Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung

Log-Analyse und Auswertung: Unsichtbares Mobogenie

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML

Antwort
Alt 22.05.2016, 22:39   #1
suppiluliuma
 
Unsichtbares Mobogenie - Standard

Unsichtbares Mobogenie



Hab ein Problem mit einem Browser Hijack mit dem IE.
Quelle ist wahrscheinlich eine unsichtbare Mobogenie-Installation, die den Link auf Werbung umleitet (get.mirando.de).
Habe die Logs erstellt, siehe unten bzw. nächster Beitrag..
Bitte um Hilfe.

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:22-05-2016 01
durchgeführt von Hasi (Administrator) auf PUPPI (22-05-2016 23:15:19)
Gestartet von D:\Transfer
Geladene Profile: Hasi (Verfügbare Profile: Hasi)
Platform: Windows 8.1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: IE)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.01\AsusFanControlService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(DTS, Inc) C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe
(CHENGDU YIWO Tech Development Co., Ltd) C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\ProgramData\MobileBrServ\mbbService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(Protexis Inc.) C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
() C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(MAGIX AG) C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
(Kaspersky Lab ZAO) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avpui.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\WiFi GO! Server.exe
() C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr64.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe
(Dropbox, Inc.) C:\Users\Hasi\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe
(CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AsDLNAServerReal.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft) C:\Program Files (x86)\Microsoft Streets & Trips 2013\StreetsOlkShim.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-11-21] (Intel Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [7204568 2013-11-04] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_DTS] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2013-11-05] (Realtek Semiconductor)
HKLM\...\Run: [Nvtmru] => "C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe"
HKLM\...\Run: [ShadowPlay] => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2460488 2014-09-17] (NVIDIA Corporation)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [519408 2013-07-18] (Acronis)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [558496 2014-02-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7843744 2014-02-04] (Acronis)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1104616 2013-10-10] (Acronis International GmbH)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems Inc.)
HKLM-x32\...\Run: [ASUS AiChargerPlus Execute] => C:\Program Files (x86)\InstallShield Installation Information\{E6931688-DA2B-4E16-8539-3D323D69C677}\AiChargerPlus.exe [550272 2013-01-28] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUS WiFi GO! FileTransfer Execute] => C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\WiFile\WiFileTransfer.exe [1391416 2013-06-21] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\FirstStart.exe [55656 2013-07-29] (OLYMPUS IMAGING CORP.)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-12] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [FontExpertType1Loader] => C:\Program Files (x86)\FontExpert\Type1Loader.exe [294776 2011-10-31] (Proxima Software)
HKLM-x32\...\Run: [mobilegeni daemon] => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
HKLM-x32\...\Run: [iTunesHelper] => C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)
HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1298504 2014-11-08] (CANON INC.)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [453736 2013-02-19] (CANON INC.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3675352 2013-10-28] (Disc Soft Ltd)
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Run: [OV3_Monitor] => C:\Program Files (x86)\OLYMPUS\OLYMPUS Viewer 3\OV3Monitor.exe [420200 2013-07-29] (OLYMPUS IMAGING CORP.)
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Run: [Amazon Music] => C:\Users\Hasi\AppData\Local\Amazon Music\Amazon Music Helper.exe [3162944 2014-07-01] ()
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Run: [Dropbox Update] => C:\Users\Hasi\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-17] (Dropbox, Inc.)
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [31682144 2015-03-25] (Skype Technologies S.A.)
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Run: [TomTomHOME.exe] => C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe [248176 2015-07-13] (TomTom)
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1399208 2016-04-08] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\MountPoints2: {61ede83c-ca48-11e5-83db-d850e6d1c3d0} - "G:\startme.exe"
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\MountPoints2: {d2c082f7-94d1-11e5-83be-d850e6d1c3d0} - "H:\startme.exe"
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\MountPoints2: {f1f677e5-892d-11e3-8263-d850e6d1c3d0} - "G:\AutoRun.exe"
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [788480 2014-10-29] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe [1399208 2016-04-08] (Garmin Ltd. or its subsidiaries)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-10-20] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt.34.dll [2016-05-07] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-10-20] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk [2016-05-22]
ShortcutTarget: O&O Defrag Tray.lnk -> C:\Windows\Installer\{F17BA1CA-0FAF-40BF-A5FD-BF1B727D855E}\app_icon.ico ()
Startup: C:\Users\Hasi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2016-05-22]
ShortcutTarget: Dropbox.lnk -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{299F36D3-A249-45F9-9932-A5380360BE40}: [DhcpNameServer] 192.168.0.1 192.168.0.2
Tcpip\..\Interfaces\{DCC4EB4B-ABCF-4294-B989-5FBA9AAA4558}: [DhcpNameServer] 192.168.1.1 192.168.1.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.at/
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://nmd.msn.com
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexbho.dll [2014-01-24] (CANON INC.)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-10-20] (IvoSoft)
BHO: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-10-11] (Kaspersky Lab ZAO)
BHO: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\x64\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2013-10-20] (IvoSoft)
BHO-x32: ContributeBHO Class -> {074C1DC5-9320-4A9A-947D-C042949C6216} -> C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19] (Adobe Systems, Inc.)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2014-01-24] (CANON INC.)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-10-20] (IvoSoft)
BHO-x32: Content Blocker Plugin -> {5564CC73-EFA7-4CBF-918A-5CF7FBBFFF4F} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\ContentBlocker\ie_content_blocker_plugin.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Virtual Keyboard Plugin -> {73455575-E40C-433C-9784-C78DC7761455} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\VirtualKeyboard\ie_virtual_keyboard_plugin.dll [2014-10-11] (Kaspersky Lab ZAO)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-23] (Oracle Corporation)
BHO-x32: Safe Money Plugin -> {9E6D0D23-3D72-4A94-AE1F-2D167624E3D9} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\OnlineBanking\online_banking_bho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-23] (Oracle Corporation)
BHO-x32: URL Advisor Plugin -> {E33CF602-D945-461A-83F0-819F76A199F8} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\IEExt\UrlAdvisor\klwtbbho.dll [2014-04-20] (Kaspersky Lab ZAO)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2013-10-20] (IvoSoft)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2013-10-20] (IvoSoft)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll [2014-01-24] (CANON INC.)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2013-10-20] (IvoSoft)
Toolbar: HKLM-x32 - Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\IEPlugin\contributeieplugin.dll [2011-03-19] (Adobe Systems, Inc.)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2014-01-24] (CANON INC.)
Toolbar: HKU\S-1-5-21-2389217616-984847240-1873245757-1002 -> Kein Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Keine Datei
Toolbar: HKU\S-1-5-21-2389217616-984847240-1873245757-1002 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\addon64\ewpexhlp.dll [2014-01-24] (CANON INC.)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Hasi\AppData\Roaming\Mozilla\Firefox\Profiles\5l77ouq3.default
FF SelectedSearchEngine: awesomehp
FF Homepage: hxxps://www.google.at/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_296.dll [2015-02-05] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2013-12-10] (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-29] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_296.dll [2015-02-05] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-02-20] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-23] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-23] (Oracle Corporation)
FF Plugin-x32: @kaspersky.com/content_blocker -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2014-10-11] ()
FF Plugin-x32: @kaspersky.com/online_banking -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2014-10-11] ()
FF Plugin-x32: @kaspersky.com/virtual_keyboard -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-10-11] ()
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2014-09-23] (Nero AG)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-09-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-09-13] (NVIDIA Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-05-03] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-29] (Adobe Systems)
FF user.js: detected! => C:\Users\Hasi\AppData\Roaming\Mozilla\Firefox\Profiles\5l77ouq3.default\user.js [2014-12-09]
FF Extension: Virtual Keyboard - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com [2014-10-11] [ist nicht signiert]
FF Extension: Dangerous Websites Blocker - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com [2014-10-11] [ist nicht signiert]
FF Extension: Anti-Banner - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com [2014-10-11] [ist nicht signiert]
FF Extension: Safe Money - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com [2014-10-11] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}] - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9}
FF Extension: Adobe Contribute Toolbar - C:\Program Files (x86)\Adobe\Adobe Contribute CS5.1\Plugins\FirefoxPlugin\{01A8CA0A-4C96-465b-A49B-65C46FAD54F9} [2014-01-20] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2015-10-16] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [content_blocker@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\content_blocker@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [virtual_keyboard@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\virtual_keyboard@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com
FF Extension: Kaspersky URL Advisor - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\url_advisor@kaspersky.com [2014-10-11] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [anti_banner@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\anti_banner@kaspersky.com
FF HKLM-x32\...\Firefox\Extensions: [online_banking@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\FFExt\online_banking@kaspersky.com

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho
CHR HKLM-x32\...\Chrome\Extension: [dbhjdbfgekjfcfkkfjjmlmojhbllhbho] - hxxps://chrome.google.com/webstore/detail/dbhjdbfgekjfcfkkfjjmlmojhbllhbho

