unfortunately I have the exactly same situation about one month ago (Maybe the origin of the maleware is somewhere in my documents.):
viewtopic.php?t=63242#.VI1ueMlNEcu
When I open an internet browser (Firefox or internet explorer) there is an error message concerning the proxy settings. Additionally it is not possible to update my anti virus and firewall. However, Outlook is running normal and in the windows 7 it looks that there is a normal connection to the internet.
When I change the Firefox settings to no proxy, which is not the usual setting I think, Firefox is working properly. A second computer in the same network is running normal with the stadard Firefox settings: "use proxy settings from the system".
Last time I had to reinstall the complete system because of some some systems errors (blue screen), which were no surely related to the maleware removal. Hopefully this is not the case again.
I already used adwcleaner and removed some things. If you are interested I could post the log.
Here are the DDS logs:
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.17496
Run by Helmut at 12:13:25 on 2014-12-14
Microsoft Windows 7 Professional 6.1.7601.1.1252.49.1031.18.3574.2253 [GMT 1:00]
.
AV: COMODO Antivirus *Enabled/Updated* {B74CC7D2-B407-E1DC-1033-DD315BCDC8C8}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: COMODO Antivirus *Enabled/Updated* {0C2D2636-923D-EE52-2A83-E643204A8275}
FW: COMODO Firewall *Enabled* {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.2.9.5\LavasoftTcpService.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\System32\igfxpers.exe
C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
C:\Program Files\COMODO\COMODO Internet Security\CisTray.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\COMODO\COMODO Internet Security\cis.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
C:\Windows\system32\wuauclt.exe
C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uProxyServer = hxxp=127.0.0.1:8897;https=127.0.0.1:8897
uProxyOverride = <-loopback>;www.joosoft.com
mWinlogon: Userinit = userinit.exe
BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
uRunOnce: [Adobe Speed Launcher] 1418554499
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: An OneNote s&enden - C:\PROGRA~1\MICROS~1\Office14\ONBttnIE.dll/105
IE: Nach Microsoft E&xcel exportieren - C:\PROGRA~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
TCP: NameServer = 192.168.178.1
TCP: Interfaces\{292AC986-4040-4DA9-BF90-6B61C8D03291} : DHCPNameServer = 192.168.178.1
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
SSODL: WebCheck - <orphaned>
SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Groove GFS Browser Helper: {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [COMODO Internet Security] C:\Program Files\COMODO\COMODO Internet Security\cistray.exe
x64-Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
x64-Run: [CanonSolutionMenu] C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe /logon
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-SEH: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\users\Helmut\AppData\Roaming\Mozilla\Firefox\Profiles\prmpfpw4.default\
FF - prefs.js: browser.startup.homepage - www.google.de
FF - prefs.js: network.proxy.type - 0
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\PDF Architect 2\np-previewer.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll
.
============= SERVICES / DRIVERS ===============
.
R1 cmderd;COMODO Internet Security Eradication Driver;C:\Windows\System32\drivers\cmderd.sys [2014-3-25 23168]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;C:\Windows\System32\drivers\cmdguard.sys [2014-3-25 738472]
R1 cmdHlp;COMODO Internet Security Helper Driver;C:\Windows\System32\drivers\cmdhlp.sys [2014-3-25 48360]
R2 LavasoftTcpService;LavasoftTcpService;C:\Program Files (x86)\Lavasoft\Web Companion\TcpService\2.2.9.5\LavasoftTcpService.exe [2014-11-13 1351512]
R2 SearchProtectionService;IE Search Set;C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.SearchProtect.WinService.exe [2014-11-13 15208]
R3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-1-9 174440]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-9-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-9-11 124088]
S3 cmdvirth;COMODO Virtual Service Manager;C:\Program Files\COMODO\COMODO Internet Security\cmdvirth.exe [2014-3-25 2264280]
S3 dmvsc;dmvsc;C:\Windows\System32\drivers\dmvsc.sys [2011-4-12 71168]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2014-12-11 114688]
S3 PDF Architect 2;PDF Architect 2;C:\Program Files (x86)\PDF Architect 2\ws.exe [2014-10-10 1771560]
S3 pdfforge CrashHandler;pdfforge CrashHandler;C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [2014-10-10 861736]
S3 StorSvc;Speicherdienst;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2010-11-21 31232]
.
