| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: Ebenfalls DHL Spam Link geöffnet - Wie gehe ich auf Nummer sicher?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
 |
16.01.2014, 22:23
| #1 |
| |  Ebenfalls DHL Spam Link geöffnet - Wie gehe ich auf Nummer sicher? Hallo liebes Trojaner Board Team, Wie schon einige andere User bin auch ich die aktuelle DHL Phishing Mail hereingefallen und habe auf den Link in der Mail geklickt (Browser Firefox), heruntergeladen habe ich jedoch nix. Mein Antivirusprogramm (MSE) findet nix, ich habe Spybot heruntergeladen und er hat zunächst 59 Sachen gefunden (Log siehe unten), hatte aber auch noch nie einen Scan vorher damit gemacht. Seit dem Öffnen des Links vor zwei Tagen verhält sich mein Laptop normal, außer das Chrome relativ langsam läuft (Firefox hatte ich vorsichtshalber gar nicht mehr genutzt). Habe mehrfach mit Spybot gescannt und er findet immer wieder neues, obwohl ich nach jedem Scan bereingt habe. Mittlerweile sind 37 Items in Quarantäne. Kann mir jemand weiterhelfen wie nun vorzugehen ist?  Hier die Log Einträge: Erster Scan: Search results from Spybot - Search & Destroy 15.01.2014 18:36:49 Scan took 00:00:04. 1 items found. Error: Service check: the Services.sbs file is missing. Please use the update to get a new copy! MediaPlex: Tracking cookie (Internet Explorer (Benutzer): Vorname Nachname) (Browser: Cookie, nothing done) --- Spybot - Search & Destroy version: 2.1.18.131 DLL (build: 20130516) --- 2013-09-20 blindman.exe (2.2.18.151) 2013-09-20 explorer.exe (2.2.18.177) 2013-09-20 SDBootCD.exe (2.2.18.109) 2013-09-20 SDCleaner.exe (2.2.18.110) 2013-09-20 SDDelFile.exe (2.2.18.94) 2013-09-20 SDFiles.exe (2.2.18.135) 2013-09-20 SDFileScanHelper.exe (2.2.16.1) 2013-10-15 SDFSSvc.exe (2.2.25.211) 2013-10-10 SDHookHelper.exe (2.3.30.2) 2013-10-10 SDHookInst32.exe (2.3.30.2) 2013-10-10 SDHookInst64.exe (2.3.30.2) 2013-09-20 SDImmunize.exe (2.2.18.130) 2013-05-16 SDLogReport.exe (2.1.18.107) 2013-10-14 SDOnAccess.exe (2.2.25.4) 2013-09-20 SDPESetup.exe (2.2.18.3) 2013-09-20 SDPEStart.exe (2.2.18.86) 2013-09-20 SDPhoneScan.exe (2.2.18.28) 2013-09-20 SDPRE.exe (2.2.18.22) 2013-09-20 SDPrepPos.exe (2.2.18.10) 2013-09-20 SDQuarantine.exe (2.2.18.103) 2013-09-20 SDRootAlyzer.exe (2.2.18.116) 2013-09-20 SDSBIEdit.exe (2.2.18.39) 2013-09-20 SDScan.exe (2.2.18.177) 2013-09-20 SDScript.exe (2.2.18.53) 2013-10-15 SDSettings.exe (2.2.25.138) 2013-09-20 SDShell.exe (2.2.18.2) 2013-09-20 SDShred.exe (2.2.18.107) 2013-09-20 SDSysRepair.exe (2.2.18.101) 2013-09-20 SDTools.exe (2.2.18.150) 2013-07-25 SDTray.exe (2.1.21.129) 2013-09-20 SDUpdate.exe (2.2.18.91) 2013-09-20 SDUpdSvc.exe (2.2.18.76) 2013-09-20 SDWelcome.exe (2.2.21.129) 2013-09-13 SDWSCSvc.exe (2.2.22.2) 2014-01-15 unins000.exe (51.1052.0.0) 1999-12-02 xcacls.exe 2012-08-23 borlndmm.dll (10.0.2288.42451) 2012-09-05 DelZip190.dll (1.9.0.107) 2012-09-10 libeay32.dll (1.0.0.4) 2012-09-10 libssl32.dll (1.0.0.4) 2013-05-16 SDAdvancedCheckLibrary.dll (2.1.18.98) 2013-05-16 SDAV.dll 2013-05-16 SDECon32.dll (2.1.18.113) 2013-05-16 SDECon64.dll (2.1.18.113) 2013-04-05 SDEvents.dll (2.1.16.2) 2013-10-14 SDFileScanLibrary.dll (2.2.25.14) 2013-10-10 SDHook32.dll (2.3.30.2) 2013-10-10 SDHook64.dll (2.3.30.2) 2013-05-16 SDImmunizeLibrary.dll (2.1.18.2) 2013-05-16 SDLicense.dll (2.1.18.0) 2013-05-16 SDLists.dll (2.1.18.4) 2013-05-16 SDResources.dll (2.1.18.7) 2013-05-16 SDScanLibrary.dll (2.1.18.131) 2013-05-16 SDTasks.dll (2.1.18.15) 2013-05-16 SDWinLogon.dll (2.1.18.0) 2012-08-23 sqlite3.dll 2012-09-10 ssleay32.dll (1.0.0.4) 2013-05-16 Tools.dll (2.1.18.36) 2010-08-13 Includes\Cookies.sbi (*) Zweiter Scan: Search results from Spybot - Search & Destroy 15.01.2014 19:28:19 Scan took 00:28:18. 59 items found. Facebook.Messenger: [SBI $63375265] User settings (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Classes\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F} Facebook.Messenger: [SBI $9191B288] User settings (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Classes\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6} Facebook.Messenger: [SBI $6D1029B1] User settings (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Classes\FacebookUpdate.OnDemandCOMClassUser Facebook.Messenger: [SBI $7F45EA00] User settings (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Classes\FacebookUpdate.OnDemandCOMClassUser.1.0 Facebook.Messenger: [SBI $59117437] User settings (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Facebook Facebook.Messenger: [SBI $62F77180] Settings (Registry Key, nothing done) HKEY_CLASSES_ROOT\CLSID\{1FD1FE74-9E3C-4C1C-AEEB-AAB592AD770F} Facebook.Messenger: [SBI $9051916D] Settings (Registry Key, nothing done) HKEY_CLASSES_ROOT\CLSID\{5E71E4F3-E8C7-4906-9626-973E418762B6} Facebook.Messenger: [SBI $573FFD1B] Settings (Registry Key, nothing done) HKEY_CLASSES_ROOT\Interface\{132885F2-8DE9-40F2-BEAE-1B31FDBAB159} Facebook.Messenger: [SBI $BAA66334] Settings (Registry Key, nothing done) HKEY_CLASSES_ROOT\Interface\{3B692A7D-330E-4388-A955-724500AC0BC5} Facebook.Messenger: [SBI $C061D222] Settings (Registry Key, nothing done) HKEY_CLASSES_ROOT\Interface\{649D9E01-9847-4EE9-9145-2CB4BC8298D0} Facebook.Messenger: [SBI $6B188C64] Settings (Registry Key, nothing done) HKEY_CLASSES_ROOT\Interface\{71692661-DCBA-484A-BD41-A39404532B52} Facebook.Messenger: [SBI $D849531E] Settings (Registry Key, nothing done) HKEY_CLASSES_ROOT\Interface\{B72C7377-0AA5-4F52-BDA2-85C4D1DB930E} Facebook.Messenger: [SBI $06D47759] Settings (Registry Key, nothing done) HKEY_CLASSES_ROOT\Interface\{D0843545-5E7C-4C6D-B4E2-05948F759440} Facebook.Messenger: [SBI $917BFFAB] Program directory (Directory, nothing done) C:\Users\Vorname Nachname\AppData\Local\Facebook\ Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\FacebookUpdate.exe Directory.subfile.size=138096 Directory.subfile.md5=2A3FB4C98F139038E23330D2439DB8A4 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\FacebookCrashHandler.exe Directory.subfile.size=138096 Directory.subfile.md5=2A3FB4C98F139038E23330D2439DB8A4 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdate.exe Directory.subfile.size=138096 Directory.subfile.md5=2A3FB4C98F139038E23330D2439DB8A4 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdateHelper.msi Directory.subfile.size=45056 Directory.subfile.md5=6C7DC13EAA26F5542589E7CA49CBE064 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll Directory.subfile.size=686960 Directory.subfile.md5=DB1976563498431B55D1A5D6F0548663 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ar.dll Directory.subfile.size=26480 Directory.subfile.md5=C8289D33FB0EC86BD7FC882BE71FB20B Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bg.dll Directory.subfile.size=29552 Directory.subfile.md5=1DF3B8729A93E47BFB65DAB323701D7A Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bn.dll Directory.subfile.size=28528 Directory.subfile.md5=6EBC5E9B7C81C72828690ECF29D973AD Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ca.dll Directory.subfile.size=29040 Directory.subfile.md5=D54BB1E196E8900532095DA1CD76C1D9 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_cs.dll Directory.subfile.size=28528 Directory.subfile.md5=968657E6EB304D1CA0A35B263A175E4D Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_da.dll Directory.subfile.size=28528 Directory.subfile.md5=5FAF77D629D9621BF814F2DEFE0D515B Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_de.dll Directory.subfile.size=30064 Directory.subfile.md5=BA2B6A0B77A4914AB4AA84A84D0F1B7E Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_el.dll Directory.subfile.size=30576 Directory.subfile.md5=51F32C4FFF609071927E4115E58915F2 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en-GB.dll Directory.subfile.size=27504 Directory.subfile.md5=667BE83397E9967EB744506D1161DD09 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en.dll Directory.subfile.size=27504 Directory.subfile.md5=86B40F6DFD19C74D3C484C7B6D935C85 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es-419.dll Directory.subfile.size=28528 Directory.subfile.md5=486A6C244400A22FF81CF59D49823298 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es.dll Directory.subfile.size=30064 Directory.subfile.md5=127DBEB23CB0D5781A43557049119DF9 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_et.dll Directory.subfile.size=28016 Directory.subfile.md5=B943FE1947167678ABB73D48C610F316 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fa.dll Directory.subfile.size=26992 Directory.subfile.md5=A79883EEBE4FF90285DF2B53C2EE536B Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fi.dll Directory.subfile.size=28528 Directory.subfile.md5=B7B95CCBF34EE526EF38867AE0103A93 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fil.dll Directory.subfile.size=29552 Directory.subfile.md5=01AFD7BDB815EFF88AF2B49D3D683660 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fr.dll Directory.subfile.size=30064 Directory.subfile.md5=6686EDF41ED137D6DB06E19157435F31 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_gu.dll Directory.subfile.size=28528 Directory.subfile.md5=F5FC4933E403ED28CE3CFEA1D39B2E75 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hi.dll Directory.subfile.size=28016 Directory.subfile.md5=BCB98AADB96C4CE4EC90AF8764ED3CA4 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hr.dll Directory.subfile.size=29040 Directory.subfile.md5=DCD4A67252D6CD7D3F220983C4D980A9 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hu.dll Directory.subfile.size=29552 Directory.subfile.md5=34903AAE931C6A98438B1C566DDF946A Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_id.dll Directory.subfile.size=28016 Directory.subfile.md5=52E0FED0DD0CD9F30EBF9275ECC58794 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_is.dll Directory.subfile.size=28016 Directory.subfile.md5=12F0F7E074DE861E49556CF7241904A1 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_it.dll Directory.subfile.size=29552 Directory.subfile.md5=AA92109B9805BA8A7CB481AEC3D5D3E2 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_iw.dll Directory.subfile.size=25456 Directory.subfile.md5=F9284E2BBB3F3B52C1E6E84B444A635C Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ja.dll Directory.subfile.size=23920 Directory.subfile.md5=10AC8A359240F917D4ECA208BCDBF82C Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_kn.dll Directory.subfile.size=28016 Directory.subfile.md5=57F64E09A676C139ABD93A7FA0BBACDB Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ko.dll Directory.subfile.size=23920 Directory.subfile.md5=19DB8692F1C528B7A570E8C6EC1CE345 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lt.dll Directory.subfile.size=28016 Directory.subfile.md5=C66F0B4C6456525918D76528A2F22ACC Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lv.dll Directory.subfile.size=29040 Directory.subfile.md5=717539386DCAF55FE1DA9646BC102B48 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ml.dll Directory.subfile.size=31088 Directory.subfile.md5=B174F59C928DA8D56E6E6D9F346A8C56 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_mr.dll Directory.subfile.size=28016 Directory.subfile.md5=F1442A60ED2E693544E18F8C95258E06 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ms.dll Directory.subfile.size=28016 Directory.subfile.md5=00AD41801A79FA526A178AC9D6A139CE Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_nl.dll Directory.subfile.size=29552 Directory.subfile.md5=1E1D3EDC81A17E70E1C11E98885A7D6F Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_no.dll Directory.subfile.size=28528 Directory.subfile.md5=D9D498178540DA6B0D5074B8EC922ABE Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_or.dll Directory.subfile.size=28528 Directory.subfile.md5=E91883CC41E6D318632994538CCE4F88 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pl.dll Directory.subfile.size=29552 Directory.subfile.md5=D4EAF6C13B0AD5FB25EDBECCCB14DDC2 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-BR.dll Directory.subfile.size=29040 Directory.subfile.md5=2DD42C1087124D68F6EC7082CF584620 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-PT.dll Directory.subfile.size=28528 Directory.subfile.md5=9AF79B5A69DFF96480044899AFB75DD5 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ro.dll Directory.subfile.size=29552 Directory.subfile.md5=719570B062E9B8E1F4992C553F039522 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ru.dll