| |
| |||||||
Log-Analyse und Auswertung: Entfernen der Adware 'Goobzo.2825'Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
01.10.2014, 12:54
| #1 |
| |  Entfernen der Adware 'Goobzo.2825' Hallo zusammen, leider habe ich mir die Adware 'Goobzo.2825' auf meinem Win7-64Bit-Rechner eingefangen. Avira erkennt den Schädling und schlägt vor, ihn in Quarantäne zu setzen. Dies funktioniert auch, aber nach wenigen Minuten kommt eine neuerliche Fehlermeldung, die wiederum den Schädling anzeigt. Objekt: delay.exe Fund: ADWARE/Goobzo.2825 Begleitet wird dies überdies von einer Systemmeldung: "C:\Users\******\AppData\Local\Temp\Install_12903\delay.exe. Nicht genügend Sytemressourcen, um den angeforderten Dienst auszuführen." (Das Verzeichnis "Install_xxxxx" scheint mit anderer Ziffernfolge immer neu angelegt zu werden.) Adware-Cleaner und JRT hatten die Adware erkannt und sich um Entfernung bemüht; jetzt scheinen sie nichts mehr zu erkennen. Malwarebytes erkennt und entfernt ihn immer wieder neu: Nach kurzer Zeit bzw. nach Neustart im normalen Modus ist die Adware wieder da. Im abgesicherten Modus scheint die Entfernung erfolgreich zu sein. Ich bin einigermaßen ratlos und freue mich über jede Hilfe! Mit bestem Dank und vielen Grüßen rudb -- FRST: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-09-2014
Ran by ******** (administrator) on AK-KCSHOME on 01-10-2014 09:42:25
Running from C:\Users\********\Desktop
Loaded Profile: ******** (Available profiles: UpdatusUser & ********)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\CaptureGenPCI.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avshadow.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Users\********\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avgnt.exe
(Dropbox, Inc.) C:\Users\********\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7560296 2011-12-12] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-10-17] (Intel Corporation)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694040 2014-07-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499920 2014-09-12] (Adobe Systems Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [164656 2014-08-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\Run: [Amazon Music] => C:\Users\********\AppData\Local\Amazon Music\Amazon Music Helper.exe [3356480 2014-07-22] ()
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\MountPoints2: {aadc7fd5-db5f-11e3-bce7-5404a6b6de0f} - F:\LaunchU3.exe -a
Startup: C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\********\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinTV Recording Status..lnk
ShortcutTarget: WinTV Recording Status..lnk -> C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe (Hauppauge Computer Works, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\system32\EhStorShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\Windows\system32\ntshrui.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\SysWOW64\EhStorShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\Windows\SysWOW64\ntshrui.dll (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF03ECE6B83DCCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKCU - {EBBAF673-C1CD-4990-9B82-797D5783AA02} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\********\AppData\Roaming\Mozilla\Firefox\Profiles\cff1d4d4.default-1412057210461
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.3.1 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.3.1 -> C:\Program Files (x86)\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101799.dll (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-07-15]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-09-12]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\sched.exe [430160 2014-08-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-14] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [160048 2014-08-27] (Avira Operations GmbH & Co. KG)
R2 HauppaugeTVServer; C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe [558592 2010-11-03] (Hauppauge Computer Works) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AF15BDA; C:\Windows\System32\DRIVERS\AF15BDA.sys [472704 2008-06-24] (AfaTech )
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-27] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH)
S3 HCW3x64; C:\Windows\System32\DRIVERS\HCW71364.sys [1501200 2012-01-31] (Hauppauge Computer Works, Inc.)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 MTsensor; C:\Windows\system32\drivers\ASACPI.sys [15416 2009-05-14] ()
S3 rusb3hub; C:\Windows\system32\drivers\rusb3hub.sys [100352 2011-09-15] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\system32\drivers\rusb3xhc.sys [216064 2011-09-15] (Renesas Electronics Corporation)
S3 SMARTMouseFilterx64; C:\Windows\System32\DRIVERS\SMARTMouseFilterx64.sys [16280 2012-10-24] (SMART Technologies)
S3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [15256 2012-10-24] (SMART Technologies)
S3 SMARTVTabletPCx64; C:\Windows\System32\DRIVERS\SMARTVTabletPCx64.sys [24984 2012-10-24] (SMART Technologies ULC)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-01 09:42 - 2014-10-01 09:42 - 00018412 _____ () C:\Users\********\Desktop\FRST.txt
2014-10-01 09:42 - 2014-10-01 09:42 - 00000000 ____D () C:\FRST
2014-10-01 08:19 - 2014-10-01 08:20 - 02108928 _____ (Farbar) C:\Users\********\Desktop\FRST64.exe
2014-10-01 07:48 - 2014-10-01 07:48 - 00000000 ____D () C:\Windows\ERUNT
2014-10-01 07:41 - 2014-10-01 07:41 - 01375089 _____ () C:\Users\********\Desktop\adwcleaner_3.311.exe
2014-10-01 07:40 - 2014-10-01 07:40 - 01699276 _____ (Thisisu) C:\Users\********\Desktop\JRT.exe
2014-09-30 10:07 - 2014-10-01 08:57 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-09-30 10:07 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-30 10:07 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-09-30 10:07 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-30 10:05 - 2014-09-30 10:05 - 01101648 _____ () C:\Users\********\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2014-09-30 08:06 - 2014-09-30 08:06 - 00000000 ____D () C:\Users\********\Desktop\Alte Firefox-Daten
2014-09-30 08:03 - 2014-09-30 08:03 - 02953520 _____ (AVAST Software) C:\Users\********\Downloads\avast-browser-cleanup.exe
2014-09-30 07:58 - 2014-09-30 07:58 - 01373475 _____ () C:\Users\********\Downloads\adwcleaner_3.310(1).exe
2014-09-29 18:59 - 2014-10-01 07:46 - 00000000 ____D () C:\AdwCleaner
2014-09-29 18:52 - 2014-10-01 09:10 - 00001176 _____ () C:\Windows\setupact.log
2014-09-29 18:52 - 2014-10-01 08:23 - 00009888 _____ () C:\Windows\PFRO.log
2014-09-29 18:52 - 2014-09-29 18:52 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-29 17:26 - 2014-09-29 17:26 - 00001160 _____ () C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-29 14:55 - 2014-09-29 14:55 - 00004322 _____ () C:\Windows\System32\Tasks\Installer_delay
2014-09-29 14:54 - 2014-09-29 17:29 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-29 14:54 - 2014-09-29 14:54 - 00000000 ____D () C:\Users\********\AppData\Local\CrashRpt
2014-09-29 14:50 - 2014-09-29 14:50 - 00226664 _____ () C:\Users\********\Downloads\SesameStreet_downloader-Ic4K47cuB.exe
2014-09-29 14:47 - 2014-09-29 14:47 - 00226688 _____ () C:\Users\********\Downloads\Hulkbusters3D_downloader-I43ihVLc1.exe
2014-09-29 14:46 - 2014-09-29 14:46 - 00226688 _____ () C:\Users\********\Downloads\Cube_downloader-IbIdGZenl.exe
2014-09-29 14:45 - 2014-09-29 14:45 - 00226688 _____ () C:\Users\********\Downloads\AgentRed_downloader-I38EfdAdq.exe
2014-09-29 14:45 - 2014-09-29 14:45 - 00226648 _____ () C:\Users\********\Downloads\3-DSalter_downloader-I5nB2gbNu.exe
2014-09-29 14:44 - 2014-09-29 14:44 - 00226664 _____ () C:\Users\********\Downloads\Disko_downloader-I5IUzo2MV.exe
2014-09-29 14:18 - 2014-09-29 14:18 - 00000000 ____D () C:\Users\********\AppData\Roaming\TeamViewer
2014-09-29 14:02 - 2014-09-29 14:02 - 00000000 __SHD () C:\Users\********\AppData\Local\EmieUserList
2014-09-29 14:02 - 2014-09-29 14:02 - 00000000 __SHD () C:\Users\********\AppData\Local\EmieSiteList
2014-09-29 13:59 - 2014-09-29 14:00 - 00000000 ____D () C:\Users\********\AppData\Roaming\dlg
2014-09-29 13:31 - 2014-09-29 13:31 - 00000024 _____ () C:\Windows\AM_D8.PRF
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Windows\System32\Tasks\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Users\********\AppData\Roaming\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Users\********\AppData\Local\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\ProgramData\XDMessagingv4
2014-09-29 13:30 - 2011-05-13 12:16 - 00493056 _____ ( datenhaus GmbH) C:\Windows\SysWOW64\dhRichClient3.dll
2014-09-29 13:30 - 2011-03-25 20:42 - 00338432 _____ () C:\Windows\SysWOW64\sqlite36_engine.dll
2014-09-28 18:24 - 2014-09-28 18:24 - 00008192 ___SH () C:\Users\********\Documents\Thumbs.db
2014-09-28 17:31 - 2014-09-28 17:32 - 00000000 ____D () C:\Program Files\YouTubeDownloader
2014-09-28 16:54 - 2014-09-28 16:54 - 00000000 ____D () C:\Users\********\Desktop\Examen Grit
2014-09-25 07:53 - 2014-09-25 07:56 - 00000000 ____D () C:\Users\********\Desktop\Oskar Herbst 2014
2014-09-25 07:10 - 2014-09-25 07:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-24 06:08 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-24 06:08 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-10 07:22 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-10 07:22 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-10 07:22 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-10 07:22 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-10 07:22 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-10 07:22 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-10 07:22 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-10 07:22 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-10 07:22 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-10 07:22 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-10 07:22 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-10 07:22 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-10 07:22 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-10 07:22 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-10 07:22 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-10 07:22 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-10 07:22 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-10 07:22 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-10 07:22 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-10 07:22 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-10 07:22 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-10 07:22 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-10 07:22 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-10 07:22 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-10 07:22 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-10 07:22 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-10 07:22 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-10 07:22 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-10 07:22 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-10 07:22 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-10 07:22 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-10 07:22 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-10 07:22 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-10 07:22 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-10 07:22 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-10 07:22 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-10 07:22 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-10 07:22 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-10 07:22 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-10 07:22 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-10 07:22 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-10 07:22 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-10 07:22 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-10 07:22 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-10 07:22 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-10 07:22 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-10 07:22 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-10 07:22 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-10 07:22 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-10 07:22 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-10 07:06 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-10 07:06 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-10 06:14 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-10 06:14 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-09-10 06:14 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-10 06:14 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-10 06:13 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-10 06:13 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-10 06:13 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-10 06:13 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-10 06:13 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-10 06:13 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-10 06:13 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-10 06:10 - 2014-09-10 06:10 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-09-10 06:10 - 2014-09-10 06:10 - 00000000 ____D () C:\Program Files (x86)\Avira
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-01 09:32 - 2013-10-07 16:44 - 00001130 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-01 09:18 - 2009-07-14 06:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-01 09:18 - 2009-07-14 06:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-01 09:15 - 2010-11-21 08:50 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2014-10-01 09:15 - 2010-11-21 08:50 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2014-10-01 09:15 - 2009-07-14 07:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-01 09:14 - 2013-08-22 20:14 - 01306976 _____ () C:\Windows\WindowsUpdate.log
2014-10-01 09:12 - 2013-04-29 16:52 - 00000000 ___RD () C:\Users\********\Dropbox
2014-10-01 09:11 - 2013-04-29 16:50 - 00000000 ____D () C:\Users\********\AppData\Roaming\Dropbox
2014-10-01 09:10 - 2013-10-07 16:44 - 00001126 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-01 09:10 - 2012-02-06 21:01 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-10-01 09:10 - 2012-02-03 13:44 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-01 09:10 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-01 08:23 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Vss
2014-10-01 08:03 - 2013-04-17 15:33 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-01 06:10 - 2012-02-06 22:16 - 00000000 ____D () C:\Users\********\AppData\Local\Adobe
2014-09-30 11:35 - 2013-09-20 15:35 - 00000000 ____D () C:\Windows\pss
2014-09-30 11:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Resources
2014-09-30 10:23 - 2012-06-03 09:14 - 00000000 ____D () C:\ProgramData\YTD YouTube Downloader & Converter
2014-09-30 07:57 - 2013-12-12 09:16 - 00000000 ____D () C:\ProgramData\Skype
2014-09-29 17:49 - 2011-12-27 09:53 - 00000000 ____D () C:\Windows\Panther
2014-09-29 16:10 - 2014-06-14 13:11 - 00000000 ____D () C:\Users\********\Desktop\Soziale Arbeit
2014-09-29 16:00 - 2012-12-19 12:48 - 00000000 ___RD () C:\Users\********\Desktop\Schule
2014-09-29 15:59 - 2013-08-25 13:48 - 00000000 ___RD () C:\Users\********\Desktop\Klasse 6a, 2014
2014-09-29 14:57 - 2009-07-14 06:45 - 00323864 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-29 14:53 - 2012-02-06 20:53 - 00075176 _____ () C:\Users\********\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-26 06:51 - 2013-04-17 15:34 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-26 06:48 - 2012-04-25 18:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-25 08:04 - 2014-08-16 13:42 - 00000000 ____D () C:\Users\********\Desktop\Wichtiges Oskar
2014-09-25 08:04 - 2012-02-07 07:19 - 00000000 ____D () C:\Users\********\Desktop\Persönliches
2014-09-25 08:01 - 2012-02-07 07:13 - 00000000 ___RD () C:\Users\********\Desktop\Kunst
2014-09-24 17:22 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-09-24 17:03 - 2013-04-17 15:33 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-24 17:03 - 2012-04-26 06:55 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-24 17:03 - 2011-12-27 14:59 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-23 22:29 - 2012-02-06 20:53 - 00000000 ____D () C:\Users\********\AppData\Roaming\Adobe
2014-09-23 17:11 - 2012-02-06 18:43 - 00000000 ___RD () C:\Users\********\Desktop\Deutsch
2014-09-19 07:17 - 2014-04-08 06:53 - 00000000 ____D () C:\Users\Public\Documents\MIADoc
2014-09-19 06:24 - 2013-04-29 16:50 - 00000000 ____D () C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-18 06:19 - 2014-07-15 14:38 - 00002453 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2014-09-18 06:19 - 2014-07-15 14:38 - 00002210 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2014-09-18 06:19 - 2014-07-15 14:38 - 00002049 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2014-09-10 07:21 - 2013-08-08 20:43 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-10 07:21 - 2011-12-27 14:29 - 01593956 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-10 07:06 - 2011-12-27 16:47 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-10 07:05 - 2014-04-30 07:03 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-10 06:10 - 2014-07-15 12:41 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-10 06:10 - 2013-03-24 20:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
Some content of TEMP:
====================
C:\Users\********\AppData\Local\Temp\avgnt.exe
C:\Users\********\AppData\Local\Temp\cabex.dll
C:\Users\********\AppData\Local\Temp\ClientToMobilePlatform.exe
C:\Users\********\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpfvwjph.dll
C:\Users\********\AppData\Local\Temp\optprosetup.exe
C:\Users\********\AppData\Local\Temp\Quarantine.exe
C:\Users\********\AppData\Local\Temp\somoto_(HungryFrog)_1.0.exe
C:\Users\********\AppData\Local\Temp\somoto_Aerosol_1.0.exe
C:\Users\********\AppData\Local\Temp\somoto_Graffiti Treat_1.0.exe
C:\Users\********\AppData\Local\Temp\System.Data.SQLite.dll
C:\Users\********\AppData\Local\Temp\System.Data.SQLite33459.dll
C:\Users\********\AppData\Local\Temp\System.Data.SQLite58816.dll
C:\Users\********\AppData\Local\Temp\System.Data.SQLite60211.dll
C:\Users\********\AppData\Local\Temp\tu17p84.exe
C:\Users\********\AppData\Local\Temp\unelevate.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-26 16:23
==================== End Of Log ============================
Code:
ATTFilter Additional scan result of Farbar Recovery Scan Tool (x64) Version: 30-09-2014
Ran by ********* at 2014-10-01 09:43:13
Running from C:\Users\*********\Desktop
Boot Mode: Normal
==========================================================
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Desktop (Enabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Desktop (Enabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
Update for Microsoft Office 2007 (KB2508958) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0C5823AA-7B6F-44E1-8D5B-8FD1FF0E6438}) (Version: - Microsoft)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat 5.0 (HKLM-x32\...\Adobe Acrobat 5.0) (Version: 5.0 - Adobe Systems, Inc.)
Adobe Acrobat XI Pro (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-000000000006}) (Version: 11.0.09 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe AIR (x32 Version: 14.0.0.110 - Adobe Systems Incorporated) Hidden
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 2.7.0.413 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.6 - Adobe Systems Incorporated)
Adobe Download Assistant (x32 Version: 1.2.6 - Adobe Systems Incorporated) Hidden
Adobe Flash Player 15 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 15.0.0.167 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.152 - Adobe Systems Incorporated)
Adobe InCopy CC 2014 (HKLM-x32\...\{B389B226-A760-1014-9ADD-DA3D4A4028DB}) (Version: 10.0 - Adobe Systems Incorporated)
Adobe InDesign CC 2014 (HKLM-x32\...\{CCDCB9C4-72BA-1014-A3F8-D123F2F18BC2}) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.09) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.09 - Adobe Systems Incorporated)
Adobe® Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 3.4.3 - Adobe Systems, Incorporated)
Adobe® Content Viewer (x32 Version: 3.4.3 - Adobe Systems, Incorporated) Hidden
Amazon MP3-Downloader 1.0.17 (HKLM-x32\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
Amazon Music (HKCU\...\Amazon Amazon Music) (Version: 3.2.0.591 - Amazon Services LLC)
Apple Application Support (HKLM-x32\...\{78002155-F025-4070-85B3-7C0453561701}) (Version: 3.0.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{6AF2AC2A-3532-43FD-9F4D-BDC9C0D724C7}) (Version: 7.1.2.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Audible Download Manager (HKLM-x32\...\AudibleDownloadManager) (Version: 6.6.0.15 - Audible, Inc.)
