Trojaner-Board - Offen Internet - Hyperlinks doppelt grün unterstrichen - falsche Seiten mit Werbebanner erscheinen

Trojaner-Board (https://www.trojaner-board.de/)

- Alles rund um Windows (https://www.trojaner-board.de/alles-rund-um-windows/)

- -

Internet - Hyperlinks doppelt grün unterstrichen - falsche Seiten mit Werbebanner erscheinen (https://www.trojaner-board.de/151103-internet-hyperlinks-doppelt-gruen-unterstrichen-falsche-seiten-werbebanner-erscheinen.html)

Internet - Hyperlinks doppelt grün unterstrichen - falsche Seiten mit Werbebanner erscheinen

Auf meinem Computer werden alle Hyperlinks im Internet doppelt grün unterstrichen - beim Anklicken dieser Links öffnen sich Werbebanner wie: awardhotspot.com

Ein Scan mit Winzip-Malware-Protector hat folgende Resultate gebracht:
In Datei Systeme Ordner:
C:/Program files/launch manager/hotkeyapp.exe

In Systemregistrierung:
Dazu habe ich ein Protokoll - leider lassen sich dieser E-Mail keine Anhänge hinzufügen.

Vielen Dank für die Hilfe, falls mir jemand einen Tipp geben kann, wie ich mein Problem wieder los werde.
Liebe Grüße

Hier noch die Ergänzung zu log Winzip Editor

Code:

<?xml version="1.0" encoding="utf-8" standalone="yes"?><?xml-stylesheet type='text/xsl' href='C:\ProgramData\Nico Mak Computing\WinZip Malware Protector\log.xslt'?><info><LangStrings><string1>Datum der Überprüfung</string1><string2>Datenbankversion</string2><string3>Gefundene Elemente insgesamt</string3><string4>Überprüfte Objekte:</string4><string5>Abgelaufene Zeit:</string5><string6>Name</string6><string7>Gefundene Elemente</string7><string8>Name der Infektion</string8><string9>Kategorie</string9><string10>Bedrohungsstufe</string10><string11>Durchgeführte Aktion</string11><string12>Elemente gefunden</string12><string13>Gefundener Bereich</string13><string14>Details</string14><string15>Dateiname</string15><string16>MD5</string16><string17>Signatur</string17><string18>Registrierungsschlüssel</string18><string19>Keine Infektionen entdeckt.</string19><string20 /></LangStrings><loginfo><date>16.03.2014 11:10:22</date><key /><istrial>True</istrial><system>SONNENSCHEIN-PC|192.168.1.101|1C-4B-D6-E4-E7-67</system><scantype>DeepScan</scantype><os>Windows 7 32 Bit, Version : Microsoft Windows NT 6.1.7600.0</os><dbversion>1716</dbversion><time>00:13:05</time><objectscanned>278192</objectscanned><objectfound>36</objectfound><cultureinfo>German (Austria)</cultureinfo><version>2.1.1000.10798</version></loginfo><companyinfo><companyname>Nico Mak Computing</companyname><productname>WinZip Malware Protector</productname><copyright>© 2013 WinZip International LLC. All rights reserved.</copyright></companyinfo><log logdate="Samstag, 15. März 2014" databaseversion="1716" objectscanned="278192" timeelapsed="00:13:05"><SerializableDictionaryOfStringListOfcFoundItems><Item><Key><string>malware.gen</string></Key><Value><ArrayOfFI><FI><C>Generic Malware </C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>FileSignature</FT><V1>c:\program files\launch manager\hotkeyapp.exe</V1><V2>0</V2><V3>16266662125221659754</V3><V4>8d2851fc8807d456319c721ae3809824</V4><V5>0|</V5><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV>c:\program files\launch manager\hotkeyapp.exe</DV><FA>Memory</FA><RBT>None</RBT><ID>210999</ID></FI></ArrayOfFI></Value></Item><Item><Key><string>pup.optional</string></Key><Value><ArrayOfFI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\settings\{31ad400d-1b06-4e33-a59a-90c2c140cba0}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\settings\{31ad400d-1b06-4e33-a59a-90c2c140cba0}</V2><V3>vercache</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\settings\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\settings\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3>vercache</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{31ad400d-1b06-4e33-a59a-90c2c140cba0}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{31ad400d-1b06-4e33-a59a-90c2c140cba0}\iexplore</V2><V3 /><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{31ad400d-1b06-4e33-a59a-90c2c140cba0}\iexplore</V2><V3>type</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{31ad400d-1b06-4e33-a59a-90c2c140cba0}\iexplore</V2><V3>flags</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{ae07101b-46d4-4a98-af68-0333ea26e113}\iexplore</V2><V3 /><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{ae07101b-46d4-4a98-af68-0333ea26e113}\iexplore</V2><V3>type</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{ae07101b-46d4-4a98-af68-0333ea26e113}\iexplore</V2><V3>flags</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\smartbar</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\smartbar</V2><V3>publisher</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\smartbar</V2><V3>downloadprovider</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3>menutext</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3>helptext</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}\implemented categories</V2><V3 /><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}\implemented categories\{00021492-0000-0000-c000-000000000046}</V2><V3 /><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}\implemented categories\{00021494-0000-0000-c000-000000000046}</V2><V3 /><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>enablefiletracing</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>enableconsoletracing</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>filetracingmask</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>consoletracingmask</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>maxfilesize</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>filedirectory</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>enablefiletracing</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>enableconsoletracing</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>filetracingmask</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>consoletracingmask</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>maxfilesize</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>filedirectory</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI></ArrayOfFI></Value></Item></SerializableDictionaryOfStringListOfcFoundItems></log></info>

Hallo und :hallo:

Hast du noch weitere Logs (mit Funden)? Malwarebytes und/oder andere Virenscanner, sind die mal fündig geworden?

Ich frage deswegen nach => http://www.trojaner-board.de/125889-...tml#post941520

Bitte keine neuen Virenscans machen sondern erst nur schon vorhandene Logs in CODE-Tags posten!
Relevant sind nur Logs der letzten 7 Tage bzw. seitdem das Problem besteht!

Zudem bitte auch ein Log mit Farbars Tool machen:

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop:

FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

Starte jetzt FRST.
Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR, 7Z-Archive zu packen erschwert mir massiv die Arbeit, es sei denn natürlich die Datei wäre ansonsten zu gross für das Forum. Um die Logfiles in eine CODE-Box zu stellen gehe so vor:

Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.

http://www.trojaner-board.de/picture...&pictureid=307

Vielen Dank für die rasche Antwort:
Anbei der Log zur FRST.txt:

FRST Logfile:

FRST Logfile:

Code:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-03-2014  01

Ran by Sonnenschein (administrator) on SONNENSCHEIN-PC on 17-03-2014 14:44:33

Running from C:\Users\Sonnenschein\Downloads

Microsoft Windows 7 Home Premium  (X86) OS Language: German Standard

Internet Explorer Version 8

Boot Mode: Normal
 
 

==================== Processes (Whitelisted) =================
 

(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe

(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

(Microsoft Corporation) C:\Program Files\Microsoft\BingBar\SeaPort.EXE

(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

(Protexis Inc.) c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

() C:\Program Files\CyberLink\Shared files\RichVideo.exe

(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe

(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe

(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE

(Malwarebytes Corporation) C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

(Nico Mak Computing) C:\Program Files\WinZip Malware Protector\WinZipMalwareProtector.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe

(Intel Corporation) C:\Windows\System32\hkcmd.exe

(Intel Corporation) C:\Windows\System32\igfxpers.exe

(Wistron) C:\Program Files\Launch Manager\HotkeyApp.exe

(Wistron Corp.) C:\Program Files\Launch Manager\OSD.exe

(Wistron Corp.) C:\Program Files\Launch Manager\WButton.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Wistron Corp.) C:\Program Files\Launch Manager\WisLMSvc.exe

(CyberLink) C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe

(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe

(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe

(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe

(Microsoft Corporation) C:\Program Files\Windows Live\Messenger\msnmsgr.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE

(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE

(Koninklijke Philips Electronics N.V.) C:\Program Files\Philips\Wi-Fi MediaConnect\Wi-Fi MediaConnect.exe

(Dropbox, Inc.) C:\Users\Sonnenschein\AppData\Roaming\Dropbox\bin\Dropbox.exe

(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\GROOVE.EXE

(Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\EXCEL.EXE

(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe

() C:\Program Files\Philips\Wi-Fi MediaConnect\HTSRecover.exe

(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe

(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

(Hewlett-Packard) C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
 
 

==================== Registry (Whitelisted) ==================
 

HKLM\...\Run: [RtHDVCpl] - C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [9177632 2010-04-23] (Realtek Semiconductor)

HKLM\...\Run: [RtHDVBg] - C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe [1423904 2010-04-23] (Realtek Semiconductor)

HKLM\...\Run: [HotkeyApp] - C:\Program Files\Launch Manager\HotkeyApp.exe [200704 2009-12-14] (Wistron)

HKLM\...\Run: [LMgrVolOSD] - C:\Program Files\Launch Manager\OSD.exe [348960 2009-12-11] (Wistron Corp.)

HKLM\...\Run: [Wbutton] - C:\Program Files\Launch Manager\Wbutton.exe [413696 2010-01-13] (Wistron Corp.)

HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1594664 2009-12-11] (Synaptics Incorporated)

HKLM\...\Run: [CLMLServer] - C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-11-02] (CyberLink)

HKLM\...\Run: [BCSSync] - C:\Program Files\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)

HKLM\...\Run: [] - [X]

HKLM\...\Run: [avast] - C:\Program Files\Alwil Software\Avast5\avastUI.exe [4767304 2013-03-07] (AVAST Software)

HKLM\...\Run: [APSDaemon] - C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [43848 2014-02-06] (Apple Inc.)

HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\QTTask.exe [421888 2014-01-17] (Apple Inc.)

HKLM\...\Run: [iTunesHelper] - C:\Program Files\iTunes\iTunesHelper.exe [152392 2014-02-21] (Apple Inc.)

HKU\S-1-5-21-3350059696-2639769221-4193660806-1000\...\Run: [msnmsgr] - C:\Program Files\Windows Live\Messenger\msnmsgr.exe [3872080 2010-04-16] (Microsoft Corporation)

HKU\S-1-5-21-3350059696-2639769221-4193660806-1000\...\Run: [OfficeSyncProcess] - C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [720064 2013-04-22] (Microsoft Corporation)

HKU\S-1-5-21-3350059696-2639769221-4193660806-1000\...\Run: [GrooveMonitor] - C:\Program Files\Microsoft Office\Office14\GROOVEMN.EXE [945856 2013-03-06] (Microsoft Corporation)

HKU\S-1-5-21-3350059696-2639769221-4193660806-1000\...\Run: [LiveSupport] - "C:\Program Files\LiveSupport\LiveSupport.exe" /noshow /log

HKU\S-1-5-21-3350059696-2639769221-4193660806-1000\...\MountPoints2: {630c5ba0-bdc7-11df-b751-806e6f6e6963} - F:\AutoRun.exe

HKU\S-1-5-21-3350059696-2639769221-4193660806-1000\...\MountPoints2: {630c5bc1-bdc7-11df-b751-1c4bd6e4e767} - F:\AutoRun.exe

HKU\S-1-5-21-3350059696-2639769221-4193660806-1000\...\MountPoints2: {a1ef7ce2-c736-11df-b0a9-00262dbeb4e6} - F:\AutoRun.exe

HKU\S-1-5-21-3350059696-2639769221-4193660806-1000\...\MountPoints2: {ce46c3f8-c214-11e1-9124-00262dbeb4e6} - F:\LaunchU3.exe -a

Startup: C:\Users\Sonnenschein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

ShortcutTarget: Dropbox.lnk -> C:\Users\Sonnenschein\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

Startup: C:\Users\Sonnenschein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Microsoft SharePoint Workspace.lnk

ShortcutTarget: Microsoft SharePoint Workspace.lnk -> C:\Program Files\Microsoft Office\Office14\GROOVE.EXE (Microsoft Corporation)

GroupPolicy: Group Policy on Chrome detected <======= ATTENTION
 

==================== Internet (Whitelisted) ====================
 

HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.aldi.com

HKCU\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://medion.msn.com

HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.bing.com/search?q={searchTerms}

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.bigseekpro.com/splitcam/{055CFE95-936D-417A-AAB2-2AC0AFD22D4E}

URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.

SearchScopes: HKLM - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://feed.snapdo.com/?publisher=SnapdoSoftonicYB&dpid=SnapdoSoftonicYB&co=AT&userid=ff5ef7d6-ec21-4e44-8171-5c91cae9b25a&searchtype=ds&q={searchTerms}&installDate=23/07/2013

SearchScopes: HKCU - ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}

SearchScopes: HKCU - {006ee092-9658-4fd6-bd8e-a21a348e59f5} URL = hxxp://www.bing.com/search?q={searchTerms}

SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

BHO: AC-Pro - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files\AutocompletePro\AutocompletePro.dll (SimplyGen)

BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)

BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)

BHO: Windows Live Anmelde-Hilfsprogramm - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)

BHO: Office Document Cache Handler - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)

BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)

BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)

BHO: SMTTB2009 Class - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Splitcam Toolbar\tbcore3.dll ()

Toolbar: HKLM - Splitcam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\Splitcam Toolbar\tbcore3.dll ()

Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.)

