Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Windows7 unerwünschte Programme SlimCleanerPlus

Windows7 unerwünschte Programme SlimCleanerPlus


Plagegeister aller Art und deren Bekämpfung: Windows7 unerwünschte Programme SlimCleanerPlus

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 07.07.2015, 15:10   #1
petti
 
Windows7 unerwünschte Programme SlimCleanerPlus - Standard

Windows7 unerwünschte Programme SlimCleanerPlus


Guten Tag
Nach Start des Laptops tauchen Programme auf wie Slim Cleaner Plus und Max Computer Cleaner. Die wirken wie Schadprogramme und ich denke es gibt noch mehr was sich auf dem Laptop eingeschlichen hat.
Deswegen bitte ich um Hilfe!

Schritt 1
Defogger ausgeführt, meldete keine Probleme.

Schritt 2
FRST.txt
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-07-2015
Ran by Anwender (administrator) on ANWENDER-PC on 07-07-2015 15:12:06
Running from C:\Users\Anwender\Desktop
Loaded Profiles: Anwender (Available Profiles: Anwender)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Deutsch (Deutschland)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
() C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
(APN LLC.) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe
(SlimWare Utilities, Inc.) C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Infonaut) C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe
() C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp
() C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp
(SlimWare Utilities, Inc.) C:\Program Files\SlimService\SlimServiceFactory.exe
() C:\Program Files (x86)\Edu App\updateEduApp.exe
() C:\Program Files (x86)\Edu App\bin\utilEduApp.exe
() C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files (x86)\Verbindungsassistent\WTGService.exe
(Yahoo! Inc.) C:\Program Files (x86)\Yahoo!\SoftwareUpdate\YahooAUService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
() C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Windesk Winsearch) C:\Program Files (x86)\WindeskWinsearch\Windesk Winsearch.exe
(SlimWare Utilities, Inc.) C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe
(Crossbrowse) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
(YTDownloader) C:\Program Files (x86)\YTDownloader\YTDownloader.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
() C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe
(ZTE) C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe
(Crossbrowse) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(APN) C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Crossbrowse) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe
(Super PC Tools Ltd) C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
() C:\Program Files (x86)\congstar\Internet-Manager\Bin\dbus-daemon.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
() C:\Program Files (x86)\congstar\Internet-Manager\Bin\db_daemon.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDExtHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDAppHost.exe
(Microsoft Corp.) C:\Program Files (x86)\Microsoft\BingDesktop\BDRuntimeHost.exe
(SlimWare Utilities, Inc.) C:\Program Files\SlimService\SlimService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
( ) C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\vnst9E35.tmp
() C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1337000 2015-04-30] (Microsoft Corporation)
HKLM\...\Run: [Windesk Winsearch] => C:\Program Files (x86)\WindeskWinsearch\Windesk Winsearch.exe [1061256 2015-04-08] (Windesk Winsearch)
HKLM\...\Run: [3D BubbleSound] => C:\Program Files\BubbleSound\3D BubbleSound.exe [14115328 2015-01-09] (zik.mu)
HKLM-x32\...\Run: [BingDesktop] => C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktop.exe [2372800 2014-11-26] (Microsoft Corp.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [642304 2013-04-30] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AMD AVT] => C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe [20992 2012-03-19] ()
HKLM-x32\...\Run: [ApnTBMon] => C:\Program Files (x86)\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [1684360 2015-05-26] (APN)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [334896 2015-04-30] (Oracle Corporation)
HKLM-x32\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988968 2015-01-08] (YTDownloader)
HKLM-x32\...\RunOnce: [MaxComputerCleaner_v17.391] => C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe [26112 2015-05-10] ()
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\Run: [se] => C:\Users\user\AppData\Roaming\SkypEmoticons\SE.exe  /minimized 
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\Run: [SlimCleaner Plus] => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe [26166552 2015-03-26] (SlimWare Utilities, Inc.)
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\Run: [GoogleChromeAutoLaunch_C4859DDBFABC3069E28D5BBA1A08DE65] => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe [637440 2015-03-16] (Crossbrowse)
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\Run: [YTDownloader] => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [1988968 2015-01-08] (YTDownloader)
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: E - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {0ecf4f87-71a4-11e4-a4e7-0025d3e206bb} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {45df7acf-4a15-11e4-80af-806e6f6e6963} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {45df7b07-4a15-11e4-80af-0025d3e206bb} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {45df7b94-4a15-11e4-80af-001e101fb4df} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {45e11ca1-d96d-11e4-8179-001e101fb681} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {4a11958d-4a21-11e4-b916-0025d3e206bb} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {9e6ce542-d97e-11e4-8fd3-0025d3e206bb} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {a940c718-dd46-11e4-a966-001e101f57d0} - E:\windows\Data\setup.exe
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {c1e2be75-4a27-11e4-8f7b-0025d3e206bb} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {c1e2bec0-4a27-11e4-8f7b-001e101f4e71} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {cf5855ad-7d9c-11e4-ba9e-0025d3e206bb} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {d19eb85e-dbc0-11e4-b04e-001e101f8aaa} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {eeb9c481-4a6d-11e4-b606-806e6f6e6963} - E:\AutoRun.exe
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {eeb9c4e0-4a6d-11e4-b606-e0cb4e29e6ba} - E:\AutoRun.exe
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\MountPoints2: {eeb9c4e3-4a6d-11e4-b606-e0cb4e29e6ba} - E:\AutoRun.exe
AppInit_DLLs-x32: c:\users\anwender\appdata\local\smartbar\application\resources\crdlil.dll => "c:\users\anwender\appdata\local\smartbar\application\resources\crdlil.dll" File not found
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Launcher.lnk [2014-10-02]
ShortcutTarget: Launcher.lnk -> C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\MCtlSvc.lnk [2015-04-07]
ShortcutTarget: MCtlSvc.lnk -> C:\Program Files (x86)\congstar\Internet-Manager\Bin\mcserver.exe (ZTE)
Startup: C:\Users\Anwender\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\crossbrowse.lnk [2015-05-10]
ShortcutTarget: crossbrowse.lnk -> C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe (Crossbrowse)
Startup: C:\Users\Anwender\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\hqghumeaylnlf.lnk [2015-05-07]
ShortcutTarget: hqghumeaylnlf.lnk -> C:\ProgramData\{f40376ff-34b3-b8a9-f403-376ff34bdbfc}\hqghumeaylnlf.exe (Super PC Tools Ltd)
GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
ProxyEnable: [.DEFAULT] => Internet Explorer proxy is enabled
ProxyServer: [.DEFAULT] => http=127.0.0.1:53032;https=127.0.0.1:53032
ProxyEnable: [S-1-5-21-3363051143-1332560974-1509076309-1000] => Internet Explorer proxy is enabled
ProxyServer: [S-1-5-21-3363051143-1332560974-1509076309-1000] => http=127.0.0.1:53032;https=127.0.0.1:53032
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = ?type=hppp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = ?type=hppp
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.oursurfing.com/web/?type=ds&ts=1431287237&z=38043de0e7e6d29232cc69eg4zfc0geodb4m3o9cfm&from=cmi&uid=WDCXWD3200BEKT-60V5T1_WD-WXC1A20F8611F8611&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.oursurfing.com/web/?type=ds&ts=1431287237&z=38043de0e7e6d29232cc69eg4zfc0geodb4m3o9cfm&from=cmi&uid=WDCXWD3200BEKT-60V5T1_WD-WXC1A20F8611F8611&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = ?type=hppp
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = ?type=hppp
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.oursurfing.com/web/?type=ds&ts=1431287237&z=38043de0e7e6d29232cc69eg4zfc0geodb4m3o9cfm&from=cmi&uid=WDCXWD3200BEKT-60V5T1_WD-WXC1A20F8611F8611&q={searchTerms}
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.oursurfing.com/web/?type=ds&ts=1431287237&z=38043de0e7e6d29232cc69eg4zfc0geodb4m3o9cfm&from=cmi&uid=WDCXWD3200BEKT-60V5T1_WD-WXC1A20F8611F8611&q={searchTerms}
HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> DefaultScope {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {06BF8636-ACEE-4E4C-B7CE-74A71B942EC1} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {12E15750-4320-4654-9071-A1D611BA4BA0} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {14E257C6-BF92-48B8-9C33-966045309E36} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {1A2CBE2E-434C-481C-96A4-BBBA5924B1EA} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {2023ECEC-E06A-4372-A1C7-0B49F9E0FFF0} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {2EAD2EFA-276D-44C8-AD7C-F3B6AFA1D893} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {31635E16-6125-43B7-B285-86B04367F734} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {4216E9FC-0632-4AD4-8261-253A77036D52} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {42E12595-753F-4BB2-A63C-1BCF31E21440} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {54C0F572-7084-4C5D-A8F7-FBDF967AB6E9} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {5AACE2E1-71F5-4FE4-BDCD-B848561DC5BD} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {5D1E4177-4A66-44A4-9476-19E395562623} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {7618D134-DC39-4042-AF47-14C61DD5D2F6} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {7F602158-E48B-44BC-9B0E-C337ED28E976} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {8E2E9136-2225-4166-A9DE-8EB80B147F38} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {9408F642-64DE-4B1F-A8F1-7E5A2772D255} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {9BC8A8D6-77A3-4510-8350-B7815CFA1FA8} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {9D746C3F-4AFF-42D0-A56E-1B51CA038894} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {A1D65D9A-1874-4C33-B8A5-2083D4EF0E59} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {A5FA4671-D3EA-479F-B0B5-916589BE8F24} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {B5E30D29-DF6A-422A-BA35-434BEDCA9B3E} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {B6103F2F-9649-4DF4-85A5-CCA4C1DFCF9A} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {CDB03119-470F-4C54-AAC3-1D6A6B5AB4A5} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {D7BFFE9B-B524-4849-A1CA-4C382BAF8AD2} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {DECA3892-BA8F-44b8-A993-A466AD694AE4} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {E733165D-CBCF-4FDA-883E-ADEF965B476C} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {ECF8A3D4-520C-4F5E-B258-F46A8C0F9443} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {F04B0AD7-CF7C-4C0E-BF03-0A880C936E46} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {FA42EA95-D69C-49AC-A787-F24E2F3DB05A} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> {FC318D30-CD17-4594-B23E-FA7D14D424C3} URL = hxxp://do-search.com/web/?utm_source=b&utm_medium=&utm_campaign=install_ie&utm_content=ds&from=&uid=ST500DM002-1BC142_W2A27G6AXXXXW2A27G6A&ts=1420373293&type=default&q={searchTerms}
BHO: Shopping App by Ask -> {4F524A2D-5354-2D53-5045-7A786E7484D7} -> C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport_x64.dll [2015-04-28] (APN LLC.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: &Yahoo! Toolbar Helper -> {02478D38-C3F9-4efb-9B51-7695ECA05670} -> C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll [2015-01-20] (Yahoo! Inc.)
BHO-x32: Shopping App by Ask -> {4F524A2D-5354-2D53-5045-7A786E7484D7} -> C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport.dll [2015-04-28] (APN LLC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\ssv.dll [2015-05-07] (Oracle Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-05-07] (Oracle Corporation)
BHO-x32: Edu App 1.0.0.7 -> {ebfbdd44-c0e0-4f63-a8e6-ee5f34765238} -> C:\Program Files (x86)\Edu App\EduAppbho.dll [2015-05-08] (Edu App)
Toolbar: HKLM - Shopping App by Ask - {4F524A2D-5354-2D53-5045-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport_x64.dll [2015-04-28] (APN LLC.)
Toolbar: HKLM-x32 - Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn1\yt.dll [2015-01-20] (Yahoo! Inc.)
Toolbar: HKLM-x32 - Shopping App by Ask - {4F524A2D-5354-2D53-5045-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport.dll [2015-04-28] (APN LLC.)
Toolbar: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000 -> Shopping App by Ask - {4F524A2D-5354-2D53-5045-7A786E7484D7} - C:\Program Files (x86)\AskPartnerNetwork\Toolbar\ORJ-ST-SPE\Passport_x64.dll [2015-04-28] (APN LLC.)
DPF: HKLM-x32 {166B1BCA-3F9C-11CF-8075-444553540000} hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-05-01] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-05-01] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{0052E9BC-23BD-4DE5-A465-7D35F97E8BA5}: [NameServer] 212.23.103.8 212.23.103.9
Tcpip\..\Interfaces\{0D468547-79CD-4D7A-B90A-F7DBFC87C4E2}: [NameServer] 212.23.115.132 212.23.115.148
Tcpip\..\Interfaces\{0FE0A1DC-7D2A-426B-9BCA-F6BD846AAE02}: [NameServer] 212.23.103.9 212.23.103.8
Tcpip\..\Interfaces\{447B8B92-E638-4A24-807C-983A5C592B10}: [NameServer] 212.23.103.9 212.23.103.8
Tcpip\..\Interfaces\{4D1BC870-F250-43F6-806F-D901FF04935E}: [NameServer] 212.23.103.9 212.23.103.8
Tcpip\..\Interfaces\{6E804F9B-383F-4182-8682-6116BD95A036}: [NameServer] 212.23.115.150 212.23.115.132
Tcpip\..\Interfaces\{8093F0C5-90FA-41FF-BF27-7F130CA19664}: [DhcpNameServer] 192.168.43.1
Tcpip\..\Interfaces\{B8B01A5D-4C1B-4CD8-A98F-4E3799D94C7A}: [NameServer] 212.23.115.84 212.23.115.150
Tcpip\..\Interfaces\{DA3FBBD6-AFE9-4184-B50F-BF92A5382BFA}: [NameServer] 212.23.115.148 212.23.115.150
Tcpip\..\Interfaces\{E1760BFF-CEBA-465E-9700-0AAB1ED52ABE}: [NameServer] 212.23.103.8 212.23.103.9
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll [2015-04-20] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-20] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1213153.dll [2014-06-24] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-05-07] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files (x86)\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-05-07] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll No File
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll No File
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files (x86)\congstar\Internet-Manager\Bin\addon
FF Extension: Bytemobile Optimization Client - C:\Program Files (x86)\congstar\Internet-Manager\Bin\addon [2015-04-07]

