPV.sys [X]
S3 HSXHWAZL; system32\DRIVERS\HSXHWAZL.sys [X]
S2 mdmxsdk; system32\DRIVERS\mdmxsdk.sys [X]
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Corporation)
S3 winachsf; system32\DRIVERS\HSX_CNXT.sys [X]
U3 mbr; \??\C:\uninstall.exe\mbr.sys [X]

==================== NetSvcs (Whitelisted) ===================


(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 12:08 - 2014-08-24 12:08 - 00001128 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-24 12:08 - 2014-08-24 12:08 - 00001116 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-08-24 12:08 - 2014-08-24 12:08 - 00000000 ___DC () C:\Program Files\Mozilla Maintenance Service
2014-08-24 12:08 - 2014-08-24 12:08 - 00000000 ___DC () C:\Program Files\Mozilla Firefox
2014-08-24 12:07 - 2014-08-24 12:07 - 00244408 _____ () C:\Users\Petra\Downloads\Firefox Setup Stub 31.0 (1).exe
2014-08-24 12:06 - 2014-08-24 12:06 - 00244408 _____ () C:\Users\Petra\Downloads\Firefox Setup Stub 31.0.exe
2014-08-24 11:57 - 2014-08-24 11:57 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Petra\Downloads\revosetup95.exe
2014-08-24 08:45 - 2014-08-24 08:45 - 00014426 ____C () C:\ComboFix.txt
2014-08-23 19:59 - 2014-08-23 20:01 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-23 19:47 - 2014-08-23 19:47 - 00448512 _____ (OldTimer Tools) C:\Users\Petra\Downloads\TFC.exe
2014-08-22 22:28 - 2014-08-23 19:42 - 00000000 ____D () C:\Users\Petra\Downloads\FRST-OlderVersion
2014-08-22 22:25 - 2014-08-22 22:25 - 00854417 _____ () C:\Users\Petra\Downloads\SecurityCheck.exe
2014-08-22 19:25 - 2014-08-22 19:25 - 02347384 _____ (ESET) C:\Users\Petra\Downloads\esetsmartinstaller_deu.exe
2014-08-21 14:16 - 2014-08-21 14:16 - 01016261 _____ (Thisisu) C:\Users\Petra\Downloads\JRT.exe
2014-08-21 14:16 - 2014-08-21 14:16 - 00000000 ____D () C:\Windows\ERUNT
2014-08-21 14:05 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\Windows\system32\sqlite3.dll
2014-08-21 14:04 - 2014-08-21 14:06 - 00000000 ___DC () C:\AdwCleaner
2014-08-21 13:30 - 2014-08-21 13:30 - 01364531 _____ () C:\Users\Petra\Downloads\adwcleaner_3.308.exe
2014-08-21 11:05 - 2014-08-21 14:10 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-21 11:05 - 2014-08-21 11:05 - 00001071 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-08-21 11:05 - 2014-08-21 11:05 - 00000000 ___DC () C:\Program Files\ Malwarebytes Anti-Malware 
2014-08-21 11:05 - 2014-08-21 11:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-08-21 11:05 - 2014-08-21 11:05 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-21 11:05 - 2014-05-12 07:26 - 00051928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-08-21 11:05 - 2014-05-12 07:25 - 00074456 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-08-21 11:05 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-08-21 11:03 - 2014-08-21 11:04 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Petra\Downloads\mbam-setup-2.0.2.1012.exe
2014-08-21 10:23 - 2014-08-21 10:23 - 00001107 _____ () C:\Users\Public\Desktop\Foxit Reader.lnk
2014-08-21 10:23 - 2014-08-21 10:23 - 00000000 ___DC () C:\Program Files\Foxit Software
2014-08-21 10:23 - 2014-08-21 10:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2014-08-21 10:18 - 2014-08-21 10:18 - 16461048 _____ (Foxit Corporation ) C:\Users\Petra\Downloads\foxit-pdf-reader [1].exe
2014-08-21 10:17 - 2014-08-21 10:17 - 00752472 _____ ( ) C:\Users\Petra\Downloads\foxit-pdf-reader.exe
2014-08-20 15:37 - 2011-06-26 08:45 - 00256000 _____ () C:\Windows\PEV.exe
2014-08-20 15:37 - 2010-11-07 19:20 - 00208896 _____ () C:\Windows\MBR.exe
2014-08-20 15:37 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2014-08-20 15:37 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2014-08-20 15:37 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2014-08-20 15:37 - 2000-08-31 02:00 - 00098816 _____ () C:\Windows\sed.exe
2014-08-20 15:37 - 2000-08-31 02:00 - 00080412 _____ () C:\Windows\grep.exe
2014-08-20 15:37 - 2000-08-31 02:00 - 00068096 _____ () C:\Windows\zip.exe
2014-08-20 15:31 - 2014-08-24 08:46 - 00000000 ___DC () C:\Qoobox
2014-08-20 15:30 - 2014-08-20 16:01 - 00000000 ____D () C:\Windows\erdnt
2014-08-20 15:29 - 2014-08-24 08:30 - 05572212 ____R (Swearware) C:\Users\Petra\Downloads\uninstall.exe.exe
2014-08-20 14:12 - 2014-08-24 11:57 - 00001233 _____ () C:\Users\Petra\Desktop\Revo Uninstaller.lnk
2014-08-20 14:12 - 2014-08-24 11:57 - 00000000 ___DC () C:\Program Files\VS Revo Group
2014-08-20 08:18 - 2014-08-23 19:50 - 00000392 _____ () C:\Windows\setupact.log
2014-08-20 08:18 - 2014-08-23 19:06 - 00135286 _____ () C:\Windows\PFRO.log
2014-08-20 08:18 - 2014-08-20 08:18 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-19 16:35 - 2014-08-24 12:12 - 00013297 _____ () C:\Users\Petra\Downloads\FRST.txt
2014-08-19 16:34 - 2014-08-24 12:12 - 00000000 ___DC () C:\FRST
2014-08-19 16:33 - 2014-08-23 19:42 - 01095168 ____C (Farbar) C:\Users\Petra\Downloads\FRST.exe
2014-08-17 09:33 - 2014-08-19 16:13 - 00000000 ____D () C:\ProgramData\b089358267e0237d