Avira (HKLM-x32\...\{70e83cd8-4bd5-4039-ab5a-6b94a8abb641}) (Version: 1.1.21.25162 - Avira Operations GmbH & Co. KG)
Avira (x32 Version: 1.1.21.25162 - Avira Operations GmbH & Co. KG) Hidden
Avira Free Antivirus (HKLM-x32\...\Avira AntiVir Desktop) (Version: 14.0.6.570 - Avira)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.05 - Piriform)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKCU\...\Dropbox) (Version: 2.10.30 - Dropbox, Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Hauppauge WinTV 7 (HKLM-x32\...\Hauppauge WinTV 7) (Version: v7.0.28314 - Hauppauge Computer Works)
InfraRecorder 0.52 (x64 edition) (HKLM\...\{2C22EA92-CB30-4932-0052-000001000000}) (Version: 0.52.00.00 - Christian Kindahl)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.8.0.1003 - Intel Corporation)
iTunes (HKLM\...\{77DE5105-D05E-448C-96CB-7FA381903753}) (Version: 11.3.1.2 - Apple Inc.)
Java Auto Updater (x32 Version: 2.1.6.0 - Sun Microsystems, Inc.) Hidden
Java(TM) 7 Update 2 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417002FF}) (Version: 7.0.20 - Oracle)
Java(TM) 7 Update 3 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83217003FF}) (Version: 7.0.30 - Oracle)
JavaFX 2.0.3 (HKLM-x32\...\{1111706F-666A-4037-7777-203328764D10}) (Version: 2.0.3 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
KCService.de Fernwartung (HKLM-x32\...\{25D56EF8-ED54-41F2-B3AB-C62F76A54E1E}) (Version: 1.0.0 - KCS Service GmbH)
Logitech Vid (HKLM-x32\...\{4FBCEA31-5D18-4212-9231-DE7CF1BE7DBB}) (Version: 1.10.1009 - Logitech Inc.)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
Malwarebytes Anti-Malware Version 2.0.2.1012 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
MIADoc (HKLM-x32\...\MIADoc_is1) (Version: 1.0.20 - Schnuppig.de)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (Version: 4.5.50938 - Microsoft Corporation) Hidden
Microsoft Application Error Reporting (Version: 12.0.6015.5000 - Microsoft Corporation) Hidden
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Excel MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Home and Student 2007-Testversion (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Office 64-bit Components 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office OneNote MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office PowerPoint MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (English) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (French) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proof (Italian) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Proofing (German) 2007 (x32 Version: 12.0.4518.1014 - Microsoft Corporation) Hidden
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
Microsoft Office Shared 64-bit MUI (German) 2007 (Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Shared MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Office Word MUI (German) 2007 (x32 Version: 12.0.6612.1000 - Microsoft Corporation) Hidden
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (x32 Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50701 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (Version: 10.0.50706 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU (Version: 10.0.50701 - Microsoft Corporation) Hidden
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50701 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 32.0.3 (x86 de) (HKLM-x32\...\Mozilla Firefox 32.0.3 (x86 de)) (Version: 32.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 24.6.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 24.6.0 (x86 de)) (Version: 24.6.0 - Mozilla)
MSVCRT (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
MSVCRT_amd64 (x32 Version: 15.4.2862.0708 - Microsoft) Hidden
NVIDIA 3D Vision Controller-Treiber 285.62 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 285.62 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 311.06 - NVIDIA Corporation)
NVIDIA Grafiktreiber 311.06 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.06 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.2.24.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.2.24.0 - NVIDIA Corporation)
NVIDIA Install Application (Version: 2.1002.108.688 - NVIDIA Corporation) Hidden
NVIDIA PhysX (x32 Version: 9.11.0621 - NVIDIA Corporation) Hidden
NVIDIA PhysX-Systemsoftware 9.11.0621 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.11.0621 - NVIDIA Corporation)
NVIDIA Stereoscopic 3D Driver (x32 Version: 7.17.13.1106 - NVIDIA Corporation) Hidden
NVIDIA Systemsteuerung 311.06 (Version: 311.06 - NVIDIA Corporation) Hidden
NVIDIA Update 1.11.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.11.3 - NVIDIA Corporation)
NVIDIA Update Components (Version: 1.11.3 - NVIDIA Corporation) Hidden
PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.4.3 - Frank Heindörfer, Philip Chinery)
Pfadfinder 2.0 (HKLM-x32\...\{F0AF5265-0E76-4AC0-AE45-ACA6428D5EDA}) (Version: 1.0.0 - Bildungshaus Schulbuchverlage GmbH, Braunschweig)
PhotoFiltre 7 (HKCU\...\PhotoFiltre 7) (Version: - )
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6526 - Realtek Semiconductor Corp.)
Rund um (2.0) ... Klartext 5 (HKLM-x32\...\{05A67CE5-ADEC-4552-BF3A-FB0B77C5DA4D}) (Version: 1.00.0000 - Bildungshaus Schulbuchverlage Westermann Schroedel Diesterweg Schöningh Winklers GmbH)
Rund um (2.0) ... Klartext 6 (HKLM-x32\...\{3B55BC77-6F81-4E2C-9AC6-DAB49573EF84}) (Version: 1.00.0000 - Bildungshaus Schulbuchverlage Westermann Schroedel Diesterweg Schöningh Winklers GmbH)
Tetris Unlimited 0.5.0 (HKLM-x32\...\{93B12A27-25B5-4A0C-9601-CDF7FE495E12}_is1) (Version: 0.5.0 - Oscar Giner)
TL-WN751ND Driver (HKLM-x32\...\{14770694-6C1C-4137-95F9-6F934D8491B4}) (Version: 1.00.0000 - TP-LINK)
TV Jukebox 3.5 (HKLM-x32\...\{F3F1D08D-ABEF-4528-8383-54C46369EBB6}) (Version: 3.50.000 - Meta Media Inc)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2596620) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{A024FC7B-77DE-45DE-A058-1C049A17BFB3}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{90120000-002A-0000-1000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767849) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{CB68A5B0-3508-4193-AEB9-AF636DAECE0F}) (Version: - Microsoft)
Update for Microsoft Office 2007 suites (KB2767916) 32-Bit Edition (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{E9A82945-BA29-4EE8-8F2A-2F49545E9CF2}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VLC media player 2.0.2 (HKLM\...\VLC media player) (Version: 2.0.2 - VideoLAN)
Windows Live Communications Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Essentials (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Fotogalerie (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0 - Microsoft Corporation) Hidden
Windows Live Installer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Language Selector (Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Mail (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Messenger (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live MIME IFilter (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Movie Maker (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Common (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Photo Gallery (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live PIMT Platform (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Remote Client (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Client Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live Remote Service Resources (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Windows Live SOXE (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live SOXE Definitions (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live UX Platform Language Pack (x32 Version: 15.4.3508.1109 - Microsoft Corporation) Hidden
Windows Live Writer (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Windows Live Writer Resources (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
XMedia Recode Version 3.1.5.5 (HKLM-x32\...\{DDA3C325-47B2-4730-9672-BF3771C08799}_is1) (Version: 3.1.5.5 - XMedia Recode)
YTD Video Downloader 4.8.3 (HKLM-x32\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 4.8.3 - GreenTree Applications SRL)
Zamonien (HKLM-x32\...\Zamonien_is1) (Version: - )
==================== Custom CLSID (selected items): ==========================
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
CustomCLSID: HKU\S-1-5-21-3615877066-1852985509-462521372-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\*********\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3615877066-1852985509-462521372-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3615877066-1852985509-462521372-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3615877066-1852985509-462521372-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3615877066-1852985509-462521372-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3615877066-1852985509-462521372-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3615877066-1852985509-462521372-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3615877066-1852985509-462521372-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3615877066-1852985509-462521372-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\*********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
==================== Restore Points =========================
17-09-2014 15:07:52 Geplanter Prüfpunkt
24-09-2014 04:33:54 Windows Update
29-09-2014 16:51:10 Windows Update
29-09-2014 19:07:33 Windows Update
30-09-2014 05:57:18 Removed Skype™ 6.11
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (whitelisted) =============
(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)
Task: {00030B2C-50C8-4A2F-92A1-DC55FD51B915} - System32\Tasks\{940A0BE9-E0EA-4C2B-9C6F-BC115BE71F97} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {00D5938E-427C-483E-8023-598A9E1FBC6D} - System32\Tasks\{BF8AE8C6-43C4-44EC-81F8-8400443AF4BF} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {07F6DEDB-ECA2-4CCE-B9A3-6ED3B9934283} - System32\Tasks\{BA75D5B1-232D-4845-9D60-AF1F7AA2305D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {09E9842B-AADE-411D-A6AB-B5DDEB4EA8E4} - System32\Tasks\{AD1E7779-DFC2-4E26-AED3-BAD3581B6DEF} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {0B23B8CF-907D-4E7B-A700-2D58621B9C23} - System32\Tasks\{76376EB5-3243-4C72-8761-95212331A887} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {0C1ED059-C392-41AF-A9D6-E1C9CB52E0F3} - System32\Tasks\{CAA6CE2E-834A-48B6-BF45-E34867E81F54} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {0C1F9073-6BF8-470B-818B-9E5D2993BFF3} - System32\Tasks\{CFD32964-2F33-4B27-8EEF-40F057A20854} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {0CC515B6-47E9-4C29-9298-803C5EF914D7} - System32\Tasks\{7B0C73F1-C9CB-4E0D-81B6-FD22DACB42C5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {0EF99442-AE6E-484E-A03B-BBACC03B127B} - System32\Tasks\{DB48FBC3-EEE3-4509-BE13-5DD1D88CA291} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {0FCB095A-2D44-4F24-A266-A3CA6DDD36D3} - System32\Tasks\{F59AF99D-E4EA-4A0D-9B2B-347C3C4163A2} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {116D5C1E-0F74-49C4-8947-3E969104B917} - System32\Tasks\{C283493C-3AF4-4A22-AF18-E221EB46E962} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1240F03E-D7FD-4848-BD8C-AE1ACD292E63} - System32\Tasks\{9B11B512-D578-4A02-9DDC-B755064343D3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1480FC52-0B1E-4309-9A07-BF11C1F1C3B6} - System32\Tasks\{3558B486-8FA7-4939-8718-2DAF59A167A0} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {152E449C-DD58-498D-9848-F2405D5FE98A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-07] (Google Inc.)
Task: {178E8185-868E-42AC-9811-E4AC46207F4B} - System32\Tasks\{DE4CC5CE-0E8E-4C9E-A79A-E9D7D8CD4577} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1A9E9B82-0541-437E-B26B-BB4C0DD1D8CF} - System32\Tasks\{83502662-96EF-4468-A9A9-27FC958EB0B1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1D3F3F48-57CC-4769-B2DB-178606C737F4} - System32\Tasks\{8EA711B7-69FE-4864-AA6F-55FCFCFC9C6A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1D5CA837-239D-4870-9A31-75C14595639A} - System32\Tasks\{679B3A88-ACEC-4AD2-A61D-9E4C057BF49F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {1F8814D8-7FCE-43CF-80AD-F2C111DA410E} - System32\Tasks\{06A44C42-1B96-4CEA-9B8F-72F22A481FA8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {201B3D15-F34C-4B31-98A9-162C66434FCC} - System32\Tasks\{6A1928B4-7CBF-425E-93EB-D80F6F0888BE} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {22ACC7B9-6097-4F90-8E9D-910A3CAC5E02} - System32\Tasks\{314B9E23-3E98-43EE-96E1-804F741B0580} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {23021E71-D0C1-492A-BBE9-0A69738969CC} - System32\Tasks\{110A89C9-CD30-456C-A78A-3565DED04F77} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {241B456D-C7D3-4E4C-85DD-42869FE6D757} - System32\Tasks\{90932473-51D1-466A-80B5-2E2E49704CDA} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {24466D43-5145-44C2-AF11-120FF2CFF7CE} - System32\Tasks\{9690DAF7-BDE4-42B8-BC65-EAAFE9F823BC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {2534C1E8-91A4-4E0C-A1EF-140A4CF04783} - System32\Tasks\{9837F6B6-FBD3-4F55-8332-A7C648FA4CF7} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {25AE63D0-C4DC-400C-A822-57E45F6718EC} - System32\Tasks\{04AB1A41-F587-4B41-98A9-09AE1A40397D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {27361CD5-9849-42EF-B3F9-0DA83A0FC500} - System32\Tasks\{3DEA7400-AAB3-44F9-BEE5-73B263E0B415} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {27938144-E79B-4409-8D95-75856AFC48FC} - System32\Tasks\{4D81A30D-9C3A-4F7B-92E0-5B62750B3A27} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {27C8B45A-1A40-4001-B93A-DF7C227FC1BA} - System32\Tasks\{683576AF-3439-4645-92B6-55E58E681952} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {284A5AEC-C1CA-4730-A939-A2027545FAF8} - System32\Tasks\{91BEF611-A4AE-4F2F-90CA-E7ECD66B08C5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {2A4EDFAF-EDA2-49E5-879A-F6FB61EBAF9A} - System32\Tasks\{F40100B2-A68E-42BD-830F-1646D41CACE9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {2AC8AD1F-3FBB-4020-A7A4-7485C60F2337} - System32\Tasks\{84781C99-C8B0-4D8E-8D77-496AC2A6D069} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {2CFCCCAC-FE2D-4ADD-8EE2-5C5F1D4CD258} - System32\Tasks\{D4E1A9D1-5522-489B-98A4-D8EA582A4862} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {2D8780A7-936A-42D2-BD02-8634DB829706} - System32\Tasks\{2978175E-5854-427E-9539-CF9F3440FC22} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {2F104475-0093-4493-81EC-205F5E183E02} - System32\Tasks\{CB2C7100-05B9-4ABC-8424-052D3C9241FE} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {31C868C3-F03A-4EC0-8CCC-F81741214432} - System32\Tasks\{618824A3-3875-4DF1-A3AD-C19E7A2A3928} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {31CDF9C5-36BD-4768-A9A2-B30550F2E62D} - System32\Tasks\{47F86B6B-298A-450E-A3D2-22B3B1849A53} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {338EE647-57E1-468B-BEED-F262158D9815} - System32\Tasks\{364460A5-E144-4345-A4A0-28C3505CC73D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {345DD4C9-7CEC-49FA-947E-936FD818BFAB} - System32\Tasks\{CADE877E-AC91-44A8-A34F-4DF80F2C28ED} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {35304553-DA71-40F5-98AE-95E23FE753F8} - System32\Tasks\{FFFF6DAD-E6A6-4AEC-A956-6484478CCECC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {38022465-0000-4EDD-B425-249C70C4C6DA} - System32\Tasks\{ECCF8DC5-7807-4A4D-B519-4D3733EF271B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3817DB9A-29BD-44F2-ACFE-8EA5AD895D10} - System32\Tasks\{7CC37E23-8282-4547-AA25-8A4078EDD183} => Firefox.exe hxxp://ui.skype.com/ui/0/5.9.0.115/de/go/help.faq.installer?LastError=1603
