|
Kein INternet trotz Wlanverbindung Guten Tag, ich habe seit längerer Zeit das Problem dass mein PC keine Verbindung zum Internet aufbaut, obwohl mir angezeigt wird er hätte Verbindung zum Wlan. Aber ich kann ohne Probleme Spotify hören, obwohl ich nicht die Pro-Version hab?! Ich hab schon alles probiert und am Wlan bzw. Router liegt es nicht, da ich mit allen anderen Geräten Problemlos Surfen kann. Ich hoffe auf Hilfe und danke ich vorraus :) Gruß Nick |
hi, Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
Downloade dir bitte Farbar's MiniToolBox auf deinen Desktop und starte das Tool Setze einen Haken bei folgenden Einträgen
|
was meinst du mit frst.exe? Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: Downloading Farbar Recovery Scan Tool Download link for 64-Bit Version: Downloading Farbar Recovery Scan Tool Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: FRST Tutorial - How to use Farbar Recovery Scan Tool - Malware Removal Guides and Tutorials ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe (Fuyu LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe (Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe (AVM Berlin) C:\Program Files\avmwlanstick\WLanNetService.exe (Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe () C:\Windows\System32\srvany.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\MDM.EXE () C:\Windows\KMService.exe (PriceMeter) C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Acronis) C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe (Acronis) C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Nuance Communications, Inc.) C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe (AVM Berlin) C:\Program Files\avmwlanstick\WLanGUI.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Spotify Ltd) C:\Users\Nick\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd) C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (PriceMeter) C:\Users\Nick\AppData\Local\PriceMeter\pricemeterw.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe () C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe () C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe () C:\Program Files\NetTock\bin\utilNetTock.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe () C:\Program Files\NetTock\bin\NetTock.PurBrowse.exe () C:\Program Files\NetTock\bin\NetTock.BRT.Helper.exe (Farbar) C:\Users\Nick\Downloads\FRST (1).exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe () C:\Program Files\NetTock\updateNetTock.exe () C:\Program Files\NetTock\bin\NetTock.BrowserAdapter.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11930696 2013-03-29] (Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-31] (AVAST Software) HKLM\...\Run: [SAOB Monitor] => C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe [2571032 2011-09-22] (Acronis) HKLM\...\Run: [TrueImageMonitor.exe] => C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [5587832 2011-09-22] (Acronis) HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [395344 2011-09-22] (Acronis) HKLM\...\Run: [SSBkgdUpdate] => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.) HKLM\...\Run: [PaperPort PTD] => C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [29984 2008-07-09] (Nuance Communications, Inc.) HKLM\...\Run: [IndexSearch] => C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [46368 2008-07-09] (Nuance Communications, Inc.) HKLM\...\Run: [PPort11reminder] => C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [328992 2007-08-31] (Nuance Communications, Inc.) HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [2621440 2010-02-09] (Brother Industries, Ltd.) HKLM\...\Run: [AVMWlanClient] => C:\Program Files\avmwlanstick\wlangui.exe [1753088 2008-02-25] (AVM Berlin) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-06-03] (Google Inc.) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [EADM] => C:\Program Files\Origin\Origin.exe [3600216 2014-08-31] (Electronic Arts) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [Spotify] => C:\Users\Nick\AppData\Roaming\Spotify\Spotify.exe [6621752 2014-08-31] (Spotify Ltd) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [Spotify Web Helper] => C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1245752 2014-08-31] (Spotify Ltd) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [PriceMeterW] => C:\Users\Nick\AppData\Local\PriceMeter\pricemeterw.exe [309768 2014-03-13] (PriceMeter) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\MountPoints2: {1b32f356-1e31-11e4-835a-001c4afc2dff} - H:\SETUP.EXE HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\MountPoints2: {251bd6b4-eb05-11e3-bfde-0019dbc807de} - H:\pushinst.exe HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\MountPoints2: {269de4a4-1ef5-11e4-83f9-001c4afc2dff} - I:\pushinst.exe AppInit_DLLs: C:\PROGRA~1\SupTab\SEARCH~1.DLL => C:\Program Files\SupTab\SearchProtect32.dll [94088 2014-07-15] (Skytech Co., Ltd.) ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = OMIGA PLUS HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = OMIGA PLUS HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = OMIGA PLUS HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = OMIGA PLUS HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962&q={searchTerms} StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe OMIGA PLUS SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962&q={searchTerms} SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962&q={searchTerms} SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962&q={searchTerms} BHO: PopcornTV -> {1B4D240E-8BDE-4C8D-8B93-C74D2F8A8284} -> C:\Program Files\PopcornTV\popcorn_ie.dll (Applon) BHO: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\thlib8r2.default FF DefaultSearchEngine: Yahoo! (Avast) FF SearchEngineOrder.1: Yahoo! (Avast) FF SelectedSearchEngine: Yahoo! (Avast) FF Homepage: https://de.yahoo.com?fr=hp-avast&type=avastbcl FF Keyword.URL: https://de.search.yahoo.com/yhs/search FF Plugin: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.updatepm.com/PriceMeterLiveUpdate Update;version=3 -> C:\Program Files\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter) FF Plugin: @tools.updatepm.com/PriceMeterLiveUpdate Update;version=9 -> C:\Program Files\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter) FF SearchPlugin: C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\thlib8r2.default\searchplugins\yahoo-avast.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\omiga-plus.