| |
| |||||||
Netzwerk und Hardware: Seiten scrollen alleine runter ohne das ich Maus bewege- Hilfe..Windows 7 Hilfe zu Motherboards, CPUs, Lüfter, Raid-Controller, Digitalkameras, Treiber usw. Bitte alle relevanten Angaben zur Hardware machen. Welche Hardware habe ich? Themen zum Trojaner Entfernen oder Viren Beseitigung bitte in den Bereinigungsforen des Trojaner-Boards posten. |
 |
25.02.2015, 19:21
| #1 |
| |  Seiten scrollen alleine runter ohne das ich Maus bewege- Hilfe.. Hey Leute, habe gerade den PC gestartet - es wurde dabei etwas in die Registry installiert so wie es aussah beim hochfahren. Anschließend gehen einige Programme nicht richtig, der Pc scrollt automatisch runter, wenn ich beim drucken einen Drucker auswählen will scrollt er einfach und lässt mich nichts auswählen. In Excel oder im IE wie jetzt klappt alles - Maus wurde bereits gewechselt - Fehler taucht trotzdem auf. Es ist ein Desktop pc - kein Laptop mit touchpad. Hilfe  PS: Hatte die Tage Updates machen lassen von Windows - habe bereits Wiederherstellungspunkte von vor 2 Tagen wiederhergestellt - daran liegt es nicht. Heute Mittag lieg alles einwandfrei. Edit: Es sieht eherso aus als wenn er eher nach rechts schiebt als nach unten! Wenn ich die Scrollmaus drücke um die Seite langsam nach unten oder oben scrollen zu lassen, kommt kurz dieses Icon mit "Pfeil unten - Pfeil oben" und verschwindet wieder. Ein "langsames" Schrollen mit gedrücktem Rad ist also nicht möglich. Dies bei mehreren Mäusen [CODE]Hier mal ein Logfile vom OTL:OTL Logfile: Code:
ATTFilter OTL logfile created on: 25.02.2015 18:44:14 - Run 2 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\SUPPSTORE24\Desktop 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.17633) Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy 7,75 Gb Total Physical Memory | 5,49 Gb Available Physical Memory | 70,81% Memory free 15,49 Gb Paging File | 13,04 Gb Available in Paging File | 84,17% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 195,21 Gb Total Space | 103,44 Gb Free Space | 52,99% Space Free | Partition Type: NTFS Drive D: | 736,20 Gb Total Space | 535,83 Gb Free Space | 72,78% Space Free | Partition Type: NTFS Computer Name: DANIELSPC | User Name: SUPPSTORE24 | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - File not found -- PRC - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2014.11.21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe PRC - [2014.11.21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe PRC - [2014.11.21 06:12:46 | 007,229,752 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe PRC - [2014.10.07 15:39:30 | 001,241,472 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe PRC - [2014.02.17 14:09:48 | 004,915,040 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe PRC - [2013.11.21 13:34:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SUPPSTORE24\Desktop\OTL.exe PRC - [2013.07.25 10:19:26 | 005,624,784 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe PRC - [2013.05.16 09:56:34 | 001,033,688 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe PRC - [2013.05.16 09:56:30 | 001,817,560 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe PRC - [2013.05.15 12:21:32 | 000,171,928 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe PRC - [2010.01.22 12:29:40 | 000,106,496 | ---- | M] (NEC Electronics Corporation) -- C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe ========== Modules (No Company Name) ========== MOD - [2013.05.16 10:55:26 | 000,113,496 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl MOD - [2013.05.16 10:55:24 | 000,416,600 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl ========== Services (SafeList) ========== SRV:64bit: - [2015.01.30 03:15:10 | 000,366,512 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv) SRV:64bit: - [2015.01.30 03:15:10 | 000,023,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc) SRV:64bit: - [2015.01.12 03:34:30 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService) SRV:64bit: - [2013.05.27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:64bit: - [2012.11.16 21:44:58 | 000,238,080 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility) SRV:64bit: - [2012.11.16 15:27:28 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service) SRV:64bit: - [2012.08.23 16:18:14 | 004,412,872 | ---- | M] (SafeNet Inc.) [Auto | Running] -- C:\Windows\SysNative\hasplms.exe -- (hasplms) SRV - [2015.02.06 11:14:20 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2014.11.21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe -- (MBAMService) SRV - [2014.11.21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe -- (MBAMScheduler) SRV - [2014.06.27 10:37:54 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2014.04.11 23:08:08 | 000,103,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32) SRV - [2014.03.20 23:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2014.02.17 14:09:48 | 004,915,040 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9) SRV - [2010.02.19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard) ========== Driver Services (SafeList) ========== DRV:64bit: - [2015.02.25 18:10:07 | 000,129,752 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy) DRV:64bit: - [2014.11.21 06:14:22 | 000,063,704 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl) DRV:64bit: - [2014.11.21 06:14:08 | 000,025,816 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector) DRV:64bit: - [2014.11.15 14:46:08 | 000,124,560 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv) DRV:64bit: - [2014.08.15 23:35:00 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64) DRV:64bit: - [2013.10.02 03:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt) DRV:64bit: - [2013.07.24 16:02:55 | 000,034,816 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VClone.sys -- (VClone) DRV:64bit: - [2013.03.04 13:24:27 | 000,040,344 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO) DRV:64bit: - [2012.11.16 22:08:32 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag) DRV:64bit: - [2012.11.16 20:39:12 | 000,359,936 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap) DRV:64bit: - [2012.10.12 11:18:30 | 000,083,072 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aksdf.sys -- (aksdf) DRV:64bit: - [2012.10.06 16:55:24 | 000,323,584 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\hardlock.sys -- (hardlock) DRV:64bit: - [2012.08.23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport) DRV:64bit: - [2012.08.07 11:51:18 | 000,141,256 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aksfridge.sys -- (aksfridge) DRV:64bit: - [2012.06.15 09:39:36 | 000,296,576 | ---- | M] (SafeNet Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\aksusb.sys -- (aksusb) DRV:64bit: - [2012.06.15 07:44:14 | 000,057,088 | ---- | M] (SafeNet Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\akshhl.sys -- (akshhl) DRV:64bit: - [2012.06.15 07:44:14 | 000,053,760 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\akshasp.sys -- (akshasp) DRV:64bit: - [2012.05.14 07:12:30 | 000,096,896 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService) DRV:64bit: - [2012.03.05 15:04:30 | 000,053,888 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.1) DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec) DRV:64bit: - [2011.06.10 05:34:52 | 000,539,240 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167) DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:64bit: - [2010.11.20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:64bit: - [2010.02.18 08:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64) DRV:64bit: - [2010.01.22 12:22:22 | 000,180,224 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc) DRV:64bit: - [2010.01.22 12:22:18 | 000,077,824 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub) DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:64bit: - [2009.07.14 01:39:20 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice) DRV:64bit: - [2009.07.14 01:35:37 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan) DRV:64bit: - [2009.06.10 21:35:36 | 000,867,328 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux) DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:64bit: - [2005.03.29 00:30:38 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor) DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE:64bit: - HKLM\..\SearchScopes,DefaultScope = IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com IE - HKLM\..\SearchScopes,DefaultScope = IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 8B C5 BA 61 F7 C0 CE 01 [binary data] IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - prefs.js..browser.search.defaultthis.engineName: "" FF - prefs.js..browser.search.suggest.enabled: false FF - prefs.js..extensions.enabledAddons: %7Ba7c6cf7f-112c-4500-a7ea-39801a327e5f%7D:2.0.19 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:30.0 FF - user.js - File not found FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll File not found FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems) FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems) FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.25.2: C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.25.2: C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems) FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems) FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.5.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.5.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files\components FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files\plugins [2013.10.04 12:28:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SUPPSTORE24\AppData\Roaming\mozilla\Extensions [2014.08.13 12:47:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SUPPSTORE24\AppData\Roaming\mozilla\Firefox\Profiles\uq2nvlzy.default\extensions File not found (No name found) -- C:\USERS\SUPPSTORE24\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UQ2NVLZY.DEFAULT\EXTENSIONS\{A7C6CF7F-112C-4500-A7EA-39801A327E5F}.XPI [2014.07.27 10:41:38 | 000,034,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll ========== Chrome ========== CHR - plugin: Error reading preferences file CHR - Extension: No name found = C:\Users\SUPPSTORE24\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_1\ CHR - Extension: No name found = C:\Users\SUPPSTORE24\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\ O1 HOSTS File: ([2013.11.17 15:01:15 | 000,001,983 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com O1 - Hosts: O1 - Hosts: 127.0.0.1 activate.adobe.com O1 - Hosts: 127.0.0.1 practivate.adobe.com O1 - Hosts: 127.0.0.1 ereg.adobe.com O1 - Hosts: 127.0.0.1 activate.wip3.adobe.com O1 - Hosts: 127.0.0.1 wip3.adobe.com O1 - Hosts: 127.0.0.1 3dns-3.adobe.com O1 - Hosts: 127.0.0.1 3dns-2.