2014-08-14 08:05 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll
2014-08-14 08:04 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll
2014-08-14 08:04 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe
2014-08-14 08:04 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe
2014-08-13 09:06 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-13 09:06 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-13 09:06 - 2014-07-24 20:07 - 12356608 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-08-13 09:06 - 2014-07-24 19:58 - 01810432 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-08-13 09:06 - 2014-07-24 19:52 - 01137664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-08-13 09:06 - 2014-07-24 19:51 - 01129472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-08-13 09:06 - 2014-07-24 19:49 - 00717824 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-08-13 09:06 - 2014-07-24 19:49 - 00421376 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-08-13 09:06 - 2014-07-24 19:48 - 00353792 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-08-13 09:06 - 2014-07-24 19:48 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-08-13 09:06 - 2014-07-24 19:48 - 00073216 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-08-13 09:06 - 2014-07-24 19:48 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\msfeedsbs.dll
2014-08-13 09:06 - 2014-07-24 19:48 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\mshta.exe
2014-08-13 09:06 - 2014-07-24 19:48 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msfeedssync.exe
2014-08-13 09:06 - 2014-07-24 19:47 - 00176640 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-08-13 09:06 - 2014-07-16 04:47 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2014-08-13 09:06 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-08-13 09:06 - 2014-07-16 03:47 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-08-13 09:06 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2014-08-13 09:06 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2014-08-13 09:06 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2014-08-13 09:06 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2014-08-13 09:06 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2014-08-13 09:06 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-08-13 09:06 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2014-08-13 09:06 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll
2014-08-13 09:05 - 2014-07-24 19:57 - 09739264 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-08-13 09:05 - 2014-07-24 19:51 - 01427968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-08-13 09:05 - 2014-07-24 19:50 - 00231936 _____ (Microsoft Corporation) C:\Windows\system32\url.dll
2014-08-13 09:05 - 2014-07-24 19:50 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-08-13 09:05 - 2014-07-24 19:49 - 01802240 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-08-13 09:05 - 2014-07-24 19:49 - 00607744 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-08-13 09:05 - 2014-07-24 19:49 - 00142848 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-08-13 09:05 - 2014-07-24 19:48 - 02382848 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-08-13 09:05 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL
2014-08-13 09:05 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL
2014-08-13 09:05 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL
2014-08-13 09:05 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL
2014-08-13 09:05 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL
2014-08-13 09:05 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls
2014-08-13 09:05 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-08-08 13:53 - 2014-08-08 13:54 - 29553288 _____ (DVDVideoSoft Ltd. ) C:\Users\Petra\Downloads\FreeYouTubeToMP3Converter(2).exe
2014-08-07 20:53 - 2014-08-07 20:53 - 00000964 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-07-31 10:04 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-07-31 10:04 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-07-31 10:04 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-07-31 10:04 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-07-31 10:04 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-07-31 10:04 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-07-31 10:04 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-07-31 10:04 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-07-31 10:04 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-07-30 14:49 - 2014-07-30 18:36 - 00000000 ____D () C:\Users\Petra\Downloads\GSpot270a
2014-07-30 14:36 - 2014-07-30 14:36 - 00000000 ____D () C:\Users\Petra\Documents\GSpot270a
2014-07-30 14:35 - 2014-07-30 14:35 - 00411509 _____ () C:\Users\Petra\Downloads\GSpot270a.zip
2014-07-27 20:40 - 2014-07-27 20:40 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-27 20:35 - 2014-07-27 20:35 - 00001656 _____ () C:\Users\Public\Desktop\Free AVI Video Converter.lnk