Chrome: 
=======
CHR Profile: C:\Users\Anwender\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (No Name) - C:\Users\Anwender\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-04-07]
CHR Extension: (No Name) - C:\Users\Anwender\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-07]
StartMenuInternet: Chrome.5UBA556F45Y653JIBE5ZEISEVI - C:\Users\Anwender\AppData\Local\Chrome\Application\chrome.exe hxxp://www.oursurfing.com/?type=sc&ts=1431287237&z=38043de0e7e6d29232cc69eg4zfc0geodb4m3o9cfm&from=cmi&uid=WDCXWD3200BEKT-60V5T1_WD-WXC1A20F8611F8611

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ALDITALKVerbindungsassistent_Service; C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe [358968 2014-10-02] ()
R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [361984 2013-04-29] (Advanced Micro Devices, Inc.) [File not signed]
R2 APNMCP; C:\Program Files (x86)\AskPartnerNetwork\Toolbar\apnmcp.exe [178568 2015-04-28] (APN LLC.)
R2 BingDesktopUpdate; C:\Program Files (x86)\Microsoft\BingDesktop\BingDesktopUpdater.exe [173248 2014-11-26] (Microsoft Corp.)
S2 BrsHelper; C:\Program Files (x86)\YTDownloader\BrowserHelperSrv.exe [22376 2015-01-08] ()
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1394816 2015-05-01] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1772672 2015-05-01] (Microsoft Corporation)
R2 insvc_1.10.0.14; C:\Program Files (x86)\Infonaut_1.10.0.14\Service\insvc.exe [278600 2015-04-10] (Infonaut)
R2 licosely; C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp [221696 2015-05-07] () [File not signed]
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
R2 movimito; C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp [360960 2015-05-10] () [File not signed]
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23816 2015-04-30] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [366544 2015-04-30] (Microsoft Corporation)
R2 SlimService; C:\Program Files\SlimService\SlimServiceFactory.exe [244504 2015-03-26] (SlimWare Utilities, Inc.)
R2 Update Edu App; C:\Program Files (x86)\Edu App\updateEduApp.exe [473320 2015-06-24] ()
R2 Util Edu App; C:\Program Files (x86)\Edu App\bin\utilEduApp.exe [473320 2015-06-24] ()
R2 WajWebEnhance Service; C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe [691200 2015-05-01] () [File not signed]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 WTGService; C:\Program Files (x86)\Verbindungsassistent\WTGService.exe [296400 2009-03-03] ()