Task: {388EBA06-7DD5-46D1-BBC7-A1678739B236} - System32\Tasks\{D46E8197-A920-477A-B8EA-45463903EF60} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {38DCC1E8-4396-4871-9836-EB7B521D2AA1} - System32\Tasks\{55DACE93-5F0F-4405-A06F-227C5B9BFDC8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3A33B479-C865-4B4D-AD06-C12D14D5FA38} - System32\Tasks\{4A81E4A5-EB30-4991-A9CA-7F2C9D246443} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3BCFA61E-EA8E-48A3-B9AC-BDE7A7E4233B} - System32\Tasks\{797B79FB-4625-44BB-B3CD-D8760AB31511} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3BE21A34-5115-46C1-A3E1-FA887974F431} - System32\Tasks\{80E85E7D-6D93-4C42-BB30-10AC30DFBF16} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3CACF75D-6D35-4399-86B1-D63AE2277C58} - System32\Tasks\{7753A780-F7E2-415E-9FBA-59D5C0CDCFAF} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {3CF327BF-F9F5-42C3-B8D3-A10AB17E789D} - System32\Tasks\{C0FA68F7-F1DF-4E8C-ACE9-17466B085E58} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {41B8CE3B-2D46-4D0D-877C-E5C95A3FAC01} - System32\Tasks\{4162C55A-B9E0-4FCA-BAA3-3CE4A52D2BCF} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {457BD8EB-9918-410E-B584-68B2D335A893} - System32\Tasks\{9C5D168C-0C65-4B4D-ADB8-B3C5796296F9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {458BA070-4346-4F0A-9C32-F2F74C9DD22E} - System32\Tasks\{E170E44B-3CC8-416E-9AF6-6B7BA86783AC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {46A8824F-3B8E-437B-A359-EA0D22356C1D} - System32\Tasks\{37A3714D-AEB0-4823-8BF9-24BA62AE4351} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {477C06A5-3330-43BE-A9FC-D90AB17ADCE7} - System32\Tasks\{CBB31A74-37A2-4828-9460-FE4E2C4BE21F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {47E185F4-A64F-472A-9C21-8FB12D6156F2} - System32\Tasks\{20C2868D-15E2-48C1-B0D7-00D33C7FE2C1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {47F84450-7571-44CF-B3D5-39D2A644BB20} - System32\Tasks\{E1F679C9-8C3E-438D-8177-5E99FC55A31B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {487A841F-1DF4-4303-BEC0-863298E125EA} - System32\Tasks\{51D554CC-F803-4543-83E4-A5AA66F25E2A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {48E2A71C-7D77-4C93-BE25-2724FEC115E5} - System32\Tasks\{7A6DDAF1-70B7-4ACE-8CD8-CC9EA9A52C34} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {490AF3B7-3A78-4B38-92FC-5DA1CCEBD7DB} - System32\Tasks\{A1DE3831-0E42-4493-B382-2EA346B34458} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4965299A-25C9-4038-A774-0F348E557CB1} - System32\Tasks\{E54F8624-6952-4985-AE17-9ECAD76C9947} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4A399B61-0CC9-415D-AFD4-E21168B2ED40} - System32\Tasks\{675688B4-3E43-48CF-B4C4-CD0811AFBADF} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4AC5AA66-6D7A-41CF-9D8F-15B538FC1D0A} - System32\Tasks\{D41E5D5B-56E8-4F91-B0D3-0D6C9788FB00} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4D1BE95B-44E7-4F90-B52F-F719114CFB08} - System32\Tasks\{073DF7FD-357C-4F2F-AD35-DB5D7349E0C4} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4E73E4CC-8F37-430F-9397-6AABEF710D34} - System32\Tasks\{2447C74B-5F3D-4909-828F-11138A93524A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {4EEB050E-0998-4CC4-BC27-8CC4530C130E} - System32\Tasks\{F276BBFE-3C78-4FFC-B030-C0F13E64C7A9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {519B809B-49A1-47AD-9A1E-119BC9075EE6} - System32\Tasks\{09D93DE8-1A02-4D71-9FFB-3361D5F0ED3F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {519CDD31-CB7E-4A69-864C-0B12363251A0} - System32\Tasks\{5F6DFA15-B5F3-426D-8680-01391A004F0B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {52000759-CE71-4221-B021-644B5DA621EE} - System32\Tasks\{42A90C6F-F4F9-464E-B563-4FF8DBCF5DC9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {52898BE5-494A-4548-8AB9-B6BE2D6C58CD} - System32\Tasks\{ECBCFB7B-C27B-4CB4-9A3D-3A7383B2FB12} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {538D9436-E6E8-4AA2-B3F5-55951679BF0D} - System32\Tasks\{01EAA2DD-36C8-49D8-A2B6-268CAD215C3C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {54C1E4DF-59DD-4129-B42D-21ADF1D5C152} - System32\Tasks\{022C7935-EEFB-43FA-9052-41CBB22C534D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {556D37A3-B342-4C51-A6D1-C72117632661} - System32\Tasks\{15C08EC7-E6EF-41C6-94C7-5E03B2B233A7} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {56691405-23EB-4E18-8D03-7180AD8E8E06} - System32\Tasks\{66132B10-11C6-4D62-A0F1-2EC70919AD8D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {570C77FF-9E9C-4397-9389-A8A5F4454353} - System32\Tasks\{5720AF94-0857-4F29-857C-9D281EDB1CBF} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5754960B-7C4D-4234-BAD7-6DCF1F2908AA} - System32\Tasks\{6D6A310C-4369-4B7A-AE52-331B18F335BB} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {58556B3E-22FE-4BCE-94A1-3A7B560B3552} - System32\Tasks\{3159648C-0DD3-45CB-99D6-5B0537A2BF42} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {588AB5BC-D5E3-4C53-9FA6-A0AAF2246DA6} - System32\Tasks\{F37742DE-DC5F-456C-B27B-0B83E97E93F0} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {590D5536-FFDE-4E88-AEA0-6F1D52BAE00A} - System32\Tasks\{09147FDA-A0C7-41EC-A56F-511FF8458406} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {59A080E0-C90A-4B73-BD48-3F2ADEC7B155} - System32\Tasks\{49FF1936-1995-4B4E-8205-30239C371573} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5A47CC28-4F1F-4BE0-9319-E3B852C1EC5D} - System32\Tasks\{90CAB49B-52AA-48CD-AE8A-137B268F669E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5A8640F0-6B08-4052-8383-BA3A734B6A7C} - System32\Tasks\{D17D807B-DBF0-4ADF-B786-EF1D3214FC47} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5B61A78D-4E40-4582-8CD7-C622D2C4F1EB} - System32\Tasks\{514D70B7-4A20-4FE7-B5A2-3AA8F2311A07} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5BB9C156-A0BB-4F39-BC5C-C115108C43F3} - System32\Tasks\{5BEE0C7E-7320-49CC-869B-7C6E639FB33B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5CD47BB3-92F1-45E9-B301-CA64C659E09D} - System32\Tasks\{5F87A957-6F25-4B19-BEFD-A503EF2C045B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5E15CF02-C558-46E9-9452-6A03D9B1FA03} - System32\Tasks\{A6694BAB-CF2C-4176-A3D8-FE5DBCB168C4} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {5E1F9F54-0A63-408A-A693-715A580C2B0B} - System32\Tasks\{08A8060E-9417-45B1-B8C2-313E4AF6AA52} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6062F249-3C91-458A-BA1D-D693C6324E13} - System32\Tasks\{70EE5A3D-43CB-4223-AFAE-0C43A839E837} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {62A1BF4A-74C9-4D6A-8103-10BB2BFEB254} - System32\Tasks\{026BFC5A-6EC3-45D5-96C3-6C5946C8F74E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {64018437-2996-48B6-A095-50B860A5173E} - System32\Tasks\{D5E47973-673D-4752-B7D2-97F3E04E9092} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6565DE21-66FB-4FC4-A1EE-7CFE232743BD} - System32\Tasks\{7AAC7271-F297-4E8D-BB50-28161E2A64AD} => Firefox.exe hxxp://ui.skype.com/ui/0/5.8.0.158/de/go/help.faq.installer?LastError=1603
Task: {6898AAA5-4610-4148-A9F9-73C4F711D897} - System32\Tasks\{93D0AFAF-69EA-4A9F-BFB6-C6266A309150} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {69AAFD4C-2900-47AF-B34F-D629581F998F} - System32\Tasks\{67477EF6-7AD5-4C25-9508-A4B780FCCB7F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6AE2DF62-9159-4C14-A84D-2C08EF2F7AB0} - System32\Tasks\{FD2680D2-0E9C-418A-863D-8477BF9E639A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6BA5AEC9-1BC0-4DC2-BC46-656F0138FF0F} - System32\Tasks\{A62B61BA-B4DB-4FCA-ADC3-66D232B17F4C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6BE24138-10BE-45AA-B82E-10B41E74AB0B} - System32\Tasks\{79117D19-3BD5-45AD-BC74-A6B29F0A89E5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6BEBB895-77BD-4459-B19A-F34FDF78069B} - System32\Tasks\{0B4D6DC5-C483-4369-962F-333FE8853441} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6DCA986B-1E25-4405-B941-2D2B97314E65} - System32\Tasks\{FE30AFE0-B61C-42A6-961D-72655D1DE2DC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6F3BA0E6-63FA-4FAB-856D-6D572EF50C1B} - System32\Tasks\{DF1D2813-0993-4176-BCF9-236CE5B5ECCD} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {6FC0AA5F-F5E4-4775-B4E1-5553B7A649BC} - System32\Tasks\{005B5470-4E73-4184-A940-E98B00F18FF1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {70A747E7-E641-4546-AC58-2A8B18076D6C} - System32\Tasks\Abelssoft\Updater scan => C:\Program Files (x86)\CHIP Updater\CHIPUpdater.exe
Task: {70C57E6D-0735-421A-90E3-886C60781587} - System32\Tasks\{15B79457-AB94-4CA7-9C21-C09EF5988B22} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {71707A67-F901-47CD-8D2F-1DEF00FCA373} - System32\Tasks\{0252FC08-345F-449C-B496-84B487F8A607} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {71CFEED1-DCEC-4378-8490-FE8637F4371E} - System32\Tasks\{4156F70B-BE23-4050-90DE-8041BF12B82F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {71D0E2ED-97DF-4601-86B5-38F123B3889F} - System32\Tasks\{7B2AA398-4165-47D4-9CD9-D8FE72078BD7} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {74C55D10-7C54-48BB-B1D6-966FC39938C5} - System32\Tasks\{63A9234E-8888-4D22-811C-494BA775EB1F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {761A6D26-877B-4EF6-8287-C9BEEBB4C096} - System32\Tasks\{F252154E-1F0C-40F3-A40C-3A0BD21B3F10} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7705E6B4-D392-4BA0-A263-E3FB59B88DFE} - System32\Tasks\Installer_delay => C:\Users\*********\AppData\Local\Installer\Install_13886\setup.exe [2014-09-29] () <==== ATTENTION
Task: {771E57C6-CFE6-4DC3-B1D0-136022C3B557} - System32\Tasks\{865AF93A-E8A4-41A5-A59F-57B554A2D678} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {783B3F6E-57F3-4537-AC06-0788034E775D} - System32\Tasks\{65F5FB10-8E03-4D12-AAF0-02B82CC9BAFD} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7B4FE191-FFC1-4D95-9A57-209F9706C654} - System32\Tasks\{AAFE7106-3857-44D3-8E9B-C660AA99B159} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7D26B92F-7A6A-4A4F-AA1E-1C83A2081FB7} - System32\Tasks\{DE1A3343-8D6B-4950-ADFC-B917ADA91631} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7E89BD41-715C-447E-967F-94084AAEFF2C} - System32\Tasks\{8B83C185-ECB5-465F-93BF-556027B5BDB9} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7F109F93-3A01-4E54-8E06-51B70E4368A5} - System32\Tasks\{7E003334-9740-41D1-82F3-84A034F0ED34} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {7FFA7D85-5810-4B54-8DD7-DA49FD5FAE62} - System32\Tasks\{F61FEED2-91E6-4908-B8B5-237B71A4A9E6} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {80CD6604-7431-4BC3-AB20-A4B507A3A5B1} - System32\Tasks\{6F78626B-1906-4FFF-B7F1-F70523F41B46} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8155A8D3-3C8F-49C7-A5F5-CDD641759A7E} - System32\Tasks\{4920800D-C87C-4A88-94F7-AED8283A39E8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {82233BA2-5840-4BCF-AF8D-68F039E7DEED} - System32\Tasks\{7A98C0E0-3502-48E7-8D1F-1C9B644B9B6F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {82698E0F-BAA4-4CD1-BEED-49B939C6F878} - System32\Tasks\{F4445FCB-7B93-4D46-BC53-2806F4386827} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {84950B3C-DDA1-4B9A-9419-969894189F8E} - System32\Tasks\{C5BF3554-ABA6-4CB9-92A9-2CDFF8F36EB8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {851C211C-61E2-441A-97C6-6D0D54BA3530} - System32\Tasks\{62FCDE76-7F5B-4FEB-A3A5-B1982C3D41F6} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8730A01C-FEC7-42A0-A001-9DD1D2D8C6FC} - System32\Tasks\{0D1CAD0E-E027-452D-8C53-29D1B28778E1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8B79EB57-F28A-485C-806C-BDA226556751} - System32\Tasks\{ED7250FA-A8AA-4112-AFEB-52516553F237} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8BF5D58C-272F-43A2-92B2-56D5AABF389B} - System32\Tasks\{12246677-766C-48EC-866F-E26FF442C093} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {8CEED79C-3C10-4212-8F82-43A3D5618639} - System32\Tasks\{7AA8B2C1-A97D-4797-9815-FF399C2AE121} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9050E9ED-5C49-406D-A54E-0FDE7D41EFFF} - System32\Tasks\{E20F0092-12CD-4961-97C0-31F503BABE9F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9176FBB6-4442-4D44-A3C8-D8E5CF8B7247} - System32\Tasks\{9679B9AC-888B-4D0C-BA96-F6AFEF940CA5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {92FB08EF-C2DF-4AD3-8206-703E4A296A70} - System32\Tasks\{A720DE59-3455-45E9-B7D7-B652AAA07876} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9468F97B-B344-4FFA-8D6E-0AACE0789093} - System32\Tasks\{95D92A2E-472E-4092-AA1E-2988247BC00A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {94FDEB8D-507A-4B7F-A9B9-1E9776921EA0} - System32\Tasks\{D12BF27F-6A2F-4C07-97AF-D9D0DABB6F7D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {974C495E-A621-4981-BF1A-3D257C705E2F} - System32\Tasks\{29C07182-DEF6-4A60-AF6F-60FB098E8F06} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {98930D1F-AFDC-48FB-BE36-6BB94609E7F2} - System32\Tasks\{47A6BE28-61C2-45EE-B28A-E4B3EA552F84} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {98AF0BE3-4DE9-43CF-ADCC-DB94846D8B8C} - System32\Tasks\{E33512EC-0D30-47F3-B9C2-DCF3A742A5BA} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9BFC6906-50F3-4DD4-98E7-B8F63FED224B} - System32\Tasks\{7D8A0E05-D3A1-4CF4-9003-B89270456D2F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9CFAAD41-6373-4DFF-A776-CB5E6CD66AFD} - System32\Tasks\{79F8F46F-10DF-405D-AFF0-CA0F32C6F659} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9DB4FC8D-0602-400F-8E20-FE3850D3D16C} - System32\Tasks\{7E538A06-0DA5-4BD0-8999-BEA968F3C84A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {9EB3246B-F1AA-453F-8C5D-65AB2BFF1FE1} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
Task: {9ED1D013-840A-45DD-A09B-89D30BC64FC9} - System32\Tasks\{DEE16426-2173-4C26-BDB6-D6AE7081EA14} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A0FF3B2B-6797-4DFC-BB23-656728E7BF18} - System32\Tasks\{9024AE95-C129-454E-8608-D8A3D310458E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A30C1359-3A65-4C4B-9B94-5CB2683E9BD4} - System32\Tasks\{807ABF1C-422D-4A6A-8F25-B7CA0E278C60} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A40B0F90-DD57-4645-AC03-BB3771935CF1} - System32\Tasks\{ED2E0618-CA7D-42B7-86D0-EF62E022AE62} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A41C66F4-C9BF-4CA5-9BCC-0CA7951E2A79} - System32\Tasks\{373F68B0-1804-46B1-92B2-8A6FCFB2A646} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A41F9A1F-A288-4A83-ACD7-01088899A5A0} - System32\Tasks\{FD2E2D8F-8730-4C14-880C-A0AB2581D21B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A485B6C3-5188-43FF-B84A-24E71FDC35AB} - System32\Tasks\{10F7B4A2-4768-4BCE-ADCB-C944F207EE8B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A60AC25A-5536-4E4F-B5F6-01D8BBB3C129} - System32\Tasks\{18278638-C6D5-41AD-87C3-45B0341DA0C3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A65E7195-122E-4602-B24C-204684756633} - System32\Tasks\{DFFB48E3-D2C3-42A9-9F0E-71501818374F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A72170E3-F472-4AF7-B2EF-7E715B4BCEC6} - System32\Tasks\{D0D3FFAE-2C9E-458A-9650-0F97141B98B4} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A841CA14-B84E-48A6-9ABA-9EC52D9D7811} - System32\Tasks\{CFA21C92-01CA-4A7A-B7AD-27EE8709DDF7} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A96E6134-81D8-45BF-84A7-84EE43DAF1D1} - System32\Tasks\{D9154F12-5F0C-40DF-AF23-B606D4D6276F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {A9F23B77-2AD6-4DAF-B087-E7EC12E86DD1} - System32\Tasks\{C3D109E8-4CB1-4A38-9F51-8D30A6F962E0} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {AA83EB78-841D-4E04-B8EB-DC353BFF5BFB} - System32\Tasks\{72B0689E-17DC-4B85-8A8A-0EA391F39293} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {AB3DA9FB-E034-4D5E-ABE9-11C69F4D5C05} - System32\Tasks\{6B682F74-D86F-4BD1-A515-E722CDCECEBC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {ABA8BEBA-37A6-4CA5-A20D-A2F29B48C14B} - System32\Tasks\{885C1087-A9F7-4A0E-8828-C619C63682ED} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {ADB0E59B-653E-489B-B9E3-F9F450381DA7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-09-24] (Adobe Systems Incorporated)
Task: {AEDDAEA4-F1D2-42D5-B55F-54829521EF8A} - System32\Tasks\{157F3421-8D4E-4510-B6AE-369A192F0086} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {AF2F8A42-7D5D-400D-BFAF-E6AAB9520DE9} - System32\Tasks\{FBD6A587-123B-4378-BBF1-8EAFD38657C4} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {AFD02A05-5B72-4BE4-8370-855E46250CBE} - System32\Tasks\{C2D0779D-E8F2-446F-9755-A5CAEFC49F8D} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B053DAE6-546F-46AA-B672-8BC74DB70900} - System32\Tasks\{F47D0C72-48BB-46EB-A5BB-F5E180CCE5B5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B1D28732-E851-4F30-82B3-FD9A27B04303} - System32\Tasks\{ED3649C7-9C60-4E6C-A705-DD35B23EA56A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B340F406-0E9D-4AF5-BE9D-41771BEA3E45} - System32\Tasks\{F091C06B-0487-4E85-935A-1BFDE58BAF1F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B3947974-E6AF-4448-BCE0-50B8818FBC4E} - System32\Tasks\{0FA51003-85BA-4BF4-8207-35C2FA32F4E5} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B4CE922E-5E72-43A2-9582-8D2FFF9AB761} - System32\Tasks\{1D383A57-CCE9-4440-917C-4F35E1C44DC8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B7A8C1E5-3E28-4FAD-A8EB-559816A6DF16} - System32\Tasks\{B0931E05-2D9A-4BB3-BBE1-7B9273E69119} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B917016F-A575-4F75-B21C-3CED445DD5C8} - System32\Tasks\{7964A77D-29EA-41B7-BEE6-609597D84DAC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {B9382AA4-5FDA-44EC-BF43-978260E1CBC3} - System32\Tasks\{6A9FDF94-D89F-44B3-A37B-CFDE528F48EE} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BB1F72B2-06F6-42DD-9ED9-D81C26F6927A} - System32\Tasks\{3F90C541-E804-4EF3-8390-A28B13A41C64} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BC704DFC-3637-43A2-8731-EF214C19BFE5} - System32\Tasks\{45BD9CA7-E45A-4204-8D05-3B9B8F90B459} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BD2E219E-6A6D-4B29-A4DA-C65A1ED4B0BF} - System32\Tasks\{6B9D20B2-C937-480B-B884-F391D2D25E8E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BD6611FF-66AB-4CE1-9FDA-ECD4FD605D94} - System32\Tasks\{C024CB30-2134-4BD3-8FF1-A26248E7C900} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BD704283-B22B-4651-BBBB-82E242F90B6C} - System32\Tasks\{0C867602-3D68-44A0-B12D-8DA5B6A4C312} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BEC901BE-306E-43C6-BCE1-6469348D0B22} - System32\Tasks\{D0D3F794-3427-493D-AEA3-6B85DEF0C3D4} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {BEF385D5-9004-46F4-83A7-73521ECC567B} - System32\Tasks\{46EDF2F0-C8A9-4068-9D78-39A7354DAEBF} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C0375B92-D945-4FF2-B550-92A60F497BD4} - System32\Tasks\{494789EB-D737-46FD-A241-26FC0D07E67E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C39DFFC6-8FBB-4476-9F1C-FABB4FBA8D04} - System32\Tasks\{2964C97D-C543-40BF-A3C0-CD58C9BAA68E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C3A04268-E301-4796-A70F-3127292D38E3} - System32\Tasks\AdobeAAMUpdater-1.0-AK-KCShome-********* => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {C42DF957-8909-498A-B34D-8721B107B649} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-07] (Google Inc.)
