|
Plagegeister aller Art und deren Bekämpfung: Spammails an alle Kunden (Onlineshop)Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
16.09.2015, 11:34 | #1 |
| Spammails an alle Kunden (Onlineshop) Hallo, von unserem Mailkonto wurden anscheinend Spammails an alle unsere Kunden geschickt. Der Inhalt ist immer gleich (URL ändert sich) Code:
ATTFilter Hey friend! Check this out hxxp://lozanoim.com/minutes.php?50qd9 FRST: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015 durchgeführt von insaneware (Administrator) auf INSANEWARE-PC (16-09-2015 11:42:22) Gestartet von C:\Users\insaneware\Downloads Geladene Profile: insaneware (Verfügbare Profile: insaneware) Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: Opera) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe () C:\Windows\System32\nvwmi64.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUserAgent.exe (Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRYSVC.EXE (Dell Inc.) C:\Program Files\Dell\DW WLAN Card\BCMWLTRY.EXE (Microsoft Corporation) C:\Windows\System32\wlanext.exe (Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostControlService.exe (Broadcom Corporation) C:\Program Files\Broadcom Corporation\Broadcom USH Host Components\CV\bin\HostStorageService.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe () C:\Windows\System32\nvwmi64.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\HidMonitorSvc.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\AvrcpService.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe (BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe () C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTDevMgr.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe () C:\Program Files (x86)\Mein Büro Mobile Connector\Deltra.ERP-Guardian\ErpApiGuardian.exe (OSBASE) C:\Windows\System32\ddmgr.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe () C:\Program Files (x86)\Buhl\Mein Büro\DB-Server\bin\DelGuard.exe (Firebird Project) C:\Program Files (x86)\Buhl\Mein Büro\DB-Server\bin\delserv.exe (Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe (Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe (Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe () C:\Program Files (x86)\Generic\Network Printer Wizard\NPWService.exe () C:\Windows\SysWOW64\srvany.exe (TODO: <公司名>) C:\Windows\SysWOW64\SDIOAssist.exe (pdfforge GmbH) C:\Program Files (x86)\PDF Architect\HelperService.exe (pdfforge GmbH) C:\Program Files (x86)\PDF Architect\ConversionService.exe (Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\RtkBleServ.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Ulead Systems, Inc.) C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe (Malwarebytes Corporation) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (DisplayLink Corp.) C:\Program Files\DisplayLink Core Software\DisplayLinkUI.exe (NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Dell Inc.) C:\Program Files\Dell\DW WLAN Card\WLTRAY.EXE (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe (Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe (Microsoft Corporation) C:\Windows\System32\rundll32.exe (Intel Corporation) C:\Windows\System32\igfxsrvc.exe (Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Spotify Ltd) C:\Users\insaneware\AppData\Roaming\Spotify\SpotifyWebHelper.exe (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe () C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe () C:\Program Files (x86)\honestech\honestech TVR 2.5\scheduleTV.exe (Dropbox, Inc.) C:\Users\insaneware\AppData\Roaming\Dropbox\bin\Dropbox.exe (Logitech, Inc.) C:\Program Files\Common Files\Logishrd\KHAL3\KHALMNPR.exe (Savard Software) C:\Program Files (x86)\TurboLaunch\TurboLaunch.exe (Brother Industries, Ltd.) C:\Program Files (x86)\Brother\Brmfcmon\BrMfcMon.exe (Synology Inc.) C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\cloud-ui.exe (Pushbullet Inc) C:\Users\insaneware\AppData\Local\Pushbullet\bin\pushbullet_client.exe (Pushbullet Inc) C:\Users\insaneware\AppData\Local\Temp\pushbullet_watchdog.exe (Synology Inc.) C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\cloud-connect.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Synology Inc.) C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\cloud-daemon.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Realtek Semiconductor Corporation) C:\Program Files (x86)\Realtek\Realtek Bluetooth\BTServer.exe (Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe (Motorola Solutions, Inc.) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe () C:\Program Files (x86)\Mein Büro Mobile Connector\deltra.ERP\Deltra.Erp.Host.WinService.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpService.exe (MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe (Dell Inc.) C:\Program Files (x86)\Dell Update\DellUpTray.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (BayHubTech/O2Micro International) C:\Windows\System32\drivers\o2flash.exe (SoftThinks SAS) C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe (SoftThinks - Dell) C:\Program Files (x86)\Dell Backup and Recovery\Toaster.exe () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Microsoft Corporation) C:\Windows\splwow64.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe () C:\Program Files (x86)\dreamboxEDIT\dreamboxEDIT.exe (Microsoft Corporation) C:\Windows\System32\calc.exe (deltra Business Software GmbH & Co KG) C:\Program Files (x86)\Buhl\Mein Büro\MB.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe () C:\Program Files (x86)\ImageWriter\Win32DiskImager.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\OUTLOOK.EXE (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\EXCEL.EXE (Spencer Kimball, Peter Mattis and the GIMP Development Team) C:\Program Files\GIMP 2\bin\gimp-2.8.exe (Spencer Kimball, Peter Mattis and the GIMP Development Team) C:\Program Files\GIMP 2\lib\gimp\2.0\plug-ins\script-fu.exe (Logitech, Inc.) C:\Program Files\Logitech\SetPointP\SetPoint.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe (Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe (Opera Software) C:\Program Files (x86)\Opera\31.0.1889.174\opera.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [727896 2014-03-13] (Alps Electric Co., Ltd.) HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7202520 2013-08-20] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-07-30] (Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1321688 2013-07-30] (Realtek Semiconductor) HKLM\...\Run: [EvtMgr6] => C:\Program Files\Logitech\SetPointP\SetPoint.exe [3091224 2013-07-31] (Logitech, Inc.) HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-05-26] (Adobe Systems Incorporated) HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2728736 2014-08-04] () HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [1796056 2014-08-04] (NVIDIA Corporation) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-05-28] (Intel Corporation) HKLM\...\Run: [BtServer] => C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTServer.exe [217088 2014-06-06] (Realtek Semiconductor Corporation) HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshellex.dll",TrayApp HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Dell\DW WLAN Card\WLTRAY.exe [8918528 2015-04-22] (Dell Inc.) HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [170256 2015-08-13] (Apple Inc.) HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.) HKLM-x32\...\RunOnce: [ Malwarebytes Anti-Malware (cleanup)] => C:\ProgramData\Malwarebytes\ Malwarebytes Anti-Malware \mbamdor.exe [54072 2015-06-18] (Malwarebytes Corporation) Winlogon\Notify\igfxcui: C:\WINDOWS\SYSTEM32\igfxdev.dll (Intel Corporation) Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.) HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Run: [HitsBlender] => "C:\Program Files (x86)\HitsBlender\hitsblender.exe" -s HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Run: [Pushbullet] => C:\Program Files (x86)\Pushbullet\pushbullet.exe [64000 2014-12-21] (Pushbullet inc) HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd) HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Run: [Dropbox Update] => C:\Users\insaneware\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-16] (Dropbox, Inc.) HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8358680 2015-06-01] (Piriform Ltd) HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Run: [Spotify Web Helper] => C:\Users\insaneware\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2018360 2015-09-09] (Spotify Ltd) HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Run: [Spotify] => C:\Users\insaneware\AppData\Roaming\Spotify\Spotify.exe [7535672 2015-09-09] (Spotify Ltd) HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53725200 2015-08-07] (Skype Technologies S.A.) HKU\S-1-5-18\...\Run: [Advanced SystemCare 7] => "C:\Program Files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [166616 2014-08-04] (NVIDIA Corporation) AppInit_DLLs-x32: c:\windows\syswow64\nvinit.dll => c:\windows\syswow64\nvinit.dll [146528 2014-08-04] (NVIDIA Corporation) AppInit_DLLs-x32: , C:\Windows\SysWOW64\nvinit.dll => C:\Windows\SysWOW64\nvinit.dll [146528 2014-08-04] (NVIDIA Corporation) Lsa: [Notification Packages] scecli C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => Keine Datei ShellIconOverlayIdentifiers: [01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\iconOverlay.dll [2015-09-10] (TODO: <Company name>) ShellIconOverlayIdentifiers: [02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\iconOverlay.dll [2015-09-10] (TODO: <Company name>) ShellIconOverlayIdentifiers: [03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\iconOverlay.dll [2015-09-10] (TODO: <Company name>) ShellIconOverlayIdentifiers: [04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\iconOverlay.dll [2015-09-10] (TODO: <Company name>) ShellIconOverlayIdentifiers: [05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\iconOverlay.dll [2015-09-10] (TODO: <Company name>) ShellIconOverlayIdentifiers: [DBARFileBackuped] -> {831cebdd-6baf-4432-be76-9e0989c14aef} => C:\WINDOWS\SYSTEM32\mscoree.dll [2010-11-21] (Microsoft Corporation) ShellIconOverlayIdentifiers: [DBARFileNotBackuped] -> {275e4fd7-21ef-45cf-a836-832e5d2cc1b3} => C:\WINDOWS\SYSTEM32\mscoree.dll [2010-11-21] (Microsoft Corporation) ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2014-03-20] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Status Monitor.lnk [2015-06-12] ShortcutTarget: Status Monitor.lnk -> C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe () Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TVR Scheduler.lnk [2014-09-05] ShortcutTarget: TVR Scheduler.lnk -> C:\Program Files (x86)\honestech\honestech TVR 2.5\scheduleTV.exe () Startup: C:\Users\insaneware\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-03-31] ShortcutTarget: Dropbox.lnk -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) Startup: C:\Users\insaneware\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station.lnk [2014-11-11] ShortcutTarget: Synology Cloud Station.lnk -> C:\Program Files (x86)\Synology\CloudStation\bin\launcher.exe (Synology Inc.) Startup: C:\Users\insaneware\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TurboLaunch.lnk [2014-04-01] ShortcutTarget: TurboLaunch.lnk -> C:\Program Files (x86)\TurboLaunch\TurboLaunch.exe (Savard Software) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Winsock: Catalog5-x64 09 C:\Program Files (x86)\Generic\Network Printer Wizard\NPWprint.dll [195584 2012-03-20] (Elite Silicon Technology Inc.) Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt Tcpip\..\Interfaces\{315BEFE8-9184-428F-9A69-382A9348CEF9}: [NameServer] 192.168.1.1 Tcpip\..\Interfaces\{51270CB7-749B-4061-97F2-B8EE1D160E95}: [DhcpNameServer] 172.20.10.1 Tcpip\..\Interfaces\{9025BDAE-72AA-4C2D-9175-8C6F4744B67C}: [NameServer] 192.168.1.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {78FC1F27-F807-45BA-9855-E8A83E04B86F} URL = hxxp://www.sm.de/?q={searchTerms} SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q={searchTerms}&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q={searchTerms}&src=IE-SearchBox SearchScopes: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001 -> {78FC1F27-F807-45BA-9855-E8A83E04B86F} URL = hxxp://www.sm.de/?q={searchTerms} BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-05-21] (Microsoft Corporation) BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO) BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-10-09] (Kaspersky Lab ZAO) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_45\bin\ssv.dll [2015-06-11] (Oracle Corporation) BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO) BHO: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\SetPointSmooth.dll [2013-07-31] (Logitech, Inc.) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_45\bin\jp2ssv.dll [2015-06-11] (Oracle Corporation) BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO) BHO-x32: PDF Architect Helper -> {3A2D5EBA-F86D-4BD3-A177-019765996711} -> C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll [2013-04-08] (pdfforge GmbH) BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO) BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-10-09] (Kaspersky Lab ZAO) BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO) BHO-x32: Logitech SetPoint -> {AF949550-9094-4807-95EC-D1C317803333} -> C:\Program Files\Logitech\SetPointP\32-bit\SetPointSmooth.dll [2013-07-31] (Logitech, Inc.) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL [2014-01-22] (Microsoft Corporation) BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2014-06-10] (Microsoft Corporation) BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO) Toolbar: HKLM-x32 - PDF Architect Toolbar - {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll [2013-04-08] (pdfforge GmbH) Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2014-03-12] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\insaneware\AppData\Roaming\Mozilla\Firefox\Profiles\koi5a3w1.default FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: Bing FF Keyword.URL: hxxp://www.bing.com/search?FORM=SKY2DF&PC=SKY2&q= FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-12] () FF Plugin: @java.com/DTPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\dtplugin\npDeployJava1.dll [2015-06-11] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.45.2 -> C:\Program Files\Java\jre1.8.0_45\bin\plugin2\npjp2.dll [2015-06-11] (Oracle Corporation) FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation) FF Plugin: @videolan.org/vlc,version=2.1.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN) FF Plugin: @videolan.org/vlc,version=2.2.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-02-27] (VideoLAN) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-12] () FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-07-30] () FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-11-13] (Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-11-13] (Intel Corporation) FF Plugin-x32: @kaspersky.com/content_blocker -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2014-10-09] () FF Plugin-x32: @kaspersky.com/online_banking -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2014-10-09] () FF Plugin-x32: @kaspersky.com/virtual_keyboard -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-10-09] () FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei] FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2013-11-15] (Microsoft Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation) FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-08-04] (NVIDIA Corporation) FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-08-04] (NVIDIA Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2013-11-15] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2015-09-02] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2015-09-02] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2015-09-02] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2015-09-02] (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2015-09-02] (Apple Inc.) FF Extension: Flash Video Downloader - YouTube HD Downloader [4K] - C:\Users\insaneware\AppData\Roaming\Mozilla\Firefox\Profiles\koi5a3w1.default\Extensions\artur.dubovoy@gmail.com [2015-07-01] FF Extension: Bing Search Engine - C:\Users\insaneware\AppData\Roaming\Mozilla\Firefox\Profiles\koi5a3w1.default\Extensions\bingsearch.full@microsoft.com [2015-03-17] FF Extension: Flash and Video Download - C:\Users\insaneware\AppData\Roaming\Mozilla\Firefox\Profiles\koi5a3w1.default\Extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a} [2015-08-26] FF Extension: 1-Click YouTube Video Downloader - C:\Users\insaneware\AppData\Roaming\Mozilla\Firefox\Profiles\koi5a3w1.default\Extensions\YoutubeDownloader@PeterOlayev.com.xpi [2015-01-14] FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt FF Extension: Logitech SetPoint - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt [2014-04-01] FF HKLM-x32\...\Firefox\Extensions: [FFPDFArchitectConverter@pdfarchitect.com] - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt FF Extension: PDF Architect Converter For Firefox - C:\Program Files (x86)\PDF Architect\FFPDFArchitectExt [2014-04-13] FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2014-09-24] FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-09-24] FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com [2014-09-24] FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com [2014-09-24] FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2014-09-24] Chrome: ======= CHR DefaultSearchURL: Default -> hxxp://istart.webssearches.com/web/?type=ds&ts=1413159498&from=cvs&uid=SamsungXSSDX840XPROXSeries_S12RNEAD235274B&q={searchTerms} CHR DefaultSearchKeyword: Default -> webssearches CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\PepperFlash\pepflashplayer.dll => Keine Datei CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\44.0.2403.107\pdf.dll => Keine Datei CHR Plugin: (Microsoft Office 2013) - C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll => Keine Datei CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.22.5\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) CHR Plugin: (Intel® Identity Protection Technology) - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) CHR Plugin: (Microsoft Office 2013) - C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation) CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation) CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation) CHR Plugin: (Silverlight Plug-In) - c:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Profile: C:\Users\insaneware\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Bing) - C:\Users\insaneware\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmkckgpgekmanipelfidlhmkfcjicion [2015-03-18] CHR Extension: (Pushbullet) - C:\Users\insaneware\AppData\Local\Google\Chrome\User Data\Default\Extensions\chlffgpmiacpedhhbkiomidkjlcfhogd [2014-03-31] CHR Extension: (Logitech Smooth Scrolling) - C:\Users\insaneware\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2014-04-01] CHR Extension: (Bookmark Manager) - C:\Users\insaneware\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-04-22] CHR Extension: (Chrome Hotword Shared Module) - C:\Users\insaneware\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-03-17] CHR Extension: (Google Wallet) - C:\Users\insaneware\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-03-31] CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho CHR HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - https://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho Opera: ======= OPR Extension: (Gantt) - C:\Users\insaneware\AppData\Roaming\Opera Software\Opera Stable\Extensions\maeombkgfpjdnjkhohbjachnnmpbipol [2014-06-04] OPR Extension: (YouTube Unblocker) - C:\Users\insaneware\AppData\Roaming\Opera Software\Opera Stable\Extensions\npnkeeiehehhefofiekoflfedgehcdhl [2014-07-29] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 ApHidMonitorService; C:\Program Files\DellTPad\HidMonitorSvc.exe [87384 2014-03-27] (Alps Electric Co., Ltd.) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-05-29] (Apple Inc.) R3 AVP15.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe [233552 2014-04-20] (Kaspersky Lab ZAO) R2 AvrcpService; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\AvrcpService.exe [43224 2014-07-03] (Realtek Semiconductor Corporation) S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [405208 2014-07-03] (BlueStack Systems, Inc.) R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384728 2014-07-03] (BlueStack Systems, Inc.) R2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [773848 2014-07-03] (BlueStack Systems, Inc.) R2 BTDevManager; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe [94720 2014-04-29] () [Datei ist nicht signiert] R2 BuhlERP; C:\Program Files (x86)\Mein Büro Mobile Connector\Deltra.ERP\Deltra.Erp.Host.WinService.exe [11672 2015-07-08] () R2 BuhlERPGuardian; C:\Program Files (x86)\Mein Büro Mobile Connector\Deltra.ERP-Guardian\ErpApiGuardian.exe [17304 2015-07-20] () R2 ddmgr; C:\Windows\system32\ddmgr.exe [857248 2015-05-14] (OSBASE) R2 DellUpdate; C:\Program Files (x86)\Dell Update\DellUpService.exe [237272 2015-08-27] (Dell Inc.) R2 deltraDBGuard; C:\Program Files (x86)\Buhl\Mein Büro\DB-Server\bin\delguard.exe [1205760 2014-11-25] () [Datei ist nicht signiert] R2 deltraDBServer; C:\Program Files (x86)\Buhl\Mein Büro\DB-Server\bin\delserv.exe [3813376 2015-01-19] (Firebird Project) [Datei ist nicht signiert] R2 DisplayLinkService; C:\Program Files\DisplayLink Core Software\DisplayLinkManager.exe [9281840 2013-10-07] (DisplayLink Corp.) R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert] S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert] R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-07-16] (Foxit Software Inc.) R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-05-28] (Intel Corporation) R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [Datei ist nicht signiert] S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation) S3 InvProtectSvc; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectSvc64.exe [2947856 2013-07-30] (Invincea, Inc.) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-11-13] (Intel Corporation) R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1871160 2015-06-18] (Malwarebytes Corporation) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation) R2 NPWService; C:\Program Files (x86)\Generic\Network Printer Wizard\NPWService.exe [798720 2012-03-20] () [Datei ist nicht signiert] R2 NVWMI; C:\Windows\system32\nvwmi64.exe [2694432 2014-08-04] () R2 O2FLASH; C:\Windows\system32\DRIVERS\o2flash.exe [65536 2014-03-07] (BayHubTech/O2Micro International) R2 O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [8192 2012-03-09] () [Datei ist nicht signiert] S3 OpenVPNService; C:\Program Files\OpenVPN\bin\openvpnserv.exe [37176 2014-05-02] (The OpenVPN Project) R2 PDF Architect Helper Service; C:\Program Files (x86)\PDF Architect\HelperService.exe [1320496 2013-04-08] (pdfforge GmbH) R2 PDF Architect Service; C:\Program Files (x86)\PDF Architect\ConversionService.exe [799280 2013-04-08] (pdfforge GmbH) S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [117264 2010-06-25] (CACE Technologies, Inc.) R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [246488 2013-06-19] (Realtek Semiconductor) R2 RtkBleServ; C:\Program Files (x86)\REALTEK\Realtek Bluetooth\RtkBleServ.exe [50392 2014-07-03] (Realtek Semiconductor Corporation) S3 SboxSvc; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxSvc.exe [124616 2013-07-30] () R2 SftService; C:\Program Files (x86)\Dell Backup and Recovery\SftService.exe [1915480 2013-05-23] (SoftThinks SAS) R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280 2015-08-07] (TeamViewer GmbH) R2 UleadBurningHelper; C:\Program Files (x86)\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [49152 2006-09-28] (Ulead Systems, Inc.) [Datei ist nicht signiert] R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2014-03-20] (Microsoft Corporation) R2 wltrysvc; C:\Program Files\Dell\DW WLAN Card\bcmwltry.exe [6169600 2015-04-22] (Dell Inc.) [Datei ist nicht signiert] R2 Dell.PowerManager.Service; C:\Windows\system32\dllhost.exe /Processid:{F84376D7-BFFC-44D6-B560-4254F1C840E4} ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 bcbtums; C:\Windows\System32\drivers\bcbtums.sys [170200 2015-04-22] (Broadcom Corporation.) R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [122072 2014-07-03] (BlueStack Systems) S3 btmaudio; C:\Windows\System32\drivers\btmaud.sys [87864 2014-05-19] (Motorola Solutions, Inc.) S3 btmaux; C:\Windows\System32\DRIVERS\btmaux.sys [141624 2014-05-13] (Motorola Solutions, Inc.) S3 CH341SER_A64; C:\Windows\System32\Drivers\CH341S64.SYS [58368 2011-11-05] (www.winchiphead.com) R4 ddkmd; C:\Windows\system32\drivers\ddkmd.sys [246432 2015-05-14] (OSBASE) R0 ddkmdldr; C:\Windows\System32\drivers\ddkmdldr.sys [19616 2015-05-14] (OSBASE) S3 DisplayLinkUsbIo_x64; C:\Windows\System32\DRIVERS\DisplayLinkUsbIo_x64_7.4.48800.0.sys [44944 2014-04-04] () S3 dlusbaudio; C:\Windows\System32\DRIVERS\dlusbaudio_x64.sys [202128 2013-10-07] (DisplayLink Corp.) R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-03-31] (Disc Soft Ltd) R3 e1dexpress; C:\Windows\System32\DRIVERS\e1d62x64.sys [488216 2014-03-05] (Intel Corporation) S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [39248 2012-09-13] (Paragon Software Group) R0 iaStorF; C:\Windows\System32\drivers\iaStorF.sys [28008 2013-08-29] (Intel Corporation) R3 IntcAzAudAddService; C:\Windows\System32\drivers\RTDVHD64.sys [2261464 2013-08-27] (Realtek Semiconductor Corp.) S3 InvProtectDrv; C:\Program Files (x86)\Invincea\Enterprise\X64\InvProtectDrv64.sys [34824 2013-07-30] () R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [457824 2014-02-20] (Kaspersky Lab ZAO) R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [141320 2014-10-09] (Kaspersky Lab ZAO) R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [243808 2014-04-10] (Kaspersky Lab ZAO) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [793800 2014-10-09] (Kaspersky Lab ZAO) R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [30304 2014-02-25] (Kaspersky Lab ZAO) R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [28768 2014-03-28] (Kaspersky Lab ZAO) R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO) R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [55904 2014-03-25] (Kaspersky Lab ZAO) R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [179296 2014-03-26] (Kaspersky Lab ZAO) R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [113880 2015-09-15] (Malwarebytes Corporation) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation) R3 MEIx64; C:\Windows\System32\DRIVERS\TeeDriverx64.sys [99288 2013-11-13] (Intel Corporation) R3 MirayVirtualDisk; C:\Windows\System32\DRIVERS\mvd.sys [108624 2013-02-15] (Miray) R2 NPF; C:\Windows\System32\drivers\npf.sys [35344 2015-04-22] (CACE Technologies, Inc.) R1 nvkflt; C:\Windows\System32\DRIVERS\nvkflt.sys [299352 2014-08-04] (NVIDIA Corporation) R3 O2FJ2RDR; C:\Windows\System32\DRIVERS\O2FJ2w7x64.sys [210592 2014-05-14] (BayHubTech/O2Micro ) S3 ptun0901; C:\Windows\System32\DRIVERS\ptun0901.sys [40664 2014-03-10] (The OpenVPN Project) S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [578264 2014-08-05] (Realtek Semiconductor Corporation) S3 SboxDrv; C:\Program Files (x86)\Invincea\Enterprise\Sandbox\SboxDrv.sys [202248 2013-07-30] () S3 StkCMini; C:\Windows\System32\Drivers\StkCMini.sys [1816968 2010-04-16] (Syntek) R3 ST_Accel; C:\Windows\System32\DRIVERS\ST_Accel.sys [75976 2013-08-06] (STMicroelectronics) S3 UDST7000BDA; C:\Windows\System32\Drivers\UDST7000BDA.sys [527632 2009-06-15] (TechniSat Digital S.A.) S3 UDST7000HID; C:\Windows\System32\drivers\UDST7000HID.sys [27664 2009-06-15] (TechniSat Digital S.A.) R1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [90960 2012-09-13] (Windows (R) 2000 DDK provider) R1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [633552 2012-09-13] (Paragon) R1 Uim_VIM; C:\Windows\System32\Drivers\uim_vimx64.sys [390224 2012-09-13] (Paragon) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-09-16 11:42 - 2015-09-16 11:42 - 02191360 _____ (Farbar) C:\Users\insaneware\Downloads\FRST64.exe 2015-09-16 11:42 - 2015-09-16 11:42 - 00050586 _____ C:\Users\insaneware\Downloads\FRST.txt 2015-09-16 11:42 - 2015-09-16 11:42 - 00000000 ____D C:\FRST 2015-09-15 15:34 - 2015-09-15 15:34 - 00006570 _____ C:\Users\insaneware\AppData\Local\recently-used.xbel 2015-09-13 01:43 - 2015-09-13 01:43 - 00000000 ____D C:\Users\insaneware\Desktop\Tor Browser 2015-09-13 01:42 - 2015-09-13 01:43 - 43791480 _____ C:\Users\insaneware\Downloads\torbrowser-install-5.0.2_en-US.exe 2015-09-12 20:00 - 2015-09-12 20:00 - 01940382 _____ C:\Users\insaneware\Downloads\Fast.and.Furious.7.EXTENDED.2015.German.DTS.DL.720p.BluRay.x264-EXQUiSiTE.nzb 2015-09-11 20:51 - 2015-09-11 20:52 - 00000000 ____D C:\Users\insaneware\.weasis 2015-09-09 13:21 - 2015-09-09 13:21 - 05185992 _____ C:\Windows\system32\FNTCACHE.DAT 2015-09-09 13:21 - 2015-09-09 13:21 - 00001336 _____ C:\Windows\PFRO.log 2015-09-08 15:24 - 2015-09-08 15:24 - 00000000 ____D C:\Users\insaneware\Downloads\ambi60-2-hyperion-safe-rpi15-v03-backup 2015-09-08 12:58 - 2015-09-08 12:59 - 00000000 ____D C:\Program Files (x86)\CandiSoft_Load_0.7.5 2015-09-08 12:57 - 2015-09-08 12:58 - 17592777 _____ C:\Users\insaneware\Downloads\CandiSoft_Load_0.7.5.zip 2015-09-08 12:54 - 2015-09-08 12:54 - 00000000 ____D C:\Users\insaneware\.appwork 2015-09-07 11:23 - 2015-09-15 11:46 - 00002128 _____ C:\Windows\setupact.log 2015-09-07 11:23 - 2015-09-07 11:23 - 00151000 _____ C:\Users\insaneware\AppData\Local\GDIPFONTCACHEV1.DAT 2015-09-07 11:23 - 2015-09-07 11:23 - 00000000 _____ C:\Windows\setuperr.log 2015-09-04 15:28 - 2015-09-04 15:28 - 00549484 _____ C:\Users\insaneware\Downloads\BfRLSWuXO3Hgv6yJ5iqPneuBdLJIas.par2.nzb 2015-09-04 15:22 - 2015-09-04 15:22 - 00834712 _____ C:\Users\insaneware\Downloads\GoRdNLjqGS21QbJT8eTXEuhLBzzhX0.par2.nzb 2015-09-04 11:29 - 2015-09-04 11:29 - 00000000 ____D C:\Users\insaneware\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-09-03 17:07 - 2015-09-12 22:46 - 00005160 _____ C:\Windows\System32\Tasks\Microsoft Office 15 Sync Maintenance for insaneware-PC-insaneware insaneware-PC 2015-09-03 12:56 - 2015-09-03 12:56 - 24883254 _____ C:\img_001.bmp 2015-09-03 12:55 - 2011-11-04 12:46 - 00733184 _____ (www.rene-zeidler.de) C:\Program Files (x86)\Snipping Tool Plus.exe 2015-09-03 12:53 - 2015-09-11 13:10 - 00000000 ____D C:\Users\insaneware\AppData\Local\www.rene-zeidler.de 2015-09-03 12:53 - 2015-09-03 12:53 - 00437645 _____ C:\Users\insaneware\Downloads\SnippingToolPlusv3-4-1-0.zip 2015-09-03 12:53 - 2015-09-03 12:53 - 00000000 ____D C:\Users\insaneware\AppData\Roaming\www.rene-zeidler.de 2015-09-03 12:53 - 2015-09-03 12:53 - 00000000 ____D C:\ProgramData\www.rene-zeidler.de 2015-09-02 00:29 - 2015-09-02 00:29 - 00000000 ____D C:\Program Files (x86)\Dell Update 2015-09-02 00:23 - 2015-09-02 00:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime 2015-09-02 00:23 - 2015-09-02 00:23 - 00000000 ____D C:\Program Files (x86)\QuickTime 2015-09-02 00:22 - 2015-09-02 00:22 - 00001715 _____ C:\Users\Public\Desktop\iTunes.lnk 2015-09-02 00:22 - 2015-09-02 00:22 - 00000000 ____D C:\Program Files\iTunes 2015-09-02 00:22 - 2015-09-02 00:22 - 00000000 ____D C:\Program Files\iPod 2015-09-02 00:22 - 2015-09-02 00:22 - 00000000 ____D C:\Program Files (x86)\iTunes 2015-09-01 12:42 - 2015-09-01 12:42 - 00000244 _____ C:\Users\insaneware\Downloads\AnyDVDHD_Key_13846091.AnyDVDHD 2015-08-31 11:44 - 2015-08-31 11:44 - 34955883 _____ C:\Users\insaneware\Downloads\AmbiLED HD Installation.mp4 2015-08-27 17:52 - 2015-08-27 17:52 - 01966327 _____ C:\Users\insaneware\Downloads\Unknown.User.2015.German.AC3.Dubbed.1080p.DL.BluRay.x264-MULTiPLEX.nzb 2015-08-27 16:52 - 2015-08-27 16:52 - 02037261 _____ C:\Users\insaneware\Downloads\on3stktevxrkynqoll32ru6.par2.nzb 2015-08-27 16:45 - 2015-08-27 16:45 - 00169799 _____ C:\Users\insaneware\Downloads\Ballermann_6_German_1997_DVDRip_Xvid_INTERNAL-EmdP.nzb 2015-08-27 16:41 - 2015-08-27 16:41 - 00169630 _____ C:\Users\insaneware\Downloads\Ballermann.6.German.1997.DVDRip.Xvid.INTERNAL-EmdP.nzb 2015-08-27 14:58 - 2015-08-27 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2015-08-27 13:07 - 2015-08-27 13:07 - 03366084 _____ C:\Users\insaneware\Downloads\86mvwlnstikf31xqtgkko95.par2.nzb 2015-08-27 13:04 - 2015-08-27 13:04 - 02131276 _____ C:\Users\insaneware\Downloads\oadKyHaZKodnUVg_LPud72DvY.par2.nzb 2015-08-27 13:03 - 2015-08-27 13:03 - 02407187 _____ C:\Users\insaneware\Downloads\DR436_20150814_022.par2.nzb 2015-08-27 13:02 - 2015-08-27 13:02 - 01376345 _____ C:\Users\insaneware\Downloads\DR436_20150814_023.par2.nzb 2015-08-27 12:56 - 2015-08-27 12:56 - 01521166 _____ C:\Users\insaneware\Downloads\f4jfbpk95z13naaevy42exp.par2.nzb 2015-08-26 13:54 - 2015-08-26 14:03 - 00000000 ____D C:\Users\insaneware\Downloads\AtmoLight_Demo_All_In_One_HD 2015-08-25 19:44 - 2015-08-25 19:44 - 00061138 _____ C:\Users\insaneware\Downloads\aller.zip 2015-08-18 20:11 - 2015-08-18 20:11 - 00604910 _____ C:\Users\insaneware\Downloads\LD_stable_608_pass_thelastdrakkar.com.zip 2015-08-18 15:24 - 2015-08-18 15:24 - 00175354 _____ C:\Users\insaneware\Downloads\jantzen.tif 2015-08-18 12:41 - 2015-09-12 20:34 - 00000000 ____D C:\Users\insaneware\AppData\Roaming\Spotify 2015-08-18 12:41 - 2015-09-12 20:29 - 00000000 ____D C:\Users\insaneware\AppData\Local\Spotify 2015-08-18 12:41 - 2015-08-18 12:41 - 00146080 _____ (Spotify Ltd) C:\Users\insaneware\Downloads\SpotifySetup.exe 2015-08-18 12:41 - 2015-08-18 12:41 - 00001839 _____ C:\Users\insaneware\Desktop\Spotify.lnk 2015-08-18 12:41 - 2015-08-18 12:41 - 00001825 _____ C:\Users\insaneware\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Spotify.lnk 2015-08-18 12:41 - 2015-08-18 12:41 - 00000000 ____D C:\Users\insaneware\AppData\Local\CEF 2015-08-18 03:04 - 2015-02-24 21:26 - 00970919 _____ C:\Users\insaneware\Documents\oscam.armel 2015-08-18 01:14 - 2015-08-18 01:14 - 00000397 _____ C:\Users\insaneware\Downloads\cables (1).rar 2015-08-18 01:04 - 2015-08-18 01:04 - 00000522 _____ C:\Users\insaneware\Downloads\cables.xml.zip 2015-08-17 19:16 - 2015-08-17 19:16 - 00594032 _____ C:\Users\insaneware\Downloads\LD_beta_625_pass_thelastdrakkar.com.zip 2015-08-17 12:02 - 2015-11-25 01:49 - 00223420 _____ C:\Users\insaneware\Documents\V14-2_unique_emm.log 2015-08-17 11:57 - 2015-09-08 18:08 - 00025456 _____ C:\Users\insaneware\Documents\v14_test_unique_emm.log 2015-08-17 02:20 - 2015-08-17 02:20 - 00053819 _____ C:\Users\insaneware\Desktop\blase-emm.txt.txt 2015-08-17 00:32 - 2015-11-24 20:30 - 00287678 _____ C:\Users\insaneware\Documents\V14_unique_emm.log ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-09-16 11:42 - 2014-06-06 02:41 - 00000000 ____D C:\Users\insaneware\AppData\Roaming\NetSpeedMonitor 2015-09-16 11:30 - 2014-06-27 12:11 - 00000000 ____D C:\Users\insaneware\AppData\Roaming\Skype 2015-09-16 11:26 - 2014-03-20 19:26 - 01887176 _____ C:\Windows\WindowsUpdate.log 2015-09-16 11:15 - 2014-09-24 18:53 - 00000000 ____D C:\ProgramData\Kaspersky Lab 2015-09-16 11:08 - 2014-08-29 01:12 - 00000000 ____D C:\Users\insaneware\AppData\Local\Adobe 2015-09-16 11:07 - 2015-06-16 10:42 - 00001244 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2176630791-1936397272-1849537872-1001UA.job 2015-09-16 11:07 - 2015-04-22 16:58 - 01040054 _____ C:\Users\insaneware\AppData\Local\BTServer.log 2015-09-16 11:07 - 2014-03-31 16:55 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-09-16 11:06 - 2014-10-16 11:11 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-09-15 20:12 - 2015-02-24 13:54 - 00001081 _____ C:\Users\insaneware\Desktop\hypercon.dat 2015-09-15 20:12 - 2014-04-01 14:14 - 00000000 ____D C:\Users\insaneware\AppData\Roaming\vlc 2015-09-15 19:49 - 2014-06-28 11:46 - 00113880 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-09-15 18:10 - 2014-04-04 02:15 - 00000600 _____ C:\Users\insaneware\AppData\Local\PUTTY.RND 2015-09-15 18:09 - 2014-04-04 03:12 - 00000600 _____ C:\Users\insaneware\AppData\Roaming\winscp.rnd 2015-09-15 18:09 - 2014-03-31 22:05 - 00000000 ____D C:\Users\insaneware\AppData\Local\CrashDumps 2015-09-15 15:54 - 2014-05-08 22:22 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2015-09-15 15:49 - 2014-03-31 22:16 - 00000000 ____D C:\Users\insaneware\Documents\Outlook-Dateien 2015-09-15 15:34 - 2014-04-17 23:25 - 00000000 ____D C:\Users\insaneware\AppData\Local\gtk-2.0 2015-09-15 15:30 - 2014-04-17 23:22 - 00000000 ____D C:\Users\insaneware\.gimp-2.8 2015-09-15 14:36 - 2014-11-04 18:07 - 00000000 ____D C:\ProgramData\firebird 2015-09-15 12:32 - 2014-05-08 20:21 - 00000000 ____D C:\Users\insaneware\AppData\Roaming\TeamViewer 2015-09-15 12:05 - 2015-06-16 10:41 - 00001192 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2176630791-1936397272-1849537872-1001Core.job 2015-09-15 11:57 - 2010-11-21 08:50 - 00704186 _____ C:\Windows\system32\perfh007.dat 2015-09-15 11:57 - 2010-11-21 08:50 - 00151236 _____ C:\Windows\system32\perfc007.dat 2015-09-15 11:57 - 2009-07-14 07:13 - 01632254 _____ C:\Windows\system32\PerfStringBackup.INI 2015-09-15 11:52 - 2014-03-31 16:55 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-09-15 11:47 - 2014-03-31 16:55 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-09-15 11:47 - 2014-03-31 16:55 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-09-13 03:12 - 2015-01-15 20:28 - 00000000 ____D C:\gissmo-E2-unitymedia- IPTV 2015-09-12 20:37 - 2014-03-20 19:49 - 00000000 ____D C:\Program Files (x86)\Dell Backup and Recovery 2015-09-12 20:37 - 2009-07-14 06:45 - 00031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-09-12 20:37 - 2009-07-14 06:45 - 00031312 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-09-12 20:30 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\Registration 2015-09-12 20:29 - 2015-01-05 12:05 - 00000000 ____D C:\Users\insaneware\AppData\Local\Pushbullet 2015-09-12 20:29 - 2014-03-31 21:54 - 00000000 ____D C:\Program Files\Microsoft Silverlight 2015-09-12 20:29 - 2014-03-31 21:54 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight 2015-09-12 20:29 - 2014-03-31 17:02 - 00000000 ____D C:\Users\insaneware\AppData\Roaming\Dropbox 2015-09-12 20:29 - 2014-03-20 19:30 - 00000000 ____D C:\ProgramData\NVIDIA 2015-09-12 20:29 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-09-12 20:28 - 2014-04-01 00:26 - 00202602 ____H C:\Users\insaneware\AppData\Roaming\TurboLaunch_IconCache.dat 2015-09-11 20:51 - 2014-03-31 16:00 - 00000000 ____D C:\Users\insaneware 2015-09-11 19:18 - 2014-12-04 20:39 - 01332736 ___SH C:\Users\insaneware\Documents\Thumbs.db 2015-09-11 13:40 - 2014-04-01 01:14 - 00000432 _____ C:\Windows\BRWMARK.INI 2015-09-10 21:59 - 2014-03-31 21:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight 2015-09-10 13:23 - 2014-05-05 22:16 - 00000000 ____D C:\Users\insaneware\AppData\Local\CloudStation 2015-09-09 13:23 - 2014-04-01 00:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logitech 2015-09-08 20:48 - 2015-03-02 15:54 - 00000000 ____D C:\Program Files (x86)\svnet 2015-09-08 12:54 - 2015-01-20 16:03 - 00000000 ____D C:\Users\insaneware\AppData\Local\JDownloader 2.0 2015-09-04 14:21 - 2015-07-07 13:45 - 00033676 _____ C:\Users\insaneware\Documents\hyperion.config.json 2015-09-04 11:29 - 2014-10-23 12:43 - 00000000 ____D C:\Users\insaneware\Desktop\2 2015-09-02 12:58 - 2015-01-09 17:14 - 00000973 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk 2015-09-02 00:29 - 2014-03-20 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dell 2015-09-02 00:22 - 2014-10-26 15:49 - 00000000 ____D C:\ProgramData\E1864A66-75E3-486a-BD95-D1B7D99A84A7 2015-09-02 00:22 - 2014-04-04 00:10 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes 2015-09-02 00:22 - 2014-04-04 00:09 - 00000000 ____D C:\Program Files\Common Files\Apple 2015-09-02 00:21 - 2014-04-22 11:19 - 00000000 ____D C:\Windows\Minidump 2015-08-27 16:48 - 2014-04-07 14:25 - 00000000 ____D C:\Users\insaneware\AppData\Local\QuickPar 2015-08-27 14:59 - 2014-06-27 12:11 - 00000000 ____D C:\ProgramData\Skype 2015-08-27 14:58 - 2014-09-29 10:46 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-08-27 14:25 - 2009-07-14 06:45 - 00000000 ____D C:\Windows\Setup 2015-08-27 14:15 - 2014-03-20 19:26 - 00000000 ____D C:\Windows\SoftwareDistribution_alt 2015-08-27 12:44 - 2014-10-16 11:11 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-08-27 12:44 - 2014-03-20 19:25 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-08-27 12:44 - 2014-03-20 19:25 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-08-19 11:59 - 2014-06-03 10:21 - 00003862 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1396479762 2015-08-19 11:59 - 2014-04-03 01:02 - 00000000 ____D C:\Program Files (x86)\Opera 2015-08-18 01:05 - 2014-04-01 13:39 - 00000000 ____D C:\Program Files\Flashfxp 2015-08-17 00:07 - 2014-04-14 16:50 - 00000000 __SHD C:\Users\insaneware\AppData\Local\EmieUserList 2015-08-17 00:07 - 2014-04-14 16:50 - 00000000 __SHD C:\Users\insaneware\AppData\Local\EmieSiteList ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2014-10-02 15:11 - 2014-10-02 15:11 - 8057403 _____ () C:\Program Files\hyperion.rar 2015-09-03 12:55 - 2011-11-04 12:46 - 0733184 _____ (www.rene-zeidler.de) C:\Program Files (x86)\Snipping Tool Plus.exe 2015-06-11 15:17 - 2015-06-12 17:39 - 0000442 _____ () C:\Users\insaneware\AppData\Roaming\CSharpAnalytics-MeasurementSession 2014-04-04 03:12 - 2015-09-15 18:09 - 0000600 _____ () C:\Users\insaneware\AppData\Roaming\winscp.rnd 2015-04-22 16:58 - 2015-09-16 11:07 - 1040054 _____ () C:\Users\insaneware\AppData\Local\BTServer.log 2014-04-04 02:15 - 2015-09-15 18:10 - 0000600 _____ () C:\Users\insaneware\AppData\Local\PUTTY.RND 2015-09-15 15:34 - 2015-09-15 15:34 - 0006570 _____ () C:\Users\insaneware\AppData\Local\recently-used.xbel 2015-07-30 22:39 - 2015-07-31 11:43 - 0000438 _____ () C:\Users\insaneware\AppData\Local\ReclaiMe.config 2015-07-30 22:39 - 2015-07-31 11:43 - 0000515 _____ () C:\ProgramData\ReclaiMe.config Einige Dateien in TEMP: ==================== C:\Users\insaneware\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprlogdt.dll C:\Users\insaneware\AppData\Local\Temp\proxy_vole2313665269802932938.dll C:\Users\insaneware\AppData\Local\Temp\pushbullet_watchdog.exe C:\Users\insaneware\AppData\Local\Temp\Synology-Cloud-Station-Upgrader.exe ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-09-11 00:30 ==================== Ende von FRST.txt ============================ |
16.09.2015, 11:35 | #2 |
| Spammails an alle Kunden (Onlineshop) Addition