Directory.subfile.size=28016 Directory.subfile.md5=E4C9C753B7CF628E1E49053A6A13060A Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sk.dll Directory.subfile.size=28528 Directory.subfile.md5=B4AC8D61A9C91DA8C4812BABCF55A1BB Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sl.dll Directory.subfile.size=29040 Directory.subfile.md5=75E4F4A7F47B90DC37BFF8E1F503DA7B Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sr.dll Directory.subfile.size=28528 Directory.subfile.md5=1476A0CECCF752478CCAD2E508FB403A Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sv.dll Directory.subfile.size=28016 Directory.subfile.md5=7B4EDD07B64099921D6071005E87E232 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ta.dll Directory.subfile.size=29552 Directory.subfile.md5=5E807FFC4C6AE9C5CAD401C6DD62CD54 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_te.dll Directory.subfile.size=29040 Directory.subfile.md5=B46531AA79A5678A7C0ACBBF0F598508 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_th.dll Directory.subfile.size=26992 Directory.subfile.md5=653DD3C7CF1E11F89B3A96E35C1979C8 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_tr.dll Directory.subfile.size=28528 Directory.subfile.md5=62FED34C2E6140DD58DFEBED611D9B31 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_uk.dll Directory.subfile.size=28528 Directory.subfile.md5=9DB2112CAC28904EAAFEAA230CF42828 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ur.dll Directory.subfile.size=28016 Directory.subfile.md5=E2A06D6B88F81DDBDC2CAFD01356538B Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_vi.dll Directory.subfile.size=27504 Directory.subfile.md5=20DA8B4688FB8EDB629AE5D507B248CA Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-CN.dll Directory.subfile.size=21872 Directory.subfile.md5=5606309FFA53CA24BDDA9434B09B536C Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-TW.dll Directory.subfile.size=21872 Directory.subfile.md5=F55AF9CB5525BF1DDCAA0C6EA8645CE7 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\FacebookVideoCalling Directory.subfile.size=407 Directory.subfile.md5=306CD68B76FB29CC38A4AD58402D3A8C Directory.subfile.filedate=1389129851 Directory.subfile.filedatetext=2014-01-07 22:24:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\shared.lck Directory.subfile.size=0 Directory.subfile.md5=D41D8CD98F00B204E9800998ECF8427E Directory.subfile.filedate=1389129586 Directory.subfile.filedatetext=2014-01-07 22:19:46 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\shared.xml Directory.subfile.size=85904 Directory.subfile.md5=1BC6C2FBF5255076FF8C83AFFB3E3548 Directory.subfile.filedate=1389129851 Directory.subfile.filedatetext=2014-01-07 22:24:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe Directory.subfile.size=10754360 Directory.subfile.md5=9E41A093C5AF01F709187B54458171EA Directory.subfile.filedate=1383731984 Directory.subfile.filedatetext=2013-11-06 10:59:44 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Skype\FacebookVideoCallingProxy.exe Directory.subfile.size=764216 Directory.subfile.md5=9FC9045681C60A817C645CC7B12871B7 Directory.subfile.filedate=1383731986 Directory.subfile.filedatetext=2013-11-06 10:59:46 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll Directory.subfile.size=1091384 Directory.subfile.md5=FF0D6F82A0EC13952E83B9439100E45D Directory.subfile.filedate=1383731982 Directory.subfile.filedatetext=2013-11-06 10:59:42 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Skype\third-party_attributions.txt Directory.subfile.size=7368 Directory.subfile.md5=DCE4889F1D3B1B78191C9577D2911701 Directory.subfile.filedate=1383731358 Directory.subfile.filedatetext=2013-11-06 10:49:18 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\call256.dbb Directory.subfile.size=673 Directory.subfile.md5=94E0E5B2B2AB566EA5F4EC7BF98D61E2 Directory.subfile.filedate=1389129846 Directory.subfile.filedatetext=2014-01-07 22:24:06 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\callmember256.dbb Directory.subfile.size=0 Directory.subfile.md5=D41D8CD98F00B204E9800998ECF8427E Directory.subfile.filedate=1389129741 Directory.subfile.filedatetext=2014-01-07 22:22:21 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\callmember512.dbb Directory.subfile.size=1356 Directory.subfile.md5=AC978E29F88BC15ACB3736A91A27B2C7 Directory.subfile.filedate=1389129846 Directory.subfile.filedatetext=2014-01-07 22:24:06 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\chatmsg1024.dbb Directory.subfile.size=6059 Directory.subfile.md5=6983C7AFC625CA0B73DACC6CB99F5ABD Directory.subfile.filedate=1389129846 Directory.subfile.filedatetext=2014-01-07 22:24:06 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\config.lck Directory.subfile.size=0 Directory.subfile.md5=D41D8CD98F00B204E9800998ECF8427E Directory.subfile.filedate=1389129591 Directory.subfile.filedatetext=2014-01-07 22:19:51 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\config.xml Directory.subfile.size=2334 Directory.subfile.md5=663C8339A11271617BBA2D744CF4DE6B Directory.subfile.filedate=1389129846 Directory.subfile.filedatetext=2014-01-07 22:24:06 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\contactgroup256.dbb Directory.subfile.size=3189 Directory.subfile.md5=46D139D6B7916B0F816CFFB784245B64 Directory.subfile.filedate=1389129612 Directory.subfile.filedatetext=2014-01-07 22:20:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\conversation256.dbb Directory.subfile.size=201 Directory.subfile.md5=7293B18B85B7AC71D54E45BF4DC3C18C Directory.subfile.filedate=1389129846 Directory.subfile.filedatetext=2014-01-07 22:24:06 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\index2.dat Directory.subfile.size=480 Directory.subfile.md5=C39F7E514B2AB7C7822595069A61FD8A Directory.subfile.filedate=1389129846 Directory.subfile.filedatetext=2014-01-07 22:24:06 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\main.lock Directory.subfile.size=0 Directory.subfile.md5=D41D8CD98F00B204E9800998ECF8427E Directory.subfile.filedate=1389129591 Directory.subfile.filedatetext=2014-01-07 22:19:51 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\participant256.dbb Directory.subfile.size=363 Directory.subfile.md5=9D7763CD1D260585856C759B06C7C274 Directory.subfile.filedate=1389129612 Directory.subfile.filedatetext=2014-01-07 22:20:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Common\fb#3aac488v7m0zkvs2yeslpiry48doblez8_ezu1ysttxxfv3qs4swlupbc7lpdhaxw61wc\profile256.dbb Directory.subfile.size=98 Directory.subfile.md5=DB415E9C869C47575B7F7E8383E4A6EC Directory.subfile.filedate=1389129846 Directory.subfile.filedatetext=2014-01-07 22:24:06 Facebook.Messenger: [SBI $21F6393C] Program directory (Directory, nothing done) C:\Users\Vorname Nachname\AppData\Local\Facebook\CrashReports\ Facebook.Messenger: [SBI $05D5B32B] Program directory (Directory, nothing done) C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\ Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\FacebookUpdate.exe Directory.subfile.size=138096 Directory.subfile.md5=2A3FB4C98F139038E23330D2439DB8A4 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\FacebookCrashHandler.exe Directory.subfile.size=138096 Directory.subfile.md5=2A3FB4C98F139038E23330D2439DB8A4 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdate.exe Directory.subfile.size=138096 Directory.subfile.md5=2A3FB4C98F139038E23330D2439DB8A4 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\FacebookUpdateHelper.msi Directory.subfile.size=45056 Directory.subfile.md5=6C7DC13EAA26F5542589E7CA49CBE064 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdate.dll Directory.subfile.size=686960 Directory.subfile.md5=DB1976563498431B55D1A5D6F0548663 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ar.dll Directory.subfile.size=26480 Directory.subfile.md5=C8289D33FB0EC86BD7FC882BE71FB20B Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bg.dll Directory.subfile.size=29552 Directory.subfile.md5=1DF3B8729A93E47BFB65DAB323701D7A Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_bn.dll Directory.subfile.size=28528 Directory.subfile.md5=6EBC5E9B7C81C72828690ECF29D973AD Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ca.dll Directory.subfile.size=29040 Directory.subfile.md5=D54BB1E196E8900532095DA1CD76C1D9 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_cs.dll Directory.subfile.size=28528 Directory.subfile.md5=968657E6EB304D1CA0A35B263A175E4D Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_da.dll Directory.subfile.size=28528 Directory.subfile.md5=5FAF77D629D9621BF814F2DEFE0D515B Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_de.dll Directory.subfile.size=30064 Directory.subfile.md5=BA2B6A0B77A4914AB4AA84A84D0F1B7E Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_el.dll Directory.subfile.size=30576 Directory.subfile.md5=51F32C4FFF609071927E4115E58915F2 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en-GB.dll Directory.subfile.size=27504 Directory.subfile.md5=667BE83397E9967EB744506D1161DD09 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_en.dll Directory.subfile.size=27504 Directory.subfile.md5=86B40F6DFD19C74D3C484C7B6D935C85 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es-419.dll Directory.subfile.size=28528 Directory.subfile.md5=486A6C244400A22FF81CF59D49823298 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_es.dll Directory.subfile.size=30064 Directory.subfile.md5=127DBEB23CB0D5781A43557049119DF9 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_et.dll Directory.subfile.size=28016 Directory.subfile.md5=B943FE1947167678ABB73D48C610F316 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fa.dll Directory.subfile.size=26992 Directory.subfile.md5=A79883EEBE4FF90285DF2B53C2EE536B Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fi.dll Directory.subfile.size=28528 Directory.subfile.md5=B7B95CCBF34EE526EF38867AE0103A93 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fil.dll Directory.subfile.size=29552 Directory.subfile.md5=01AFD7BDB815EFF88AF2B49D3D683660 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_fr.dll Directory.subfile.size=30064 Directory.subfile.md5=6686EDF41ED137D6DB06E19157435F31 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_gu.dll Directory.subfile.size=28528 Directory.subfile.md5=F5FC4933E403ED28CE3CFEA1D39B2E75 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hi.dll Directory.subfile.size=28016 Directory.subfile.md5=BCB98AADB96C4CE4EC90AF8764ED3CA4 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hr.dll Directory.subfile.size=29040 Directory.subfile.md5=DCD4A67252D6CD7D3F220983C4D980A9 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_hu.dll Directory.subfile.size=29552 Directory.subfile.md5=34903AAE931C6A98438B1C566DDF946A Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:11 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_id.dll Directory.subfile.size=28016 Directory.subfile.md5=52E0FED0DD0CD9F30EBF9275ECC58794 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_is.dll Directory.subfile.size=28016 Directory.subfile.md5=12F0F7E074DE861E49556CF7241904A1 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_it.dll Directory.subfile.size=29552 Directory.subfile.md5=AA92109B9805BA8A7CB481AEC3D5D3E2 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_iw.dll Directory.subfile.size=25456 Directory.subfile.md5=F9284E2BBB3F3B52C1E6E84B444A635C Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ja.dll Directory.subfile.size=23920 Directory.subfile.md5=10AC8A359240F917D4ECA208BCDBF82C Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_kn.dll Directory.subfile.size=28016 Directory.subfile.md5=57F64E09A676C139ABD93A7FA0BBACDB Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ko.dll Directory.subfile.size=23920 Directory.subfile.md5=19DB8692F1C528B7A570E8C6EC1CE345 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lt.dll Directory.subfile.size=28016 Directory.subfile.md5=C66F0B4C6456525918D76528A2F22ACC Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_lv.dll Directory.subfile.size=29040 Directory.subfile.md5=717539386DCAF55FE1DA9646BC102B48 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ml.dll Directory.subfile.size=31088 Directory.subfile.md5=B174F59C928DA8D56E6E6D9F346A8C56 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_mr.dll Directory.subfile.size=28016 Directory.subfile.md5=F1442A60ED2E693544E18F8C95258E06 