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-03] FF HKLM\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\thlib8r2.default\extensions\faststartff@gmail.com FF Extension: No Name - C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\thlib8r2.default\extensions\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}.xpi [] Chrome: ======= CHR HomePage: Default -> https://www.google.de/ CHR StartupUrls: Default -> "hxxp://google.de/" CHR CustomProfile: C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Chromoji - Emoji for Google Chrome™) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cahedbegdkagmcjfolhdlechbkeaieki [2014-07-15] CHR Extension: (Adblock Plus) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-07-15] CHR Extension: (avast! SafePrice) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-08-04] CHR Extension: (avast! Online Security) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-06-04] CHR Extension: (Google Wallet) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-03] CHR Extension: (Battlefield Play4Free) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2014-07-30] CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-08-04] CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-16] CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [805032 2011-09-22] (Acronis) R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3246040 2014-06-04] (Acronis) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-16] (AVAST Software) R2 AVM WLAN Connection Service; C:\Program Files\avmwlanstick\WlanNetService.exe [364544 2008-02-25] (AVM Berlin) [File not signed] R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed] R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation) R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [759688 2014-07-15] (Cherished Technololgy LIMITED) R2 KMService; C:\Windows\system32\srvany.exe [8192 2003-04-18] () [File not signed] S2 pricemeterliveUpdate; C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [150504 2014-08-07] (PriceMeter) S3 pricemeterliveUpdatem; C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [150504 2014-08-07] (PriceMeter) R2 Update NetTock; C:\Program Files\NetTock\updateNetTock.exe [323352 2014-09-06] () R2 Util NetTock; C:\Program Files\NetTock\bin\utilNetTock.exe [323352 2014-09-06] () R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [535936 2014-07-15] (Fuyu LIMITED) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-07-16] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-07-16] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-07-16] (AVAST Software) R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-07-16] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-07-16] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-07-16] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-07-16] (AVAST Software) S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [38984 2014-07-16] (The OpenVPN Project) R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-07-16] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-08-07] (Disc Soft Ltd) R3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [401920 2007-12-19] (AVM GmbH) R3 xusb21; C:\Windows\System32\DRIVERS\xusb21.sys [55808 2007-08-28] (Microsoft Corporation) [File not signed] R1 {0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw; C:\Windows\System32\drivers\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw.sys [52920 2014-07-08] (StdLib) R1 {0bd9bacb-0a2d-4412-900e-b2473afd87b4}w; C:\Windows\System32\drivers\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}w.sys [52920 2014-07-03] (StdLib) U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-06 13:46 - 2014-09-06 13:47 - 01096704 _____ (Farbar) C:\Users\Nick\Downloads\FRST (1).exe 2014-09-02 19:20 - 2014-09-02 19:21 - 00022977 _____ () C:\Users\Nick\Downloads\Addition.txt 2014-09-02 19:19 - 2014-09-06 13:48 - 00019901 _____ () C:\Users\Nick\Downloads\FRST.txt 2014-09-02 19:19 - 2014-09-06 13:48 - 00000000 ____D () C:\FRST 2014-09-02 19:18 - 2014-09-02 19:18 - 01096704 _____ (Farbar) C:\Users\Nick\Downloads\FRST.exe 2014-09-02 19:15 - 2014-09-02 19:16 - 07485596 _____ () C:\Users\Nick\Downloads\Infigo_setup.exe 2014-09-02 10:59 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-09-02 10:59 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-31 16:11 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-08-31 16:11 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-08-31 16:11 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-08-31 16:11 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2014-08-31 16:11 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-08-31 16:11 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-08-31 16:11 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-08-31 16:11 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-08-31 16:11 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-08-20 15:58 - 2014-08-20 15:58 - 00000000 ____D () C:\Users\Nick\Downloads\Sky Park v1.4 2014-08-19 10:42 - 2014-08-19 10:42 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\BRT 2014-08-17 20:18 - 2014-07-03 16:16 - 00052920 _____ (StdLib) C:\Windows\system32\Drivers\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}w.sys 2014-08-13 20:51 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2014-08-13 20:51 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-13 20:51 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2014-08-13 20:51 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2014-08-13 19:53 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-13 19:53 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-13 19:52 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-08-13 19:52 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-13 19:52 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2014-08-13 19:52 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2014-08-13 19:51 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-08-13 19:51 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-13 19:51 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-13 19:51 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-13 19:51 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-08-13 19:50 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL 2014-08-13 19:50 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL 2014-08-13 19:50 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL 2014-08-13 19:50 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL 2014-08-13 19:50 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL 2014-08-13 19:50 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls 2014-08-13 19:50 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-08-11 13:16 - 2014-08-11 13:16 - 00000000 ____D () C:\Users\Robin\AppData\Roaming\Mozilla 