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe [936728 2013-05-07] ()
R2 asHmComSvc; C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMSvc.exe [954648 2013-08-01] (ASUSTeK Computer Inc.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\1.04.01\AsusFanControlService.exe [1656464 2013-08-08] (ASUSTeK Computer Inc.) [Datei ist nicht signiert]
R2 AVP15.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\avp.exe [233552 2014-04-20] (Kaspersky Lab ZAO)
R2 DTSAudioSvc; C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe [240576 2013-10-07] (DTS, Inc)
R2 EaseUS Agent; C:\Program Files (x86)\EaseUS\Todo Backup\bin\Agent.exe [36904 2015-08-01] (CHENGDU YIWO Tech Development Co., Ltd)
R2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert]
R2 Garmin Device Interaction Service; C:\Program Files (x86)\Garmin\Device Interaction Service\GarminService.exe [792592 2016-04-08] (Garmin Ltd. or its subsidiaries)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148744 2014-09-17] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-11-21] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [Datei ist nicht signiert]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-03] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 Mobile Broadband HL Service; C:\ProgramData\MobileBrServ\mbbservice.exe [232288 2012-03-12] ()
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1795912 2014-09-17] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [19439944 2014-09-17] (NVIDIA Corporation)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [1656616 2013-12-16] (O&O Software GmbH)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248736 2015-05-11] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AiChargerPlus; C:\Windows\SysWow64\drivers\AiChargerPlus.sys [14848 2013-01-28] (ASUSTek Computer Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15232 2012-08-22] ()
R3 ASMTFilter; C:\Windows\SysWow64\drivers\asmtufdriver.sys [21400 2013-01-28] (hxxp://www.asmedia.com.tw) [Datei ist nicht signiert]
R1 AsUpIO; C:\Windows\SysWow64\drivers\AsUpIO.sys [14464 2012-09-14] ()
R3 ASUSFILTER; C:\Windows\SysWow64\drivers\ASUSFILTER.sys [46152 2011-09-20] (MCCI Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-01-23] (Disc Soft Ltd)
R3 e1dexpress; C:\Windows\system32\DRIVERS\e1d64x64.sys [468240 2013-08-30] (Intel Corporation)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 epmntdrv; C:\Windows\system32\epmntdrv.sys [18528 2014-11-18] ()
S3 epmntdrv; C:\Windows\SysWOW64\epmntdrv.sys [15968 2014-11-18] ()
R0 EUBKMON; C:\Windows\System32\drivers\EUBKMON.sys [48168 2014-12-15] ()
S3 EuGdiDrv; C:\Windows\system32\EuGdiDrv.sys [10848 2014-11-18] ()
S3 EuGdiDrv; C:\Windows\SysWOW64\EuGdiDrv.sys [10208 2014-11-18] ()
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [457824 2014-02-20] (Kaspersky Lab ZAO)
S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [29616 2012-07-27] (Kaspersky Lab)
R3 klflt; C:\Windows\system32\DRIVERS\klflt.sys [142344 2014-10-11] (Kaspersky Lab ZAO)
R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [243808 2014-04-10] (Kaspersky Lab ZAO)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [771272 2014-10-11] (Kaspersky Lab ZAO)
R1 KLIM6; C:\Windows\system32\DRIVERS\klim6.sys [30304 2014-02-25] (Kaspersky Lab ZAO)
R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [28768 2014-03-28] (Kaspersky Lab ZAO)
R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [29280 2013-08-08] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\system32\DRIVERS\klpd.sys [15456 2013-04-12] (Kaspersky Lab ZAO)
R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [67680 2014-03-19] (Kaspersky Lab ZAO)
R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [179296 2014-03-26] (Kaspersky Lab ZAO)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-05-22] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [65408 2016-03-10] (Malwarebytes Corporation)
S3 MbswMailbox; C:\Program Files (x86)\ASUS\AI Suite III\690b33e1-0462-4e84-9bea-c7552b45432a.sys [17208 2014-01-23] ()
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-03] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19272 2014-09-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-09-04] (NVIDIA Corporation)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-01-20] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2014-01-20] (Acronis International GmbH)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-22 23:15 - 2016-05-22 23:15 - 00000000 ____D C:\FRST
2016-05-12 19:41 - 2016-05-12 19:41 - 00000000 ____D C:\Users\Hasi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2016-05-11 22:20 - 2016-04-22 22:54 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-05-11 22:20 - 2016-04-22 22:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-05-11 22:20 - 2016-04-22 22:14 - 02893312 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-05-11 22:20 - 2016-04-22 22:08 - 06052864 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-05-11 22:20 - 2016-04-22 22:06 - 20349952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-05-11 22:20 - 2016-04-22 22:00 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-05-11 22:20 - 2016-04-22 21:35 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-05-11 22:20 - 2016-04-22 21:29 - 02285568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-05-11 22:20 - 2016-04-22 21:24 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-05-11 22:20 - 2016-04-22 21:23 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-05-11 22:20 - 2016-04-22 21:19 - 15414784 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-05-11 22:20 - 2016-04-22 21:17 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-05-11 22:20 - 2016-04-22 21:14 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-05-11 22:20 - 2016-04-22 21:14 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-05-11 22:20 - 2016-04-22 21:14 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-05-11 22:20 - 2016-04-22 21:12 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-05-11 22:20 - 2016-04-22 20:58 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-05-11 22:20 - 2016-04-22 20:58 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-05-11 22:20 - 2016-04-22 20:54 - 13811200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-05-11 22:20 - 2016-04-22 20:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-05-11 22:20 - 2016-04-22 20:52 - 02596864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-05-11 22:20 - 2016-04-22 20:52 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-05-11 22:20 - 2016-04-22 20:52 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-05-11 22:20 - 2016-04-22 20:51 - 02056192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-05-11 22:20 - 2016-04-22 20:40 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-05-11 22:20 - 2016-04-22 20:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-05-11 22:20 - 2016-04-22 20:27 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-05-11 22:20 - 2016-04-22 20:24 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-05-11 22:20 - 2016-04-22 20:23 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-05-11 22:20 - 2016-04-11 08:21 - 00074584 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2016-05-11 22:20 - 2016-04-10 09:48 - 00738096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-05-11 22:20 - 2016-04-10 09:48 - 00613624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-05-11 22:20 - 2016-04-10 07:37 - 01549144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-05-11 22:20 - 2016-04-10 06:21 - 01763376 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-05-11 22:20 - 2016-04-10 06:21 - 01489088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-05-11 22:20 - 2016-04-10 06:14 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-05-11 22:20 - 2016-04-10 01:29 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-05-11 22:20 - 2016-04-10 00:07 - 01097728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-05-11 22:20 - 2016-04-09 23:58 - 00534016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-05-11 22:20 - 2016-04-09 23:50 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-05-11 22:20 - 2016-04-06 23:13 - 00561960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-05-11 22:20 - 2016-04-06 23:13 - 00137976 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-05-11 22:20 - 2016-04-06 20:20 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-05-11 22:20 - 2016-04-06 20:19 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-05-11 22:20 - 2016-04-06 20:19 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-05-11 22:20 - 2016-04-06 19:49 - 00120384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-05-11 22:20 - 2016-04-06 19:40 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-05-11 22:20 - 2016-04-06 18:57 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-05-11 22:20 - 2016-04-06 18:52 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-05-11 22:20 - 2016-04-06 18:20 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-05-11 22:20 - 2016-04-06 17:48 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-05-11 22:20 - 2016-03-31 08:50 - 01307328 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-05-11 22:20 - 2016-03-31 05:40 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-05-11 22:20 - 2016-03-29 03:42 - 07446368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-05-11 18:46 - 2016-05-11 18:46 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\7135462F.sys
2016-05-07 16:24 - 2016-03-31 01:56 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-05-07 16:24 - 2016-03-31 01:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-05-07 16:24 - 2016-03-31 01:55 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-05-07 16:24 - 2016-03-31 01:30 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-05-07 16:24 - 2016-03-31 01:30 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-05-07 16:24 - 2016-03-11 16:48 - 00833024 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-05-07 16:24 - 2016-03-10 19:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-05-07 16:24 - 2016-03-10 18:48 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-05-07 16:24 - 2016-03-03 03:39 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-05-07 16:24 - 2016-03-03 03:39 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-05-07 16:23 - 2016-03-16 03:58 - 00442712 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-05-07 16:23 - 2016-03-16 03:58 - 00332632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-05-07 16:23 - 2016-03-14 18:50 - 00316760 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2016-05-07 16:23 - 2016-03-12 02:49 - 02466136 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-05-07 16:23 - 2016-03-12 02:47 - 00160160 _____ (Microsoft Corporation) C:\Windows\system32\IPHLPAPI.DLL
2016-05-07 16:23 - 2016-03-12 02:47 - 00121912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IPHLPAPI.DLL
2016-05-07 16:23 - 2016-03-10 21:17 - 01133752 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-05-07 16:23 - 2016-03-10 19:48 - 00862720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-05-07 16:23 - 2016-03-10 19:43 - 00161280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msorcl32.dll
2016-05-07 16:23 - 2016-03-10 19:03 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\dsparse.dll
2016-05-07 16:23 - 2016-03-10 18:55 - 00510976 _____ (Microsoft Corporation) C:\Windows\system32\webio.dll
2016-05-07 16:23 - 2016-03-10 18:55 - 00166400 _____ (Microsoft Corporation) C:\Windows\system32\mtxoci.dll
2016-05-07 16:23 - 2016-03-10 18:52 - 00186880 _____ (Microsoft Corporation) C:\Windows\system32\dpapisrv.dll
2016-05-07 16:23 - 2016-03-10 18:48 - 00024064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dsparse.dll
2016-05-07 16:23 - 2016-03-10 18:42 - 00413696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webio.dll
2016-05-07 16:23 - 2016-03-10 18:42 - 00116736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mtxoci.dll
2016-05-07 16:23 - 2016-03-08 16:44 - 00138240 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-05-07 16:23 - 2016-03-05 19:44 - 00148480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shacct.dll
2016-05-07 16:23 - 2016-03-05 19:04 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\shacct.dll
2016-05-07 16:23 - 2016-03-03 18:47 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-05-07 16:23 - 2016-03-03 18:33 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-05-07 16:23 - 2016-03-03 18:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-05-07 16:23 - 2016-02-27 20:28 - 00131584 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-05-07 16:23 - 2016-02-27 19:57 - 03273728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rdpcore.dll
2016-05-07 16:23 - 2016-02-27 19:19 - 03820544 _____ (Microsoft Corporation) C:\Windows\system32\rdpcore.dll