=============== Created Last 30 ================
.
2014-12-14 10:49:21 -------- d-----w- C:\AdwCleaner
2014-12-13 17:22:50 -------- d-----w- C:\Windows\System32\appraiser
2014-12-11 16:09:30 55808 ----a-w- C:\Windows\System32\rrinstaller.exe
2014-12-11 16:09:30 50176 ----a-w- C:\Windows\SysWow64\rrinstaller.exe
2014-12-11 16:09:30 3209728 ----a-w- C:\Windows\SysWow64\mf.dll
2014-12-11 16:09:30 24576 ----a-w- C:\Windows\System32\mfpmp.exe
2014-12-11 16:09:30 23040 ----a-w- C:\Windows\SysWow64\mfpmp.exe
2014-12-11 16:09:30 206848 ----a-w- C:\Windows\System32\mfps.dll
2014-12-11 16:09:30 2048 ----a-w- C:\Windows\SysWow64\mferror.dll
2014-12-11 16:09:30 2048 ----a-w- C:\Windows\System32\mferror.dll
2014-12-11 16:09:30 103424 ----a-w- C:\Windows\SysWow64\mfps.dll
2014-12-11 16:09:29 4121600 ----a-w- C:\Windows\System32\mf.dll
2014-12-11 16:06:20 165888 ----a-w- C:\Windows\System32\charmap.exe
2014-11-26 18:43:14 3981488 ----a-w- C:\Windows\SysWow64\FlashPlayerInstaller.exe
2014-11-26 18:34:29 -------- d--h--w- C:\ProgramData\CanonIJScan
2014-11-26 18:27:23 -------- d-----w- C:\Program Files (x86)\Canon
2014-11-25 13:24:28 24294072 ----a-w- C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSO.DLL
2014-11-25 12:59:38 18638520 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSO.DLL
2014-11-21 16:11:19 -------- d-----w- C:\ProgramData\STAMP Remote Client
2014-11-19 18:50:19 -------- d-----w- C:\Program Files (x86)\PDF Architect 2
2014-11-19 18:48:49 -------- d-----w- C:\ProgramData\PDF Architect 2
2014-11-19 18:48:24 662288 ----a-w- C:\Windows\SysWow64\MSCOMCT2.OCX
2014-11-19 18:48:24 137000 ----a-w- C:\Windows\SysWow64\MSMAPI32.OCX
2014-11-19 18:48:24 110264 ----a-w- C:\Windows\System32\pdfcmon.dll
2014-11-19 18:48:24 1070152 ----a-w- C:\Windows\SysWow64\MSCOMCTL.OCX
2014-11-19 18:48:22 64512 ----a-w- C:\Windows\SysWow64\MSCC2DE.DLL
2014-11-19 18:48:22 158208 ----a-w- C:\Windows\SysWow64\MSCMCDE.DLL
2014-11-19 18:48:22 125712 ----a-w- C:\Windows\SysWow64\VB6DE.DLL
2014-11-19 18:48:21 23552 ----a-w- C:\Windows\SysWow64\MSMPIDE.DLL
2014-11-19 18:48:21 -------- d-----w- C:\Program Files (x86)\PDFCreator
2014-11-19 18:38:18 358736 ----a-w- C:\Windows\System32\LavasoftTcpService64.dll
2014-11-19 18:38:11 312424 ----a-w- C:\Windows\SysWow64\LavasoftTcpService.dll
2014-11-19 18:37:03 -------- d-----w- C:\Program Files (x86)\Lavasoft
2014-11-19 18:30:53 -------- d-----w- C:\Users\Helmut\AppData\Local\Macromedia
2014-11-19 18:30:15 -------- d-----w- C:\Program Files\VideoLAN
2014-11-19 18:29:37 493056 ----a-w- C:\Windows\SysWow64\dhRichClient3.dll
2014-11-19 18:29:37 338432 ----a-w- C:\Windows\SysWow64\sqlite36_engine.dll
2014-11-19 18:29:36 -------- d-----w- C:\Users\Helmut\AppData\Roaming\Cliqz
2014-11-19 18:29:34 -------- d-----w- C:\Users\Helmut\AppData\Local\Programs