2014-08-11 13:16 - 2014-08-11 13:16 - 00000000 ____D () C:\Users\Robin\AppData\Local\Mozilla 2014-08-09 23:29 - 2014-08-09 23:33 - 04118664 _____ () C:\Users\Nick\Downloads\Star Wars 1.7.zip 2014-08-08 15:24 - 2010-04-10 09:03 - 00077824 _____ () C:\Windows\KMService.exe 2014-08-08 15:24 - 2003-04-18 19:06 - 00008192 _____ () C:\Windows\system32\srvany.exe 2014-08-08 14:22 - 2014-09-05 12:55 - 00000093 _____ () C:\Users\Nick\AppData\Roaming\WB.CFG 2014-08-07 16:35 - 2014-08-07 16:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-07 16:35 - 2014-08-07 16:35 - 00003047 _____ () C:\Users\Nick\Desktop\Microsoft Excel 2010.lnk 2014-08-07 16:35 - 2014-08-07 16:35 - 00003029 _____ () C:\Users\Nick\Desktop\Microsoft Word 2010.lnk 2014-08-07 16:35 - 2014-08-07 16:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Windows\PCHEALTH 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-08-07 16:29 - 2014-08-07 16:29 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 8 2014-08-07 16:28 - 2014-08-07 16:41 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-08-07 16:28 - 2014-08-07 16:28 - 00000000 ____D () C:\Users\Nick\AppData\Local\Microsoft Help 2014-08-07 16:28 - 2014-08-07 16:28 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services 2014-08-07 16:27 - 2014-08-07 16:27 - 00000000 __RHD () C:\MSOCache 2014-08-07 16:24 - 2014-08-07 16:24 - 00001860 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2014-08-07 16:23 - 2014-08-07 16:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2014-08-07 16:22 - 2014-09-06 13:42 - 00000946 _____ () C:\Windows\Tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job 2014-08-07 16:22 - 2014-09-05 14:27 - 00000950 _____ () C:\Windows\Tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job 2014-08-07 16:22 - 2014-09-05 14:22 - 00000288 _____ () C:\Windows\Tasks\PriceMeterUpdater.job 2014-08-07 16:22 - 2014-08-07 16:28 - 00000000 ____D () C:\Users\Nick\AppData\Local\PriceMeter 2014-08-07 16:22 - 2014-08-07 16:26 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\DAEMON Tools Lite 2014-08-07 16:22 - 2014-08-07 16:22 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\PriceMeterUpdater 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\OpenCandy 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Local\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\ProgramData\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Program Files\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite 2014-08-07 16:21 - 2014-08-07 16:26 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite 2014-08-07 16:13 - 2014-08-07 16:14 - 13429504 _____ (Disc Soft Ltd) C:\Users\Nick\Downloads\DTLite4491-0356.exe 2014-08-07 14:52 - 2014-08-07 14:52 - 00488141 _____ () C:\Users\Nick\Downloads\nw_25775_extensioncrx.crx 2014-08-07 14:50 - 2014-08-07 14:50 - 00000000 ____D () C:\Program Files\Common Files\Skype ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-06 13:49 - 2014-09-02 19:19 - 00019901 _____ () C:\Users\Nick\Downloads\FRST.txt 2014-09-06 13:48 - 2014-09-02 19:19 - 00000000 ____D () C:\FRST 2014-09-06 13:48 - 2014-06-06 21:51 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\Spotify 2014-09-06 13:47 - 2014-09-06 13:46 - 01096704 _____ (Farbar) C:\Users\Nick\Downloads\FRST (1).exe 2014-09-06 13:47 - 2009-07-14 04:04 - 00000680 _____ () C:\Windows\win.ini 2014-09-06 13:45 - 2014-06-04 19:07 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\Skype 2014-09-06 13:45 - 2014-06-04 18:48 - 00000000 ____D () C:\ProgramData\Origin 2014-09-06 13:43 - 2014-06-03 13:10 - 00001090 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-09-06 13:42 - 2014-08-07 16:22 - 00000946 _____ () C:\Windows\Tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job 2014-09-06 13:42 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-09-06 13:42 - 2009-07-14 06:39 - 00037272 _____ () C:\Windows\setupact.log 2014-09-05 14:38 - 2007-01-07 11:33 - 01366014 _____ () C:\Windows\WindowsUpdate.log 2014-09-05 14:27 - 2014-08-07 16:22 - 00000950 _____ () C:\Windows\Tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job 2014-09-05 14:27 - 2014-06-03 13:10 - 00001094 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-09-05 14:22 - 2014-08-07 16:22 - 00000288 _____ () C:\Windows\Tasks\PriceMeterUpdater.job 2014-09-05 12:55 - 2014-08-08 14:22 - 00000093 _____ () C:\Users\Nick\AppData\Roaming\WB.CFG 2014-09-05 10:59 - 2009-07-14 06:34 - 00032128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-09-05 10:59 - 2009-07-14 06:34 - 00032128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-09-05 10:53 - 2014-06-04 18:47 - 00000000 ____D () C:\Program Files\Origin 2014-09-02 19:21 - 2014-09-02 19:20 - 00022977 _____ () C:\Users\Nick\Downloads\Addition.txt 2014-09-02 19:18 - 2014-09-02 19:18 - 01096704 _____ (Farbar) C:\Users\Nick\Downloads\FRST.exe 2014-09-02 19:16 - 2014-09-02 19:15 - 07485596 _____ () C:\Users\Nick\Downloads\Infigo_setup.exe 2014-09-02 18:53 - 2009-07-14 06:33 - 00425648 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-09-02 12:15 - 2014-06-06 14:29 - 00001107 _____ () C:\Users\Public\Desktop\EA Sports FIFA World.lnk 2014-09-02 10:48 - 2014-06-06 22:31 - 00000000 ____D () C:\Users\Nick\AppData\Local\Spotify 2014-08-31 20:13 - 2014-06-07 15:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\.minecraft 2014-08-31 17:32 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache 2014-08-31 16:54 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE 2014-08-31 16:52 - 2014-06-04 18:52 - 00000000 ____D () C:\Program Files\Steam 2014-08-25 06:53 - 2014-06-06 14:12 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-08-23 03:46 - 2014-09-02 10:59 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-23 02:42 - 2014-09-02 10:59 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-21 19:43 - 2010-11-20 23:01 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-08-20 15:58 - 2014-08-20 15:58 - 00000000 ____D () C:\Users\Nick\Downloads\Sky Park v1.4 2014-08-20 10:16 - 2014-06-04 18:52 - 00000000 ____D () C:\Program Files\Common Files\Steam 2014-08-19 20:36 - 2014-06-03 16:45 - 00002275 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-08-19 10:42 - 2014-08-19 10:42 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\BRT 2014-08-17 20:46 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-08-17 20:18 - 2014-07-15 16:24 - 00000000 ____D () C:\Program Files\NetTock 2014-08-17 20:09 - 2014-06-03 19:34 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-08-13 20:56 - 2014-06-03 18:37 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-13 20:53 - 2014-06-03 18:37 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-08-13 