2016-05-07 16:23 - 2016-02-27 18:32 - 03547648 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-05-05 19:49 - 2016-05-22 23:03 - 00000875 _____ C:\Users\Hasi\Desktop\Garten.lnk
2016-04-27 05:49 - 2016-04-27 05:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-22 23:09 - 2014-01-20 11:40 - 00003596 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2389217616-984847240-1873245757-1002
2016-05-22 23:04 - 2016-03-09 17:30 - 00001228 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-05-22 23:04 - 2016-03-09 17:30 - 00001210 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-05-22 23:04 - 2015-11-28 22:22 - 00002043 _____ C:\Users\Public\Desktop\Sony PC Companion 2.1.lnk
2016-05-22 23:04 - 2015-11-28 17:28 - 00000978 _____ C:\Users\Public\Desktop\TomTom MyDrive Connect.lnk
2016-05-22 23:04 - 2015-10-31 18:20 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-05-22 23:04 - 2015-10-26 15:45 - 00001351 _____ C:\Users\Public\Desktop\EaseUS Partition Master 10.8.lnk
2016-05-22 23:04 - 2015-10-26 15:41 - 00002146 _____ C:\Users\Public\Desktop\EaseUS Todo Backup Workstation 8.8.lnk
2016-05-22 23:04 - 2015-08-19 10:37 - 00001177 _____ C:\Users\Public\Desktop\Synology Assistant.lnk
2016-05-22 23:04 - 2015-01-20 16:46 - 00001106 _____ C:\Users\Public\Desktop\Mobi File Reader.lnk
2016-05-22 23:04 - 2014-11-29 14:24 - 00001056 _____ C:\Users\Public\Desktop\MediaMonkey.lnk
2016-05-22 23:04 - 2014-10-29 10:50 - 00001565 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2016-05-22 23:04 - 2014-10-11 10:45 - 00001357 _____ C:\Users\Public\Desktop\Kaspersky Internet Security.lnk
2016-05-22 23:04 - 2014-09-07 14:10 - 00002098 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop Lightroom 5.6 64-bit.lnk
2016-05-22 23:04 - 2014-09-07 14:10 - 00002072 _____ C:\Users\Public\Desktop\Lightroom 5.6 64-bit.lnk
2016-05-22 23:04 - 2014-07-26 11:54 - 00002923 _____ C:\Users\Public\Desktop\Nero 2014.lnk
2016-05-22 23:04 - 2014-05-11 16:27 - 00002264 _____ C:\Users\Public\Desktop\RouteNavigator Europa.lnk
2016-05-22 23:04 - 2014-04-24 22:00 - 00001796 _____ C:\Users\Public\Desktop\iTunes.lnk
2016-05-22 23:04 - 2014-04-11 20:29 - 00001361 _____ C:\Users\Public\Desktop\Streaming Audio Recorder.lnk
2016-05-22 23:04 - 2014-04-10 22:05 - 00001173 _____ C:\Users\Public\Desktop\MAGIX Video deluxe 2014 Plus.lnk
2016-05-22 23:04 - 2014-02-13 17:07 - 00001078 _____ C:\Users\Public\Desktop\FontExpert 2011.LNK
2016-05-22 23:04 - 2014-02-13 16:35 - 00002825 _____ C:\Users\Public\Desktop\CorelDRAW X6 (64-Bit).lnk
2016-05-22 23:04 - 2014-02-02 12:43 - 00000982 _____ C:\Users\Public\Desktop\VueScan x64.lnk
2016-05-22 23:04 - 2014-01-31 13:51 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2016-05-22 23:04 - 2014-01-24 23:26 - 00001139 _____ C:\Users\Public\Desktop\Epubor Ultimate.lnk
2016-05-22 23:04 - 2014-01-24 10:00 - 00000944 _____ C:\Users\Public\Desktop\WinImage.lnk
2016-05-22 23:04 - 2014-01-23 21:30 - 00002753 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Streets & Trips 2013.lnk
2016-05-22 23:04 - 2014-01-23 17:16 - 00002759 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft AutoRoute 2013.lnk
2016-05-22 23:04 - 2014-01-23 00:33 - 00001115 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2016-05-22 23:04 - 2014-01-23 00:26 - 00001018 _____ C:\Users\Public\Desktop\Total Commander 64 bit.lnk
2016-05-22 23:04 - 2014-01-21 23:06 - 00000932 _____ C:\Users\Public\Desktop\VLC media player.lnk
2016-05-22 23:04 - 2014-01-21 23:04 - 00001178 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-05-22 23:04 - 2014-01-21 23:04 - 00001160 _____ C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-05-22 23:04 - 2014-01-20 22:57 - 00002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat X Pro.lnk
2016-05-22 23:04 - 2014-01-20 22:46 - 00002481 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller X.lnk
2016-05-22 23:04 - 2014-01-20 22:37 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Widget Browser.lnk
2016-05-22 23:04 - 2014-01-20 22:37 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Content Viewer.lnk
2016-05-22 23:04 - 2014-01-20 22:35 - 00001020 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Help.lnk
2016-05-22 23:04 - 2014-01-20 18:03 - 00002507 _____ C:\Users\Public\Desktop\O&O Defrag.lnk
2016-05-22 23:04 - 2014-01-20 15:24 - 00001011 _____ C:\Users\Public\Desktop\IrfanView.lnk
2016-05-22 23:03 - 2016-03-08 18:54 - 00002171 _____ C:\Users\Hasi\Desktop\Garmin Express.lnk
2016-05-22 23:03 - 2016-03-03 11:03 - 00001092 _____ C:\Users\Hasi\Desktop\KOMPASS Digital Map.lnk
2016-05-22 23:03 - 2016-02-20 11:34 - 00001012 _____ C:\Users\Hasi\Desktop\Kabueem1_3100d.pdf.lnk
2016-05-22 23:03 - 2015-12-30 17:19 - 00002191 _____ C:\Users\Public\Desktop\Arles Image Explorer.lnk
2016-05-22 23:03 - 2014-09-01 18:16 - 00001095 _____ C:\Users\Hasi\Desktop\Adobe Photoshop CC 2014.lnk
2016-05-22 23:03 - 2014-07-15 19:17 - 00001148 _____ C:\Users\Hasi\Desktop\Amazon Music.lnk
2016-05-22 23:03 - 2014-07-09 16:50 - 00002038 _____ C:\Users\Public\Desktop\Canon Quick Menu.lnk
2016-05-22 23:03 - 2014-07-09 16:45 - 00002359 _____ C:\Users\Public\Desktop\Canon MG7100 series On-Screen-Handbuch.lnk
2016-05-22 23:03 - 2014-05-11 13:20 - 00001069 _____ C:\Users\Hasi\Desktop\Dropbox.lnk
2016-05-22 23:03 - 2014-04-24 22:20 - 00001423 _____ C:\Users\Hasi\Desktop\blackra1n.exe.lnk
2016-05-22 23:03 - 2014-03-02 13:02 - 00000992 _____ C:\Users\Public\Desktop\AllDup.lnk
2016-05-22 23:03 - 2014-02-13 16:35 - 00002833 _____ C:\Users\Public\Desktop\Corel CAPTURE X6 (64-Bit).lnk
2016-05-22 23:03 - 2014-02-13 16:35 - 00002364 _____ C:\Users\Public\Desktop\Bitstream Font Navigator (64-Bit).lnk
2016-05-22 23:03 - 2014-02-02 12:43 - 00000994 _____ C:\ProgramData\Microsoft\Windows\Start Menu\VueScan x64.lnk
2016-05-22 23:03 - 2014-02-01 14:44 - 00000973 _____ C:\Users\Public\Desktop\calibre - E-book management.lnk
2016-05-22 23:03 - 2014-02-01 14:34 - 00001022 _____ C:\Users\Hasi\Desktop\Hard Disk Sentinel.lnk
2016-05-22 23:03 - 2014-01-23 21:41 - 00001152 _____ C:\Users\Hasi\Desktop\OLYMPUS Viewer 3.lnk
2016-05-22 23:03 - 2014-01-23 21:41 - 00001132 _____ C:\Users\Hasi\Desktop\OLYMPUS Digital Kamera Updater.lnk
2016-05-22 23:03 - 2014-01-23 21:37 - 00002741 _____ C:\Users\Hasi\Desktop\Microsoft Streets & Trips 2013.lnk
2016-05-22 23:03 - 2014-01-23 17:16 - 00002747 _____ C:\Users\Hasi\Desktop\Microsoft AutoRoute 2013.lnk
2016-05-22 23:03 - 2014-01-21 22:50 - 00002281 _____ C:\Users\Hasi\Desktop\Kindle.lnk
2016-05-22 23:03 - 2014-01-21 14:49 - 00001971 _____ C:\Users\Hasi\Desktop\AI Suite 3.lnk
2016-05-22 23:03 - 2014-01-20 22:46 - 00002047 _____ C:\Users\Public\Desktop\Adobe Acrobat X Pro.lnk
2016-05-22 23:03 - 2014-01-20 22:40 - 00001269 _____ C:\Users\Hasi\Desktop\Adobe After Effects CS5.5.lnk
2016-05-22 23:03 - 2014-01-20 22:40 - 00001234 _____ C:\Users\Hasi\Desktop\Adobe Photoshop CS5.1.lnk
2016-05-22 23:03 - 2014-01-20 22:40 - 00001222 _____ C:\Users\Hasi\Desktop\Adobe InDesign CS5.5.lnk
2016-05-22 23:03 - 2014-01-20 22:40 - 00001182 _____ C:\Users\Hasi\Desktop\Adobe Flash Professional CS5.5.lnk
2016-05-22 23:03 - 2014-01-20 22:40 - 00001149 _____ C:\Users\Hasi\Desktop\Adobe Premiere Pro CS5.5.lnk
2016-05-22 23:03 - 2014-01-20 22:39 - 00001689 _____ C:\Users\Hasi\Desktop\Adobe Illustrator CS5.1.lnk
2016-05-22 23:03 - 2014-01-20 22:39 - 00001258 _____ C:\Users\Hasi\Desktop\Adobe Dreamweaver CS5.5.lnk
2016-05-22 23:03 - 2014-01-20 22:38 - 00001252 _____ C:\Users\Hasi\Desktop\Adobe Audition CS5.5.lnk
2016-05-22 23:03 - 2014-01-20 22:37 - 00001196 _____ C:\Users\Hasi\Desktop\Adobe Bridge CS5.1.lnk
2016-05-22 23:03 - 2014-01-20 19:42 - 00000901 _____ C:\Users\Hasi\Desktop\µTorrent.lnk
2016-05-22 23:03 - 2014-01-20 19:42 - 00000881 _____ C:\Users\Hasi\AppData\Roaming\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-05-22 23:03 - 2014-01-20 15:51 - 00001024 _____ C:\ProgramData\Microsoft\Windows\Start Menu\VueScan x32.lnk
2016-05-22 23:03 - 2014-01-20 15:46 - 00001218 _____ C:\Users\Public\Desktop\Acronis True Image 2014.lnk
2016-05-22 23:03 - 2014-01-20 11:58 - 00003229 _____ C:\Users\Hasi\Desktop\Microsoft Outlook 2010.lnk
2016-05-22 23:03 - 2014-01-20 11:58 - 00003093 _____ C:\Users\Hasi\Desktop\Microsoft PowerPoint 2010.lnk
2016-05-22 23:03 - 2014-01-20 11:58 - 00003045 _____ C:\Users\Hasi\Desktop\Microsoft Excel 2010.lnk
2016-05-22 23:03 - 2014-01-20 11:58 - 00003027 _____ C:\Users\Hasi\Desktop\Microsoft Word 2010.lnk
2016-05-22 23:03 - 2014-01-20 11:39 - 00000995 _____ C:\Users\Hasi\Desktop\Atomic Clock Sync.lnk
2016-05-22 23:03 - 2014-01-20 11:29 - 00001427 _____ C:\Users\Hasi\Desktop\Internet Explorer.lnk
2016-05-22 23:03 - 2014-01-20 11:29 - 00001234 _____ C:\Users\Hasi\Desktop\Notepad.lnk
2016-05-22 23:03 - 2014-01-20 11:29 - 00000407 _____ C:\Users\Hasi\Desktop\File Explorer.lnk
2016-05-22 22:57 - 2014-01-20 11:33 - 00000000 ____D C:\Users\Hasi\AppData\Roaming\ClassicShell
2016-05-22 22:52 - 2014-01-20 12:23 - 00000000 ____D C:\Users\Hasi\Documents\Outlook-Dateien
2016-05-22 22:48 - 2014-08-09 21:29 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-05-22 22:45 - 2014-08-09 21:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware
2016-05-22 22:45 - 2014-08-09 21:29 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware
2016-05-22 22:44 - 2015-06-17 05:34 - 00001232 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2389217616-984847240-1873245757-1002UA.job
2016-05-22 22:23 - 2014-01-20 11:29 - 00000000 ____D C:\Users\Hasi\AppData\Local\VirtualStore
2016-05-22 21:44 - 2014-01-11 12:16 - 01780340 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-22 21:44 - 2013-08-23 01:24 - 00765378 _____ C:\Windows\system32\perfh007.dat
2016-05-22 21:44 - 2013-08-23 01:24 - 00159696 _____ C:\Windows\system32\perfc007.dat
2016-05-22 21:44 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-05-22 21:34 - 2014-01-20 11:46 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2016-05-22 21:21 - 2014-01-21 14:59 - 00000000 _____ C:\Windows\Path.idx
2016-05-22 21:17 - 2014-05-11 13:20 - 00000000 ___RD C:\Users\Hasi\Dropbox
2016-05-22 21:16 - 2014-01-21 14:54 - 01048576 _____ C:\Windows\PE_Rom.dll
2016-05-22 21:15 - 2014-01-22 23:45 - 00000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2016-05-22 10:44 - 2015-06-17 05:34 - 00001180 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2389217616-984847240-1873245757-1002Core.job
2016-05-22 05:25 - 2014-01-20 11:52 - 00000000 ____D C:\Users\Hasi\AppData\Local\Adobe
2016-05-21 19:45 - 2014-01-21 23:06 - 00000000 ____D C:\Users\Hasi\AppData\Roaming\vlc
2016-05-21 17:41 - 2014-01-11 12:22 - 00000000 ____D C:\ProgramData\NVIDIA
2016-05-21 17:41 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-20 19:11 - 2014-04-30 17:18 - 00007680 _____ C:\Users\Hasi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-05-19 14:34 - 2014-04-24 08:11 - 00001384 _____ C:\Windows\MB.idx
2016-05-14 17:17 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-05-13 23:31 - 2015-04-20 22:10 - 00000000 ____D C:\Windows\system32\appraiser
2016-05-13 05:30 - 2015-05-15 10:14 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-05-12 19:41 - 2014-05-11 13:19 - 00000000 ____D C:\Users\Hasi\AppData\Roaming\Dropbox
2016-05-12 15:40 - 2015-10-08 16:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-05-12 05:39 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-05-11 23:21 - 2013-08-22 16:44 - 05234576 _____ C:\Windows\system32\FNTCACHE.DAT
2016-05-11 23:21 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-05-11 22:27 - 2014-01-22 23:45 - 00000000 ____D C:\Windows\system32\MRT
2016-05-11 22:27 - 2013-08-23 01:26 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-11 22:21 - 2014-01-22 23:45 - 139319312 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-05-11 22:08 - 2014-12-10 22:52 - 00829944 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-05-11 22:08 - 2014-12-10 22:52 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-07 16:23 - 2016-01-15 11:44 - 00177488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-05-05 19:44 - 2014-01-20 18:36 - 00000000 ____D C:\Users\Hasi\AppData\Local\ElevatedDiagnostics
2016-05-05 19:44 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
2016-04-27 05:50 - 2014-09-01 18:16 - 00000000 ____D C:\ProgramData\Package Cache
2016-04-27 05:49 - 2016-03-08 18:54 - 00003554 _____ C:\Windows\System32\Tasks\GarminUpdaterTask
2016-04-27 05:49 - 2016-03-08 18:54 - 00000000 ____D C:\Program Files (x86)\Garmin
2016-04-23 12:50 - 2015-09-02 10:53 - 00000000 ____D C:\Users\Hasi\.oracle_jre_usage
2016-04-23 12:50 - 2014-10-16 13:26 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-04-23 12:50 - 2014-10-16 13:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-23 12:50 - 2014-01-21 23:49 - 00000000 ____D C:\ProgramData\Oracle
2016-04-23 12:50 - 2014-01-21 14:47 - 00000000 ____D C:\Program Files (x86)\Java