__________________Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:15-09-2015 durchgeführt von insaneware (2015-09-16 11:43:11) Gestartet von C:\Users\insaneware\Downloads Windows 7 Professional Service Pack 1 (X64) (2014-03-31 14:00:53) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-2176630791-1936397272-1849537872-500 - Administrator - Disabled) Gast (S-1-5-21-2176630791-1936397272-1849537872-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-2176630791-1936397272-1849537872-1005 - Limited - Enabled) insaneware (S-1-5-21-2176630791-1936397272-1849537872-1001 - Administrator - Enabled) => C:\Users\insaneware ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Kaspersky Internet Security (Enabled - Up to date) {179979E8-273D-D14E-0543-2861940E4886} AS: Kaspersky Internet Security (Enabled - Up to date) {ACF8980C-0107-DEC0-3FF3-1313EF89023B} AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Disabled) {2FA2F8CD-6D52-D016-2E1C-81546ADD0FFD} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.0.2 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 16.0.0.273 - Adobe Systems Incorporated) Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated) Adobe Flash Player 19 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 19.0.0.162 - Adobe Systems Incorporated) Adobe Photoshop CC 2015 (HKLM-x32\...\{793C2BF7-A4FE-4608-91C9-9282C5801C21}) (Version: 16.0 - Adobe Systems Incorporated) Adobe Photoshop Lightroom 5.4 64-bit (HKLM\...\{558B5965-CC1B-4AF1-BA07-5D6832404050}) (Version: 5.4.0 - Adobe Systems Incorporated) Akamai NetSession Interface (HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Akamai) (Version: - Akamai Technologies, Inc) Alt.Binz 0.39.4 (HKLM-x32\...\Alt.Binz) (Version: 0.39.4 - Rdl) AMD Catalyst Install Manager (HKLM\...\{5AD3AAEE-2538-075B-3765-4FB213D4D57A}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Ant Renamer (HKLM-x32\...\Ant Renamer 2_is1) (Version: 2.10.0 - Ant Software) Any Video Converter 5.7.3 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com) Apple Application Support (32-Bit) (HKLM-x32\...\{7FE25256-B7C1-480D-B736-10A67A833AEA}) (Version: 3.2 - Apple Inc.) Apple Application Support (64-Bit) (HKLM\...\{B255D495-4734-4E9B-B4F5-96702FD4A7B9}) (Version: 3.2 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{5D61F006-168C-4B8B-B7FD-F113C10AE0E4}) (Version: 8.2.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) Avidemux 2.6 (32-bit) (HKLM-x32\...\Avidemux 2.6) (Version: 2.6.8.9046 - ) Benbox 2.0.x (HKLM-x32\...\Benbox_is1) (Version: - ) BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.8.12.3119 - BlueStack Systems, Inc.) BlueStacks Notification Center (HKLM-x32\...\{1AFACC2A-9A60-43EF-ABDB-2CEECA5EA77F}) (Version: 0.8.12.3119 - BlueStack Systems, Inc.) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Brother MFL-Pro Suite MFC-9120CN (HKLM-x32\...\{A1BBEE16-49B1-42F2-95B8-54C8C6A1C0C3}) (Version: 2.0.1.0 - Brother Industries, Ltd.) CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform) Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden CopyTrans Control Center deinstallieren (HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\CopyTrans Suite) (Version: 3.003 - WindSolutions) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd) DELISprint (HKLM-x32\...\{9480CCD5-BB18-4DF3-AB18-04198B30DD62}) (Version: 5.6.6.0 - DPD) Dell Backup and Recovery - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: 1.5.0.0 - Dell Inc.) Dell Backup and Recovery (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 1.5.0.0 - Dell Inc.) Dell Client System Update (HKLM-x32\...\{04566294-A6B6-4462-9721-031073EB3694}) (Version: 1.3.0 - Dell Inc.) Dell ControlVault Host Components Installer 64 bit (HKLM\...\{00E61C2A-E507-4662-8534-A0FA48F415AE}) (Version: 2.3.415.120 - Broadcom Corporation) Dell Digital Delivery (HKLM-x32\...\{03A9F528-A754-460F-B2C1-AC125A147114}) (Version: 2.8.5000.0 - Dell Products, LP) Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc) Dell Power Manager (HKLM\...\{E45D7941-F3F0-4E8E-AD55-DCE2FE0AE6D8}) (Version: 1.1.0 - Dell Inc.) Dell Protected Workspace (HKLM-x32\...\{E2CAA395-66B3-4772-85E3-6134DBAB244E}) (Version: 2.3.15835 - Invincea, Inc.) Dell System Detect - 1 (HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\73f463568823ebbe) (Version: 5.14.0.9 - Dell) Dell System Detect (HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\9204f5692a8faf3b) (Version: 5.8.1.1 - Dell) Dell Touchpad (HKLM\...\{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}) (Version: 8.1206.101.110 - ALPS ELECTRIC CO., LTD.) Dell Update (HKLM-x32\...\{DB82968B-57A4-4397-81A5-ECAB21B5DFCD}) (Version: 1.7.1015.0 - Dell Inc.) Dell Webcam Central (HKLM-x32\...\Dell Webcam Central) (Version: 1.40.54 - Creative Technology Ltd) DisplayLink Core Software (HKLM\...\{404BDC67-C588-42E1-824A-2838571AEE6F}) (Version: 7.4.51572.0 - DisplayLink Corp.) DisplayLink Graphics (HKLM\...\{F8D0059A-CC6D-414F-A36F-FEDAE2588000}) (Version: 7.4.51587.0 - DisplayLink Corp.) dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM-x32\...\dreamboxEDIT) (Version: - ) Dropbox (HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.) DVBViewer Pro (HKLM-x32\...\DVBViewer Pro_is1) (Version: 5.2.9 - CM&V) DW WLAN Card Utility (HKLM\...\DW WLAN Card Utility) (Version: 6.30.223.75 - Dell Inc.) EAGLE 7.2.0 (HKLM-x32\...\EAGLE 7.2.0) (Version: 7.2.0 - CadSoft Computer GmbH) eEnjoy VIDEO DVR (HKLM-x32\...\{B6BF84B7-7CAF-4B3A-A46C-CF2E4BEF809D}) (Version: 2014.03.12 - eEnjoy) ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 15.3.20141106 - Landesfinanzdirektion Thüringen) EPS Viewer (HKLM-x32\...\{32E05824-A0AC-4DFE-B965-5F52C28FBE9F}_is1) (Version: - IdeaMK) eReg (x32 Version: 1.20.138.34 - Logitech, Inc.) Hidden Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG) Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.6.124.715 - Foxit Software Inc.) Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.1.5.425 - Foxit Software Inc.) Free Screen To Video V 2.0 (HKLM-x32\...\Free Screen To Video_is1) (Version: 2.0.0.0 - Koyote Soft) Free Video Flip and Rotate version 2.1.9.822 (HKLM-x32\...\Free Video Flip and Rotate_is1) (Version: 2.1.9.822 - DVDVideoSoft Ltd.) Free YouTube Download version 3.2.48.1015 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.48.1015 - DVDVideoSoft Ltd.) FrontDesigner 3.0 (HKLM-x32\...\FrontDesigner_30_is1) (Version: - ) Frontplatten Designer (HKLM-x32\...\Frontplatten Designer) (Version: 4.4.0 - Schaeffer AG) Game Collector (HKLM-x32\...\{9E6E8929-ECC5-4941-9898-C7C66ACE49F1}_is1) (Version: - Collectorz.com) GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team) Glary Undelete 5.0.1.19 (HKLM-x32\...\Glary Undelete) (Version: 5.0.1.19 - Glarysoft Ltd) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden HDClone 5.0.3 Free Edition (HKLM\...\Miray.HDClone.Free.5.0.3.1031-{DA9397A4-C7B0-48B6-98B9-AEA53484287A}) (Version: 5.0 - Miray Software AG) honestechTVR2.5 (HKLM-x32\...\{ABADD11D-1B48-4F23-BEBA-6B22CE8F5E58}) (Version: 2.5 - honestech) honestechTVR2.5 (x32 Version: 2.5 - honestech) Hidden HydraVision (x32 Version: 4.2.252.0 - Advanced Micro Devices, Inc.) Hidden Image Resizer for Windows (64 bit) (Version: 3.0.4802.35565 - Brice Lambson) Hidden Image Resizer for Windows (HKLM-x32\...\{69d72156-6582-4556-8637-06f40aa7f85b}) (Version: 3.0.4802.35565 - Brice Lambson) ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation) Intel(R) Network Connections 18.5.52.1 (HKLM\...\PROSetDX) (Version: 18.5.52.1 - Intel) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3412 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.1.0.1058 - Intel Corporation) Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 2.5.1.28 - Intel Corporation) Intel(R) Wireless Bluetooth(R)(patch version 17.0.1428.1) (HKLM\...\{302600C1-6BDF-4FD1-1406-148929CC1385}) (Version: 17.1.1406.0472 - Intel Corporation) iTunes (HKLM\...\{BFEAB774-C7DC-4032-B05A-DA5F7CB7B365}) (Version: 12.2.2.25 - Apple Inc.) Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation) Kairos Display (HKLM\...\{26FF0635-2319-4DA6-8B7D-D35E9CD40E85}) (Version: 1.00.2032 - Kairos) Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{653C1B5A-3287-47B1-8613-0745D4E771C4}) (Version: 15.0.0.463 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 15.0.0.463 - Kaspersky Lab) Hidden K-Lite Mega Codec Pack 10.7.1 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.7.1 - ) Logitech Harmony Remote Software 7 (HKLM-x32\...\{5C6F884D-680C-448B-B4C9-22296EE1B206}) (Version: 7.7.0.0 - Logitech) Logitech SetPoint 6.61 (HKLM\...\sp6) (Version: 6.61.15 - Logitech) Logitech Unifying-Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech) MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{F6E484FB-BC48-4A63-8186-E25DF4607B3B}) (Version: 7.0.2.6 - MAGIX AG) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden MAGIX Video deluxe 2014 Premium (HKLM-x32\...\MX.{FBCA50BE-C022-45DA-9261-10230EC1012E}) (Version: 13.0.2.8 - MAGIX AG) MAGIX Video deluxe 2014 Premium (Version: 13.0.2.8 - MAGIX AG) Hidden MainConcept DTV Decoder Pro (HKLM-x32\...\{793FCE60-DE5E-4977-A942-A7B69A45B17D}) (Version: 1.5.0.2 - MainConcept GmbH) Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation) ManiaPlanet (HKLM-x32\...\ManiaPlanet_is1) (Version: - Nadeo) Mein Büro (HKLM-x32\...\{11CF3ABC-DFB0-47DE-B31F-71CB995A12D7}_is1) (Version: 15.0 - Buhl Data Service GmbH) Mein Büro Mobile Connector (HKLM-x32\...\Mein Büro Mobile Connector_is1) (Version: 15.0 - Buhl Data Service GmbH) Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Miranda IM (HKLM-x32\...\Miranda IM) (Version: 0.10.27 - Miranda IM Project) MOBackup - Datensicherung für Outlook (Vollversion) (HKLM-x32\...\MOBackup-DatensicherungfürOutlook) (Version: 7.0 - Heiko Schröder) Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 30.0 - Mozilla) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MyHarmony (HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\036a0e4fc6a247ec) (Version: 1.0.1.257 - Logitech) NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles) Network Printer Wizard (HKLM-x32\...\InstallShield_{F2DF59A0-5C1F-4454-9B67-538F43E2D335}) (Version: 2.0.1.7 - Generic) Network Printer Wizard (Version: 2.0.1.7 - Generic) Hidden Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.8 - Notepad++ Team) NVIDIA 3D Vision Treiber 340.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 340.66 - NVIDIA Corporation) NVIDIA Grafiktreiber 340.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 340.66 - NVIDIA Corporation) NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation) NVIDIA nView 141.24 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.24 - NVIDIA Corporation) NVIDIA PhysX-Systemsoftware 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation) NVIDIA WMI 2.18.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.18.0 - NVIDIA Corporation) O2Micro Flash Memory Card Windows Driver (HKLM-x32\...\InstallShield_{C834E5DF-AB21-4142-8234-0C4FA77F3A04}) (Version: 3.0.08.38 - O2Micro International LTD.) O2Micro Flash Memory Card Windows Driver (x32 Version: 3.0.08.38 - O2Micro International LTD.) Hidden OpenVPN 2.3.4-I001 (HKLM\...\OpenVPN) (Version: 2.3.4-I001 - ) Opera Stable 31.0.1889.174 (HKLM-x32\...\Opera 31.0.1889.174) (Version: 31.0.1889.174 - Opera Software) Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden Paragon Backup and Recovery™ 2013 Plus Edition (HKLM-x32\...\{485DF5E7-8379-4BFA-BAE1-9B8DBFE0D6B4}) (Version: 90.00.0003 - Paragon Software) Paragon Partition Manager™ 12 Professional (HKLM-x32\...\{A35001F0-F1E4-11DD-A38B-005056C00008}) (Version: 90.00.0003 - Paragon Software) PC-Gentec-EO - V1.00.02 (HKLM-x32\...\{1EEA83A5-D0F4-4FDA-99BF-10521C7F63E7}) (Version: 1.00.02 - Gentec-EO) PDF Architect (HKLM-x32\...\{064A929A-4DE8-40CF-A901-BD40C14E4D25}) (Version: 1.1.83.9982 - pdfforge GmbH) PDFCreator (HKLM-x32\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.7.2 - pdfforge) PL-2303 USB-to-Serial (HKLM-x32\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.2.10 - Prolific Technology INC) Prish Image Resizer (HKLM\...