Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung
Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz

Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz


Plagegeister aller Art und deren Bekämpfung: Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 08.02.2015, 11:19   #1
schrauber
/// the machine
/// TB-Ausbilder
 
Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz - Standard

Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz


Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:
ATTFilter
C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce

C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
C:\Users\Haenschen\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000

C:\Users\Haenschen\Downloads\AbiWord - CHIP-Installer(1).exe

C:\Users\Haenschen\Downloads\Copernic Desktop Search Lite - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\dd_rescue - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\image-resizer_setup.exe

C:\Users\Haenschen\Downloads\KaraFun - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\lastpass_setup.exe

C:\Users\Haenschen\Downloads\MCE Standby Tool - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\Nitro PDF Reader 64 Bit - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\OpenOffice - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\Paragon Backup Recovery 2014 Free - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\PrintScreen - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\Q Dir - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\VLC media player 64 Bit - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\vlc-2.1.4-win64.exe

C:\Users\Haenschen\Downloads\Windows 8 Product Key Viewer - CHIP-Installer.exe
Task: {48C009EC-8000-4631-B0ED-527C7FCB531E} - System32\Tasks\Binkiland => C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION

Task: C:\Windows\Tasks\Binkiland.job => C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1
FF SearchEngineOrder.1: Websuche
FF SelectedSearchEngine: Binkiland
FF Extension: Cliqz Beta - C:\Users\Haenschen\AppData\Roaming\Mozilla\Firefox\Profiles\wc32oylt.default-1404968281238\Extensions\cliqz@cliqz.com.xpi [2014-12-03]
FF Extension: Copernic Desktop Search - Search Firefox content - d:\programme festpld\firefoxconnector [2014-10-25]
FF HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Haenschen\AppData\Roaming\Mozilla\Firefox\Profiles\wc32oylt.default-1404968281238\extensions\cliqz@cliqz.com
Emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.





Frisches FRST log bitte.
__________________
gruß,
schrauber

Proud Member of UNITE and ASAP since 2009

Spenden
Anleitungen und Hilfestellungen
Trojaner-Board Facebook-Seite

Keine Hilfestellung via PM!

Alt 08.02.2015, 15:48   #2
Haenschen
 
Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz - Standard

Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz


Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-02-2015
Ran by Haenschen at 2015-02-08 15:38:14 Run:1
Running from C:\Users\Haenschen\Downloads
Loaded Profiles: Haenschen (Available profiles: Haenschen)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce

C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
C:\Users\Haenschen\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000

C:\Users\Haenschen\Downloads\AbiWord - CHIP-Installer(1).exe

C:\Users\Haenschen\Downloads\Copernic Desktop Search Lite - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\dd_rescue - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\image-resizer_setup.exe

C:\Users\Haenschen\Downloads\KaraFun - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\lastpass_setup.exe

C:\Users\Haenschen\Downloads\MCE Standby Tool - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\Nitro PDF Reader 64 Bit - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\OpenOffice - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\Paragon Backup Recovery 2014 Free - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\PrintScreen - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\Q Dir - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\VLC media player 64 Bit - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\vlc-2.1.4-win64.exe

C:\Users\Haenschen\Downloads\Windows 8 Product Key Viewer - CHIP-Installer.exe
Task: {48C009EC-8000-4631-B0ED-527C7FCB531E} - System32\Tasks\Binkiland => C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION

Task: C:\Windows\Tasks\Binkiland.job => C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1
FF SearchEngineOrder.1: Websuche
FF SelectedSearchEngine: Binkiland
FF Extension: Cliqz Beta - C:\Users\Haenschen\AppData\Roaming\Mozilla\Firefox\Profiles\wc32oylt.default-1404968281238\Extensions\cliqz@cliqz.com.xpi [2014-12-03]
FF Extension: Copernic Desktop Search - Search Firefox content - d:\programme festpld\firefoxconnector [2014-10-25]
FF HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Haenschen\AppData\Roaming\Mozilla\Firefox\Profiles\wc32oylt.default-1404968281238\extensions\cliqz@cliqz.com
Emptytemp:
*****************