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-08-24 12:13 - 2014-08-19 16:35 - 00013297 _____ () C:\Users\Petra\Downloads\FRST.txt
2014-08-24 12:12 - 2014-08-19 16:34 - 00000000 ___DC () C:\FRST
2014-08-24 12:10 - 2013-12-24 15:53 - 25666560 _____ () C:\Users\Petra\Outlook.pst
2014-08-24 12:10 - 2013-03-29 16:33 - 00000000 ____D () C:\Users\Petra
2014-08-24 12:08 - 2014-08-24 12:08 - 00001128 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-08-24 12:08 - 2014-08-24 12:08 - 00001116 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk
2014-08-24 12:08 - 2014-08-24 12:08 - 00000000 ___DC () C:\Program Files\Mozilla Maintenance Service
2014-08-24 12:08 - 2014-08-24 12:08 - 00000000 ___DC () C:\Program Files\Mozilla Firefox
2014-08-24 12:07 - 2014-08-24 12:07 - 00244408 _____ () C:\Users\Petra\Downloads\Firefox Setup Stub 31.0 (1).exe
2014-08-24 12:06 - 2014-08-24 12:06 - 00244408 _____ () C:\Users\Petra\Downloads\Firefox Setup Stub 31.0.exe
2014-08-24 11:57 - 2014-08-24 11:57 - 02623656 _____ (VS Revo Group Ltd.) C:\Users\Petra\Downloads\revosetup95.exe
2014-08-24 11:57 - 2014-08-20 14:12 - 00001233 _____ () C:\Users\Petra\Desktop\Revo Uninstaller.lnk
2014-08-24 11:57 - 2014-08-20 14:12 - 00000000 ___DC () C:\Program Files\VS Revo Group
2014-08-24 11:17 - 2013-11-06 20:51 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-08-24 11:17 - 2013-05-31 07:17 - 00001096 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-24 11:17 - 2013-05-31 07:17 - 00001092 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-24 09:06 - 2013-03-29 16:22 - 01509001 _____ () C:\Windows\WindowsUpdate.log
2014-08-24 08:46 - 2014-08-20 15:31 - 00000000 ___DC () C:\Qoobox
2014-08-24 08:45 - 2014-08-24 08:45 - 00014426 ____C () C:\ComboFix.txt
2014-08-24 08:42 - 2009-07-14 04:04 - 00000215 ____C () C:\Windows\system.ini
2014-08-24 08:30 - 2014-08-20 15:29 - 05572212 ____R (Swearware) C:\Users\Petra\Downloads\uninstall.exe.exe
2014-08-23 20:01 - 2014-08-23 19:59 - 00000000 ____D () C:\Windows\system32\MRT
2014-08-23 19:59 - 2009-07-14 06:34 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-08-23 19:59 - 2009-07-14 06:34 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-08-23 19:51 - 2013-06-24 10:30 - 00000000 ___RD () C:\Users\Petra\Dropbox
2014-08-23 19:51 - 2013-06-24 10:27 - 00000000 ____D () C:\Users\Petra\AppData\Roaming\Dropbox
2014-08-23 19:50 - 2014-08-20 08:18 - 00000392 _____ () C:\Windows\setupact.log
2014-08-23 19:50 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-08-23 19:47 - 2014-08-23 19:47 - 00448512 _____ (OldTimer Tools) C:\Users\Petra\Downloads\TFC.exe
2014-08-23 19:43 - 2013-11-26 19:36 - 00000000 ____D () C:\Users\Petra\AppData\Local\CrashDumps
2014-08-23 19:42 - 2014-08-22 22:28 - 00000000 ____D () C:\Users\Petra\Downloads\FRST-OlderVersion
2014-08-23 19:42 - 2014-08-19 16:33 - 01095168 ____C (Farbar) C:\Users\Petra\Downloads\FRST.exe
2014-08-23 19:07 - 2009-07-14 06:33 - 00409176 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-08-23 19:06 - 2014-08-20 08:18 - 00135286 _____ () C:\Windows\PFRO.log
2014-08-22 22:25 - 2014-08-22 22:25 - 00854417 _____ () C:\Users\Petra\Downloads\SecurityCheck.exe
2014-08-22 19:25 - 2014-08-22 19:25 - 02347384 _____ (ESET) C:\Users\Petra\Downloads\esetsmartinstaller_deu.exe
2014-08-21 16:44 - 2010-11-20 23:01 - 01648454 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-08-21 14:16 - 2014-08-21 14:16 - 01016261 _____ (Thisisu) C:\Users\Petra\Downloads\JRT.exe
2014-08-21 14:16 - 2014-08-21 14:16 - 00000000 ____D () C:\Windows\ERUNT
2014-08-21 14:10 - 2014-08-21 11:05 - 00110296 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-08-21 14:06 - 2014-08-21 14:04 - 00000000 ___DC () C:\AdwCleaner
2014-08-21 14:01 - 2012-08-23 09:22 - 00000000 ____D () C:\Windows\de
2014-08-21 13:30 - 2014-08-21 13:30 - 01364531 _____ () C:\Users\Petra\Downloads\adwcleaner_3.308.exe
2014-08-21 11:23 - 2012-08-23 18:00 - 00000000 ____D () C:\Windows\OEM
2014-08-21 11:05 - 2014-08-21 11:05 - 00001071 _____ () C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2014-08-21 11:05 - 2014-08-21 11:05 - 00000000 ___DC () C:\Program Files\ Malwarebytes Anti-Malware 
2014-08-21 11:05 - 2014-08-21 11:05 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2014-08-21 11:05 - 2014-08-21 11:05 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-08-21 11:04 - 2014-08-21 11:03 - 17292760 _____ (Malwarebytes Corporation ) C:\Users\Petra\Downloads\mbam-setup-2.0.2.1012.exe