\{7FEFAD2B-CD9B-478F-8AD4-4A9B54FB786D}) (Version: 1.0.2513 - Prish.com) ProSafe Plus Utility (HKLM-x32\...\InstallShield_{AA42EDB4-A4F2-4386-A0BD-3CF8C3B71BF2}) (Version: 2.2.26 - Ihr Firmenname) ProSafe Plus Utility (x32 Version: 2.2.26 - Ihr Firmenname) Hidden PSD Viewer (HKLM-x32\...\{D8EEDC94-EE82-46A0-A7DB-812E3C6A0A6E}_is1) (Version: - IdeaMK) Pushbullet version 312 (HKLM-x32\...\{7578F204-49E7-4830-B051-14C23F408BFE}_is1) (Version: 312 - Pushbullet Inc) QuickPar 0.9 (HKLM-x32\...\QuickPar) (Version: 0.9 - Peter B. Clements) QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.) Realtek Audio COM Components (HKLM-x32\...\{2355B503-9B11-4449-861D-1C1748B26320}) (Version: 1.0.2 - Realtek Semiconductor Corp.) REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.826.826.080614 - REALTEK Semiconductor Corp.) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.5988 - Realtek Semiconductor Corp.) ReclaiMe File Recovery (HKLM\...\{D4F0B500-A8F8-4D00-BC68-7B03D2C0E019}_is1) (Version: - www.reclaime.com) Remote Control USB Driver (HKLM-x32\...\{8471021C-F529-43DE-84DF-3612E10F58C4}) (Version: 2.3.2.317 - ) RocketTab (HKLM-x32\...\RocketTab) (Version: - RocketTab) <==== ACHTUNG Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{91150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUSR_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version: - Microsoft) Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (Version: - Microsoft) Hidden Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.) Spotify (HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Spotify) (Version: 1.0.13.108.gcd94e7db - Spotify AB) Sprint-Layout 6.0 (Demo) (HKLM-x32\...\Sprint-Layout_60_Demo_is1) (Version: - ) ST Microelectronics 3 Axis Digital Accelerometer Solution (HKLM-x32\...\{9C24F411-9CA7-4A8A-91F3-F08A4A38EB31}) (Version: 4.10.0051 - ST Microelectronics) STMicroelectronics DfuSe v3.0.0 (HKLM-x32\...\InstallShield_{7D99CBC9-46E9-4070-BF20-25136AE7052E}) (Version: 3.0.0 - STMicroelectronics) STMicroelectronics DfuSe v3.0.0 (x32 Version: 3.0.0 - STMicroelectronics) Hidden StreamMeNG HDx64 Web Installer 2.3.0 (HKLM\...\{3919E062-43CD-4071-B045-3BAFE14A4D89}) (Version: 2.3.000.0 - hxxp://www.opena.tv/) StreamMeNG HDx86 2.3.2 BetaI (HKLM-x32\...\{1E88F457-A63F-42CA-B21A-9B629BE8FB46}) (Version: 2.3.130.0 - hxxp://www.opena.tv/forum/) sv.net (HKLM-x32\...\sv.net) (Version: 15.0 - ITSG GmbH) Synology Cloud Station (remove only) (HKLM\...\Synology Cloud Station) (Version: 3.2.3475 - Synology, Inc.) Synology Cloud Station (remove only) (HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\Synology CloudStation) (Version: - ) TAP-Windows 9.9.2 (HKLM\...\TAP-Windows) (Version: 9.9.2 - ) TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45862 - TeamViewer) TechniSat DVB-PC TV Star (HKLM-x32\...\{CE9F9FBC-5253-46D2-9883-09E55003D794}) (Version: 1.0.0 - TechniSat) Thermograph V2.8 (HKLM-x32\...\{953EFCF2-B6E0-46CB-BD63-A73F14F5F361}) (Version: 1.0.0 - PCsensor) TurboLaunch 5.1.4 (HKLM-x32\...\TurboLaunch_is1) (Version: 5.1.4.5 - Savard Software) Ubiquiti UniFi (remove only) (HKLM-x32\...\Ubiquiti UniFi) (Version: - ) Ulead VideoStudio SE DVD (HKLM-x32\...\{8F8D9297-FDD2-405A-97E7-E52C7B2F97B3}) (Version: 10.0 - Ulead Systems) UltraStar Deluxe (HKLM-x32\...\UltraStar Deluxe) (Version: 1.1 - USDX Team) UNFORMAT 4 (HKLM\...\{2645E0BE-C5C5-4A0B-B308-D4FABDBFACE7}_is1) (Version: 4 - LSoft Technologies Inc) USB2.0 Grabber (HKLM-x32\...\{45518B6D-9DDF-4144-83E4-A56762524F35}) (Version: 7.12.000.002 - Youyan) USB2.0 Grabber (HKLM-x32\...\USB2.0 Grabber) (Version: - ) VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden VLC media player (HKLM\...\VLC media player) (Version: 2.2.0 - VideoLAN) vLite (HKLM-x32\...\vLite_is1) (Version: 1.2 - Dino Nuhagic (nuhi)) WIDCOMM Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.4600 - Broadcom Corporation) Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers) Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc) Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation) Windroy version 0.5.5 (HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\{7E07052F-A4CE-4932-B066-B9203888439F}_is1) (Version: 0.5.5 - Windroy, Inc.) WinMerge 2.14.0 (HKLM-x32\...\WinMerge_is1) (Version: 2.14.0 - Thingamahoochie Software) WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies) WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH) WinSCP 5.5.2 (HKLM-x32\...\winscp3_is1) (Version: 5.5.2 - Martin Prikryl) Wisdom-soft AutoScreenRecorder 3.1 Free (HKLM-x32\...\Wisdom-soft AutoScreenRecorder 3.1 Free) (Version: - Wisdom Software Inc.) ZD Soft Screen Recorder (HKLM-x32\...\{7E7E19A6-7AF5-4515-B77E-FD6B403F0483}) (Version: 7.0.0 - ZD Soft) Zebra Setup Utilities (HKLM-x32\...\Zebra Setup Utilities) (Version: 1.1.9.1137 - Zebra Technologies) Zebra Setup Utilities (x32 Version: 1.1.9.1137 - Zebra Technologies) Hidden ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\ContextMenu.dll () CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\iconOverlay.dll (TODO: <Company name>) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\iconOverlay.dll (TODO: <Company name>) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\iconOverlay.dll (TODO: <Company name>) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\iconOverlay.dll (TODO: <Company name>) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\iconOverlay.dll (TODO: <Company name>) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.) CustomCLSID: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\insaneware\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.) ==================== Wiederherstellungspunkte ========================= 02-09-2015 13:30:01 Geplanter Prüfpunkt 10-09-2015 20:42:59 Geplanter Prüfpunkt 10-09-2015 21:58:18 Windows Update ==================== Hosts Inhalt: ========================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 04:34 - 2015-08-12 20:25 - 00001024 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {156D388C-2313-46FA-A282-4525D724802E} - System32\Tasks\Opera scheduled Autoupdate 1396479762 => C:\Program Files (x86)\Opera\launcher.exe [2015-08-17] (Opera Software) Task: {15EA5DE7-E2BD-4E7E-9B59-73BE8495BF5E} - \Price-Horse Updater -> Keine Datei <==== ACHTUNG Task: {1FB59219-1A4A-47D4-A219-59063F2F0B8B} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2176630791-1936397272-1849537872-1001UA => C:\Users\insaneware\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.) Task: {22FF57C8-A433-4654-8C13-6BA0EA312E9A} - System32\Tasks\{30CF3D82-89F1-4B47-AF97-88F6E486C305} => pcalua.exe -a "D:\dell treiber\win64_153614.exe" -d "D:\dell treiber" Task: {2ABE5FA3-2E5F-44D0-BCB3-BBCF896860D2} - \Update Service YourFileDownloader -> Keine Datei <==== ACHTUNG Task: {33630DAE-8D93-461E-97CF-EBBD8B16CEEC} - \Price-Horse -> Keine Datei <==== ACHTUNG Task: {5498E070-8C68-42E4-B40F-2199EFAAF0E3} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2176630791-1936397272-1849537872-1001Core => C:\Users\insaneware\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-16] (Dropbox, Inc.) Task: {70C96DC5-1071-438E-9EB0-848EB6665459} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {76B6B5B7-6B2A-417D-ACFE-CFC0A095EE4F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation) Task: {7C5E0318-B6FF-4903-AB96-45920C1F84A3} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation) Task: {8B9B3CC0-2539-45EA-AFC1-44D5848C2C3A} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2014-09-04] () Task: {9AFCB65C-E2CE-4A5F-93CC-C1198F0E3C72} - \RocketTab -> Keine Datei <==== ACHTUNG Task: {ACB7B741-B34C-4FED-AF77-15ECDDFD9350} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) Task: {B567D7B6-2029-4472-B3C7-F99A65AE66F5} - System32\Tasks\Driver Booster SkipUAC (SYSTEM) => C:\Program Files (x86)\IObit\Driver Booster\DriverBooster.exe Task: {DE4981F3-412E-4E4A-8F12-088ADADAF204} - System32\Tasks\AdobeAAMUpdater-1.0-insaneware-PC-insaneware => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-05-26] (Adobe Systems Incorporated) Task: {E2A7DBE0-4077-4296-B34B-037A0DB8ACB9} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-27] (Adobe Systems Incorporated) Task: {F0392388-B742-4B8B-A092-D5E576A3234B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-01] (Piriform Ltd) Task: {F0BD2C6D-4512-4F9B-9419-AC6FA2635296} - System32\Tasks\Microsoft Office 15 Sync Maintenance for insaneware-PC-insaneware insaneware-PC => C:\Program Files\Microsoft Office\Office15\MsoSync.exe [2014-04-08] (Microsoft Corporation) Task: {F8404900-22DA-4AA2-89FA-A85FD8769891} - \RocketTab Update Task -> Keine Datei <==== ACHTUNG Task: {FE150232-D59E-43E6-BD32-81FD42C11D27} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2176630791-1936397272-1849537872-1001Core.job => C:\Users\insaneware\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2176630791-1936397272-1849537872-1001UA.job => C:\Users\insaneware\AppData\Local\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2014-03-20 19:31 - 2014-08-04 21:17 - 02694432 _____ () C:\Windows\system32\nvwmi64.exe 2015-02-09 20:13 - 2014-08-04 21:17 - 00012120 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll 2014-03-20 19:30 - 2014-08-04 19:57 - 00118728 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll 2015-01-20 22:35 - 2015-01-20 22:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-05-15 16:26 - 2015-05-15 16:26 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2015-04-22 16:57 - 2014-04-29 15:03 - 00094720 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe 2015-07-31 13:56 - 2015-07-20 15:19 - 00017304 _____ () C:\Program Files (x86)\Mein Büro Mobile Connector\Deltra.ERP-Guardian\ErpApiGuardian.exe 2015-03-11 02:18 - 2014-11-25 15:40 - 01205760 _____ () C:\Program Files (x86)\Buhl\Mein Büro\DB-Server\bin\delguard.exe 2012-03-20 15:02 - 2012-03-20 15:02 - 00798720 _____ () C:\Program Files (x86)\Generic\Network Printer Wizard\NPWService.exe 2012-03-20 15:02 - 2012-03-20 15:02 - 00267776 _____ () C:\Program Files (x86)\Generic\Network Printer Wizard\NPWpsm.dll 2012-03-20 15:01 - 2012-03-20 15:01 - 00096768 _____ () C:\Program Files (x86)\Generic\Network Printer Wizard\NPWlog.dll 2012-03-20 15:01 - 2012-03-20 15:01 - 00306688 _____ () C:\Program Files (x86)\Generic\Network Printer Wizard\NPWdcp.dll 2012-03-20 15:01 - 2012-03-20 15:01 - 00104448 _____ () C:\Program Files (x86)\Generic\Network Printer Wizard\NPWuntp.dll 2015-02-09 20:15 - 2012-03-09 18:27 - 00008192 _____ () C:\Windows\SysWOW64\srvany.exe 2014-03-20 19:30 - 2014-08-04 21:17 - 02602272 _____ () C:\Program Files\NVIDIA Corporation\nview\nview64.dll 2014-03-20 19:49 - 2013-04-19 22:51 - 00034080 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRShellExtension.dll 2014-03-20 19:49 - 2013-04-19 22:52 - 00049440 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\STCommonShellIntegration.