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-2.adobe.com O1 - Hosts: 127.0.0.1 adobe-dns-3.adobe.com O1 - Hosts: 127.0.0.1 ereg.wip3.adobe.com O1 - Hosts: 127.0.0.1 activate-sea.adobe.com O1 - Hosts: 127.0.0.1 wwis-dubc1-vip60.adobe.com O1 - Hosts: 127.0.0.1 activate-sjc0.adobe.com O1 - Hosts: 127.0.0.1 adobe.activate.com O1 - Hosts: 127.0.0.1 hl2rcv.adobe.com O1 - Hosts: 127.0.0.1 209.34.83.73:443 O1 - Hosts: 127.0.0.1 209.34.83.73:43 O1 - Hosts: 127.0.0.1 209.34.83.73 O1 - Hosts: 127.0.0.1 209.34.83.67:443 O1 - Hosts: 127.0.0.1 209.34.83.67:43 O1 - Hosts: 127.0.0.1 209.34.83.67 O1 - Hosts: 8 more lines... O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office15\URLREDIR.DLL (Microsoft Corporation) O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation) O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated) O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation) O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation) O4 - HKLM..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" File not found O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation) O4 - HKLM..\Run: [SDTray] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.) O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [TrojanScanner] C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot File not found O4 - HKCU..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup File not found O4 - Startup: C:\Users\SUPPSTORE24\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk = File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoNotification = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoNotification = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 0 O1364bit: - gopher Prefix: missing O13 - gopher Prefix: missing O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B209B968-B62A-4F2D-8451-7E13C53A2B90}: DhcpNameServer = 192.168.178.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E7FC54E9-7ADE-4E6D-A2FD-6A5D57EEC164}: DhcpNameServer = 192.168.178.1 O18 - Protocol\Handler\ms-help - No CLSID value found O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) - File not found O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found. O32 - HKLM CDRom: AutoRun - 1 O33 - MountPoints2\{563a0e17-d64c-11d6-a2df-bb6bb0813172}\Shell - "" = AutoRun O33 - MountPoints2\{563a0e17-d64c-11d6-a2df-bb6bb0813172}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL H:\start.html O33 - MountPoints2\{ea572a09-9fb0-11e3-889d-20cf30c133d5}\Shell - "" = AutoRun O33 - MountPoints2\{ea572a09-9fb0-11e3-889d-20cf30c133d5}\Shell\AutoRun\command - "" = G:\autorun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35:64bit: - HKLM\..comfile [open] -- "%1" %* O35:64bit: - HKLM\..exefile [open] -- "%1" %* O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %* O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2015.02.24 11:23:40 | 000,000,000 | ---D | C] -- C:\Users\SUPPSTORE24\Desktop\sandro [2015.02.22 14:40:45 | 000,129,752 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\6C723508.sys [2015.02.18 13:24:56 | 000,000,000 | ---D | C] -- C:\Users\SUPPSTORE24\Desktop\ssss [2015.02.18 13:20:18 | 000,000,000 | ---D | C] -- C:\Users\SUPPSTORE24\Desktop\püocl [2015.02.18 10:06:56 | 000,950,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perftrack.dll [2015.02.18 10:06:56 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powertracker.dll [2015.02.11 15:48:21 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll [2015.02.11 15:48:20 | 006,041,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll [2015.02.11 15:48:20 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll [2015.02.11 00:09:57 | 000,000,000 | R--D | C] -- C:\Users\SUPPSTORE24\Documents\Scanned Documents [2015.02.11 00:09:57 | 000,000,000 | ---D | C] -- C:\Users\SUPPSTORE24\Documents\Fax [2015.02.10 22:04:32 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll [2015.02.10 22:04:25 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe [2015.02.10 22:04:25 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll [2015.02.10 22:04:25 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll [2015.02.10 22:04:25 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll [2015.02.10 22:04:24 | 000,718,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe [2015.02.10 22:04:24 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll [2015.02.10 22:04:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll [2015.02.10 22:04:24 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll [2015.02.10 22:04:24 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll [2015.02.10 22:04:24 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll [2015.02.10 22:04:22 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl [2015.02.10 22:04:22 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll [2015.02.10 22:04:22 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll [2015.02.10 22:04:22 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll [2015.02.10 22:04:21 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe [2015.02.10 22:04:21 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll [2015.02.10 22:04:21 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll [2015.02.10 22:04:21 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll [2015.02.10 22:04:21 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe [2015.02.10 22:04:20 | 002,125,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl [2015.02.10 22:04:20 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll [2015.02.10 22:04:20 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll [2015.02.10 22:04:19 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll [2015.02.10 22:04:18 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll [2015.02.10 22:04:18 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll [2015.02.10 22:04:18 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe [2015.02.10 22:04:17 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll [2015.02.10 22:04:17 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll [2015.02.10 22:04:17 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll [2015.02.10 22:04:16 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll [2015.02.10 22:04:15 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll [2015.02.10 22:04:14 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll [2015.02.10 22:03:38 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll [2015.02.10 22:03:34 | 001,461,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll [2015.02.10 22:03:34 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll [2015.02.10 22:03:34 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll [2015.02.10 22:03:34 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll [2015.02.10 22:03:34 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll [2015.02.10 22:03:34 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll [2015.02.10 22:03:34 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe [2015.02.10 22:03:34 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll [2015.02.10 22:03:34 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll [2015.02.10 22:03:34 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe [2015.02.10 22:03:34 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll [2015.02.10 22:03:34 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll [2015.02.10 22:03:29 | 001,480,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll [2015.02.10 22:03:20 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll [2015.02.10 22:03:08 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scesrv.dll [2015.02.10 22:03:08 | 000,308,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll [2015.02.10 22:03:00 | 005,554,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe [2015.02.10 22:03:00 | 003,972,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe [2015.02.10 22:02:59 | 003,917,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe [2015.02.10 22:02:58 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll [2015.02.10 22:02:58 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe [2015.02.10 22:02:58 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll [2015.02.10 09:28:15 | 000,129,752 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\21C71C42.sys [2015.02.09 22:40:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird [2015.02.03 09:16:49 | 000,129,752 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\49527094.sys [2015.01.29 18:48:02 | 000,000,000 | ---D | C] -- C:\Users\SUPPSTORE24\Desktop\FTP sachen [2013.10.04 12:03:50 | 000,049,560 | ---- | C] (Mozilla.org) -- C:\Program Files\mozMapi32_InUse.dll [2013.10.04 12:03:50 | 000,018,328 | ---- | C] (Mozilla.org) -- C:\Program Files\MapiProxy_InUse.dll [2010.10.25 16:39:00 | 000,562,280 | ---- | C] (Acresso Software Inc.) -- C:\Program Files\ISSetup.dll [2008.05.10 12:27:18 | 000,324,920 | ---- | C] (Acresso Software Inc.) -- C:\Program Files\_Setup.dll ========== Files - Modified Within 30 Days ========== [2015.02.25 18:15:57 | 000,014,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2015.02.25 18:15:57 | 000,014,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2015.02.25 18:14:04 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2015.02.25 18:10:07 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys [2015.02.25 18:08:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2015.02.25 18:08:18 | 1944,625,151 | -HS- | M] () -- C:\hiberfil.sys [2015.02.25 17:27:32 | 002,272,841 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Rechnung5.bk4 [2015.02.25 12:40:28 | 