Task: {C5FBADBC-1F0C-440F-AC0C-1BA1B0A922E5} - System32\Tasks\{F7B4B406-D893-4645-9CED-CE6952BB8374} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {C6AC0B4E-C7DF-478C-B7B0-D29D072CA6C3} - System32\Tasks\{001488A4-34E3-426C-B0C1-AE96F2E8C30A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {CB1719C9-80DA-4CE6-9591-CC9FB4BF3BD6} - System32\Tasks\{E2B5E0CA-7552-4701-8DCB-BC4A6696278B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D2A80FA6-B262-419E-BBB7-D4002B761BCA} - System32\Tasks\{5B948AD4-794C-475B-B539-D43941E1B229} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D32E90CA-DBD6-4232-91CC-2F837BBF47A8} - System32\Tasks\{96E4BB34-A84F-4954-8997-119C0D0B2181} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D3E40197-CD9E-450A-89DA-518FC4F64376} - System32\Tasks\{1555F844-D27D-4AA9-B8AE-8715F52C35CB} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D4F2711A-EC9F-41E0-ACC8-05B9F1CADE23} - System32\Tasks\{232BC29A-7A40-4465-90FA-7859F3E33965} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D4F3F6D9-619F-4BA7-8B07-6008DDFD1D81} - System32\Tasks\{F000B8B5-9D81-4FD3-AD5F-AA3EDD4376A8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D6A413B2-BE4A-4268-90DA-2321F32487A7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-08-21] (Piriform Ltd)
Task: {D7C78FCF-95D1-4337-A89D-4E3B0D067B66} - System32\Tasks\{7E6FC263-CDC1-4A35-800C-2A8E8A0B1DCD} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {D88CA06C-C522-4180-83E6-43B122470491} - System32\Tasks\{3AC7AA6E-DE90-44A1-AF2B-D78A7EAD35B4} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DA0A3E1A-5D73-4E10-9BA2-9A563605274A} - System32\Tasks\{683A92B5-6D00-48CB-A624-5D06333FD055} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DA19BBB8-502E-4CD0-85BB-0F7973EFC03E} - System32\Tasks\{9C728EC5-DFDB-4F58-A44E-D670C9540C2C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DD46340F-EB82-42E9-B89E-7703338A9C7C} - System32\Tasks\{917E91DA-4094-437E-BA83-73D866B76D99} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {DD9F9A24-F738-4E5B-A7A3-323F4ABB0F3E} - System32\Tasks\{D770159C-19EF-4DC6-BED6-5AA308A3DD9A} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E1D6C308-068C-4964-80ED-42D7D40E2B0D} - System32\Tasks\{5C36F0AC-8CF6-4379-A81A-C9B559E1E1A7} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E4230E62-578E-4BA3-94C3-FF8A08651CD0} - System32\Tasks\{6ED68F23-3CC2-456F-AE2C-1308863916C3} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E4805F9C-DB5E-40F7-9648-72E16BAC510D} - System32\Tasks\{4A4975F1-AB43-40C2-B9C3-6E5DAF0D51C1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E527972C-0DD3-4191-B11E-8FF3350CDEC4} - System32\Tasks\{5BF0849E-DC15-4A1A-B2F6-2CE08220D7BD} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E52DF310-F35E-4774-AC47-1096DFF06B48} - System32\Tasks\{A4E02753-D692-4DEC-BEF7-F1016F0A7BAF} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E68D1E8C-F3BD-4486-9AF1-3DB759CCD023} - System32\Tasks\{965F9C77-C751-4BFA-A799-3204737C7DDC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {E9B06935-D421-4B55-B4F2-924A534DD56C} - System32\Tasks\{7F8D10AC-D3C1-49BF-91D7-6165FC58EECE} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EA867767-E629-48AA-98C5-7BE76C47D97F} - System32\Tasks\{8D3B7CBA-0082-4E69-84DC-0E47E71FE565} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EAB126D9-9909-4608-A89B-6055D760E6D5} - System32\Tasks\{0747C99C-AF56-4D57-B3A2-0029918708E6} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EBAEA600-F244-41AB-BA46-07C50205AFE0} - System32\Tasks\{5E4652E5-2DD6-4EF8-B4A8-1956A775407C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EBFB9607-D8C1-4A40-91E9-82964C313232} - System32\Tasks\{E76BA470-F1BE-4271-9232-C6002D5C2CB6} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EC208D79-64DF-4FCA-826B-7C9C50CB4DBE} - System32\Tasks\{343D402E-0D37-48F6-A1E9-29441269C76D} => Firefox.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {ECB607B9-5A7F-47B2-A256-5EB5F3A8CF2D} - System32\Tasks\{04361BB8-8C96-4FC4-8045-C98AC8B2C3BF} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EE1B177E-EDE5-4B47-BCA5-9B9EFF93C297} - System32\Tasks\{9440497A-8CC4-4F81-AE9F-5F76302B846B} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {EE339EDD-FAFA-4DBD-BB2C-CADC0503E2CB} - System32\Tasks\{0AE557DB-1A0A-436D-9085-51EA187560F8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F01BC02F-1737-4188-B9E0-8A73DFB51757} - System32\Tasks\{D93995F6-B42A-4CD3-AB17-128C63361287} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F0C2B9BB-FDF8-40B4-964D-BE26B86EBC29} - System32\Tasks\{E4A89BF2-8A01-4E2A-9716-C07A606D5EB0} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F0DB5B85-BECB-4D82-A287-A93F5A2E1B87} - System32\Tasks\{772809F6-6EB7-4E64-BAE2-B2E600ACEA4E} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F159EDC7-71BF-4D0D-BCD5-C9B6A968697A} - System32\Tasks\{1205F4CC-EA3E-45CD-918F-4C5851540AE8} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F1B611C2-714E-4C4F-839C-99EF0CF4AF0F} - System32\Tasks\{AA3A3A34-FB74-4295-AF7E-A5ACE1276A6C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F1CD7AA1-1889-4509-8E24-8568A5F0D263} - System32\Tasks\{369367A9-DF21-4B1C-B9EF-B158F84F9216} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F482BB01-F1FD-428B-8039-9761E21FFFAE} - System32\Tasks\{3858726F-CA9C-48AD-87D2-F1C496DB8515} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F7A71456-2C55-4005-8953-9A9122ED7983} - System32\Tasks\{65EE91E5-7A1B-432E-ABE1-7BC637FF43AC} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F876F675-16B8-4AA5-912D-9365E60054DF} - System32\Tasks\{85924A77-79B3-4145-BC79-9364C3093843} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {F90193BE-CE37-4CC2-9203-706FF043FB02} - System32\Tasks\{297B5EA9-446B-4880-A998-E47DFFD9C2EA} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {FA2883EA-E868-4465-9359-66594FDDB256} - System32\Tasks\{E110B860-EF8E-4609-A92E-F94B1FF8E30F} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {FB681557-2215-4ECD-BF55-DBB31D71B260} - System32\Tasks\{CA42E1F3-40FD-4B21-9E4D-3A61C3E1F4F4} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {FD66F383-9488-401E-9E86-DAE9AF58B38E} - System32\Tasks\{5BDDECE8-E535-4665-BFBC-C1638CBA350C} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {FE366DD7-3D26-4046-9A46-2F67E81FA246} - System32\Tasks\{6ABD8AB1-B6B5-4BB5-A545-5EA5826EC2DD} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {FE5565AB-5B1D-4871-A23C-85DFEBF41882} - System32\Tasks\{DC44406F-CBFA-4957-A299-9A03B2B9A9E1} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: {FFB8CC65-7FBF-45B7-9B0D-80073E9EB2FE} - System32\Tasks\{9321EC3F-0F62-4E63-9630-FE95CB4B7598} => Iexplore.exe hxxp://ui.skype.com/ui/0/5.10.0.116/de/go/help.faq.installer?LastError=1603
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (whitelisted) =============
2012-02-03 13:44 - 2013-01-18 17:00 - 00087328 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2014-06-25 16:51 - 2014-06-25 16:51 - 00672416 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
2014-07-06 23:37 - 2014-07-22 22:46 - 03356480 _____ () C:\Users\*********\AppData\Local\Amazon Music\Amazon Music Helper.exe
2009-10-14 14:36 - 2009-10-14 14:36 - 02793304 _____ () C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
2014-06-25 16:50 - 2014-06-25 16:50 - 05558944 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2014-07-31 12:16 - 2014-07-31 12:16 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-07-31 12:16 - 2014-07-31 12:16 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2012-03-05 15:13 - 2010-11-10 19:58 - 00019456 _____ () C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServerps.dll
2014-08-27 15:00 - 2014-08-27 15:00 - 00139056 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.NativeCore.dll
2014-08-27 15:00 - 2014-08-27 15:00 - 00066864 _____ () C:\Program Files (x86)\Avira\My Avira\Avira.OE.AvConnectorNative.dll
2014-09-30 13:33 - 2014-08-27 15:00 - 00052472 _____ () C:\Users\*********\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
2014-10-01 09:11 - 2014-10-01 09:11 - 00043008 _____ () c:\Users\*********\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpfvwjph.dll
2013-08-23 21:01 - 2013-08-23 21:01 - 25100288 _____ () C:\Users\*********\AppData\Roaming\Dropbox\bin\libcef.dll
2014-07-03 06:45 - 2014-07-03 06:45 - 32733056 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CEF\libcef.dll
2012-09-23 20:43 - 2012-09-23 20:43 - 00010240 _____ () C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\locale\de_de\acrotray.deu
2014-09-10 17:06 - 2014-09-10 17:06 - 00172544 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\1212244b6b479404b3b8d33a03eb2bf6\IsdiInterop.ni.dll
2012-02-03 13:43 - 2011-10-17 16:08 - 00059904 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-09-25 07:10 - 2014-09-25 07:10 - 03715184 _____ () C:\Program Files (x86)\Mozilla Firefox\mozjs.dll
==================== Alternate Data Streams (whitelisted) =========
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
AlternateDataStreams: C:\ProgramData\TEMP:56E2E879
==================== Safe Mode (whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (whitelisted) =============
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
==================== MSCONFIG/TASK MANAGER disabled items =========
(Currently there is no automatic fix for this section.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Audible Download Manager.lnk => C:\Windows\pss\Audible Download Manager.lnk.CommonStartup
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: tvjbmonitor => C:\Program Files (x86)\TV Jukebox 3.5\tvjbMonitor.exe
========================= Accounts: ==========================
Administrator (S-1-5-21-3615877066-1852985509-462521372-500 - Administrator - Disabled)
********* (S-1-5-21-3615877066-1852985509-462521372-1001 - Administrator - Enabled) => C:\Users\*********
Gast (S-1-5-21-3615877066-1852985509-462521372-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3615877066-1852985509-462521372-1005 - Limited - Enabled)
UpdatusUser (S-1-5-21-3615877066-1852985509-462521372-1000 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Faulty Device Manager Devices =============
Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (10/01/2014 09:11:51 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003
System errors:
=============
Error: (10/01/2014 09:13:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "NVIDIA Update Service Daemon" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1069
Error: (10/01/2014 09:13:07 AM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Der Dienst "nvUpdatusService" konnte sich nicht als ".\UpdatusUser" mit dem aktuellen Kennwort aufgrund des folgenden Fehlers anmelden:
%%1330
Vergewissern Sie sich, dass der Dienst richtig konfiguriert ist im Dienste-Snap-In in der Microsoft Management Console (MMC).
Microsoft Office Sessions:
=========================
Error: (05/14/2012 05:37:37 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 0 seconds with 0 seconds of active time. This session ended with a crash.
Error: (05/14/2012 05:37:29 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 2233 seconds with 1560 seconds of active time. This session ended with a crash.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-2500K CPU @ 3.30GHz
Percentage of memory in use: 39%
Total physical RAM: 4077.22 MB
Available physical RAM: 2457.05 MB
Total Pagefile: 8152.62 MB
Available Pagefile: 6095.77 MB
Total Virtual: 8192 MB
Available Virtual: 8191.83 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:200 GB) (Free:82.47 GB) NTFS ==>[Drive with boot components (obtained from BCD)]
Drive d: () (Fixed) (Total:265.76 GB) (Free:217.79 GB) NTFS
Drive e: (AMERICAN_HORROR_STORY_S2_D3) (CDROM) (Total:7.27 GB) (Free:0 GB) UDF
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: E08AEFD9)
Partition 1: (Active) - (Size=200 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=265.8 GB) - (Type=07 NTFS)
==================== End Of Log ============================
Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlauf Datum: 01.10.2014 Suchlauf-Zeit: 10:29:59 Logdatei: mwbam.txt Administrator: Ja Version: 2.00.2.1012 Malware Datenbank: v2014.10.01.03 Rootkit Datenbank: v2014.09.19.01 Lizenz: Kostenlos Malware Schutz: Deaktiviert Bösartiger Webseiten Schutz: Deaktiviert Self-protection: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: ******** Suchlauf-Art: Bedrohungs-Suchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 352544 Verstrichene Zeit: 10 Min, 54 Sek Speicher: Aktiviert Autostart: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristics: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (No malicious items detected) Module: 0 (No malicious items detected) Registrierungsschlüssel: 0 (No malicious items detected) Registrierungswerte: 0 (No malicious items detected) Registrierungsdaten: 0 (No malicious items detected) Ordner: 0 (No malicious items detected) Dateien: 2 PUP.Optional.GoobZo, C:\Users\********\AppData\Local\Temp\Install_12903\delay.exe, , [8700bf502656bb7bd0f806f363a1629e], PUP.Optional.GoobZo, C:\Users\********\AppData\Local\Temp\Install_14799\delay.exe, , [7d0afd12cab2a0964f79a653a460a45c], Physische Sektoren: 0 (No malicious items detected) (end) |
|
01.10.2014, 13:22
| #2 |
| /// the machine /// TB-Ausbilder    | Entfernen der Adware 'Goobzo.2825' hi,
__________________Downloade Dir bitte  AdwCleaner auf deinen Desktop.
Beende bitte Deine Schutzsoftware um eventuelle Konflikte zu vermeiden.
und ein frisches FRST log bitte.