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AODDriver4.1; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [53888 2012-03-05] (Advanced Micro Devices)
R0 BMLoad; C:\Windows\System32\drivers\BMLoad.sys [16512 2009-12-15] (Bytemobile, Inc.) [File not signed]
S3 ewusbnet; C:\Windows\System32\DRIVERS\ewusbnet.sys [138752 2014-10-02] (Huawei Technologies Co., Ltd.)
S3 ewusbnet; C:\Windows\SysWOW64\DRIVERS\ewusbnet.sys [138752 2014-10-02] (Huawei Technologies Co., Ltd.)
S3 ew_hwusbdev; C:\Windows\SysWOW64\DRIVERS\ew_hwusbdev.sys [117248 2014-10-02] (Huawei Technologies Co., Ltd.)
S3 hwdatacard; C:\Windows\SysWOW64\DRIVERS\ewusbmdm.sys [121600 2014-10-02] (Huawei Technologies Co., Ltd.)
R1 innfd_1_10_0_14; C:\Windows\System32\drivers\innfd_1_10_0_14.sys [58224 2015-04-10] (Infonaut)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-04-14] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [136408 2015-07-07] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-04-14] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [280376 2015-03-04] (Microsoft Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATK64AMD.sys [13680 2007-08-09] ()
R2 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [124568 2015-03-04] (Microsoft Corporation)
S3 RimUsb; C:\Windows\System32\Drivers\RimUsb_AMD64.sys [27520 2007-05-14] (Research In Motion Limited)
R2 sbmntr; C:\Program Files (x86)\YTDownloader\sbmntr.sys [58728 2015-01-08] (YTDownloader)
S3 SWDUMon; C:\Windows\System32\DRIVERS\SWDUMon.sys [16056 2015-07-07] (SlimWare Utilities, Inc.)
R1 tcpipBM; C:\Windows\system32\drivers\tcpipBM.sys [39552 2009-12-15] (Bytemobile, Inc.) [File not signed]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-07 15:12 - 2015-07-07 15:12 - 00033319 _____ C:\Users\Anwender\Desktop\FRST.txt
2015-07-07 15:11 - 2015-07-07 15:12 - 00000000 ____D C:\FRST
2015-07-07 15:07 - 2015-07-07 15:07 - 02112512 _____ (Farbar) C:\Users\Anwender\Desktop\FRST64.exe
2015-07-07 15:02 - 2015-07-07 15:02 - 00000478 _____ C:\Users\Anwender\Desktop\defogger_disable.log
2015-07-07 15:02 - 2015-07-07 15:02 - 00000000 _____ C:\Users\Anwender\defogger_reenable
2015-07-07 14:56 - 2015-07-07 14:56 - 00050477 _____ C:\Users\Anwender\Desktop\Defogger.exe
2015-06-27 17:58 - 2015-06-27 17:58 - 00000000 ____D C:\ProgramData\4e37a8c900002a05
2015-06-27 17:56 - 2015-06-27 17:56 - 00000000 ____D C:\ProgramData\3fe8688000004fe9
2015-06-27 16:41 - 2015-07-07 13:57 - 00136408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-06-27 16:39 - 2015-06-27 16:39 - 00001106 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-06-27 16:39 - 2015-06-27 16:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-06-27 16:38 - 2015-06-27 16:39 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-06-27 16:38 - 2015-06-27 16:38 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-06-27 16:38 - 2015-04-14 09:37 - 00107736 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-06-27 16:38 - 2015-04-14 09:37 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-06-27 16:38 - 2015-04-14 09:37 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2015-06-27 16:32 - 2015-06-02 23:23 - 21546080 _____ (Malwarebytes Corporation ) C:\Users\Anwender\Desktop\mbam-setup-2.1.6.1022.exe
2015-06-24 01:16 - 2015-06-24 01:16 - 00002111 _____ C:\Users\Anwender\Desktop\Continue Games Desktop.lnk

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-07 15:13 - 2015-04-07 00:58 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-07 15:11 - 2009-07-14 06:45 - 00028704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-07-07 15:11 - 2009-07-14 06:45 - 00028704 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-07-07 15:09 - 2014-09-29 11:37 - 01749174 _____ C:\Windows\WindowsUpdate.log
2015-07-07 15:02 - 2014-09-29 11:38 - 00000000 ____D C:\Users\Anwender
2015-07-07 14:31 - 2014-09-29 16:33 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-07-07 13:52 - 2015-06-03 02:23 - 00000000 ____D C:\ProgramData\Agsoxaukregaa
2015-07-07 13:52 - 2015-05-07 01:04 - 00000000 ____D C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA
2015-07-07 13:51 - 2015-05-10 21:49 - 00000000 ____D C:\Users\Anwender\Documents\MaxComputerCleaner
2015-07-07 13:50 - 2014-09-29 17:12 - 00043063 _____ C:\Windows\setupact.log
2015-07-07 13:49 - 2014-10-17 01:25 - 00002856 _____ C:\Windows\System32\Tasks\DriverUpdate Startup
2015-07-07 13:49 - 2014-10-17 01:25 - 00000424 _____ C:\Windows\Tasks\DriverUpdate Startup.job
2015-07-07 13:48 - 2014-10-17 01:24 - 00016056 _____ (SlimWare Utilities, Inc.) C:\Windows\system32\Drivers\SWDUMon.sys
2015-07-07 13:47 - 2015-05-10 22:06 - 00001062 _____ C:\Windows\Tasks\Crossbrowse.job
2015-07-07 13:47 - 2015-05-07 00:52 - 00000336 _____ C:\Windows\Tasks\PAUHWOF1.job
2015-07-07 13:47 - 2015-04-07 00:58 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-07 13:47 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-06-30 00:17 - 2015-04-14 00:05 - 00000372 _____ C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - Anwender).job
2015-06-29 20:53 - 2009-07-14 06:45 - 00296120 _____ C:\Windows\system32\FNTCACHE.DAT
2015-06-29 20:52 - 2014-09-29 17:14 - 00431448 _____ C:\Windows\PFRO.log
2015-06-27 18:25 - 2010-11-21 09:00 - 00000000 ____D C:\Program Files\Windows Journal
2015-06-27 17:37 - 2015-05-09 01:36 - 00000000 ____D C:\ProgramData\irmAkRlHlQ
2015-06-27 17:37 - 2015-05-09 01:33 - 00000000 ____D C:\Users\Anwender\AppData\Local\SmartWeb
2015-06-27 17:37 - 2014-11-16 21:12 - 00000000 ____D C:\ProgramData\Trusted Publisher
2015-06-27 17:35 - 2015-05-15 21:46 - 00000000 ____D C:\Program Files (x86)\Assets Manager
2015-06-27 17:35 - 2015-05-12 02:07 - 00000000 ____D C:\Program Files (x86)\speed browser
2015-06-27 17:35 - 2015-05-10 22:05 - 00000000 ____D C:\Program Files (x86)\globalUpdate
2015-06-27 17:34 - 2015-05-09 01:33 - 00000000 ____D C:\Users\Anwender\AppData\Roaming\jellylam
2015-06-27 17:34 - 2015-05-07 00:53 - 00000000 ____D C:\Users\Anwender\AppData\Roaming\Winsta
2015-06-27 17:05 - 2015-05-10 22:05 - 00000004 _____ C:\Windows\SysWOW64\029B560A371F4E00AB32838EBC01B9E7
2015-06-27 16:32 - 2010-11-21 08:50 - 06260312 _____ C:\Windows\system32\perfh007.dat
2015-06-27 16:32 - 2010-11-21 08:50 - 01929364 _____ C:\Windows\system32\perfc007.dat
2015-06-27 16:32 - 2009-07-14 07:13 - 00006208 _____ C:\Windows\system32\PerfStringBackup.INI
2015-06-27 14:52 - 2014-09-29 15:26 - 00001912 _____ C:\Windows\epplauncher.mif
2015-06-27 14:51 - 2014-09-29 15:26 - 00002117 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
2015-06-27 14:50 - 2014-09-29 15:25 - 00000000 ____D C:\Program Files\Microsoft Security Client
2015-06-27 14:50 - 2014-09-29 15:25 - 00000000 ____D C:\Program Files (x86)\Microsoft Security Client
2015-06-24 01:32 - 2014-09-29 16:33 - 00778416 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-06-24 01:32 - 2014-09-29 16:33 - 00142512 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-24 01:32 - 2014-09-29 16:33 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-06-24 01:20 - 2015-05-09 01:35 - 00000000 ____D C:\Program Files (x86)\Edu App
2015-06-24 01:20 - 2009-07-14 04:34 - 00000505 _____ C:\Windows\win.ini
2015-06-24 01:12 - 2015-02-17 23:57 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task