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ms.dll Directory.subfile.size=28016 Directory.subfile.md5=00AD41801A79FA526A178AC9D6A139CE Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_nl.dll Directory.subfile.size=29552 Directory.subfile.md5=1E1D3EDC81A17E70E1C11E98885A7D6F Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_no.dll Directory.subfile.size=28528 Directory.subfile.md5=D9D498178540DA6B0D5074B8EC922ABE Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_or.dll Directory.subfile.size=28528 Directory.subfile.md5=E91883CC41E6D318632994538CCE4F88 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pl.dll Directory.subfile.size=29552 Directory.subfile.md5=D4EAF6C13B0AD5FB25EDBECCCB14DDC2 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-BR.dll Directory.subfile.size=29040 Directory.subfile.md5=2DD42C1087124D68F6EC7082CF584620 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_pt-PT.dll Directory.subfile.size=28528 Directory.subfile.md5=9AF79B5A69DFF96480044899AFB75DD5 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ro.dll Directory.subfile.size=29552 Directory.subfile.md5=719570B062E9B8E1F4992C553F039522 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ru.dll Directory.subfile.size=28016 Directory.subfile.md5=E4C9C753B7CF628E1E49053A6A13060A Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sk.dll Directory.subfile.size=28528 Directory.subfile.md5=B4AC8D61A9C91DA8C4812BABCF55A1BB Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sl.dll Directory.subfile.size=29040 Directory.subfile.md5=75E4F4A7F47B90DC37BFF8E1F503DA7B Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sr.dll Directory.subfile.size=28528 Directory.subfile.md5=1476A0CECCF752478CCAD2E508FB403A Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_sv.dll Directory.subfile.size=28016 Directory.subfile.md5=7B4EDD07B64099921D6071005E87E232 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ta.dll Directory.subfile.size=29552 Directory.subfile.md5=5E807FFC4C6AE9C5CAD401C6DD62CD54 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_te.dll Directory.subfile.size=29040 Directory.subfile.md5=B46531AA79A5678A7C0ACBBF0F598508 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_th.dll Directory.subfile.size=26992 Directory.subfile.md5=653DD3C7CF1E11F89B3A96E35C1979C8 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_tr.dll Directory.subfile.size=28528 Directory.subfile.md5=62FED34C2E6140DD58DFEBED611D9B31 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_uk.dll Directory.subfile.size=28528 Directory.subfile.md5=9DB2112CAC28904EAAFEAA230CF42828 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_ur.dll Directory.subfile.size=28016 Directory.subfile.md5=E2A06D6B88F81DDBDC2CAFD01356538B Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_vi.dll Directory.subfile.size=27504 Directory.subfile.md5=20DA8B4688FB8EDB629AE5D507B248CA Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-CN.dll Directory.subfile.size=21872 Directory.subfile.md5=5606309FFA53CA24BDDA9434B09B536C Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Directory.subfile=C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\1.2.205.0\goopdateres_zh-TW.dll Directory.subfile.size=21872 Directory.subfile.md5=F55AF9CB5525BF1DDCAA0C6EA8645CE7 Directory.subfile.filedate=1389129732 Directory.subfile.filedatetext=2014-01-07 22:22:12 Facebook.Messenger: [SBI $CC858234] Program directory (Directory, nothing done) C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\Download\ Facebook.Messenger: [SBI $EA825272] Program directory (Directory, nothing done) C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\Manifest\ Facebook.Messenger: [SBI $EB8149C2] Program directory (Directory, nothing done) C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\Manifest\Initial\ MediaPlex: [SBI $4E2AF2AC] Tracking cookie (Internet Explorer (Benutzer): Vorname Nachname) (Browser: Cookie, nothing done) Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Internet Explorer\TypedURLs Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done) HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done) HKEY_USERS\PE_C_DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done) HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done) HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done) HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent MS Management Console: [SBI $ECD50EAD] Recent command list (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Microsoft Management Console\Recent File List MS Media Player: [SBI $5C51E349] Client ID (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\MediaPlayer\Player\Settings\Client ID MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done) HKEY_USERS\.DEFAULT\Software\Microsoft\Direct3D\MostRecentApplication\Name MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Direct3D\MostRecentApplication\Name MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done) HKEY_USERS\S-1-5-18\Software\Microsoft\Direct3D\MostRecentApplication\Name MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id MS Office 12.0: [SBI $31A61065] Internet history (Registry Value, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Office\12.0\Common\Internet\UseRWHlinkNavigation MS Office 12.0 (Excel): [SBI $546355D5] Recent Cartel List (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Office\12.0\Excel\File MRU MS Office 12.0 (PowerPoint): [SBI $242E8728] Recent Slideshow List (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Office\12.0\PowerPoint\File MRU MS Office 12.0 (Word): [SBI $E357B233] Recent Document List (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Office\12.0\Word\File MRU MS Paint: [SBI $07867C39] Recent file list (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Paint\Recent File List MS Wordpad: [SBI $4C02334D] Recent file list (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Wordpad\Recent File List Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources Windows.OpenWith: [SBI $48691F6C] Open with list - .ASD extension (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ASD\OpenWithList Windows.OpenWith: [SBI $F7204896] Open with list - .AVI extension (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList Windows.OpenWith: [SBI $A1C94E79] Open with list - .BMP extension (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BMP\OpenWithList Windows.OpenWith: [SBI $ECC28BDF] Open with list - .CSV extension (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CSV\OpenWithList Windows Explorer: [SBI $AA0766B5] Stream history (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StreamMRU Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs Windows Media SDK: [SBI $37AAEDE6] Computer name (Registry Change, nothing done) HKEY_USERS\S-1-5-20\Software\Microsoft\Windows Media\WMSDK\General\ComputerName Windows Media SDK: [SBI $37AAEDE6] Computer name (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows Media\WMSDK\General\ComputerName Windows Media SDK: [SBI $CAA58B6E] Unique ID (Registry Change, nothing done) HKEY_USERS\S-1-5-20\Software\Microsoft\Windows Media\WMSDK\General\UniqueID Windows Media SDK: [SBI $CAA58B6E] Unique ID (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows Media\WMSDK\General\UniqueID Windows Media SDK: [SBI $BACCD0DA] Volume serial number (Registry Value, nothing done) HKEY_USERS\S-1-5-20\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber Windows Media SDK: [SBI $BACCD0DA] Volume serial number (Registry Value, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows Media\WMSDK\General\VolumeSerialNumber Cookie: [SBI $49804B54] Browser: Cookie (94) (Browser: Cookie, nothing done) Cache: [SBI $49804B54] Browser: Cache (914) (Browser: Cache, nothing done) Verlauf: [SBI $49804B54] Browser: History (153) (Browser: History, nothing done) --- Spybot - Search & Destroy version: 2.1.18.131 DLL (build: 20130516) --- 2013-09-20 blindman.exe (2.2.18.151) 2013-09-20 explorer.exe (2.2.18.177) 2013-09-20 SDBootCD.exe (2.2.18.109) 2013-09-20 SDCleaner.exe (2.2.18.110) 2013-09-20 SDDelFile.exe (2.2.18.94) 2013-06-18 SDDisableProxy.exe 2013-09-20 SDFiles.exe (2.2.18.135) 2013-09-20 SDFileScanHelper.exe (2.2.16.1) 2013-10-15 SDFSSvc.exe (2.2.25.211) 2013-10-10 SDHookHelper.exe (2.3.30.2) 2013-10-10 SDHookInst32.exe (2.3.30.2) 2013-10-10 SDHookInst64.exe (2.3.30.2) 2013-09-20 SDImmunize.exe (2.2.18.130) 2013-05-16 SDLogReport.exe (2.1.18.107) 2013-10-14 SDOnAccess.exe (2.2.25.4) 2013-09-20 SDPESetup.exe (2.2.18.3) 2013-09-20 SDPEStart.exe (2.2.18.86) 2013-09-20 SDPhoneScan.exe (2.2.18.28) 2013-09-20 SDPRE.exe (2.2.18.22) 2013-09-20 SDPrepPos.exe (2.2.18.10) 2013-09-20 SDQuarantine.exe (2.2.18.103) 2013-09-20 SDRootAlyzer.exe (2.2.18.116) 2013-09-20 SDSBIEdit.exe (2.2.18.39) 2013-09-20 SDScan.exe (2.2.18.177) 2013-09-20 SDScript.exe (2.2.18.53) 2013-10-15 SDSettings.exe (2.2.25.138) 2013-09-20 SDShell.exe (2.2.18.2) 2013-09-20 SDShred.exe (2.2.18.107) 2013-09-20 SDSysRepair.exe (2.2.18.101) 2013-09-20 SDTools.exe (2.2.18.150) 2013-07-25 SDTray.exe (2.1.21.129) 2013-09-20 SDUpdate.exe (2.2.18.91) 2013-09-20 SDUpdSvc.exe (2.2.18.76) 2013-09-20 SDWelcome.exe (2.2.21.129) 2013-09-13 SDWSCSvc.exe (2.2.22.2) 2013-06-19 spybotsd2-translation-frx.exe 2014-01-15 unins000.exe (51.1052.0.0) 1999-12-02 xcacls.exe 2012-08-23 borlndmm.dll (10.0.2288.42451) 2012-09-05 DelZip190.dll (1.9.0.107) 2012-09-10 libeay32.dll (1.0.0.4) 2012-09-10 libssl32.dll (1.0.0.4) 2013-05-16 SDAdvancedCheckLibrary.dll (2.1.18.98) 2013-05-16 SDAV.dll 2013-05-16 SDECon32.dll (2.1.18.113) 2013-05-16 SDECon64.dll (2.1.18.113) 2013-04-05 SDEvents.dll (2.1.16.2) 2013-10-14 SDFileScanLibrary.dll (2.2.25.14) 2013-10-10 SDHook32.dll (2.3.30.2) 2013-10-10 SDHook64.dll (2.3.30.2) 2013-05-16 SDImmunizeLibrary.dll (2.1.18.2) 2013-05-16 SDLicense.dll (2.1.18.0) 2013-05-16 SDLists.dll (2.1.18.4) 2013-05-16 SDResources.dll (2.1.18.7) 2013-05-16 SDScanLibrary.dll (2.1.18.131) 2013-05-16 SDTasks.dll (2.1.18.15) 2013-05-16 SDWinLogon.dll (2.1.18.0) 2012-08-23 sqlite3.dll 2012-09-10 ssleay32.dll (1.0.0.4) 2013-05-16 Tools.dll (2.1.18.36) 2014-01-08 Includes\Adware-000.sbi (*) 2014-01-08 Includes\Adware-001.sbi (*) 2014-01-14 Includes\Adware-C.sbi (*) 2014-01-08 Includes\Adware.sbi (*) 2014-01-08 Includes\AdwareC.sbi (*) 2010-08-13 Includes\Cookies.sbi (*) 2014-01-08 Includes\Dialer-000.sbi (*) 2014-01-08 Includes\Dialer-001.sbi (*) 2014-01-08 Includes\Dialer-C.sbi (*) 2014-01-08 Includes\Dialer.sbi (*) 2014-01-08 Includes\DialerC.sbi (*) 2012-11-14 Includes\HeavyDuty.sbi (*) 2014-01-08 Includes\Hijackers-000.sbi (*) 2014-01-08 Includes\Hijackers-001.sbi (*) 2014-01-08 Includes\Hijackers-C.sbi (*) 2014-01-08 Includes\Hijackers.sbi (*) 2014-01-08 Includes\HijackersC.sbi (*) 2014-01-08 Includes\iPhone-000.sbi (*) 2014-01-08 Includes\iPhone.sbi (*) 2014-01-08 Includes\Keyloggers-000.sbi (*) 2014-01-08 Includes\Keyloggers-C.sbi (*) 2014-01-08 Includes\Keyloggers.sbi (*) 2014-01-08 Includes\KeyloggersC.sbi (*) 2014-01-14 Includes\Malware-C.sbi (*) 2013-05-29 Includes\Malware.sbi (*) 2013-12-23 Includes\MalwareC.sbi (*) 2014-01-15 Includes\PUPS-000.sbi (*) 2014-01-15 Includes\PUPS-001.sbi (*) 2014-01-15 Includes\PUPS-002.sbi (*) 2014-01-14 Includes\PUPS-C.sbi (*) 2012-11-14 Includes\PUPS.sbi (*) 2014-01-07 Includes\PUPSC.sbi (*) 2014-01-08 Includes\Security-000.sbi (*) 2014-01-08 Includes\Security-C.sbi (*) 2014-01-08 Includes\Security.sbi (*) 2014-01-08 Includes\SecurityC.sbi (*) 2014-01-08 Includes\Spyware-000.sbi (*) 2014-01-08 Includes\Spyware-001.sbi (*) 2014-01-08 Includes\Spyware-C.sbi (*) 2014-01-08 Includes\Spyware.sbi (*) 2014-01-08 Includes\SpywareC.sbi (*) 2011-06-07 Includes\Tracks.sbi (*) 2012-11-19 Includes\Tracks.uti (*) 2014-01-15 Includes\Trojans-000.sbi (*) 2014-01-15 Includes\Trojans-001.sbi (*) 2014-01-15 Includes\Trojans-002.sbi (*) 2014-01-15 Includes\Trojans-003.sbi (*) 2014-01-15 Includes\Trojans-004.sbi (*) 2014-01-15 Includes\Trojans-005.sbi (*) 2014-01-15 Includes\Trojans-006.sbi (*) 2014-01-15 Includes\Trojans-007.sbi (*) 2014-01-15 Includes\Trojans-008.sbi (*) 2014-01-15 Includes\Trojans-009.sbi (*) 2014-01-14 Includes\Trojans-C.sbi (*) 2014-01-15 Includes\Trojans-OG-000.sbi (*) 2014-01-15 Includes\Trojans-TD-000.sbi (*) 2014-01-15 Includes\Trojans-VM-000.sbi (*) 2014-01-15 Includes\Trojans-VM-001.sbi (*) 2014-01-15 Includes\Trojans-VM-002.sbi (*) 2014-01-15 Includes\Trojans-VM-003.sbi (*) 2014-01-15 Includes\Trojans-VM-004.sbi (*) 2014-01-15 Includes\Trojans-VM-005.sbi (*) 2014-01-15 Includes\Trojans-VM-006.sbi (*) 2014-01-15 Includes\Trojans-VM-007.sbi (*) 2014-01-15 Includes\Trojans-VM-008.sbi (*) 2014-01-15 Includes\Trojans-VM-009.sbi (*) 2014-01-15 Includes\Trojans-VM-010.sbi (*) 2014-01-15 Includes\Trojans-VM-011.sbi (*) 2014-01-15 Includes\Trojans-VM-012.sbi (*) 2014-01-15 Includes\Trojans-VM-013.sbi (*) 2014-01-15 Includes\Trojans-VM-014.sbi (*) 2014-01-15 Includes\Trojans-VM-015.sbi (*) 2014-01-15 Includes\Trojans-VM-016.sbi (*) 2014-01-15 Includes\Trojans-VM-017.sbi (*) 2014-01-15 Includes\Trojans-VM-018.sbi (*) 2014-01-15 Includes\Trojans-VM-019.sbi (*) 2014-01-15 Includes\Trojans-VM-020.sbi (*) 2014-01-15 Includes\Trojans-VM-021.sbi (*) 2014-01-15 Includes\Trojans-VM-022.sbi (*) 2014-01-15 Includes\Trojans-VM-023.sbi (*) 2014-01-15 Includes\Trojans-VM-024.sbi (*) 2014-01-15 Includes\Trojans-ZB-000.sbi (*) 2014-01-15 Includes\Trojans-ZL-000.sbi (*) 2014-01-09 Includes\Trojans.sbi (*) 2014-01-15 Includes\TrojansC-04.sbi (*) 2014-01-09 Includes\TrojansC.sbi (*) Dritter Scan: Search results from Spybot - Search & Destroy 15.01.2014 20:07:25 Scan took 00:25:25. 