Toolbar: HKLM - avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)

Toolbar: HKLM - No Name - {ae07101b-46d4-4a98-af68-0333ea26e113} -  No File

Toolbar: HKCU - No Name - {21FA44EF-376D-4D53-9B0F-8A89D3229068} -  No File

Toolbar: HKCU - No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File

Toolbar: HKCU - Splitcam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\Splitcam Toolbar\tbcore3.dll ()

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab

DPF: {C8B73157-8752-429E-A465-3F361C76AE89} https://shop.hofer-fotos-druck.at/shop/activex/aldi_at_express_upload.cab

DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_20-windows-i586.cab

Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)

Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8117.0416.dll (Microsoft Corporation)

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

Winsock: Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
 

FireFox:

========

FF ProfilePath: C:\Users\Sonnenschein\AppData\Roaming\Mozilla\Firefox\Profiles\6bsdgvw3.default

FF NewTab: about:blank

FF SelectedSearchEngine: Google

FF Homepage: about:home

FF Keyword.URL: hxxp://www.google.com/search?rls=org.mozilla:en-US:official&client=firefox-a&q=

FF Plugin: @Apple.com/iTunes,version=1.0 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

FF Plugin: @microsoft.com/GENUINE - disabled No File

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.30214.0\npctrl.dll ( Microsoft Corporation)

FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)

FF Plugin: @microsoft.com/SharePoint,version=14.0 - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)

FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll (Google Inc.)

FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\cgpcfg.dll (Citrix Systems, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\CgpCore.dll (Citrix Systems, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\confmgr.dll ()

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\ctxlogging.dll ()

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\ctxmui.dll (Citrix Systems, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\icafile.dll (Citrix Systems, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\icalogon.dll (Citrix Systems, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\msvcm80.dll (Microsoft Corporation)

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\msvcp80.dll (Microsoft Corporation)

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\msvcr80.dll (Microsoft Corporation)

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\npicaN.dll ()

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\sslsdk_b.dll (Citrix Systems, Inc.)

FF Plugin ProgramFiles/Appdata: C:\Users\Sonnenschein\AppData\Roaming\mozilla\plugins\TcpPServ.dll (Citrix Systems, Inc.)

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\amazondotcom-de.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\eBay-de.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\leo_ende_de.xml

FF SearchPlugin: C:\Program Files\mozilla firefox\browser\searchplugins\yahoo-de.xml

FF Extension: websaVe - C:\Users\Sonnenschein\AppData\Roaming\Mozilla\Firefox\Profiles\6bsdgvw3.default\Extensions\iii-y@kb-ioi.com [2014-03-15]

FF Extension: YoutubeAdblocker - C:\Users\Sonnenschein\AppData\Roaming\Mozilla\Firefox\Profiles\6bsdgvw3.default\Extensions\oom2lccer@ueyavolh-zohy.org [2014-03-15]

FF Extension: Ghostery - C:\Users\Sonnenschein\AppData\Roaming\Mozilla\Firefox\Profiles\6bsdgvw3.default\Extensions\firefox@ghostery.com.xpi [2014-03-15]

FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\Alwil Software\Avast5\WebRep\FF

FF Extension: avast! WebRep - C:\Program Files\Alwil Software\Avast5\WebRep\FF [2012-03-03]
 

Chrome: 

=======

CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll ()

CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer

CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll ()

CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\33.0.1750.154\pdf.dll ()

CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)

CHR Plugin: (Java Deployment Toolkit 6.0.200.2) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll (Sun Microsystems, Inc.)

CHR Plugin: (Java(TM) Platform SE 6 U20) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)

CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin2.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin3.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin4.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin5.dll (Apple Inc.)

CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin6.dll No File

CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files\QuickTime\plugins\npqtplugin7.dll No File

CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)

CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)

CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File

CHR Plugin: (Windows Live® Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)

CHR Plugin: (iTunes Application Detector) - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()

CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll No File

CHR Extension: (YoutubeAdblocker) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\adcafjajopifbjdpaijgnohckhonfhcn [2014-02-08]

CHR Extension: (Google Docs) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-07-28]

CHR Extension: (Google Drive) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-07-28]

CHR Extension: (YouTube) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-07-28]

CHR Extension: (Browser Extension) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgmnfnmlficgeijcalkgnnkigkefkbhd [2014-02-08]

CHR Extension: (Google-Suche) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-07-28]

CHR Extension: (AutocompletePro plugin for chrome) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\defdhglnppeioeflggkmglipcecffkhk [2013-07-28]

CHR Extension: (websaVe) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\giabpcpegijfkhoialfhphnjfafnefbp [2014-02-08]

CHR Extension: (JavaScript Popup Blocker) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\hiajdlfgbgnnjakkbnpdhmhfhklkbiol [2014-03-15]

CHR Extension: (avast! WebRep) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda [2013-07-29]

CHR Extension: (YTTBoookkMark) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihalhjabdmedalaikjhpgnjpfohgjfpo [2014-02-08]

CHR Extension: (Google Wallet) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-31]

CHR Extension: (Google Mail) - C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-07-28]

CHR HKLM\...\Chrome\Extension: [defdhglnppeioeflggkmglipcecffkhk] - C:\Program Files\AutocompletePro\chrome\autocompleteprochrome.crx [2010-09-16]

CHR HKLM\...\Chrome\Extension: [icmlaeflemplmjndnaapfdbbnpncnbda] - C:\Program Files\Alwil Software\Avast5\WebRep\Chrome\aswWebRepChrome.crx [2012-03-03]
 

========================== Services (Whitelisted) =================
 

R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [45248 2013-03-07] (AVAST Software)

R2 MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)

R2 MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)

R2 RichVideo; C:\Program Files\CyberLink\Shared files\RichVideo.exe [244904 2010-02-10] ()

R3 WisLMSvc; C:\Program Files\Launch Manager\WisLMSvc.exe [118560 2009-10-23] (Wistron Corp.)
 

==================== Drivers (Whitelisted) ====================
 

R2 aswFsBlk; C:\Windows\system32\Drivers\aswFsBlk.sys [29816 2013-03-07] (AVAST Software)

R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [66336 2013-03-07] (AVAST Software)

R1 aswRdr; C:\Windows\System32\Drivers\aswrdr2.sys [60656 2013-03-07] (AVAST Software)

R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49248 2013-03-07] ()

R1 aswSnx; C:\Windows\system32\Drivers\aswSnx.sys [765736 2013-03-07] (AVAST Software)

R1 aswSP; C:\Windows\system32\Drivers\aswSP.sys [368176 2013-03-07] (AVAST Software)

R1 aswTdi; C:\Windows\system32\Drivers\aswTdi.sys [62376 2013-03-07] (AVAST Software)

S3 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [164736 2013-03-07] ()

R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [22856 2013-04-04] (Malwarebytes Corporation)

R3 WFMC_VAD; C:\Windows\System32\DRIVERS\wfmcvad.sys [19456 2010-02-08] (WiFi Media Connect)

S3 cpuz132; \??\C:\Users\SONNEN~1\AppData\Local\Temp\cpuz132\cpuz132_x32.sys [X]

S3 SPLITCAM; system32\DRIVERS\splitcam.sys [X]
 

==================== NetSvcs (Whitelisted) ===================
 
 

==================== One Month Created Files and Folders ========
 

2014-03-17 14:44 - 2014-03-17 14:45 - 00022358 _____ () C:\Users\Sonnenschein\Downloads\FRST.txt

2014-03-17 14:44 - 2014-03-17 14:44 - 00000000 ____D () C:\FRST

2014-03-17 14:43 - 2014-03-17 14:43 - 01145856 _____ (Farbar) C:\Users\Sonnenschein\Downloads\FRST.exe

2014-03-16 11:10 - 2014-03-16 11:10 - 00014796 _____ () C:\Users\Sonnenschein\Downloads\log_winzip.xml

2014-03-15 19:16 - 2014-03-15 19:16 - 00001075 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-03-15 19:16 - 2014-03-15 19:16 - 00000000 ____D () C:\Users\Sonnenschein\AppData\Roaming\Malwarebytes

2014-03-15 19:16 - 2014-03-15 19:16 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-03-15 19:16 - 2014-03-15 19:16 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware

2014-03-15 19:16 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys

2014-03-15 19:12 - 2014-03-15 19:13 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Sonnenschein\Downloads\mbam-setup-1.75.0.1300.exe

2014-03-15 18:51 - 2014-03-15 18:53 - 25578720 _____ (Microsoft Corporation) C:\Users\Sonnenschein\Downloads\Windows-KB890830-V5.10(1).exe

2014-03-15 18:50 - 2014-03-15 18:52 - 25578720 _____ (Microsoft Corporation) C:\Users\Sonnenschein\Downloads\Windows-KB890830-V5.10.exe

2014-03-15 18:39 - 2014-03-15 18:39 - 00017749 _____ () C:\Users\Sonnenschein\Desktop\get-mirror-server.html

2014-03-15 18:31 - 2014-03-15 18:31 - 00014797 _____ () C:\Users\Sonnenschein\Desktop\Protokoll Malware.xml

2014-03-15 18:24 - 2014-03-15 18:24 - 00014797 _____ () C:\Users\Sonnenschein\Desktop\log.xml

2014-03-15 18:04 - 2014-03-15 18:04 - 00001203 _____ () C:\Users\Sonnenschein\Desktop\wzmp_8(2) - Verknüpfung.lnk

2014-03-15 17:58 - 2014-03-15 17:58 - 00001155 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk

2014-03-15 17:58 - 2014-03-15 17:58 - 00000000 ____D () C:\Users\Sonnenschein\AppData\Roaming\Nico Mak Computing

2014-03-15 17:58 - 2014-03-15 17:58 - 00000000 ____D () C:\ProgramData\Nico Mak Computing

2014-03-15 17:58 - 2014-03-15 17:58 - 00000000 ____D () C:\Program Files\WinZip Malware Protector

2014-03-15 17:58 - 2013-03-15 17:01 - 00016384 _____ () C:\Windows\system32\wsusnative32.exe

2014-03-15 17:56 - 2014-03-15 17:56 - 04892480 _____ (WinZip International LLC ) C:\Users\Sonnenschein\Downloads\wzmp_8(2).exe

2014-03-15 17:54 - 2014-03-15 17:57 - 04892480 _____ (WinZip International LLC ) C:\Users\Sonnenschein\Downloads\wzmp_8.exe

2014-03-15 17:50 - 2014-03-15 17:50 - 04435328 _____ (AVG Technologies) C:\Users\Sonnenschein\Downloads\avg_avct_stb_all_2014_4158_futuretest4.exe

2014-03-15 16:19 - 2014-03-15 16:19 - 00001113 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk

2014-03-15 16:19 - 2014-03-15 16:19 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service

2014-03-15 16:19 - 2014-03-15 16:19 - 00000000 ____D () C:\Program Files\Mozilla Firefox

2014-03-15 16:17 - 2014-03-15 16:17 - 00283256 _____ (Mozilla) C:\Users\Sonnenschein\Downloads\Firefox Setup Stub 27.0.1.exe

2014-03-08 14:16 - 2014-03-08 14:16 - 06034911 _____ () C:\Users\Sonnenschein\Downloads\Österreichs_beste_Ärzte_20130927.pdf (1).zip

2014-03-08 08:40 - 2014-03-08 08:40 - 00001757 _____ () C:\Users\Public\Desktop\iTunes.lnk

2014-03-08 08:39 - 2014-03-08 08:40 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1

2014-03-08 08:39 - 2014-03-08 08:40 - 00000000 ____D () C:\Program Files\iTunes

2014-03-08 08:39 - 2014-03-08 08:39 - 00000000 ____D () C:\Program Files\iPod

2014-03-08 08:31 - 2014-03-08 08:31 - 00001819 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk

2014-03-08 08:31 - 2014-03-08 08:31 - 00000000 ____D () C:\Program Files\QuickTime

2014-03-02 17:21 - 2014-03-02 17:31 - 51012704 _____ () C:\Users\Sonnenschein\Downloads\DJ2050_J510_1313.exe

2014-03-02 17:21 - 2014-03-02 17:23 - 06123336 _____ () C:\Users\Sonnenschein\Downloads\HPPSdr.exe
 

==================== One Month Modified Files and Folders =======
 

2014-03-17 14:45 - 2014-03-17 14:44 - 00022358 _____ () C:\Users\Sonnenschein\Downloads\FRST.txt

2014-03-17 14:44 - 2014-03-17 14:44 - 00000000 ____D () C:\FRST

2014-03-17 14:43 - 2014-03-17 14:43 - 01145856 _____ (Farbar) C:\Users\Sonnenschein\Downloads\FRST.exe

2014-03-17 14:37 - 2009-07-14 05:34 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2014-03-17 14:37 - 2009-07-14 05:34 - 00009920 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2014-03-17 14:34 - 2010-06-28 23:30 - 00005430 _____ () C:\Windows\system32\PerfStringBackup.INI

2014-03-17 14:33 - 2010-09-06 09:32 - 01647132 _____ () C:\Windows\WindowsUpdate.log

2014-03-17 14:30 - 2013-04-21 15:35 - 00000000 ___RD () C:\Users\Sonnenschein\Dropbox

2014-03-17 14:30 - 2013-04-21 15:27 - 00000000 ____D () C:\Users\Sonnenschein\AppData\Roaming\Dropbox

2014-03-17 14:30 - 2011-09-04 09:36 - 00000000 ____D () C:\Users\Sonnenschein\Tracing

2014-03-17 14:29 - 2010-09-11 18:32 - 00001106 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job

2014-03-17 14:28 - 2013-11-02 21:30 - 00007114 _____ () C:\Windows\setupact.log

2014-03-17 14:28 - 2009-07-14 05:53 - 00000006 ____H () C:\Windows\Tasks\SA.DAT

2014-03-16 15:06 - 2010-09-11 18:32 - 00001110 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job