2014-11-19 18:25:52 71344 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2014-11-19 18:25:52 701104 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2014-11-19 18:24:12 -------- d-----w- C:\Users\Helmut\AppData\Local\Adobe
2014-11-19 18:11:05 -------- d-----w- C:\Program Files\Microsoft Synchronization Services
2014-11-19 18:09:55 -------- d-----w- C:\Windows\PCHEALTH
2014-11-19 18:09:55 -------- d-----w- C:\Program Files\Microsoft SQL Server Compact Edition
2014-11-19 18:06:48 -------- d-----w- C:\Program Files (x86)\Microsoft Visual Studio 8
2014-11-19 18:04:58 -------- d-----w- C:\Program Files\Microsoft Analysis Services
2014-11-19 18:04:58 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2014-11-19 18:03:44 -------- d-----w- C:\Users\Helmut\AppData\Local\Microsoft Help
2014-11-19 03:26:34 1614504 ----a-w- C:\Windows\System32\FM20.DLL
2014-11-18 18:21:20 728064 ----a-w- C:\Windows\System32\kerberos.dll
2014-11-18 18:21:20 241152 ----a-w- C:\Windows\System32\pku2u.dll
2014-11-18 18:21:20 186880 ----a-w- C:\Windows\SysWow64\pku2u.dll
2014-11-18 18:21:19 550912 ----a-w- C:\Windows\SysWow64\kerberos.dll
2014-11-18 02:20:08 -------- d-----we C:\users
2014-11-17 17:41:28 -------- d-s---w- C:\ProgramData\Shared Space
2014-11-17 17:41:03 -------- d-----w- C:\Program Files\COMODO
2014-11-17 17:40:40 -------- d-----w- C:\ProgramData\Comodo Downloader
2014-11-17 17:40:10 -------- d-----w- C:\ProgramData\Comodo
2014-11-17 17:29:44 80896 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNMPP86.DLL
2014-11-17 17:29:44 27136 ----a-w- C:\Windows\System32\Spool\prtprocs\x64\CNMPD86.DLL
2014-11-17 17:29:25 234496 ----a-w- C:\Windows\System32\CNMLM86.DLL
2014-11-17 17:22:29 -------- d-----w- C:\Users\Helmut\AppData\Local\Mozilla
2014-11-16 20:22:36 2777088 ----a-w- C:\Windows\System32\msmpeg2vdec.dll
2014-11-16 20:22:36 2285056 ----a-w- C:\Windows\SysWow64\msmpeg2vdec.dll
2014-11-16 20:17:24 3928064 ----a-w- C:\Windows\System32\d2d1.dll
2014-11-16 20:17:24 3419136 ----a-w- C:\Windows\SysWow64\d2d1.dll
2014-11-16 20:17:15 96768 ----a-w- C:\Windows\System32\fsutil.exe
2014-11-16 20:17:15 74240 ----a-w- C:\Windows\SysWow64\fsutil.exe
2014-11-16 20:17:15 410496 ----a-w- C:\Windows\System32\drivers\iaStorV.sys
2014-11-16 20:17:15 27008 ----a-w- C:\Windows\System32\drivers\amdxata.sys
2014-11-16 20:17:15 2565632 ----a-w- C:\Windows\System32\esent.dll
2014-11-16 20:17:15 1699328 ----a-w- C:\Windows\SysWow64\esent.dll
2014-11-16 20:17:15 166272 ----a-w- C:\Windows\System32\drivers\nvstor.sys
2014-11-16 20:17:15 148352 ----a-w- C:\Windows\System32\drivers\nvraid.sys
2014-11-16 20:17:15 107904 ----a-w- C:\Windows\System32\drivers\amdsata.sys
2014-11-16 19:57:23 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe
2014-11-16 19:57:23 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2014-11-16 19:57:22 12625920 ----a-w- C:\Windows\System32\wmploc.DLL
2014-11-16 19:57:21 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL
2014-11-16 19:48:45 -------- d-----w- C:\Windows\Migration