C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce => Moved successfully.
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce => Moved successfully.
C:\Users\Haenschen\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000 => Moved successfully.
C:\Users\Haenschen\Downloads\AbiWord - CHIP-Installer(1).exe => Moved successfully.
C:\Users\Haenschen\Downloads\Copernic Desktop Search Lite - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\dd_rescue - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\image-resizer_setup.exe => Moved successfully.
C:\Users\Haenschen\Downloads\KaraFun - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\lastpass_setup.exe => Moved successfully.
C:\Users\Haenschen\Downloads\MCE Standby Tool - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\Nitro PDF Reader 64 Bit - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\OpenOffice - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\Paragon Backup Recovery 2014 Free - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\PrintScreen - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\Q Dir - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\VLC media player 64 Bit - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\vlc-2.1.4-win64.exe => Moved successfully.
C:\Users\Haenschen\Downloads\Windows 8 Product Key Viewer - CHIP-Installer.exe => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{48C009EC-8000-4631-B0ED-527C7FCB531E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48C009EC-8000-4631-B0ED-527C7FCB531E}" => Key deleted successfully.
C:\Windows\System32\Tasks\Binkiland => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Binkiland" => Key deleted successfully.
C:\Windows\Tasks\Binkiland.job => Moved successfully.
"C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1" => File/Directory not found.
Firefox SearchEngineOrder.1 deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
C:\Users\Haenschen\AppData\Roaming\Mozilla\Firefox\Profiles\wc32oylt.default-1404968281238\Extensions\cliqz@cliqz.com.xpi => Moved successfully.
d:\programme festpld\firefoxconnector => Moved successfully.
HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\Software\Mozilla\Firefox\Extensions\\cliqz@cliqz.com => value deleted successfully.
EmptyTemp: => Removed 465.3 MB temporary data.


The system needed a reboot.

==== End of Fixlog 15:38:50 ====

[CODE][Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-02-2015
Ran by Haenschen at 2015-02-08 15:38:14 Run:1
Running from C:\Users\Haenschen\Downloads
Loaded Profiles: Haenschen (Available profiles: Haenschen)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce

C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce
C:\Users\Haenschen\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000

C:\Users\Haenschen\Downloads\AbiWord - CHIP-Installer(1).exe

C:\Users\Haenschen\Downloads\Copernic Desktop Search Lite - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\dd_rescue - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\image-resizer_setup.exe

C:\Users\Haenschen\Downloads\KaraFun - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\lastpass_setup.exe

C:\Users\Haenschen\Downloads\MCE Standby Tool - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\Nitro PDF Reader 64 Bit - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\OpenOffice - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\Paragon Backup Recovery 2014 Free - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\PrintScreen - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\Q Dir - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\VLC media player 64 Bit - CHIP-Installer.exe

C:\Users\Haenschen\Downloads\vlc-2.1.4-win64.exe

C:\Users\Haenschen\Downloads\Windows 8 Product Key Viewer - CHIP-Installer.exe
Task: {48C009EC-8000-4631-B0ED-527C7FCB531E} - System32\Tasks\Binkiland => C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION

Task: C:\Windows\Tasks\Binkiland.job => C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1
FF SearchEngineOrder.1: Websuche
FF SelectedSearchEngine: Binkiland
FF Extension: Cliqz Beta - C:\Users\Haenschen\AppData\Roaming\Mozilla\Firefox\Profiles\wc32oylt.default-1404968281238\Extensions\cliqz@cliqz.com.xpi [2014-12-03]
FF Extension: Copernic Desktop Search - Search Firefox content - d:\programme festpld\firefoxconnector [2014-10-25]
FF HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\Haenschen\AppData\Roaming\Mozilla\Firefox\Profiles\wc32oylt.default-1404968281238\extensions\cliqz@cliqz.com
Emptytemp:
*****************