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-02-01 16:25 - 2015-07-31 19:54 - 0000132 _____ () C:\Users\Hasi\AppData\Roaming\Adobe GIF Format CS5 Prefs
2014-10-14 11:27 - 2014-10-15 10:18 - 0099384 _____ () C:\Users\Hasi\AppData\Roaming\inst.exe
2014-10-14 11:27 - 2014-10-15 10:18 - 0007859 _____ () C:\Users\Hasi\AppData\Roaming\pcouffin.cat
2014-10-14 11:27 - 2014-10-15 10:18 - 0001167 _____ () C:\Users\Hasi\AppData\Roaming\pcouffin.inf
2014-10-14 11:28 - 2014-10-15 10:18 - 0000055 _____ () C:\Users\Hasi\AppData\Roaming\pcouffin.log
2014-10-14 11:27 - 2014-10-15 10:18 - 0082816 _____ (VSO Software) C:\Users\Hasi\AppData\Roaming\pcouffin.sys
2014-04-11 20:33 - 2014-04-11 20:33 - 0551424 ____T (MultiMedia Soft) C:\Users\Hasi\AppData\Roaming\Microsoft\engine_ag.dll
2015-01-05 19:02 - 2015-01-05 19:02 - 181974983 _____ () C:\Users\Hasi\AppData\Local\ACCCx2_8_1_451.zip.aamdownload
2015-01-05 19:02 - 2015-01-05 19:02 - 0002174 _____ () C:\Users\Hasi\AppData\Local\ACCCx2_8_1_451.zip.aamdownload.aamd
2014-04-30 17:18 - 2016-05-20 19:11 - 0007680 _____ () C:\Users\Hasi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-28 22:22 - 2015-11-28 22:22 - 29380776 _____ (Sony Mobile Communications ) C:\Users\Hasi\AppData\Local\pcc.exe
2014-01-11 12:20 - 2014-01-11 12:20 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Einige Dateien in TEMP:
====================
C:\Users\Hasi\AppData\Local\Temp\917b0b87-3358-4e79-93de-3dfc2fc99ed0.exe
C:\Users\Hasi\AppData\Local\Temp\AdobeApplicationManager.exe
C:\Users\Hasi\AppData\Local\Temp\bassmod.dll
C:\Users\Hasi\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpsopd1f.dll
C:\Users\Hasi\AppData\Local\Temp\GUR2137.exe
C:\Users\Hasi\AppData\Local\Temp\ifgSFCWDuUQCLsWdpWuU.DLL
C:\Users\Hasi\AppData\Local\Temp\InstallPlugin.exe
C:\Users\Hasi\AppData\Local\Temp\jre-7u51-windows-i586-iftw.exe
C:\Users\Hasi\AppData\Local\Temp\jre-7u55-windows-i586-iftw.exe
C:\Users\Hasi\AppData\Local\Temp\jre-7u65-windows-i586-iftw.exe
C:\Users\Hasi\AppData\Local\Temp\jre-7u67-windows-i586-iftw.exe
C:\Users\Hasi\AppData\Local\Temp\jre-7u71-windows-i586-iftw.exe
C:\Users\Hasi\AppData\Local\Temp\jre-8u31-windows-au.exe
C:\Users\Hasi\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\Hasi\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\Hasi\AppData\Local\Temp\jre-8u66-windows-au.exe
C:\Users\Hasi\AppData\Local\Temp\jre-8u71-windows-au.exe
C:\Users\Hasi\AppData\Local\Temp\jre-8u73-windows-au.exe
C:\Users\Hasi\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Hasi\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\Hasi\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Hasi\AppData\Local\Temp\nvSCPAPI.dll
C:\Users\Hasi\AppData\Local\Temp\nvSCPAPI64.dll
C:\Users\Hasi\AppData\Local\Temp\nvStInst.exe
C:\Users\Hasi\AppData\Local\Temp\uninstall.exe