2014-11-16 19:48:22 -------- d-sh--w- C:\Windows\Installer
2014-11-16 19:46:01 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service
2014-11-16 19:29:28 -------- d-----w- C:\Windows\SysWow64\wbem\en-US
2014-11-16 19:29:26 -------- d-----w- C:\Windows\System32\wbem\en-US
2014-11-16 19:29:21 -------- d-s---w- C:\Windows\System32\CompatTel
2014-11-16 18:37:15 9728 ---ha-w- C:\Windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-11-16 17:37:23 2560 ----a-w- C:\Windows\System32\drivers\de-DE\wdf01000.sys.mui
2014-11-16 17:12:48 294912 ----a-w- C:\Windows\System32\browserchoice.exe
2014-11-16 17:11:38 1002008 ----a-w- C:\Windows\SysWow64\igxpun.exe
2014-11-16 17:11:38 -------- d-----w- C:\Windows\SysWow64\x64
2014-11-16 17:06:55 8199504 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Backup\mpengine.dll
2014-11-16 17:06:50 11627712 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{E22E5D6B-87CD-4668-A98C-8C40ECC5C7EB}\mpengine.dll
2014-11-16 16:41:44 87040 ----a-w- C:\Windows\System32\drivers\WUDFPf.sys
2014-11-16 16:41:44 84992 ----a-w- C:\Windows\System32\WUDFSvc.dll
2014-11-16 16:41:44 198656 ----a-w- C:\Windows\System32\drivers\WUDFRd.sys
2014-11-16 16:41:43 744448 ----a-w- C:\Windows\System32\WUDFx.dll
2014-11-16 16:41:43 45056 ----a-w- C:\Windows\System32\WUDFCoinstaller.dll
2014-11-16 16:41:43 229888 ----a-w- C:\Windows\System32\WUDFHost.exe
2014-11-16 16:41:43 194048 ----a-w- C:\Windows\System32\WUDFPlatform.dll
2014-11-16 16:25:38 -------- d-----w- C:\Windows\System32\MRT
2014-11-16 16:20:50 23408 ----a-w- C:\Windows\System32\drivers\fs_rec.sys
2014-11-16 16:20:49 5120 ----a-w- C:\Windows\SysWow64\wmi.dll
2014-11-16 16:20:49 5120 ----a-w- C:\Windows\System32\wmi.dll
2014-11-16 16:12:22 99480 ----a-w- C:\Windows\SysWow64\infocardapi.dll
2014-11-16 16:12:22 619672 ----a-w- C:\Windows\SysWow64\icardagt.exe
2014-11-16 16:12:22 171160 ----a-w- C:\Windows\System32\infocardapi.dll
2014-11-16 16:12:22 1389208 ----a-w- C:\Windows\System32\icardagt.exe
2014-11-16 16:12:21 8856 ----a-w- C:\Windows\SysWow64\icardres.dll
2014-11-16 16:12:21 8856 ----a-w- C:\Windows\System32\icardres.dll
2014-11-16 16:12:08 35480 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe
2014-11-16 16:12:08 35480 ----a-w- C:\Windows\System32\TsWpfWrp.exe
2014-11-16 16:08:52 658432 ----a-w- C:\Windows\System32\RMActivate_isv.exe
2014-11-16 16:07:59 6656 ----a-w- C:\Windows\SysWow64\apisetschema.dll
2014-11-16 16:06:57 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2014-11-16 16:05:58 245760 ----a-w- C:\Windows\System32\OxpsConverter.exe
2014-11-16 16:04:59 778752 ----a-w- C:\Windows\System32\mssvp.dll
2014-11-16 16:03:52 956928 ----a-w- C:\Windows\System32\localspl.dll
2014-11-16 16:02:53 404480 ----a-w- C:\Windows\System32\umpnpmgr.dll
2014-11-16 15:51:32 861696 ----a-w- C:\Windows\System32\oleaut32.dll
2014-11-16 15:51:32 571904 ----a-w- C:\Windows\SysWow64\oleaut32.dll