2014-08-21 10:23 - 2014-08-21 10:23 - 00001107 _____ () C:\Users\Public\Desktop\Foxit Reader.lnk
2014-08-21 10:23 - 2014-08-21 10:23 - 00000000 ___DC () C:\Program Files\Foxit Software
2014-08-21 10:23 - 2014-08-21 10:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit Reader
2014-08-21 10:18 - 2014-08-21 10:18 - 16461048 _____ (Foxit Corporation ) C:\Users\Petra\Downloads\foxit-pdf-reader [1].exe
2014-08-21 10:17 - 2014-08-21 10:17 - 00752472 _____ ( ) C:\Users\Petra\Downloads\foxit-pdf-reader.exe
2014-08-20 16:03 - 2009-07-14 04:37 - 00000000 __RHD () C:\Users\Default
2014-08-20 16:03 - 2009-07-14 04:37 - 00000000 ___RD () C:\Users\Public
2014-08-20 16:01 - 2014-08-20 15:30 - 00000000 ____D () C:\Windows\erdnt
2014-08-20 15:49 - 2009-07-14 04:03 - 51642368 _____ () C:\Windows\system32\config\SOFTWARE.bak
2014-08-20 15:49 - 2009-07-14 04:03 - 16515072 _____ () C:\Windows\system32\config\SYSTEM.bak
2014-08-20 15:49 - 2009-07-14 04:03 - 00524288 _____ () C:\Windows\system32\config\DEFAULT.bak
2014-08-20 15:49 - 2009-07-14 04:03 - 00262144 _____ () C:\Windows\system32\config\SECURITY.bak
2014-08-20 15:49 - 2009-07-14 04:03 - 00262144 _____ () C:\Windows\system32\config\SAM.bak
2014-08-20 08:18 - 2014-08-20 08:18 - 00000000 _____ () C:\Windows\setuperr.log
2014-08-19 16:28 - 2014-01-22 15:18 - 00000000 ____D () C:\Users\Petra\AppData\Roaming\inkscape
2014-08-19 16:15 - 2012-08-23 18:01 - 00000000 ____D () C:\Windows\Panther
2014-08-19 16:13 - 2014-08-17 09:33 - 00000000 ____D () C:\ProgramData\b089358267e0237d
2014-08-19 16:12 - 2013-04-27 19:26 - 00000000 ____D () C:\ProgramData\Adobe
2014-08-19 16:07 - 2013-06-24 10:27 - 00000000 ____D () C:\Users\Petra\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-08-15 08:43 - 2013-05-31 07:22 - 00002128 _____ () C:\Users\Public\Desktop\Google Chrome.lnk
2014-08-14 21:09 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache
2014-08-14 08:53 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET
2014-08-14 08:26 - 2014-05-07 09:17 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-08-14 08:26 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE
2014-08-14 08:10 - 2013-04-07 15:35 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-08-08 13:59 - 2014-05-05 20:11 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-08-08 13:58 - 2013-05-20 21:00 - 00000000 ____D () C:\Users\Petra\AppData\Roaming\DVDVideoSoft
2014-08-08 13:57 - 2013-05-20 21:01 - 00002283 _____ () C:\Users\Public\Desktop\Free YouTube to MP3 Converter.lnk
2014-08-08 13:57 - 2013-05-20 21:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2014-08-08 13:57 - 2013-05-20 21:00 - 00000000 ____D () C:\Program Files\DVDVideoSoft
2014-08-08 13:57 - 2013-05-20 21:00 - 00000000 ____D () C:\Program Files\Common Files\DVDVideoSoft
2014-08-08 13:54 - 2014-08-08 13:53 - 29553288 _____ (DVDVideoSoft Ltd. ) C:\Users\Petra\Downloads\FreeYouTubeToMP3Converter(2).exe
2014-08-07 20:53 - 2014-08-07 20:53 - 00000964 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk
2014-08-07 20:53 - 2014-01-09 16:01 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2014-08-07 03:43 - 2014-08-13 09:06 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-08-07 03:39 - 2014-08-13 09:06 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-08-04 15:49 - 2013-11-24 13:28 - 00000000 ____D () C:\Users\Petra\AppData\Roaming\HpUpdate
2014-07-31 23:42 - 2012-08-23 10:03 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-07-30 18:36 - 2014-07-30 14:49 - 00000000 ____D () C:\Users\Petra\Downloads\GSpot270a
2014-07-30 14:36 - 2014-07-30 14:36 - 00000000 ____D () C:\Users\Petra\Documents\GSpot270a
2014-07-30 14:35 - 2014-07-30 14:35 - 00411509 _____ () C:\Users\Petra\Downloads\GSpot270a.zip
2014-07-27 20:40 - 2014-07-27 20:40 - 00000000 ____D () C:\ProgramData\TEMP
2014-07-27 20:35 - 2014-07-27 20:35 - 00001656 _____ () C:\Users\Public\Desktop\Free AVI Video Converter.lnk
2014-07-27 20:35 - 2013-05-20 21:01 - 00001208 _____ () C:\Users\Public\Desktop\DVDVideoSoft Free Studio.lnk
2014-07-27 20:15 - 2014-04-20 20:58 - 00000578 _____ () C:\Users\Petra\Desktop\DVDStyler.lnk
2014-07-26 08:11 - 2012-08-23 08:14 - 00000000 ____D () C:\Program Files\Microsoft Silverlight
2014-07-25 09:09 - 2012-08-23 08:14 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2014-08-17 09:56