C:\Program Files (x86)\Common Files\0780f478-67ce-4ec3-98db-39a65f4618ce => Moved successfully.
C:\ProgramData\0780f478-67ce-4ec3-98db-39a65f4618ce => Moved successfully.
C:\Users\Haenschen\AppData\Local\Google\Chrome\User Data\Default\File System\002\t\00\00000000 => Moved successfully.
C:\Users\Haenschen\Downloads\AbiWord - CHIP-Installer(1).exe => Moved successfully.
C:\Users\Haenschen\Downloads\Copernic Desktop Search Lite - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\dd_rescue - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\image-resizer_setup.exe => Moved successfully.
C:\Users\Haenschen\Downloads\KaraFun - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\lastpass_setup.exe => Moved successfully.
C:\Users\Haenschen\Downloads\MCE Standby Tool - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\Nitro PDF Reader 64 Bit - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\OpenOffice - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\Paragon Backup Recovery 2014 Free - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\PrintScreen - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\Q Dir - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\VLC media player 64 Bit - CHIP-Installer.exe => Moved successfully.
C:\Users\Haenschen\Downloads\vlc-2.1.4-win64.exe => Moved successfully.
C:\Users\Haenschen\Downloads\Windows 8 Product Key Viewer - CHIP-Installer.exe => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{48C009EC-8000-4631-B0ED-527C7FCB531E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{48C009EC-8000-4631-B0ED-527C7FCB531E}" => Key deleted successfully.
C:\Windows\System32\Tasks\Binkiland => Moved successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Binkiland" => Key deleted successfully.
C:\Windows\Tasks\Binkiland.job => Moved successfully.
"C:\Users\HAENSC~1\AppData\Roaming\BINKIL~1" => File/Directory not found.
Firefox SearchEngineOrder.1 deleted successfully.
Firefox SelectedSearchEngine deleted successfully.
C:\Users\Haenschen\AppData\Roaming\Mozilla\Firefox\Profiles\wc32oylt.default-1404968281238\Extensions\cliqz@cliqz.com.xpi => Moved successfully.
d:\programme festpld\firefoxconnector => Moved successfully.
HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\Software\Mozilla\Firefox\Extensions\\cliqz@cliqz.com => value deleted successfully.
EmptyTemp: => Removed 465.3 MB temporary data.


The system needed a reboot.

==== End of Fixlog 15:38:50 ====/CODE]


Code:
ATTFilter
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-02-2015
Ran by Haenschen at 2015-02-08 15:41:05
Running from C:\Users\Haenschen\Downloads
Boot Mode: Normal
==========================================================