2014-11-16 15:51:24 723456 ----a-w- C:\Windows\System32\EncDec.dll
2014-11-16 15:51:24 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2014-11-16 15:38:26 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2014-11-16 15:38:26 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2014-11-16 15:38:26 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2014-11-16 15:38:26 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2014-11-16 15:38:26 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2014-11-16 15:37:45 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2014-11-16 15:35:33 826880 ----a-w- C:\Windows\SysWow64\rdpcore.dll
2014-11-16 15:35:33 23552 ----a-w- C:\Windows\System32\drivers\tdtcp.sys
2014-11-16 15:35:33 1031680 ----a-w- C:\Windows\System32\rdpcore.dll
2014-11-16 15:21:54 -------- d-sh--we C:\Programme
2014-11-16 15:21:54 -------- d-sh--we C:\ProgramData\Vorlagen
2014-11-16 15:21:54 -------- d-sh--we C:\ProgramData\Startmenü
2014-11-16 15:21:54 -------- d-sh--we C:\ProgramData\Favoriten
2014-11-16 15:21:54 -------- d-sh--we C:\ProgramData\Dokumente
2014-11-16 15:21:54 -------- d-sh--we C:\ProgramData\Anwendungsdaten
2014-11-16 15:21:54 -------- d-sh--we C:\Program Files\Gemeinsame Dateien
2014-11-16 15:21:54 -------- d-sh--we C:\Dokumente und Einstellungen
2014-11-16 15:21:54 -------- d-sh--w- C:\Recovery
2014-11-16 15:11:27 -------- d-----w- C:\Windows\Panther
.
==================== Find3M ====================
.
2014-12-04 02:50:55 413184 ----a-w- C:\Windows\System32\generaltel.dll
2014-12-04 02:50:45 741376 ----a-w- C:\Windows\System32\invagent.dll
2014-12-04 02:50:40 396800 ----a-w- C:\Windows\System32\devinv.dll
2014-12-04 02:50:38 830976 ----a-w- C:\Windows\System32\appraiser.dll
2014-12-04 02:50:37 227328 ----a-w- C:\Windows\System32\aepdu.dll
2014-12-04 02:50:37 192000 ----a-w- C:\Windows\System32\aepic.dll
2014-12-04 02:44:48 1083392 ----a-w- C:\Windows\System32\aeinv.dll
2014-12-01 23:28:44 1232040 ----a-w- C:\Windows\System32\aitstatic.exe
2014-11-22 03:06:23 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2014-11-22 03:06:11 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2014-11-22 02:50:39 66560 ----a-w- C:\Windows\System32\iesetup.dll
2014-11-22 02:50:10 580096 ----a-w- C:\Windows\System32\vbscript.dll
2014-11-22 02:49:54 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2014-11-22 02:48:20 88064 ----a-w- C:\Windows\System32\MshtmlDac.dll
2014-11-22 02:35:43 144384 ----a-w- C:\Windows\System32\ieUnatt.exe
2014-11-22 02:35:29 114688 ----a-w- C:\Windows\System32\ieetwcollector.exe
2014-11-22 02:34:51 814080 ----a-w- C:\Windows\System32\jscript9diag.dll
2014-11-22 02:34:07 6039552 ----a-w- C:\Windows\System32\jscript9.dll
2014-11-22 02:26:31 968704 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2014-11-22 02:20:44 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2014-11-22 02:14:16 77824 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2014-11-22 02:07:43 501248 ----a-w- C:\Windows\SysWow64\vbscript.dll