2014-03-16 11:10 - 2014-03-16 11:10 - 00014796 _____ () C:\Users\Sonnenschein\Downloads\log_winzip.xml

2014-03-16 10:15 - 2014-02-08 20:54 - 00000306 __RSH () C:\ProgramData\ntuser.pol

2014-03-16 10:14 - 2013-12-01 14:08 - 00007968 _____ () C:\Windows\PFRO.log

2014-03-15 19:16 - 2014-03-15 19:16 - 00001075 _____ () C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk

2014-03-15 19:16 - 2014-03-15 19:16 - 00000000 ____D () C:\Users\Sonnenschein\AppData\Roaming\Malwarebytes

2014-03-15 19:16 - 2014-03-15 19:16 - 00000000 ____D () C:\ProgramData\Malwarebytes

2014-03-15 19:16 - 2014-03-15 19:16 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware

2014-03-15 19:13 - 2014-03-15 19:12 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Sonnenschein\Downloads\mbam-setup-1.75.0.1300.exe

2014-03-15 18:53 - 2014-03-15 18:51 - 25578720 _____ (Microsoft Corporation) C:\Users\Sonnenschein\Downloads\Windows-KB890830-V5.10(1).exe

2014-03-15 18:52 - 2014-03-15 18:50 - 25578720 _____ (Microsoft Corporation) C:\Users\Sonnenschein\Downloads\Windows-KB890830-V5.10.exe

2014-03-15 18:39 - 2014-03-15 18:39 - 00017749 _____ () C:\Users\Sonnenschein\Desktop\get-mirror-server.html

2014-03-15 18:31 - 2014-03-15 18:31 - 00014797 _____ () C:\Users\Sonnenschein\Desktop\Protokoll Malware.xml

2014-03-15 18:24 - 2014-03-15 18:24 - 00014797 _____ () C:\Users\Sonnenschein\Desktop\log.xml

2014-03-15 18:23 - 2013-07-28 11:24 - 00002125 _____ () C:\Users\Public\Desktop\Google Chrome.lnk

2014-03-15 18:04 - 2014-03-15 18:04 - 00001203 _____ () C:\Users\Sonnenschein\Desktop\wzmp_8(2) - Verknüpfung.lnk

2014-03-15 17:58 - 2014-03-15 17:58 - 00001155 _____ () C:\Users\Public\Desktop\WinZip Malware Protector.lnk

2014-03-15 17:58 - 2014-03-15 17:58 - 00000000 ____D () C:\Users\Sonnenschein\AppData\Roaming\Nico Mak Computing

2014-03-15 17:58 - 2014-03-15 17:58 - 00000000 ____D () C:\ProgramData\Nico Mak Computing

2014-03-15 17:58 - 2014-03-15 17:58 - 00000000 ____D () C:\Program Files\WinZip Malware Protector

2014-03-15 17:57 - 2014-03-15 17:54 - 04892480 _____ (WinZip International LLC ) C:\Users\Sonnenschein\Downloads\wzmp_8.exe

2014-03-15 17:56 - 2014-03-15 17:56 - 04892480 _____ (WinZip International LLC ) C:\Users\Sonnenschein\Downloads\wzmp_8(2).exe

2014-03-15 17:50 - 2014-03-15 17:50 - 04435328 _____ (AVG Technologies) C:\Users\Sonnenschein\Downloads\avg_avct_stb_all_2014_4158_futuretest4.exe

2014-03-15 16:19 - 2014-03-15 16:19 - 00001113 _____ () C:\Users\Public\Desktop\Mozilla Firefox.lnk

2014-03-15 16:19 - 2014-03-15 16:19 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service

2014-03-15 16:19 - 2014-03-15 16:19 - 00000000 ____D () C:\Program Files\Mozilla Firefox

2014-03-15 16:19 - 2013-07-09 13:06 - 00000000 ____D () C:\Users\Sonnenschein\AppData\Local\Mozilla

2014-03-15 16:17 - 2014-03-15 16:17 - 00283256 _____ (Mozilla) C:\Users\Sonnenschein\Downloads\Firefox Setup Stub 27.0.1.exe

2014-03-14 19:34 - 2010-06-29 00:04 - 00000000 ____D () C:\Program Files\Microsoft Silverlight

2014-03-14 11:15 - 2010-10-25 22:31 - 00000000 ____D () C:\ProgramData\Microsoft Help

2014-03-08 14:16 - 2014-03-08 14:16 - 06034911 _____ () C:\Users\Sonnenschein\Downloads\Österreichs_beste_Ärzte_20130927.pdf (1).zip

2014-03-08 08:40 - 2014-03-08 08:40 - 00001757 _____ () C:\Users\Public\Desktop\iTunes.lnk

2014-03-08 08:40 - 2014-03-08 08:39 - 00000000 ____D () C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1

2014-03-08 08:40 - 2014-03-08 08:39 - 00000000 ____D () C:\Program Files\iTunes

2014-03-08 08:39 - 2014-03-08 08:39 - 00000000 ____D () C:\Program Files\iPod

2014-03-08 08:39 - 2010-09-11 19:58 - 00000000 ____D () C:\Program Files\Common Files\Apple

2014-03-08 08:31 - 2014-03-08 08:31 - 00001819 _____ () C:\Users\Public\Desktop\QuickTime Player.lnk

2014-03-08 08:31 - 2014-03-08 08:31 - 00000000 ____D () C:\Program Files\QuickTime

2014-03-07 19:06 - 2010-09-11 18:29 - 00000000 ___RD () C:\Program Files\Skype

2014-03-07 19:06 - 2010-09-11 18:29 - 00000000 ____D () C:\ProgramData\Skype

2014-03-02 17:31 - 2014-03-02 17:21 - 51012704 _____ () C:\Users\Sonnenschein\Downloads\DJ2050_J510_1313.exe

2014-03-02 17:23 - 2014-03-02 17:21 - 06123336 _____ () C:\Users\Sonnenschein\Downloads\HPPSdr.exe

2014-03-02 14:03 - 2010-06-29 00:06 - 87350280 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe

2014-02-16 10:31 - 2009-07-14 03:04 - 00000478 _____ () C:\Windows\win.ini

2014-02-16 09:25 - 2010-09-11 19:58 - 00000000 ____D () C:\ProgramData\Apple

2014-02-16 09:12 - 2013-08-14 21:11 - 00000000 ____D () C:\Windows\system32\MRT
 

Some content of TEMP:

====================

C:\Users\Sonnenschein\AppData\Local\Temp\LiveSupport_setup.exe
 
 

==================== Bamital & volsnap Check =================
 

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\system32\winlogon.exe => MD5 is legit

C:\Windows\system32\wininit.exe => MD5 is legit

C:\Windows\system32\svchost.exe => MD5 is legit

C:\Windows\system32\services.exe => MD5 is legit

C:\Windows\system32\User32.dll => MD5 is legit

C:\Windows\system32\userinit.exe => MD5 is legit

C:\Windows\system32\rpcss.dll => MD5 is legit

C:\Windows\system32\Drivers\volsnap.sys => MD5 is legit
 
 

LastRegBack: 2014-03-04 07:29
 

==================== End Of Log ============================

--- --- ---

--- --- ---

Und hier der Log zu Eddition-Aditor:

Code:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-03-2014  01

Ran by Sonnenschein at 2014-03-17 14:45:53

Running from C:\Users\Sonnenschein\Downloads

Boot Mode: Normal

==========================================================
 
 

==================== Security Center ========================
 

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}

AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 

==================== Installed Programs ======================
 

Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)

Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)

Adobe AIR (Version: 1.5.0.7220 - Adobe Systems Inc.) Hidden

Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.1.53.64 - Adobe Systems Incorporated)

Adobe Reader 9.5.5 MUI (HKLM\...\{AC76BA86-7AD7-FFFF-7B44-A91000000001}) (Version: 9.5.5 - Adobe Systems Incorporated)

Apple Application Support (HKLM\...\{AAC5D43E-816D-4C2D-8E51-55FFF35BE301}) (Version: 3.0.1 - Apple Inc.)

Apple Mobile Device Support (HKLM\...\{18D47FA1-0440-48D3-A7E0-DA09537FF471}) (Version: 7.1.1.3 - Apple Inc.)

Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)

Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.27 - Atheros Communications Inc.)

AutocompletePro (HKLM\...\AutocompletePro3_is1) (Version:  - ) <==== ATTENTION

avast! Free Antivirus (HKLM\...\avast) (Version: 8.0.1483.0 - AVAST Software)

Bing Bar (HKLM\...\{F6A6DFF9-F71C-4BA6-B437-F18872866D3D}) (Version: 7.0.791.0 - Microsoft Corporation)

Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)

Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)

Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)

Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)

Citrix XenApp Web Plugin (HKLM\...\{EBFEEB3F-3E3B-4725-A4E0-376144CE4F76}) (Version: 11.0.0.5357 - Citrix Systems, Inc.)

CorelDRAW Essentials 4 - Content (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - Draw (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - Filters (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - ICA (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - IPM - No VBA (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - Lang BR (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - Lang DE (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - Lang EN (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - Lang ES (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - Lang FR (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - Lang IT (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - Lang NL (Version: 4.0 - Uw bedrijfsnaam) Hidden

CorelDRAW Essentials 4 - PHOTO-PAINT (Version: 4.0 - Corel Corporation) Hidden

CorelDRAW Essentials 4 - Windows Shell Extension (HKLM\...\_{CF0ADC18-6D8F-4353-8EAA-DF45456B7853}) (Version:  - Corel Corporation)

CorelDRAW Essentials 4 - Windows Shell Extension (Version: 1.1 - Corel Corporation) Hidden

CorelDRAW Essentials 4 (HKLM\...\_{C0237AA4-1BFB-46EA-860D-7B0EB365CA13}) (Version:  - Corel Corporation)

CorelDRAW Essentials 4 (Version: 4.0 - Corel Corporation) Hidden

CyberLink LabelPrint (HKLM\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.2602 - CyberLink Corp.)

CyberLink LabelPrint (Version: 2.5.2602 - CyberLink Corp.) Hidden

CyberLink MediaShow (HKLM\...\InstallShield_{80E158EA-7181-40FE-A701-301CE6BE64AB}) (Version: 5.0.1410a - CyberLink Corp.)

CyberLink MediaShow (Version: 5.0.1410a - CyberLink Corp.) Hidden

CyberLink MediaShow Espresso (HKLM\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 5.5.1412_24021 - CyberLink Corp.)

CyberLink MediaShow Espresso (Version: 5.5.1412_24021 - CyberLink Corp.) Hidden

CyberLink PhotoNow (HKLM\...\InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}) (Version: 1.1.6904 - CyberLink Corp.)

CyberLink PhotoNow (Version: 1.1.6904 - CyberLink Corp.) Hidden

CyberLink Power2Go (HKLM\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)

CyberLink Power2Go (Version: 6.1.3602c - CyberLink Corp.) Hidden

CyberLink PowerDirector (HKLM\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.2718 - CyberLink Corp.)

CyberLink PowerDirector (Version: 8.0.2718 - CyberLink Corp.) Hidden

CyberLink PowerDVD 9 (HKLM\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.2925.52 - CyberLink Corp.)

CyberLink PowerDVD 9 (Version: 9.0.2925.52 - CyberLink Corp.) Hidden

CyberLink PowerDVD Copy (HKLM\...\InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}) (Version: 1.5.1306 - CyberLink Corp.)

CyberLink PowerDVD Copy (Version: 1.5.1306 - CyberLink Corp.) Hidden

CyberLink PowerProducer (HKLM\...\InstallShield_{B7A0CE06-068E-11D6-97FD-0050BACBF861}) (Version: 5.0.2.2326 - CyberLink Corp.)

CyberLink PowerProducer (Version: 5.0.2.2326 - CyberLink Corp.) Hidden

CyberLink YouCam (HKLM\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.0.2626 - CyberLink Corp.)

CyberLink YouCam (Version: 3.0.2626 - CyberLink Corp.) Hidden

Definition Update for Microsoft Office 2010 (KB982726) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{92C42EDD-6524-4577-B2EB-6C68C63B6D4A}) (Version:  - Microsoft)

Driver Whiz (HKLM\...\{97BBECCF-B1FD-4010-8D4B-EFC9E3CCEECF}) (Version: 8.0.1 - Driver Whiz)

Dropbox (HKCU\...\Dropbox) (Version: 2.4.11 - Dropbox, Inc.)

Google Chrome (HKLM\...\Google Chrome) (Version: 33.0.1750.154 - Google Inc.)

Google Update Helper (Version: 1.3.22.5 - Google Inc.) Hidden

Haali Media Splitter (HKLM\...\HaaliMkx) (Version:  - )

HP Deskjet 2050 J510 series - Grundlegende Software für das Gerät (HKLM\...\{25DE52ED-9E51-4C50-AE16-E258836ADF83}) (Version: 22.50.231.0 - Hewlett-Packard Co.)

HP Deskjet 2050 J510 series Hilfe (HKLM\...\{7A3DF2E2-CF13-44FB-A93E-F71D5381DB3F}) (Version: 140.0.61.61 - Hewlett Packard)

HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.3781 - HP Photo Creations Powered by RocketLife)

HP Update (HKLM\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)

Intel(R) Graphics Media Accelerator Driver (HKLM\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2141 - Intel Corporation)

Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)

Intel(R) Rapid Storage Technology (HKLM\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.6.0.1014 - Intel Corporation)

iTunes (HKLM\...\{2F21564D-DE05-4C6D-B21E-08B9D313FAB3}) (Version: 11.1.5.5 - Apple Inc.)