__________________ |
|
01.10.2014, 13:54
| #3 |
| | Entfernen der Adware 'Goobzo.2825' Hallo Schrauber,
__________________besten Dank für die schnelle Antwort! Hier die Textdateien: AdwCleaner: AdwCleaner Logfile: Code:
ATTFilter # AdwCleaner v3.311 - Bericht erstellt am 01/10/2014 um 14:26:11
# Aktualisiert 30/09/2014 von Xplode
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (64 bits)
# Benutzername : ******** - AK-KCSHOME
# Gestartet von : C:\Users\********\Desktop\adwcleaner_3.311.exe
# Option : Löschen
***** [ Dienste ] *****
***** [ Dateien / Ordner ] *****
***** [ Tasks ] *****
***** [ Verknüpfungen ] *****
***** [ Registrierungsdatenbank ] *****
***** [ Browser ] *****
-\\ Internet Explorer v11.0.9600.17280
-\\ Mozilla Firefox v32.0.3 (x86 de)
[ Datei : C:\Users\********\AppData\Roaming\Mozilla\Firefox\Profiles\cff1d4d4.default-1412057210461\prefs.js ]
*************************
AdwCleaner[R0].txt - [9297 octets] - [29/09/2014 18:59:11]
AdwCleaner[R1].txt - [999 octets] - [29/09/2014 20:38:56]
AdwCleaner[R2].txt - [1119 octets] - [29/09/2014 20:50:35]
AdwCleaner[R3].txt - [1182 octets] - [30/09/2014 07:59:22]
AdwCleaner[R4].txt - [1398 octets] - [01/10/2014 07:41:19]
AdwCleaner[R5].txt - [1432 octets] - [01/10/2014 14:24:58]
AdwCleaner[S0].txt - [7020 octets] - [29/09/2014 19:02:47]
AdwCleaner[S1].txt - [1059 octets] - [29/09/2014 20:40:07]
AdwCleaner[S2].txt - [1244 octets] - [30/09/2014 08:00:16]
AdwCleaner[S3].txt - [1413 octets] - [01/10/2014 07:46:11]
AdwCleaner[S4].txt - [1353 octets] - [01/10/2014 14:26:11]
########## EOF - C:\AdwCleaner\AdwCleaner[S4].txt - [1413 octets] ##########
JRT: Code:
ATTFilter ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.2.4 (10.01.2014:1)
OS: Windows 7 Home Premium x64
Ran by ******** on 01.10.2014 at 14:29:04,65
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~ Services
~~~ Registry Values
~~~ Registry Keys
~~~ Files
~~~ Folders
~~~ FireFox
Emptied folder: C:\Users\********\AppData\Roaming\mozilla\firefox\profiles\cff1d4d4.default-1412057210461\minidumps [2 files]
~~~ Event Viewer Logs were cleared
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 01.10.2014 at 14:31:44,91
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-09-2014
Ran by ******** (administrator) on AK-KCSHOME on 01-10-2014 14:40:50
Running from C:\Users\********\Desktop
Loaded Profile: ******** (Available profiles: UpdatusUser & ********)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Users\********\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe
(Dropbox, Inc.) C:\Users\********\AppData\Roaming\Dropbox\bin\Dropbox.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avgnt.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\CaptureGenPCI.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avshadow.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
() C:\Users\********\AppData\Local\Installer\Install_13886\setup.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7560296 2011-12-12] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-10-17] (Intel Corporation)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694040 2014-07-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499920 2014-09-12] (Adobe Systems Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [164656 2014-08-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\Run: [Amazon Music] => C:\Users\********\AppData\Local\Amazon Music\Amazon Music Helper.exe [3356480 2014-07-22] ()
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\MountPoints2: {aadc7fd5-db5f-11e3-bce7-5404a6b6de0f} - F:\LaunchU3.exe -a
Startup: C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\********\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinTV Recording Status..lnk
ShortcutTarget: WinTV Recording Status..lnk -> C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe (Hauppauge Computer Works, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\system32\EhStorShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\Windows\system32\ntshrui.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\SysWOW64\EhStorShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\Windows\SysWOW64\ntshrui.dll (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF03ECE6B83DCCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKCU - {EBBAF673-C1CD-4990-9B82-797D5783AA02} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\********\AppData\Roaming\Mozilla\Firefox\Profiles\cff1d4d4.default-1412057210461
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.3.1 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.3.1 -> C:\Program Files (x86)\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101799.dll (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-07-15]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-09-12]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\sched.exe [430160 2014-08-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-14] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [160048 2014-08-27] (Avira Operations GmbH & Co. KG)
R2 HauppaugeTVServer; C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe [558592 2010-11-03] (Hauppauge Computer Works) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AF15BDA; C:\Windows\System32\DRIVERS\AF15BDA.sys [472704 2008-06-24] (AfaTech )
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-27] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH)
S3 HCW3x64; C:\Windows\System32\DRIVERS\HCW71364.sys [1501200 2012-01-31] (Hauppauge Computer Works, Inc.)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 MTsensor; C:\Windows\system32\drivers\ASACPI.sys [15416 2009-05-14] ()
S3 rusb3hub; C:\Windows\system32\drivers\rusb3hub.sys [100352 2011-09-15] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\system32\drivers\rusb3xhc.sys [216064 2011-09-15] (Renesas Electronics Corporation)
S3 SMARTMouseFilterx64; C:\Windows\System32\DRIVERS\SMARTMouseFilterx64.sys [16280 2012-10-24] (SMART Technologies)
S3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [15256 2012-10-24] (SMART Technologies)
S3 SMARTVTabletPCx64; C:\Windows\System32\DRIVERS\SMARTVTabletPCx64.sys [24984 2012-10-24] (SMART Technologies ULC)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-01 14:40 - 2014-10-01 14:40 - 00018330 _____ () C:\Users\********\Desktop\FRST.txt
2014-10-01 14:31 - 2014-10-01 14:31 - 00000792 _____ () C:\Users\********\Desktop\JRT.txt
2014-10-01 14:27 - 2014-10-01 14:28 - 00001469 _____ () C:\Users\********\Desktop\AdwCleaner.txt
2014-10-01 13:45 - 2014-10-01 13:45 - 00001406 _____ () C:\Users\********\Desktop\logfile gmer.7z
2014-10-01 13:32 - 2014-10-01 13:32 - 00000622 _____ () C:\Users\********\Desktop\avira.txt
2014-10-01 13:17 - 2014-10-01 13:18 - 00009950 _____ () C:\Users\********\Desktop\gmer.log
2014-10-01 10:53 - 2014-10-01 10:54 - 00001378 _____ () C:\Users\********\Desktop\mwbam.txt
2014-10-01 09:55 - 2014-10-01 09:55 - 00380416 _____ () C:\Users\********\Desktop\Gmer-19357.exe
2014-10-01 09:50 - 2014-10-01 11:00 - 00001082 _____ () C:\Users\********\Desktop\mailtrojaner.txt
2014-10-01 09:43 - 2014-10-01 09:53 - 00071553 _____ () C:\Users\********\Desktop\Addition.txt
2014-10-01 09:42 - 2014-10-01 14:40 - 00000000 ____D () C:\FRST
2014-10-01 08:19 - 2014-10-01 08:20 - 02108928 _____ (Farbar) C:\Users\********\Desktop\FRST64.exe
2014-10-01 07:48 - 2014-10-01 07:48 - 00000000 ____D () C:\Windows\ERUNT
2014-10-01 07:41 - 2014-10-01 07:41 - 01375089 _____ () C:\Users\********\Desktop\adwcleaner_3.311.exe
2014-10-01 07:40 - 2014-10-01 08:14 - 01700485 _____ (Thisisu) C:\Users\********\Desktop\JRT.exe
2014-10-01 06:09 - 2014-09-25 04:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-01 06:09 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-09-30 10:07 - 2014-10-01 10:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-09-30 10:07 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-30 10:07 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-09-30 10:07 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-30 10:05 - 2014-09-30 10:05 - 01101648 _____ () C:\Users\********\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2014-09-30 08:06 - 2014-09-30 08:06 - 00000000 ____D () C:\Users\********\Desktop\Alte Firefox-Daten
2014-09-30 08:03 - 2014-09-30 08:03 - 02953520 _____ (AVAST Software) C:\Users\********\Downloads\avast-browser-cleanup.exe
2014-09-30 07:58 - 2014-09-30 07:58 - 01373475 _____ () C:\Users\********\Downloads\adwcleaner_3.310(1).exe
2014-09-29 18:59 - 2014-10-01 14:26 - 00000000 ____D () C:\AdwCleaner
2014-09-29 18:52 - 2014-10-01 14:27 - 00001456 _____ () C:\Windows\setupact.log
2014-09-29 18:52 - 2014-10-01 14:26 - 00012030 _____ () C:\Windows\PFRO.log
2014-09-29 18:52 - 2014-09-29 18:52 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-29 17:26 - 2014-09-29 17:26 - 00001160 _____ () C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-29 14:55 - 2014-09-29 14:55 - 00004322 _____ () C:\Windows\System32\Tasks\Installer_delay
2014-09-29 14:54 - 2014-09-29 17:29 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-29 14:54 - 2014-09-29 14:54 - 00000000 ____D () C:\Users\********\AppData\Local\CrashRpt
2014-09-29 14:50 - 2014-09-29 14:50 - 00226664 _____ () C:\Users\********\Downloads\SesameStreet_downloader-Ic4K47cuB.exe
2014-09-29 14:47 - 2014-09-29 14:47 - 00226688 _____ () C:\Users\********\Downloads\Hulkbusters3D_downloader-I43ihVLc1.exe
2014-09-29 14:46 - 2014-09-29 14:46 - 00226688 _____ () C:\Users\********\Downloads\Cube_downloader-IbIdGZenl.exe
2014-09-29 14:45 - 2014-09-29 14:45 - 00226688 _____ () C:\Users\********\Downloads\AgentRed_downloader-I38EfdAdq.exe
2014-09-29 14:45 - 2014-09-29 14:45 - 00226648 _____ () C:\Users\********\Downloads\3-DSalter_downloader-I5nB2gbNu.exe
2014-09-29 14:44 - 2014-09-29 14:44 - 00226664 _____ () C:\Users\********\Downloads\Disko_downloader-I5IUzo2MV.exe
2014-09-29 14:18 - 2014-09-29 14:18 - 00000000 ____D () C:\Users\********\AppData\Roaming\TeamViewer
2014-09-29 14:02 - 2014-09-29 14:02 - 00000000 __SHD () C:\Users\********\AppData\Local\EmieUserList
2014-09-29 14:02 - 2014-09-29 14:02 - 00000000 __SHD () C:\Users\********\AppData\Local\EmieSiteList
2014-09-29 13:59 - 2014-09-29 14:00 - 00000000 ____D () C:\Users\********\AppData\Roaming\dlg
2014-09-29 13:31 - 2014-09-29 13:31 - 00000024 _____ () C:\Windows\AM_D8.PRF
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Windows\System32\Tasks\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Users\********\AppData\Roaming\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Users\********\AppData\Local\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\ProgramData\XDMessagingv4
2014-09-29 13:30 - 2011-05-13 12:16 - 00493056 _____ ( datenhaus GmbH) C:\Windows\SysWOW64\dhRichClient3.dll
2014-09-29 13:30 - 2011-03-25 20:42 - 00338432 _____ () C:\Windows\SysWOW64\sqlite36_engine.dll
2014-09-28 18:24 - 2014-09-28 18:24 - 00008192 ___SH () C:\Users\********\Documents\Thumbs.db
2014-09-28 17:31 - 2014-09-28 17:32 - 00000000 ____D () C:\Program Files\YouTubeDownloader
2014-09-28 16:54 - 2014-09-28 16:54 - 00000000 ____D () C:\Users\********\Desktop\Examen Grit
2014-09-25 07:53 - 2014-09-25 07:56 - 00000000 ____D () C:\Users\********\Desktop\Oskar Herbst 2014
2014-09-25 07:10 - 2014-09-25 07:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-24 06:08 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-24 06:08 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-10 07:22 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-10 07:22 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-10 07:22 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-10 07:22 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-10 07:22 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-10 07:22 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-10 07:22 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-10 07:22 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-10 07:22 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-10 07:22 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-10 07:22 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-10 07:22 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-10 07:22 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-10 07:22 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-10 07:22 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-10 07:22 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-10 07:22 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-10 07:22 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-10 07:22 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-10 07:22 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-10 07:22 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-10 07:22 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-10 07:22 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-10 07:22 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-10 07:22 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-10 07:22 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-10 07:22 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-10 07:22 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-10 07:22 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-10 07:22 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-10 07:22 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-10 07:22 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-10 07:22 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-10 07:22 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-10 07:22 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-10 07:22 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-10 07:22 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-10 07:22 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-10 07:22 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-10 07:22 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-10 07:22 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-10 07:22 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-10 07:22 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-10 07:22 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-10 07:22 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-10 07:22 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-10 07:22 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-10 07:22 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-10 07:22 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-10 07:22 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-10 07:06 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-10 07:06 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-10 06:14 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-10 06:14 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-09-10 06:14 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-10 06:14 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-10 06:13 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-10 06:13 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-10 06:13 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-10 06:13 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-10 06:13 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-10 06:13 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-10 06:13 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-10 06:10 - 2014-09-10 06:10 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-09-10 06:10 - 2014-09-10 06:10 - 00000000 ____D () C:\Program Files (x86)\Avira
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-01 14:34 - 2009-07-14 06:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-01 14:34 - 2009-07-14 06:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-01 14:32 - 2013-10-07 16:44 - 00001130 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-01 14:32 - 2010-11-21 08:50 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2014-10-01 14:32 - 2010-11-21 08:50 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2014-10-01 14:32 - 2009-07-14 07:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-01 14:27 - 2013-10-07 16:44 - 00001126 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-01 14:27 - 2013-04-29 16:52 - 00000000 ___RD () C:\Users\********\Dropbox
2014-10-01 14:27 - 2013-04-29 16:50 - 00000000 ____D () C:\Users\********\AppData\Roaming\Dropbox
2014-10-01 14:27 - 2012-02-06 21:01 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-10-01 14:27 - 2012-02-03 13:44 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-01 14:27 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-01 14:26 - 2013-08-22 20:14 - 01344433 _____ () C:\Windows\WindowsUpdate.log
2014-10-01 14:03 - 2013-04-17 15:33 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-01 13:19 - 2011-12-27 14:49 - 00000000 ____D () C:\Windows\de
2014-10-01 08:23 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Vss
2014-10-01 06:10 - 2012-02-06 22:16 - 00000000 ____D () C:\Users\********\AppData\Local\Adobe
2014-09-30 11:35 - 2013-09-20 15:35 - 00000000 ____D () C:\Windows\pss
2014-09-30 11:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Resources
2014-09-30 10:23 - 2012-06-03 09:14 - 00000000 ____D () C:\ProgramData\YTD YouTube Downloader & Converter
2014-09-30 07:57 - 2013-12-12 09:16 - 00000000 ____D () C:\ProgramData\Skype
2014-09-29 17:49 - 2011-12-27 09:53 - 00000000 ____D () C:\Windows\Panther
2014-09-29 16:10 - 2014-06-14 13:11 - 00000000 ____D () C:\Users\********\Desktop\Soziale Arbeit
2014-09-29 16:00 - 2012-12-19 12:48 - 00000000 ___RD () C:\Users\********\Desktop\Schule
2014-09-29 15:59 - 2013-08-25 13:48 - 00000000 ___RD () C:\Users\********\Desktop\Klasse 6a, 2014
2014-09-29 14:57 - 2009-07-14 06:45 - 00323864 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-29 14:53 - 2012-02-06 20:53 - 00075176 _____ () C:\Users\********\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-26 06:51 - 2013-04-17 15:34 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-26 06:48 - 2012-04-25 18:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-25 08:04 - 2014-08-16 13:42 - 00000000 ____D () C:\Users\********\Desktop\Wichtiges Oskar
2014-09-25 08:04 - 2012-02-07 07:19 - 00000000 ____D () C:\Users\********\Desktop\Persönliches
2014-09-25 08:01 - 2012-02-07 07:13 - 00000000 ___RD () C:\Users\********\Desktop\Kunst
2014-09-24 17:22 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-09-24 17:03 - 2013-04-17 15:33 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-24 17:03 - 2012-04-26 06:55 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-24 17:03 - 2011-12-27 14:59 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-23 22:29 - 2012-02-06 20:53 - 00000000 ____D () C:\Users\********\AppData\Roaming\Adobe
2014-09-23 17:11 - 2012-02-06 18:43 - 00000000 ___RD () C:\Users\********\Desktop\Deutsch
2014-09-19 07:17 - 2014-04-08 06:53 - 00000000 ____D () C:\Users\Public\Documents\MIADoc
2014-09-19 06:24 - 2013-04-29 16:50 - 00000000 ____D () C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-18 06:19 - 2014-07-15 14:38 - 00002453 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2014-09-18 06:19 - 2014-07-15 14:38 - 00002210 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2014-09-18 06:19 - 2014-07-15 14:38 - 00002049 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2014-09-10 07:21 - 2013-08-08 20:43 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-10 07:21 - 2011-12-27 14:29 - 01593956 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-10 07:06 - 2011-12-27 16:47 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-10 07:05 - 2014-04-30 07:03 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-10 06:10 - 2014-07-15 12:41 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-10 06:10 - 2013-03-24 20:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
Some content of TEMP:
====================
C:\Users\********\AppData\Local\Temp\avgnt.exe
C:\Users\********\AppData\Local\Temp\cabex.dll
C:\Users\********\AppData\Local\Temp\ClientToMobilePlatform.exe
C:\Users\********\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmp3lx45f.dll
C:\Users\********\AppData\Local\Temp\optprosetup.exe
C:\Users\********\AppData\Local\Temp\Quarantine.exe
C:\Users\********\AppData\Local\Temp\somoto_(HungryFrog)_1.0.exe
C:\Users\********\AppData\Local\Temp\somoto_Aerosol_1.0.exe
C:\Users\********\AppData\Local\Temp\somoto_Graffiti Treat_1.0.exe
C:\Users\********\AppData\Local\Temp\System.Data.SQLite.dll
C:\Users\********\AppData\Local\Temp\System.Data.SQLite33459.dll
C:\Users\********\AppData\Local\Temp\System.Data.SQLite58816.dll
C:\Users\********\AppData\Local\Temp\System.Data.SQLite60211.dll
C:\Users\********\AppData\Local\Temp\tu17p84.exe
C:\Users\********\AppData\Local\Temp\unelevate.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-26 16:23
==================== End Of Log ============================
--- --- --- |
|
02.10.2014, 07:43
| #4 |
| /// the machine /// TB-Ausbilder | Entfernen der Adware 'Goobzo.2825'ESET Online Scanner
Downloade Dir bitte  SecurityCheck und:
und ein frisches FRST log bitte. Noch Probleme? 