19:42 - 2014-06-04 19:07 - 00000000 ___RD () C:\Program Files\Skype 2014-08-11 13:16 - 2014-08-11 13:16 - 00000000 ____D () C:\Users\Robin\AppData\Roaming\Mozilla 2014-08-11 13:16 - 2014-08-11 13:16 - 00000000 ____D () C:\Users\Robin\AppData\Local\Mozilla 2014-08-09 23:33 - 2014-08-09 23:29 - 04118664 _____ () C:\Users\Nick\Downloads\Star Wars 1.7.zip 2014-08-08 15:19 - 2014-06-03 11:56 - 00011621 _____ () C:\Windows\avmfwlanci.log 2014-08-08 14:32 - 2014-06-03 13:08 - 00114656 _____ () C:\Users\Nick\AppData\Local\GDIPFONTCACHEV1.DAT 2014-08-07 16:46 - 2014-08-07 16:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-07 16:43 - 2010-11-20 23:48 - 00015346 _____ () C:\Windows\PFRO.log 2014-08-07 16:41 - 2014-08-07 16:28 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-08-07 16:41 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-08-07 16:40 - 2010-11-21 02:46 - 00000000 ____D () C:\Windows\ShellNew 2014-08-07 16:40 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System 2014-08-07 16:35 - 2014-08-07 16:35 - 00003047 _____ () C:\Users\Nick\Desktop\Microsoft Excel 2010.lnk 2014-08-07 16:35 - 2014-08-07 16:35 - 00003029 _____ () C:\Users\Nick\Desktop\Microsoft Word 2010.lnk 2014-08-07 16:35 - 2014-08-07 16:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-07 16:34 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\MSBuild 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Windows\PCHEALTH 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-08-07 16:33 - 2014-07-06 12:10 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-08-07 16:33 - 2014-06-03 19:23 - 00000000 ____D () C:\Program Files\Microsoft.NET 2014-08-07 16:31 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Help 2014-08-07 16:29 - 2014-08-07 16:29 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 8 2014-08-07 16:28 - 2014-08-07 16:28 - 00000000 ____D () C:\Users\Nick\AppData\Local\Microsoft Help 2014-08-07 16:28 - 2014-08-07 16:28 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services 2014-08-07 16:28 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Local\PriceMeter 2014-08-07 16:27 - 2014-08-07 16:27 - 00000000 __RHD () C:\MSOCache 2014-08-07 16:26 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\DAEMON Tools Lite 2014-08-07 16:26 - 2014-08-07 16:21 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite 2014-08-07 16:24 - 2014-08-07 16:24 - 00001860 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2014-08-07 16:24 - 2014-08-07 16:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2014-08-07 16:22 - 2014-08-07 16:22 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\PriceMeterUpdater 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\OpenCandy 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Local\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\ProgramData\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Program Files\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite 2014-08-07 16:14 - 2014-08-07 16:13 - 13429504 _____ (Disc Soft Ltd) C:\Users\Nick\Downloads\DTLite4491-0356.exe 2014-08-07 14:52 - 2014-08-07 14:52 - 00488141 _____ () C:\Users\Nick\Downloads\nw_25775_extensioncrx.crx 2014-08-07 14:50 - 2014-08-07 14:50 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-08-07 14:50 - 2014-06-04 19:07 - 00000000 ____D () C:\ProgramData\Skype 2014-08-07 14:48 - 2009-07-14 06:53 - 00032634 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-08-07 03:43 - 2014-08-13 19:53 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-07 03:39 - 2014-08-13 19:53 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll Some content of TEMP: ==================== C:\Users\Nick\AppData\Local\Temp\app.exe C:\Users\Nick\AppData\Local\Temp\fp_pl_pfs_installer.exe C:\Users\Nick\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe C:\Users\Nick\AppData\Local\Temp\ose00000.exe C:\Users\Nick\AppData\Local\Temp\Uni000.exe C:\Users\Nick\AppData\Local\Temp\_is7BA4.exe C:\Users\Nick\AppData\Local\Temp\{2692AEED-B21B-457D-9765-C9D5E1D00452}-36.0.1985.143_36.0.1985.125_chrome_updater.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-08-31 17:24 ==================== End Of Log ============================ das kommt nach dem scannen in meinem Editor Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) OS Language: Deutsch (Deutschland) Internet Explorer Version 11 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: hxxp://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AMD) C:\Windows\System32\atiesrxx.exe (AMD) C:\Windows\System32\atieclxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Cherished Technololgy LIMITED) C:\ProgramData\IePluginServices\PluginService.exe (Fuyu LIMITED) C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe (Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (Acronis) C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe (AVM Berlin) C:\Program Files\avmwlanstick\WLanNetService.exe (Microsoft Corporation) C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe () C:\Windows\System32\srvany.exe (Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\MDM.EXE () C:\Windows\KMService.exe (PriceMeter) C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Acronis) C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe (Acronis) C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis) C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe (Nuance Communications, Inc.) C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe (Brother Industries, Ltd.) C:\Program Files\Brother\ControlCenter3\BrccMCtl.exe (AVM Berlin) C:\Program Files\avmwlanstick\WLanGUI.exe (Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe (Spotify Ltd) C:\Users\Nick\AppData\Roaming\Spotify\spotify.exe (Spotify Ltd) C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe (PriceMeter) C:\Users\Nick\AppData\Local\PriceMeter\pricemeterw.exe (Brother Industries, Ltd.) C:\Program Files\Browny02\BrYNSvc.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyHelper.exe () C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe () C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe () C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyHelper.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe () C:\Program Files\NetTock\bin\utilNetTock.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe () C:\Program Files\NetTock\bin\NetTock.PurBrowse.exe () C:\Program Files\NetTock\bin\NetTock.BRT.Helper.exe (Farbar) C:\Users\Nick\Downloads\FRST (1).exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe () C:\Program Files\NetTock\updateNetTock.exe () C:\Program Files\NetTock\bin\NetTock.BrowserAdapter.