Java Auto Updater (Version: 2.0.2.1 - Sun Microsystems, Inc.) Hidden

Java(TM) 6 Update 20 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216020FF}) (Version: 6.0.200 - Sun Microsystems, Inc.)

Junk Mail filter update (Version: 14.0.8117.416 - Microsoft Corporation) Hidden

Launch Manager V1.5.0.8 (HKLM\...\{D0846526-66DD-4DC9-A02C-98F9A2806812}) (Version: 1.5.0.8 - Wistron Corp.)

Malwarebytes Anti-Malware Version 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)

Medion Home Cinema (HKLM\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 8.0.1505 - CyberLink Corp.)

Medion Home Cinema (Version: 8.0.1505 - CyberLink Corp.) Hidden

Microsoft – Speichern als PDF oder XPS – Add-In für 2007 Microsoft Office-Programme (HKLM\...\{90120000-00B2-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)

Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)

Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden

Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden

Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden

Microsoft Office 2010 (HKLM\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Office Access MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Excel MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Groove MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office InfoPath MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Klick-und-Los 2010 (HKLM\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Office Klick-und-Los 2010 (Version: 14.0.4763.1000 - Microsoft Corporation) Hidden

Microsoft Office OneNote MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Outlook MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office PowerPoint MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)

Microsoft Office Professional Plus 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (English) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (French) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proof (Italian) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Proofing (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Publisher MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Shared MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Office Starter 2010 - Deutsch (HKLM\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)

Microsoft Office Word MUI (German) 2010 (Version: 14.0.7015.1000 - Microsoft Corporation) Hidden

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30214.0 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [DEU] (HKLM\...\{BAC80EF3-E106-4AEA-8C57-F217F9BC7358}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)

Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)

Microsoft Sync Framework Services Native v1.0 (x86) (HKLM\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Mobile Connect (HKLM\...\{3EAAC5FD-E209-4856-8C49-D4EA40F85032}) (Version: 1.00.0000 - Huawei technologies)

Mozilla Firefox 27.0.1 (x86 de) (HKLM\...\Mozilla Firefox 27.0.1 (x86 de)) (Version: 27.0.1 - Mozilla)

Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)

MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden

MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)

PDF-XChange 3 (HKLM\...\PDF-XChange 3_is1) (Version:  - Tracker Software)

PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)

QuickTime 7 (HKLM\...\{111EE7DF-FC45-40C7-98A7-753AC46B12FB}) (Version: 7.75.80.95 - Apple Inc.)

Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6096 - Realtek Semiconductor Corp.)

Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30121 - Realtek Semiconductor Corp.)

REALTEK Wireless LAN Driver (HKLM\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.0148 - REALTEK Semiconductor Corp.)

Security Task Manager 1.8d (HKLM\...\Security Task Manager) (Version: 1.8d - Neuber Software)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (Version:  - Microsoft) Hidden

Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)

Splitcam Toolbar (HKLM\...\Splitcam Toolbar) (Version:  - )

Studie zur Verbesserung von HP Deskjet 2050 J510 series Produkten (HKLM\...\{10010089-120F-4B71-A245-261A11D234FF}) (Version: 22.50.231.0 - Hewlett-Packard Co.)

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.19.0 - Synaptics Incorporated)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2468871) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2533523) (Version: 1 - Microsoft Corporation)

Update for Microsoft .NET Framework 4 Client Profile (KB2600217) (HKLM\...\{3C3901C5-3455-3E0A-A214-0B093A5070A6}.KB2600217) (Version: 1 - Microsoft Corporation)

Update for Microsoft Access 2010 (KB2553446) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{B4A38370-2ADB-46B0-A1B0-0C4A2F7DCA31}) (Version:  - Microsoft)

Update for Microsoft Filter Pack 2.0 (KB2837594) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{D3C85176-ACCC-4AF0-817D-1BC803303B74}) (Version:  - Microsoft)

Update for Microsoft InfoPath 2010 (KB2817369) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{4EEA3D3E-989C-4DF4-AB0A-3042C0C12AA3}) (Version:  - Microsoft)

Update for Microsoft InfoPath 2010 (KB2817396) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{39767ECA-1731-45DB-AB5B-6BF40E151D66}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2494150) (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{3FCFD88F-4D13-4F38-8625-ABABEA7F61EA}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589298) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DADF7E25-FFA4-4D02-BE84-1DAE62C18516}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589352) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F4284D93-7AE8-4309-8CF3-9AD394F35F3A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2589375) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{287A1E92-9E41-4BC1-8920-B3D0E9220800}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2597087) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{9D69691D-823D-4C3E-9B12-563A3F520366}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2760598) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{ECFE33A3-B8B7-439A-ADE4-59FBD29EF9B8}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2760631) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{35698CB7-AAA2-4577-B505-DBFF504AEF23}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2794737) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5AA578BB-759C-40FD-9661-A737C0884541}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2825640) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{BA610006-2C39-4419-9834-CF61AB24810A}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{C70D2038-A2C4-4A99-87DE-5272BB44F0CE}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2850079) 32-Bit Edition (HKLM\...\{90140000-001F-040C-0000-0000000FF1CE}_Office14.PROPLUSR_{82F87E28-B18E-46D6-A399-E2F19CF5949B}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2863818) 32-Bit Edition (HKLM\...\{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUSR_{83B1B530-7D9E-4C6A-907F-E979CEE9C295}) (Version:  - Microsoft)

Update for Microsoft Office 2010 (KB2878225) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{EFF5EBA3-40AD-4859-85E7-3C1CF4F297EB}) (Version:  - Microsoft)

Update for Microsoft OneNote 2010 (KB2837595) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{51CCA922-A0CC-47C4-8910-6936D97CAC2E}) (Version:  - Microsoft)

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{90140000-001A-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{A0657506-69DC-44AE-8DC1-58E7C6F5B1C9}) (Version:  - Microsoft)

Update for Microsoft Outlook 2010 (KB2687567) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{2AB483F1-C86E-427A-83B4-23889B03512D}) (Version:  - Microsoft)

Update for Microsoft PowerPoint 2010 (KB2553145) 32-Bit Edition (HKLM\...\{90140000-0018-0407-0000-0000000FF1CE}_Office14.PROPLUSR_{81812245-FC84-426A-BC02-6659C88CC7B2}) (Version:  - Microsoft)

Update for Microsoft PowerPoint 2010 (KB2775360) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{80F56E3F-1D47-4E45-B6E0-FEF4E919F4F9}) (Version:  - Microsoft)

Update for Microsoft SharePoint Workspace 2010 (KB2760601) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{F9F5A080-AF38-4966-9A6B-C43DCA465035}) (Version:  - Microsoft)

Update for Microsoft Visio 2010 (KB2878227) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{5D357893-40BA-4323-86BA-D97C66CD72F4}) (Version:  - Microsoft)

Update for Microsoft Visio Viewer 2010 (KB2810066) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{8C55AA83-54C2-4236-A622-78440A411DC5}) (Version:  - Microsoft)

Update for Microsoft Word 2010 (KB2837593) 32-Bit Edition (HKLM\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{E78E2B68-8FD1-42EE-BB74-99A4D9E6222D}) (Version:  - Microsoft)

Wi-Fi MediaConnect (HKLM\...\{AA58346A-A5D7-4659-91D6-38D07345BDCF}) (Version: 1.6.43 - Philips)

Windows Live Anmelde-Assistent (HKLM\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)

Windows Live Call (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden

Windows Live Communications Platform (Version: 14.0.8117.416 - Microsoft Corporation) Hidden

Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)

Windows Live Essentials (Version: 14.0.8117.416 - Microsoft Corporation) Hidden

Windows Live Fotogalerie (Version: 14.0.8117.416 - Microsoft Corporation) Hidden

Windows Live Mail (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden

Windows Live Messenger (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden

Windows Live Movie Maker (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden

Windows Live Sync (HKLM\...\{586509F0-350D-48B5-B763-9CC2F8D96C4C}) (Version: 14.0.8117.416 - Microsoft Corporation)

Windows Live Writer (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden

Windows Live-Uploadtool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)

Windows Media Encoder 9 Series (HKLM\...\Windows Media Encoder 9) (Version:  - )

Windows Media Encoder 9 Series (Version: 9.00.2980 - Microsoft Corporation) Hidden

WinZip Malware Protector (HKLM\...\WinZip Malware Protector_is1) (Version: 2.1.1000.10798 - WinZip International LLC)
 

==================== Restore Points  =========================
 

08-02-2014 18:10:22 Windows Update

16-02-2014 08:02:00 Windows Update

16-02-2014 08:07:24 Windows Update

16-02-2014 09:30:13 Windows Update

20-02-2014 06:40:26 Windows Update

22-02-2014 14:32:53 TuneUp Utilities 2014 wird entfernt

22-02-2014 14:34:18 TuneUp Utilities 2014 (de-DE) wird entfernt

28-02-2014 13:44:26 Windows Update

04-03-2014 05:55:18 Windows Update

07-03-2014 18:04:51 Windows Update

07-03-2014 18:30:04 Windows-Sicherung

11-03-2014 05:45:54 Windows Update

14-03-2014 10:12:51 Windows Update
 

==================== Hosts content: ==========================
 

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
 

==================== Scheduled Tasks (whitelisted) =============
 

Task: {00E6A28A-F415-4527-8EAA-3F09C8D5329E} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)

Task: {0D0B5078-C7B7-44AF-8323-6F7342B32966} - System32\Tasks\{20A600B3-18F0-46D1-8C34-95BAB81AFB05} => C:\Program Files\Skype\Phone\Skype.exe [2013-11-14] (Skype Technologies S.A.)

Task: {2832B8FA-B2E0-49C3-9564-51C6F9343A8C} - System32\Tasks\WinZip Malware Protector_startup => C:\Program Files\WinZip Malware Protector\WinZipMalwareProtector.exe [2013-07-15] (Nico Mak Computing)

Task: {3724C9C8-2869-403A-B531-1046E4CF947B} - System32\Tasks\HPCustParticipation HP Deskjet 2050 J510 series => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-16] (Hewlett-Packard Co.)

Task: {398BF952-A1EA-4CE1-8202-2C9456D18DC0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-11] (Google Inc.)

Task: {45842BB4-7808-4173-9122-51562551B00C} - System32\Tasks\HpWebReg.exe => C:\Program Files\HP\HP Deskjet 2050 J510 series\Bin\HpWebReg.exe [2010-11-16] (Hewlett-Packard Co.)

Task: {5F60372C-EDAA-4169-B315-64CB0DD6F051} - System32\Tasks\avast! Emergency Update => C:\Program Files\Alwil Software\Avast5\AvastEmUpdate.exe [2013-03-07] (AVAST Software)

Task: {619BDB11-D87E-4C80-AEC4-91AA4AFAF83D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2010-09-11] (Google Inc.)

Task: {65F27A7D-16F4-4641-920F-2F1E1D2F71ED} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04] (Adobe Systems Incorporated)

Task: {7B59F38B-1125-4769-835A-5F8B226B2142} - System32\Tasks\{AD75D77F-54A6-431B-BD89-B79B9CC0C7AF} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.0.0.126/de/abandoninstall?page=tsProgressBar

Task: {86E66A3B-3413-4E13-8690-C6D09C954AE6} - System32\Tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup => Rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup

Task: {FA45FA35-2BBE-4B03-8F48-6EADC6DBF80C} - System32\Tasks\{3AEFB99B-2117-4C34-BBAB-A01B6D09B1A2} => Iexplore.exe hxxp://ui.skype.com/ui/0/6.0.0.126/de/abandoninstall?page=tsProgressBar

Task: {FBB492C8-ED3C-4E3B-9CE5-C78998E74284} - System32\Tasks\HP-Online-Aktualisierungsprogramm => C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe [2010-06-09] (Hewlett-Packard)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
 

==================== Loaded Modules (whitelisted) =============
 

2014-03-17 14:32 - 2014-03-17 10:35 - 02283008 _____ () C:\Program Files\Alwil Software\Avast5\defs\14031700\algo.dll

2014-02-06 00:52 - 2014-02-06 00:52 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll

2014-02-06 00:52 - 2014-02-06 00:52 - 01044808 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll

2010-06-28 16:53 - 2010-02-10 11:34 - 00244904 ____N () C:\Program Files\CyberLink\Shared files\RichVideo.exe

2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF

2014-03-15 17:58 - 2013-02-28 16:53 - 00886272 _____ () C:\Program Files\WinZip Malware Protector\System.Data.SQLite.dll

2014-03-15 17:58 - 2013-07-15 16:53 - 01717936 _____ () C:\Program Files\WinZip Malware Protector\aspsys.dll

2009-11-02 22:20 - 2009-11-02 22:20 - 00619816 ____N () C:\Program Files\CyberLink\Power2Go\CLMediaLibrary.dll

2009-11-02 22:23 - 2009-11-02 22:23 - 00013096 ____N () C:\Program Files\CyberLink\Power2Go\CLMLSvcPS.dll

2013-10-19 00:55 - 2013-10-19 00:55 - 25100288 _____ () C:\Users\Sonnenschein\AppData\Roaming\Dropbox\bin\libcef.dll

2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\office14\Cultures\office.odf

2013-12-26 17:49 - 2010-06-21 11:14 - 00308736 _____ () C:\Program Files\Philips\Wi-Fi MediaConnect\HTSRecover.exe

2014-03-15 18:23 - 2014-03-15 01:50 - 00051016 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\chrome_elf.dll

2014-03-15 18:23 - 2014-03-15 01:50 - 00716616 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\libglesv2.dll

2014-03-15 18:23 - 2014-03-15 01:50 - 00100168 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\libegl.dll

2014-03-15 18:23 - 2014-03-15 01:50 - 04061000 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\pdf.dll

2014-03-15 18:23 - 2014-03-15 01:50 - 00394568 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\ppGoogleNaClPluginChrome.dll

2014-03-15 18:23 - 2014-03-15 01:50 - 01647432 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\ffmpegsumo.dll

2013-01-09 20:45 - 2013-01-09 20:45 - 00170496 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\d89f0252d910d617de1de783a812f840\IsdiInterop.ni.dll

2010-06-29 00:22 - 2010-03-04 04:08 - 00058880 _____ () C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll

2014-03-15 18:23 - 2014-03-15 01:50 - 13637448 _____ () C:\Program Files\Google\Chrome\Application\33.0.1750.154\PepperFlash\pepflashplayer.dll
 

==================== Alternate Data Streams (whitelisted) =========
 
 

==================== Safe Mode (whitelisted) ===================
 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BsScanner => ""="Service"
 

==================== Disabled items from MSCONFIG ==============
 

MSCONFIG\startupfolder: C:^Users^Sonnenschein^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup

MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
 

==================== Faulty Device Manager Devices =============
 
 

==================== Event log errors: =========================
 

Application errors:

==================

Error: (03/17/2014 02:34:53 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)

Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
 

Error: (03/17/2014 02:34:53 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)

Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 

Error: (03/17/2014 02:34:53 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)

Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 

Error: (03/16/2014 03:35:43 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)

Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
 

Error: (03/16/2014 03:35:43 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)

Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 

Error: (03/16/2014 03:35:43 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)

Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 

Error: (03/16/2014 02:11:31 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)

Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.
 