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2016-05-15 05:28

==================== Ende von FRST.txt ============================

Alt 22.05.2016, 22:40   #2
suppiluliuma
 
Unsichtbares Mobogenie - Standard

Addition.txt



FRST Additions Logfile:
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:22-05-2016 01
durchgeführt von Hasi (2016-05-22 23:15:37)
Gestartet von D:\Transfer
Windows 8.1 (X64) (2014-01-20 09:29:44)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2389217616-984847240-1873245757-500 - Administrator - Disabled)
Gast (S-1-5-21-2389217616-984847240-1873245757-501 - Limited - Disabled)
Hasi (S-1-5-21-2389217616-984847240-1873245757-1002 - Administrator - Enabled) => C:\Users\Hasi

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Kaspersky Internet Security (Enabled - Up to date) {B41C7598-35F6-4D89-7D0E-7ADE69B4047B}
AS: Kaspersky Internet Security (Enabled - Up to date) {0F7D947C-13CC-4207-47BE-41AC12334EC6}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {8C27F4BD-7F99-4CD1-5651-D3EB97674300}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

µTorrent (HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\uTorrent) (Version: 3.3.2.30416 - BitTorrent Inc.)
Acronis True Image 2014 (HKLM-x32\...\{3ECDD663-5AF8-489B-9E3C-561F33A271BD}Visible) (Version: 17.0.6673 - Acronis)
Acronis True Image 2014 (x32 Version: 17.0.6673 - Acronis) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.016.20041 - Adobe Systems Incorporated)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 1.4.0 - Adobe Systems Incorporated)
Adobe Creative Suite 5.5 Master Collection (HKLM-x32\...\{D57FC112-312E-4D70-860F-2DB8FB6858F0}) (Version: 5.5 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.6 64-bit (HKLM\...\{D19E99C2-6D9D-4075-B446-B4387EAF70A5}) (Version: 5.6.0 - Adobe Systems Incorporated)
Adobe Story (HKLM-x32\...\com.adobe.AdobeStory.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.0.571 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1) (Version: 2.0 Build 230 - Adobe Systems Incorporated.)
AI Suite 3 (HKLM-x32\...\{D46DA5F0-25AD-4B77-98DA-6DD6AF39FBD9}) (Version: 1.00.56 - ASUSTeK Computer Inc.)
AllDup 3.4.24 (HKLM-x32\...\AllDup_is1) (Version: 3.4.24 - Michael Thummerer Software Design)
Amazon Kindle (HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Amazon Kindle) (Version: 1.13.1.42052 - Amazon)
Amazon Music (HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Amazon Amazon Music) (Version: 3.1.0.570 - Amazon Services LLC)
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (HKLM-x32\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{787136D2-F0F8-4625-AA3F-72D7795AC842}) (Version: 7.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arles Image Web Page Creator 7.4.3 (HKLM-x32\...\Arles Image Web Page Creator_is1) (Version: 7.4.3 - Digital Dutch)
Atomic Clock Sync (HKLM-x32\...\Atomic Clock Sync) (Version:  - )
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
calibre (HKLM-x32\...\{342208BD-60ED-4A8D-B14B-1671B5ED2858}) (Version: 1.22.0 - Kovid Goyal)
Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.4.1.0 - Canon Inc.)
Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - Canon Inc.)
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.3.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MG7100 series Benutzerregistrierung (HKLM-x32\...\Canon MG7100 series Benutzerregistrierung) (Version:  - *Canon Inc.)
Canon MG7100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG7100_series) (Version: 1.01 - Canon Inc.)
Canon MG7100 series On-screen Manual (HKLM-x32\...\Canon MG7100 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 3.2.0 - Canon Inc.)
Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 3.2.0 - Canon Inc.)
Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.2.1 - Canon Inc.)
Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.6.0 - Canon Inc.)
Classic Shell (HKLM\...\{98BB5224-BC5D-4028-9D20-536C1C263AA9}) (Version: 4.0.2 - IvoSoft)
Corel Graphics - Windows Shell Extension (HKLM\...\_{2CDF0D0A-C58C-4136-9978-F029B2723B0D}) (Version: 16.4.0.1280 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 16.4.1280 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 16.4.1280 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Capture (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Common (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Connect (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Custom Data (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - DE (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Draw (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Filters (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - FontNav (x64) (Version: 16.2 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Photozoom Plugin (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Redist (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Setup Files (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VBA (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VSTA (x64) (Version: 16.6 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Writing Tools (x64) (Version: 16.6 -  Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 (64-Bit) (HKLM\...\_{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.4.0.1280 - Corel Corporation)
CorelDRAW Graphics Suite X6 (x64) (Version: 16.6 - Corel Corporation) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
Damage (MAGIX) Version 2.5 (HKLM-x32\...\{03D0FE1B-9788-418C-A95E-DA7D4376F82C}_is1) (Version: 2.5 - Digieffects)
Dropbox (HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Dropbox) (Version: 3.20.1 - Dropbox, Inc.)
EaseUS Partition Master 10.8 Trial Edition (HKLM-x32\...\EaseUS Partition Master Trial Edition_is1) (Version:  - EaseUS)
EaseUS Todo Backup Workstation 8.8 (HKLM-x32\...\EaseUS Todo Backup_is1) (Version: 8.8 - CHENGDU YIWO Tech Development Co., Ltd)
Elevated Installer (x32 Version: 4.1.19.0 - Garmin Ltd or its subsidiaries) Hidden
Epubor Ultimate (HKLM-x32\...\Epubor Ultimate) (Version: 3.0.5.1 - Epubor Inc.)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
FontExpert 2011 Font Manager (HKLM-x32\...\FontExpert 2011) (Version: 11.0.0.1 - Proxima Software)
Garmin Express (HKLM-x32\...\{2639b4f0-83b4-4f3d-942f-e4ba22a40b9b}) (Version: 4.1.19.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 4.1.19.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 4.1.19.0 - Garmin Ltd or its subsidiaries) Hidden
Hard Disk Sentinel PRO (HKLM-x32\...\Hard Disk Sentinel_is1) (Version:  - HDS)
Hotfix für Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (HKLM-x32\...\{8E87B944-4815-3C5E-947F-5035C9F64362}.KB947789) (Version: 1 - Microsoft Corporation)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Network Connections 18.7.28.0 (HKLM\...\PROSetDX) (Version: 18.7.28.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3345 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.9.0.1001 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
iTunes (HKLM\...\{B8BA155B-1E75-405F-9CB4-8A99615D09DC}) (Version: 11.1.5.5 - Apple Inc.)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{653C1B5A-3287-47B1-8613-0745D4E771C4}) (Version: 15.0.0.463 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 15.0.0.463 - Kaspersky Lab) Hidden
KOMPASS Digital Map (HKLM-x32\...\KOMPASS Digital Map_is1) (Version:  - KOMPASS Karten GmbH)
KOMPASS Digital Map Österreich (HKLM-x32\...\KOMPASS Digital Map Österreich_is1) (Version:  - KOMPASS Karten GmbH)
KOMPASS Digital Map Software 3.8.0.0 (HKLM-x32\...\KOMPASS Digital Map Software_is1) (Version:  - KOMPASS Karten GmbH)
Licensing Service (03000201) (x32 Version: 03.00.02.15 - Protexis Inc.) Hidden
MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{49209082-E4F9-410D-B74D-E6506977F30B}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{85061988-E889-4A37-9CB7-4F695AC35544}) (Version: 13.0.2.8 - MAGIX AG)
MAGIX Video deluxe 2014 Plus (Version: 13.0.2.8 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)
MediaMonkey AAC Plug-in 1.0 (HKLM-x32\...\MediaMonkey_AAC_Plugin_is1) (Version: 1.0 - Ventis Media Inc.)
Microsoft Access database engine 2010 (German) (HKLM-x32\...\{90140000-00D1-0407-0000-0000000FF1CE}) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft AutoRoute 2013 (HKLM-x32\...\{C82185E8-C27B-4EF4-2013-3333BC2C2B6D}) (Version: 19.0.21.0500 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Streets & Trips 2013 (HKLM-x32\...\{C82185E8-C27B-4EF4-2013-4444BC2C2B6D}) (Version: 19.0.18.1100 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - DEU (HKLM-x32\...\{8E87B944-4815-3C5E-947F-5035C9F64362}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - DEU (HKLM-x32\...\{76DAEC83-AF7B-333C-8A53-83D7C7D39199}) (Version: 9.0.30729 - Microsoft Corporation)
Mobi File Reader (HKLM-x32\...\{FFA8548C-9BC2-427F-9F81-E64F620A30CB}_is1) (Version:  - mobifilereader.com)
Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.14.00.03 - Huawei Technologies Co.,Ltd)
Mozilla Firefox 38.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.1 (x86 de)) (Version: 38.0.1 - Mozilla)
Mozilla Firefox 42.0 (x86 de) (HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\Mozilla Firefox 42.0 (x86 de)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
Mozilla Thunderbird 38.7.2 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.7.2 (x86 de)) (Version: 38.7.2 - Mozilla)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MyDriveConnect 4.0.7.2442 (HKLM-x32\...\MyDriveConnect) (Version: 4.0.7.2442 - TomTom)
Nero 2014 (HKLM-x32\...\{B7D4C429-9CAB-4B97-A879-AFD1F922DD27}) (Version: 15.0.06800 - Nero AG)
Nero 2014 Content Pack (HKLM-x32\...\{204A26F0-01B8-4656-8607-5CCEDE820BC2}) (Version: 15.0.00200 - Nero AG)
Nero Info (HKLM-x32\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 15.1.0030 - Nero AG)
Nero Prerequisite Installer 3.0 (HKLM-x32\...\{E9ED7BE7-B6E6-46FA-AE9E-81E9FD1E0152}) (Version: 15.0.00400 - Nero AG)
NVIDIA 3D Vision Controller-Treiber 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 344.11 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 344.11 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.2 - NVIDIA Corporation)
NVIDIA Grafiktreiber 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 344.11 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.32.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.32.1 - NVIDIA Corporation)
NVIDIA Miracast Virtueller Ton 344.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 344.11 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
O&O Defrag Professional (HKLM\...\{F17BA1CA-0FAF-40BF-A5FD-BF1B727D855E}) (Version: 17.0.490 - O&O Software GmbH)
OLYMPUS Digital Camera Updater (HKLM-x32\...\{2A9E8F56-C31B-4DBB-BFE2-0F4EC8192355}) (Version: 1.0.3 - OLYMPUS IMAGING CORP.)
OLYMPUS Viewer 3 (HKLM-x32\...\{B8737126-7348-4F84-93BF-D4A82E653CA7}) (Version: 1.1.0 - OLYMPUS IMAGING CORP.)
PDF Settings CS5 (x32 Version: 10.0 - Adobe Systems Incorporated) Hidden
Prerequisite installer (x32 Version: 15.0.0007 - Nero AG) Hidden
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
QuickTime (HKLM-x32\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
RouteNavigator Europa (HKLM-x32\...\RouteNavigator Europa) (Version:  - TVG Telefonbuch- und Verzeichnisverlag GmbH & Co. KG)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.3.0 - Samsung Electronics)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
SHIELD Streaming (Version: 3.1.200 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 16.13.42 - NVIDIA Corporation) Hidden
Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Streaming Audio Recorder V3.3.4 (HKLM-x32\...\{B6D9D06B-4B4D-4B41-B963-C056B627F704}_is1) (Version: 3.3.4 - Apowersoft)
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version:  - )
TomTom HOME (HKLM-x32\...\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}) (Version: 2.9.8 - Ihr Firmenname)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.01 - Ghisler Software GmbH)
Vasco da Gama 7 HDPro (HKLM-x32\...\{5C3CDFD0-45B3-48D0-941F-E3F76F343765}) (Version: 7.00.0000 - MotionStudios)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player 2.1.2 (HKLM\...\VLC media player) (Version: 2.1.2 - VideoLAN)
VueScan x32 (HKLM-x32\...\VueScan x32) (Version:  - )
VueScan x64 (HKLM\...\VueScan x64) (Version:  - )
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) (HKLM\...\2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB) (Version: 09/09/2009 1.0.0.0 - OLYMPUS IMAGING CORP.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB  (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinImage (HKLM\...\WinImage) (Version:  - )
WinRAR 5.00 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2389217616-984847240-1873245757-1002_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Hasi\AppData\Roaming\Dropbox\bin\DropboxExt64.34.dll (Dropbox, Inc.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {082A9430-5265-4E2F-8FF7-3EF8522F8497} - System32\Tasks\{B30AE56D-C3C7-413D-B318-B0419E7DE37F} => pcalua.exe -a "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\core\PDApp.exe" -c --appletID="DWA_UI" --appletVersion="2.0" --mode="Uninstall" --mediaSignature="{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}"
Task: {14CFC48F-FC01-4F32-B5FE-075A2048B146} - System32\Tasks\ASUS\ASUS WiFi GO! Server Execute => C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\WiFi GO! Server.exe [2013-08-26] (ASUSTeK Computer Inc.)
Task: {1EE5B7E8-E2B2-46F5-8135-E7B2D9CCD6CC} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2389217616-984847240-1873245757-1002Core => C:\Users\Hasi\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-17] (Dropbox, Inc.)
Task: {2B7AEDCF-C7C0-4FB9-AF1C-95E76EE225E3} - System32\Tasks\ASUS\ASUS DIPAwayMode => C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe [2013-08-08] ()
Task: {42A0BDF3-0162-4A7C-BF19-1406E78F77E1} - System32\Tasks\ASUS\Ez Update => C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe [2013-07-24] ()
Task: {487DB659-BAD2-4F2A-B7C4-7E09BE59D6BF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {7167CCF7-7F5E-454B-B5C1-1E581827367E} - System32\Tasks\ASUS\USB 3.0 Boost Service => C:\Program Files (x86)\ASUS\AI Suite III\USB 3.0 Boost\U3BoostSvr.exe [2013-07-24] (ASUSTeK Computer Inc.)
Task: {888C2049-FC80-4376-8639-3A726F47C06B} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2389217616-984847240-1873245757-1002UA => C:\Users\Hasi\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-17] (Dropbox, Inc.)
Task: {927B1F56-E6FE-425D-BE22-6420AB84D1F5} - System32\Tasks\AdobeAAMUpdater-1.0-PUPPI-Hasi => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-02-27] (Adobe Systems Incorporated)
Task: {AA528A34-641E-40A2-9710-E1439FB015C4} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [2016-04-08] ()
Task: {CEEE431A-931F-4C30-ADA3-CABC8125C8B0} - System32\Tasks\ASUS\ASUS Network iControl Help Execute => C:\Program Files (x86)\ASUS\AI Suite III\Network iControl\NetSvcHelp\NetSvcHelpEntry.exe [2013-02-07] (ASUSTeK Computer Inc.)
Task: {DECB43D6-D294-4B28-A0CC-FF1F41402D40} - System32\Tasks\ASUS\ASUS AISuiteIII => C:\Program Files (x86)\ASUS\AI Suite III\AISuite3.exe [2013-08-07] (ASUSTeK Computer Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2389217616-984847240-1873245757-1002Core.job => C:\Users\Hasi\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2389217616-984847240-1873245757-1002UA.job => C:\Users\Hasi\AppData\Local\Dropbox\Update\DropboxUpdate.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-01-11 12:34 - 2013-05-07 09:45 - 00936728 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\atkexComSvc.exe
2014-02-02 20:15 - 2012-03-12 11:05 - 00232288 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe
2015-05-11 09:12 - 2015-05-11 09:12 - 00248736 _____ () C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
2014-01-11 12:22 - 2014-09-13 23:53 - 00116880 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-10-26 15:40 - 2015-09-24 02:08 - 00245800 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
2014-01-21 14:46 - 2013-07-24 11:16 - 01425208 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzUpdt.exe
2014-01-21 14:46 - 2013-08-08 15:34 - 01225528 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DipAwayMode.exe
2013-10-01 11:32 - 2013-10-01 11:32 - 02818216 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2013-10-07 15:52 - 2013-10-07 15:52 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2015-11-28 22:22 - 2015-06-10 11:13 - 00113024 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2014-02-12 20:58 - 2014-02-12 20:58 - 00073544 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\zlib1.dll
2014-02-12 20:58 - 2014-02-12 20:58 - 01044808 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2014-01-11 12:34 - 2016-05-21 17:41 - 00029184 _____ () C:\Program Files (x86)\ASUS\AXSP\1.01.02\PEbiosinterface32.dll
2014-01-11 12:34 - 2013-05-07 09:45 - 00104448 ____N () C:\Program Files (x86)\ASUS\AXSP\1.01.02\ATKEX.dll
2014-03-06 15:00 - 2014-03-06 15:00 - 01269952 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\kpcengine.2.3.dll
2015-10-26 15:40 - 2015-09-24 01:58 - 00080936 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CodeLog.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00017448 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CompressFile.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00088616 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBGetRemoteNetInfo.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 01296424 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\libxml2.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00060968 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\zlib1.dll