5 items found. MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources Cache: [SBI $49804B54] Browser: Cache (1) (Browser: Cache, nothing done) --- Spybot - Search & Destroy version: 2.1.18.131 DLL (build: 20130516) --- 2013-09-20 blindman.exe (2.2.18.151) 2013-09-20 explorer.exe (2.2.18.177) 2013-09-20 SDBootCD.exe (2.2.18.109) 2013-09-20 SDCleaner.exe (2.2.18.110) 2013-09-20 SDDelFile.exe (2.2.18.94) 2013-06-18 SDDisableProxy.exe 2013-09-20 SDFiles.exe (2.2.18.135) 2013-09-20 SDFileScanHelper.exe (2.2.16.1) 2013-10-15 SDFSSvc.exe (2.2.25.211) 2013-10-10 SDHookHelper.exe (2.3.30.2) 2013-10-10 SDHookInst32.exe (2.3.30.2) 2013-10-10 SDHookInst64.exe (2.3.30.2) 2013-09-20 SDImmunize.exe (2.2.18.130) 2013-05-16 SDLogReport.exe (2.1.18.107) 2013-10-14 SDOnAccess.exe (2.2.25.4) 2013-09-20 SDPESetup.exe (2.2.18.3) 2013-09-20 SDPEStart.exe (2.2.18.86) 2013-09-20 SDPhoneScan.exe (2.2.18.28) 2013-09-20 SDPRE.exe (2.2.18.22) 2013-09-20 SDPrepPos.exe (2.2.18.10) 2013-09-20 SDQuarantine.exe (2.2.18.103) 2013-09-20 SDRootAlyzer.exe (2.2.18.116) 2013-09-20 SDSBIEdit.exe (2.2.18.39) 2013-09-20 SDScan.exe (2.2.18.177) 2013-09-20 SDScript.exe (2.2.18.53) 2013-10-15 SDSettings.exe (2.2.25.138) 2013-09-20 SDShell.exe (2.2.18.2) 2013-09-20 SDShred.exe (2.2.18.107) 2013-09-20 SDSysRepair.exe (2.2.18.101) 2013-09-20 SDTools.exe (2.2.18.150) 2013-07-25 SDTray.exe (2.1.21.129) 2013-09-20 SDUpdate.exe (2.2.18.91) 2013-09-20 SDUpdSvc.exe (2.2.18.76) 2013-09-20 SDWelcome.exe (2.2.21.129) 2013-09-13 SDWSCSvc.exe (2.2.22.2) 2013-06-19 spybotsd2-translation-frx.exe 2014-01-15 unins000.exe (51.1052.0.0) 1999-12-02 xcacls.exe 2012-08-23 borlndmm.dll (10.0.2288.42451) 2012-09-05 DelZip190.dll (1.9.0.107) 2012-09-10 libeay32.dll (1.0.0.4) 2012-09-10 libssl32.dll (1.0.0.4) 2013-05-16 SDAdvancedCheckLibrary.dll (2.1.18.98) 2013-05-16 SDAV.dll 2013-05-16 SDECon32.dll (2.1.18.113) 2013-05-16 SDECon64.dll (2.1.18.113) 2013-04-05 SDEvents.dll (2.1.16.2) 2013-10-14 SDFileScanLibrary.dll (2.2.25.14) 2013-10-10 SDHook32.dll (2.3.30.2) 2013-10-10 SDHook64.dll (2.3.30.2) 2013-05-16 SDImmunizeLibrary.dll (2.1.18.2) 2013-05-16 SDLicense.dll (2.1.18.0) 2013-05-16 SDLists.dll (2.1.18.4) 2013-05-16 SDResources.dll (2.1.18.7) 2013-05-16 SDScanLibrary.dll (2.1.18.131) 2013-05-16 SDTasks.dll (2.1.18.15) 2013-05-16 SDWinLogon.dll (2.1.18.0) 2012-08-23 sqlite3.dll 2012-09-10 ssleay32.dll (1.0.0.4) 2013-05-16 Tools.dll (2.1.18.36) 2014-01-08 Includes\Adware-000.sbi (*) 2014-01-08 Includes\Adware-001.sbi (*) 2014-01-14 Includes\Adware-C.sbi (*) 2014-01-08 Includes\Adware.sbi (*) 2014-01-08 Includes\AdwareC.sbi (*) 2010-08-13 Includes\Cookies.sbi (*) 2014-01-08 Includes\Dialer-000.sbi (*) 2014-01-08 Includes\Dialer-001.sbi (*) 2014-01-08 Includes\Dialer-C.sbi (*) 2014-01-08 Includes\Dialer.sbi (*) 2014-01-08 Includes\DialerC.sbi (*) 2012-11-14 Includes\HeavyDuty.sbi (*) 2014-01-08 Includes\Hijackers-000.sbi (*) 2014-01-08 Includes\Hijackers-001.sbi (*) 2014-01-08 Includes\Hijackers-C.sbi (*) 2014-01-08 Includes\Hijackers.sbi (*) 2014-01-08 Includes\HijackersC.sbi (*) 2014-01-08 Includes\iPhone-000.sbi (*) 2014-01-08 Includes\iPhone.sbi (*) 2014-01-08 Includes\Keyloggers-000.sbi (*) 2014-01-08 Includes\Keyloggers-C.sbi (*) 2014-01-08 Includes\Keyloggers.sbi (*) 2014-01-08 Includes\KeyloggersC.sbi (*) 2014-01-14 Includes\Malware-C.sbi (*) 2013-05-29 Includes\Malware.sbi (*) 2013-12-23 Includes\MalwareC.sbi (*) 2014-01-15 Includes\PUPS-000.sbi (*) 2014-01-15 Includes\PUPS-001.sbi (*) 2014-01-15 Includes\PUPS-002.sbi (*) 2014-01-14 Includes\PUPS-C.sbi (*) 2012-11-14 Includes\PUPS.sbi (*) 2014-01-07 Includes\PUPSC.sbi (*) 2014-01-08 Includes\Security-000.sbi (*) 2014-01-08 Includes\Security-C.sbi (*) 2014-01-08 Includes\Security.sbi (*) 2014-01-08 Includes\SecurityC.sbi (*) 2014-01-08 Includes\Spyware-000.sbi (*) 2014-01-08 Includes\Spyware-001.sbi (*) 2014-01-08 Includes\Spyware-C.sbi (*) 2014-01-08 Includes\Spyware.sbi (*) 2014-01-08 Includes\SpywareC.sbi (*) 2011-06-07 Includes\Tracks.sbi (*) 2012-11-19 Includes\Tracks.uti (*) 2014-01-15 Includes\Trojans-000.sbi (*) 2014-01-15 Includes\Trojans-001.sbi (*) 2014-01-15 Includes\Trojans-002.sbi (*) 2014-01-15 Includes\Trojans-003.sbi (*) 2014-01-15 Includes\Trojans-004.sbi (*) 2014-01-15 Includes\Trojans-005.sbi (*) 2014-01-15 Includes\Trojans-006.sbi (*) 2014-01-15 Includes\Trojans-007.sbi (*) 2014-01-15 Includes\Trojans-008.sbi (*) 2014-01-15 Includes\Trojans-009.sbi (*) 2014-01-14 Includes\Trojans-C.sbi (*) 2014-01-15 Includes\Trojans-OG-000.sbi (*) 2014-01-15 Includes\Trojans-TD-000.sbi (*) 2014-01-15 Includes\Trojans-VM-000.sbi (*) 2014-01-15 Includes\Trojans-VM-001.sbi (*) 2014-01-15 Includes\Trojans-VM-002.sbi (*) 2014-01-15 Includes\Trojans-VM-003.sbi (*) 2014-01-15 Includes\Trojans-VM-004.sbi (*) 2014-01-15 Includes\Trojans-VM-005.sbi (*) 2014-01-15 Includes\Trojans-VM-006.sbi (*) 2014-01-15 Includes\Trojans-VM-007.sbi (*) 2014-01-15 Includes\Trojans-VM-008.sbi (*) 2014-01-15 Includes\Trojans-VM-009.sbi (*) 2014-01-15 Includes\Trojans-VM-010.sbi (*) 2014-01-15 Includes\Trojans-VM-011.sbi (*) 2014-01-15 Includes\Trojans-VM-012.sbi (*) 2014-01-15 Includes\Trojans-VM-013.sbi (*) 2014-01-15 Includes\Trojans-VM-014.sbi (*) 2014-01-15 Includes\Trojans-VM-015.sbi (*) 2014-01-15 Includes\Trojans-VM-016.sbi (*) 2014-01-15 Includes\Trojans-VM-017.sbi (*) 2014-01-15 Includes\Trojans-VM-018.sbi (*) 2014-01-15 Includes\Trojans-VM-019.sbi (*) 2014-01-15 Includes\Trojans-VM-020.sbi (*) 2014-01-15 Includes\Trojans-VM-021.sbi (*) 2014-01-15 Includes\Trojans-VM-022.sbi (*) 2014-01-15 Includes\Trojans-VM-023.sbi (*) 2014-01-15 Includes\Trojans-VM-024.sbi (*) 2014-01-15 Includes\Trojans-ZB-000.sbi (*) 2014-01-15 Includes\Trojans-ZL-000.sbi (*) 2014-01-09 Includes\Trojans.sbi (*) 2014-01-15 Includes\TrojansC-04.sbi (*) 2014-01-09 Includes\TrojansC.sbi (*) Vierter Scan: Search results from Spybot - Search & Destroy 15.01.2014 22:28:45 Scan took 00:30:54. 11 items found. MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Direct3D\MostRecentApplication\Name MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id MS Office 12.0 (Excel): [SBI $546355D5] Recent Cartel List (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Office\12.0\Excel\File MRU MS Office 12.0 (Word): [SBI $E357B233] Recent Document List (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Office\12.0\Word\File MRU Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs Cookie: [SBI $49804B54] Browser: Cookie (5) (Browser: Cookie, nothing done) Cache: [SBI $49804B54] Browser: Cache (69) (Browser: Cache, nothing done) Verlauf: [SBI $49804B54] Browser: History (18) (Browser: History, nothing done) --- Spybot - Search & Destroy version: 2.1.18.131 DLL (build: 20130516) --- 2013-09-20 blindman.exe (2.2.18.151) 2013-09-20 explorer.exe (2.2.18.177) 2013-09-20 SDBootCD.exe (2.2.18.109) 2013-09-20 SDCleaner.exe (2.2.18.110) 2013-09-20 SDDelFile.exe (2.2.18.94) 2013-06-18 SDDisableProxy.exe 2013-09-20 SDFiles.exe (2.2.18.135) 2013-09-20 SDFileScanHelper.exe (2.2.16.1) 2013-10-15 SDFSSvc.exe (2.2.25.211) 2013-10-10 SDHookHelper.exe (2.3.30.2) 2013-10-10 SDHookInst32.exe (2.3.30.2) 2013-10-10 SDHookInst64.exe (2.3.30.2) 2013-09-20 SDImmunize.exe (2.2.18.130) 2013-05-16 SDLogReport.exe (2.1.18.107) 2013-10-14 SDOnAccess.exe (2.2.25.4) 2013-09-20 SDPESetup.exe (2.2.18.3) 2013-09-20 SDPEStart.exe (2.2.18.86) 2013-09-20 SDPhoneScan.exe (2.2.18.28) 2013-09-20 SDPRE.exe (2.2.18.22) 2013-09-20 SDPrepPos.exe (2.2.18.10) 2013-09-20 SDQuarantine.exe (2.2.18.103) 2013-09-20 SDRootAlyzer.exe (2.2.18.116) 2013-09-20 SDSBIEdit.exe (2.2.18.39) 2013-09-20 SDScan.exe (2.2.18.177) 2013-09-20 SDScript.exe (2.2.18.53) 2013-10-15 SDSettings.exe (2.2.25.138) 2013-09-20 SDShell.exe (2.2.18.2) 2013-09-20 SDShred.exe (2.2.18.107) 2013-09-20 SDSysRepair.exe (2.2.18.101) 2013-09-20 SDTools.exe (2.2.18.150) 2013-07-25 SDTray.exe (2.1.21.129) 2013-09-20 SDUpdate.exe (2.2.18.91) 2013-09-20 SDUpdSvc.exe (2.2.18.76) 2013-09-20 SDWelcome.exe (2.2.21.129) 2013-09-13 SDWSCSvc.exe (2.2.22.2) 2013-06-19 spybotsd2-translation-frx.exe 2014-01-15 unins000.exe (51.1052.0.0) 1999-12-02 xcacls.exe 2012-08-23 borlndmm.dll (10.0.2288.42451) 2012-09-05 DelZip190.dll (1.9.0.107) 2012-09-10 libeay32.dll (1.0.0.4) 2012-09-10 libssl32.dll (1.0.0.4) 2013-05-16 SDAdvancedCheckLibrary.dll (2.1.18.98) 2013-05-16 SDAV.dll 2013-05-16 SDECon32.dll (2.1.18.113) 2013-05-16 SDECon64.dll (2.1.18.113) 2013-04-05 SDEvents.dll (2.1.16.2) 2013-10-14 SDFileScanLibrary.dll (2.2.25.14) 2013-10-10 SDHook32.dll (2.3.30.2) 2013-10-10 SDHook64.dll (2.3.30.2) 2013-05-16 SDImmunizeLibrary.dll (2.1.18.2) 2013-05-16 SDLicense.dll (2.1.18.0) 2013-05-16 SDLists.dll (2.1.18.4) 2013-05-16 SDResources.dll (2.1.18.7) 2013-05-16 SDScanLibrary.dll (2.1.18.131) 2013-05-16 SDTasks.dll (2.1.18.15) 2013-05-16 SDWinLogon.dll (2.1.18.0) 2012-08-23 sqlite3.dll 2012-09-10 ssleay32.dll (1.0.0.4) 2013-05-16 Tools.dll (2.1.18.36) 2014-01-08 Includes\Adware-000.sbi (*) 2014-01-08 Includes\Adware-001.sbi (*) 2014-01-14 Includes\Adware-C.sbi (*) 2014-01-08 Includes\Adware.sbi (*) 2014-01-08 Includes\AdwareC.sbi (*) 2010-08-13 Includes\Cookies.sbi (*) 2014-01-08 Includes\Dialer-000.sbi (*) 2014-01-08 Includes\Dialer-001.sbi (*) 2014-01-08 Includes\Dialer-C.sbi (*) 2014-01-08 Includes\Dialer.sbi (*) 2014-01-08 Includes\DialerC.sbi (*) 2012-11-14 Includes\HeavyDuty.sbi (*) 2014-01-08 Includes\Hijackers-000.sbi (*) 2014-01-08 Includes\Hijackers-001.sbi (*) 2014-01-08 Includes\Hijackers-C.sbi (*) 2014-01-08 Includes\Hijackers.sbi (*) 2014-01-08 Includes\HijackersC.sbi (*) 2014-01-08 Includes\iPhone-000.sbi (*) 2014-01-08 Includes\iPhone.sbi (*) 2014-01-08 Includes\Keyloggers-000.sbi (*) 2014-01-08 Includes\Keyloggers-C.sbi (*) 2014-01-08 Includes\Keyloggers.sbi (*) 2014-01-08 Includes\KeyloggersC.sbi (*) 2014-01-14 Includes\Malware-C.sbi (*) 2013-05-29 Includes\Malware.sbi (*) 2013-12-23 Includes\MalwareC.sbi (*) 2014-01-15 Includes\PUPS-000.sbi (*) 2014-01-15 Includes\PUPS-001.sbi (*) 2014-01-15 Includes\PUPS-002.sbi (*) 2014-01-14 Includes\PUPS-C.sbi (*) 2012-11-14 Includes\PUPS.sbi (*) 2014-01-07 Includes\PUPSC.sbi (*) 2014-01-08 Includes\Security-000.sbi (*) 2014-01-08 Includes\Security-C.sbi (*) 2014-01-08 Includes\Security.sbi (*) 2014-01-08 Includes\SecurityC.sbi (*) 2014-01-08 Includes\Spyware-000.sbi (*) 2014-01-08 Includes\Spyware-001.sbi (*) 2014-01-08 Includes\Spyware-C.sbi (*) 2014-01-08 Includes\Spyware.sbi (*) 2014-01-08 Includes\SpywareC.sbi (*) 2011-06-07 Includes\Tracks.sbi (*) 2012-11-19 Includes\Tracks.uti (*) 2014-01-15 Includes\Trojans-000.sbi (*) 2014-01-15 Includes\Trojans-001.sbi (*) 2014-01-15 Includes\Trojans-002.sbi (*) 2014-01-15 Includes\Trojans-003.sbi (*) 2014-01-15 Includes\Trojans-004.sbi (*) 2014-01-15 Includes\Trojans-005.sbi (*) 2014-01-15 Includes\Trojans-006.sbi (*) 2014-01-15 Includes\Trojans-007.sbi (*) 2014-01-15 Includes\Trojans-008.sbi (*) 2014-01-15 Includes\Trojans-009.sbi (*) 2014-01-14 Includes\Trojans-C.sbi (*) 2014-01-15 Includes\Trojans-OG-000.sbi (*) 2014-01-15 Includes\Trojans-TD-000.sbi (*) 2014-01-15 Includes\Trojans-VM-000.sbi (*) 2014-01-15 Includes\Trojans-VM-001.sbi (*) 2014-01-15 Includes\Trojans-VM-002.sbi (*) 2014-01-15 Includes\Trojans-VM-003.sbi (*) 2014-01-15 Includes\Trojans-VM-004.sbi (*) 2014-01-15 Includes\Trojans-VM-005.sbi (*) 2014-01-15 Includes\Trojans-VM-006.sbi (*) 2014-01-15 Includes\Trojans-VM-007.sbi (*) 2014-01-15 Includes\Trojans-VM-008.sbi (*) 2014-01-15 Includes\Trojans-VM-009.sbi (*) 2014-01-15 Includes\Trojans-VM-010.sbi (*) 2014-01-15 Includes\Trojans-VM-011.sbi (*) 2014-01-15 Includes\Trojans-VM-012.sbi (*) 2014-01-15 Includes\Trojans-VM-013.sbi (*) 2014-01-15 Includes\Trojans-VM-014.sbi (*) 2014-01-15 Includes\Trojans-VM-015.sbi (*) 2014-01-15 Includes\Trojans-VM-016.sbi (*) 2014-01-15 Includes\Trojans-VM-017.sbi (*) 2014-01-15 Includes\Trojans-VM-018.sbi (*) 2014-01-15 Includes\Trojans-VM-019.sbi (*) 2014-01-15 Includes\Trojans-VM-020.sbi (*) 2014-01-15 Includes\Trojans-VM-021.sbi (*) 2014-01-15 Includes\Trojans-VM-022.sbi (*) 2014-01-15 Includes\Trojans-VM-023.sbi (*) 2014-01-15 Includes\Trojans-VM-024.sbi (*) 2014-01-15 Includes\Trojans-ZB-000.sbi (*) 2014-01-15 Includes\Trojans-ZL-000.sbi (*) 2014-01-09 Includes\Trojans.sbi (*) 2014-01-15 Includes\TrojansC-04.sbi (*) 2014-01-09 Includes\TrojansC.sbi (*) Fünfter Scan: Search results from Spybot - Search & Destroy 16.01.2014 08:18:55 Scan took 00:28:43. 