Error: (03/16/2014 02:11:31 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)

Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 

Error: (03/16/2014 02:11:31 PM) (Source: Microsoft-Windows-LoadPerf) (User: NT-AUTORITÄT)

Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.
 

Error: (03/16/2014 02:08:36 PM) (Source: Bonjour Service) (User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 5273
 
 

System errors:

=============

Error: (03/15/2014 00:54:37 PM) (Source: DCOM) (User: )

Description: {078AEF33-C48A-49F7-AFF3-A0EE810BFE7C}
 

Error: (03/15/2014 00:54:37 PM) (Source: DCOM) (User: )

Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}
 

Error: (03/15/2014 00:54:35 PM) (Source: Tcpip) (User: )

Description: Das System hat einen Adressenkonflikt der IP-Adresse 192.168.1.100 mit dem Computer mit der

Netzwerkhardwareadresse 5C-B5-24-B4-ED-B9 ermittelt. Netzwerkvorgänge könnten daher auf diesem

System unterbrochen werden.
 

Error: (02/23/2014 02:15:34 PM) (Source: Service Control Manager) (User: )

Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst ShellHWDetection erreicht.
 

Error: (02/22/2014 06:15:21 PM) (Source: DCOM) (User: )

Description: {ABC01078-F197-4B0B-ADBC-CFE684B39C82}
 

Error: (02/16/2014 09:08:29 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)

Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070652 fehlgeschlagen: Update für Microsoft PowerPoint 2010 (KB2775360) 32-Bit-Edition
 

Error: (02/16/2014 09:08:18 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)

Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070652 fehlgeschlagen: Update für Microsoft Outlook 2010 (KB2687567) 32-Bit-Edition
 

Error: (02/16/2014 09:08:04 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (User: NT-AUTORITÄT)

Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070652 fehlgeschlagen: Update für Microsoft InfoPath 2010 (KB2817396) 32-Bit-Edition
 

Error: (02/16/2014 08:40:42 AM) (Source: EventLog) (User: )

Description: Das System wurde zuvor am ‎16.‎02.‎2014 um 08:38:41 unerwartet heruntergefahren.
 

Error: (02/05/2014 09:49:10 PM) (Source: volsnap) (User: )

Description: Die Schattenkopien von Volume "C:" wurden aufgrund eines E/A-Fehlers auf Volume "C:" abgebrochen.
 
 

Microsoft Office Sessions:

=========================

Error: (03/17/2014 02:34:53 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)

Description: WmiApRplWmiApRpl8F20300004D070000
 

Error: (03/17/2014 02:34:53 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)

Description: Performance1637070000000000000000000009030000
 

Error: (03/17/2014 02:34:53 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)

Description: Performance1637070000000000000000000009030000
 

Error: (03/16/2014 03:35:43 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)

Description: WmiApRplWmiApRpl8F20300004D070000
 

Error: (03/16/2014 03:35:43 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)

Description: Performance1637070000000000000000000009030000
 

Error: (03/16/2014 03:35:43 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)

Description: Performance1637070000000000000000000009030000
 

Error: (03/16/2014 02:11:31 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)

Description: WmiApRplWmiApRpl8F20300004D070000
 

Error: (03/16/2014 02:11:31 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)

Description: Performance1637070000000000000000000009030000
 

Error: (03/16/2014 02:11:31 PM) (Source: Microsoft-Windows-LoadPerf)(User: NT-AUTORITÄT)

Description: Performance1637070000000000000000000009030000
 

Error: (03/16/2014 02:08:36 PM) (Source: Bonjour Service)(User: )

Description: Task Scheduling Error: m->NextScheduledSPRetry 5273
 
 

==================== Memory info =========================== 
 

Percentage of memory in use: 61%

Total physical RAM: 2934.6 MB

Available physical RAM: 1135.77 MB

Total Pagefile: 5867.48 MB

Available Pagefile: 3552.33 MB

Total Virtual: 2047.88 MB

Available Virtual: 1890.6 MB
 

==================== Drives ================================
 

Drive c: (BOOT) (Fixed) (Total:424.66 GB) (Free:354.06 GB) NTFS

Drive d: (Recover) (Fixed) (Total:40 GB) (Free:19.68 GB) NTFS
 

==================== MBR & Partition Table ==================
 

========================================================

Disk: 0 (Size: 466 GB) (Disk ID: 49DC025F)

Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)

Partition 2: (Not Active) - (Size=425 GB) - (Type=07 NTFS)

Partition 3: (Not Active) - (Size=40 GB) - (Type=07 NTFS)

Partition 4: (Not Active) - (Size=1 GB) - (Type=12)
 

==================== End Of Log ============================

Vielen Dank für die Unterstützung & liebe Grüße

Was ist mit meiner Frage nach bisherigen Funden deines Virenscanners avast?
Außerdem hast du Malwarebytes installiert, wurde das mal fündig? Wenn ja bitte alle schon vorhandenen Logs posten.

Avast hat keine Bedrohung gefunden.
Folgendes Protokoll hat die Malware erstellt:

Code:

<?xml version="1.0" encoding="utf-8" standalone="yes"?><?xml-stylesheet type='text/xsl' href='C:\ProgramData\Nico Mak Computing\WinZip Malware Protector\log.xslt'?><info><LangStrings><string1>Datum der Überprüfung</string1><string2>Datenbankversion</string2><string3>Gefundene Elemente insgesamt</string3><string4>Überprüfte Objekte:</string4><string5>Abgelaufene Zeit:</string5><string6>Name</string6><string7>Gefundene Elemente</string7><string8>Name der Infektion</string8><string9>Kategorie</string9><string10>Bedrohungsstufe</string10><string11>Durchgeführte Aktion</string11><string12>Elemente gefunden</string12><string13>Gefundener Bereich</string13><string14>Details</string14><string15>Dateiname</string15><string16>MD5</string16><string17>Signatur</string17><string18>Registrierungsschlüssel</string18><string19>Keine Infektionen entdeckt.</string19><string20 /></LangStrings><loginfo><date>15.03.2014 18:31:44</date><key /><istrial>True</istrial><system>SONNENSCHEIN-PC|192.168.1.101|1C-4B-D6-E4-E7-67</system><scantype>QuickScan</scantype><os>Windows 7 32 Bit, Version : Microsoft Windows NT 6.1.7600.0</os><dbversion>1716</dbversion><time>00:13:05</time><objectscanned>278192</objectscanned><objectfound>36</objectfound><cultureinfo>German (Austria)</cultureinfo><version>2.1.1000.10798</version></loginfo><companyinfo><companyname>Nico Mak Computing</companyname><productname>WinZip Malware Protector</productname><copyright>© 2013 WinZip International LLC. All rights reserved.</copyright></companyinfo><log logdate="Samstag, 15. März 2014" databaseversion="1716" objectscanned="278192" timeelapsed="00:13:05"><SerializableDictionaryOfStringListOfcFoundItems><Item><Key><string>malware.gen</string></Key><Value><ArrayOfFI><FI><C>Generic Malware </C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>FileSignature</FT><V1>c:\program files\launch manager\hotkeyapp.exe</V1><V2>0</V2><V3>16266662125221659754</V3><V4>8d2851fc8807d456319c721ae3809824</V4><V5>0|</V5><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV>c:\program files\launch manager\hotkeyapp.exe</DV><FA>Memory</FA><RBT>None</RBT><ID>210999</ID></FI></ArrayOfFI></Value></Item><Item><Key><string>pup.optional</string></Key><Value><ArrayOfFI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\settings\{31ad400d-1b06-4e33-a59a-90c2c140cba0}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\settings\{31ad400d-1b06-4e33-a59a-90c2c140cba0}</V2><V3>vercache</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\settings\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\settings\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3>vercache</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{31ad400d-1b06-4e33-a59a-90c2c140cba0}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{31ad400d-1b06-4e33-a59a-90c2c140cba0}\iexplore</V2><V3 /><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{31ad400d-1b06-4e33-a59a-90c2c140cba0}\iexplore</V2><V3>type</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{31ad400d-1b06-4e33-a59a-90c2c140cba0}\iexplore</V2><V3>flags</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{ae07101b-46d4-4a98-af68-0333ea26e113}\iexplore</V2><V3 /><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{ae07101b-46d4-4a98-af68-0333ea26e113}\iexplore</V2><V3>type</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\microsoft\windows\currentversion\ext\stats\{ae07101b-46d4-4a98-af68-0333ea26e113}\iexplore</V2><V3>flags</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\smartbar</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\smartbar</V2><V3>publisher</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_current_user</V1><V2>software\smartbar</V2><V3>downloadprovider</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3>menutext</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}</V2><V3>helptext</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}\implemented categories</V2><V3 /><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}\implemented categories\{00021492-0000-0000-c000-000000000046}</V2><V3 /><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\classes\clsid\{ae07101b-46d4-4a98-af68-0333ea26e113}\implemented categories\{00021494-0000-0000-c000-000000000046}</V2><V3 /><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>enablefiletracing</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>enableconsoletracing</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>filetracingmask</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>consoletracingmask</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>maxfilesize</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasapi32</V2><V3>filedirectory</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3 /><WSS>None</WSS><PID>true</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>224995</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>enablefiletracing</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>enableconsoletracing</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>filetracingmask</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>consoletracingmask</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>maxfilesize</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI><FI><C>Potentially Unwanted Application</C><TL>High</TL><AP>NoActionTaken</AP><ActionToPerform>None</ActionToPerform><FT>Registry</FT><V1>hkey_local_machine</V1><V2>software\microsoft\tracing\snapdo_rasmancs</V2><V3>filedirectory</V3><WSS>None</WSS><PID>false</PID><CMP>NotPacked</CMP><DV /><FA>Registry</FA><RBT>None</RBT><ID>0</ID></FI></ArrayOfFI></Value></Item></SerializableDictionaryOfStringListOfcFoundItems></log></info>

Das ist garantiert kein Log von Malwarebytes. Bitte meine Postings lesen...

http://www.trojaner-board.de/125889-...tml#post941520

http://img.trojaner-board.de/alle-lo...-alle-logs.png

2. Versuch:

Code:

Malwarebytes Anti-Malware (Test) 1.75.0.1300

www.malwarebytes.org
 

Datenbank Version: v2014.03.15.04
 

Windows 7 x86 NTFS

Internet Explorer 8.0.7600.16385

Sonnenschein :: SONNENSCHEIN-PC [Administrator]
 

Schutz: Aktiviert
 

15.03.2014 19:18:45

mbam-log-2014-03-15 (19-18-45).txt
 

Art des Suchlaufs: Vollständiger Suchlauf (C:\|D:\|Q:\|)

Aktivierte Suchlaufeinstellungen: Speicher | Autostart | Registrierung | Dateisystem | Heuristiks/Extra | HeuristiKs/Shuriken | PUP | PUM

Deaktivierte Suchlaufeinstellungen: P2P

Durchsuchte Objekte: 383587

Laufzeit: 1 Stunde(n), 35 Minute(n), 22 Sekunde(n)
 

Infizierte Speicherprozesse: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Speichermodule: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Registrierungsschlüssel: 6

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} (PUP.Optional.QuickShare.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{31AD400D-1B06-4E33-A59A-90C2C140CBA0} (PUP.Optional.QuickShare.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CA41BB14-E67B-1653-C57B-5CA99418A866} (PUP.Optional.MultiPlug.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4820778D-AB0D-6D18-C316-52A6A0E1D507} (PUP.Optional.MultiPlug.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{CF830981-8F31-C561-C7A0-FE2CE1878B40} (PUP.Optional.MultiPlug.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

HKCU\SOFTWARE\SMARTBAR (PUP.Optional.SnapDo.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

Infizierte Registrierungswerte: 1

HKCU\Software\Smartbar|publisher (PUP.Optional.SnapDo.A) -> Daten: SnapdoSoftonicYB -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