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
02.10.2014, 14:27
| #5 |
| | Entfernen der Adware 'Goobzo.2825' Hallo Schrauber, ich habe das ungute Gefühl, dass während des ESET-Scans (bei ausgeschaltetem Virenscanner) weitere Schadsoftware nachgeladen worden ist. In der Liste der Programme waren neu installiert: iWebar, Shopper-Pro und Senses. Alle drei Programme habe ich über die Systemsteuerung wieder deinstalliert. Des weiteren meldet Avira nun einen neuen Fund, nämlich den der ADWARE/CrossRider.gr Mit Sorgenfalten, aber allemal besten Grüßen  rudb Code:
ATTFilter ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7623
# api_version=3.0.2
# EOSSerial=3fc7e941cb421e4a85671af497080a12
# engine=20403
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2014-10-02 12:38:34
# local_time=2014-10-02 02:38:34 (+0100, Mitteleuropäische Sommerzeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Avira Desktop'
# compatibility_mode=1810 16777213 100 100 5538 48105706 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 38783165 163883364 0 0
# scanned=240056
# found=46
# cleaned=0
# scan_time=4490
sh=F2CE59589ACA3E3248B1E87FE555871E0DC34472 ft=1 fh=a5c45a1470ae51fc vn="Variante von Win32/Adware.SpeedingUpMyPC.C Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe.vir"
sh=6F3A3B433459E6773C9FBE8CFB154DB6534EFA86 ft=1 fh=60bff0ff01dbe663 vn="Variante von Win32/InstallCore.A evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\VideoConverter\VideoConverter.exe.vir"
sh=71435DDB11E00D0243380C4902324853FE4ECE8F ft=1 fh=12b0cd2dde452d65 vn="Variante von Win32/Bundled.Toolbar.Ask potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\apnic.dll"
sh=FFA8B6510D624A55F3EB7FFD6D5221A44944681C ft=1 fh=3386eb0d6ed0e5e1 vn="Variante von Win32/Bundled.Toolbar.Ask.G potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\apnstub.exe"
sh=1A3F14C0A66F9AF050D1F34FBACBAADC31751A07 ft=1 fh=2704a03a0f47b728 vn="Variante von Win32/Bundled.Toolbar.Ask potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\apntoolbarinstaller.exe"
sh=4B553651EF610C0614F8393D6C25ABA0A8F09ECA ft=1 fh=92ef1bb072edf568 vn="Variante von Win32/Bundled.Toolbar.Ask.D potenziell unsichere Anwendung" ac=I fn="C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\Offercast_AVIRAV7_.exe"
sh=B5915978EE54F2D9E6E7C546C4F5F7526BCDB0FC ft=1 fh=876baa4631a1200a vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Installer\Install_13886\setup.exe"
sh=B5915978EE54F2D9E6E7C546C4F5F7526BCDB0FC ft=1 fh=876baa4631a1200a vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Installer\Install_15760\setup.exe"
sh=B5915978EE54F2D9E6E7C546C4F5F7526BCDB0FC ft=1 fh=876baa4631a1200a vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Installer\Install_31246\setup.exe"
sh=8FDE1031456DADDF97501C4F0AA599B5A3CDEB81 ft=1 fh=3a3c4304cb78d895 vn="Win32/Somoto.G evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\o7u9xRnY.exe.part"
sh=6C41658E5B9F5E6815F20FB759ED2BABA48C1797 ft=1 fh=d14a4223a1320b86 vn="Mehrere Bedrohungen" ac=I fn="C:\Users\********\AppData\Local\Temp\optprosetup.exe"
sh=15247025959944EA0CC631EA5EE3F689245ACEA1 ft=1 fh=abcc0ae16f55c48e vn="Win32/BrowseFox.C evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\setup.exe.0"
sh=A1BF6D2E0EB9C3E9FB33B0EF5C6D588F58F401BB ft=1 fh=ad49a6983936d3b5 vn="Variante von Win32/DownloadGuide.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\somoto_(HungryFrog)_1.0.exe"
sh=74C5E92DC8260235B8BF8E6D685453ED5FDA8F82 ft=1 fh=f79789c3e956a617 vn="Variante von Win32/DownloadGuide.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\somoto_Aerosol_1.0.exe"
sh=30B5308D350E191F85D1EC7F4E7FB46084B8BE4F ft=1 fh=cb355196cf5f9243 vn="Variante von Win32/DownloadGuide.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\somoto_Graffiti Treat_1.0.exe"
sh=CA6412CA339AC0CD1E7E83AB3CF5765765CB38A3 ft=1 fh=9de3a80e3e3ed85e vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\Install_1124\delay.exe"
sh=CA6412CA339AC0CD1E7E83AB3CF5765765CB38A3 ft=1 fh=9de3a80e3e3ed85e vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\Install_13323\delay.exe"
sh=CA6412CA339AC0CD1E7E83AB3CF5765765CB38A3 ft=1 fh=9de3a80e3e3ed85e vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\Install_18325\delay.exe"
sh=CA6412CA339AC0CD1E7E83AB3CF5765765CB38A3 ft=1 fh=9de3a80e3e3ed85e vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\Install_19956\delay.exe"
sh=CA6412CA339AC0CD1E7E83AB3CF5765765CB38A3 ft=1 fh=9de3a80e3e3ed85e vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\Install_22619\delay.exe"
sh=CA6412CA339AC0CD1E7E83AB3CF5765765CB38A3 ft=1 fh=9de3a80e3e3ed85e vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\Install_27561\delay.exe"
sh=CA6412CA339AC0CD1E7E83AB3CF5765765CB38A3 ft=1 fh=9de3a80e3e3ed85e vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\Install_2965\delay.exe"
sh=CA6412CA339AC0CD1E7E83AB3CF5765765CB38A3 ft=1 fh=9de3a80e3e3ed85e vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\Install_31637\delay.exe"
sh=CA6412CA339AC0CD1E7E83AB3CF5765765CB38A3 ft=1 fh=9de3a80e3e3ed85e vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\Install_3331\delay.exe"
sh=CA6412CA339AC0CD1E7E83AB3CF5765765CB38A3 ft=1 fh=9de3a80e3e3ed85e vn="Variante von Win32/SpeedBit.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\Install_3786\delay.exe"
sh=14C268CE3CBA47B902704B23172DD195D0ED30C6 ft=0 fh=0000000000000000 vn="Variante von Win32/ShopperPro.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\SAINST\SA.CAB"
sh=F78F45870F68C54EB2F72E466991E30027B41BB1 ft=1 fh=c71c0011ae148a5a vn="Variante von Win32/ShopperPro.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\SAINST\updater.exe"
sh=B85684B32B62AE858CD8873FD368F19FB8267E05 ft=1 fh=9edfde924283955c vn="Variante von Win32/ShopperPro.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\AppData\Local\Temp\SAINST\YTAHelper.exe"
sh=C8D9FF0CE49B15287574D46B4A7D7AB6030975E6 ft=1 fh=db18d8e8f1281d2b vn="Win32/Somoto.G evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\Downloads\3-DSalter_downloader-I5nB2gbNu.exe"
sh=CB6D7C0A862E0757CC3BAE848A0632BEE80A4392 ft=1 fh=ac58e08ccb78d895 vn="Win32/Somoto.G evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\Downloads\AgentRed_downloader-I38EfdAdq.exe"
sh=FF3AE009333111822D903DFC01C2746ABB70A1BD ft=1 fh=0e974594cb78d895 vn="Win32/Somoto.G evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\Downloads\Cube_downloader-IbIdGZenl.exe"
sh=7938C3CDC17DE577A150E3ED79B80A85D95DDC49 ft=1 fh=5ea4462898730605 vn="Win32/Somoto.G evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\Downloads\Disko_downloader-I5IUzo2MV.exe"
sh=142077686C2F886AA31426AA0B47E77A0091C616 ft=1 fh=fd8fd8a1cb78d895 vn="Win32/Somoto.G evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\Downloads\Hulkbusters3D_downloader-I43ihVLc1.exe"
sh=7938C3CDC17DE577A150E3ED79B80A85D95DDC49 ft=1 fh=5ea4462898730605 vn="Win32/Somoto.G evtl. unerwünschte Anwendung" ac=I fn="C:\Users\********\Downloads\SesameStreet_downloader-Ic4K47cuB.exe"
sh=9F9CC1B00733F1657AD00E0E8D7065D4766AA535 ft=1 fh=b75a6a56f838db4c vn="Variante von Win32/ShopperPro.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\All Users\ShopperPro\ShopperPro.dll"
sh=620AD0A6AC10603159FA6C1EAF98F5D95E7958D8 ft=1 fh=ac034c3a5c1f7586 vn="Variante von Win64/ShopperPro.A evtl. unerwünschte Anwendung" ac=I fn="C:\Users\All Users\ShopperPro\ShopperPro64.dll"
sh=B54A10A054F72B438B85B8C01A2FDDB9E4AA9D95 ft=1 fh=bad654b42602edb0 vn="Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI30D.tmp-\sppsm.dll"
sh=74E1FD38F895EE603C538EEB0CB62D2B7AD1F9EF ft=1 fh=eadc0e05b009aa54 vn="Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI30D.tmp-\spusm.dll"
sh=39E0129484C7D4950D9E3ACB4016A95333C372C1 ft=1 fh=b2d51b366a5174b0 vn="Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI30D.tmp-\srptc.dll"
sh=B54A10A054F72B438B85B8C01A2FDDB9E4AA9D95 ft=1 fh=bad654b42602edb0 vn="Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI82C9.tmp-\sppsm.dll"
sh=74E1FD38F895EE603C538EEB0CB62D2B7AD1F9EF ft=1 fh=eadc0e05b009aa54 vn="Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI82C9.tmp-\spusm.dll"
sh=C321BD2BA55FC1450102B52CF4320050F96E6ACE ft=1 fh=5f440c13eb246cc1 vn="Variante von MSIL/Toolbar.Linkury.C evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI82C9.tmp-\srbs.dll"
sh=8BCF64604E5A8369D2032F0DEAD0FA65CED3959C ft=1 fh=de00f46990bdea72 vn="Variante von MSIL/Toolbar.Linkury.F evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI82C9.tmp-\srbu.dll"
sh=39E0129484C7D4950D9E3ACB4016A95333C372C1 ft=1 fh=b2d51b366a5174b0 vn="Variante von MSIL/Toolbar.Linkury.G evtl. unerwünschte Anwendung" ac=I fn="C:\Windows\Installer\MSI82C9.tmp-\srptc.dll"
sh=40E49124AD0B55A25F947333CA88E9D0BC30A7E3 ft=1 fh=e26ad988592b2af9 vn="Variante von Win32/Bundled.Toolbar.Ask potenziell unsichere Anwendung" ac=I fn="C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA\ApnIC[1].0"
sh=40E49124AD0B55A25F947333CA88E9D0BC30A7E3 ft=1 fh=e26ad988592b2af9 vn="Variante von Win32/Bundled.Toolbar.Ask potenziell unsichere Anwendung" ac=I fn="C:\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA\ApnIC[1].0"
Code:
ATTFilter Results of screen317's Security Check version 0.99.87
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Avira Desktop
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
JavaFX 2.0.3
Java(TM) 7 Update 3
Java version out of Date!
Adobe Flash Player 15.0.0.152
Adobe Reader XI
Mozilla Firefox (32.0.3)
Mozilla Thunderbird (24.6.0)
````````Process Check: objlist.exe by Laurent````````
Avira Antivir avgnt.exe
Avira Antivir avguard.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-09-2014
Ran by ******** (administrator) on AK-KCSHOME on 02-10-2014 15:14:09
Running from C:\Users\********\Desktop
Loaded Profile: ******** (Available profiles: UpdatusUser & ********)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Users\********\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe
(Dropbox, Inc.) C:\Users\********\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avgnt.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\CaptureGenPCI.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7560296 2011-12-12] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-10-17] (Intel Corporation)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694040 2014-07-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499920 2014-09-12] (Adobe Systems Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [164656 2014-08-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\Run: [Amazon Music] => C:\Users\********\AppData\Local\Amazon Music\Amazon Music Helper.exe [3356480 2014-07-22] ()
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\MountPoints2: {aadc7fd5-db5f-11e3-bce7-5404a6b6de0f} - F:\LaunchU3.exe -a
Startup: C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\********\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinTV Recording Status..lnk
ShortcutTarget: WinTV Recording Status..lnk -> C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe (Hauppauge Computer Works, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt64.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\system32\EhStorShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\Windows\system32\ntshrui.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\********\AppData\Roaming\Dropbox\bin\DropboxExt.24.dll (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [EnhancedStorageShell] -> {D9144DCD-E998-4ECA-AB6A-DCD83CCBA16D} => C:\Windows\SysWOW64\EhStorShell.dll (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [SharingPrivate] -> {08244EE6-92F0-47f2-9FC9-929BAA2E7235} => C:\Windows\SysWOW64\ntshrui.dll (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF03ECE6B83DCCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKCU - {EBBAF673-C1CD-4990-9B82-797D5783AA02} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: No Name -> {A5A51D2A-505A-4D84-AFC6-E0FA87E47B8C} -> No File
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\********\AppData\Roaming\Mozilla\Firefox\Profiles\cff1d4d4.default-1412057210461
FF Homepage: hxxp://www.spiegel.de/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre7\bin\new_plugin\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.3.1 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.3.1 -> C:\Program Files (x86)\Oracle\JavaFX 2.0 Runtime\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=10 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @staging.google.com/globalUpdate Update;version=4 -> C:\Program Files (x86)\globalUpdate\Update\1.3.25.0\npGoogleUpdate4.dll (globalUpdate)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101799.dll (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-07-15]
FF Extension: No Name - C:\Users\********\AppData\Roaming\Mozilla\Firefox\Profiles\cff1d4d4.default-1412057210461\extensions\warnerroberts@hotmail.com [Not Found]
FF Extension: No Name - C:\Users\********\AppData\Roaming\Mozilla\Firefox\Profiles\cff1d4d4.default-1412057210461\extensions\ROUAILDE73397174@UXGZI17268980.com [Not Found]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-09-12]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\sched.exe [430160 2014-08-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-14] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [160048 2014-08-27] (Avira Operations GmbH & Co. KG)
S2 globalUpdate; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-10-02] (globalUpdate) [File not signed]
S3 globalUpdatem; C:\Program Files (x86)\globalUpdate\Update\GoogleUpdate.exe [68608 2014-10-02] (globalUpdate) [File not signed]
R2 HauppaugeTVServer; C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe [558592 2010-11-03] (Hauppauge Computer Works) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AF15BDA; C:\Windows\System32\DRIVERS\AF15BDA.sys [472704 2008-06-24] (AfaTech )
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-27] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH)
S3 HCW3x64; C:\Windows\System32\DRIVERS\HCW71364.sys [1501200 2012-01-31] (Hauppauge Computer Works, Inc.)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 MTsensor; C:\Windows\system32\drivers\ASACPI.sys [15416 2009-05-14] ()
S3 rusb3hub; C:\Windows\system32\drivers\rusb3hub.sys [100352 2011-09-15] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\system32\drivers\rusb3xhc.sys [216064 2011-09-15] (Renesas Electronics Corporation)
S3 SMARTMouseFilterx64; C:\Windows\System32\DRIVERS\SMARTMouseFilterx64.sys [16280 2012-10-24] (SMART Technologies)
S3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [15256 2012-10-24] (SMART Technologies)
S3 SMARTVTabletPCx64; C:\Windows\System32\DRIVERS\SMARTVTabletPCx64.sys [24984 2012-10-24] (SMART Technologies ULC)
R4 SPDRIVER_1.37.0.1323; \??\C:\Program Files (x86)\ShopperPro\JSDriver\1.37.0.1323\jsdrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-02 15:14 - 2014-10-02 15:14 - 00019655 _____ () C:\Users\********\Desktop\FRST.txt
2014-10-02 15:08 - 2014-10-02 15:08 - 00000832 _____ () C:\Users\********\Desktop\checkup.txt
2014-10-02 15:02 - 2014-10-02 15:02 - 00854417 _____ () C:\Users\********\Desktop\SecurityCheck.exe
2014-10-02 14:08 - 2014-10-02 14:08 - 00004436 _____ () C:\Windows\System32\Tasks\JWRQOLP
2014-10-02 14:08 - 2014-10-02 14:08 - 00001384 _____ () C:\Windows\Tasks\JWRQOLP.job
2014-10-02 14:07 - 2014-10-02 14:33 - 00000930 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineUA.job
2014-10-02 14:07 - 2014-10-02 14:33 - 00000926 _____ () C:\Windows\Tasks\globalUpdateUpdateTaskMachineCore.job
2014-10-02 14:07 - 2014-10-02 14:28 - 00003928 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineUA
2014-10-02 14:07 - 2014-10-02 14:28 - 00003674 _____ () C:\Windows\System32\Tasks\globalUpdateUpdateTaskMachineCore
2014-10-02 14:07 - 2014-10-02 14:07 - 01943968 _____ () C:\Users\********\AppData\Roaming\HXAYDYMG.exe
2014-10-02 14:07 - 2014-10-02 14:07 - 01479584 _____ (Object Browser) C:\Users\********\AppData\Roaming\JWRQOLP.exe
2014-10-02 14:07 - 2014-10-02 14:07 - 00004782 _____ () C:\Windows\System32\Tasks\HXAYDYMG
2014-10-02 14:07 - 2014-10-02 14:07 - 00001730 _____ () C:\Windows\Tasks\HXAYDYMG.job
2014-10-02 14:07 - 2014-10-02 14:07 - 00000000 ____D () C:\Users\********\AppData\Local\globalUpdate
2014-10-02 14:07 - 2014-10-02 14:07 - 00000000 ____D () C:\Program Files (x86)\globalUpdate
2014-10-02 13:59 - 2014-10-02 13:59 - 00000000 ____D () C:\Users\Public\Documents\ShopperPro
2014-10-01 09:55 - 2014-10-01 09:55 - 00380416 _____ () C:\Users\********\Desktop\Gmer-19357.exe
2014-10-01 09:42 - 2014-10-02 15:14 - 00000000 ____D () C:\FRST
2014-10-01 08:19 - 2014-10-01 08:20 - 02108928 _____ (Farbar) C:\Users\********\Desktop\FRST64.exe
2014-10-01 07:48 - 2014-10-01 07:48 - 00000000 ____D () C:\Windows\ERUNT
2014-10-01 07:41 - 2014-10-01 07:41 - 01375089 _____ () C:\Users\********\Desktop\adwcleaner_3.311.exe
2014-10-01 07:40 - 2014-10-01 08:14 - 01700485 _____ (Thisisu) C:\Users\********\Desktop\JRT.exe
2014-10-01 06:09 - 2014-09-25 04:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-01 06:09 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-09-30 10:07 - 2014-10-01 10:29 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-09-30 10:07 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-30 10:07 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-09-30 10:07 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-30 10:05 - 2014-09-30 10:05 - 01101648 _____ () C:\Users\********\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2014-09-30 08:06 - 2014-09-30 08:06 - 00000000 ____D () C:\Users\********\Desktop\Alte Firefox-Daten
2014-09-30 08:03 - 2014-09-30 08:03 - 02953520 _____ (AVAST Software) C:\Users\********\Downloads\avast-browser-cleanup.exe
2014-09-30 07:58 - 2014-09-30 07:58 - 01373475 _____ () C:\Users\********\Downloads\adwcleaner_3.310(1).exe
2014-09-29 18:59 - 2014-10-01 14:26 - 00000000 ____D () C:\AdwCleaner
2014-09-29 18:52 - 2014-10-02 09:17 - 00012916 _____ () C:\Windows\PFRO.log
2014-09-29 18:52 - 2014-10-02 09:17 - 00001680 _____ () C:\Windows\setupact.log
2014-09-29 18:52 - 2014-09-29 18:52 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-29 17:26 - 2014-09-29 17:26 - 00001160 _____ () C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-29 14:54 - 2014-09-29 17:29 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-29 14:54 - 2014-09-29 14:54 - 00000000 ____D () C:\Users\********\AppData\Local\CrashRpt
2014-09-29 14:50 - 2014-09-29 14:50 - 00226664 _____ () C:\Users\********\Downloads\SesameStreet_downloader-Ic4K47cuB.exe
2014-09-29 14:47 - 2014-09-29 14:47 - 00226688 _____ () C:\Users\********\Downloads\Hulkbusters3D_downloader-I43ihVLc1.exe
2014-09-29 14:46 - 2014-09-29 14:46 - 00226688 _____ () C:\Users\********\Downloads\Cube_downloader-IbIdGZenl.exe