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [11930696 2013-03-29] (Realtek Semiconductor) HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-07-31] (AVAST Software) HKLM\...\Run: [SAOB Monitor] => C:\Program Files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe [2571032 2011-09-22] (Acronis) HKLM\...\Run: [TrueImageMonitor.exe] => C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [5587832 2011-09-22] (Acronis) HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [395344 2011-09-22] (Acronis) HKLM\...\Run: [SSBkgdUpdate] => C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [210472 2006-10-25] (Nuance Communications, Inc.) HKLM\...\Run: [PaperPort PTD] => C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe [29984 2008-07-09] (Nuance Communications, Inc.) HKLM\...\Run: [IndexSearch] => C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe [46368 2008-07-09] (Nuance Communications, Inc.) HKLM\...\Run: [PPort11reminder] => C:\Program Files\ScanSoft\PaperPort\Ereg\Ereg.exe [328992 2007-08-31] (Nuance Communications, Inc.) HKLM\...\Run: [ControlCenter3] => C:\Program Files\Brother\ControlCenter3\brctrcen.exe [114688 2008-12-24] (Brother Industries, Ltd.) HKLM\...\Run: [BrStsMon00] => C:\Program Files\Browny02\Brother\BrStMonW.exe [2621440 2010-02-09] (Brother Industries, Ltd.) HKLM\...\Run: [AVMWlanClient] => C:\Program Files\avmwlanstick\wlangui.exe [1753088 2008-02-25] (AVM Berlin) HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-05-07] (Oracle Corporation) HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2014-06-03] (Google Inc.) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [EADM] => C:\Program Files\Origin\Origin.exe [3600216 2014-08-31] (Electronic Arts) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [21650016 2014-07-24] (Skype Technologies S.A.) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [Spotify] => C:\Users\Nick\AppData\Roaming\Spotify\Spotify.exe [6621752 2014-08-31] (Spotify Ltd) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [Spotify Web Helper] => C:\Users\Nick\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [1245752 2014-08-31] (Spotify Ltd) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\Run: [PriceMeterW] => C:\Users\Nick\AppData\Local\PriceMeter\pricemeterw.exe [309768 2014-03-13] (PriceMeter) HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\MountPoints2: {1b32f356-1e31-11e4-835a-001c4afc2dff} - H:\SETUP.EXE HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\MountPoints2: {251bd6b4-eb05-11e3-bfde-0019dbc807de} - H:\pushinst.exe HKU\S-1-5-21-3093252381-1593622799-2365870439-1000\...\MountPoints2: {269de4a4-1ef5-11e4-83f9-001c4afc2dff} - I:\pushinst.exe AppInit_DLLs: C:\PROGRA~1\SupTab\SEARCH~1.DLL => C:\Program Files\SupTab\SearchProtect32.dll [94088 2014-07-15] (Skytech Co., Ltd.) ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.omiga-plus.com/?type=hp&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962 HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://isearch.omiga-plus.com/?type=hp&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://isearch.omiga-plus.com/?type=hp&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://isearch.omiga-plus.com/?type=hp&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962&q={searchTerms} StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe hxxp://isearch.omiga-plus.com/?type=sc&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962 SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962&q={searchTerms} SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962&q={searchTerms} SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405434198&from=vtt&uid=SAMSUNGXHD501LJ_S0MUJDWQ654962&q={searchTerms} BHO: PopcornTV -> {1B4D240E-8BDE-4C8D-8B93-C74D2F8A8284} -> C:\Program Files\PopcornTV\popcorn_ie.dll (Applon) BHO: No Name -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> No File BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKCU - Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 FireFox: ======== FF ProfilePath: C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\thlib8r2.default FF DefaultSearchEngine: Yahoo! (Avast) FF SearchEngineOrder.1: Yahoo! (Avast) FF SelectedSearchEngine: Yahoo! (Avast) FF Homepage: https://de.yahoo.com?fr=hp-avast&type=avastbcl FF Keyword.URL: https://de.search.yahoo.com/yhs/search FF Plugin: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.updatepm.com/PriceMeterLiveUpdate Update;version=3 -> C:\Program Files\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter) FF Plugin: @tools.updatepm.com/PriceMeterLiveUpdate Update;version=9 -> C:\Program Files\PriceMeterLiveUpdate\Update\1.3.23.0\npGoogleUpdate3.dll (PriceMeter) FF SearchPlugin: C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\thlib8r2.default\searchplugins\yahoo-avast.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\omiga-plus.xml FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2014-07-14] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-06-03] FF HKLM\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\thlib8r2.default\extensions\faststartff@gmail.com FF Extension: No Name - C:\Users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\thlib8r2.default\extensions\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}.xpi [] Chrome: ======= CHR HomePage: Default -> https://www.google.de/ CHR StartupUrls: Default -> "hxxp://google.de/" CHR CustomProfile: C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Chromoji - Emoji for Google Chrome™) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cahedbegdkagmcjfolhdlechbkeaieki [2014-07-15] CHR Extension: (Adblock Plus) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-07-15] CHR Extension: (avast! SafePrice) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2014-08-04] CHR Extension: (avast! Online Security) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2014-06-04] CHR Extension: (Google Wallet) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-06-03] CHR Extension: (Battlefield Play4Free) - C:\Users\Nick\AppData\Local\Google\Chrome\User Data\Default\Extensions\oiokahphinmbmakkehgelkmpolmnbkdh [2014-07-30] CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx [2014-08-04] CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-16] CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2014-07-14] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AcrSch2Svc; C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe [805032 2011-09-22] (Acronis) R2 afcdpsrv; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [3246040 2014-06-04] (Acronis) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-16] (AVAST