==================== Files in the root of some directories =======

2014-10-02 14:05 - 2014-10-02 14:05 - 0033193 _____ () C:\Users\Anwender\AppData\Roaming\UserTile.png
2015-05-10 21:54 - 2015-05-10 21:54 - 0613255 _____ (CMI Limited) C:\Users\Anwender\AppData\Local\nsf2C13.tmp

Some files in TEMP:
====================
C:\Users\Anwender\AppData\Local\Temp\13-9-legacy_vista_win7_64_dd_ccc_whql.exe
C:\Users\Anwender\AppData\Local\Temp\1cg60wyb.dll
C:\Users\Anwender\AppData\Local\Temp\3151.exe
C:\Users\Anwender\AppData\Local\Temp\9zqbzcly.dll
C:\Users\Anwender\AppData\Local\Temp\a3z7lktt.dll
C:\Users\Anwender\AppData\Local\Temp\APNSetup.exe
C:\Users\Anwender\AppData\Local\Temp\b1vcrk-q.dll
C:\Users\Anwender\AppData\Local\Temp\cabex.dll
C:\Users\Anwender\AppData\Local\Temp\ce98ac2e-20c0-4a93-86f6-bdb3e61caf55.exe
C:\Users\Anwender\AppData\Local\Temp\ChromaticStubInstaller.exe
C:\Users\Anwender\AppData\Local\Temp\ck-nylix.dll
C:\Users\Anwender\AppData\Local\Temp\DataCard_Setup64.exe
C:\Users\Anwender\AppData\Local\Temp\f3bs9r0f.dll
C:\Users\Anwender\AppData\Local\Temp\hdvsxcn2.dll
C:\Users\Anwender\AppData\Local\Temp\hi_mnvvq.dll
C:\Users\Anwender\AppData\Local\Temp\hokduklz.dll
C:\Users\Anwender\AppData\Local\Temp\JavaRa.exe
C:\Users\Anwender\AppData\Local\Temp\jli.dll
C:\Users\Anwender\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\Anwender\AppData\Local\Temp\jre-8u31-windows-au.exe
C:\Users\Anwender\AppData\Local\Temp\jre-8u31-windows-i586.exe
C:\Users\Anwender\AppData\Local\Temp\jre-8u31-windows-x64.exe
C:\Users\Anwender\AppData\Local\Temp\jue1CB3.exe
C:\Users\Anwender\AppData\Local\Temp\keytool.exe
C:\Users\Anwender\AppData\Local\Temp\Kraus.exe
C:\Users\Anwender\AppData\Local\Temp\krcnwrkr.dll
C:\Users\Anwender\AppData\Local\Temp\mfc80.dll
C:\Users\Anwender\AppData\Local\Temp\mfc80u.dll
C:\Users\Anwender\AppData\Local\Temp\mfcm80.dll
C:\Users\Anwender\AppData\Local\Temp\mfcm80u.dll
C:\Users\Anwender\AppData\Local\Temp\mpam-678e0380.exe
C:\Users\Anwender\AppData\Local\Temp\mpam-b5f2c1ee.exe
C:\Users\Anwender\AppData\Local\Temp\mpl1-czr.dll
C:\Users\Anwender\AppData\Local\Temp\msvcm80.dll
C:\Users\Anwender\AppData\Local\Temp\msvcp80.dll
C:\Users\Anwender\AppData\Local\Temp\msvcr100.dll
C:\Users\Anwender\AppData\Local\Temp\msvcr80.dll
C:\Users\Anwender\AppData\Local\Temp\mtpe2bo6.dll
C:\Users\Anwender\AppData\Local\Temp\newversion.exe
C:\Users\Anwender\AppData\Local\Temp\nkdyddoi.dll
C:\Users\Anwender\AppData\Local\Temp\node.exe
C:\Users\Anwender\AppData\Local\Temp\nw1bmk_h.dll
C:\Users\Anwender\AppData\Local\Temp\optprosetup.exe
C:\Users\Anwender\AppData\Local\Temp\oraflicc.dll
C:\Users\Anwender\AppData\Local\Temp\OSU.exe
C:\Users\Anwender\AppData\Local\Temp\ResetDevice.exe
C:\Users\Anwender\AppData\Local\Temp\rgfjanpp.dll
C:\Users\Anwender\AppData\Local\Temp\ri4sd-2e.dll
C:\Users\Anwender\AppData\Local\Temp\rtbtrn6a.dll
C:\Users\Anwender\AppData\Local\Temp\scp2DB8.tmp.exe
C:\Users\Anwender\AppData\Local\Temp\scpE8BB.tmp.exe
C:\Users\Anwender\AppData\Local\Temp\sdf21C7.exe
C:\Users\Anwender\AppData\Local\Temp\sdf4ABA.exe
C:\Users\Anwender\AppData\Local\Temp\sdf50B3.exe
C:\Users\Anwender\AppData\Local\Temp\sdfF480.exe
C:\Users\Anwender\AppData\Local\Temp\set.exe
C:\Users\Anwender\AppData\Local\Temp\setup_656.exe
C:\Users\Anwender\AppData\Local\Temp\smt_oursurfing.exe
C:\Users\Anwender\AppData\Local\Temp\supoptsetup.exe
C:\Users\Anwender\AppData\Local\Temp\tskdhzrq.dll
C:\Users\Anwender\AppData\Local\Temp\tt-klep6.dll
C:\Users\Anwender\AppData\Local\Temp\uh7vanxp.dll
C:\Users\Anwender\AppData\Local\Temp\unelevate.exe
C:\Users\Anwender\AppData\Local\Temp\Uninstall.exe
C:\Users\Anwender\AppData\Local\Temp\Uninstaller.exe
C:\Users\Anwender\AppData\Local\Temp\u_t84nu4.dll
C:\Users\Anwender\AppData\Local\Temp\VersionUpdater.exe
C:\Users\Anwender\AppData\Local\Temp\vndsk7mx.dll
C:\Users\Anwender\AppData\Local\Temp\vtvwzpuz.dll
C:\Users\Anwender\AppData\Local\Temp\WtgDriverInstallX.dll
C:\Users\Anwender\AppData\Local\Temp\WTGXMLUtil.dll
C:\Users\Anwender\AppData\Local\Temp\WtgZip.dll
C:\Users\Anwender\AppData\Local\Temp\x4yaehre.dll
C:\Users\Anwender\AppData\Local\Temp\ytaiesmt_smtyc_setup.exe