2014-11-22 02:07:17 62464 ----a-w- C:\Windows\SysWow64\iesetup.dll
2014-11-22 02:06:32 47616 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2014-11-22 02:05:02 64000 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2014-11-22 01:55:16 115712 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2014-11-22 01:54:30 620032 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2014-11-22 01:47:10 1359360 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2014-11-22 01:46:58 2125312 ----a-w- C:\Windows\System32\inetcpl.cpl
2014-11-22 01:40:04 60416 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2014-11-22 01:29:26 4299264 ----a-w- C:\Windows\SysWow64\jscript9.dll
2014-11-22 01:28:21 2358272 ----a-w- C:\Windows\System32\wininet.dll
2014-11-22 01:22:49 2052096 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2014-11-22 01:21:57 1155072 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2014-11-22 01:00:20 1888256 ----a-w- C:\Windows\SysWow64\wininet.dll
2014-11-16 18:37:15 9728 ---ha-w- C:\Windows\System32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2014-11-11 03:09:06 1424384 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2014-11-11 02:44:45 1230336 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2014-11-11 01:46:26 119296 ----a-w- C:\Windows\System32\drivers\tdx.sys
2014-11-08 03:16:08 2048 ----a-w- C:\Windows\System32\tzres.dll
2014-11-08 02:45:09 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2014-11-04 13:30:58 275080 ------w- C:\Windows\System32\MpSigStub.exe
2014-10-30 01:45:43 155136 ----a-w- C:\Windows\SysWow64\charmap.exe
2014-10-25 01:57:59 77824 ----a-w- C:\Windows\System32\packager.dll
2014-10-25 01:32:37 67584 ----a-w- C:\Windows\SysWow64\packager.dll
2014-10-14 02:16:37 155064 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2014-10-14 02:13:06 683520 ----a-w- C:\Windows\System32\termsrv.dll
2014-10-14 02:13:00 3241984 ----a-w- C:\Windows\System32\msi.dll
2014-10-14 02:12:57 1460736 ----a-w- C:\Windows\System32\lsasrv.dll
2014-10-14 02:09:31 146432 ----a-w- C:\Windows\System32\msaudite.dll
2014-10-14 02:07:31 681984 ----a-w- C:\Windows\System32\adtschema.dll
2014-10-14 01:50:47 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2014-10-14 01:50:41 2363904 ----a-w- C:\Windows\SysWow64\msi.dll
2014-10-14 01:49:38 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2014-10-14 01:47:30 146432 ----a-w- C:\Windows\SysWow64\msaudite.dll
2014-10-14 01:46:02 681984 ----a-w- C:\Windows\SysWow64\adtschema.dll
2014-10-10 00:57:42 3198976 ----a-w- C:\Windows\System32\win32k.sys
2014-10-03 02:12:23 310272 ----a-w- C:\Windows\System32\WsmWmiPl.dll
2014-10-03 02:12:23 2020352 ----a-w- C:\Windows\System32\WsmSvc.dll
2014-10-03 02:12:22 346624 ----a-w- C:\Windows\System32\WSManMigrationPlugin.dll