Infizierte Dateiobjekte der Registrierung: 0

(Keine bösartigen Objekte gefunden)
 

Infizierte Verzeichnisse: 4

C:\ProgramData\greatsaveR (PUP.Optional.GreatSaver.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Program Files\YoutubeAdblocker (PUP.Optional.Multiplug) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\YoutubeAdblocker (PUP.Optional.YoutubeAdblocker.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\YoutubeAdblocker\mbnbpbplonfilejdcbldehpgbecldipb (PUP.Optional.YoutubeAdblocker.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

Infizierte Dateien: 14

C:\Users\Sonnenschein\AppData\Local\Google\Chrome\User Data\Default\File System\000\t\00\00000000 (PUP.Optional.Tarma) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Sonnenschein\Downloads\Hillton Fm Feat. Miss Claudia-Wicked Game .mp3 (1).exe (PUP.Optional.Tarma) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Sonnenschein\Downloads\Hillton Fm Feat. Miss Claudia-Wicked Game .mp3.exe (PUP.Optional.Tarma) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Sonnenschein\Downloads\iLividSetup-r575-n-bf.exe (PUP.Optional.Vid) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Sonnenschein\Downloads\SoftonicDownloader_fuer_mindmanager.exe (PUP.Optional.Softonic) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\greatsaveR\PVZRGRUO.exe (PUP.Optional.MultiPlug.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\YoutubeAdblocker\SexY.exe (PUP.Optional.MultiPlug.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\YoutubeAdblocker\tI.exe (PUP.Optional.MultiPlug.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\Users\Public\Desktop\Control Center.lnk (Rogue.ControlCenter) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\greatsaveR\PVZRGRUO.dat (PUP.Optional.GreatSaver.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\YoutubeAdblocker\SexY.dat (PUP.Optional.YoutubeAdblocker.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\YoutubeAdblocker\tI.dat (PUP.Optional.YoutubeAdblocker.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\YoutubeAdblocker\mbnbpbplonfilejdcbldehpgbecldipb\mbnbpbplonfilejdcbldehpgbecldipb.crx (PUP.Optional.YoutubeAdblocker.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.

C:\ProgramData\YoutubeAdblocker\mbnbpbplonfilejdcbldehpgbecldipb\mbnbpbplonfilejdcbldehpgbecldipb.crx.update.xml (PUP.Optional.YoutubeAdblocker.A) -> Erfolgreich gelöscht und in Quarantäne gestellt.
 

(Ende)

Code:

2014/03/15 19:17:14 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Starting protection

2014/03/15 19:17:14 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Protection started successfully

2014/03/15 19:17:14 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Starting IP protection

2014/03/15 19:17:36 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        IP Protection started successfully

2014/03/15 19:18:14 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Starting database refresh

2014/03/15 19:18:14 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Stopping IP protection

2014/03/15 19:18:18 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        IP Protection stopped successfully

2014/03/15 19:18:21 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Database refreshed successfully

2014/03/15 19:18:21 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Starting IP protection

2014/03/15 19:18:26 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        IP Protection started successfully

2014/03/15 20:46:21 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53589, Process: avastsvc.exe)

2014/03/15 20:46:22 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53590, Process: avastsvc.exe)

2014/03/15 20:46:22 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53593, Process: avastsvc.exe)

2014/03/15 20:46:22 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53594, Process: avastsvc.exe)

2014/03/15 20:46:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53628, Process: avastsvc.exe)

2014/03/15 20:46:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53629, Process: avastsvc.exe)

2014/03/15 20:46:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53631, Process: avastsvc.exe)

2014/03/15 20:46:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53632, Process: avastsvc.exe)

2014/03/15 20:47:02 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53645, Process: avastsvc.exe)

2014/03/15 20:47:02 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53646, Process: avastsvc.exe)

2014/03/15 20:47:02 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53647, Process: avastsvc.exe)

2014/03/15 20:47:02 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 53648, Process: avastsvc.exe)

2014/03/15 20:59:59 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Starting protection

2014/03/15 20:59:59 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Protection started successfully

2014/03/15 20:59:59 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Starting IP protection

2014/03/15 21:00:03 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        IP Protection started successfully

2014/03/15 21:02:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49271, Process: avastsvc.exe)

2014/03/15 21:02:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49272, Process: avastsvc.exe)

2014/03/15 21:02:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49273, Process: avastsvc.exe)

2014/03/15 21:02:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49274, Process: avastsvc.exe)

2014/03/15 21:02:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49293, Process: avastsvc.exe)

2014/03/15 21:02:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49294, Process: avastsvc.exe)

2014/03/15 21:02:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49296, Process: avastsvc.exe)

2014/03/15 21:02:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49297, Process: avastsvc.exe)

2014/03/15 21:02:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49299, Process: avastsvc.exe)

2014/03/15 21:02:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49300, Process: avastsvc.exe)

2014/03/15 21:02:09 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49312, Process: avastsvc.exe)

2014/03/15 21:02:09 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49313, Process: avastsvc.exe)

2014/03/15 21:02:09 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49314, Process: avastsvc.exe)

2014/03/15 21:02:09 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49315, Process: avastsvc.exe)

2014/03/15 21:04:50 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49497, Process: avastsvc.exe)

2014/03/15 21:04:50 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49498, Process: avastsvc.exe)

Zitat:

Microsoft Windows 7 Home Premium (X86) OS Language: German Standard
Internet Explorer Version 8

Wann wurde Win7 installiert? Wieso hat es noch kein einziges Update abbekommen?!

Code:

2014/03/16 10:15:14 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        Starting protection

2014/03/16 10:15:14 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        Protection started successfully

2014/03/16 10:15:14 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        Starting IP protection

2014/03/16 10:15:18 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        IP Protection started successfully

2014/03/16 10:18:22 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49379, Process: avastsvc.exe)

2014/03/16 10:18:22 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49380, Process: avastsvc.exe)

2014/03/16 10:18:39 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49415, Process: avastsvc.exe)

2014/03/16 10:18:39 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49416, Process: avastsvc.exe)

2014/03/16 10:18:55 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49495, Process: avastsvc.exe)

2014/03/16 10:18:55 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49496, Process: avastsvc.exe)

2014/03/16 10:22:27 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Executing scheduled update:  Daily

2014/03/16 10:22:49 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Scheduled update executed successfully:  database updated from version v2014.03.15.04 to version v2014.03.16.02

2014/03/16 10:22:49 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Starting database refresh

2014/03/16 10:22:49 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Stopping IP protection

2014/03/16 10:22:50 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        IP Protection stopped successfully

2014/03/16 10:22:57 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Database refreshed successfully

2014/03/16 10:22:57 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        Starting IP protection

2014/03/16 10:23:02 +0100        SONNENSCHEIN-PC        Sonnenschein        MESSAGE        IP Protection started successfully

2014/03/16 10:25:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49657, Process: avastsvc.exe)

2014/03/16 10:25:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49658, Process: avastsvc.exe)

2014/03/16 10:37:04 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49938, Process: avastsvc.exe)

2014/03/16 10:37:04 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49939, Process: avastsvc.exe)

2014/03/16 10:38:56 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49980, Process: avastsvc.exe)

2014/03/16 10:38:56 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 49981, Process: avastsvc.exe)

2014/03/16 10:39:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50008, Process: avastsvc.exe)

2014/03/16 10:39:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50009, Process: avastsvc.exe)

2014/03/16 10:39:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50011, Process: avastsvc.exe)

2014/03/16 10:39:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50012, Process: avastsvc.exe)

2014/03/16 10:42:16 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50026, Process: avastsvc.exe)

2014/03/16 10:42:16 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50027, Process: avastsvc.exe)

2014/03/16 10:43:12 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50034, Process: avastsvc.exe)

2014/03/16 10:43:12 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50035, Process: avastsvc.exe)

2014/03/16 10:43:44 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50038, Process: avastsvc.exe)

2014/03/16 10:43:44 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50039, Process: avastsvc.exe)

2014/03/16 10:54:34 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50493, Process: avastsvc.exe)

2014/03/16 10:54:34 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50494, Process: avastsvc.exe)

2014/03/16 10:54:51 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50516, Process: avastsvc.exe)

2014/03/16 10:54:51 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50517, Process: avastsvc.exe)

2014/03/16 10:55:23 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50525, Process: avastsvc.exe)

2014/03/16 10:55:23 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50526, Process: avastsvc.exe)

2014/03/16 10:55:31 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50535, Process: avastsvc.exe)

2014/03/16 10:55:31 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50536, Process: avastsvc.exe)

2014/03/16 10:59:15 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50667, Process: avastsvc.exe)

2014/03/16 10:59:15 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50669, Process: avastsvc.exe)

2014/03/16 11:12:38 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50816, Process: avastsvc.exe)

2014/03/16 11:12:38 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50817, Process: avastsvc.exe)

2014/03/16 11:13:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50833, Process: avastsvc.exe)

2014/03/16 11:13:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50834, Process: avastsvc.exe)

2014/03/16 11:13:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50838, Process: avastsvc.exe)

2014/03/16 11:13:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50839, Process: avastsvc.exe)

2014/03/16 11:14:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50899, Process: avastsvc.exe)

2014/03/16 11:14:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50900, Process: avastsvc.exe)

2014/03/16 11:16:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50922, Process: avastsvc.exe)

2014/03/16 11:16:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50923, Process: avastsvc.exe)

2014/03/16 11:16:38 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50933, Process: avastsvc.exe)

2014/03/16 11:16:38 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50934, Process: avastsvc.exe)

2014/03/16 11:17:10 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50938, Process: avastsvc.exe)

2014/03/16 11:17:10 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50939, Process: avastsvc.exe)

2014/03/16 11:17:50 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50945, Process: avastsvc.exe)

2014/03/16 11:17:50 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50946, Process: avastsvc.exe)

2014/03/16 11:18:06 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50951, Process: avastsvc.exe)

2014/03/16 11:18:06 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50952, Process: avastsvc.exe)

2014/03/16 11:18:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50957, Process: avastsvc.exe)

2014/03/16 11:18:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50958, Process: avastsvc.exe)

2014/03/16 11:19:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50962, Process: avastsvc.exe)

2014/03/16 11:19:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50963, Process: avastsvc.exe)

2014/03/16 11:19:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50967, Process: avastsvc.exe)

2014/03/16 11:19:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50968, Process: avastsvc.exe)

2014/03/16 11:20:39 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51020, Process: avastsvc.exe)

2014/03/16 11:20:39 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51021, Process: avastsvc.exe)

2014/03/16 11:20:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51024, Process: avastsvc.exe)

2014/03/16 11:20:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51025, Process: avastsvc.exe)

2014/03/16 11:20:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51035, Process: avastsvc.exe)

2014/03/16 11:20:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51036, Process: avastsvc.exe)

2014/03/16 11:21:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51043, Process: avastsvc.exe)

2014/03/16 11:21:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51044, Process: avastsvc.exe)

2014/03/16 11:22:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51047, Process: avastsvc.exe)

2014/03/16 11:22:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51048, Process: avastsvc.exe)

2014/03/16 11:22:15 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51051, Process: avastsvc.exe)

2014/03/16 11:22:15 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51052, Process: avastsvc.exe)

2014/03/16 11:22:31 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51055, Process: avastsvc.exe)

2014/03/16 11:22:31 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51056, Process: avastsvc.exe)

2014/03/16 11:25:36 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51081, Process: avastsvc.exe)

2014/03/16 11:25:36 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51082, Process: avastsvc.exe)

2014/03/16 11:26:08 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51093, Process: avastsvc.exe)

2014/03/16 11:26:08 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51094, Process: avastsvc.exe)

2014/03/16 11:26:32 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51098, Process: avastsvc.exe)

2014/03/16 11:26:32 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51099, Process: avastsvc.exe)

2014/03/16 11:27:36 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51120, Process: avastsvc.exe)

2014/03/16 11:27:36 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51121, Process: avastsvc.exe)

2014/03/16 11:28:56 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51151, Process: avastsvc.exe)

2014/03/16 11:28:56 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51152, Process: avastsvc.exe)

2014/03/16 11:31:36 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51169, Process: avastsvc.exe)

2014/03/16 11:31:36 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51170, Process: avastsvc.exe)

2014/03/16 11:31:44 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51183, Process: avastsvc.exe)

2014/03/16 11:31:44 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51184, Process: avastsvc.exe)

2014/03/16 11:33:28 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51216, Process: avastsvc.exe)

2014/03/16 11:33:29 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51218, Process: avastsvc.exe)

2014/03/16 11:34:41 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51230, Process: avastsvc.exe)

2014/03/16 11:34:41 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51231, Process: avastsvc.exe)

2014/03/16 11:34:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51236, Process: avastsvc.exe)

2014/03/16 11:34:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51237, Process: avastsvc.exe)

2014/03/16 11:34:57 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51245, Process: avastsvc.exe)

2014/03/16 11:34:57 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51246, Process: avastsvc.exe)

2014/03/16 11:35:29 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51263, Process: avastsvc.exe)

2014/03/16 11:35:29 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51264, Process: avastsvc.exe)

2014/03/16 11:36:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51273, Process: avastsvc.exe)

2014/03/16 11:36:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51274, Process: avastsvc.exe)

2014/03/16 11:36:09 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51278, Process: avastsvc.exe)

2014/03/16 11:36:09 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51279, Process: avastsvc.exe)

2014/03/16 11:36:33 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51294, Process: avastsvc.exe)

2014/03/16 11:36:33 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51295, Process: avastsvc.exe)

2014/03/16 11:38:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51309, Process: avastsvc.exe)