==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

AbiWord 2.8.6 (HKLM-x32\...\AbiWord2) (Version: 2.8.6 - AbiSource Developers)
Active@ KillDisk 9.0 (HKLM\...\{81B939C1-0219-42B6-A352-D5E43F2BDFAE}_is1) (Version: 9.0 - LSoft Technologies Inc)
Adobe Digital Editions 3.0 (HKLM-x32\...\Adobe Digital Editions 3.0) (Version: 3.0.1 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.10) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.10 - Adobe Systems Incorporated)
AI Suite II (HKLM-x32\...\{34D3688E-A737-44C5-9E2A-FF73618728E1}) (Version: 2.04.01 - ASUSTeK Computer Inc.)
Alcor Micro USB Card Reader Driver (HKLM-x32\...\AmUStor) (Version: 20.15.6362.54439 - Alcor Micro Corp.)
Alcor Micro USB Card Reader Driver (x32 Version: 20.15.6362.54439 - Alcor Micro Corp.) Hidden
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.11 Beta2 - Michael Tippach)
ASUS Easy Update 2 (HKLM-x32\...\{E7AA854E-6756-424E-84C2-4E47D5729AFF}) (Version: 3.00.08 - ASUSTeK Computer Inc.)
ASUS Music Maker (HKLM-x32\...\MAGIX_{AB515018-7F9D-4047-B0C0-F26BAC30F3E1}) (Version: 18.0.4.1 - MAGIX AG)
ASUS Music Maker (Version: 18.0.4.1 - MAGIX AG) Hidden
ASUS ROG GAMING MOUSE GX900 (HKLM-x32\...\{0AD3CB15-7DAA-4A0D-AD49-2BB8485C95A3}) (Version: 1.1.0 - ASUS)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.5424.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.5424.52 - CyberLink Corp.) Hidden
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.311 - ASUSTEK)
Bing-Desktop (HKLM-x32\...\{7D095455-D971-4D4C-9EFD-9AF6A6584F3A}) (Version: 1.3.470.0 - Microsoft Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Cisco WebEx Meetings (HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
Citrix Online Launcher (HKLM-x32\...\{75B8A55E-0762-4676-AAC0-6FDF025B034B}) (Version: 1.0.220 - Citrix)
Cliqz (HKLM-x32\...\{5A0C0737-6AFE-4DC6-A8B4-6DFE509ACD75}_is1) (Version: 0.5.31 - Cliqz.com)
Copernic Desktop Search 4 (HKLM-x32\...\CopernicDesktopSearch4) (Version: 4.2.0.6628 - Copernic)
Copernic Desktop Search 4 (x32 Version: 4.2.0.6628 - Copernic) Hidden
CyberLink PhotoDirector 3 (HKLM-x32\...\InstallShield_{39337565-330E-4ab6-A9AE-AC81E0720B10}) (Version: 3.0.4428 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
eManual (HKLM-x32\...\{0C84E634-EB68-4A54-B21E-A05EC87A4CC5}) (Version: 1.00.07 - ASUSTeK Computer Inc.)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
FL Studio 11 (HKLM-x32\...\FL Studio 11) (Version:  - Image-Line)
FlowStone FL 3.0 (HKLM-x32\...\FlowStone) (Version:  - )
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Free Audio Converter version 5.0.52.1107 (HKLM-x32\...\Free Audio Converter_is1) (Version: 5.0.52.1107 - DVDVideoSoft Ltd.)
Gadwin PrintScreen (64-Bit) (HKLM\...\{C4E9434D-9FA7-4D27-9805-D767A8A38904}) (Version: 5.4.0.0 - Gadwin Systems)
Galeria de Fotografias (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 40.0.2214.111 - Google Inc.)
Google Desktop (HKLM-x32\...\Google Desktop) (Version: 5.9.1005.12335 - Google)
Google Earth (HKLM-x32\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.26.9 - Google Inc.) Hidden
GoToMeeting 6.4.11.2273 (HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\...\GoToMeeting) (Version: 6.4.11.2273 - CitrixOnline)
Gyazo 2.3 (HKLM-x32\...\{6DB8C365-E719-4BA5-9594-10DFC244D3FD}_is1) (Version:  - Nota Inc.)
hotComm® CL (HKLM-x32\...\hotComm® CL) (Version: 8.00.012x - 1stWorks Corporation)
IL Download Manager (HKLM-x32\...\IL Download Manager) (Version:  - Image-Line)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.14.1724 - Intel Corporation)
Intel(R) Network Connections 18.5.54.0 (HKLM\...\PROSetDX) (Version: 18.5.54.0 - Intel)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Java 8 Update 31 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418031F0}) (Version: 8.0.310 - Oracle Corporation)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
KaraFun Player (HKLM-x32\...\KaraFun Player_is1) (Version: 1.20.86.771 - Recisio)
Lights-Out for Windows 8 (HKLM-x32\...\Lights-Out for Windows 8) (Version: 1.5.5.2136 - AxoNet Software GmbH)
Lights-Out for Windows 8 (Version: 1.5.5.2136 - AxoNet Software GmbH) Hidden
Logitech SetPoint 6.65 (HKLM\...\sp6) (Version: 6.65.62 - Logitech)
Malwarebytes Anti-Malware Version 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 15.0.4675.1003 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 4.1.10329.0 - Microsoft Corporation)