Software) R2 AVM WLAN Connection Service; C:\Program Files\avmwlanstick\WlanNetService.exe [364544 2008-02-25] (AVM Berlin) [File not signed] R3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed] R2 c2cautoupdatesvc; C:\Program Files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1390176 2014-07-14] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1767520 2014-07-14] (Microsoft Corporation) R2 IePluginServices; C:\ProgramData\IePluginServices\PluginService.exe [759688 2014-07-15] (Cherished Technololgy LIMITED) R2 KMService; C:\Windows\system32\srvany.exe [8192 2003-04-18] () [File not signed] S2 pricemeterliveUpdate; C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [150504 2014-08-07] (PriceMeter) S3 pricemeterliveUpdatem; C:\Program Files\PriceMeterLiveUpdate\Update\PriceMeterLiveUpdate.exe [150504 2014-08-07] (PriceMeter) R2 Update NetTock; C:\Program Files\NetTock\updateNetTock.exe [323352 2014-09-06] () R2 Util NetTock; C:\Program Files\NetTock\bin\utilNetTock.exe [323352 2014-09-06] () R2 WindowsMangerProtect; C:\ProgramData\WindowsMangerProtect\ProtectWindowsManager.exe [535936 2014-07-15] (Fuyu LIMITED) ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24184 2014-07-16] () R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [67824 2014-07-16] (AVAST Software) R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81768 2014-07-16] (AVAST Software) R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49944 2014-07-16] () R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [779536 2014-07-16] (AVAST Software) R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [414520 2014-07-16] (AVAST Software) R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [71944 2014-07-16] (AVAST Software) S3 aswTap; C:\Windows\System32\DRIVERS\aswTap.sys [38984 2014-07-16] (The OpenVPN Project) R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [192352 2014-07-16] () R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [243128 2014-08-07] (Disc Soft Ltd) R3 fwlanusbn; C:\Windows\System32\DRIVERS\fwlanusbn.sys [401920 2007-12-19] (AVM GmbH) R3 xusb21; C:\Windows\System32\DRIVERS\xusb21.sys [55808 2007-08-28] (Microsoft Corporation) [File not signed] R1 {0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw; C:\Windows\System32\drivers\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}Gw.sys [52920 2014-07-08] (StdLib) R1 {0bd9bacb-0a2d-4412-900e-b2473afd87b4}w; C:\Windows\System32\drivers\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}w.sys [52920 2014-07-03] (StdLib) U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Corporation) ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-06 13:46 - 2014-09-06 13:47 - 01096704 _____ (Farbar) C:\Users\Nick\Downloads\FRST (1).exe 2014-09-02 19:20 - 2014-09-02 19:21 - 00022977 _____ () C:\Users\Nick\Downloads\Addition.txt 2014-09-02 19:19 - 2014-09-06 13:48 - 00019901 _____ () C:\Users\Nick\Downloads\FRST.txt 2014-09-02 19:19 - 2014-09-06 13:48 - 00000000 ____D () C:\FRST 2014-09-02 19:18 - 2014-09-02 19:18 - 01096704 _____ (Farbar) C:\Users\Nick\Downloads\FRST.exe 2014-09-02 19:15 - 2014-09-02 19:16 - 07485596 _____ () C:\Users\Nick\Downloads\Infigo_setup.exe 2014-09-02 10:59 - 2014-08-23 03:46 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-09-02 10:59 - 2014-08-23 02:42 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-31 16:11 - 2014-05-14 18:23 - 01973728 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll 2014-08-31 16:11 - 2014-05-14 18:23 - 00581600 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll 2014-08-31 16:11 - 2014-05-14 18:23 - 00054240 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe 2014-08-31 16:11 - 2014-05-14 18:23 - 00045536 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll 2014-08-31 16:11 - 2014-05-14 18:23 - 00036320 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll 2014-08-31 16:11 - 2014-05-14 18:17 - 02425856 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll 2014-08-31 16:11 - 2014-05-14 18:17 - 00092672 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll 2014-08-31 16:11 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll 2014-08-31 16:11 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe 2014-08-20 15:58 - 2014-08-20 15:58 - 00000000 ____D () C:\Users\Nick\Downloads\Sky Park v1.4 2014-08-19 10:42 - 2014-08-19 10:42 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\BRT 2014-08-17 20:18 - 2014-07-03 16:16 - 00052920 _____ (StdLib) C:\Windows\system32\Drivers\{0bd9bacb-0a2d-4412-900e-b2473afd87b4}w.sys 2014-08-13 20:51 - 2014-07-01 00:14 - 00008856 _____ (Microsoft Corporation) C:\Windows\system32\icardres.dll 2014-08-13 20:51 - 2014-06-06 08:16 - 00035480 _____ (Microsoft Corporation) C:\Windows\system32\TsWpfWrp.exe 2014-08-13 20:51 - 2014-03-09 23:47 - 00619672 _____ (Microsoft Corporation) C:\Windows\system32\icardagt.exe 2014-08-13 20:51 - 2014-03-09 23:47 - 00099480 _____ (Microsoft Corporation) C:\Windows\system32\infocardapi.dll 2014-08-13 19:53 - 2014-08-07 03:43 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-13 19:53 - 2014-08-07 03:39 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll 2014-08-13 19:52 - 2014-07-14 03:42 - 00654336 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll 2014-08-13 19:52 - 2014-06-16 03:44 - 00730048 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys 2014-08-13 19:52 - 2014-06-16 03:44 - 00219072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys 2014-08-13 19:52 - 2014-06-16 03:40 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll 2014-08-13 19:51 - 2014-07-16 04:46 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2014-08-13 19:51 - 2014-06-03 11:30 - 00101824 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe 2014-08-13 19:51 - 2014-06-03 11:29 - 02363392 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll 2014-08-13 19:51 - 2014-06-03 11:29 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll 2014-08-13 19:51 - 2014-06-03 11:29 - 00337408 _____ (Microsoft Corporation) C:\Windows\system32\msihnd.dll 2014-08-13 19:50 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDYAK.DLL 2014-08-13 19:50 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDTAT.DLL 2014-08-13 19:50 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU1.DLL 2014-08-13 19:50 - 2014-07-09 03:29 - 00006144 _____ (Microsoft Corporation) C:\Windows\system32\KBDBASH.DLL 2014-08-13 19:50 - 2014-07-09 03:29 - 00005632 _____ (Microsoft Corporation) C:\Windows\system32\KBDRU.DLL 2014-08-13 19:50 - 2014-07-09 00:30 - 00419992 _____ () C:\Windows\system32\locale.nls 2014-08-13 19:50 - 2014-06-25 03:41 - 12874240 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll 2014-08-11 13:16 - 2014-08-11 13:16 - 00000000 ____D () C:\Users\Robin\AppData\Roaming\Mozilla 2014-08-11 13:16 - 2014-08-11 13:16 - 00000000 ____D () C:\Users\Robin\AppData\Local\Mozilla 2014-08-09 23:29 - 2014-08-09 23:33 - 04118664 _____ () C:\Users\Nick\Downloads\Star Wars 1.7.zip 2014-08-08 15:24 - 2010-04-10 09:03 - 00077824 _____ () C:\Windows\KMService.exe 2014-08-08 15:24 - 2003-04-18 19:06 - 00008192 _____ () C:\Windows\system32\srvany.exe 2014-08-08 14:22 - 2014-09-05 12:55 - 00000093 _____ () C:\Users\Nick\AppData\Roaming\WB.CFG 2014-08-07 16:35 - 2014-08-07 16:46 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-07 16:35 - 2014-08-07 16:35 - 00003047 _____ () C:\Users\Nick\Desktop\Microsoft Excel 2010.lnk 2014-08-07 16:35 - 2014-08-07 16:35 - 00003029 _____ () C:\Users\Nick\Desktop\Microsoft Word 2010.lnk 2014-08-07 16:35 - 2014-08-07 16:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Windows\PCHEALTH 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-08-07 16:29 - 2014-08-07 16:29 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 8 2014-08-07 16:28 - 2014-08-07 16:41 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-08-07 16:28 - 2014-08-07 16:28 - 00000000 ____D () C:\Users\Nick\AppData\Local\Microsoft Help 2014-08-07 16:28 - 2014-08-07 16:28 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services 2014-08-07 16:27 - 2014-08-07 16:27 - 00000000 __RHD () C:\MSOCache 2014-08-07 16:24 - 2014-08-07 16:24 - 00001860 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2014-08-07 16:23 - 2014-08-07 16:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2014-08-07 16:22 - 2014-09-06 13:42 - 00000946 _____ () C:\Windows\Tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job 2014-08-07 16:22 - 2014-09-05 14:27 - 00000950 _____ () C:\Windows\Tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job 2014-08-07 16:22 - 2014-09-05 14:22 - 00000288 _____ () C:\Windows\Tasks\PriceMeterUpdater.job 2014-08-07 16:22 - 2014-08-07 16:28 - 00000000 ____D () C:\Users\Nick\AppData\Local\PriceMeter 2014-08-07 16:22 - 2014-08-07 16:26 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\DAEMON Tools Lite 2014-08-07 16:22 - 2014-08-07 16:22 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\PriceMeterUpdater 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\OpenCandy 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Local\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\ProgramData\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Program Files\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite 2014-08-07 16:21 - 2014-08-07 16:26 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite 2014-08-07 16:13 - 2014-08-07 16:14 - 13429504 _____ (Disc Soft Ltd) C:\Users\Nick\Downloads\DTLite4491-0356.exe 2014-08-07 14:52 - 2014-08-07 14:52 - 00488141 _____ () C:\Users\Nick\Downloads\nw_25775_extensioncrx.crx 2014-08-07 14:50 - 2014-08-07 14:50 - 00000000 ____D () C:\Program Files\Common Files\Skype ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-09-06 13:49 - 2014-09-02 19:19 - 00019901 _____ () C:\Users\Nick\Downloads\FRST.txt 2014-09-06 13:48 - 2014-09-02 19:19 - 00000000 ____D () C:\FRST 2014-09-06 13:48 - 2014-06-06 21:51 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\Spotify 2014-09-06 13:47 - 2014-09-06 13:46 - 01096704 _____ (Farbar) C:\Users\Nick\Downloads\FRST (1).exe 2014-09-06 13:47 - 2009-07-14 04:04 - 00000680 _____ () C:\Windows\win.ini 2014-09-06 13:45 - 2014-06-04 19:07 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\Skype 2014-09-06 13:45 - 2014-06-04 18:48 - 00000000 ____D () C:\ProgramData\Origin 2014-09-06 13:43 - 2014-06-03 13:10 - 00001090 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2014-09-06 13:42 - 2014-08-07 16:22 - 00000946 _____ () C:\Windows\Tasks\PriceMeterLiveUpdateUpdateTaskMachineCore.job 2014-09-06 13:42 - 2009-07-14 06:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT 2014-09-06 13:42 - 2009-07-14 06:39 - 00037272 _____ () C:\Windows\setupact.log 2014-09-05 14:38 - 2007-01-07 11:33 - 01366014 _____ () C:\Windows\WindowsUpdate.log 2014-09-05 14:27 - 2014-08-07 16:22 - 00000950 _____ () C:\Windows\Tasks\PriceMeterLiveUpdateUpdateTaskMachineUA.job 2014-09-05 14:27 - 2014-06-03 13:10 - 00001094 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2014-09-05 14:22 - 2014-08-07 16:22 - 00000288 _____ () C:\Windows\Tasks\PriceMeterUpdater.job 2014-09-05 12:55 - 2014-08-08 14:22 - 00000093 _____ () C:\Users\Nick\AppData\Roaming\WB.CFG 2014-09-05 10:59 - 2009-07-14 06:34 - 00032128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2014-09-05 10:59 - 2009-07-14 06:34 - 00032128 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2014-09-05 10:53 - 2014-06-04 18:47 - 00000000 ____D () C:\Program Files\Origin 2014-09-02 19:21 - 2014-09-02 19:20 - 00022977 _____ () C:\Users\Nick\Downloads\Addition.txt 2014-09-02 19:18 - 2014-09-02 19:18 - 01096704 _____ (Farbar) C:\Users\Nick\Downloads\FRST.exe 2014-09-02 19:16 - 2014-09-02 19:15 - 07485596 _____ () C:\Users\Nick\Downloads\Infigo_setup.exe 2014-09-02 18:53 - 2009-07-14 06:33 - 00425648 _____ () C:\Windows\system32\FNTCACHE.DAT 2014-09-02 12:15 - 2014-06-06 14:29 - 00001107 _____ () C:\Users\Public\Desktop\EA Sports FIFA World.lnk 2014-09-02 10:48 - 2014-06-06 22:31 - 00000000 ____D () C:\Users\Nick\AppData\Local\Spotify 2014-08-31 20:13 - 2014-06-07 15:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\.minecraft 2014-08-31 17:32 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\rescache 2014-08-31 16:54 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\system32\de-DE 2014-08-31 16:52 - 2014-06-04 18:52 - 00000000 ____D () C:\Program Files\Steam 2014-08-25 06:53 - 2014-06-06 14:12 - 00231584 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe 2014-08-23 03:46 - 2014-09-02 10:59 - 00305152 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll 2014-08-23 02:42 - 2014-09-02 10:59 - 02352640 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2014-08-21 19:43 - 2010-11-20 23:01 - 01618320 _____ () C:\Windows\system32\PerfStringBackup.INI 2014-08-20 15:58 - 2014-08-20 15:58 - 00000000 ____D () C:\Users\Nick\Downloads\Sky Park v1.4 2014-08-20 10:16 - 2014-06-04 18:52 - 00000000 ____D () C:\Program Files\Common Files\Steam 2014-08-19 20:36 - 2014-06-03 16:45 - 00002275 _____ () C:\Users\Public\Desktop\Google Chrome.lnk 2014-08-19 10:42 - 2014-08-19 10:42 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\BRT 2014-08-17 20:46 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Microsoft.NET 2014-08-17 20:18 - 2014-07-15 16:24 - 00000000 ____D () C:\Program Files\NetTock 