==================== End Of Log ============================
         
--- --- ---
__________________


Alt 24.08.2014, 12:39   #18
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7 - Werbefenster öffnen sich überall - Standard

Windows 7 - Werbefenster öffnen sich überall



immer noch?
__________________
__________________

Alt 24.08.2014, 13:04   #19
Petant1205
 
Windows 7 - Werbefenster öffnen sich überall - Standard

Windows 7 - Werbefenster öffnen sich überall



ich glaub jetzt ist gut - das mit dem deinstallieren von Combofix hat also nicht so geklappt?

Alt 24.08.2014, 15:19   #20
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7 - Werbefenster öffnen sich überall - Standard

Windows 7 - Werbefenster öffnen sich überall



Nee hat nit geklappt. Lösch die Datei:
c:\users\Petra\Downloads\uninstall.exe.exe

Und lade Combofix neu, auf den Desktop!!, dann wie oben beschrieben deinstallieren.

__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 24.08.2014, 19:16   #21
Petant1205
 
Windows 7 - Werbefenster öffnen sich überall - Standard

Windows 7 - Werbefenster öffnen sich überall



So jetzt aber - "Combofix wurde erfolgreich deinstalliert" wurde angezeigt - das check ja sogar ich Computernulli! VIELEN LIEBEN DANK für die Rettung !!!! Ihr seid spitze !!!