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-01-24 08:41

==================== End of log ============================

Addition

Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version:05-07-2015
Ran by Anwender at 2015-07-07 15:13:07
Running from C:\Users\Anwender\Desktop
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3363051143-1332560974-1509076309-500 - Administrator - Disabled)
Anwender (S-1-5-21-3363051143-1332560974-1509076309-1000 - Administrator - Enabled) => C:\Users\Anwender
Gast (S-1-5-21-3363051143-1332560974-1509076309-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Microsoft Security Essentials (Enabled - Out of date) {B7ECF8CD-0188-6703-DBA4-AA65C6ACFB0A}
AS: Microsoft Security Essentials (Enabled - Out of date) {0C8D1929-27B2-688D-E114-9117BD2BB1B7}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 15.0.0.249 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.1 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.1.3.153 - Adobe Systems, Inc.)
ALDI TALK Verbindungsassistent (HKLM-x32\...\ALDITALKVerbindungsassistent) (Version: ALDI TALK 4.0 - ALDI TALK Verbindungsassistent)
AMD Catalyst Install Manager (HKLM\...\{37FCE154-7F59-74F0-3A35-BF503CEB230B}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
AnyProtect (HKLM-x32\...\AnyProtect) (Version: 1.0.0.4 - CMI Limited) <==== ATTENTION
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.1.9 - ASUS)
Barcode Reader Forward Slash (HKLM-x32\...\ConvertAd) (Version: 1.0.0.0 - Barcode Reader Forward Slash) <==== ATTENTION
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.4.167.0 - Microsoft Corporation)
BubbleSound (HKLM\...\BubbleSound) (Version: 1.0 - BubbleSound) <==== ATTENTION!
Chromium Browser (HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\Chromium) (Version: 41.0.2231.0 - Chrome)
congstar Internet-Manager (HKLM-x32\...\{27D28586-BEF1-4E06-8787-3B1FC3A41489}) (Version: 1.0.0.3 - ZTE CORPORATION)
Crossbrowse (HKLM-x32\...\Crossbrowse) (Version: 39.5.2171.95 - The Crossbrowse Authors) <==== ATTENTION!
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DocToPDFConverter (HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\DocToPDFConverter) (Version: 01.00.00.00 - VolatoTech)
DriverUpdate (HKLM-x32\...\{E5D00C88-F9B1-4CE3-B73F-D2AE6EDEFF2A}) (Version: 2.3.0 - SlimWare Utilities, Inc.)
Edu App (HKLM\...\Edu App) (Version: 2015.05.08.202332 - Edu App) <==== ATTENTION
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 41.0.2272.118 - Google Inc.)
Google Update Helper (x32 Version: 1.3.24.7 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
GUPlayer (remove only) (HKLM-x32\...\GUPlayer) (Version:  - ) <==== ATTENTION
Infonaut 1.10.0.14 (HKLM-x32\...\Infonaut_1.10.0.14) (Version: 1.10.0.14 - Infonaut) <==== ATTENTION
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Knuddels Desktop App (HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\Knuddels Desktop App ) (Version: "2014.12.13.0" - "Knuddels Desktop App")
MaintenanceService 1.0.0 (HKLM-x32\...\zz.391.mcc) (Version: 1.0.0 - CSDI)
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Max Computer Cleaner (HKLM-x32\...\{14AA679C-17A7-4D62-97DD-7A9E1DEE6785}) (Version: 2.6.9 - Max Computer Cleaner)
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\...\OneDriveSetup.exe) (Version: 17.0.4035.0328 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.8.204.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.30319 (HKLM-x32\...\{196BB40D-1578-3D01-B289-BEFC77A11A1E}) (Version: 10.0.30319 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Numerical Order Down (HKLM-x32\...\SoftwareUpdater) (Version: 1.0.0.0 - Numerical Order Down)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
oursurfing uninstall (HKLM-x32\...\oursurfing uninstall) (Version:  - oursurfing) <==== ATTENTION
Search App by Ask (HKLM-x32\...\{4F524A2D-5350-4500-76A7-A758B70C1D00}) (Version: 12.29.0.197 - APN, LLC) <==== ATTENTION
Setup (HKLM-x32\...\{7ADF667E-E14D-4D2C-827C-B0108F0D93BC}) (Version:  - )
Shopping App by Ask (HKLM-x32\...\{4F524A2D-5354-2D53-5045-A758B70C1C01}) (Version: 12.28.1.170 - APN, LLC)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.4.0.9058 - Microsoft Corporation)
SkypEmoticons (HKLM-x32\...\SkypEmoticons_is1) (Version:  - ) <==== ATTENTION
Skype™ 6.20 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.20.104 - Skype Technologies S.A.)
SlimCleaner Plus (HKLM\...\{63144FD7-52F5-413A-8060-5A70D5B913DD}) (Version: 1.3.0 - SlimWare Utilities, Inc.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Verbindungsassistent (HKLM-x32\...\Verbindungsassistent) (Version: 2.1 - Verbindungsassistent)
WindeskWinsearch 1.0 (HKLM-x32\...\WindeskWinsearch) (Version: 1.0 - PCSoftware) <==== ATTENTION
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Yahoo Community Smartbar (HKLM-x32\...\{4E732E5D-E577-451A-9BB1-CBE64A2CBC2F}) (Version: 11.112.66.19229 - Linkury Inc.) <==== ATTENTION
Yahoo! Software Update (HKLM-x32\...\Yahoo! Software Update) (Version:  - )
Yahoo! Toolbar (HKLM-x32\...\Yahoo! Companion) (Version:  - )
YTDownloader (HKLM-x32\...\YTDownloader) (Version:  - YTDownloader) <==== ATTENTION

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Anwender\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Anwender\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000_Classes\CLSID\{CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B}\InprocServer32 -> C:\Users\Anwender\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Anwender\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3363051143-1332560974-1509076309-1000_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Anwender\AppData\Local\Microsoft\SkyDrive\17.0.4035.0328\amd64\FileSyncApi64.dll No File

==================== Restore Points =========================

21-04-2015 19:51:09 Windows Update
25-04-2015 20:37:55 Windows Update
30-04-2015 18:42:30 Windows Update
03-05-2015 20:50:41 Windows Update
07-05-2015 22:01:10 Windows Update
12-05-2015 01:52:01 Windows Update
14-05-2015 22:50:36 Wiederherstellungsvorgang
14-05-2015 23:01:07 Windows Update
15-05-2015 22:01:06 Windows Update
15-05-2015 22:12:27 Windows Update
03-06-2015 02:19:47 Windows Update
27-06-2015 14:47:30 Windows Update
27-06-2015 18:24:58 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {048802CC-75FA-42A6-B931-1546FF6F15BC} - System32\Tasks\IDCPQZTD => C:\ProgramData\203af7cb0eef485d88939d261f9400ba\203af7cb0eef485d88939d261f9400ba.exe [2015-05-04] () <==== ATTENTION
Task: {071E1E57-8381-4825-97C4-9ED203EFBA7D} - System32\Tasks\WebBarUpdateTask => C:\Program Files\WebBar\wbsvc.exe <==== ATTENTION
Task: {0D62C79C-B84F-4D2A-89D3-C566D113DC6A} - \SmartWeb Upgrade Trigger Task No Task File <==== ATTENTION
Task: {12583BB1-96DD-4E34-9BAA-88AC8C1C4AB9} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {21E21DF2-AD26-4819-89B2-37347BAEF7DF} - \SMW_UpdateTask_Time_323331393032333032342d45372a5a506c41324a345741 No Task File <==== ATTENTION
Task: {2C12C826-5EEB-4516-B9FE-2F189F8501EB} - System32\Tasks\Installer_shopperpro => C:\Users\Anwender\AppData\Local\Installer\Installshopperpro_1848\DCytdkietut_tutdk_setup.exe <==== ATTENTION
Task: {2D282E88-CF9C-4942-AA14-5803248DAC0D} - System32\Tasks\DriverUpdate Scan => C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe [2015-03-26] (SlimWare Utilities, Inc.)
Task: {42A3E04E-0D27-4D7B-BA26-1781FA7501EE} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-24] (Adobe Systems Incorporated)
Task: {4428765C-1A74-4152-BFD8-17DB82A14299} - System32\Tasks\DriverMgr => C:\Users\Anwender\AppData\Roaming\jellylam\rinti.exe
Task: {4A64C493-D6B4-4F9C-9BB0-A45FB0C39001} - System32\Tasks\MaxComputerCleaner_Start => C:\Program Files (x86)\Max Computer Cleaner\MaxComputerCleaner.exe [2015-02-09] (Max Computer Cleaner) <==== ATTENTION
Task: {4C0E435B-1248-47EB-AD5F-80C07BA8B670} - System32\Tasks\APSnotifierPP2 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-05-10] (AnyProtect.com) <==== ATTENTION
Task: {4E7C1DAD-E21B-4A46-BF97-9C6F7C12A763} - System32\Tasks\WebBarLaunchTask => C:\Program Files\WebBar\wbsvc.exe <==== ATTENTION
Task: {51DD9011-4E17-465E-8987-0A16089680B4} - System32\Tasks\Convertor => C:\Users\Anwender\AppData\Roaming\Convertor\Convertor.exe [2015-01-29] ()
Task: {662CEE24-DC19-4DCB-9650-0EA07E264F72} - System32\Tasks\Microsoft\Windows\Maintenance\SMupdate2 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update2 <==== ATTENTION
Task: {7B0919A3-0423-4C5D-A826-4636E70D932C} - System32\Tasks\Installer_geforce => C:\Users\Anwender\AppData\Local\Installer\Installgeforce_20428\DCytdkietut_tutdk_setup.exe
Task: {7D59EE6C-D997-41C7-920A-A8CE2F51BB24} - System32\Tasks\DriverUpdate Startup => C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe [2015-03-26] (SlimWare Utilities, Inc.)
Task: {820021CD-4C3A-402D-BB72-FD988F254A6A} - System32\Tasks\APSnotifierPP3 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-05-10] (AnyProtect.com) <==== ATTENTION
Task: {92D397A7-9BF1-46DA-8335-6CA01C96AFD5} - System32\Tasks\PAUHWOF1 => C:\ProgramData\LolliScan\LolliScan.exe <==== ATTENTION
Task: {9CF22E04-C5DC-4B56-A330-3B5D972A92A2} - System32\Tasks\keepup => C:\Users\Anwender\AppData\Roaming\jellylam\rinti.exe
Task: {A8571398-54C2-4873-9837-9D11F01D1C78} - System32\Tasks\SMupdate1 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update1 <==== ATTENTION
Task: {A9E18BAA-9817-4BD4-9E87-8CDB18327260} - System32\Tasks\Microsoft\Windows\Multimedia\SMupdate3 => Rundll32.exe C:\PROGRA~1\COMMON~1\System\SysMenu.dll ,Command701 update3 <==== ATTENTION
Task: {BA94EA08-E43A-41AF-A359-3011EF7B4A08} - System32\Tasks\Crossbrowse => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe [2015-05-10] () <==== ATTENTION
Task: {C2D1AFFB-131A-4724-A383-2CD63D25258B} - System32\Tasks\{BBB7AB08-A17F-4F4B-AB6B-B0C2D6F28FCD} => pcalua.exe -a "C:\Users\Anwender\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\W09ACXEP\JavaSetup8u25.com" -d C:\Users\Anwender\Desktop
Task: {C85E5461-19B3-4F45-AD59-B1DF6E985ABC} - System32\Tasks\YTDownloaderUpd => C:\Program Files (x86)\YTDownloader\updater.exe [2015-01-08] (Goobzo) <==== ATTENTION
Task: {D46B0019-3584-4355-88DB-4A4BF06F9647} - System32\Tasks\YTDownloader => C:\Program Files (x86)\YTDownloader\YTDownloader.exe [2015-01-08] (YTDownloader) <==== ATTENTION
Task: {D618F214-F40A-4AAA-807E-BA959816C309} - System32\Tasks\Smp => C:\Program Files\Common Files\Goobzo\GBUpdate\smp.exe <==== ATTENTION
Task: {D9987354-9DE4-429D-B974-2DA5D293D7CA} - System32\Tasks\Inst_Rep => C:\Users\Anwender\AppData\Local\Installer\Install_10723\DCytdkietut_tutdk_setup.exe
Task: {DA3E2770-2983-4ACA-A946-7E031EAE8060} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-12] (Adobe Systems Incorporated)
Task: {DB7849E0-6AE6-4763-A019-2E493709327C} - System32\Tasks\Winsta Update => C:\Users\Anwender\AppData\Roaming\Winsta\Winsta.exe
Task: {E73DFCE1-3406-4B61-BA12-E755738B61E7} - System32\Tasks\WinKit => C:\Users\Anwender\AppData\Roaming\WinKit\Updater.exe
Task: {EACD163E-6A1F-4C74-9B49-7821E5632F35} - System32\Tasks\SMWUpd => C:\Program Files\Common Files\Goobzo\GBUpdate\updater.exe <==== ATTENTION
Task: {F6BA140E-EEC0-4CAF-9FE9-9AAF99610090} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2012-08-22] (ASUSTeK Computer Inc.)
Task: {F7F80684-7545-4D41-B023-AFEF2ED37B64} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {FC52A9A5-9CF1-40B8-8B03-4FA8CF8F0E0C} - System32\Tasks\APSnotifierPP1 => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe [2015-05-10] (AnyProtect.com) <==== ATTENTION
Task: {FE61D1D8-EF6E-4A24-93E8-35BCC17B75AE} - System32\Tasks\SlimCleaner Plus (Scheduled Scan - Anwender) => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe [2015-03-26] (SlimWare Utilities, Inc.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\APSnotifierPP1.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP2.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\APSnotifierPP3.job => C:\Program Files (x86)\AnyProtectEx\AnyProtect.exe <==== ATTENTION
Task: C:\Windows\Tasks\Crossbrowse.job => C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\utility.exe <==== ATTENTION
Task: C:\Windows\Tasks\DriverUpdate Scan.job => C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
Task: C:\Windows\Tasks\DriverUpdate Startup.job => C:\Program Files (x86)\DriverUpdate\DriverUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\PAUHWOF1.job => C:\ProgramData\LolliScan\LolliScan.exe <==== ATTENTION
Task: C:\Windows\Tasks\SlimCleaner Plus (Scheduled Scan - Anwender).job => C:\Program Files\SlimCleaner Plus\SlimCleanerPlus.exe