2014-09-29 14:45 - 2014-09-29 14:45 - 00226688 _____ () C:\Users\********\Downloads\AgentRed_downloader-I38EfdAdq.exe
2014-09-29 14:45 - 2014-09-29 14:45 - 00226648 _____ () C:\Users\********\Downloads\3-DSalter_downloader-I5nB2gbNu.exe
2014-09-29 14:44 - 2014-09-29 14:44 - 00226664 _____ () C:\Users\********\Downloads\Disko_downloader-I5IUzo2MV.exe
2014-09-29 14:18 - 2014-09-29 14:18 - 00000000 ____D () C:\Users\********\AppData\Roaming\TeamViewer
2014-09-29 14:02 - 2014-09-29 14:02 - 00000000 __SHD () C:\Users\********\AppData\Local\EmieUserList
2014-09-29 14:02 - 2014-09-29 14:02 - 00000000 __SHD () C:\Users\********\AppData\Local\EmieSiteList
2014-09-29 13:59 - 2014-09-29 14:00 - 00000000 ____D () C:\Users\********\AppData\Roaming\dlg
2014-09-29 13:31 - 2014-09-29 13:31 - 00000024 _____ () C:\Windows\AM_D8.PRF
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Windows\System32\Tasks\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Users\********\AppData\Roaming\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Users\********\AppData\Local\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\ProgramData\XDMessagingv4
2014-09-29 13:30 - 2011-05-13 12:16 - 00493056 _____ ( datenhaus GmbH) C:\Windows\SysWOW64\dhRichClient3.dll
2014-09-29 13:30 - 2011-03-25 20:42 - 00338432 _____ () C:\Windows\SysWOW64\sqlite36_engine.dll
2014-09-28 18:24 - 2014-09-28 18:24 - 00008192 ___SH () C:\Users\********\Documents\Thumbs.db
2014-09-28 17:31 - 2014-09-28 17:32 - 00000000 ____D () C:\Program Files\YouTubeDownloader
2014-09-28 16:54 - 2014-09-28 16:54 - 00000000 ____D () C:\Users\********\Desktop\Examen Grit
2014-09-25 07:53 - 2014-09-25 07:56 - 00000000 ____D () C:\Users\********\Desktop\Oskar Herbst 2014
2014-09-25 07:10 - 2014-09-25 07:10 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-24 06:08 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-24 06:08 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-10 07:22 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-10 07:22 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-10 07:22 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-10 07:22 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-10 07:22 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-10 07:22 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-10 07:22 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-10 07:22 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-10 07:22 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-10 07:22 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-10 07:22 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-10 07:22 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-10 07:22 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-10 07:22 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-10 07:22 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-10 07:22 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-10 07:22 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-10 07:22 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-10 07:22 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-10 07:22 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-10 07:22 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-10 07:22 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-10 07:22 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-10 07:22 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-10 07:22 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-10 07:22 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-10 07:22 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-10 07:22 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-10 07:22 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-10 07:22 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-10 07:22 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-10 07:22 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-10 07:22 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-10 07:22 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-10 07:22 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-10 07:22 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-10 07:22 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-10 07:22 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-10 07:22 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-10 07:22 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-10 07:22 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-10 07:22 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-10 07:22 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-10 07:22 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-10 07:22 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-10 07:22 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-10 07:22 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-10 07:22 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-10 07:22 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-10 07:22 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-10 07:06 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-10 07:06 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-10 06:14 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-10 06:14 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-09-10 06:14 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-10 06:14 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-10 06:13 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-10 06:13 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-10 06:13 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-10 06:13 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-10 06:13 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-10 06:13 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-10 06:13 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-10 06:10 - 2014-09-10 06:10 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-09-10 06:10 - 2014-09-10 06:10 - 00000000 ____D () C:\Program Files (x86)\Avira
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-02 15:03 - 2013-04-17 15:33 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-02 15:00 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-10-02 14:32 - 2013-10-07 16:44 - 00001130 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-02 12:32 - 2013-10-07 16:44 - 00001126 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-02 09:25 - 2009-07-14 06:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-02 09:25 - 2009-07-14 06:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-02 09:22 - 2010-11-21 08:50 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2014-10-02 09:22 - 2010-11-21 08:50 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2014-10-02 09:22 - 2009-07-14 07:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-02 09:21 - 2013-08-22 20:14 - 01383657 _____ () C:\Windows\WindowsUpdate.log
2014-10-02 09:18 - 2013-04-29 16:52 - 00000000 ___RD () C:\Users\********\Dropbox
2014-10-02 09:18 - 2013-04-29 16:50 - 00000000 ____D () C:\Users\********\AppData\Roaming\Dropbox
2014-10-02 09:17 - 2012-02-06 21:01 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-10-02 09:17 - 2012-02-03 13:44 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-02 09:17 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-02 07:57 - 2012-02-06 22:16 - 00000000 ____D () C:\Users\********\AppData\Local\Adobe
2014-10-01 17:44 - 2014-06-14 13:11 - 00000000 ____D () C:\Users\********\Desktop\Soziale Arbeit
2014-10-01 13:19 - 2011-12-27 14:49 - 00000000 ____D () C:\Windows\de
2014-10-01 08:23 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Vss
2014-09-30 11:35 - 2013-09-20 15:35 - 00000000 ____D () C:\Windows\pss
2014-09-30 11:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Resources
2014-09-30 10:23 - 2012-06-03 09:14 - 00000000 ____D () C:\ProgramData\YTD YouTube Downloader & Converter
2014-09-30 07:57 - 2013-12-12 09:16 - 00000000 ____D () C:\ProgramData\Skype
2014-09-29 17:49 - 2011-12-27 09:53 - 00000000 ____D () C:\Windows\Panther
2014-09-29 16:00 - 2012-12-19 12:48 - 00000000 ___RD () C:\Users\********\Desktop\Schule
2014-09-29 15:59 - 2013-08-25 13:48 - 00000000 ___RD () C:\Users\********\Desktop\Klasse 6a, 2014
2014-09-29 14:57 - 2009-07-14 06:45 - 00323864 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-29 14:53 - 2012-02-06 20:53 - 00075176 _____ () C:\Users\********\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-26 06:51 - 2013-04-17 15:34 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-26 06:48 - 2012-04-25 18:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-25 08:04 - 2014-08-16 13:42 - 00000000 ____D () C:\Users\********\Desktop\Wichtiges Oskar
2014-09-25 08:04 - 2012-02-07 07:19 - 00000000 ____D () C:\Users\********\Desktop\Persönliches
2014-09-25 08:01 - 2012-02-07 07:13 - 00000000 ___RD () C:\Users\********\Desktop\Kunst
2014-09-24 17:22 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-09-24 17:03 - 2013-04-17 15:33 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-24 17:03 - 2012-04-26 06:55 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-24 17:03 - 2011-12-27 14:59 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-23 22:29 - 2012-02-06 20:53 - 00000000 ____D () C:\Users\********\AppData\Roaming\Adobe
2014-09-23 17:11 - 2012-02-06 18:43 - 00000000 ___RD () C:\Users\********\Desktop\Deutsch
2014-09-19 07:17 - 2014-04-08 06:53 - 00000000 ____D () C:\Users\Public\Documents\MIADoc
2014-09-19 06:24 - 2013-04-29 16:50 - 00000000 ____D () C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-18 06:19 - 2014-07-15 14:38 - 00002453 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2014-09-18 06:19 - 2014-07-15 14:38 - 00002210 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2014-09-18 06:19 - 2014-07-15 14:38 - 00002049 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2014-09-10 07:21 - 2013-08-08 20:43 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-10 07:21 - 2011-12-27 14:29 - 01593956 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-10 07:06 - 2011-12-27 16:47 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-10 07:05 - 2014-04-30 07:03 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-10 06:10 - 2014-07-15 12:41 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-10 06:10 - 2013-03-24 20:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
Some content of TEMP:
====================
C:\Users\********\AppData\Local\Temp\avgnt.exe
C:\Users\********\AppData\Local\Temp\cabex.dll
C:\Users\********\AppData\Local\Temp\ClientToMobilePlatform.exe
C:\Users\********\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpcfb3ir.dll
C:\Users\********\AppData\Local\Temp\optprosetup.exe
C:\Users\********\AppData\Local\Temp\Quarantine.exe
C:\Users\********\AppData\Local\Temp\somoto_(HungryFrog)_1.0.exe
C:\Users\********\AppData\Local\Temp\somoto_Aerosol_1.0.exe
C:\Users\********\AppData\Local\Temp\somoto_Graffiti Treat_1.0.exe
C:\Users\********\AppData\Local\Temp\System.Data.SQLite.dll
C:\Users\********\AppData\Local\Temp\System.Data.SQLite33459.dll
C:\Users\********\AppData\Local\Temp\System.Data.SQLite58816.dll
C:\Users\********\AppData\Local\Temp\System.Data.SQLite60211.dll
C:\Users\********\AppData\Local\Temp\tu17p84.exe
C:\Users\********\AppData\Local\Temp\unelevate.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-26 16:23
==================== End Of Log ============================
--- --- --- |
|
03.10.2014, 11:18
| #6 |
| /// the machine /// TB-Ausbilder | Entfernen der Adware 'Goobzo.2825' Java updaten. MBAM updaten, scannen, löschen lassen, AdwCleaner auch nochmal. Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter Emptytemp:
Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Frisches FRST Log bitte.
__________________ --> Entfernen der Adware 'Goobzo.2825' |
|
03.10.2014, 14:14
| #7 |
| | Entfernen der Adware 'Goobzo.2825' Hallo Schrauber, Java habe ich nun ganz entfernt (deinstalliert). AdWare und MBAM haben noch mal was gefunden und entfernt; dann hat sich Avira gemeldet, einen vollständigen Scan empfohlen - und nichts mehr gefunden! Fixlist und FRST siehe unten! Hat der Spuk etwa ein Ende? Beste Grüße rudb Code:
ATTFilter Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 02-10-2014
Ran by ******** at 2014-10-03 14:56:41 Run:1
Running from C:\Users\********\Desktop
Loaded Profile: ******** (Available profiles: UpdatusUser & ********)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Emptytemp:
*****************
EmptyTemp: => Removed 400.9 MB temporary data.
The system needed a reboot.
==== End of Fixlog ====
FRST Logfile: FRST Logfile: Code:
ATTFilter Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 02-10-2014
Ran by ******** (administrator) on AK-KCSHOME on 03-10-2014 15:00:11
Running from C:\Users\********\Desktop
Loaded Profile: ******** (Available profiles: UpdatusUser & ********)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\sched.exe
(AMD) C:\Windows\System32\atieclxx.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avguard.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Hauppauge Computer Works) C:\Program Files (x86)\WinTV\TVServer\CaptureGenPCI.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
() C:\Users\********\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Hauppauge Computer Works, Inc.) C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
() C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
(Dropbox, Inc.) C:\Users\********\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avgnt.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe
(Microsoft Corporation) C:\Windows\System32\PrintIsolationHost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
() C:\Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avshadow.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7560296 2011-12-12] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284440 2011-10-17] (Intel Corporation)
HKLM-x32\...\Run: [LogitechQuickCamRibbon] => C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe [2793304 2009-10-14] ()
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avgnt.exe [751184 2014-08-14] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43816 2014-07-31] (Apple Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959176 2014-08-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2694040 2014-07-03] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3499920 2014-09-12] (Adobe Systems Inc.)
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-08-01] (Apple Inc.)
HKLM-x32\...\Run: [Avira Systray] => C:\Program Files (x86)\Avira\My Avira\Avira.OE.Systray.exe [164656 2014-08-27] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\Run: [Amazon Music] => C:\Users\********\AppData\Local\Amazon Music\Amazon Music Helper.exe [3356480 2014-07-22] ()
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\Policies\Explorer: [NoDriveTypeAutoRun] 0x91000000
HKU\S-1-5-21-3615877066-1852985509-462521372-1001\...\MountPoints2: {aadc7fd5-db5f-11e3-bce7-5404a6b6de0f} - F:\LaunchU3.exe -a
Startup: C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\********\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WinTV Recording Status..lnk
ShortcutTarget: WinTV Recording Status..lnk -> C:\Program Files (x86)\WinTV\WinTV7\WinTVTray.exe (Hauppauge Computer Works, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0xF03ECE6B83DCCF01
HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
SearchScopes: HKCU - {EBBAF673-C1CD-4990-9B82-797D5783AA02} URL =
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll No File
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corp.)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll No File
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
FireFox:
========
FF ProfilePath: C:\Users\********\AppData\Roaming\Mozilla\Firefox\Profiles\cff1d4d4.default-1412057210461
FF Homepage: hxxp://www.spiegel.de/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_152.dll ()
FF Plugin: @microsoft.com/GENUINE -> disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_152.dll ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin-x32: @java.com/DTPlugin,version=10.3.1 -> C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.3.0 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll No File
FF Plugin-x32: @microsoft.com/GENUINE -> disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF Plugin HKCU: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101799.dll (Amazon.com, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\amazondotcom-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\eBay-de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\leo_ende_de.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\yahoo-de.xml
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2014-07-15]
FF Extension: No Name - C:\Users\********\AppData\Roaming\Mozilla\Firefox\Profiles\cff1d4d4.default-1412057210461\extensions\warnerroberts@hotmail.com [Not Found]
FF Extension: No Name - C:\Users\********\AppData\Roaming\Mozilla\Firefox\Profiles\cff1d4d4.default-1412057210461\extensions\ROUAILDE73397174@UXGZI17268980.com [Not Found]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2014-09-12]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\sched.exe [430160 2014-08-14] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Tools\Avira\AntiVir Desktop\avguard.exe [430160 2014-08-14] (Avira Operations GmbH & Co. KG)
R2 Avira.OE.ServiceHost; C:\Program Files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [160048 2014-08-27] (Avira Operations GmbH & Co. KG)
R2 HauppaugeTVServer; C:\Program Files (x86)\WinTV\TVServer\HauppaugeTVServer.exe [558592 2010-11-03] (Hauppauge Computer Works) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S3 AF15BDA; C:\Windows\System32\DRIVERS\AF15BDA.sys [472704 2008-06-24] (AfaTech )
R2 avgntflt; C:\Windows\System32\DRIVERS\avgntflt.sys [117712 2014-06-24] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\Windows\System32\DRIVERS\avipbb.sys [130584 2014-05-27] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\Windows\System32\DRIVERS\avkmgr.sys [28600 2013-10-07] (Avira Operations GmbH & Co. KG)
S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH)
S3 HCW3x64; C:\Windows\System32\DRIVERS\HCW71364.sys [1501200 2012-01-31] (Hauppauge Computer Works, Inc.)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 MTsensor; C:\Windows\system32\drivers\ASACPI.sys [15416 2009-05-14] ()
S3 rusb3hub; C:\Windows\system32\drivers\rusb3hub.sys [100352 2011-09-15] (Renesas Electronics Corporation)
S3 rusb3xhc; C:\Windows\system32\drivers\rusb3xhc.sys [216064 2011-09-15] (Renesas Electronics Corporation)
S3 SMARTMouseFilterx64; C:\Windows\System32\DRIVERS\SMARTMouseFilterx64.sys [16280 2012-10-24] (SMART Technologies)