2014/03/16 11:38:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51310, Process: avastsvc.exe)

2014/03/16 11:39:54 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51316, Process: avastsvc.exe)

2014/03/16 11:39:54 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51318, Process: avastsvc.exe)

2014/03/16 11:40:34 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51323, Process: avastsvc.exe)

2014/03/16 11:40:34 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51324, Process: avastsvc.exe)

2014/03/16 11:40:42 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51328, Process: avastsvc.exe)

2014/03/16 11:40:42 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51329, Process: avastsvc.exe)

2014/03/16 11:41:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51332, Process: avastsvc.exe)

2014/03/16 11:41:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51333, Process: avastsvc.exe)

2014/03/16 11:43:06 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51358, Process: avastsvc.exe)

2014/03/16 11:43:06 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51359, Process: avastsvc.exe)

2014/03/16 11:43:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51391, Process: avastsvc.exe)

2014/03/16 11:43:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51392, Process: avastsvc.exe)

2014/03/16 11:43:22 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51403, Process: avastsvc.exe)

2014/03/16 11:43:22 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51404, Process: avastsvc.exe)

2014/03/16 11:43:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51411, Process: avastsvc.exe)

2014/03/16 11:43:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51412, Process: avastsvc.exe)

2014/03/16 11:45:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51442, Process: avastsvc.exe)

2014/03/16 11:45:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51443, Process: avastsvc.exe)

2014/03/16 11:46:02 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51453, Process: avastsvc.exe)

2014/03/16 11:46:02 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51454, Process: avastsvc.exe)

2014/03/16 12:45:33 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        Starting protection

2014/03/16 12:45:33 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        Protection started successfully

2014/03/16 12:45:33 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        Starting IP protection

2014/03/16 12:45:36 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        IP Protection started successfully

2014/03/16 12:51:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49386, Process: avastsvc.exe)

2014/03/16 12:51:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49387, Process: avastsvc.exe)

2014/03/16 12:51:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49396, Process: avastsvc.exe)

2014/03/16 12:51:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49398, Process: avastsvc.exe)

2014/03/16 12:53:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49425, Process: avastsvc.exe)

2014/03/16 12:53:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49426, Process: avastsvc.exe)

2014/03/16 12:53:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49428, Process: avastsvc.exe)

2014/03/16 12:53:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49429, Process: avastsvc.exe)

2014/03/16 12:53:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49461, Process: avastsvc.exe)

2014/03/16 12:53:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49462, Process: avastsvc.exe)

2014/03/16 12:53:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49463, Process: avastsvc.exe)

2014/03/16 12:53:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49464, Process: avastsvc.exe)

2014/03/16 12:54:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49482, Process: avastsvc.exe)

2014/03/16 12:54:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49484, Process: avastsvc.exe)

2014/03/16 12:54:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49486, Process: avastsvc.exe)

2014/03/16 12:54:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49487, Process: avastsvc.exe)

2014/03/16 12:54:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49503, Process: avastsvc.exe)

2014/03/16 12:54:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49504, Process: avastsvc.exe)

2014/03/16 12:54:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49506, Process: avastsvc.exe)

2014/03/16 12:54:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49507, Process: avastsvc.exe)

2014/03/16 12:54:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49528, Process: avastsvc.exe)

2014/03/16 12:54:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49529, Process: avastsvc.exe)

2014/03/16 12:54:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49530, Process: avastsvc.exe)

2014/03/16 12:54:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49531, Process: avastsvc.exe)

2014/03/16 12:54:51 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49546, Process: avastsvc.exe)

2014/03/16 12:54:51 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49547, Process: avastsvc.exe)

2014/03/16 12:54:51 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49548, Process: avastsvc.exe)

2014/03/16 12:54:51 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49549, Process: avastsvc.exe)

2014/03/16 12:55:23 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49580, Process: avastsvc.exe)

2014/03/16 12:55:23 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49581, Process: avastsvc.exe)

2014/03/16 12:55:23 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49582, Process: avastsvc.exe)

2014/03/16 12:55:23 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49583, Process: avastsvc.exe)

2014/03/16 12:56:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49610, Process: avastsvc.exe)

2014/03/16 12:56:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49612, Process: avastsvc.exe)

2014/03/16 12:56:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49614, Process: avastsvc.exe)

2014/03/16 12:56:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49615, Process: avastsvc.exe)

2014/03/16 12:57:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49639, Process: avastsvc.exe)

2014/03/16 12:57:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49640, Process: avastsvc.exe)

2014/03/16 12:57:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49642, Process: avastsvc.exe)

2014/03/16 12:57:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49643, Process: avastsvc.exe)

2014/03/16 13:18:10 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50057, Process: avastsvc.exe)

2014/03/16 13:18:10 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50058, Process: avastsvc.exe)

2014/03/16 13:18:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50092, Process: avastsvc.exe)

2014/03/16 13:18:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50093, Process: avastsvc.exe)

2014/03/16 13:18:34 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50105, Process: avastsvc.exe)

2014/03/16 13:18:34 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50106, Process: avastsvc.exe)

2014/03/16 13:18:50 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50111, Process: avastsvc.exe)

2014/03/16 13:18:50 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50112, Process: avastsvc.exe)

2014/03/16 13:20:35 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50234, Process: avastsvc.exe)

2014/03/16 13:20:35 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50235, Process: avastsvc.exe)

2014/03/16 13:20:35 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50250, Process: avastsvc.exe)

2014/03/16 13:20:35 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50251, Process: avastsvc.exe)

2014/03/16 13:21:15 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50264, Process: avastsvc.exe)

2014/03/16 13:21:15 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50265, Process: avastsvc.exe)

2014/03/16 13:47:42 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50702, Process: avastsvc.exe)

2014/03/16 13:47:42 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50703, Process: avastsvc.exe)

2014/03/16 13:48:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50788, Process: avastsvc.exe)

2014/03/16 13:48:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50789, Process: avastsvc.exe)

2014/03/16 13:48:54 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50809, Process: avastsvc.exe)

2014/03/16 13:48:54 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50810, Process: avastsvc.exe)

2014/03/16 13:49:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50829, Process: avastsvc.exe)

2014/03/16 13:49:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50830, Process: avastsvc.exe)

2014/03/16 13:50:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50885, Process: avastsvc.exe)

2014/03/16 13:50:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50886, Process: avastsvc.exe)

2014/03/16 13:50:31 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50927, Process: avastsvc.exe)

2014/03/16 13:50:31 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50928, Process: avastsvc.exe)

2014/03/16 13:50:55 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50954, Process: avastsvc.exe)

2014/03/16 13:50:55 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50955, Process: avastsvc.exe)

2014/03/16 13:51:19 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50998, Process: avastsvc.exe)

2014/03/16 13:51:19 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 50999, Process: avastsvc.exe)

2014/03/16 13:51:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51009, Process: avastsvc.exe)

2014/03/16 13:51:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51010, Process: avastsvc.exe)

2014/03/16 13:55:51 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51054, Process: avastsvc.exe)

2014/03/16 13:55:51 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51055, Process: avastsvc.exe)

2014/03/16 13:56:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51067, Process: avastsvc.exe)

2014/03/16 13:56:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51068, Process: avastsvc.exe)

2014/03/16 14:28:21 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51411, Process: avastsvc.exe)

2014/03/16 14:28:22 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 51412, Process: avastsvc.exe)

2014/03/16 14:28:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51463, Process: avastsvc.exe)

2014/03/16 14:28:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51464, Process: avastsvc.exe)

2014/03/16 14:29:26 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51478, Process: avastsvc.exe)

2014/03/16 14:29:26 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51479, Process: avastsvc.exe)

2014/03/16 14:29:58 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51499, Process: avastsvc.exe)

2014/03/16 14:29:58 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51500, Process: avastsvc.exe)

2014/03/16 14:30:22 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51507, Process: avastsvc.exe)

2014/03/16 14:30:22 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51508, Process: avastsvc.exe)

2014/03/16 14:35:10 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51572, Process: avastsvc.exe)

2014/03/16 14:35:10 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51573, Process: avastsvc.exe)

2014/03/16 14:35:26 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51587, Process: avastsvc.exe)

2014/03/16 14:35:26 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51588, Process: avastsvc.exe)

2014/03/16 14:38:06 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51614, Process: avastsvc.exe)

2014/03/16 14:38:06 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51615, Process: avastsvc.exe)

2014/03/16 14:38:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51635, Process: avastsvc.exe)

2014/03/16 14:38:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51636, Process: avastsvc.exe)

2014/03/16 14:39:03 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51645, Process: avastsvc.exe)

2014/03/16 14:39:03 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51646, Process: avastsvc.exe)

2014/03/16 14:39:51 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51657, Process: avastsvc.exe)

2014/03/16 14:39:51 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51658, Process: avastsvc.exe)

2014/03/16 14:40:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51675, Process: avastsvc.exe)

2014/03/16 14:40:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51676, Process: avastsvc.exe)

2014/03/16 14:41:11 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51758, Process: avastsvc.exe)

2014/03/16 14:41:11 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51759, Process: avastsvc.exe)

2014/03/16 14:41:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51811, Process: avastsvc.exe)

2014/03/16 14:41:43 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51812, Process: avastsvc.exe)

2014/03/16 14:44:31 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51873, Process: avastsvc.exe)

2014/03/16 14:44:31 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51874, Process: avastsvc.exe)

2014/03/16 14:44:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51884, Process: avastsvc.exe)

2014/03/16 14:44:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51885, Process: avastsvc.exe)

2014/03/16 14:53:37 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52261, Process: avastsvc.exe)

2014/03/16 14:53:37 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52262, Process: avastsvc.exe)

Code:

2014/03/17 14:28:34 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        Executing scheduled update:  Daily

2014/03/17 14:28:35 +0100        SONNENSCHEIN-PC        (null)        ERROR        Scheduled update failed:  No address found failed with error code 0

2014/03/17 14:28:40 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        Starting protection

2014/03/17 14:28:40 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        Protection started successfully

2014/03/17 14:28:40 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        Starting IP protection

2014/03/17 14:28:44 +0100        SONNENSCHEIN-PC        (null)        MESSAGE        IP Protection started successfully

2014/03/17 14:31:32 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49303, Process: avastsvc.exe)

2014/03/17 14:31:32 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49304, Process: avastsvc.exe)

2014/03/17 14:31:41 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49309, Process: avastsvc.exe)

2014/03/17 14:31:41 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49310, Process: avastsvc.exe)

2014/03/17 14:31:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49315, Process: avastsvc.exe)

2014/03/17 14:31:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49316, Process: avastsvc.exe)

2014/03/17 14:33:02 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49329, Process: avastsvc.exe)

2014/03/17 14:33:02 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49330, Process: avastsvc.exe)

2014/03/17 14:33:10 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49337, Process: avastsvc.exe)

2014/03/17 14:33:10 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49338, Process: avastsvc.exe)

2014/03/17 14:33:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49341, Process: avastsvc.exe)

2014/03/17 14:33:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49342, Process: avastsvc.exe)

2014/03/17 14:33:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49347, Process: avastsvc.exe)

2014/03/17 14:33:18 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49348, Process: avastsvc.exe)

2014/03/17 14:34:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49358, Process: avastsvc.exe)

2014/03/17 14:34:07 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49359, Process: avastsvc.exe)

2014/03/17 14:34:23 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49401, Process: avastsvc.exe)

2014/03/17 14:34:23 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49402, Process: avastsvc.exe)

2014/03/17 14:35:19 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49458, Process: avastsvc.exe)

2014/03/17 14:35:19 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49459, Process: avastsvc.exe)

2014/03/17 14:35:35 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49464, Process: avastsvc.exe)

2014/03/17 14:35:35 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49465, Process: avastsvc.exe)

2014/03/17 14:35:52 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49468, Process: avastsvc.exe)

2014/03/17 14:35:52 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49469, Process: avastsvc.exe)

2014/03/17 14:36:08 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49472, Process: avastsvc.exe)

2014/03/17 14:36:08 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49473, Process: avastsvc.exe)

2014/03/17 14:36:16 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49476, Process: avastsvc.exe)

2014/03/17 14:36:16 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49477, Process: avastsvc.exe)

2014/03/17 14:36:32 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49480, Process: avastsvc.exe)

2014/03/17 14:36:32 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49481, Process: avastsvc.exe)

2014/03/17 14:37:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49489, Process: avastsvc.exe)

2014/03/17 14:37:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49490, Process: avastsvc.exe)

2014/03/17 14:37:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49494, Process: avastsvc.exe)

2014/03/17 14:37:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49495, Process: avastsvc.exe)

2014/03/17 14:37:44 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49498, Process: avastsvc.exe)

2014/03/17 14:37:44 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49499, Process: avastsvc.exe)

2014/03/17 14:37:52 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49502, Process: avastsvc.exe)

2014/03/17 14:37:52 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49503, Process: avastsvc.exe)

2014/03/17 14:38:25 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49518, Process: avastsvc.exe)

2014/03/17 14:38:25 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49519, Process: avastsvc.exe)

2014/03/17 14:41:13 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49548, Process: avastsvc.exe)

2014/03/17 14:41:13 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49550, Process: avastsvc.exe)

2014/03/17 14:41:21 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49564, Process: avastsvc.exe)

2014/03/17 14:41:21 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49565, Process: avastsvc.exe)

2014/03/17 14:42:57 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49585, Process: avastsvc.exe)

2014/03/17 14:42:57 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49587, Process: avastsvc.exe)

2014/03/17 15:23:12 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49987, Process: avastsvc.exe)