Microsoft SkyDrive (HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\...\SkyDriveSetup.exe) (Version: 16.4.6013.0910 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 35.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 de)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
Nitro Reader 3 (HKLM\...\{4756C731-B54E-451A-9AF1-86E8AB1BEBBB}) (Version: 3.5.6.5 - Nitro)
NVIDIA 3D Vision Controller-Treiber 340.50 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 340.50 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 326.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 326.60 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.1.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.1.1 - NVIDIA Corporation)
NVIDIA Grafiktreiber 326.60 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 326.60 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.13.1220 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.1220 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4675.1003 - Microsoft Corporation) Hidden
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
OptionsOracle (HKLM-x32\...\{2C31929A-D6AB-4D0B-ABF9-4812A045CE97}) (Version: 1.600 - SamoaSky)
Paragon Backup and Recovery™ 2014 Free (HKLM\...\{C268B5E1-A5DA-11DF-A289-005056C00008}) (Version: 90.00.0003 - Paragon Software)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Q-Dir (HKLM-x32\...\Q-Dir) (Version:  - )
Raccolta foto (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
REALTEK Bluetooth Driver (HKLM-x32\...\{9D3D8C60-A5EF-4123-B2B9-172095903AB}) (Version: 3.769.769.092613 - REALTEK Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7035 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9DAABC60-A5EF-41FF-B2B9-17329590CD5}) (Version: 1.00.0224 - REALTEK Semiconductor Corp.)
Safari (HKLM-x32\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
SaxoTrader 2 (HKLM-x32\...\{024D66E9-D50C-44A7-92B4-2DFDDD95D228}) (Version: 2.110.25.0 - Saxo Bank)
SHIELD Streaming (Version: 3.1.100 - NVIDIA Corporation) Hidden
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.3.16540.9015 - Microsoft Corporation)
Skype™ 6.22 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 6.22.104 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Spotify (HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\...\Spotify) (Version: 0.9.15.27.g87efe634 - Spotify AB)
Strong Signal (HKLM-x32\...\Strong Signal) (Version: 2.0.5514.19469 - Strong Signal)
System Level Up Driver (HKLM-x32\...\{ABB5B6B0-68E6-4F87-8F1D-A9A2A3A77355}) (Version: 2.02.01 - ASUSTeK Computer Inc.)
Trader Workstation 4.0 (HKLM-x32\...\Trader Workstation 4.0) (Version:  - )
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
VirtualDJ 8 (HKLM-x32\...\{9ADBBA93-4625-4898-BB0D-BCE7EA9F8B4A}) (Version: 8.0.0 - Atomix Productions)
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WavePad Audio-Editor (HKLM-x32\...\WavePad) (Version: 5.91 - NCH Software)
WebStorage (HKLM-x32\...\WebStorage) (Version: 2.0.3.226 - ASUS Cloud Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
WinRAR 5.11 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
WSE_Binkiland (HKLM-x32\...\WSE_Binkiland) (Version:  - WSE_Binkiland)
Συλλογή φωτογραφιών (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
影像中心 (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
照片库 (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-3036470256-2613378711-3773960124-1002_Classes\CLSID\{84B5A313-CD5D-4904-8BA2-AFDC81C1B309}\InprocServer32 -> C:\Users\Haenschen\AppData\Local\Citrix\GoToMeeting\1468\G2MOutlookAddin64.dll (Citrix Online, a division of Citrix Systems, Inc.)
CustomCLSID: HKU\S-1-5-21-3036470256-2613378711-3773960124-1002_Classes\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}\InprocServer32 -> C:\Users\Haenschen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3036470256-2613378711-3773960124-1002_Classes\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}\InprocServer32 -> C:\Users\Haenschen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3036470256-2613378711-3773960124-1002_Classes\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}\InprocServer32 -> C:\Users\Haenschen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3036470256-2613378711-3773960124-1002_Classes\CLSID\{F8071786-1FD0-4A66-81A1-3CBE29274458}\InprocServer32 -> C:\Users\Haenschen\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\FileSyncApi64.dll (Microsoft Corporation)