11 items found. Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Internet Explorer\TypedURLs MS Direct3D: [SBI $C2A44980] Most recent application (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Direct3D\MostRecentApplication\Name MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id MS Office 12.0 (Excel): [SBI $546355D5] Recent Cartel List (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Office\12.0\Excel\File MRU Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs Cookie: [SBI $49804B54] Browser: Cookie (2) (Browser: Cookie, nothing done) Cache: [SBI $49804B54] Browser: Cache (5) (Browser: Cache, nothing done) Verlauf: [SBI $49804B54] Browser: History (14) (Browser: History, nothing done) --- Spybot - Search & Destroy version: 2.1.18.131 DLL (build: 20130516) --- 2013-09-20 blindman.exe (2.2.18.151) 2013-09-20 explorer.exe (2.2.18.177) 2013-09-20 SDBootCD.exe (2.2.18.109) 2013-09-20 SDCleaner.exe (2.2.18.110) 2013-09-20 SDDelFile.exe (2.2.18.94) 2013-06-18 SDDisableProxy.exe 2013-09-20 SDFiles.exe (2.2.18.135) 2013-09-20 SDFileScanHelper.exe (2.2.16.1) 2013-10-15 SDFSSvc.exe (2.2.25.211) 2013-10-10 SDHookHelper.exe (2.3.30.2) 2013-10-10 SDHookInst32.exe (2.3.30.2) 2013-10-10 SDHookInst64.exe (2.3.30.2) 2013-09-20 SDImmunize.exe (2.2.18.130) 2013-05-16 SDLogReport.exe (2.1.18.107) 2013-10-14 SDOnAccess.exe (2.2.25.4) 2013-09-20 SDPESetup.exe (2.2.18.3) 2013-09-20 SDPEStart.exe (2.2.18.86) 2013-09-20 SDPhoneScan.exe (2.2.18.28) 2013-09-20 SDPRE.exe (2.2.18.22) 2013-09-20 SDPrepPos.exe (2.2.18.10) 2013-09-20 SDQuarantine.exe (2.2.18.103) 2013-09-20 SDRootAlyzer.exe (2.2.18.116) 2013-09-20 SDSBIEdit.exe (2.2.18.39) 2013-09-20 SDScan.exe (2.2.18.177) 2013-09-20 SDScript.exe (2.2.18.53) 2013-10-15 SDSettings.exe (2.2.25.138) 2013-09-20 SDShell.exe (2.2.18.2) 2013-09-20 SDShred.exe (2.2.18.107) 2013-09-20 SDSysRepair.exe (2.2.18.101) 2013-09-20 SDTools.exe (2.2.18.150) 2013-07-25 SDTray.exe (2.1.21.129) 2013-09-20 SDUpdate.exe (2.2.18.91) 2013-09-20 SDUpdSvc.exe (2.2.18.76) 2013-09-20 SDWelcome.exe (2.2.21.129) 2013-09-13 SDWSCSvc.exe (2.2.22.2) 2013-06-19 spybotsd2-translation-frx.exe 2014-01-15 unins000.exe (51.1052.0.0) 1999-12-02 xcacls.exe 2012-08-23 borlndmm.dll (10.0.2288.42451) 2012-09-05 DelZip190.dll (1.9.0.107) 2012-09-10 libeay32.dll (1.0.0.4) 2012-09-10 libssl32.dll (1.0.0.4) 2013-05-16 SDAdvancedCheckLibrary.dll (2.1.18.98) 2013-05-16 SDAV.dll 2013-05-16 SDECon32.dll (2.1.18.113) 2013-05-16 SDECon64.dll (2.1.18.113) 2013-04-05 SDEvents.dll (2.1.16.2) 2013-10-14 SDFileScanLibrary.dll (2.2.25.14) 2013-10-10 SDHook32.dll (2.3.30.2) 2013-10-10 SDHook64.dll (2.3.30.2) 2013-05-16 SDImmunizeLibrary.dll (2.1.18.2) 2013-05-16 SDLicense.dll (2.1.18.0) 2013-05-16 SDLists.dll (2.1.18.4) 2013-05-16 SDResources.dll (2.1.18.7) 2013-05-16 SDScanLibrary.dll (2.1.18.131) 2013-05-16 SDTasks.dll (2.1.18.15) 2013-05-16 SDWinLogon.dll (2.1.18.0) 2012-08-23 sqlite3.dll 2012-09-10 ssleay32.dll (1.0.0.4) 2013-05-16 Tools.dll (2.1.18.36) 2014-01-08 Includes\Adware-000.sbi (*) 2014-01-08 Includes\Adware-001.sbi (*) 2014-01-14 Includes\Adware-C.sbi (*) 2014-01-08 Includes\Adware.sbi (*) 2014-01-08 Includes\AdwareC.sbi (*) 2010-08-13 Includes\Cookies.sbi (*) 2014-01-08 Includes\Dialer-000.sbi (*) 2014-01-08 Includes\Dialer-001.sbi (*) 2014-01-08 Includes\Dialer-C.sbi (*) 2014-01-08 Includes\Dialer.sbi (*) 2014-01-08 Includes\DialerC.sbi (*) 2012-11-14 Includes\HeavyDuty.sbi (*) 2014-01-08 Includes\Hijackers-000.sbi (*) 2014-01-08 Includes\Hijackers-001.sbi (*) 2014-01-08 Includes\Hijackers-C.sbi (*) 2014-01-08 Includes\Hijackers.sbi (*) 2014-01-08 Includes\HijackersC.sbi (*) 2014-01-08 Includes\iPhone-000.sbi (*) 2014-01-08 Includes\iPhone.sbi (*) 2014-01-08 Includes\Keyloggers-000.sbi (*) 2014-01-08 Includes\Keyloggers-C.sbi (*) 2014-01-08 Includes\Keyloggers.sbi (*) 2014-01-08 Includes\KeyloggersC.sbi (*) 2014-01-14 Includes\Malware-C.sbi (*) 2013-05-29 Includes\Malware.sbi (*) 2013-12-23 Includes\MalwareC.sbi (*) 2014-01-15 Includes\PUPS-000.sbi (*) 2014-01-15 Includes\PUPS-001.sbi (*) 2014-01-15 Includes\PUPS-002.sbi (*) 2014-01-14 Includes\PUPS-C.sbi (*) 2012-11-14 Includes\PUPS.sbi (*) 2014-01-07 Includes\PUPSC.sbi (*) 2014-01-08 Includes\Security-000.sbi (*) 2014-01-08 Includes\Security-C.sbi (*) 2014-01-08 Includes\Security.sbi (*) 2014-01-08 Includes\SecurityC.sbi (*) 2014-01-08 Includes\Spyware-000.sbi (*) 2014-01-08 Includes\Spyware-001.sbi (*) 2014-01-08 Includes\Spyware-C.sbi (*) 2014-01-08 Includes\Spyware.sbi (*) 2014-01-08 Includes\SpywareC.sbi (*) 2011-06-07 Includes\Tracks.sbi (*) 2012-11-19 Includes\Tracks.uti (*) 2014-01-15 Includes\Trojans-000.sbi (*) 2014-01-15 Includes\Trojans-001.sbi (*) 2014-01-15 Includes\Trojans-002.sbi (*) 2014-01-15 Includes\Trojans-003.sbi (*) 2014-01-15 Includes\Trojans-004.sbi (*) 2014-01-15 Includes\Trojans-005.sbi (*) 2014-01-15 Includes\Trojans-006.sbi (*) 2014-01-15 Includes\Trojans-007.sbi (*) 2014-01-15 Includes\Trojans-008.sbi (*) 2014-01-15 Includes\Trojans-009.sbi (*) 2014-01-14 Includes\Trojans-C.sbi (*) 2014-01-15 Includes\Trojans-OG-000.sbi (*) 2014-01-15 Includes\Trojans-TD-000.sbi (*) 2014-01-15 Includes\Trojans-VM-000.sbi (*) 2014-01-15 Includes\Trojans-VM-001.sbi (*) 2014-01-15 Includes\Trojans-VM-002.sbi (*) 2014-01-15 Includes\Trojans-VM-003.sbi (*) 2014-01-15 Includes\Trojans-VM-004.sbi (*) 2014-01-15 Includes\Trojans-VM-005.sbi (*) 2014-01-15 Includes\Trojans-VM-006.sbi (*) 2014-01-15 Includes\Trojans-VM-007.sbi (*) 2014-01-15 Includes\Trojans-VM-008.sbi (*) 2014-01-15 Includes\Trojans-VM-009.sbi (*) 2014-01-15 Includes\Trojans-VM-010.sbi (*) 2014-01-15 Includes\Trojans-VM-011.sbi (*) 2014-01-15 Includes\Trojans-VM-012.sbi (*) 2014-01-15 Includes\Trojans-VM-013.sbi (*) 2014-01-15 Includes\Trojans-VM-014.sbi (*) 2014-01-15 Includes\Trojans-VM-015.sbi (*) 2014-01-15 Includes\Trojans-VM-016.sbi (*) 2014-01-15 Includes\Trojans-VM-017.sbi (*) 2014-01-15 Includes\Trojans-VM-018.sbi (*) 2014-01-15 Includes\Trojans-VM-019.sbi (*) 2014-01-15 Includes\Trojans-VM-020.sbi (*) 2014-01-15 Includes\Trojans-VM-021.sbi (*) 2014-01-15 Includes\Trojans-VM-022.sbi (*) 2014-01-15 Includes\Trojans-VM-023.sbi (*) 2014-01-15 Includes\Trojans-VM-024.sbi (*) 2014-01-15 Includes\Trojans-ZB-000.sbi (*) 2014-01-15 Includes\Trojans-ZL-000.sbi (*) 2014-01-09 Includes\Trojans.sbi (*) 2014-01-15 Includes\TrojansC-04.sbi (*) 2014-01-09 Includes\TrojansC.sbi (*) Sechster Scan: Search results from Spybot - Search & Destroy 16.01.2014 21:44:31 Scan took 00:27:07. 5 items found. MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done) HKEY_USERS\S-1-5-21-812036113-894676224-2528985830-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done) HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources Cache: [SBI $49804B54] Browser: Cache (1) (Browser: Cache, nothing done) --- Spybot - Search & Destroy version: 2.1.18.131 DLL (build: 20130516) --- 2013-09-20 blindman.exe (2.2.18.151) 2013-09-20 explorer.exe (2.2.18.177) 2013-09-20 SDBootCD.exe (2.2.18.109) 2013-09-20 SDCleaner.exe (2.2.18.110) 2013-09-20 SDDelFile.exe (2.2.18.94) 2013-06-18 SDDisableProxy.exe 2013-09-20 SDFiles.exe (2.2.18.135) 2013-09-20 SDFileScanHelper.exe (2.2.16.1) 2013-10-15 SDFSSvc.exe (2.2.25.211) 2013-10-10 SDHookHelper.exe (2.3.30.2) 2013-10-10 SDHookInst32.exe (2.3.30.2) 2013-10-10 SDHookInst64.exe (2.3.30.2) 2013-09-20 SDImmunize.exe (2.2.18.130) 2013-05-16 SDLogReport.exe (2.1.18.107) 2013-10-14 SDOnAccess.exe (2.2.25.4) 2013-09-20 SDPESetup.exe (2.2.18.3) 2013-09-20 SDPEStart.exe (2.2.18.86) 2013-09-20 SDPhoneScan.exe (2.2.18.28) 2013-09-20 SDPRE.exe (2.2.18.22) 2013-09-20 SDPrepPos.exe (2.2.18.10) 2013-09-20 SDQuarantine.exe (2.2.18.103) 2013-09-20 SDRootAlyzer.exe (2.2.18.116) 2013-09-20 SDSBIEdit.exe (2.2.18.39) 2013-09-20 SDScan.exe (2.2.18.177) 2013-09-20 SDScript.exe (2.2.18.53) 2013-10-15 SDSettings.exe (2.2.25.138) 2013-09-20 SDShell.exe (2.2.18.2) 2013-09-20 SDShred.exe (2.2.18.107) 2013-09-20 SDSysRepair.exe (2.2.18.101) 2013-09-20 SDTools.exe (2.2.18.150) 2013-07-25 SDTray.exe (2.1.21.129) 2013-09-20 SDUpdate.exe (2.2.18.91) 2013-09-20 SDUpdSvc.exe (2.2.18.76) 2013-09-20 SDWelcome.exe (2.2.21.129) 2013-09-13 SDWSCSvc.exe (2.2.22.2) 2013-06-19 spybotsd2-translation-frx.exe 2014-01-15 unins000.exe (51.1052.0.0) 1999-12-02 xcacls.exe 2012-08-23 borlndmm.dll (10.0.2288.42451) 2012-09-05 DelZip190.dll (1.9.0.107) 2012-09-10 libeay32.dll (1.0.0.4) 2012-09-10 libssl32.dll (1.0.0.4) 2013-05-16 SDAdvancedCheckLibrary.dll (2.1.18.98) 2013-05-16 SDAV.dll 2013-05-16 SDECon32.dll (2.1.18.113) 2013-05-16 SDECon64.dll (2.1.18.113) 2013-04-05 SDEvents.dll (2.1.16.2) 2013-10-14 SDFileScanLibrary.dll (2.2.25.14) 2013-10-10 SDHook32.dll (2.3.30.2) 2013-10-10 SDHook64.dll (2.3.30.2) 2013-05-16 SDImmunizeLibrary.dll (2.1.18.2) 2013-05-16 SDLicense.dll (2.1.18.0) 2013-05-16 SDLists.dll (2.1.18.4) 2013-05-16 SDResources.dll (2.1.18.7) 2013-05-16 SDScanLibrary.dll (2.1.18.131) 2013-05-16 SDTasks.dll (2.1.18.15) 2013-05-16 SDWinLogon.dll (2.1.18.0) 2012-08-23 sqlite3.dll 2012-09-10 ssleay32.dll (1.0.0.4) 2013-05-16 Tools.dll (2.1.18.36) 2014-01-08 Includes\Adware-000.sbi (*) 2014-01-08 Includes\Adware-001.sbi (*) 2014-01-14 Includes\Adware-C.sbi (*) 2014-01-08 Includes\Adware.sbi (*) 2014-01-08 Includes\AdwareC.sbi (*) 2010-08-13 Includes\Cookies.sbi (*) 2014-01-08 Includes\Dialer-000.sbi (*) 2014-01-08 Includes\Dialer-001.sbi (*) 2014-01-08 Includes\Dialer-C.sbi (*) 2014-01-08 Includes\Dialer.sbi (*) 2014-01-08 Includes\DialerC.sbi (*) 2012-11-14 Includes\HeavyDuty.sbi (*) 2014-01-08 Includes\Hijackers-000.sbi (*) 2014-01-08 Includes\Hijackers-001.sbi (*) 2014-01-08 Includes\Hijackers-C.sbi (*) 2014-01-08 Includes\Hijackers.sbi (*) 2014-01-08 Includes\HijackersC.sbi (*) 2014-01-08 Includes\iPhone-000.sbi (*) 2014-01-08 Includes\iPhone.sbi (*) 2014-01-08 Includes\Keyloggers-000.sbi (*) 2014-01-08 Includes\Keyloggers-C.sbi (*) 2014-01-08 Includes\Keyloggers.sbi (*) 2014-01-08 Includes\KeyloggersC.sbi (*) 2014-01-14 Includes\Malware-C.sbi (*) 2013-05-29 Includes\Malware.sbi (*) 2013-12-23 Includes\MalwareC.sbi (*) 2014-01-15 Includes\PUPS-000.sbi (*) 2014-01-15 Includes\PUPS-001.sbi (*) 2014-01-15 Includes\PUPS-002.sbi (*) 2014-01-14 Includes\PUPS-C.sbi (*) 2012-11-14 Includes\PUPS.sbi (*) 2014-01-07 Includes\PUPSC.sbi (*) 2014-01-08 Includes\Security-000.sbi (*) 2014-01-08 Includes\Security-C.sbi (*) 2014-01-08 Includes\Security.sbi (*) 2014-01-08 Includes\SecurityC.sbi (*) 2014-01-08 Includes\Spyware-000.sbi (*) 2014-01-08 Includes\Spyware-001.sbi (*) 2014-01-08 Includes\Spyware-C.sbi (*) 2014-01-08 Includes\Spyware.sbi (*) 2014-01-08 Includes\SpywareC.sbi (*) 2011-06-07 Includes\Tracks.sbi (*) 2012-11-19 Includes\Tracks.uti (*) 2014-01-15 Includes\Trojans-000.sbi (*) 2014-01-15 Includes\Trojans-001.sbi (*) 2014-01-15 Includes\Trojans-002.sbi (*) 2014-01-15 Includes\Trojans-003.sbi (*) 2014-01-15 Includes\Trojans-004.sbi (*) 2014-01-15 Includes\Trojans-005.sbi (*) 2014-01-15 Includes\Trojans-006.sbi (*) 2014-01-15 Includes\Trojans-007.sbi (*) 2014-01-15 Includes\Trojans-008.sbi (*) 2014-01-15 Includes\Trojans-009.sbi (*) 2014-01-14 Includes\Trojans-C.sbi (*) 2014-01-15 Includes\Trojans-OG-000.sbi (*) 2014-01-15 Includes\Trojans-TD-000.sbi (*) 2014-01-15 Includes\Trojans-VM-000.sbi (*) 2014-01-15 Includes\Trojans-VM-001.sbi (*) 2014-01-15 Includes\Trojans-VM-002.sbi (*) 2014-01-15 Includes\Trojans-VM-003.sbi (*) 2014-01-15 Includes\Trojans-VM-004.sbi (*) 2014-01-15 Includes\Trojans-VM-005.sbi (*) 2014-01-15 Includes\Trojans-VM-006.sbi (*) 2014-01-15 Includes\Trojans-VM-007.sbi (*) 2014-01-15 Includes\Trojans-VM-008.sbi (*) 2014-01-15 Includes\Trojans-VM-009.sbi (*) 2014-01-15 Includes\Trojans-VM-010.sbi (*) 2014-01-15 Includes\Trojans-VM-011.sbi (*) 2014-01-15 Includes\Trojans-VM-012.sbi (*) 2014-01-15 Includes\Trojans-VM-013.sbi (*) 2014-01-15 Includes\Trojans-VM-014.sbi (*) 2014-01-15 Includes\Trojans-VM-015.sbi (*) 2014-01-15 Includes\Trojans-VM-016.sbi (*) 2014-01-15 Includes\Trojans-VM-017.sbi (*) 2014-01-15 Includes\Trojans-VM-018.sbi (*) 2014-01-15 Includes\Trojans-VM-019.sbi (*) 2014-01-15 Includes\Trojans-VM-020.sbi (*) 2014-01-15 Includes\Trojans-VM-021.sbi (*) 2014-01-15 Includes\Trojans-VM-022.sbi (*) 2014-01-15 Includes\Trojans-VM-023.sbi (*) 2014-01-15 Includes\Trojans-VM-024.sbi (*) 2014-01-15 Includes\Trojans-ZB-000.sbi (*) 2014-01-15 Includes\Trojans-ZL-000.sbi (*) 2014-01-09 Includes\Trojans.sbi (*) 2014-01-15 Includes\TrojansC-04.sbi (*) 2014-01-09 Includes\TrojansC.sbi (*) Geändert von catank (16.01.2014 um 23:16 Uhr) |