000,020,658 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Händler anschreiben.odt [2015.02.25 11:39:34 | 001,404,047 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\SCANI.jpeg [2015.02.25 11:39:02 | 000,401,283 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Scan000222.pdf [2015.02.22 14:40:45 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\6C723508.sys [2015.02.21 14:01:00 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job [2015.02.20 12:26:37 | 000,012,419 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\preise.odt [2015.02.20 12:26:10 | 000,152,392 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\February_Promotions_Pricelist.pdf [2015.02.20 12:20:29 | 000,758,957 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\wholesale pricelist 2015.pdf [2015.02.20 11:02:38 | 000,002,175 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk [2015.02.18 13:27:48 | 000,001,456 | ---- | M] () -- C:\Users\SUPPSTORE24\AppData\Local\Adobe Für Web speichern 13.0 Prefs [2015.02.18 13:16:49 | 000,062,162 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\ferox.jpg [2015.02.17 11:24:53 | 003,299,420 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\dddd-1.pdf [2015.02.17 11:23:30 | 000,050,452 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\EVN_RG1239454161.pdf [2015.02.14 11:22:01 | 000,016,685 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Rechnung Nr._120389.pdf [2015.02.13 22:45:26 | 000,120,007 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\asdfsdfsdf.jpg [2015.02.13 21:52:43 | 000,346,160 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\3.jpg [2015.02.13 21:52:06 | 000,323,614 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt1.jpg [2015.02.13 13:22:21 | 000,000,132 | ---- | M] () -- C:\Users\SUPPSTORE24\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen [2015.02.13 10:47:55 | 004,831,859 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Was ist hier bitte ungültig.jpg [2015.02.13 10:47:41 | 037,473,242 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Bild 005.psd [2015.02.11 11:02:53 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\21C71C42.sys [2015.02.11 11:01:39 | 005,456,376 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2015.02.11 02:06:12 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif [2015.02.10 23:01:12 | 000,011,195 | ---- | M] () -- C:\Users\SUPPSTORE24\Documents\ElStEr Daniel Kvesic UStVA Dezember 2014 Übertragung (Normale_Übertragung) am 2015-02-10_23.01.09.045.pdf [2015.02.10 23:00:19 | 000,011,302 | ---- | M] () -- C:\Users\SUPPSTORE24\Documents\ElStEr Daniel Kvesic UStVA Jahr 2015 Übertragung (Normale_Übertragung) am 2015-02-10_23.00.16.097.pdf [2015.02.10 19:00:12 | 000,018,306 | ---- | M] () -- C:\Users\SUPPSTORE24\Documents\alter bestand.ods [2015.02.09 23:32:22 | 000,076,212 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\slider_pic1.jpg [2015.02.09 09:42:37 | 001,629,572 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2015.02.09 09:42:37 | 000,703,092 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat [2015.02.09 09:42:37 | 000,657,196 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2015.02.09 09:42:37 | 000,150,676 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat [2015.02.09 09:42:37 | 000,123,008 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2015.02.08 23:53:27 | 000,002,000 | ---- | M] () -- C:\Users\Public\Desktop\FileZilla Client.lnk [2015.02.07 00:30:01 | 000,018,186 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt.jpg [2015.02.06 11:14:20 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe [2015.02.06 11:14:20 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl [2015.02.05 14:55:59 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job [2015.02.05 12:24:42 | 000,000,494 | ---- | M] () -- C:\Lokaler Datenträger (D) - Verknüpfung.lnk [2015.02.03 09:16:49 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\49527094.sys [2015.01.30 09:39:15 | 000,292,062 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt.png [2015.01.29 19:37:01 | 000,000,171 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\tablerates.csv ========== Files Created - No Company Name ========== [2015.02.25 17:27:13 | 002,272,841 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Rechnung5.bk4 [2015.02.25 12:40:26 | 000,020,658 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Händler anschreiben.odt [2015.02.25 11:39:25 | 001,404,047 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\SCANI.jpeg [2015.02.25 11:39:02 | 000,401,283 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Scan000222.pdf [2015.02.20 12:26:09 | 000,152,392 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\February_Promotions_Pricelist.pdf [2015.02.20 12:20:29 | 000,758,957 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\wholesale pricelist 2015.pdf [2015.02.20 11:40:27 | 000,012,419 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\preise.odt [2015.02.18 13:18:38 | 000,062,162 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\ferox.jpg [2015.02.17 11:24:45 | 003,299,420 