==================== Restore Points  =========================

21-01-2015 12:37:04 Geplanter Prüfpunkt
28-01-2015 12:15:45 Windows Update
05-02-2015 07:31:38 Geplanter Prüfpunkt

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2014-12-22 22:35 - 00000940 ____A C:\Windows\system32\Drivers\etc\hosts
255.255.255.255	hcurltest5
255.255.255.255	vnsjs1.1stworks.com
76.74.166.147	hcurltest2
74.208.77.54	hcurltest1


==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0E24D846-57B8-4742-AC70-60A30A39EC57} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2013-11-05] ()
Task: {1ABAB3FB-3468-407A-ADF3-582C7403AC54} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {285483DE-28CF-4CF1-B0DC-9A88B1682826} - System32\Tasks\ASUS\ASUS AI Suite II Execute => C:\Program Files (x86)\ASUS\AI Suite II\AsRoutineController.exe [2012-03-13] (ASUSTeK Computer Inc.)
Task: {45260221-B342-4ACD-9861-0ED4057B3CED} - System32\Tasks\ASUS\ASUS AiCharger_II TrayIcon => C:\Program Files (x86)\ASUS\AI Suite II\Ai Charger II\AsChargerIITray.exe [2013-06-05] (ASUSTeK)
Task: {5B3DB5D5-6D76-4F68-9C4E-EEB8B7FF4E95} - System32\Tasks\G2MUpdateTask-S-1-5-21-3036470256-2613378711-3773960124-1002 => C:\Users\Haenschen\AppData\Local\Citrix\GoToMeeting\2273\g2mupdate.exe [2015-01-25] (Citrix Online, a division of Citrix Systems, Inc.)
Task: {5FB32390-8214-4F69-803D-A155FC29B660} - System32\Tasks\ASUS\AsSysLevelUpSrc => C:\Program Files\ASUS\System Level Up Driver\AsSysLevelUpSrc.exe [2013-05-14] (ASUSTeK Computer Inc.)
Task: {6D947055-12CD-4CA2-B126-3A81E999D522} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-17] (Google Inc.)
Task: {6EA9E01B-7B74-4FAC-9577-237F54B717DF} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2014-11-04] (Microsoft Corporation)
Task: {6F37BFF2-E200-46EC-B329-3E597A0608FC} - System32\Tasks\ASUS\ASUS Easy Update 2 => C:\Program Files (x86)\ASUS\ASUS Easy Update\ALU.exe [2013-07-05] (ASUSTeK Computer Inc.)
Task: {BF2239D4-DA79-4C0E-946D-B22F234C232C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-08-17] (Google Inc.)
Task: {C6D7A547-4652-4DFF-A7FB-87187B42E6E6} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {CE82311C-04AA-43B7-8EC2-15FB6EFBD4E2} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonx86\Microsoft Shared\OFFICE15\OLicenseHeartbeat.exe [2014-11-12] (Microsoft Corporation)
Task: {D6C57CE6-D834-422F-BF08-938C05B2CF53} - System32\Tasks\GyazoUpdateTaskMachine => C:\Program Files (x86)\Gyazo\GyazoUpdate.exe [2014-07-03] ()
Task: {DDE8225B-0639-4498-B400-D0CE272E80CC} - System32\Tasks\ASUS\ASUS AiCharger_Desktop Execute => C:\Program Files (x86)\InstallShield Installation Information\{11F6707B-88F9-4D2D-A138-27B657BAE4D2}\AiChargerDT.exe [2013-05-17] (ASUSTek Computer Inc.)
Task: {DF527809-C9AB-40E8-BD05-2085E0A25B35} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2015-01-14] (Microsoft Corporation)
Task: {E36FA210-56F3-4BE4-A7F9-89C05AC3B399} - System32\Tasks\ASUS\ASUS Lighting Execute => C:\Program Files (x86)\ASUS\AI Suite II\Lighting\Lighting.exe [2013-04-13] (ASUSTeK)
Task: {FF168CA8-E840-4231-AFF7-FCEFF40B8CBD} - System32\Tasks\ASUS\SystemLevelUp Driver => C:\Program Files\ASUS\System Level Up Driver\SysLevelUp.exe [2013-04-10] ()
Task: C:\Windows\Tasks\G2MUpdateTask-S-1-5-21-3036470256-2613378711-3773960124-1002.job => C:\Users\Haenschen\AppData\Local\Citrix\GoToMeeting\2273\g2mupdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) ==============

2014-01-25 13:55 - 2013-09-26 19:15 - 00059392 _____ () C:\Program Files (x86)\REALTEK\Realtek Bluetooth\BTDevMgr.exe
2014-08-05 06:33 - 2014-05-20 08:19 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2013-12-19 11:20 - 2013-12-19 11:20 - 00075904 _____ () C:\Program Files\AxoNet Software GmbH\LightsOut\AxoNet.LightsOut.CommonTypes.W78.XmlSerializers.dll
2013-12-21 05:58 - 2012-04-24 11:43 - 00390632 ____R () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2014-01-25 13:53 - 2013-04-10 05:28 - 03078016 _____ () C:\Program Files\ASUS\System Level Up Driver\SysLevelUp.exe
2013-12-21 05:49 - 2012-06-01 10:42 - 00920736 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\atkexComSvc.exe
2013-12-21 05:49 - 2012-11-23 01:14 - 00050688 _____ () C:\Program Files (x86)\ASUS\ASUS Easy Update\AsMultiLang.dll
2014-01-25 13:53 - 2013-04-10 05:28 - 00179712 _____ () C:\Program Files\ASUS\System Level Up Driver\ASUSSERVICE.DLL
2014-01-25 13:53 - 2013-04-10 05:28 - 00609280 _____ () C:\Program Files\ASUS\System Level Up Driver\DeskTopToastDll.dll
2014-01-25 13:53 - 2013-04-10 05:28 - 00475136 _____ () C:\Program Files\ASUS\System Level Up Driver\HookKey32.dll
2013-12-21 05:49 - 2015-02-08 15:39 - 00029696 _____ () C:\Program Files (x86)\ASUS\AXSP\1.00.19\PEbiosinterface32.dll
2013-12-21 05:49 - 2010-06-29 03:58 - 00104448 ____R () C:\Program Files (x86)\ASUS\AXSP\1.00.19\ATKEX.dll
2014-11-04 09:48 - 2014-11-04 09:48 - 01563408 _____ () D:\Programme FestplD\Copernic.System.RT.dll
2014-08-05 06:34 - 2014-08-05 06:34 - 00122024 _____ () C:\Program Files\Microsoft Office 15\root\Office15\JitV.dll
2014-11-20 07:00 - 2014-11-20 07:01 - 00316576 _____ () C:\Program Files\Microsoft Office 15\root\Office15\AppVIsvStream32.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Haenschen\OneDrive:ms-properties
AlternateDataStreams: C:\Users\Haenschen\Downloads\Ablesung per 09.01.2014.eml:OECustomProperty