|
17.01.2014, 08:17
| #2 |
| /// the machine /// TB-Ausbilder    | Ebenfalls DHL Spam Link geöffnet - Wie gehe ich auf Nummer sicher? hi,
__________________ So funktioniert es:Posten in CODE-Tags Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:  FRST 32-Bit | FRST 64-Bit(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)
__________________ |
|
17.01.2014, 20:12
| #3 |
| | Ebenfalls DHL Spam Link geöffnet - Wie gehe ich auf Nummer sicher? FRST Logfile:
__________________FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 15-01-2014 03
Ran by Vorname Nachname (administrator) on CL on 16-01-2014 23:01:50
Running from C:\Users\Vorname Nachname\Downloads
Windows 7 Home Premium Service Pack 1 (X64) OS Language: German Standard
Internet Explorer Version 11
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Dell, Inc.) C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuAgent.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(SoftThinks - Dell) C:\Program Files (x86)\Dell DataSafe Local Backup\Toaster.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\SmartAudio3.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
() C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
() C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Dropbox, Inc.) C:\Users\Vorname Nachname\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
(Nero AG) C:\Program Files (x86)\Nero\SyncUP\SyncUP.exe
() C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
() C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe
() C:\Windows\Samsung\PanelMgr\SSMMgr.exe
(Creative Technology Ltd) C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(1und1 Mail und Media GmbH) C:\Program Files (x86)\WEB.DE MailCheck\IE\WEB.DE_MailCheck_Broker.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Windows\Samsung\PanelMgr\caller64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
() C:\Program Files (x86)\Dell\Stage Remote\StageRemoteService.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\SA3\CxUtilSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Nero AG) C:\Program Files (x86)\Nero\SyncUP\Nero.AndroidServer.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office12\WINWORD.EXE
(Microsoft Corporation) C:\Windows\splwow64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ==================
HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2803496 2011-06-24] (Synaptics Incorporated)
HKLM\...\Run: [SmartAudio] - C:\Program Files\CONEXANT\SA3\SACpl.exe [1574016 2011-08-01] (Conexant Systems, Inc.)
HKLM\...\Run: [FreeFallProtection] - C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704 2010-12-17] ()
HKLM\...\Run: [IntelPAN] - C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [1935120 2011-11-01] (Intel(R) Corporation)
HKLM\...\Run: [BTMTrayAgent] - C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [10357008 2011-10-18] (Intel Corporation)
HKLM\...\Run: [QuickSet] - c:\Program Files\Dell\QuickSet\QuickSet.exe [4500640 2011-03-11] (Dell Inc.)
HKLM\...\Run: [Stage Remote] - C:\Program Files (x86)\Dell\Stage Remote\StageRemote.exe [2022976 2011-06-28] ()
HKLM\...\Run: [DellStage] - C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [2055016 2011-04-30] ()
HKLM\...\Run: [MSC] - c:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe [40312 2013-09-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Dell DataSafe Online] - C:\Program Files (x86)\Dell\Dell Datasafe Online\NOBuClient.exe [1117528 2010-08-26] (Dell, Inc.)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [RoxWatchTray] - C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [Desktop Disc Tool] - C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()
HKLM-x32\...\Run: [NeroLauncher] - C:\Program Files (x86)\Nero\SyncUP\NeroLauncher.exe [67496 2012-08-21] ()
HKLM-x32\...\Run: [AccuWeatherWidget] - C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\accuweather.exe [885760 2011-04-30] ()
HKLM-x32\...\Run: [APSDaemon] - C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Samsung PanelMgr] - C:\Windows\Samsung\PanelMgr\ssmmgr.exe [606208 2009-08-28] ()
HKLM-x32\...\Run: [Dell Webcam Central] - C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe [577536 2012-05-09] (Creative Technology Ltd)
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [253816 2013-03-12] (Oracle Corporation)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] - C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [703888 2013-08-30] (Cisco Systems, Inc.)
HKLM-x32\...\Run: [MailCheck IE Broker] - C:\Program Files (x86)\WEB.DE MailCheck\IE\WEB.DE_MailCheck_Broker.exe [1766464 2013-10-16] (1und1 Mail und Media GmbH)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-11-02] (Apple Inc.)
HKLM-x32\...\Run: [SDTray] - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [5624784 2013-07-25] (Safer-Networking Ltd.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKCU\...\Run: [Facebook Update] - "C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
HKCU\...\Run: [RESTART_STICKY_NOTES] - C:\Windows\System32\StikyNot.exe [427520 2009-07-14] (Microsoft Corporation)
MountPoints2: {649e8e38-57e7-11e1-b97e-4ceb420605a8} - E:\LaunchU3.exe -a
Startup: C:\Users\Vorname Nachname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Vorname Nachname\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\Users\Vorname Nachname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://g.uk.msn.com/USCON/8
SearchScopes: HKLM - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKCU - DefaultScope {D3266F94-0B70-474B-A76E-6D2698B4D7AD} URL =
SearchScopes: HKCU - {3E3C6C1F-AC0A-441B-95E4-8B4888C80739} URL = hxxp://go.gmx.net/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {774BC4B9-F425-4AEE-9CD8-9AD13D703022} URL = hxxp://go.web.de/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {D3266F94-0B70-474B-A76E-6D2698B4D7AD} URL =
SearchScopes: HKCU - {F23C066E-249B-4189-8FF4-6B3525077540} URL = hxxp://go.1und1.de/tb/ie_searchplugin/?su={searchTerms}
SearchScopes: HKCU - {F39FFDA6-63DF-440B-9393-EFA8146F8B9A} URL = hxxp://search.gmx.com/web?q={searchTerms}&origin=tb_splugin_ie
BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKCU - No Name - {C424171E-592A-415A-9EB1-DFD6D95D3530} - No File
DPF: HKLM-x32 {55963676-2F5E-4BAF-AC28-CF26AA587566} https://sslvpn.uni-potsdam.de/CACHE/stc/1/binaries/vpnweb.cab
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/110926/CTPID.cab
Handler: saphtmlp - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - No File
Handler: sapr3 - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - No File
Handler-x32: saphtmlp - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\program files (x86)\sap\frontend\sapgui\saphtmlp.dll (SAP, Walldorf)
Handler-x32: sapr3 - {D1F8BD1E-7967-11D2-B43A-006094B9EADB} - c:\program files (x86)\sap\frontend\sapgui\saphtmlp.dll (SAP, Walldorf)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\Vorname Nachname\AppData\Roaming\Mozilla\Firefox\Profiles\fsdwoqk4.default
FF Homepage: www.google.de
FF Plugin: @adobe.com/FlashPlayer - C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_170.dll ()
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_170.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.25.2 - C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.25.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 - C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 - C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll ()
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKCU: @Skype Limited.com/Facebook Video Calling Plugin - C:\Users\Vorname Nachname\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll No File
FF SearchPlugin: C:\Users\Vorname Nachname\AppData\Roaming\Mozilla\Firefox\Profiles\fsdwoqk4.default\searchplugins\11-suche.xml
FF SearchPlugin: C:\Users\Vorname Nachname\AppData\Roaming\Mozilla\Firefox\Profiles\fsdwoqk4.default\searchplugins\englische-ergebnisse.xml
FF SearchPlugin: C:\Users\Vorname Nachname\AppData\Roaming\Mozilla\Firefox\Profiles\fsdwoqk4.default\searchplugins\gmx-suche.xml
FF SearchPlugin: C:\Users\Vorname Nachname\AppData\Roaming\Mozilla\Firefox\Profiles\fsdwoqk4.default\searchplugins\lastminute.xml
FF SearchPlugin: C:\Users\Vorname Nachname\AppData\Roaming\Mozilla\Firefox\Profiles\fsdwoqk4.default\searchplugins\webde-suche.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF Extension: DVDVideoSoft YouTube MP3 and Video Download - C:\Users\Vorname Nachname\AppData\Roaming\Mozilla\Firefox\Profiles\fsdwoqk4.default\Extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}.xpi [2012-11-20]
FF Extension: Adblock Plus - C:\Users\Vorname Nachname\AppData\Roaming\Mozilla\Firefox\Profiles\fsdwoqk4.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2012-02-14]
FF HKLM-x32\...\Thunderbird\Extensions: [msktbird@mcafee.com] - C:\Program Files\McAfee\MSK
Chrome:
=======
CHR Extension: (Google Docs) - C:\Users\Vorname Nachname\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 [2014-01-15]
CHR Extension: (Google Drive) - C:\Users\Vorname Nachname\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 [2014-01-15]
CHR Extension: (YouTube) - C:\Users\Vorname Nachname\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0 [2014-01-15]
CHR Extension: (Google Search) - C:\Users\Vorname Nachname\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 [2014-01-15]
CHR Extension: (AdBlock) - C:\Users\Vorname Nachname\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.18_0 [2014-01-15]
CHR Extension: (Google Wallet) - C:\Users\Vorname Nachname\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 [2014-01-15]
CHR Extension: (Gmail) - C:\Users\Vorname Nachname\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 [2014-01-15]
==================== Services (Whitelisted) =================
S3 Adobe LM Service; C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [68096 2012-04-01] ()
R3 CxUtilSvc; C:\Program Files\Conexant\SA3\CxUtilSvc.exe [109184 2011-08-12] (Conexant Systems, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-11-01] ()
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3921880 2013-10-15] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [1042272 2013-09-20] (Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [171416 2013-09-13] (Safer-Networking Ltd.)
==================== Drivers (Whitelisted) ====================
U3 Algacppbrite;
R3 MCfilt; C:\Windows\System32\drivers\MCfilt64.sys [32344 2010-12-09] (Creative Technology Ltd.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
S3 vpnva; C:\Windows\System32\DRIVERS\vpnva64-6.sys [52080 2013-08-30] (Cisco Systems, Inc.)