S3 SMARTVHidMiniVistaAmd64; C:\Windows\System32\DRIVERS\SMARTVHidMiniVistaAmd64.sys [15256 2012-10-24] (SMART Technologies)
S3 SMARTVTabletPCx64; C:\Windows\System32\DRIVERS\SMARTVTabletPCx64.sys [24984 2012-10-24] (SMART Technologies ULC)
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-03 15:00 - 2014-10-03 15:00 - 00016875 _____ () C:\Users\********\Desktop\FRST.txt
2014-10-03 14:56 - 2014-10-03 14:56 - 00000000 ____D () C:\Users\********\Desktop\FRST-OlderVersion
2014-10-03 12:55 - 2014-10-03 12:55 - 00006410 _____ () C:\Users\********\Desktop\mwam.txt
2014-10-03 12:41 - 2014-10-03 12:41 - 00002284 _____ () C:\Users\********\Desktop\AdwCleaner[S5].txt
2014-10-02 15:02 - 2014-10-02 15:02 - 00854417 _____ () C:\Users\********\Desktop\SecurityCheck.exe
2014-10-02 14:08 - 2014-10-03 14:58 - 00001384 _____ () C:\Windows\Tasks\JWRQOLP.job
2014-10-02 14:08 - 2014-10-02 14:08 - 00004436 _____ () C:\Windows\System32\Tasks\JWRQOLP
2014-10-02 14:07 - 2014-10-03 14:58 - 00001730 _____ () C:\Windows\Tasks\HXAYDYMG.job
2014-10-02 14:07 - 2014-10-02 14:07 - 00004782 _____ () C:\Windows\System32\Tasks\HXAYDYMG
2014-10-01 09:55 - 2014-10-01 09:55 - 00380416 _____ () C:\Users\********\Desktop\Gmer-19357.exe
2014-10-01 09:42 - 2014-10-03 15:00 - 00000000 ____D () C:\FRST
2014-10-01 08:19 - 2014-10-03 14:56 - 02109440 _____ (Farbar) C:\Users\********\Desktop\FRST64.exe
2014-10-01 07:48 - 2014-10-01 07:48 - 00000000 ____D () C:\Windows\ERUNT
2014-10-01 07:41 - 2014-10-01 07:41 - 01375089 _____ () C:\Users\********\Desktop\adwcleaner_3.311.exe
2014-10-01 07:40 - 2014-10-01 08:14 - 01700485 _____ (Thisisu) C:\Users\********\Desktop\JRT.exe
2014-10-01 06:09 - 2014-09-25 04:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-10-01 06:09 - 2014-09-25 03:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-09-30 10:07 - 2014-10-03 12:42 - 00122584 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\ProgramData\Malwarebytes
2014-09-30 10:07 - 2014-09-30 10:07 - 00000000 ____D () C:\Program Files (x86)\ Malwarebytes Anti-Malware
2014-09-30 10:07 - 2014-05-12 07:26 - 00091352 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-09-30 10:07 - 2014-05-12 07:26 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-09-30 10:07 - 2014-05-12 07:25 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-09-30 10:05 - 2014-09-30 10:05 - 01101648 _____ () C:\Users\********\Downloads\Malwarebytes Anti Malware Malware Scanner - CHIP-Installer.exe
2014-09-30 08:06 - 2014-09-30 08:06 - 00000000 ____D () C:\Users\********\Desktop\Alte Firefox-Daten
2014-09-30 08:03 - 2014-09-30 08:03 - 02953520 _____ (AVAST Software) C:\Users\********\Downloads\avast-browser-cleanup.exe
2014-09-30 07:58 - 2014-09-30 07:58 - 01373475 _____ () C:\Users\********\Downloads\adwcleaner_3.310(1).exe
2014-09-29 18:59 - 2014-10-03 12:38 - 00000000 ____D () C:\AdwCleaner
2014-09-29 18:52 - 2014-10-03 14:58 - 00060616 _____ () C:\Windows\PFRO.log
2014-09-29 18:52 - 2014-10-03 14:58 - 00002016 _____ () C:\Windows\setupact.log
2014-09-29 18:52 - 2014-09-29 18:52 - 00000000 _____ () C:\Windows\setuperr.log
2014-09-29 17:26 - 2014-09-29 17:26 - 00001160 _____ () C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2014-09-29 14:54 - 2014-09-29 17:29 - 00000000 ____D () C:\ProgramData\TEMP
2014-09-29 14:54 - 2014-09-29 14:54 - 00000000 ____D () C:\Users\********\AppData\Local\CrashRpt
2014-09-29 14:50 - 2014-09-29 14:50 - 00226664 _____ () C:\Users\********\Downloads\SesameStreet_downloader-Ic4K47cuB.exe
2014-09-29 14:47 - 2014-09-29 14:47 - 00226688 _____ () C:\Users\********\Downloads\Hulkbusters3D_downloader-I43ihVLc1.exe
2014-09-29 14:46 - 2014-09-29 14:46 - 00226688 _____ () C:\Users\********\Downloads\Cube_downloader-IbIdGZenl.exe
2014-09-29 14:45 - 2014-09-29 14:45 - 00226688 _____ () C:\Users\********\Downloads\AgentRed_downloader-I38EfdAdq.exe
2014-09-29 14:45 - 2014-09-29 14:45 - 00226648 _____ () C:\Users\********\Downloads\3-DSalter_downloader-I5nB2gbNu.exe
2014-09-29 14:44 - 2014-09-29 14:44 - 00226664 _____ () C:\Users\********\Downloads\Disko_downloader-I5IUzo2MV.exe
2014-09-29 14:18 - 2014-09-29 14:18 - 00000000 ____D () C:\Users\********\AppData\Roaming\TeamViewer
2014-09-29 14:02 - 2014-09-29 14:02 - 00000000 __SHD () C:\Users\********\AppData\Local\EmieUserList
2014-09-29 14:02 - 2014-09-29 14:02 - 00000000 __SHD () C:\Users\********\AppData\Local\EmieSiteList
2014-09-29 13:59 - 2014-09-29 14:00 - 00000000 ____D () C:\Users\********\AppData\Roaming\dlg
2014-09-29 13:31 - 2014-09-29 13:31 - 00000024 _____ () C:\Windows\AM_D8.PRF
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Windows\System32\Tasks\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Users\********\AppData\Roaming\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\Users\********\AppData\Local\Abelssoft
2014-09-29 13:30 - 2014-09-29 13:30 - 00000000 ____D () C:\ProgramData\XDMessagingv4
2014-09-29 13:30 - 2011-05-13 12:16 - 00493056 _____ ( datenhaus GmbH) C:\Windows\SysWOW64\dhRichClient3.dll
2014-09-29 13:30 - 2011-03-25 20:42 - 00338432 _____ () C:\Windows\SysWOW64\sqlite36_engine.dll
2014-09-28 18:24 - 2014-09-28 18:24 - 00008192 ___SH () C:\Users\********\Documents\Thumbs.db
2014-09-28 17:31 - 2014-09-28 17:32 - 00000000 ____D () C:\Program Files\YouTubeDownloader
2014-09-28 16:54 - 2014-09-28 16:54 - 00000000 ____D () C:\Users\********\Desktop\Examen Grit
2014-09-25 07:53 - 2014-09-25 07:56 - 00000000 ____D () C:\Users\********\Desktop\Oskar Herbst 2014
2014-09-25 07:10 - 2014-10-03 12:33 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-09-24 06:08 - 2014-09-10 00:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-09-24 06:08 - 2014-09-09 23:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-09-10 07:22 - 2014-08-19 20:05 - 00374968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-09-10 07:22 - 2014-08-19 19:39 - 00327872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-09-10 07:22 - 2014-08-19 01:01 - 23591424 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-09-10 07:22 - 2014-08-19 00:29 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-09-10 07:22 - 2014-08-19 00:29 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-09-10 07:22 - 2014-08-19 00:26 - 17455104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-09-10 07:22 - 2014-08-19 00:20 - 02793984 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-09-10 07:22 - 2014-08-19 00:19 - 05833728 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-09-10 07:22 - 2014-08-19 00:15 - 00547328 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-09-10 07:22 - 2014-08-19 00:15 - 00066048 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-09-10 07:22 - 2014-08-19 00:14 - 00083968 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-09-10 07:22 - 2014-08-19 00:14 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 04232704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-09-10 07:22 - 2014-08-19 00:08 - 00033792 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-09-10 07:22 - 2014-08-19 00:05 - 00596480 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-09-10 07:22 - 2014-08-19 00:03 - 00758272 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-09-10 07:22 - 2014-08-19 00:03 - 00139264 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-09-10 07:22 - 2014-08-19 00:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-09-10 07:22 - 2014-08-18 23:57 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-09-10 07:22 - 2014-08-18 23:56 - 00940032 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-09-10 07:22 - 2014-08-18 23:51 - 00446464 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-09-10 07:22 - 2014-08-18 23:46 - 00454656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-09-10 07:22 - 2014-08-18 23:45 - 00072704 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-09-10 07:22 - 2014-08-18 23:45 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-09-10 07:22 - 2014-08-18 23:44 - 00061952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-09-10 07:22 - 2014-08-18 23:44 - 00051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-09-10 07:22 - 2014-08-18 23:42 - 02185728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-09-10 07:22 - 2014-08-18 23:40 - 00195584 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00085504 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-09-10 07:22 - 2014-08-18 23:39 - 00032768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-09-10 07:22 - 2014-08-18 23:38 - 00289280 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-09-10 07:22 - 2014-08-18 23:37 - 00440320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-09-10 07:22 - 2014-08-18 23:36 - 00112128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-09-10 07:22 - 2014-08-18 23:35 - 00597504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-09-10 07:22 - 2014-08-18 23:27 - 00365056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-09-10 07:22 - 2014-08-18 23:25 - 00727040 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-09-10 07:22 - 2014-08-18 23:25 - 00707072 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-09-10 07:22 - 2014-08-18 23:23 - 02104832 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-09-10 07:22 - 2014-08-18 23:23 - 01249280 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-09-10 07:22 - 2014-08-18 23:22 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-09-10 07:22 - 2014-08-18 23:19 - 00164864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-09-10 07:22 - 2014-08-18 23:17 - 00243200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-09-10 07:22 - 2014-08-18 23:17 - 00069632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-09-10 07:22 - 2014-08-18 23:16 - 13588480 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-09-10 07:22 - 2014-08-18 23:15 - 11769856 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-09-10 07:22 - 2014-08-18 23:15 - 02310656 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-09-10 07:22 - 2014-08-18 23:09 - 00603136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-09-10 07:22 - 2014-08-18 23:08 - 02014208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-09-10 07:22 - 2014-08-18 23:07 - 01068032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-09-10 07:22 - 2014-08-18 22:55 - 01447424 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-09-10 07:22 - 2014-08-18 22:46 - 01812992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-09-10 07:22 - 2014-08-18 22:38 - 01190400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-09-10 07:22 - 2014-08-18 22:38 - 00775168 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-09-10 07:22 - 2014-08-18 22:36 - 00678400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-09-10 07:06 - 2014-06-27 04:08 - 02777088 _____ (Microsoft Corporation) C:\Windows\system32\msmpeg2vdec.dll
2014-09-10 07:06 - 2014-06-27 03:45 - 02285056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msmpeg2vdec.dll
2014-09-10 06:14 - 2014-08-01 13:53 - 01031168 _____ (Microsoft Corporation) C:\Windows\system32\TSWorkspace.dll
2014-09-10 06:14 - 2014-08-01 13:35 - 00793600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSWorkspace.dll
2014-09-10 06:14 - 2014-06-24 05:29 - 02565120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2014-09-10 06:14 - 2014-06-24 04:59 - 01987584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2014-09-10 06:13 - 2014-09-05 04:10 - 00578048 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-09-10 06:13 - 2014-09-05 04:05 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-09-10 06:13 - 2014-07-07 04:06 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-09-10 06:13 - 2014-07-07 04:06 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-09-10 06:13 - 2014-07-07 03:40 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-09-10 06:13 - 2014-07-07 03:40 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-09-10 06:13 - 2014-07-07 03:39 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-09-10 06:10 - 2014-09-10 06:10 - 00001137 _____ () C:\Users\Public\Desktop\Avira.lnk
2014-09-10 06:10 - 2014-09-10 06:10 - 00000000 ____D () C:\Program Files (x86)\Avira
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-10-03 14:59 - 2013-04-29 16:52 - 00000000 ___RD () C:\Users\********\Dropbox
2014-10-03 14:59 - 2013-04-29 16:50 - 00000000 ____D () C:\Users\********\AppData\Roaming\Dropbox
2014-10-03 14:58 - 2013-10-07 16:44 - 00001126 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-10-03 14:58 - 2012-02-06 21:01 - 00000000 _____ () C:\Windows\system32\Drivers\lvuvc.hs
2014-10-03 14:58 - 2012-02-03 13:44 - 00000000 ____D () C:\ProgramData\NVIDIA
2014-10-03 14:58 - 2009-07-14 07:08 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2014-10-03 14:57 - 2013-08-22 20:14 - 01417312 _____ () C:\Windows\WindowsUpdate.log
2014-10-03 14:32 - 2013-10-07 16:44 - 00001130 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-10-03 14:24 - 2009-07-14 06:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-10-03 14:24 - 2009-07-14 06:45 - 00028944 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-10-03 14:21 - 2010-11-21 08:50 - 00699416 _____ () C:\Windows\system32\perfh007.dat
2014-10-03 14:21 - 2010-11-21 08:50 - 00149556 _____ () C:\Windows\system32\perfc007.dat
2014-10-03 14:21 - 2009-07-14 07:13 - 01620612 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-10-03 14:16 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\IME
2014-10-03 14:03 - 2013-04-17 15:33 - 00000884 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-10-03 02:00 - 2012-02-06 22:16 - 00000000 ____D () C:\Users\********\AppData\Local\Adobe
2014-10-02 15:00 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\SysWOW64\GroupPolicy
2014-10-01 17:44 - 2014-06-14 13:11 - 00000000 ____D () C:\Users\********\Desktop\Soziale Arbeit
2014-10-01 13:19 - 2011-12-27 14:49 - 00000000 ____D () C:\Windows\de
2014-10-01 08:23 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Vss
2014-09-30 11:35 - 2013-09-20 15:35 - 00000000 ____D () C:\Windows\pss
2014-09-30 11:35 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\Resources
2014-09-30 10:23 - 2012-06-03 09:14 - 00000000 ____D () C:\ProgramData\YTD YouTube Downloader & Converter
2014-09-30 07:57 - 2013-12-12 09:16 - 00000000 ____D () C:\ProgramData\Skype
2014-09-29 17:49 - 2011-12-27 09:53 - 00000000 ____D () C:\Windows\Panther
2014-09-29 16:00 - 2012-12-19 12:48 - 00000000 ___RD () C:\Users\********\Desktop\Schule
2014-09-29 15:59 - 2013-08-25 13:48 - 00000000 ___RD () C:\Users\********\Desktop\Klasse 6a, 2014
2014-09-29 14:57 - 2009-07-14 06:45 - 00323864 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-09-29 14:53 - 2012-02-06 20:53 - 00075176 _____ () C:\Users\********\AppData\Local\GDIPFONTCACHEV1.DAT
2014-09-26 06:51 - 2013-04-17 15:34 - 00002441 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-09-26 06:48 - 2012-04-25 18:44 - 00000000 ____D () C:\Program Files (x86)\Mozilla Maintenance Service
2014-09-25 08:04 - 2014-08-16 13:42 - 00000000 ____D () C:\Users\********\Desktop\Wichtiges Oskar
2014-09-25 08:04 - 2012-02-07 07:19 - 00000000 ____D () C:\Users\********\Desktop\Persönliches
2014-09-25 08:01 - 2012-02-07 07:13 - 00000000 ___RD () C:\Users\********\Desktop\Kunst
2014-09-24 17:22 - 2009-07-14 05:20 - 00000000 ____D () C:\Windows\rescache
2014-09-24 17:03 - 2013-04-17 15:33 - 00003822 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-09-24 17:03 - 2012-04-26 06:55 - 00701104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-09-24 17:03 - 2011-12-27 14:59 - 00071344 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-09-23 22:29 - 2012-02-06 20:53 - 00000000 ____D () C:\Users\********\AppData\Roaming\Adobe
2014-09-23 17:11 - 2012-02-06 18:43 - 00000000 ___RD () C:\Users\********\Desktop\Deutsch
2014-09-19 07:17 - 2014-04-08 06:53 - 00000000 ____D () C:\Users\Public\Documents\MIADoc
2014-09-19 06:24 - 2013-04-29 16:50 - 00000000 ____D () C:\Users\********\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-09-18 06:19 - 2014-07-15 14:38 - 00002453 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat XI Pro.lnk
2014-09-18 06:19 - 2014-07-15 14:38 - 00002210 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe FormsCentral.lnk
2014-09-18 06:19 - 2014-07-15 14:38 - 00002049 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller XI.lnk
2014-09-10 07:21 - 2013-08-08 20:43 - 00000000 ____D () C:\Windows\system32\MRT
2014-09-10 07:21 - 2011-12-27 14:29 - 01593956 _____ () C:\Windows\SysWOW64\PerfStringBackup.INI
2014-09-10 07:06 - 2011-12-27 16:47 - 101694776 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-09-10 07:05 - 2014-04-30 07:03 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-09-10 06:10 - 2014-07-15 12:41 - 00000000 ____D () C:\ProgramData\Package Cache
2014-09-10 06:10 - 2013-03-24 20:58 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
Some content of TEMP:
====================
C:\Users\********\AppData\Local\Temp\avgnt.exe
C:\Users\********\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpmyx2ce.dll
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2014-09-26 16:23
==================== End Of Log ============================
--- --- --- |
|
04.10.2014, 13:49
| #8 |
| /// the machine /// TB-Ausbilder | Entfernen der Adware 'Goobzo.2825' Sieht gut aus, noch Probleme?
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
05.10.2014, 11:47
| #9 |
| | Entfernen der Adware 'Goobzo.2825' Hallo Schrauber, im Firefox waren noch zwei unerwünschte Erweiterungen, die sich aber rasch entfernen ließen. Ansonsten ist alles ruhig, und ich danke vielmals für die schnelle Hilfe! Ich freu' mich riesig! Danke rudb |
|
06.10.2014, 10:58
| #10 |
| /// the machine /// TB-Ausbilder | Entfernen der Adware 'Goobzo.2825' Fertig Die Reihenfolge ist hier entscheidend.
Falls Du Lob oder Kritik abgeben möchtest kannst Du das hier tun Hier noch ein paar Tipps zur Absicherung deines Systems. Ich kann garnicht zu oft erwähnen, wie wichtig es ist, dass dein System Up to Date ist.
Anti- Viren Software
Zusätzlicher Schutz
Sicheres Browsen
Alternative Browser Andere Browser tendieren zu etwas mehr Sicherheit als der IE, da diese keine Active X Elemente verwenden. Diese können von Spyware zur Infektion deines Systems missbraucht werden.
Performance Bereinige regelmäßig deine Temp Files. Ich empfehle hierzu TFC Halte dich fern von jedlichen Registry Cleanern. Diese Schaden deinem System mehr als sie helfen. Hier ein paar ( englishe ) Links Miekemoes Blogspot ( MVP ) Bill Castner ( MVP ) Don'ts
Hinweis: Bitte gib mir eine kurze Rückmeldung wenn alles erledigt ist und keine Fragen mehr vorhanden sind, so das ich diesen Thread aus meinen Abos löschen kann.
__________________ gruß, schrauber Proud Member of UNITE and ASAP since 2009 Spenden Anleitungen und Hilfestellungen Trojaner-Board Facebook-Seite Keine Hilfestellung via PM! |
|
Linear-Darstellung