Alt 25.08.2014, 12:14   #22
schrauber
/// the machine
/// TB-Ausbilder
 

Windows 7 - Werbefenster öffnen sich überall - Standard

Windows 7 - Werbefenster öffnen sich überall



Gern Geschehen
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Antwort

Themen zu Windows 7 - Werbefenster öffnen sich überall
converter, dvdvideosoft ltd., flash player, montiera, newtab, officejet, pup.optional.buenosearch, pup.optional.clearthink.a, pup.optional.mysearchdial.a, sierra, werbefenster, win32/clientconnect.a, win32/conduit.searchprotect.h, win32/conduit.searchprotect.i, win32/dealply.m, win32/dealply.s, win32/installcore.ox, win32/installcore.pc, win32/nextlive.a, win32/savesense.a, win32/somoto.d, win32/sprotector.d, win32/toolbar.babylon.c, win32/toolbar.babylon.g, win32/toolbar.babylon.i, win32/toolbar.babylon.m, win32/toolbar.babylon.p, win32/toolbar.escort.a, win32/toolbar.montiera.a, win32/toolbar.montiera.b



Ähnliche Themen: Windows 7 - Werbefenster öffnen sich überall


  1. Textdokumente lassen sich NICHT öffnen - Fehler: HELP_DECRYPT.txt/.html/.PNG scheint überall auf
    Log-Analyse und Auswertung - 09.11.2015 (2)
  2. Steam (Windows 10) Werbefenster öffnen sich ständig
    Plagegeister aller Art und deren Bekämpfung - 16.09.2015 (15)
  3. Windows 8, Google Chrome, Werbefenster öffnen sich alleine
    Log-Analyse und Auswertung - 13.04.2015 (11)
  4. Windows 7, in Chrome öffnen sich viele Werbefenster, lange Ladezeiten, PC läuft generell langsam
    Log-Analyse und Auswertung - 14.03.2015 (7)
  5. Windows 8 : Pop-Ups, Werbefenster öffnen sich einfach, >>>Zombie News<<< geht nicht weg.
    Log-Analyse und Auswertung - 18.01.2015 (6)
  6. Windows 7 Werbefenster öffnen sich überall
    Log-Analyse und Auswertung - 16.01.2015 (1)
  7. Windows 8.1- Firefox: Unerwünschte Werbefenster, gefakte Java-Update-Meldungen und unerwünschte neue Tabs, die sich öffnen
    Log-Analyse und Auswertung - 12.09.2014 (15)
  8. Windows 8 internet explorer.ständig werbefenster, Tabs,downloads,browsergames die sich automatisch öffnen oder angezeigt werden
    Plagegeister aller Art und deren Bekämpfung - 01.08.2014 (4)
  9. Windows 7: Werbung überall und Tabs öffnen sich von selbst
    Log-Analyse und Auswertung - 25.07.2014 (9)
  10. Windows 7:werbefenster öffnen sich
    Log-Analyse und Auswertung - 15.04.2014 (11)
  11. Windows 7: Werbefenster in Firefox öffnen sich ohne Grund+Malewarebefund durch Avast
    Log-Analyse und Auswertung - 27.02.2014 (5)
  12. Überall öffnen sich Werbungsfenster und avira meldet mir zwischendurch Virenfunde. Was kann ich tun?
    Log-Analyse und Auswertung - 11.12.2013 (3)
  13. Überall Werbung und ständig öffnen sich neue Registrierkarten
    Plagegeister aller Art und deren Bekämpfung - 28.06.2013 (18)
  14. Werbefenster öffnen sich bei Firefox
    Log-Analyse und Auswertung - 02.04.2009 (6)
  15. Werbefenster öffnen sich
    Log-Analyse und Auswertung - 10.03.2008 (7)
  16. Werbefenster öffnen sich
    Log-Analyse und Auswertung - 07.03.2007 (1)
  17. Werbefenster öffnen sich
    Log-Analyse und Auswertung - 31.12.2006 (2)

Zum Thema Windows 7 - Werbefenster öffnen sich überall - Nee das ist ein neuer Lauf von Combofix. Warte mal mit deinstallieren. Revo Uninstaller - Download - Filepony damit Firefox deinstallieren, keine Daten behalten, Reste entfernen lassen, neu installieren. Dann: - Windows 7 - Werbefenster öffnen sich überall...
Archiv
Du betrachtest: Windows 7 - Werbefenster öffnen sich überall auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.