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 01047552 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\icon-overlay\13\x64\ContextMenu.dll 2014-05-12 11:49 - 2014-05-12 11:49 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_06.dll 2014-03-20 19:30 - 2014-08-04 21:17 - 01684768 _____ () C:\Program Files\NVIDIA Corporation\nview\nvwimg64.dll 2014-03-20 19:30 - 2014-08-04 21:17 - 00711456 _____ () C:\Program Files\NVIDIA Corporation\nview\nvshell.dll 2015-06-01 19:28 - 2015-06-01 19:28 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll 2014-04-01 01:13 - 2011-04-01 11:26 - 01163264 ____R () C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe 2014-09-05 12:46 - 2009-11-03 09:19 - 00409088 _____ () C:\Program Files (x86)\honestech\honestech TVR 2.5\scheduleTV.exe 2015-07-31 13:56 - 2015-07-08 10:17 - 00011672 _____ () C:\Program Files (x86)\Mein Büro Mobile Connector\Deltra.ERP\Deltra.Erp.Host.WinService.exe 2014-03-20 19:49 - 2013-04-19 22:51 - 00023328 _____ () C:\Program Files (x86)\Dell Backup and Recovery\Components\Shell\DBRCrawler.exe 2014-06-27 20:30 - 2014-06-27 20:30 - 07888896 _____ () C:\Program Files (x86)\dreamboxEDIT\dreamboxEDIT.exe 2014-04-01 12:57 - 2014-03-01 15:55 - 00138752 _____ () C:\Program Files (x86)\ImageWriter\Win32DiskImager.exe 2014-01-23 16:05 - 2014-01-23 16:05 - 01424552 _____ () C:\Program Files\Microsoft Office\Office15\ADDINS\UmOutlookAddin.dll 2014-01-23 16:05 - 2014-01-23 16:05 - 00401576 _____ () C:\Program Files\Microsoft Office\Office15\msfad.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00034936 _____ () C:\Program Files\GIMP 2\bin\libgimpmodule-2.0-0.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00099488 _____ () C:\Program Files\GIMP 2\bin\libgimpbase-2.0-0.dll 2014-04-17 23:20 - 2013-11-29 22:21 - 00055095 _____ () C:\Program Files\GIMP 2\bin\libffi-6.dll 2014-04-17 23:20 - 2013-11-29 22:22 - 00112825 _____ () C:\Program Files\GIMP 2\bin\zlib1.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00049936 _____ () C:\Program Files\GIMP 2\bin\libgimpthumb-2.0-0.dll 2014-04-17 23:20 - 2013-11-29 22:47 - 00306768 _____ () C:\Program Files\GIMP 2\bin\libjasper-1.dll 2014-04-17 23:20 - 2013-11-29 22:43 - 00238558 _____ () C:\Program Files\GIMP 2\bin\libjpeg-8.dll 2014-04-17 23:20 - 2013-11-29 22:32 - 00188906 _____ () C:\Program Files\GIMP 2\bin\libpng15-15.dll 2014-04-17 23:20 - 2013-11-29 23:06 - 00457966 _____ () C:\Program Files\GIMP 2\bin\libtiff-5.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 01236024 _____ () C:\Program Files\GIMP 2\bin\libgimpwidgets-2.0-0.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00066952 _____ () C:\Program Files\GIMP 2\bin\libgimpcolor-2.0-0.dll 2014-04-17 23:20 - 2013-11-29 23:10 - 00668905 _____ () C:\Program Files\GIMP 2\bin\libcairo-2.dll 2014-04-17 23:20 - 2013-11-30 02:21 - 00103038 _____ () C:\Program Files\GIMP 2\bin\libgcc_s_seh-1.dll 2014-04-17 23:20 - 2013-11-29 22:43 - 00265268 _____ () C:\Program Files\GIMP 2\bin\libfontconfig-1.dll 2014-04-17 23:20 - 2013-11-29 22:37 - 00541702 _____ () C:\Program Files\GIMP 2\bin\libfreetype-6.dll 2014-04-17 23:20 - 2013-11-29 22:30 - 01273075 _____ () C:\Program Files\GIMP 2\bin\libxml2-2.dll 2014-04-17 23:20 - 2013-11-29 22:28 - 00694675 _____ () C:\Program Files\GIMP 2\bin\libpixman-1-0.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00076632 _____ () C:\Program Files\GIMP 2\bin\libgimpconfig-2.0-0.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00038168 _____ () C:\Program Files\GIMP 2\bin\libgimpmath-2.0-0.dll 2014-04-17 23:20 - 2013-11-29 23:22 - 00327218 _____ () C:\Program Files\GIMP 2\bin\libharfbuzz-0.dll 2014-04-17 23:20 - 2013-11-30 01:35 - 00151693 _____ () C:\Program Files\GIMP 2\bin\libbabl-0.1-0.dll 2014-04-17 23:20 - 2013-11-30 03:41 - 00439598 _____ () C:\Program Files\GIMP 2\bin\libgegl-0.2-0.dll 2014-04-17 23:20 - 2013-11-29 23:40 - 00095447 _____ () C:\Program Files\GIMP 2\lib\gtk-2.0\2.10.0\engines\libwimp.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00035728 _____ () C:\Program Files\GIMP 2\lib\gimp\2.0\modules\libdisplay-filter-lcms.dll 2014-04-17 23:20 - 2013-11-30 00:43 - 00325631 _____ () C:\Program Files\GIMP 2\bin\liblcms2-2.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00032352 _____ () C:\Program Files\GIMP 2\lib\gimp\2.0\modules\libcolor-selector-cmyk.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00035224 _____ () C:\Program Files\GIMP 2\lib\gimp\2.0\modules\libcolor-selector-water.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00048704 _____ () C:\Program Files\GIMP 2\lib\gimp\2.0\modules\libcolor-selector-wheel.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00145472 _____ () C:\Program Files\GIMP 2\bin\libgimpui-2.0-0.dll 2014-04-17 23:20 - 2013-11-30 18:08 - 00240336 _____ () C:\Program Files\GIMP 2\bin\libgimp-2.0-0.dll 2015-02-09 20:13 - 2014-08-04 21:17 - 00012120 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll 2014-03-20 19:30 - 2014-08-04 21:17 - 02155808 _____ () C:\Program Files\NVIDIA Corporation\nview\nview.dll 2014-04-01 01:13 - 2009-02-27 16:38 - 00139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll 2014-09-05 12:46 - 2008-04-27 18:06 - 00053248 _____ () C:\Program Files (x86)\honestech\honestech TVR 2.5\ReadRemoteKey.dll 2015-09-12 20:29 - 2015-09-12 20:29 - 00071168 _____ () c:\Users\insaneware\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprlogdt.dll 2015-03-04 23:45 - 2015-08-05 07:26 - 00012800 _____ () C:\Users\insaneware\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll 2015-03-04 23:45 - 2015-08-05 07:26 - 00779776 _____ () C:\Users\insaneware\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-07-31 05:06 - 2015-08-05 07:26 - 00056320 _____ () C:\Users\insaneware\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-03-04 23:45 - 2015-08-05 07:26 - 00012288 _____ () C:\Users\insaneware\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00123918 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\libgcc_s_dw2-1.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00524460 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\libcurl-4.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00115214 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\zlib1.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 01026062 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\libstdc++-6.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 03095505 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\icuin53.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 01798570 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\icuuc53.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 21565192 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\icudt53.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 02874155 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\libsqlite3-0.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00712704 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\platforms\qwindows.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00031744 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qgif.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00046080 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qicns.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00032768 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qico.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00516608 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qjp2.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00243200 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qjpeg.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00431616 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\imageformats\qtiff.dll 2015-09-10 13:23 - 2015-09-10 13:23 - 00115214 _____ () C:\Users\insaneware\AppData\Local\CloudStation\CloudStation.app\bin\ZLIB1.dll 2015-08-19 11:59 - 2015-08-19 11:59 - 58600568 _____ () C:\Program Files (x86)\Opera\31.0.1889.174\opera.dll 2015-08-27 12:44 - 2015-08-27 12:44 - 17017032 _____ () C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_19_0_0_162.dll 2014-04-02 00:27 - 2013-11-13 13:23 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll 2014-03-20 19:49 - 2013-05-02 23:01 - 01813792 _____ () C:\Program Files (x86)\Dell Backup and Recovery\OLCoreWrapper.dll 2015-08-19 11:59 - 2015-08-19 11:59 - 01781368 _____ () C:\Program Files (x86)\Opera\31.0.1889.174\libglesv2.dll 2015-08-19 11:59 - 2015-08-19 11:59 - 00081528 _____ () C:\Program Files (x86)\Opera\31.0.1889.174\libegl.dll 2015-03-11 02:18 - 2014-11-25 14:40 - 00023040 _____ () C:\Program Files (x86)\Buhl\Mein Büro\wpformat.dll 2015-03-11 02:18 - 2014-11-25 15:40 - 00028456 _____ () C:\Program Files (x86)\Buhl\Mein Büro\on4u3\bdrmf.dll 2015-03-11 02:18 - 2015-09-11 14:46 - 00279344 _____ () C:\Program Files (x86)\Buhl\Mein Büro\LetsTrade\LetsTradeAdapter.dll 2015-03-11 02:18 - 2015-09-11 14:46 - 00042288 _____ () C:\Program Files (x86)\Buhl\Mein Büro\LetsTrade\LetsTradeDB.dll 2015-03-11 02:18 - 2015-09-11 14:46 - 00061744 _____ () C:\Program Files (x86)\Buhl\Mein Büro\LetsTrade\EPaymentAdapter.dll 2015-03-11 02:18 - 2015-09-11 14:46 - 00384304 _____ () C:\Program Files (x86)\Buhl\Mein Büro\LetsTrade\ExternalAPIAdapter.dll 2015-03-11 02:18 - 2015-09-11 14:42 - 00920176 _____ () C:\Program Files (x86)\Buhl\Mein Büro\LetsTrade\DDBAC.Net.FinTS.dll 2014-04-01 12:57 - 2013-04-17 11:18 - 00544817 _____ () C:\Program Files (x86)\ImageWriter\libgcc_s_dw2-1.dll 2014-04-01 12:57 - 2013-04-17 11:19 - 00989805 _____ () C:\Program Files (x86)\ImageWriter\libstdc++-6.dll 2014-04-01 12:57 - 2013-04-22 09:03 - 03369922 _____ () C:\Program Files (x86)\ImageWriter\icuin51.dll 2014-04-01 12:57 - 2013-04-22 09:03 - 01978690 _____ () C:\Program Files (x86)\ImageWriter\icuuc51.dll 2014-04-01 12:57 - 2013-04-22 09:03 - 22378434 _____ () C:\Program Files (x86)\ImageWriter\icudt51.dll 2014-04-01 12:57 - 2013-12-08 11:14 - 01269760 _____ () C:\Program Files (x86)\ImageWriter\platforms\qwindows.dll 2014-03-06 15:00 - 2014-03-06 15:00 - 01269952 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\kpcengine.2.3.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\Windows\SysWOW64\MSIHANDLE:3204 AlternateDataStreams: C:\Windows\SysWOW64\MSIHANDLE:3252 AlternateDataStreams: C:\Windows\SysWOW64\MSIHANDLE:3353 ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) IE trusted site: HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\...\dell.com -> dell.com ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-2176630791-1936397272-1849537872-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\insaneware\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.1.