2015-10-26 15:40 - 2015-08-01 16:10 - 00022568 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CmcTbProxy.dll
2015-10-26 15:40 - 2015-08-01 16:10 - 00186920 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCPipeCenter.dll
2015-10-26 15:40 - 2015-08-01 16:10 - 00165416 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCAdapt.dll
2015-10-26 15:40 - 2015-08-01 16:10 - 00058408 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBInfo.dll
2015-10-26 15:40 - 2015-08-01 16:10 - 00015912 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CMCNetTokenProxy.dll
2015-10-26 15:40 - 2015-06-23 01:58 - 00108072 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActivationOnline.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00077864 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\logsys.dll
2015-10-26 15:40 - 2015-09-24 01:58 - 00030760 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DiskSearchImg.dll
2015-10-26 15:40 - 2015-09-30 15:31 - 00115752 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFileHlp.dll
2015-10-26 15:40 - 2015-09-24 01:58 - 00068136 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\MountImg.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00158248 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ImgFile.dll
2015-10-26 15:40 - 2015-03-14 12:54 - 00281128 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DsImgFile.dll
2015-10-26 15:40 - 2015-09-24 01:58 - 00072232 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CheckImg.dll
2015-10-26 15:40 - 2015-09-24 01:58 - 00139816 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\vhdvmdk.dll
2015-10-26 15:40 - 2015-06-23 01:58 - 00037416 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\BootDriver.dll
2015-10-26 15:40 - 2015-09-24 01:58 - 00760360 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ExImage.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00193064 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBackupSize.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00407080 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidImage.dll
2015-10-26 15:40 - 2015-06-23 01:58 - 00148008 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumDisk.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00076840 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FatLib.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00207912 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSLib.dll
2015-10-26 15:40 - 2015-06-23 01:58 - 00024616 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\GetDriverInfo.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00020520 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CorrectMbr.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00032296 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EnumTapeDevice.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00034856 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbTapeBrowse.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00064040 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\RegLib.dll
2015-10-26 15:40 - 2015-08-01 16:10 - 00025128 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AccountManager.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00115752 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NasOperator.dll
2015-10-26 15:40 - 2015-09-24 01:58 - 00201768 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\EmailBrowser.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00077864 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\CloudOperator.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00037928 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\ActiveOnline.dll
2015-10-26 15:40 - 2015-06-23 01:58 - 00136232 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\VMConfig.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00020008 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\AndroidDeviceManager.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00043048 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbDataSwap.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00353832 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceManager.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00027176 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\DeviceAdapter.dll
2015-10-26 15:40 - 2015-09-24 01:58 - 00138792 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Device.dll
2015-10-26 15:40 - 2015-09-24 01:58 - 00146984 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Partition.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00050216 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FileSystemAnalyser.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00061992 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\FATFileSystemAnalyser.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00089640 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\Common.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00056360 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\NTFSFileSystemAnalyser.dll
2014-01-11 12:35 - 2013-09-03 17:52 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2014-02-04 19:25 - 2014-02-04 19:25 - 00028992 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2014-02-04 19:28 - 2014-02-04 19:28 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2015-10-26 15:40 - 2014-12-15 01:53 - 00223784 _____ () C:\Program Files (x86)\EaseUS\Todo Backup\bin\SmartBackup.dll
2014-01-21 14:46 - 2013-07-31 21:05 - 05773588 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EzULIB.dll
2014-01-21 14:46 - 2010-06-21 16:21 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\ImageHelper.dll
2014-01-21 14:46 - 2013-08-07 20:11 - 00147456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AssistFunc.dll
2014-01-21 14:46 - 2013-03-13 18:12 - 00870912 _____ () C:\Program Files (x86)\ASUS\AI Suite III\AI Charger+\AIChargerPlus.dll
2014-01-21 14:46 - 2013-08-08 15:41 - 02747392 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\dip4.dll
2014-01-21 14:46 - 2013-08-29 16:59 - 01138176 _____ () C:\Program Files (x86)\ASUS\AI Suite III\EZ Update\EasyUpdt.dll
2014-01-21 14:47 - 2013-06-24 16:59 - 01173504 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Network iControl\Network iControl.dll
2014-01-21 14:47 - 2013-06-24 18:48 - 02055168 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\WiFiGO.dll
2014-01-21 14:45 - 2013-06-04 11:41 - 00662016 ____R () C:\Program Files (x86)\ASUS\AAHM\1.00.22\aaHMLib.dll
2014-01-21 14:46 - 2013-08-07 20:11 - 00053248 _____ () C:\Program Files (x86)\ASUS\AI Suite III\cpuutil.dll
2014-01-21 14:46 - 2013-08-08 15:35 - 00010240 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\IccHelper.dll
2014-01-21 14:48 - 2012-01-19 10:39 - 00028672 _____ () C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\PEInfo.dll
2014-01-21 14:46 - 2013-08-07 20:11 - 00208896 _____ () C:\Program Files (x86)\ASUS\AI Suite III\ImageHelper.dll
2014-01-21 14:46 - 2013-08-07 20:11 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite III\pngio.dll
2014-01-21 14:48 - 2010-09-23 12:51 - 00114688 _____ () C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\AsIdxParser.dll
2014-01-21 14:48 - 2010-02-25 15:01 - 00139264 _____ () C:\Program Files (x86)\ASUS\AI Suite III\USB BIOS Flashback\Aszip.dll
2014-01-21 14:47 - 2012-05-02 19:04 - 00233472 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\AudioProjection.dll
2014-01-21 14:47 - 2013-08-05 12:14 - 00176128 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\DLCapPP.dll
2014-01-21 14:47 - 2010-12-14 18:46 - 00067584 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\CoreAudioCap.dll
2014-01-21 14:47 - 2013-06-11 13:06 - 00425984 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\awiscale.DLL
2014-01-21 14:47 - 2010-10-29 19:58 - 00221184 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\JpegCD.DLL
2014-01-21 14:47 - 2013-08-06 21:04 - 02502656 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\xH264E.DLL
2014-01-21 14:47 - 2013-01-31 23:59 - 00515072 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\WiFiGO_HelpWin8.dll
2014-01-21 14:47 - 2012-01-12 17:44 - 00475136 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\WiFiGO_HookKey.dll
2014-01-21 14:47 - 2013-06-13 18:37 - 00156160 _____ () C:\Program Files (x86)\InstallShield Installation Information\{104BE4B8-D1DB-4170-977B-364960893DC8}\CloudAPI\CloudAPI.dll
2014-01-21 14:47 - 2013-03-21 20:38 - 00716800 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\WiMoveHelp.dll
2014-01-21 14:47 - 2012-04-25 15:47 - 00659456 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\PhoneCtrlAPI.dll
2014-01-21 14:46 - 2013-08-08 15:34 - 00685056 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4DIGIPowerControlAction.dll
2014-01-21 14:46 - 2013-08-08 15:34 - 00825344 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4EpuAction.dll
2014-01-21 14:46 - 2013-08-08 15:34 - 00765952 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4FanAction.dll
2014-01-21 14:46 - 2013-08-08 15:34 - 00776704 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\DIP4TurboVEVOAction.dll
2014-01-21 14:46 - 2013-08-08 15:34 - 00904704 _____ () C:\Program Files (x86)\ASUS\AI Suite III\DIP4\DIPAwayMode\DIPDLL\UsbPowerManager.dll
2015-11-28 22:22 - 2012-04-30 11:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2015-11-28 22:22 - 2015-10-20 18:44 - 00242176 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2015-12-11 07:04 - 2016-04-19 21:47 - 00034768 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2016-05-12 19:41 - 2016-04-19 21:48 - 00019408 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2016-05-12 19:41 - 2016-04-19 21:47 - 00116688 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2015-12-11 07:04 - 2016-04-19 21:47 - 00093640 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2015-12-11 07:04 - 2016-04-19 21:47 - 00018376 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\select.pyd
2015-12-11 07:04 - 2016-05-07 00:35 - 00019760 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00105928 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32api.pyd
2016-05-12 19:41 - 2016-04-19 21:47 - 00392144 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2015-12-11 07:04 - 2016-05-07 00:35 - 00381752 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2015-12-11 07:04 - 2016-04-19 21:47 - 00692688 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 00020816 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2015-12-11 07:04 - 2016-04-19 21:48 - 00121296 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 01682760 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 00020808 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2015-12-11 07:04 - 2016-05-07 00:35 - 00021840 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 00038696 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\fastpath.pyd
2016-05-12 19:41 - 2016-04-19 21:49 - 00020936 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00024528 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32event.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00114640 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32security.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00124880 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32file.pyd
2016-02-12 16:45 - 2016-05-07 00:35 - 00021832 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00024016 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00175560 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32gui.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00030160 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00043472 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32process.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00028616 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32ts.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00048592 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32service.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 00026456 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00057808 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00024016 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32profile.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 00117056 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 00052024 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2015-12-11 07:04 - 2016-04-19 21:47 - 00134608 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\_elementtree.pyd
2016-05-12 19:41 - 2016-04-19 21:47 - 00134088 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2016-05-12 19:41 - 2016-04-19 21:48 - 00240584 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\jpegtran.pyd
2016-02-12 16:45 - 2016-05-07 00:35 - 00020800 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-02-12 16:45 - 2016-05-07 00:35 - 00021824 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\winffi.kernel32._winffi_kernel32.pyd
2016-02-12 16:45 - 2016-05-07 00:35 - 00019776 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\winffi.winerror._winffi_winerror.pyd
2016-02-12 16:45 - 2016-05-07 00:35 - 00020800 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\winffi.wininet._winffi_wininet.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 00024392 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2016-05-12 19:41 - 2016-04-19 21:50 - 00036296 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\librsync.dll
2016-05-12 19:41 - 2016-05-07 00:34 - 00020280 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2015-12-11 07:04 - 2016-05-07 00:35 - 00023376 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00350152 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2016-02-12 16:45 - 2016-05-07 00:35 - 00022352 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 00084280 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2016-05-12 19:41 - 2016-05-07 00:34 - 01826096 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2015-12-11 07:04 - 2016-04-19 21:48 - 00083912 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\sip.pyd
2016-05-12 19:41 - 2016-05-07 00:35 - 03928880 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 01971504 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 00531248 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2016-05-12 19:41 - 2016-05-07 00:35 - 00132912 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2016-05-12 19:41 - 2016-05-07 00:35 - 00223544 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2016-05-12 19:41 - 2016-05-07 00:34 - 00207672 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2015-12-11 07:04 - 2016-04-19 21:49 - 00060880 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\win32print.pyd
2015-12-11 07:04 - 2016-05-07 00:35 - 00024904 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2016-05-12 19:41 - 2016-05-07 00:35 - 00546096 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\PyQt5.QtQuick.pyd
2016-05-12 19:41 - 2016-05-07 00:35 - 00357680 _____ () C:\Users\Hasi\AppData\Roaming\Dropbox\bin\PyQt5.QtQml.pyd
2015-09-24 17:41 - 2015-09-24 17:41 - 00019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\locale\de_de\acrotray.deu
2014-01-21 14:47 - 2012-02-06 22:08 - 00253952 _____ () C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\WiFile\pngio.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2015-09-24 17:40 - 2015-09-24 17:40 - 02897304 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\PDFMaker\Common\AdobePDFMakerX.dll
2015-09-24 17:41 - 2015-09-24 17:41 - 01446400 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Locale\de_DE\PDFMaker\AdobePDFMakerX.DEU
2015-11-11 03:42 - 2015-11-11 03:42 - 01045672 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll
2014-01-20 22:50 - 2015-10-23 09:35 - 10619904 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_exlang32.deu
2014-01-20 22:59 - 2015-10-23 09:35 - 01319424 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_AcroForm.DEU
2014-01-24 16:40 - 2015-10-23 09:35 - 00147456 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_WebPDF.DEU
2014-01-24 16:40 - 2015-10-23 09:35 - 00082432 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_HTML2PDF.DEU
2014-01-20 22:59 - 2015-10-23 09:35 - 03066880 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_Annots.DEU
2014-01-24 16:40 - 2015-10-23 09:35 - 00012800 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_PDDom.DEU
2014-01-24 16:40 - 2015-10-23 09:35 - 00075264 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_Accessibility.DEU
2014-01-20 22:59 - 2015-10-23 09:35 - 00316416 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_DigSig.DEU
2014-01-20 22:59 - 2015-10-23 09:35 - 00100352 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_EScript.DEU
2014-01-20 22:59 - 2015-10-23 09:35 - 01180160 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_PPKLite.DEU
2014-01-24 16:40 - 2015-10-23 09:35 - 00045568 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_weblink.DEU
2015-09-24 17:41 - 2015-09-24 17:41 - 00305544 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\sqlite.dll
2014-01-20 22:50 - 2015-10-26 15:26 - 00014336 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_Updater.DEU
2014-05-22 16:12 - 2016-03-07 19:38 - 00025600 _____ () C:\Users\Hasi\AppData\Local\Adobe\Acrobat\10.0\Cache\AcLang_SaveAsRTF.DEU
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2015-09-24 17:41 - 2015-09-24 17:41 - 00123904 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Locale\de_de\AcroIEFavClient.DEU