S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [x]
==================== NetSvcs (Whitelisted) ===================
==================== One Month Created Files and Folders ========
2014-01-16 23:01 - 2014-01-16 23:02 - 00020401 _____ C:\Users\Vorname Nachname\Downloads\FRST.txt
2014-01-16 23:00 - 2014-01-16 23:00 - 00000000 ____D C:\FRST
2014-01-16 22:59 - 2014-01-16 22:59 - 02076160 _____ (Farbar) C:\Users\Vorname Nachname\Downloads\FRST64.exe
2014-01-16 01:32 - 2014-01-16 01:32 - 00021504 _____ C:\Users\Vorname Nachname\Desktop\Klausurenplanung.xls
2014-01-15 19:40 - 2009-06-10 22:00 - 00000824 _____ C:\Windows\system32\Drivers\etc\hosts.20140115-194058.backup
2014-01-15 18:39 - 2013-11-27 02:42 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-15 18:39 - 2013-11-27 02:42 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-15 18:39 - 2013-11-27 02:42 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-15 18:39 - 2013-11-27 02:42 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-15 18:39 - 2013-11-27 02:42 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-15 18:39 - 2013-11-27 02:42 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-15 18:39 - 2013-11-27 02:42 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-15 18:39 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 08:17 - 2014-01-15 08:17 - 00002249 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-15 08:16 - 2014-01-16 22:27 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-15 08:16 - 2014-01-16 08:27 - 00001128 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-15 08:16 - 2014-01-15 08:22 - 00004128 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-15 08:16 - 2014-01-15 08:22 - 00003876 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-15 08:16 - 2014-01-15 08:17 - 00000000 ____D C:\Users\Vorname Nachname\AppData\Local\Google
2014-01-15 08:16 - 2014-01-15 08:17 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-15 08:04 - 2014-01-15 08:04 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2014-01-15 08:03 - 2014-01-15 18:46 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-15 08:03 - 2014-01-15 08:09 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-15 08:03 - 2014-01-15 08:03 - 00001381 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-15 08:03 - 2013-09-20 10:49 - 00021040 _____ (Safer Networking Limited) C:\Windows\system32\sdnclean64.exe
2014-01-07 22:19 - 2014-01-16 22:27 - 00000976 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001UA.job
2014-01-07 22:19 - 2014-01-16 22:27 - 00000954 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001Core.job
2014-01-07 22:19 - 2014-01-07 22:22 - 00003976 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001UA
2014-01-07 22:19 - 2014-01-07 22:22 - 00003608 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001Core
==================== One Month Modified Files and Folders =======
2014-01-16 23:02 - 2014-01-16 23:01 - 00020401 _____ C:\Users\Vorname Nachname\Downloads\FRST.txt
2014-01-16 23:00 - 2014-01-16 23:00 - 00000000 ____D C:\FRST
2014-01-16 22:59 - 2014-01-16 22:59 - 02076160 _____ (Farbar) C:\Users\Vorname Nachname\Downloads\FRST64.exe
2014-01-16 22:48 - 2012-05-16 09:49 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-16 22:27 - 2014-01-15 08:16 - 00001132 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-16 22:27 - 2014-01-07 22:19 - 00000976 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001UA.job
2014-01-16 22:27 - 2014-01-07 22:19 - 00000954 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001Core.job
2014-01-16 20:04 - 2012-02-01 12:21 - 01289646 _____ C:\Windows\WindowsUpdate.log
2014-01-16 09:01 - 2013-05-22 21:19 - 00003440 _____ C:\Windows\System32\Tasks\PCDEventLauncherTask
2014-01-16 08:27 - 2014-01-15 08:16 - 00001128 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-16 07:38 - 2012-02-13 21:26 - 00000000 ____D C:\Users\Vorname Nachname\AppData\Local\Nero
2014-01-16 07:37 - 2013-09-30 23:02 - 00000000 ___RD C:\Users\Vorname Nachname\Desktop\Dropbox
2014-01-16 07:37 - 2012-11-27 07:19 - 00000000 ____D C:\Users\Vorname Nachname\AppData\Roaming\Dropbox
2014-01-16 07:36 - 2012-02-01 20:13 - 00000000 ____D C:\Users\Default\AppData\Local\SoftThinks
2014-01-16 07:36 - 2012-02-01 20:13 - 00000000 ____D C:\Users\Default User\AppData\Local\SoftThinks
2014-01-16 07:36 - 2012-02-01 20:09 - 00000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2014-01-16 03:38 - 2010-11-21 07:50 - 00696870 _____ C:\Windows\system32\perfh007.dat
2014-01-16 03:38 - 2010-11-21 07:50 - 00148134 _____ C:\Windows\system32\perfc007.dat
2014-01-16 03:38 - 2009-07-14 06:13 - 01612484 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-16 03:38 - 2009-07-14 05:45 - 00021296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-16 03:38 - 2009-07-14 05:45 - 00021296 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-16 03:31 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-16 03:31 - 2009-07-14 05:51 - 00071038 _____ C:\Windows\setupact.log
2014-01-16 03:29 - 2009-07-14 05:45 - 00371160 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-16 03:28 - 2010-11-21 04:47 - 00057592 _____ C:\Windows\PFRO.log
2014-01-16 03:09 - 2012-02-21 20:42 - 00000000 ____D C:\ProgramData\Microsoft Help
2014-01-16 03:09 - 2012-02-10 21:26 - 00000000 ____D C:\Users\Vorname Nachname\AppData\Roaming\Skype
2014-01-16 03:07 - 2013-07-19 02:01 - 00000000 ____D C:\Windows\system32\MRT
2014-01-16 03:02 - 2012-02-14 13:42 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-16 01:32 - 2014-01-16 01:32 - 00021504 _____ C:\Users\Vorname Nachname\Desktop\Klausurenplanung.xls
2014-01-15 18:46 - 2014-01-15 08:03 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2014-01-15 08:22 - 2014-01-15 08:16 - 00004128 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2014-01-15 08:22 - 2014-01-15 08:16 - 00003876 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2014-01-15 08:17 - 2014-01-15 08:17 - 00002249 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-15 08:17 - 2014-01-15 08:16 - 00000000 ____D C:\Users\Vorname Nachname\AppData\Local\Google
2014-01-15 08:17 - 2014-01-15 08:16 - 00000000 ____D C:\Program Files (x86)\Google
2014-01-15 08:16 - 2013-03-05 23:36 - 00000000 ____D C:\Users\Vorname Nachname\AppData\Local\Deployment
2014-01-15 08:09 - 2014-01-15 08:03 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2014-01-15 08:04 - 2014-01-15 08:04 - 00000000 ____D C:\Windows\System32\Tasks\Safer-Networking
2014-01-15 08:03 - 2014-01-15 08:03 - 00001381 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2014-01-12 20:52 - 2012-02-16 00:26 - 00000000 ____D C:\Users\Vorname Nachname\Documents\Studium
2014-01-09 22:29 - 2012-02-10 21:22 - 00000000 ____D C:\Users\Vorname Nachname\AppData\Roaming\Adobe
2014-01-09 22:29 - 2012-02-01 20:03 - 00000000 ____D C:\ProgramData\Adobe
2014-01-07 22:22 - 2014-01-07 22:19 - 00003976 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001UA
2014-01-07 22:22 - 2014-01-07 22:19 - 00003608 _____ C:\Windows\System32\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001Core
2014-01-04 11:48 - 2012-11-15 06:14 - 00000000 ____D C:\Users\Vorname Nachname\Documents\Praktikum
2013-12-29 22:10 - 2013-01-07 01:08 - 00000000 ____D C:\Users\Vorname Nachname\Documents\MarketLogic
2013-12-26 18:39 - 2013-09-30 23:02 - 00001051 _____ C:\Users\Vorname Nachname\Desktop\Dropbox.lnk
2013-12-26 18:39 - 2013-09-30 22:58 - 00000000 ____D C:\Users\Vorname Nachname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2013-12-26 18:39 - 2012-02-10 21:05 - 00000000 ___RD C:\Users\Vorname Nachname\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2013-12-26 18:35 - 2013-11-20 16:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2013-12-26 18:35 - 2012-04-24 23:41 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2013-12-23 16:29 - 2012-02-21 17:24 - 00000000 ____D C:\ProgramData\Creative
2013-12-19 07:17 - 2012-02-10 20:58 - 00000000 ____D C:\Users\Vorname Nachname
Some content of TEMP:
====================
C:\Users\Vorname Nachname\AppData\Local\Temp\ose00000.exe
==================== Bamital & volsnap Check =================
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit
LastRegBack: 2014-01-09 22:28
==================== End Of Log ============================
--- --- --- Hier der Addition txt. Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-01-2014 03
Ran by Vorname Nachname at 2014-01-16 23:02:31
Running from C:\Users\Vorname Nachname\Downloads
Boot Mode: Normal
==========================================================
==================== Security Center ========================
AV: Microsoft Security Essentials (Enabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Spybot - Search and Destroy (Enabled - Up to date) {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
AS: Microsoft Security Essentials (Enabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
==================== Installed Programs ======================
Update for Microsoft Office 2007 (KB2508958) (x32 Version: - Microsoft)
AccelerometerP11 (x32 Version: 2.00.11.22 - STMicroelectronics)
Adobe AIR (x32 Version: 2.6.0.19120 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 2.6.0.19120 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 11 ActiveX (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Flash Player 11 Plugin (x32 Version: 11.9.900.170 - Adobe Systems Incorporated)
Adobe Photoshop CS (x32 Version: CS - Adobe Systems, Inc.)
Adobe Reader X (10.1.8) MUI (x32 Version: 10.1.8 - Adobe Systems Incorporated)
Advanced Audio FX Engine (x32 Version: 1.12.05 - Creative Technology Ltd)
Apple Application Support (x32 Version: 2.3.6 - Apple Inc.)
Apple Mobile Device Support (Version: 7.0.0.117 - Apple Inc.)
Apple Software Update (x32 Version: 2.1.3.127 - Apple Inc.)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Bonjour (Version: 3.0.0.10 - Apple Inc.)
Build-a-lot 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cake Mania (x32 Version: 2.2.0.95 - WildTangent) Hidden
Chuzzle Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.04066 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.04066 - Cisco Systems, Inc.) Hidden
Conexant SmartAudio HD (Version: 8.54.16.0 - Conexant)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dell DataSafe Local Backup - Support Software (x32 Version: 9.4.61 - Dell Inc.)
Dell DataSafe Local Backup (x32 Version: 9.4.61 - Dell Inc.)
Dell DataSafe Online (x32 Version: 2.1.19634 - Dell)
Dell Edoc Viewer (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (x32 Version: 1.00.0000 - Dell Inc.)
Dell MusicStage (x32 Version: 1.5.201.0 - Fingertapps)
Dell PhotoStage (x32 Version: 1.5.0.65 - ArcSoft)
Dell Stage (x32 Version: 1.5.201.0 - Fingertapps)
Dell Stage Remote (x32 Version: 2.0.0.43 - ArcSoft)
Dell Touchpad (Version: 15.3.13.0 - Synaptics Incorporated)
Dell VideoStage (x32 Version: 1.2.0.1712 - CyberLink Corp.)
Dell VideoStage (x32 Version: 1.2.0.1712 - CyberLink Corp.) Hidden
Dell Webcam Central (x32 Version: 2.01.17 - Creative Technology Ltd)
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.95 - WildTangent) Hidden
DirectX 9 Runtime (x32 Version: 1.00.0000 - Sonic Solutions) Hidden
Dora's World Adventure (x32 Version: 2.2.0.95 - WildTangent) Hidden
Dropbox (HKCU Version: 2.4.10 - Dropbox, Inc.)
eBay (x32 Version: 1.4.0 - eBay Inc.)
ECL Viewer (x32 Version: 6.0 - SAP AG)
Escape Whisper Valley (TM) (x32 Version: 2.2.0.95 - WildTangent) Hidden
Facebook Video Calling 2.0.0.447 (x32 Version: 2.0.447 - Skype Limited)
Farm Frenzy (x32 Version: 2.2.0.95 - WildTangent) Hidden
FATE (x32 Version: 2.2.0.95 - WildTangent) Hidden
Final Drive Fury (x32 Version: 2.2.0.95 - WildTangent) Hidden
Final Drive Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
Free M4a to MP3 Converter 7.0 (x32 Version: - ManiacTools.com)
Free YouTube to iPod Converter version 3.10.17.221 (x32 Version: 3.10.17.221 - DVDVideoSoft Ltd.)
Google Chrome (x32 Version: 32.0.1700.76 - Google Inc.)
Google Update Helper (x32 Version: 1.3.22.3 - Google Inc.) Hidden
Intel PROSet Wireless (Version: - ) Hidden
Intel PROSet Wireless (x32 Version: - ) Hidden
Intel(R) Control Center (x32 Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (x32 Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (x32 Version: 8.15.10.2372 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (Version: 1.2.1.0608 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi-Software (Version: 14.03.0000 - Intel Corporation)
Intel(R) WiDi (x32 Version: 2.1.39.0 - Intel Corporation)
Intel(R) Wireless Display (Version: - )
iTunes (Version: 11.1.3.8 - Apple Inc.)
Java 7 Update 25 (x32 Version: 7.0.250 - Oracle)
Java Auto Updater (x32 Version: 2.1.9.5 - Sun Microsystems, Inc.) Hidden
Java(TM) 7 Update 1 (64-bit) (Version: 7.0.10 - Oracle)
Jewel Quest (x32 Version: 2.2.0.95 - WildTangent) Hidden
Jewel Quest Solitaire 2 (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Luxor (x32 Version: 2.2.0.95 - WildTangent) Hidden
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (x32 Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Live Add-in 1.5 (x32 Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft redistributable runtime DLLs VS2005 SP1(x86) (x32 Version: 8.0.50727.4053 - SAP)
Microsoft redistributable runtime DLLs VS2008 SP1(x86) (x32 Version: 9.0 - SAP AG)
Microsoft Security Client (Version: 4.4.0304.0 - Microsoft Corporation) Hidden
Microsoft Security Essentials (Version: 4.4.304.0 - Microsoft Corporation)
Microsoft Silverlight (Version: 5.1.20913.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (x32 Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x32 Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (x32 Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (x32 Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (x32 Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 (x32 Version: 10.0.30319 - Microsoft Corporation)
Mozilla Firefox 26.0 (x86 de) (x32 Version: 26.0 - Mozilla)
Mozilla Maintenance Service (x32 Version: 26.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSXML 4.0 SP2 (KB954430) (x32 Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (x32 Version: 4.20.9876.0 - Microsoft Corporation)
My Dell (Version: 3.4.6422.14 - PC-Doctor, Inc.)
Namco All-Stars PAC-MAN (x32 Version: 2.2.0.95 - WildTangent) Hidden
Nero 10 Movie ThemePack Basic (x32 Version: 10.6.10000.1.0 - Nero AG) Hidden
Nero Blu-ray Player (x32 Version: 12.0.20012 - Nero AG) Hidden
Nero Control Center 10 (x32 Version: 10.6.13000.0.11 - Nero AG) Hidden
Nero ControlCenter 10 Help (CHM) (x32 Version: 10.2.10800 - Nero AG) Hidden
Nero Core Components 10 (x32 Version: 2.0.20000.9.12 - Nero AG) Hidden
Nero Update (x32 Version: 11.0.11500.28.0 - Nero AG) Hidden
Penguins! (x32 Version: 2.2.0.95 - WildTangent) Hidden
PhotoShowExpress (x32 Version: 2.0.063 - Sonic Solutions) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Bowler (x32 Version: 2.2.0.95 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.95 - WildTangent) Hidden
Python 2.7 expyriment-0.5.1 (HKCU Version: - )
Python 2.7.2 (x32 Version: 2.7.2150 - Python Software Foundation)
Quickset64 (Version: 11.0.15 - Dell Inc.)