==================== Loaded Modules (Whitelisted) ==============

2014-10-02 12:49 - 2014-10-02 13:22 - 00358968 _____ () C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Service.exe
2013-04-29 23:25 - 2013-04-29 23:25 - 00073728 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2015-05-07 01:10 - 2015-05-07 01:11 - 00221696 _____ () C:\Users\Anwender\AppData\Local\DE8134D4-1430960677-4C1F-0500-E0CB4E29E6BA\snsr1319.tmp
2015-05-10 03:18 - 2015-05-10 03:18 - 00360960 _____ () C:\Users\Anwender\AppData\Roaming\DE8134D4-1430952928-4C1F-0500-E0CB4E29E6BA\nstEFC.tmp
2015-05-09 01:37 - 2015-06-24 01:17 - 00473320 _____ () C:\Program Files (x86)\Edu App\updateEduApp.exe
2015-05-08 21:26 - 2015-06-24 01:20 - 00473320 _____ () C:\Program Files (x86)\Edu App\bin\utilEduApp.exe
2015-05-01 19:27 - 2015-05-01 19:27 - 00691200 _____ () C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancerService.exe
2014-10-02 21:57 - 2009-03-03 12:45 - 00296400 ____N () C:\Program Files (x86)\Verbindungsassistent\WTGService.exe
2015-05-10 10:19 - 2015-05-10 10:19 - 00026112 _____ () C:\Program Files (x86)\MaxComputerCleaner_v17.391\MaxComputerCleaner_Maintenance.exe
2014-10-02 12:49 - 2014-10-02 13:22 - 00510520 _____ () C:\Program Files (x86)\ALDITALKVerbindungsassistent\ALDITALKVerbindungsassistent_Launcher.exe
2015-04-07 19:32 - 2011-11-07 10:52 - 00220944 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\dbus-daemon.exe
2013-04-29 23:25 - 2013-04-29 23:25 - 00103424 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2013-06-18 15:49 - 2013-06-18 15:49 - 00016384 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2013-04-29 23:08 - 2013-04-29 23:08 - 00369152 _____ () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2015-04-07 19:32 - 2011-11-07 10:52 - 00036624 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\db_daemon.exe
2015-03-26 15:06 - 2015-03-26 15:06 - 00755992 _____ () C:\Program Files\SlimService\MyDefragDll.dll
2015-05-01 19:27 - 2015-05-01 19:27 - 00276992 _____ () C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\InternetEnhancer.exe
2015-01-08 20:12 - 2015-01-08 20:12 - 02264576 _____ () C:\Program Files\BubbleSound\BubbleSound.dll
2015-04-07 19:32 - 2011-05-06 05:03 - 00594944 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\dbus-1.dll
2015-04-07 19:32 - 2011-11-07 10:39 - 00099328 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\itapi.dll
2015-04-07 19:32 - 2011-11-07 10:38 - 00027136 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\log.dll
2015-04-07 19:32 - 2010-10-14 11:37 - 00971776 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\libxml2.dll
2015-04-07 19:32 - 2010-10-14 11:37 - 00080688 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\zlib1.dll
2015-04-07 19:32 - 2011-11-07 10:38 - 00055296 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\coder.dll
2015-04-07 19:32 - 2011-11-07 10:39 - 00043008 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\audio.dll
2015-04-07 19:32 - 2011-11-07 10:38 - 00035840 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\libConfig.dll
2015-04-07 19:32 - 2011-11-07 10:43 - 00020992 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\libctlsvr.dll
2015-05-10 22:05 - 2015-03-16 20:13 - 01070592 _____ () C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.5.2171.95\libglesv2.dll
2015-05-10 22:05 - 2015-03-16 20:13 - 00204800 _____ () C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.5.2171.95\libegl.dll
2015-05-10 22:05 - 2015-03-16 20:13 - 09002496 _____ () C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.5.2171.95\pdf.dll
2015-05-10 22:05 - 2015-03-16 20:13 - 00896512 _____ () C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\39.5.2171.95\ffmpegsumo.dll
2015-04-07 19:32 - 2007-09-09 17:07 - 00151552 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\libexpat.dll
2015-04-07 19:32 - 2011-05-06 05:02 - 00341504 _____ () C:\Program Files (x86)\congstar\Internet-Manager\Bin\sqlite3.dll
2015-07-07 14:17 - 2015-07-07 14:17 - 00011264 _____ () C:\Users\Anwender\AppData\Local\Temp\nsg1D42.tmp\System.dll
2015-07-07 14:17 - 2015-07-07 14:17 - 00117248 _____ () C:\Users\Anwender\AppData\Local\Temp\nsg1D42.tmp\IpConfig.dll
2015-05-01 19:27 - 2015-05-01 19:27 - 00011776 _____ () C:\Program Files (x86)\WajWebEnhance\WajWebEnhance Internet Enhancer\ApiHandlr.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3363051143-1332560974-1509076309-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Anwender\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Media is not connected to internet.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{FF69740A-CB64-47D8-9413-AC2A474B4BA7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{ECF1E2CB-E31D-4268-A9A2-8458E231058C}] => (Allow) C:\Users\Anwender\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{154D9022-6C05-4A15-9CCC-FD69973D3399}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{270E7687-7074-4B8E-9416-27FDFABA4478}] => (Allow) LPort=2869
FirewallRules: [{F1FF099D-7B53-48CE-941A-8CEB3E80D31D}] => (Allow) LPort=1900
FirewallRules: [{053FA0DB-7787-4A12-811C-0DD2B5B66D62}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{AF7E8419-DCCF-43DC-9446-6D465001DF57}] => (Allow) C:\Users\Anwender\AppData\Local\Chrome\Application\chrome.exe
FirewallRules: [{4E82EA0D-7BC7-4E94-BC4F-463D0D5DEBC8}] => (Allow) C:\Program Files (x86)\Crossbrowse\Crossbrowse\Application\crossbrowse.exe