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Hasi\AppData\Local\qQD91CyL8fBVP1L:kpxopWzhkWU7EvSFsmcf0Uj5 [2184]
AlternateDataStreams: C:\Users\Hasi\AppData\Local\Temporary Internet Files:oPWciatMIEyODyIdA3p [2164]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2014-01-20 18:13 - 00002383 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 activate.adobe.com      
127.0.0.1 practivate.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 www.adobeereg.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 192.150.18.108
127.0.0.1 activate.adobe.com:443
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 adobeereg.com
127.0.0.1 www.adobeereg.com
127.0.0.1 activate.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 192.150.18.108
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-1.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 adobe-dns-4.adobe.com
127.0.0.1 adobe-dns-5.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 ereg.adobe.com

Da befinden sich 20 zusätzliche Einträge.


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2389217616-984847240-1873245757-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Hasi\Pictures\plitvice.jpg
DNS Servers: 192.168.0.1 - 192.168.0.2
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "OV3_Monitor"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "mobilegeni daemon"
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\StartupApproved\Run: => "OV3_Monitor"
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\StartupApproved\Run: => "Amazon Music"
HKU\S-1-5-21-2389217616-984847240-1873245757-1002\...\StartupApproved\Run: => "Skype"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{1CFB7444-128C-4E75-A0CC-4EC607E2C90C}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{9158E7B9-DA90-46B1-AD24-FAE0BC8ECFF8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{84BF10E9-E9FD-47EC-A1F4-99A6185EAB21}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4870BC14-1BCD-4F7A-A6BB-DF8904AA5943}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6B195F06-5D02-42DE-9B08-E6EC9245CFCA}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{8D81ED00-E738-4585-AAE2-9B50CA4F6173}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{86F9C9D0-B1F3-4CFA-8F60-492E6496F271}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{468219E1-ECF7-4ABA-B333-C7B716EA7E1F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{A7D921F4-C1FA-4E1F-A2EB-2328F25A4ADB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{FF3916D7-35D3-449D-941A-8D267F89A124}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{8FC0F005-CA76-407D-923F-59E4AFC31EBF}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{5EACBCB7-665E-453F-B787-DEE9709CC47F}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{EEB40BBD-B73D-4455-85BB-E570BC245530}] => (Allow) C:\Users\Hasi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E1C8007E-9AFB-4D50-BE61-A5871D81577F}] => (Allow) C:\Users\Hasi\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{801A80B0-1912-4C5F-9AEF-9955F76B6A8E}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.5\FlashBuilder.exe
FirewallRules: [{14570349-F6D7-44D7-B8D4-44B3902E8906}] => (Allow) C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.5\FlashBuilder.exe
FirewallRules: [{40A099D3-7ACF-4433-8512-D96B457DAC13}] => (Allow) LPort=7935
FirewallRules: [{B3A674A0-CD95-462C-A3E8-057DE3302EC6}] => (Allow) LPort=2869
FirewallRules: [{6BB79DAA-1DBE-4357-A5A9-27F6F14022DA}] => (Allow) LPort=1900
FirewallRules: [{8D9BF8E3-0A8F-4C7C-B394-074D6806E49B}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{BDC24AB4-D9D4-44CD-8363-818744AAD78D}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{297429BA-2AFC-4A9E-A8D4-6176FABBB87E}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{D242C098-4521-4A3A-A774-EE5EC9ADE754}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{89EA689C-DD62-4555-B489-47A79BC8C982}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9D9A9B56-3DE2-4231-A266-A7CCFD2FCA61}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{C0B26DB2-0F97-43ED-BF35-5272997E3A5D}] => (Allow) LPort=2869
FirewallRules: [{78476B04-A0EC-48D8-B4CC-5CAA41C9A31D}] => (Allow) LPort=1900
FirewallRules: [{4095978D-BE68-4FA0-86BA-20570B4E6120}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
FirewallRules: [{0FFA79A0-22F5-4E19-B6A6-63D391C00D9B}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
FirewallRules: [{3F46EE9E-60E4-4574-999C-4C79F59B6698}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{3BE4D4B2-3030-4EE4-8AE7-E4865AF0FB45}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{F6D9B0C7-3DF1-40EF-92F3-33D86F4FA808}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{CD3E60A3-3D7F-4CE3-9A61-03440F4A9BEC}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{64FF0C3C-6BE3-4D23-8BD0-EAD639C21E63}] => (Allow) C:\Program Files (x86)\iTunes\iTunes.exe
FirewallRules: [{143736BA-9F13-48C4-97B9-8AAF0C10945A}] => (Allow) C:\Users\Hasi\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{00F78F6C-0417-42E3-A4A5-4B05B5399EB0}] => (Allow) C:\Users\Hasi\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{58B84A8D-3424-4C8A-9364-2FDB784ABE8D}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{CDD332B1-9669-480B-A558-D71556250604}] => (Allow) C:\Program Files (x86)\Nero\Nero Blu-ray Player\Blu-rayPlayer.exe
FirewallRules: [{06CFD97A-985E-4D38-A21D-017A382A7C00}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [{5F9F9EF1-BF2F-48C6-A8FA-DD9E90F892DA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{D2A2258F-788F-4894-BCEF-4E26F7351B35}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{9A636BA1-4105-4CC7-9005-7298A4715E48}] => (Allow) C:\Users\Hasi\AppData\Local\Temp\nsv243D.tmp\CnetInstaller-76018225.exe
FirewallRules: [{4FB40C33-59CF-4BD7-A219-D62A73FDA4AE}] => (Allow) C:\Users\Hasi\AppData\Local\Temp\nsv243D.tmp\CnetInstaller-76018225.exe
FirewallRules: [{D52CE853-FCA6-45E2-A660-D3B4096CCDB4}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe
FirewallRules: [{237D829C-8306-4A02-9CE2-F01FD9A97EA1}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TbService.exe
FirewallRules: [{AA89ED3D-D29C-406F-A282-1092A4A22E28}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe
FirewallRules: [{9296454C-3A7E-4483-BFDA-B0134C608201}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TBConsoleUI.exe
FirewallRules: [{B04E643F-3369-4001-88EA-48619A01EE27}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{53BCA834-920D-4C66-B948-87D83272C241}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{C04E74DC-B38C-4C69-AF59-AD32718EBBC3}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{85BD453A-8B9C-4F48-9874-801455A7D619}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe
FirewallRules: [{1654F387-8D52-4E5B-8362-411002CB1EBF}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{9E4BD3FF-224C-4982-96C5-6D0B0E8A8044}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\AssistTools\WiFi GO! Server.exe
FirewallRules: [{6F0C05A0-5800-4002-B2E4-0FE7FE93F9AF}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\ASUSDMS.exe
FirewallRules: [{DAB67323-3B29-40C7-BB3F-8767CA8597EF}] => (Allow) C:\Program Files (x86)\ASUS\AI Suite III\Remote GO!\ASUSDMS.exe