2014-10-03 02:12:22 181248 ----a-w- C:\Windows\System32\WsmAuto.dll
2014-10-03 02:12:00 500224 ----a-w- C:\Windows\System32\AUDIOKSE.dll
2014-10-03 02:11:54 284672 ----a-w- C:\Windows\System32\EncDump.dll
2014-10-03 02:11:51 680960 ----a-w- C:\Windows\System32\audiosrv.dll
2014-10-03 02:11:51 440832 ----a-w- C:\Windows\System32\AudioEng.dll
2014-10-03 02:11:51 296448 ----a-w- C:\Windows\System32\AudioSes.dll
2014-10-03 02:11:49 266240 ----a-w- C:\Windows\System32\WSManHTTPConfig.exe
2014-10-03 01:45:03 248832 ----a-w- C:\Windows\SysWow64\WSManMigrationPlugin.dll
2014-10-03 01:45:03 214016 ----a-w- C:\Windows\SysWow64\WsmWmiPl.dll
2014-10-03 01:45:03 145920 ----a-w- C:\Windows\SysWow64\WsmAuto.dll
2014-10-03 01:45:03 1177088 ----a-w- C:\Windows\SysWow64\WsmSvc.dll
2014-10-03 01:44:42 442880 ----a-w- C:\Windows\SysWow64\AUDIOKSE.dll
2014-10-03 01:44:26 374784 ----a-w- C:\Windows\SysWow64\AudioEng.dll
2014-10-03 01:44:26 195584 ----a-w- C:\Windows\SysWow64\AudioSes.dll
2014-10-03 01:44:25 198656 ----a-w- C:\Windows\SysWow64\WSManHTTPConfig.exe
2014-09-25 02:08:38 371712 ----a-w- C:\Windows\System32\qdvd.dll
2014-09-25 01:40:50 519680 ----a-w- C:\Windows\SysWow64\qdvd.dll
2014-09-19 09:42:52 210944 ----a-w- C:\Windows\System32\wdigest.dll
2014-09-19 09:42:51 86528 ----a-w- C:\Windows\System32\TSpkg.dll
2014-09-19 09:42:49 342016 ----a-w- C:\Windows\System32\schannel.dll
2014-09-19 09:42:47 314880 ----a-w- C:\Windows\System32\msv1_0.dll
2014-09-19 09:42:47 309760 ----a-w- C:\Windows\System32\ncrypt.dll
2014-09-19 09:42:41 22016 ----a-w- C:\Windows\System32\credssp.dll
2014-09-19 09:23:55 172032 ----a-w- C:\Windows\SysWow64\wdigest.dll
2014-09-19 09:23:52 65536 ----a-w- C:\Windows\SysWow64\TSpkg.dll
2014-09-19 09:23:49 248832 ----a-w- C:\Windows\SysWow64\schannel.dll
2014-09-19 09:23:46 221184 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2014-09-19 09:23:45 259584 ----a-w- C:\Windows\SysWow64\msv1_0.dll
2014-09-19 09:23:36 17408 ----a-w- C:\Windows\SysWow64\credssp.dll
.
============= FINISH: 12:15:35,24 ===============
.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Professional
Boot Device: \Device\HarddiskVolume1
Install Date: 16.11.2014 16:21:58
System Uptime: 14.12.2014 11:54:11 (1 hours ago)
.
Motherboard: Dell Inc. | | 0HH807
Processor: Intel(R) Pentium(R) D CPU 2.80GHz | Microprocessor | 2793/800mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 74 GiB total, 44,621 GiB free.
D: is FIXED (NTFS) - 932 GiB total, 811,892 GiB free.
E: is CDROM ()
F: is FIXED (NTFS) - 932 GiB total, 357,959 GiB free.
H: is Removable
I: is Removable
J: is Removable
K: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP16: 06.12.2014 17:07:10 - Geplanter Prüfpunkt
RP17: 09.12.2014 12:51:14 - Windows Update
RP18: 11.12.2014 17:04:40 - Windows Update
RP19: 13.12.2014 17:36:22 - Windows Update
.
==== Installed Programs ======================
.