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc => ""=""
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mcpltsvc => ""=""

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)


==================== Other Registry Areas =====================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Haenschen\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "ASUSPRP"
HKLM\...\StartupApproved\Run32: => "WebStorage"
HKLM\...\StartupApproved\Run32: => "BDRegion"
HKLM\...\StartupApproved\Run32: => "BingDesktop"
HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3036470256-2613378711-3773960124-1002\...\StartupApproved\Run: => "Skype"

==================== Accounts: =============================

Administrator (S-1-5-21-3036470256-2613378711-3773960124-500 - Administrator - Disabled)
Gast (S-1-5-21-3036470256-2613378711-3773960124-501 - Limited - Disabled)
Haenschen (S-1-5-21-3036470256-2613378711-3773960124-1002 - Administrator - Enabled) => C:\Users\Haenschen
HomeGroupUser$ (S-1-5-21-3036470256-2613378711-3773960124-1004 - Limited - Enabled)

==================== Faulty Device Manager Devices =============

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (02/08/2015 03:38:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: plugin-container.exe, Version: 35.0.1.5500, Zeitstempel: 0x54c1f9f3
Name des fehlerhaften Moduls: mozalloc.dll, Version: 35.0.1.5500, Zeitstempel: 0x54c1f224
Ausnahmecode: 0x80000003
Fehleroffset: 0x00001425
ID des fehlerhaften Prozesses: 0x1e14
Startzeit der fehlerhaften Anwendung: 0xplugin-container.exe0
Pfad der fehlerhaften Anwendung: plugin-container.exe1
Pfad des fehlerhaften Moduls: plugin-container.exe2
Berichtskennung: plugin-container.exe3
Vollständiger Name des fehlerhaften Pakets: plugin-container.exe4
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: plugin-container.exe5

Error: (02/08/2015 09:16:54 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest2" in Zeile C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.

Error: (02/08/2015 07:38:55 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073415161

Error: (02/07/2015 06:08:12 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (02/07/2015 05:16:20 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (02/07/2015 05:16:17 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (02/07/2015 05:15:52 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (02/07/2015 05:15:52 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (02/07/2015 05:15:49 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest.

Error: (02/07/2015 05:05:03 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8


System errors:
=============

Microsoft Office Sessions:
=========================
Error: (02/08/2015 03:38:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: plugin-container.exe35.0.1.550054c1f9f3mozalloc.dll35.0.1.550054c1f22480000003000014251e1401d043a80b2b0699C:\Program Files (x86)\Mozilla Firefox\plugin-container.exeC:\Program Files (x86)\Mozilla Firefox\mozalloc.dll1c808dab-afa0-11e4-83fc-54271e6bd728

Error: (02/08/2015 09:16:54 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Program Files\CCleaner\CCleaner.exe

Error: (02/08/2015 07:38:55 AM) (Source: Office 2013 Licensing Service) (EventID: 0) (User: )
Description: Subscription licensing service failed: -1073415161

Error: (02/07/2015 06:08:12 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe

Error: (02/07/2015 05:16:20 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\HAENSC~1\AppData\Local\Temp\vwsrumst.tmp\esetsmartinstaller_deu.exe

Error: (02/07/2015 05:16:17 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\HAENSC~1\AppData\Local\Temp\vwsrumst.tmp\esetsmartinstaller_deu.exe

Error: (02/07/2015 05:15:52 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\HAENSC~1\AppData\Local\Temp\vwsrumst.tmp\esetsmartinstaller_deu.exe

Error: (02/07/2015 05:15:52 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\HAENSC~1\AppData\Local\Temp\vwsrumst.tmp\esetsmartinstaller_deu.exe

Error: (02/07/2015 05:15:49 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifestC:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifestC:\Users\HAENSC~1\AppData\Local\Temp\vwsrumst.tmp\esetsmartinstaller_deu.exe

Error: (02/07/2015 05:05:03 PM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8