R for Windows 2.14.1 (Version: 2.14.1 - R Development Core Team)
RBVirtualFolder64Inst (Version: 1.00.0000 - Roxio, Inc.) Hidden
Roxio Activation Module (x32 Version: 1.0 - Roxio) Hidden
Roxio BackOnTrack (x32 Version: 1.3.3 - Roxio) Hidden
Roxio Burn (x32 Version: 1.8 - Roxio) Hidden
Roxio Creator Starter (x32 Version: 1.0.439 - Roxio) Hidden
Roxio Creator Starter (x32 Version: 12.1.77.0 - Roxio)
Roxio Creator Starter (x32 Version: 5.0.0 - Roxio) Hidden
Roxio Express Labeler 3 (x32 Version: 3.2.2 - Roxio) Hidden
Roxio File Backup (Version: 1.3.2 - Roxio) Hidden
RStudio (x32 Version: 0.95.261 - RStudio)
Samantha Swift (x32 Version: 2.2.0.95 - WildTangent) Hidden
Samsung CLP-310 Series (x32 Version: - Samsung Electronics CO.,LTD)
SAP Business Explorer (x32 Version: 7.20 - SAP AG)
SAP GUI for Windows 7.20 (x32 Version: 7.20 Compilation 2 - SAP)
Shared C Run-time for x64 (Version: 10.0.0 - McAfee)
Skype™ 6.11 (x32 Version: 6.11.102 - Skype Technologies S.A.)
Sonic CinePlayer Decoder Pack (x32 Version: 4.3.0 - Sonic Solutions) Hidden
Spybot - Search & Destroy (x32 Version: 2.2.25 - Safer-Networking Ltd.)
SyncUP (x32 Version: 1.12.12400.17.102 - Nero AG) Hidden
SyncUP (x32 Version: 10.2.15400 - Nero AG)
Update for 2007 Microsoft Office System (KB967642) (x32 Version: - Microsoft)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2468871) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft .NET Framework 4 Extended (KB2533523) (x32 Version: 1 - Microsoft Corporation)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (x32 Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (x32 Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (x32 Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (x32 Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (x32 Version: - Microsoft)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
VitalSource Bookshelf (x32 Version: 5.05.0047 - Ihr Firmenname)
WEB.DE MailCheck für Internet Explorer (x32 Version: 2.4.0.0 - 1&1 Mail & Media GmbH)
WEB.DE Softwareaktualisierung (x32 Version: 3.0.0.55 - 1&1 Mail & Media GmbH)
Wedding Dash - Ready, Aim, Love! (x32 Version: 2.2.0.95 - WildTangent) Hidden
WildTangent Games App (Dell Games) (x32 Version: 4.0.5.2 - WildTangent) Hidden
WildTangent-Spiele (x32 Version: 1.0.2.5 - WildTangent)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (x32 Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (x32 Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC)
Zinio Reader 4 (x32 Version: 4.2.4164 - Zinio LLC) Hidden
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
==================== Restore Points =========================
15-12-2013 14:33:16 Windows Update
17-12-2013 02:00:20 Windows Update
20-12-2013 10:27:14 Windows Update
23-12-2013 12:49:18 Windows Update
26-12-2013 17:48:55 Windows Update
30-12-2013 17:55:53 Windows Update
03-01-2014 17:44:46 Windows Update
07-01-2014 19:01:36 Windows Update
11-01-2014 17:34:14 Windows Update
15-01-2014 07:11:26 Windows Update
16-01-2014 02:01:06 Windows Update
==================== Hosts content: ==========================
2009-07-14 03:34 - 2014-01-16 07:37 - 00466153 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
There are 1000 more lines.
==================== Scheduled Tasks (whitelisted) =============
Task: {1F5DA63F-E983-4BB9-83BE-A15CACE43F60} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe
Task: {2721ABB9-CD72-4BAC-A9FF-ADBB20AC182A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-15] (Google Inc.)
Task: {28685C66-E534-4203-88DD-84D7C8CF1BF5} - System32\Tasks\SystemToolsDailyTest => uaclauncher.exe
Task: {515DF8A5-17CB-41D4-860D-447974041107} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {56BEB865-9502-42FE-8338-03B26CE4071C} - System32\Tasks\PCDoctorBackgroundMonitorTask => C:\Program Files\My Dell\uaclauncher.exe [2013-09-06] (PC-Doctor, Inc.)
Task: {6A955299-CA35-4EDF-BCA5-CF4BD47E544A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11] (Adobe Systems Incorporated)
Task: {6B4EB148-B279-4887-8D9E-B45F484CBEFE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-01-15] (Google Inc.)
Task: {734169EA-EC9A-424E-92FB-3019D3A5E2AD} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001UA => C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {932F6C81-FECA-4089-BCE5-8B0DAC2DB83F} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001Core => C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: {B7C018AC-A7DF-439D-A84E-B137E2F7E2DC} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe
Task: {CCA43A3D-56FA-4703-9771-816A6C7A659F} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe
Task: {CFE4052E-6F9F-46A9-9AF8-50FF6FA0CEE3} - System32\Tasks\PCDEventLauncherTask => C:\Program Files\My Dell\sessionchecker.exe [2013-12-07] (PC-Doctor, Inc.)
Task: {DD3D7694-7384-4C1E-B34C-D610536ABC3E} - System32\Tasks\Registration 1und1 Task => C:\Program Files (x86)\1und1Softwareaktualisierung\cdsupdclient.exe [2013-06-18] (1&1 Mail & Media GmbH)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001Core.job => C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-812036113-894676224-2528985830-1001UA.job => C:\Users\Vorname Nachname\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-02-01 20:49 - 2011-06-24 04:17 - 00057640 _____ () C:\Program Files\Synaptics\SynTP\SynTPEnhPS.dll
2012-02-01 20:48 - 2011-04-15 19:16 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2011-11-01 19:58 - 2011-11-01 19:58 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2013-08-30 23:11 - 2013-08-30 23:11 - 00063376 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2011-11-01 23:26 - 2011-11-01 23:26 - 00087912 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2011-11-01 23:26 - 2011-11-01 23:26 - 01242472 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-01-15 08:03 - 2012-08-23 10:38 - 00574840 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\sqlite3.dll
2014-01-15 08:03 - 2013-05-16 10:55 - 00113496 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
2014-01-15 08:03 - 2013-05-16 10:55 - 00416600 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
2014-01-15 08:03 - 2013-05-16 10:55 - 00161112 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\snlFileFormats150.bpl
2014-01-15 08:03 - 2012-04-03 17:06 - 00565640 _____ () C:\Program Files (x86)\Spybot - Search & Destroy 2\av\BDSmartDB.dll
2010-03-17 03:28 - 2010-03-17 03:28 - 01926144 _____ () C:\Program Files (x86)\Dell\Stage Remote\QtCore4.dll
2010-03-22 22:52 - 2010-03-22 22:52 - 06776832 _____ () C:\Program Files (x86)\Dell\Stage Remote\QtGui4.dll
2010-03-17 03:28 - 2010-03-17 03:28 - 00635904 _____ () C:\Program Files (x86)\Dell\Stage Remote\QtNetwork4.dll
2010-03-17 03:28 - 2010-03-17 03:28 - 00326144 _____ () C:\Program Files (x86)\Dell\Stage Remote\QtXml4.dll
2011-06-25 06:20 - 2011-06-25 06:20 - 00565968 _____ () C:\Program Files (x86)\Dell\Stage Remote\sqlite3.dll
2011-06-28 02:25 - 2011-06-28 02:25 - 00058944 _____ () C:\Program Files (x86)\Dell\Stage Remote\DataService.dll
2011-06-25 06:32 - 2011-06-25 06:32 - 00323136 _____ () C:\Program Files (x86)\Dell\Stage Remote\de-DE\UI\ManagerUI.dll
2010-03-12 02:52 - 2010-03-12 02:52 - 00028160 _____ () C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qgif4.dll
2010-03-05 22:07 - 2010-03-05 22:07 - 00031744 _____ () C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qico4.dll
2010-03-05 22:07 - 2010-03-05 22:07 - 00125952 _____ () C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qjpeg4.dll
2010-03-12 02:52 - 2010-03-12 02:52 - 00225280 _____ () C:\Program Files (x86)\Dell\Stage Remote\plugins\imageformats\qmng4.dll
2013-08-23 20:01 - 2013-08-23 20:01 - 25100288 _____ () C:\Users\Vorname Nachname\AppData\Roaming\Dropbox\bin\libcef.dll
2011-07-08 00:13 - 2011-07-08 00:13 - 00251688 _____ () C:\Program Files (x86)\Nero\SyncUP\System.ComponentModel.Composition.dll
2011-07-08 00:14 - 2011-07-08 00:14 - 00891688 _____ () C:\Program Files (x86)\Nero\SyncUP\System.Data.SQLite.dll
2010-11-25 05:44 - 2010-11-25 05:44 - 00375280 _____ () c:\program files (x86)\common files\roxio shared\dllshared\SQLite352.dll
2011-04-30 01:13 - 2011-04-30 01:13 - 07938048 _____ () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtGui4.dll
2011-04-30 01:13 - 2011-04-30 01:13 - 02225664 _____ () C:\Program Files (x86)\Dell Stage\Dell Stage\AccuWeather\QtCore4.dll
2014-01-15 08:17 - 2014-01-11 11:28 - 00715544 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libglesv2.dll
2014-01-15 08:17 - 2014-01-11 11:28 - 00100120 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\libegl.dll
2014-01-15 08:17 - 2014-01-11 11:29 - 04055320 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\pdf.dll
2014-01-15 08:17 - 2014-01-11 11:29 - 00399640 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ppGoogleNaClPluginChrome.dll
2014-01-15 08:17 - 2014-01-11 11:28 - 01634584 _____ () C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\ffmpegsumo.dll
2013-07-10 17:07 - 2013-07-10 17:07 - 00756888 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\MSPTLS.DLL
==================== Alternate Data Streams (whitelisted) =========
==================== Safe Mode (whitelisted) ===================
==================== Faulty Device Manager Devices =============
Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/16/2014 04:02:51 AM) (Source: SideBySide) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "x64" des "processorArchitecture"-Attributs im assemblyIdentity-Element ist ungültig.
Error: (01/16/2014 03:31:20 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/16/2014 03:29:16 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
Error: (01/15/2014 09:41:55 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1107
Error: (01/15/2014 09:41:55 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1107
Error: (01/15/2014 09:41:55 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (01/15/2014 08:51:29 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5023
Error: (01/15/2014 08:51:29 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 5023
Error: (01/15/2014 08:51:29 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (01/15/2014 08:51:28 AM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 4024
System errors:
=============
Error: (01/16/2014 07:36:59 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst SftService erreicht.
Error: (01/16/2014 03:31:10 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (01/16/2014 03:28:55 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "DgiVecp" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (01/16/2014 03:24:59 AM) (Source: DCOM) (User: )
Description: {F9717507-6651-4EDB-BFF7-AE615179BCCF}
Error: (01/16/2014 03:09:10 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Windows Search" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (01/16/2014 03:09:10 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows Search erreicht.
Error: (01/15/2014 08:04:07 AM) (Source: Service Control Manager) (User: )
Description: Der Dienst "Spybot-S&D 2 Scanner Service" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (01/15/2014 08:04:07 AM) (Source: Service Control Manager) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Spybot-S&D 2 Scanner Service erreicht.
Error: (01/13/2014 04:29:57 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.
Error: (01/13/2014 04:29:57 PM) (Source: Schannel) (User: NT-AUTORITÄT)
Description: Es wurde eine schwerwiegende Warnung generiert: 40. Der interne Fehlerstatus lautet: 252.
Microsoft Office Sessions:
=========================
Error: (01/11/2014 09:24:20 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 273005 seconds with 9780 seconds of active time. This session ended with a crash.
Error: (12/03/2013 06:31:05 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6683.5002, Microsoft Office Version: 12.0.6612.1000. This session lasted 104919 seconds with 15120 seconds of active time. This session ended with a crash.
Error: (09/23/2013 11:33:58 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 3, Application Name: Microsoft Office PowerPoint, Application Version: 12.0.6600.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 342756 seconds with 60 seconds of active time. This session ended with a crash.
==================== Memory info ===========================
Percentage of memory in use: 65%
Total physical RAM: 3982.99 MB
Available physical RAM: 1365.66 MB
Total Pagefile: 7964.16 MB
Available Pagefile: 4289.95 MB
Total Virtual: 8192 MB
Available Virtual: 8191.81 MB
==================== Drives ================================
Drive c: (OS) (Fixed) (Total:446.13 GB) (Free:359.14 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 466 GB) (Disk ID: 07F2837E)
Partition 1: (Not Active) - (Size=102 MB) - (Type=DE)
Partition 2: (Active) - (Size=20 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=446 GB) - (Type=07 NTFS)
==================== End Of Log ============================
|
|
18.01.2014, 08:17
| #4 | |
| /// the machine /// TB-Ausbilder | Ebenfalls DHL Spam Link geöffnet - Wie gehe ich auf Nummer sicher?Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!Downloade dir bitte Combofix vom folgenden Downloadspiegel Link 1 WICHTIG - Speichere Combofix auf deinem Desktop
Wenn Combofix fertig ist, wird es eine Logfile erstellen. Bitte poste die C:\Combofix.txt in deiner nächsten Antwort. Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten Zitat:
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
19.01.2014, 18:59
| #5 |
| | Ebenfalls DHL Spam Link geöffnet - Wie gehe ich auf Nummer sicher? Hi Schrauber, danke für deine Hilfe. Habe mich nun entschlossen das Betriebssystem neu aufzuspielen, hab noch eine relativ aktuelle Sicherungskopie, erscheint mir als die einfachere Variante. Trotzdem vielen Dank! |
|
20.01.2014, 21:34
| #6 |
| /// the machine /// TB-Ausbilder | Ebenfalls DHL Spam Link geöffnet - Wie gehe ich auf Nummer sicher? ok 
__________________ --> Ebenfalls DHL Spam Link geöffnet - Wie gehe ich auf Nummer sicher? |
|
| Themen zu Ebenfalls DHL Spam Link geöffnet - Wie gehe ich auf Nummer sicher? |
| browser, computer, cookie, download, excel, explorer, explorer.exe, firefox, helper.exe, installation, internet, internet explorer, langsam, laptop, link, link geöffnet, log, microsoft, phishing, registry, registry key, scan, setup, software, spam, trojaner, trojaner board, user agent, windows |
Linear-Darstellung