Ad-Aware Web Companion
Adobe Flash Player 15 Plugin
Adobe Reader XI (11.0.10) - Deutsch
Canon MP Navigator EX 2.0
Canon Utilities Solution Menu
CanoScan LiDE 100 Scanner Driver
Cliqz
COMODO Internet Security Premium
Definition Update for Microsoft Office 2010 (KB2899521) 64-Bit Edition
Intel(R) Graphics Media Accelerator Driver
LavasoftTcpService
Microsoft .NET Framework 4.5.1
Microsoft Office Access MUI (German) 2010
Microsoft Office Excel MUI (German) 2010
Microsoft Office Groove MUI (German) 2010
Microsoft Office InfoPath MUI (German) 2010
Microsoft Office Office 32-bit Components 2010
Microsoft Office OneNote MUI (German) 2010
Microsoft Office Outlook MUI (German) 2010
Microsoft Office PowerPoint MUI (German) 2010
Microsoft Office Professional Plus 2010
Microsoft Office Proof (English) 2010
Microsoft Office Proof (French) 2010
Microsoft Office Proof (German) 2010
Microsoft Office Proof (Italian) 2010
Microsoft Office Proofing (German) 2010
Microsoft Office Publisher MUI (German) 2010
Microsoft Office Shared 32-bit MUI (German) 2010
Microsoft Office Shared MUI (German) 2010
Microsoft Office Word MUI (German) 2010
Mozilla Firefox 33.1.1 (x86 de)
Mozilla Maintenance Service
PDF Architect 2
PDF Architect 2 View Module
PDFCreator
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2)
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869)
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107)
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216)
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128)
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2)
Security Update for Microsoft Excel 2010 (KB2910902) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2553154) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2553284) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2687423) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2850016) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2878284) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2880971) 64-Bit Edition
Security Update for Microsoft Office 2010 (KB2881071) 64-Bit Edition
Security Update for Microsoft Word 2010 (KB2899519) 64-Bit Edition
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition
STAMP Remote Client 2.2.3
Update for Microsoft Access 2010 (KB2553446) 64-Bit Edition
Update for Microsoft Excel 2010 (KB2589348) 64-Bit Edition
Update for Microsoft Filter Pack 2.0 (KB2878281) 64-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817369) 64-Bit Edition
Update for Microsoft InfoPath 2010 (KB2817396) 64-Bit Edition
Update for Microsoft Office 2010 (KB2553140) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589298) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589352) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589375) 64-Bit Edition
Update for Microsoft Office 2010 (KB2589386) 64-Bit Edition
Update for Microsoft Office 2010 (KB2597087) 64-Bit Edition
Update for Microsoft Office 2010 (KB2597089) 64-Bit Edition
Update for Microsoft Office 2010 (KB2687275) 64-Bit Edition
Update for Microsoft Office 2010 (KB2794737) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825635) 64-Bit Edition
Update for Microsoft Office 2010 (KB2825640) 64-Bit Edition
Update for Microsoft Office 2010 (KB2837581) 64-Bit Edition
Update for Microsoft Office 2010 (KB2837602) 64-Bit Edition
Update for Microsoft Office 2010 (KB2837606) 64-Bit Edition
Update for Microsoft Office 2010 (KB2883019) 64-Bit Edition
Update for Microsoft Office 2010 (KB2889818) 64-Bit Edition
Update for Microsoft Office 2010 (KB2889828) 64-Bit Edition
Update for Microsoft Office 2010 (KB2910896) 64-Bit Edition
Update for Microsoft OneNote 2010 (KB2597088) 64-Bit Edition
Update for Microsoft Outlook 2010 (KB2687567) 64-Bit Edition
Update for Microsoft PowerPoint 2010 (KB2880517) 64-Bit Edition
Update for Microsoft SharePoint Workspace 2010 (KB2760601) 64-Bit Edition
Update for Microsoft Visio 2010 (KB2880526) 64-Bit Edition
Update for Microsoft Visio Viewer 2010 (KB2837587) 64-Bit Edition
VLC media player
Web Companion
.
==== End Of File ===========================