2014-08-17 20:09 - 2014-06-03 19:34 - 00000000 ___SD () C:\Windows\system32\CompatTel 2014-08-13 20:56 - 2014-06-03 18:37 - 00000000 ____D () C:\Windows\system32\MRT 2014-08-13 20:53 - 2014-06-03 18:37 - 96303304 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2014-08-13 19:42 - 2014-06-04 19:07 - 00000000 ___RD () C:\Program Files\Skype 2014-08-11 13:16 - 2014-08-11 13:16 - 00000000 ____D () C:\Users\Robin\AppData\Roaming\Mozilla 2014-08-11 13:16 - 2014-08-11 13:16 - 00000000 ____D () C:\Users\Robin\AppData\Local\Mozilla 2014-08-09 23:33 - 2014-08-09 23:29 - 04118664 _____ () C:\Users\Nick\Downloads\Star Wars 1.7.zip 2014-08-08 15:19 - 2014-06-03 11:56 - 00011621 _____ () C:\Windows\avmfwlanci.log 2014-08-08 14:32 - 2014-06-03 13:08 - 00114656 _____ () C:\Users\Nick\AppData\Local\GDIPFONTCACHEV1.DAT 2014-08-07 16:46 - 2014-08-07 16:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2014-08-07 16:43 - 2010-11-20 23:48 - 00015346 _____ () C:\Windows\PFRO.log 2014-08-07 16:41 - 2014-08-07 16:28 - 00000000 ____D () C:\ProgramData\Microsoft Help 2014-08-07 16:41 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared 2014-08-07 16:40 - 2010-11-21 02:46 - 00000000 ____D () C:\Windows\ShellNew 2014-08-07 16:40 - 2009-07-14 04:37 - 00000000 ____D () C:\Program Files\Common Files\System 2014-08-07 16:35 - 2014-08-07 16:35 - 00003047 _____ () C:\Users\Nick\Desktop\Microsoft Excel 2010.lnk 2014-08-07 16:35 - 2014-08-07 16:35 - 00003029 _____ () C:\Users\Nick\Desktop\Microsoft Word 2010.lnk 2014-08-07 16:35 - 2014-08-07 16:35 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint 2014-08-07 16:34 - 2009-07-14 06:52 - 00000000 ____D () C:\Program Files\MSBuild 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Windows\PCHEALTH 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft Synchronization Services 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft Sync Framework 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Microsoft SQL Server Compact Edition 2014-08-07 16:33 - 2014-08-07 16:33 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER 2014-08-07 16:33 - 2014-07-06 12:10 - 00000000 ____D () C:\Program Files\Microsoft Office 2014-08-07 16:33 - 2014-06-03 19:23 - 00000000 ____D () C:\Program Files\Microsoft.NET 2014-08-07 16:31 - 2009-07-14 04:37 - 00000000 ____D () C:\Windows\Help 2014-08-07 16:29 - 2014-08-07 16:29 - 00000000 ____D () C:\Program Files\Microsoft Visual Studio 8 2014-08-07 16:28 - 2014-08-07 16:28 - 00000000 ____D () C:\Users\Nick\AppData\Local\Microsoft Help 2014-08-07 16:28 - 2014-08-07 16:28 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services 2014-08-07 16:28 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Local\PriceMeter 2014-08-07 16:27 - 2014-08-07 16:27 - 00000000 __RHD () C:\MSOCache 2014-08-07 16:26 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\DAEMON Tools Lite 2014-08-07 16:26 - 2014-08-07 16:21 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite 2014-08-07 16:24 - 2014-08-07 16:24 - 00001860 _____ () C:\Users\Public\Desktop\DAEMON Tools Lite.lnk 2014-08-07 16:24 - 2014-08-07 16:23 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite 2014-08-07 16:22 - 2014-08-07 16:22 - 00243128 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\PriceMeterUpdater 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Roaming\OpenCandy 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Users\Nick\AppData\Local\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\ProgramData\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Program Files\PriceMeterLiveUpdate 2014-08-07 16:22 - 2014-08-07 16:22 - 00000000 ____D () C:\Program Files\DAEMON Tools Lite 2014-08-07 16:14 - 2014-08-07 16:13 - 13429504 _____ (Disc Soft Ltd) C:\Users\Nick\Downloads\DTLite4491-0356.exe 2014-08-07 14:52 - 2014-08-07 14:52 - 00488141 _____ () C:\Users\Nick\Downloads\nw_25775_extensioncrx.crx 2014-08-07 14:50 - 2014-08-07 14:50 - 00000000 ____D () C:\Program Files\Common Files\Skype 2014-08-07 14:50 - 2014-06-04 19:07 - 00000000 ____D () C:\ProgramData\Skype 2014-08-07 14:48 - 2009-07-14 06:53 - 00032634 _____ () C:\Windows\Tasks\SCHEDLGU.TXT 2014-08-07 03:43 - 2014-08-13 19:53 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll 2014-08-07 03:39 - 2014-08-13 19:53 - 00302592 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll Some content of TEMP: ==================== C:\Users\Nick\AppData\Local\Temp\app.exe C:\Users\Nick\AppData\Local\Temp\fp_pl_pfs_installer.exe C:\Users\Nick\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe C:\Users\Nick\AppData\Local\Temp\ose00000.exe C:\Users\Nick\AppData\Local\Temp\Uni000.exe C:\Users\Nick\AppData\Local\Temp\_is7BA4.exe C:\Users\Nick\AppData\Local\Temp\{2692AEED-B21B-457D-9765-C9D5E1D00452}-36.0.1985.143_36.0.1985.125_chrome_updater.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\Windows\explorer.exe => File is digitally signed C:\Windows\system32\winlogon.exe => File is digitally signed C:\Windows\system32\wininit.exe => File is digitally signed C:\Windows\system32\svchost.exe => File is digitally signed C:\Windows\system32\services.exe => File is digitally signed C:\Windows\system32\User32.dll => File is digitally signed C:\Windows\system32\userinit.exe => File is digitally signed C:\Windows\system32\rpcss.dll => File is digitally signed C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed LastRegBack: 2014-08-31 17:24 ==================== End Of Log ============================ das kommt nach dem scannen |
 So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Addition.txt von FRST fehlt noch, und das Log von Minitoolbox. |
FRST Additions Logfile: Code: Additional scan result of Farbar Recovery Scan Tool (x86) Version:31-08-2014 02das wär addition Code: und weißt du so wielang du brauchst? |
Adware & Co. deinstallieren
Was genau geht beim Internet nicht? Nur die BRowser oder auch Updates von Windows und AV Programm? Scan mit Combofix
|
bei dem internet funkt nichts, und es ist immer vorschieden, manchmal geht es nach 5 min nicht mehr, manchmal nach 30 ich kann mir combofix nich downloaden, da kommt ne Nachricht die sagt die Installation wäre fehlgeschlagen?! Was soll ich jetzt machen? |
Mit was lädst du es? und du hast sicher den richtigen Link angeklickt? |
ja sicher es zeigt es mir auch an. soll ich vor dem download auch mein virenprogramm deaktivieren? Installer integrity chack has failed. Common causes include incomplete download and damaged media. Contact the installer's autor to optain a new copy. Das kommt dann |
AV ausschalten, dann nochmal neu laden. |
| Alle Zeitangaben in WEZ +1. Es ist jetzt 06:45 Uhr. |
Copyright ©2000-2025, Trojaner-Board