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\dddd-1.pdf [2015.02.17 11:23:30 | 000,050,452 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\EVN_RG1239454161.pdf [2015.02.14 11:22:01 | 000,016,685 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Rechnung Nr._120389.pdf [2015.02.13 22:45:26 | 000,120,007 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\asdfsdfsdf.jpg [2015.02.13 21:52:43 | 000,346,160 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\3.jpg [2015.02.13 21:52:06 | 000,323,614 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt1.jpg [2015.02.13 10:47:49 | 004,831,859 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Was ist hier bitte ungültig.jpg [2015.02.13 10:47:39 | 037,473,242 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Bild 005.psd [2015.02.10 23:01:12 | 000,011,195 | ---- | C] () -- C:\Users\SUPPSTORE24\Documents\ElStEr Daniel Kvesic UStVA Dezember 2014 Übertragung (Normale_Übertragung) am 2015-02-10_23.01.09.045.pdf [2015.02.10 23:00:19 | 000,011,302 | ---- | C] () -- C:\Users\SUPPSTORE24\Documents\ElStEr Daniel Kvesic UStVA Jahr 2015 Übertragung (Normale_Übertragung) am 2015-02-10_23.00.16.097.pdf [2015.02.10 19:00:10 | 000,018,306 | ---- | C] () -- C:\Users\SUPPSTORE24\Documents\alter bestand.ods [2015.02.07 00:30:01 | 000,018,186 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt.jpg [2015.02.05 12:24:42 | 000,000,494 | ---- | C] () -- C:\Lokaler Datenträger (D) - Verknüpfung.lnk [2015.01.30 09:39:15 | 000,292,062 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt.png [2015.01.29 19:05:27 | 000,000,171 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\tablerates.csv [2014.11.24 12:38:07 | 000,919,000 | ---- | C] () -- C:\Windows\SysWow64\BpShellEx.dll [2014.11.24 12:38:00 | 000,013,778 | ---- | C] () -- C:\Windows\SysWow64\SELF32.INI [2014.09.26 11:27:36 | 000,000,908 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Local\recently-used.xbel [2014.07.18 17:49:57 | 000,000,137 | ---- | C] () -- C:\Users\SUPPSTORE24\tablerates.csv [2014.02.28 16:40:21 | 000,000,600 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Local\PUTTY.RND [2014.02.02 21:24:35 | 000,000,132 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Roaming\Adobe CS6-GIF-Format - Voreinstellungen [2014.01.03 12:26:03 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini [2013.11.28 13:18:30 | 000,000,132 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen [2013.11.14 15:52:44 | 000,001,456 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Local\Adobe Für Web speichern 13.0 Prefs [2013.10.30 20:56:00 | 001,371,436 | R--- | C] () -- C:\Windows\SysWow64\VBAR2132.DLL [2013.10.28 22:20:06 | 000,007,605 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Local\Resmon.ResmonCfg [2013.10.18 20:57:16 | 001,602,916 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI [2013.09.20 13:02:20 | 153,313,362 | ---- | C] () -- C:\Program Files\openoffice1.cab [2013.09.20 13:00:46 | 002,269,184 | ---- | C] () -- C:\Program Files\openoffice401.msi [2013.09.20 13:00:46 | 000,475,136 | ---- | C] () -- C:\Program Files\setup.exe [2013.09.20 13:00:46 | 000,000,279 | ---- | C] () -- C:\Program Files\setup.ini [2013.03.03 19:55:17 | 000,000,000 | ---- | C] () -- C:\Windows\longfile.INI [2013.03.03 19:55:16 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin [2010.09.27 16:06:24 | 000,035,720 | ---- | C] () -- C:\Program Files\data1.hdr [2010.09.27 16:06:24 | 000,000,512 | ---- | C] () -- C:\Program Files\data2.cab [2010.09.27 16:06:24 | 000,000,473 | ---- | C] () -- C:\Program Files\layout.bin [2010.09.27 16:06:22 | 003,558,733 | ---- | C] () -- C:\Program Files\data1.cab [2010.09.27 14:26:50 | 000,263,514 | ---- | C] () -- C:\Program Files\setup.inx [2008.12.23 10:47:38 | 000,000,892 | ---- | C] () -- C:\Program Files\setup.iss [2008.12.23 10:47:38 | 000,000,672 | ---- | C] () -- C:\Program Files\uninstall.iss [2008.12.22 20:38:48 | 000,000,031 | ---- | C] () -- C:\Program Files\Silent_Uninstall.bat [2008.12.22 20:38:32 | 000,000,012 | ---- | C] () -- C:\Program Files\Silent_Install.bat [2008.05.10 12:07:02 | 000,041,059 | ---- | C] () -- C:\Program Files\setup.isn ========== ZeroAccess Check ========== [2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64 "" = C:\Windows\SysNative\shell32.dll -- [2014.06.25 03:05:42 | 014,175,744 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2014.06.25 02:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] ========== Alternate Data Streams ========== @Alternate Data Stream - 269 bytes -> C:\ProgramData\TEMP:CB0AACC9 < End of report > Thema hat sich erledigt - PC komplett runtergefahren und hochgefahren dann ging es. Dabei wurden wieder updates installiert - lag wohl daran Geändert von eye-catcher1 (25.02.2015 um 18:49 Uhr) |
|
| Themen zu Seiten scrollen alleine runter ohne das ich Maus bewege- Hilfe.. |
| askbar, automatisch, bereits, desktop, drucken, drucker, einfach, excel, fehler, gestartet, installier, installiert, laptop, leute, maus, nichts, programme, registry, richtig, runter, schließe, scrollen, scrollt, seite, seiten, taucht |
Linear-Darstellung