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0) Windows Firewall ist deaktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe FirewallRules: [{FD722446-FB20-48C4-9137-883D20260677}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{6405AD3E-46DF-4660-9804-431FF6050758}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe FirewallRules: [{34C7BA7D-663C-407F-A5E4-F7CE72F20990}] => (Allow) C:\Users\insaneware\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [{CDC172C5-0401-490A-8377-3D405B76DE7D}] => (Allow) C:\Users\insaneware\AppData\Roaming\Dropbox\bin\Dropbox.exe FirewallRules: [TCP Query User{3EE4F156-4AD9-4528-A117-F6400768FFB8}C:\users\insaneware\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\insaneware\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{57F9129E-9A55-4451-831F-389A1126E821}C:\users\insaneware\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\insaneware\appdata\local\akamai\netsession_win.exe FirewallRules: [{316E1AE0-2CE8-4209-94D5-B0800B9D1EEB}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{23CE4C03-4567-4641-913D-94E33EFD5C75}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe FirewallRules: [{7DF43DAA-CECA-4B7A-8BE8-3A97B3896C92}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [{B7F16204-5064-47FD-8AAD-A9111350C73F}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe FirewallRules: [TCP Query User{660635DD-88A7-4DC7-8D39-A4C49CE4CF4F}C:\users\insaneware\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\insaneware\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [UDP Query User{A67C1FA3-ADA3-4972-A551-923CD634F88E}C:\users\insaneware\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\insaneware\appdata\roaming\dropbox\bin\dropbox.exe FirewallRules: [TCP Query User{0094EF71-0673-42C1-B15D-B635426A3B80}C:\users\insaneware\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\insaneware\appdata\local\akamai\netsession_win.exe FirewallRules: [UDP Query User{9F1A9C7A-8439-4D87-AAB0-7A25734A569E}C:\users\insaneware\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\insaneware\appdata\local\akamai\netsession_win.exe FirewallRules: [{3F05E493-4C00-42C7-8AEF-81E08877F397}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{120FDCD8-DFCB-4D13-857A-354274CDE593}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe FirewallRules: [{DADA45F7-238F-473D-A22C-46D2A17E78C1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{202BC8C6-5A0F-464E-A65F-DA9524FDD593}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{9B3F94F5-2362-430B-B6D9-0DA02E6AA58E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{A47884D6-E947-4023-98A2-14EA4835359B}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{F29C9719-54A5-4631-807D-9251998CE3A7}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{09E169EE-4A3C-4730-9D51-41938F734564}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{A4203813-8D80-47D4-97EF-3C4386E1B3E9}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe FirewallRules: [{8B9B9857-A6BC-43A2-BE00-8AECD81ABB9C}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{0659EE8B-F4EB-49A2-AD07-C2CAFD582647}] => (Allow) C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe FirewallRules: [{8534815F-10FB-4DCF-A385-6F7CC9EB6586}] => (Allow) C:\Windows\SysWOW64\javaw.exe FirewallRules: [{9636C361-163D-4A88-9D05-CB4E265E11BC}] => (Allow) C:\Windows\SysWOW64\javaw.exe FirewallRules: [{D9EA4D78-7BD6-4CBD-8781-7D5281AD43FA}] => (Allow) C:\Program Files (x86)\Java\jre7\bin\java.exe FirewallRules: [{A0B62CBF-2C4E-4997-8941-D00F72C9EB11}] => (Allow) C:\Program Files (x86)\Java\jre7\bin\java.exe FirewallRules: [{B7B2F823-6535-4392-A8BD-83AECA6DA483}] => (Allow) C:\Users\insaneware\Ubiquiti UniFi\bin\mongod.exe FirewallRules: [{A2B58CA3-058E-4A88-B7FE-F5E809B1A60F}] => (Allow) C:\Users\insaneware\Ubiquiti UniFi\bin\mongod.exe FirewallRules: [{FF493B23-269E-4955-B46F-9D15A03343F9}] => (Allow) C:\Users\insaneware\Downloads\CCcam-to-Oscam-----Converter-1.2.zip_downloader.exe FirewallRules: [{F48AB0E5-0BF3-4CF0-885B-4FCCF8EB2402}] => (Allow) C:\Users\insaneware\Downloads\CCcam-to-Oscam-----Converter-1.2.zip_downloader.exe FirewallRules: [{13FB42AB-9F0E-4ADE-9061-A89CE0759C61}] => (Allow) C:\Program Files (x86)\YourFileDownloader\YourFileDownloader.exe FirewallRules: [{715A7434-9E03-4639-82C7-22DF82E2908E}] => (Allow) C:\Program Files (x86)\YourFileDownloader\YourFileDownloader.exe FirewallRules: [{076B0EE7-B0FE-43F6-92D4-79BB10F9B8CE}] => (Allow) C:\Program Files (x86)\YourFileDownloader\Downloader.exe FirewallRules: [{E096F5F5-0E60-49E6-8243-F9DFC8A42BDB}] => (Allow) C:\Program Files (x86)\YourFileDownloader\Downloader.exe FirewallRules: [{587CE692-B0E7-4674-B95C-6D993E9227F8}] => (Allow) C:\Program Files (x86)\HitsBlender\hitsblender.exe FirewallRules: [{9C524E36-6028-4805-A200-741012218188}] => (Allow) C:\Program Files (x86)\HitsBlender\hitsblender.exe FirewallRules: [{3579CED0-08F1-482A-A0CD-E95BC2FACC3C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{48439AC3-F506-4A2A-AFEF-0590609F3766}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{E8E4A0F2-B8EB-4097-80EC-94A20BF8AC98}] => (Allow) C:\Program Files\Marta.Pfahl\StreamMeNG HDx64 Web Installer\Installer.exe FirewallRules: [{DAB17A92-DC30-40C7-B04E-C80928F62039}] => (Allow) C:\Program Files (x86)\Marta.Pfahl\StreamMeNG HDx86\StreamMeNG.exe FirewallRules: [{46B1CA52-343A-4006-8E95-F57F9A413C34}] => (Allow) C:\Program Files (x86)\Marta.Pfahl\StreamMeNG HDx86\Installer.exe FirewallRules: [{E855BC1F-D87D-4353-B429-67E8B5D59FDD}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{80DDD2DD-1345-45F0-91B5-0E7DF0A20BB8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{52661050-CB93-4C25-BA04-AED9885D5456}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{1DE13AEB-7F72-4AE6-BB1C-6517248009B3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{90DC7C02-5A31-48F7-A06B-49D2E6D79DE9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{362510D6-70EA-45EF-927B-CBB669724612}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7 StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Logitech\Logitech Harmony Remote Software 7\HarmonyRemote.exe] => Enabled:Logitech Harmony Remote Software 7 ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Microsoft Virtual WiFi Miniport Adapter #2 Description: Microsoft-Adapter für Miniports virtueller WiFis Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: vwifimp Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31) Resolution: Update the driver Name: TAP-Windows Adapter V9 Description: TAP-Windows Adapter V9 Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318} Manufacturer: TAP-Windows Provider V9 Service: tap0901 Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (09/15/2015 08:18:25 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 8034 Error: (09/15/2015 08:18:25 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 8034 Error: (09/15/2015 08:18:25 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/15/2015 08:18:24 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 7036 Error: (09/15/2015 08:18:24 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 7036 Error: (09/15/2015 08:18:24 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/15/2015 08:18:23 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 6037 Error: (09/15/2015 08:18:23 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 6037 Error: (09/15/2015 08:18:23 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (09/15/2015 08:18:22 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 5039 Systemfehler: ============= Error: (09/16/2015 11:06:52 AM) (Source: Disk) (EventID: 11) (User: ) Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR11 gefunden. Error: (09/15/2015 08:18:14 PM) (Source: nvlddmkm) (EventID: 14) (User: ) Description: \Device\0000010fCMDre 00000000 00000080 00000000 00000005 00002010 Error: (09/15/2015 08:18:12 PM) (Source: nvlddmkm) (EventID: 14) (User: ) Description: \Device\0000010fCMDre 00000000 00000080 00000000 00000005 00002010 Error: (09/15/2015 08:18:10 PM) (Source: nvlddmkm) (EventID: 14) (User: ) Description: \Device\0000010fCMDre 00000000 00000080 00000000 00000005 00002010 Error: (09/15/2015 08:16:04 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (09/15/2015 08:00:50 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (09/15/2015 07:20:32 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (09/15/2015 07:18:14 PM) (Source: Schannel) (EventID: 4120) (User: NT-AUTORITÄT) Description: Es wurde eine schwerwiegende Warnung generiert: 10. Der interne Fehlerstatus lautet: 10. Error: (09/15/2015 06:09:36 PM) (Source: Disk) (EventID: 11) (User: ) Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR11 gefunden. Error: (09/15/2015 06:09:36 PM) (Source: Disk) (EventID: 11) (User: ) Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk2\DR11 gefunden. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i7-4800MQ CPU @ 2.70GHz Prozentuale Nutzung des RAM: 80% Installierter physikalischer RAM: 8097.14 MB Verfügbarer physikalischer RAM: 1556.54 MB Summe virtueller Speicher: 16192.46 MB Verfügbarer virtueller Speicher: 4963.68 MB ==================== Laufwerke ================================ Drive c: (OS) (Fixed) (Total:230.68 GB) (Free:51.54 GB) NTFS Drive d: (Download) (Fixed) (Total:465.76 GB) (Free:261.71 GB) NTFS Drive t: (Buffalo 3 TB) (Fixed) (Total:2794.51 GB) (Free:2370.1 GB) NTFS Drive y: (RECOVERY) (Fixed) (Total:7.78 GB) (Free:0 GB) NTFS ==>[System mit Startkomponenten (eingeholt von lesen Laufwerk)] ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 238.5 GB) (Disk ID: D76CBAB6) Partition 1: (Not Active) - (Size=24 MB) - (Type=DE) Partition 2: (Active) - (Size=7.8 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=230.7 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 66AF48A9) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) Attempted reading MBR returned 0 bytes. Could not read MBR for disk 2. ==================== Ende von Addition.txt ============================ Geändert von bolek-nrw (16.09.2015 um 11:48 Uhr) |
16.09.2015, 11:45 | #3 | |
/// Winkelfunktion /// TB-Süch-Tiger™ | Spammails an alle Kunden (Onlineshop) Hi,
__________________Zitat:
Gewebrlich gecrackte Software von Adobe verwenden??
__________________ |
16.09.2015, 11:59 | #4 |
| Spammails an alle Kunden (Onlineshop) Der Laptop ist von einem unserer Mitarbeiter, den er auch privat nutzt. Sorry, wir wollen da nicht in Schwierigkeiten kommen. Wir haben natürlich nur originale Software. |
16.09.2015, 12:39 | #5 |
/// Winkelfunktion /// TB-Süch-Tiger™ | Spammails an alle Kunden (Onlineshop) Bevor es weitergehen kann muss alles an illegalen Zeugs runter... Lesestoff: Illegale Software: Cracks, Keygens und Co Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html Es geht weiter wenn du alles Illegale entfernt hast. Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________ Logfiles bitte immer in CODE-Tags posten |
Themen zu Spammails an alle Kunden (Onlineshop) |
avast, bluestacks, bonjour, converter, defender, desktop, dnsapi.dll, downloader, ebanking, explorer, flash player, iexplore.exe, mozilla, onlineshop, proxy, prozesse, realtek, registry, rundll, scan, security, services.exe, software, svchost.exe, synology, system, temp, windows, winlogon.exe, wlan |