==================== Wiederherstellungspunkte =========================

07-05-2016 16:24:19 Windows Update
11-05-2016 22:20:38 Windows Update
19-05-2016 05:34:24 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: pcouffin device ...
Description: pcouffin device ...
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (05/22/2016 09:16:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DipAwayMode.exe, Version: 0.0.0.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.18264, Zeitstempel: 0x56e1b34d
Ausnahmecode: 0x40010006
Fehleroffset: 0x00015b68
ID des fehlerhaften Prozesses: 0x1884
Startzeit der fehlerhaften Anwendung: 0xDipAwayMode.exe0
Pfad der fehlerhaften Anwendung: DipAwayMode.exe1
Pfad des fehlerhaften Moduls: DipAwayMode.exe2
Berichtskennung: DipAwayMode.exe3
Vollständiger Name des fehlerhaften Pakets: DipAwayMode.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: DipAwayMode.exe5

Error: (05/22/2016 03:45:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15500

Error: (05/22/2016 03:45:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15500

Error: (05/22/2016 03:45:05 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/22/2016 05:22:51 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DipAwayMode.exe, Version: 0.0.0.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.18264, Zeitstempel: 0x56e1b34d
Ausnahmecode: 0x40010006
Fehleroffset: 0x00015b68
ID des fehlerhaften Prozesses: 0x1e44
Startzeit der fehlerhaften Anwendung: 0xDipAwayMode.exe0
Pfad der fehlerhaften Anwendung: DipAwayMode.exe1
Pfad des fehlerhaften Moduls: DipAwayMode.exe2
Berichtskennung: DipAwayMode.exe3
Vollständiger Name des fehlerhaften Pakets: DipAwayMode.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: DipAwayMode.exe5

Error: (05/21/2016 09:16:20 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15485

Error: (05/21/2016 09:16:20 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15485

Error: (05/21/2016 09:16:20 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/21/2016 05:42:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: DipAwayMode.exe, Version: 0.0.0.0, Zeitstempel: 0x00000000
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 6.3.9600.18264, Zeitstempel: 0x56e1b34d
Ausnahmecode: 0x40010006
Fehleroffset: 0x00015b68
ID des fehlerhaften Prozesses: 0x1220
Startzeit der fehlerhaften Anwendung: 0xDipAwayMode.exe0
Pfad der fehlerhaften Anwendung: DipAwayMode.exe1
Pfad des fehlerhaften Moduls: DipAwayMode.exe2
Berichtskennung: DipAwayMode.exe3
Vollständiger Name des fehlerhaften Pakets: DipAwayMode.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: DipAwayMode.exe5

Error: (05/21/2016 09:06:29 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ClassicIE_64.exe, Version: 4.0.2.0, Zeitstempel: 0x5264799e
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000000000
ID des fehlerhaften Prozesses: 0x1c38
Startzeit der fehlerhaften Anwendung: 0xClassicIE_64.exe0
Pfad der fehlerhaften Anwendung: ClassicIE_64.exe1
Pfad des fehlerhaften Moduls: ClassicIE_64.exe2
Berichtskennung: ClassicIE_64.exe3
Vollständiger Name des fehlerhaften Pakets: ClassicIE_64.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ClassicIE_64.exe5


Systemfehler:
=============
Error: (05/22/2016 05:34:29 AM) (Source: DCOM) (EventID: 10010) (User: PUPPI)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/22/2016 05:33:59 AM) (Source: DCOM) (EventID: 10010) (User: PUPPI)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/21/2016 06:46:54 AM) (Source: DCOM) (EventID: 10010) (User: PUPPI)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/21/2016 06:46:24 AM) (Source: DCOM) (EventID: 10010) (User: PUPPI)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/21/2016 06:21:32 AM) (Source: DCOM) (EventID: 10010) (User: PUPPI)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/21/2016 06:21:02 AM) (Source: DCOM) (EventID: 10010) (User: PUPPI)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/21/2016 06:02:37 AM) (Source: DCOM) (EventID: 10010) (User: PUPPI)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/21/2016 06:02:07 AM) (Source: DCOM) (EventID: 10010) (User: PUPPI)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (05/21/2016 05:10:13 AM) (Source: DCOM) (EventID: 10010) (User: PUPPI)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Error: (05/21/2016 05:09:43 AM) (Source: DCOM) (EventID: 10010) (User: PUPPI)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4670K CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 25%
Installierter physikalischer RAM: 16252.66 MB
Verfügbarer physikalischer RAM: 12128.62 MB
Summe virtueller Speicher: 18684.66 MB
Verfügbarer virtueller Speicher: 14412.6 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:217.89 GB) (Free:45.79 GB) NTFS
Drive d: (Daten) (Fixed) (Total:3725.9 GB) (Free:1956.02 GB) NTFS
Drive e: (E_Data) (Fixed) (Total:1863.01 GB) (Free:320.51 GB) NTFS
Drive f: (F_Data) (Fixed) (Total:1863.01 GB) (Free:435.33 GB) NTFS
Drive i: (Wonderful_Life) (CDROM) (Total:4.21 GB) (Free:0 GB) UDF
Drive r: (Recovery Image) (Fixed) (Total:14.65 GB) (Free:14.56 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 52ED8D18)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=217.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=14.6 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 3726 GB) (Disk ID: 07513EA1)

Partition: GPT.

========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: 0D008A00)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=OF Extended)

========================================================
Disk: 3 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 1066F8CA)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=OF Extended)

==================== Ende von Addition.txt ============================
         
--- --- ---
__________________


Alt 23.05.2016, 00:02   #3
cosinus
/// Winkelfunktion
/// TB-Süch-Tiger™
 
Unsichtbares Mobogenie - Standard

Unsichtbares Mobogenie



Zitat:
127.0.0.1 activate.adobe.com:443
127.0.0.1 3dns.adobe.com
127.0.0.1 3dns-1.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-4.adobe.com
127.0.0.1 adobeereg.com
Lesestoff:
Illegale Software: Cracks, Keygens und Co

Bitte lesen => http://www.trojaner-board.de/95393-c...-software.html

Es geht weiter wenn du alles Illegale entfernt hast.

Bei wiederholten Crack/Keygen Verstößen behalte ich es mir vor, den Support einzustellen, d.h. Hilfe nur noch bei der Datensicherung und Neuinstallation des Betriebssystems.
__________________
__________________

Antwort

Themen zu Unsichtbares Mobogenie
adobe, bonjour, browser, canon, computer, defender, desktop, dnsapi.dll, ebanking, epubor, excel, hijack, home, homepage, kaspersky, mozilla, problem, prozesse, realtek, registry, rundll, scan, security, services.exe, software, svchost.exe, system, total commander, werbung, windows



Ähnliche Themen: Unsichtbares Mobogenie


  1. Windows 7: FRST Log (Warten auf unsichtbares Programm beim Shutdown)
    Log-Analyse und Auswertung - 15.12.2015 (3)
  2. Malwarebytes findet Mobogenie. Noch mehr malware?
    Log-Analyse und Auswertung - 11.12.2014 (12)
  3. Unsichtbares Internetexplorerfenster
    Plagegeister aller Art und deren Bekämpfung - 22.09.2014 (11)
  4. Mobogenie+diverse certified-toolbars
    Plagegeister aller Art und deren Bekämpfung - 02.08.2014 (37)
  5. Mobogenie nicht entfernt, Eset löscht Dateien nicht
    Log-Analyse und Auswertung - 15.03.2014 (4)
  6. Win7: Avast findet Malware Mobogenie und VBS: Malware-gen
    Log-Analyse und Auswertung - 11.03.2014 (7)
  7. Mobogenie Virus entdeckt?
    Log-Analyse und Auswertung - 21.02.2014 (9)
  8. Mobogenie / Reg Clean Pro
    Plagegeister aller Art und deren Bekämpfung - 18.02.2014 (14)
  9. Mobogenie, Aartemis, Advances System Protector, RegCleanPro, MYPC Backup
    Plagegeister aller Art und deren Bekämpfung - 17.02.2014 (20)
  10. Nach Flashplayer update Virus (?) auf Tablet (Mobogenie, Nationzoom, Lollipop etc.)
    Log-Analyse und Auswertung - 27.01.2014 (5)
  11. Nationzoom, Mobogenie, Re-Markit Befall
    Log-Analyse und Auswertung - 19.01.2014 (25)
  12. Nach Bereinigung ( Lollipop , Mobogenie , NationZoom ) InternetExplorer: ATI DisplayAdapter Fehler
    Log-Analyse und Auswertung - 16.01.2014 (9)
  13. Mobogenie entfernen
    Anleitungen, FAQs & Links - 23.12.2013 (2)
  14. Unsichtbares Programm im Tabswitch - Suche und Google erfolglos
    Plagegeister aller Art und deren Bekämpfung - 01.02.2007 (16)

Zum Thema Unsichtbares Mobogenie - Hab ein Problem mit einem Browser Hijack mit dem IE. Quelle ist wahrscheinlich eine unsichtbare Mobogenie-Installation, die den Link auf Werbung umleitet (get.mirando.de). Habe die Logs erstellt, siehe unten bzw. - Unsichtbares Mobogenie...
Archiv
Du betrachtest: Unsichtbares Mobogenie auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.