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Microsoft-Teredo-Tunneling-Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (07/07/2015 01:51:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm mbam.exe, Version 1.0.2.929 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 10b0

Startzeit: 01d0b8ab37b97900

Endzeit: 0

Anwendungspfad: C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe

Berichts-ID: 7ed5faee-249e-11e5-8016-0025d3e206bb

Error: (07/07/2015 01:50:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: 3D BubbleSound.exe, Version: 1.0.0.1, Zeitstempel: 0x54b000dc
Name des fehlerhaften Moduls: SHLWAPI.dll, Version: 6.1.7601.17514, Zeitstempel: 0x4ce7b9e2
Ausnahmecode: 0xc00000fd
Fehleroffset: 0x0001763d
ID des fehlerhaften Prozesses: 0x14ac
Startzeit der fehlerhaften Anwendung: 0x3D BubbleSound.exe0
Pfad der fehlerhaften Anwendung: 3D BubbleSound.exe1
Pfad des fehlerhaften Moduls: 3D BubbleSound.exe2
Berichtskennung: 3D BubbleSound.exe3

Error: (07/07/2015 01:50:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: 3D BubbleSound.exe, Version: 1.0.0.1, Zeitstempel: 0x54b000dc
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x6564726f
ID des fehlerhaften Prozesses: 0x14ac
Startzeit der fehlerhaften Anwendung: 0x3D BubbleSound.exe0
Pfad der fehlerhaften Anwendung: 3D BubbleSound.exe1
Pfad des fehlerhaften Moduls: 3D BubbleSound.exe2
Berichtskennung: 3D BubbleSound.exe3

Error: (07/07/2015 01:49:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: 3D BubbleSound.exe, Version: 1.0.0.1, Zeitstempel: 0x54b000dc
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x6564726f
ID des fehlerhaften Prozesses: 0xf28
Startzeit der fehlerhaften Anwendung: 0x3D BubbleSound.exe0
Pfad der fehlerhaften Anwendung: 3D BubbleSound.exe1
Pfad des fehlerhaften Moduls: 3D BubbleSound.exe2
Berichtskennung: 3D BubbleSound.exe3

Error: (07/07/2015 01:49:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2015 09:03:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: 3D BubbleSound.exe, Version: 1.0.0.1, Zeitstempel: 0x54b000dc
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x6564726f
ID des fehlerhaften Prozesses: 0x1228
Startzeit der fehlerhaften Anwendung: 0x3D BubbleSound.exe0
Pfad der fehlerhaften Anwendung: 3D BubbleSound.exe1
Pfad des fehlerhaften Moduls: 3D BubbleSound.exe2
Berichtskennung: 3D BubbleSound.exe3

Error: (06/29/2015 09:01:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: 3D BubbleSound.exe, Version: 1.0.0.1, Zeitstempel: 0x54b000dc
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x6564726f
ID des fehlerhaften Prozesses: 0x144
Startzeit der fehlerhaften Anwendung: 0x3D BubbleSound.exe0
Pfad der fehlerhaften Anwendung: 3D BubbleSound.exe1
Pfad des fehlerhaften Moduls: 3D BubbleSound.exe2
Berichtskennung: 3D BubbleSound.exe3

Error: (06/29/2015 09:00:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ovniraaw.exe, Version: 1.0.0.0, Zeitstempel: 0x556e4646
Name des fehlerhaften Moduls: RPCRT4.dll, Version: 6.1.7601.18532, Zeitstempel: 0x53c3352a
Ausnahmecode: 0xc0020043
Fehleroffset: 0x0005d111
ID des fehlerhaften Prozesses: 0x660
Startzeit der fehlerhaften Anwendung: 0xovniraaw.exe0
Pfad der fehlerhaften Anwendung: ovniraaw.exe1
Pfad des fehlerhaften Moduls: ovniraaw.exe2
Berichtskennung: ovniraaw.exe3

Error: (06/29/2015 08:59:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: 3D BubbleSound.exe, Version: 1.0.0.1, Zeitstempel: 0x54b000dc
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x6564726f
ID des fehlerhaften Prozesses: 0xe44
Startzeit der fehlerhaften Anwendung: 0x3D BubbleSound.exe0
Pfad der fehlerhaften Anwendung: 3D BubbleSound.exe1
Pfad des fehlerhaften Moduls: 3D BubbleSound.exe2
Berichtskennung: 3D BubbleSound.exe3

Error: (06/29/2015 08:58:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: 3D BubbleSound.exe, Version: 1.0.0.1, Zeitstempel: 0x54b000dc
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x6564726f
ID des fehlerhaften Prozesses: 0x11c8
Startzeit der fehlerhaften Anwendung: 0x3D BubbleSound.exe0
Pfad der fehlerhaften Anwendung: 3D BubbleSound.exe1
Pfad des fehlerhaften Moduls: 3D BubbleSound.exe2
Berichtskennung: 3D BubbleSound.exe3


System errors:
=============
Error: (07/07/2015 03:09:00 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 114.3.0.0

	Aktualisierungsquelle: %NT-AUTORITÄT51

	Aktualisierungsphase: 4.8.0204.00

	Quellpfad: 4.8.0204.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\NETZWERKDIENST

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (07/07/2015 03:09:00 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.197.2651.0

	Aktualisierungsquelle: %NT-AUTORITÄT51

	Aktualisierungsphase: 4.8.0204.00

	Quellpfad: 4.8.0204.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\NETZWERKDIENST

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (07/07/2015 03:09:00 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.197.2651.0

	Aktualisierungsquelle: %NT-AUTORITÄT51

	Aktualisierungsphase: 4.8.0204.00

	Quellpfad: 4.8.0204.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\NETZWERKDIENST

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (07/07/2015 03:09:00 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.197.2651.0

	Aktualisierungsquelle: %NT-AUTORITÄT59

	Aktualisierungsphase: 4.8.0204.00

	Quellpfad: 4.8.0204.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\SYSTEM

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (07/07/2015 02:49:32 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 114.3.0.0

	Aktualisierungsquelle: %NT-AUTORITÄT51

	Aktualisierungsphase: 4.8.0204.00

	Quellpfad: 4.8.0204.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\NETZWERKDIENST

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (07/07/2015 02:49:32 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.197.2651.0

	Aktualisierungsquelle: %NT-AUTORITÄT51

	Aktualisierungsphase: 4.8.0204.00

	Quellpfad: 4.8.0204.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\NETZWERKDIENST

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (07/07/2015 02:49:32 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.197.2651.0

	Aktualisierungsquelle: %NT-AUTORITÄT51

	Aktualisierungsphase: 4.8.0204.00

	Quellpfad: 4.8.0204.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\NETZWERKDIENST

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (07/07/2015 02:49:31 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.197.2651.0

	Aktualisierungsquelle: %NT-AUTORITÄT59

	Aktualisierungsphase: 4.8.0204.00

	Quellpfad: 4.8.0204.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\SYSTEM

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (07/07/2015 02:17:44 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 114.3.0.0

	Aktualisierungsquelle: %NT-AUTORITÄT51

	Aktualisierungsphase: 4.8.0204.00

	Quellpfad: 4.8.0204.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\NETZWERKDIENST

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608

Error: (07/07/2015 02:17:44 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.