==================== Memory info =========================== 

Processor: Intel(R) Core(TM) i7-4770K CPU @ 3.50GHz
Percentage of memory in use: 11%
Total physical RAM: 16318.66 MB
Available physical RAM: 14436.02 MB
Total Pagefile: 18750.66 MB
Available Pagefile: 16782.38 MB
Total Virtual: 131072 MB
Available Virtual: 131071.83 MB

==================== Drives ================================

Drive c: (Windows) (Fixed) (Total:220.94 GB) (Free:173.76 GB) NTFS
Drive d: (New Volume) (Fixed) (Total:1862.89 GB) (Free:1857.06 GB) NTFS
Drive h: (VERBATIM) (Removable) (Total:15 GB) (Free:13.52 GB) FAT32

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: E35C6A57)

Partition: GPT Partition Type.

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 15 GB) (Disk ID: C3072E18)
Partition 1: (Not Active) - (Size=15 GB) - (Type=0C)

==================== End Of Log ============================
__________________
Antwort

Themen zu Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz
bikiniland, bildschirm, blieb, bluescreen, bytes, desktop, dilemma, einfach, firefox, forum, funktioniert, guten, klicke, langsam, länger, malware, malware bytes, mauszeiger, monitor, monitor schwarz, neustart, quarantäne, schwarz, software, suchmaschine, taskmanager, update, windows


« Unerwünschte Startseiten websearches/22find führt zu Abstürzen, Aufhängen und komischen Geräuschen | Windows 7 pro 64 - beim Öffnen von PDF-Dateien werden neue Tabs geöffnet - bereits mit Emisoft gescannt »


Ähnliche Themen: Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz


  1. Bikiniland eingefangen
    Log-Analyse und Auswertung - 26.02.2015 (21)
  2. Windows 8.1 Binkilandproblem und Monitor schwarz
    Plagegeister aller Art und deren Bekämpfung - 17.02.2015 (21)
  3. Bikiniland Trojaner erfolgreich entfernt?
    Log-Analyse und Auswertung - 12.02.2015 (9)
  4. wenn ich meinen Rechner hochfahre (Windows 8.1) komme ich bis zur Passwort-Abfrage. Der Monitor meines Pavilion Netbooks wird schwarz.
    Log-Analyse und Auswertung - 08.02.2015 (9)
  5. Bekomme Bikiniland nicht weg
    Log-Analyse und Auswertung - 06.02.2015 (5)
  6. Registry Monitor Fenster Labtec Webcam 1200-monitor.exe Virus?
    Plagegeister aller Art und deren Bekämpfung - 17.01.2014 (7)
  7. Monitor bleibt nach Booten und WinLogo schwarz, nur Mauszeiger da.
    Alles rund um Windows - 22.11.2013 (15)
  8. Monitor Schwarz, Mauszeiger sichtbar, Windows 7 32bit
    Log-Analyse und Auswertung - 05.10.2013 (3)
  9. BKA Trojaner - Monitor schwarz
    Plagegeister aller Art und deren Bekämpfung - 05.12.2012 (16)
  10. Monitor wird Schwarz mit roter Schrift ( Windows blockiert bezahlen um es wieder zu aktivieren)
    Log-Analyse und Auswertung - 25.04.2012 (1)
  11. Monitor wird Schwarz mit roter Schrift ( Windows blockiert 100 € um es wieder zu aktivieren)
    Plagegeister aller Art und deren Bekämpfung - 24.04.2012 (13)
  12. Bekämpfung von Windows Vista Repair Trojaner und TDSS Killer startet nicht
    Plagegeister aller Art und deren Bekämpfung - 28.06.2011 (23)
  13. Windows Recovery Trojaner - erste Bekämpfung und Frage zu externer Festplatte
    Log-Analyse und Auswertung - 30.04.2011 (12)
  14. Laptop-Monitor wird plötzlich schwarz
    Plagegeister aller Art und deren Bekämpfung - 05.10.2010 (0)
  15. Logfiles vorher/nachher, System wieder benutzbar??
    Log-Analyse und Auswertung - 19.03.2009 (0)
  16. Monitor wird schwarz und Rechner hängt sich auf
    Mülltonne - 11.09.2008 (0)
  17. Vorher vs. nachher. Auffälligkeiten?
    Log-Analyse und Auswertung - 09.05.2006 (10)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz - Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code: Alles auswählen Aufklappen ATTFilter - Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz...
Archiv
Du betrachtest: Windows 8.1 Bekämpfung Bikiniland Suchm. nachher Monitor schwarz auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131