	Neue Signaturversion: 

	Vorherige Signaturversion: 1.197.2651.0

	Aktualisierungsquelle: %NT-AUTORITÄT51

	Aktualisierungsphase: 4.8.0204.00

	Quellpfad: 4.8.0204.01

	Signaturtyp: %NT-AUTORITÄT602

	Aktualisierungstyp: %NT-AUTORITÄT604

	Benutzer: NT-AUTORITÄT\NETZWERKDIENST

	Aktuelle Modulversion: %NT-AUTORITÄT605

	Vorherige Modulversion: %NT-AUTORITÄT606

	Fehlercode: %NT-AUTORITÄT607

	Fehlerbeschreibung: %NT-AUTORITÄT608


Microsoft Office:
=========================
Error: (07/07/2015 01:51:32 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: mbam.exe1.0.2.92910b001d0b8ab37b979000C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe7ed5faee-249e-11e5-8016-0025d3e206bb

Error: (07/07/2015 01:50:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 3D BubbleSound.exe1.0.0.154b000dcSHLWAPI.dll6.1.7601.175144ce7b9e2c00000fd0001763d14ac01d0b8ab023e678aC:\Program Files\BubbleSound\3D BubbleSound.exeC:\Windows\syswow64\SHLWAPI.dll627294e8-249e-11e5-8016-0025d3e206bb

Error: (07/07/2015 01:50:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 3D BubbleSound.exe1.0.0.154b000dcunknown0.0.0.000000000c00000056564726f14ac01d0b8ab023e678aC:\Program Files\BubbleSound\3D BubbleSound.exeunknown624097fc-249e-11e5-8016-0025d3e206bb

Error: (07/07/2015 01:49:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 3D BubbleSound.exe1.0.0.154b000dcunknown0.0.0.000000000c00000056564726ff2801d0b8aacd6f1b4bC:\Program Files\BubbleSound\3D BubbleSound.exeunknown355bb52c-249e-11e5-8016-0025d3e206bb

Error: (07/07/2015 01:49:14 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (06/29/2015 09:03:34 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 3D BubbleSound.exe1.0.0.154b000dcunknown0.0.0.000000000c00000056564726f122801d0b29df40b84d7C:\Program Files\BubbleSound\3D BubbleSound.exeunknown89e61146-1e91-11e5-a9d7-0025d3e206bb

Error: (06/29/2015 09:01:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 3D BubbleSound.exe1.0.0.154b000dcunknown0.0.0.000000000c00000056564726f14401d0b29dc581456cC:\Program Files\BubbleSound\3D BubbleSound.exeunknown2f75a12f-1e91-11e5-a9d7-0025d3e206bb

Error: (06/29/2015 09:00:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: ovniraaw.exe1.0.0.0556e4646RPCRT4.dll6.1.7601.1853253c3352ac00200430005d11166001d0b29cf881ba9aC:\ProgramData\Agsoxaukregaa\1.0.1.0\ovniraaw.exeC:\Windows\syswow64\RPCRT4.dll1a82556c-1e91-11e5-a9d7-0025d3e206bb

Error: (06/29/2015 08:59:44 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 3D BubbleSound.exe1.0.0.154b000dcunknown0.0.0.000000000c00000056564726fe4401d0b29d9a7659c3C:\Program Files\BubbleSound\3D BubbleSound.exeunknown00e90065-1e91-11e5-a9d7-0025d3e206bb

Error: (06/29/2015 08:58:31 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 3D BubbleSound.exe1.0.0.154b000dcunknown0.0.0.000000000c00000056564726f11c801d0b29d6e536649C:\Program Files\BubbleSound\3D BubbleSound.exeunknownd564ae86-1e90-11e5-a9d7-0025d3e206bb


CodeIntegrity Errors:
===================================
  Date: 2015-05-10 22:10:38.278
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-10 22:10:38.002
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-10 22:08:56.743
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-10 22:08:56.681
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-10 22:08:56.607
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-10 22:08:56.555
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-10 22:08:56.450
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-10 22:08:56.394
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-10 22:08:56.325
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-05-10 22:08:56.248
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files\BubbleSound\BubbleSound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Memory info =========================== 

Processor: AMD Turion(tm) II Dual-Core Mobile M500
Percentage of memory in use: 38%
Total physical RAM: 4095.12 MB
Available physical RAM: 2532.91 MB
Total Virtual: 8188.43 MB
Available Virtual: 5999.04 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.99 GB) (Free:255.29 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: CB0F1A13)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

==================== End of log ============================

 

Themen zu Windows7 unerwünschte Programme SlimCleanerPlus
administrator, adware, autorun, branding, browser, computer, defender, downloader, explorer, failed, flash player, geforce, helper, home, iexplore.exe, onedrive, registry, rundll, scan, security, services.exe, slimcleaner plus, super, svchost.exe, system, temp, teredo, vista, windows, winlogon.exe, ytdownloader


« Avast erkennt Malware Prozess:prgramme32/svchost.exe | Windows 8: Browser sehr langsam, Probleme mit dem wlan »


Ähnliche Themen: Windows7 unerwünschte Programme SlimCleanerPlus


  1. Firefox: unerwünschte Werbebanner überall,öffnet selbstständig neue Tabs z.B.zu ReimageRepair Windows7
    Plagegeister aller Art und deren Bekämpfung - 18.10.2015 (26)
  2. 9 Viren bzw. unerwünschte Programme wurden gefunden
    Log-Analyse und Auswertung - 08.09.2015 (23)
  3. Malwarebytes findet potenziell unerwünschte Programme
    Plagegeister aller Art und deren Bekämpfung - 12.08.2015 (31)
  4. Windows 7: Malware Gefunden und unerwünschte Programme
    Log-Analyse und Auswertung - 28.07.2015 (10)
  5. Ungültiges Bild beim öffnen sämtlicher Programme-Windows7
    Log-Analyse und Auswertung - 16.03.2015 (39)
  6. 11 Viren bzw. unerwünschte Programme wurden gefunden !
    Log-Analyse und Auswertung - 28.12.2014 (21)
  7. Windows7, Neuinstallation, unerwünschte Programme nicht löschbar
    Log-Analyse und Auswertung - 19.08.2014 (46)
  8. Windows 7 Pro: Unerwünschte Programme in der Taskleiste
    Log-Analyse und Auswertung - 08.08.2014 (5)
  9. unerwünschte Programme / Adware? in der Taskleiste
    Log-Analyse und Auswertung - 20.06.2014 (1)
  10. Windows7: unerwünschte Werbung; Absturz des System.
    Log-Analyse und Auswertung - 17.03.2014 (8)
  11. Windows7 64bit - Seriöse Programme laden Spam herunter?
    Log-Analyse und Auswertung - 01.11.2013 (4)
  12. Verdacht auf unerwünschte Programme
    Plagegeister aller Art und deren Bekämpfung - 14.07.2013 (53)
  13. Avira meldet 2 unerwünschte Programme
    Plagegeister aller Art und deren Bekämpfung - 06.09.2012 (3)
  14. Antivir meldet 10 Viren oder unerwünschte Programme
    Log-Analyse und Auswertung - 30.01.2012 (25)
  15. Habe Viren, unerwünschte Programme und Banner :(
    Plagegeister aller Art und deren Bekämpfung - 14.07.2011 (7)
  16. AviraAntiVirPersonal hat 7 Viren oder unerwünschte Programme gefunden
    Antiviren-, Firewall- und andere Schutzprogramme - 30.09.2010 (10)
  17. Unerwünschte Weiterleitungen, Programme nicht ausführbar etc.
    Log-Analyse und Auswertung - 20.07.2009 (1)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows7 unerwünschte Programme SlimCleanerPlus - Guten Tag Nach Start des Laptops tauchen Programme auf wie Slim Cleaner Plus und Max Computer Cleaner. Die wirken wie Schadprogramme und ich denke es gibt noch mehr was sich - Windows7 unerwünschte Programme SlimCleanerPlus...
Archiv
Du betrachtest: Windows7 unerwünschte Programme SlimCleanerPlus auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19