2014/03/17 15:23:12 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 49988, Process: avastsvc.exe)

2014/03/17 15:23:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50045, Process: avastsvc.exe)

2014/03/17 15:23:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50046, Process: avastsvc.exe)

2014/03/17 15:23:36 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50056, Process: avastsvc.exe)

2014/03/17 15:23:36 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50057, Process: avastsvc.exe)

2014/03/17 15:24:17 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50113, Process: avastsvc.exe)

2014/03/17 15:24:17 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50114, Process: avastsvc.exe)

2014/03/17 15:25:21 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50236, Process: avastsvc.exe)

2014/03/17 15:25:21 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50237, Process: avastsvc.exe)

2014/03/17 15:25:29 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50280, Process: avastsvc.exe)

2014/03/17 15:25:29 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50281, Process: avastsvc.exe)

2014/03/17 15:25:37 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50283, Process: avastsvc.exe)

2014/03/17 15:25:37 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50284, Process: avastsvc.exe)

2014/03/17 15:26:17 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50307, Process: avastsvc.exe)

2014/03/17 15:26:17 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50308, Process: avastsvc.exe)

2014/03/17 15:26:17 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50349, Process: avastsvc.exe)

2014/03/17 15:26:17 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50351, Process: avastsvc.exe)

2014/03/17 15:26:41 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50353, Process: avastsvc.exe)

2014/03/17 15:26:41 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50354, Process: avastsvc.exe)

2014/03/17 15:27:06 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50361, Process: avastsvc.exe)

2014/03/17 15:27:06 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50362, Process: avastsvc.exe)

2014/03/17 15:31:54 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50599, Process: avastsvc.exe)

2014/03/17 15:31:54 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50600, Process: avastsvc.exe)

2014/03/17 15:32:11 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50627, Process: avastsvc.exe)

2014/03/17 15:32:11 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50628, Process: avastsvc.exe)

2014/03/17 15:34:59 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50717, Process: avastsvc.exe)

2014/03/17 15:34:59 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50718, Process: avastsvc.exe)

2014/03/17 15:35:15 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50741, Process: avastsvc.exe)

2014/03/17 15:35:15 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50742, Process: avastsvc.exe)

2014/03/17 15:35:31 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50752, Process: avastsvc.exe)

2014/03/17 15:35:31 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50753, Process: avastsvc.exe)

2014/03/17 15:35:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50755, Process: avastsvc.exe)

2014/03/17 15:35:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50758, Process: avastsvc.exe)

2014/03/17 15:35:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50760, Process: avastsvc.exe)

2014/03/17 15:35:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50761, Process: avastsvc.exe)

2014/03/17 15:36:03 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50763, Process: avastsvc.exe)

2014/03/17 15:36:03 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50764, Process: avastsvc.exe)

2014/03/17 15:39:40 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50934, Process: avastsvc.exe)

2014/03/17 15:39:40 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50935, Process: avastsvc.exe)

2014/03/17 15:40:28 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50970, Process: avastsvc.exe)

2014/03/17 15:40:28 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 50971, Process: avastsvc.exe)

2014/03/17 15:42:29 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51028, Process: avastsvc.exe)

2014/03/17 15:42:29 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51029, Process: avastsvc.exe)

2014/03/17 15:42:53 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51039, Process: avastsvc.exe)

2014/03/17 15:42:53 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51040, Process: avastsvc.exe)

2014/03/17 15:43:09 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51049, Process: avastsvc.exe)

2014/03/17 15:43:09 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51050, Process: avastsvc.exe)

2014/03/17 15:43:33 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51083, Process: avastsvc.exe)

2014/03/17 15:43:33 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51084, Process: avastsvc.exe)

2014/03/17 15:43:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51105, Process: avastsvc.exe)

2014/03/17 15:43:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51106, Process: avastsvc.exe)

2014/03/17 15:43:57 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51130, Process: avastsvc.exe)

2014/03/17 15:43:57 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51131, Process: avastsvc.exe)

2014/03/17 15:44:29 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51141, Process: avastsvc.exe)

2014/03/17 15:44:29 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51142, Process: avastsvc.exe)

2014/03/17 15:47:10 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51215, Process: avastsvc.exe)

2014/03/17 15:47:10 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51216, Process: avastsvc.exe)

2014/03/17 15:48:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51268, Process: avastsvc.exe)

2014/03/17 15:48:30 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51269, Process: avastsvc.exe)

2014/03/17 15:55:11 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51604, Process: avastsvc.exe)

2014/03/17 15:55:11 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51605, Process: avastsvc.exe)

2014/03/17 15:55:35 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51687, Process: avastsvc.exe)

2014/03/17 15:55:35 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51688, Process: avastsvc.exe)

2014/03/17 15:56:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51852, Process: avastsvc.exe)

2014/03/17 15:56:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51853, Process: avastsvc.exe)

2014/03/17 15:57:35 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51937, Process: avastsvc.exe)

2014/03/17 15:57:35 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51938, Process: avastsvc.exe)

2014/03/17 15:58:15 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51965, Process: avastsvc.exe)

2014/03/17 15:58:15 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51966, Process: avastsvc.exe)

2014/03/17 15:58:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51990, Process: avastsvc.exe)

2014/03/17 15:58:47 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 51991, Process: avastsvc.exe)

2014/03/17 16:01:12 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52095, Process: avastsvc.exe)

2014/03/17 16:01:12 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52096, Process: avastsvc.exe)

2014/03/17 16:01:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52107, Process: avastsvc.exe)

2014/03/17 16:01:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52108, Process: avastsvc.exe)

2014/03/17 16:01:28 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52125, Process: avastsvc.exe)

2014/03/17 16:01:28 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52126, Process: avastsvc.exe)

2014/03/17 16:02:24 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52138, Process: avastsvc.exe)

2014/03/17 16:02:24 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52139, Process: avastsvc.exe)

2014/03/17 16:04:00 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52156, Process: avastsvc.exe)

2014/03/17 16:04:00 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52157, Process: avastsvc.exe)

2014/03/17 16:06:08 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52182, Process: avastsvc.exe)

2014/03/17 16:06:08 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52183, Process: avastsvc.exe)

2014/03/17 16:06:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52208, Process: avastsvc.exe)

2014/03/17 16:06:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52209, Process: avastsvc.exe)

2014/03/17 16:08:25 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52289, Process: avastsvc.exe)

2014/03/17 16:08:25 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 52290, Process: avastsvc.exe)

2014/03/17 16:38:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 52608, Process: avastsvc.exe)

2014/03/17 16:38:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 52609, Process: avastsvc.exe)

2014/03/17 16:40:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 52832, Process: avastsvc.exe)

2014/03/17 16:40:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 52833, Process: avastsvc.exe)

2014/03/17 16:42:55 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53343, Process: avastsvc.exe)

2014/03/17 16:42:55 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53344, Process: avastsvc.exe)

2014/03/17 16:45:19 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53448, Process: avastsvc.exe)

2014/03/17 16:45:19 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53449, Process: avastsvc.exe)

2014/03/17 16:45:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53493, Process: avastsvc.exe)

2014/03/17 16:45:27 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53494, Process: avastsvc.exe)

2014/03/17 16:45:52 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53534, Process: avastsvc.exe)

2014/03/17 16:45:52 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53535, Process: avastsvc.exe)

2014/03/17 16:46:24 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53579, Process: avastsvc.exe)

2014/03/17 16:46:24 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53580, Process: avastsvc.exe)

2014/03/17 16:46:56 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53612, Process: avastsvc.exe)

2014/03/17 16:46:56 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53613, Process: avastsvc.exe)

2014/03/17 16:47:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53651, Process: avastsvc.exe)

2014/03/17 16:47:20 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53652, Process: avastsvc.exe)

2014/03/17 16:47:44 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53685, Process: avastsvc.exe)

2014/03/17 16:47:44 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53686, Process: avastsvc.exe)

2014/03/17 16:48:00 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53725, Process: avastsvc.exe)

2014/03/17 16:48:00 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53726, Process: avastsvc.exe)

2014/03/17 16:54:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53889, Process: avastsvc.exe)

2014/03/17 16:54:01 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53890, Process: avastsvc.exe)

2014/03/17 16:54:25 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53904, Process: avastsvc.exe)

2014/03/17 16:54:25 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53905, Process: avastsvc.exe)

2014/03/17 16:54:25 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53911, Process: avastsvc.exe)

2014/03/17 16:54:25 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53912, Process: avastsvc.exe)

2014/03/17 16:54:41 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53918, Process: avastsvc.exe)

2014/03/17 16:54:41 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53919, Process: avastsvc.exe)

2014/03/17 16:54:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53924, Process: avastsvc.exe)

2014/03/17 16:54:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53925, Process: avastsvc.exe)

2014/03/17 16:54:57 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53930, Process: avastsvc.exe)

2014/03/17 16:54:57 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53931, Process: avastsvc.exe)

2014/03/17 16:55:05 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53934, Process: avastsvc.exe)

2014/03/17 16:55:05 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53935, Process: avastsvc.exe)

2014/03/17 16:55:05 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53940, Process: avastsvc.exe)

2014/03/17 16:55:05 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53941, Process: avastsvc.exe)

2014/03/17 16:55:21 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53982, Process: avastsvc.exe)

2014/03/17 16:55:21 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.26 (Type: outgoing, Port: 53983, Process: avastsvc.exe)

2014/03/17 18:12:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54705, Process: avastsvc.exe)

2014/03/17 18:12:49 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54706, Process: avastsvc.exe)

2014/03/17 18:13:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54726, Process: avastsvc.exe)

2014/03/17 18:13:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54727, Process: avastsvc.exe)

2014/03/17 18:13:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54732, Process: avastsvc.exe)

2014/03/17 18:13:14 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54733, Process: avastsvc.exe)

2014/03/17 18:13:38 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54739, Process: avastsvc.exe)

2014/03/17 18:13:38 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54740, Process: avastsvc.exe)

2014/03/17 18:13:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54745, Process: avastsvc.exe)

2014/03/17 18:13:46 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54746, Process: avastsvc.exe)

2014/03/17 18:13:54 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54773, Process: avastsvc.exe)

2014/03/17 18:13:54 +0100        SONNENSCHEIN-PC        Sonnenschein        IP-BLOCK        162.210.192.22 (Type: outgoing, Port: 54774, Process: avastsvc.exe)

Hast du meinen letzten Beitrag übersehen?

Win7 wurde 2009 installiert - d.h. Update wäre angebracht? Danke für den Hinweis :-) Meinst du, dass danach mein Internet-Problem behoben ist?

Zitat:

d.h. Update wäre angebracht?

Stark untertrieben ausgedrückt. Versteh nicht ganz warum du da noch nix von gehört hast, Windows zeigt immer recht deutlich an wann Updates verfügbar sind. Du oder irgendjmd anders muss die Funktion automatische Updates ausgeschaltet haben....

Erstmal hauen wir aber den Schrott von deiner Kiste runter. Dann bitte jetzt Combofix ausführen:

Scan mit Combofix

WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link

WICHTIG: Speichere Combofix auf deinem Desktop.

Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.

Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.

Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!

Wenn Combofix fertig ist, wird es ein Logfile erstellen.

Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).

Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.

Win7 wurde 2009 installiert - updates laufen automatisch - oder?
Benötige ich ein upgrade? und wäre damit mein problem behoben?
als browser verwende ich google chrome und nicht den explorer

ps: sorry, hab deine nachricht überlesen - dachte meine letzte mail ist nicht angekommen.
win7 wird übrigens laufend upgedatet - ich dachte ein upgrade wäre erforderlich.

Zitat:

win7 wird übrigens laufend upgedatet - ich dachte ein upgrade wäre erforderlich.

Nein eben nicht! Auf deinem Rechner ist offensichtlich kein Update angekommen! SP1 fehlt und der IE steht noch auf Version 8, das ist Stand 2009 und nicht aktuell. IE ist mittlerweile in Version 11 da.

Mach jetzt bitte mit Combofix weiter.

Code:

ComboFix 14-03-16.01 - Sonnenschein 17.03.2014  20:17:39.1.4 - x86

Microsoft Windows 7 Home Premium   6.1.7600.0.1252.43.1031.18.2935.1702 [GMT 1:00]

ausgeführt von:: c:\users\Sonnenschein\Downloads\ComboFix.exe

AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((((((((((   Weitere Löschungen   ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\program files\AutocompletePro

c:\program files\AutocompletePro\AutocompletePro.dll

c:\program files\AutocompletePro\chrome\autocompleteprochrome.crx

c:\program files\AutocompletePro\FireFoxExtension.exe

c:\program files\AutocompletePro\InstTracker.exe

c:\program files\AutocompletePro\support@predictad.com\chrome.manifest

c:\program files\AutocompletePro\support@predictad.com\chrome\content\browserOverlay.xul

c:\program files\AutocompletePro\support@predictad.com\chrome\content\options.js

c:\program files\AutocompletePro\support@predictad.com\chrome\content\options.xul

c:\program files\AutocompletePro\support@predictad.com\chrome\content\utils.js

c:\program files\AutocompletePro\support@predictad.com\defaults\preferences\predictad.js

c:\program files\AutocompletePro\support@predictad.com\install.rdf

c:\program files\AutocompletePro\unins000.dat

c:\program files\AutocompletePro\unins000.exe

c:\program files\Splitcam Toolbar\tbHElper.dll

.

.

(((((((((((((((((((((((   Dateien erstellt von 2014-02-17 bis 2014-03-17  ))))))))))))))))))))))))))))))

.

.

2014-03-17 19:28 . 2014-03-17 19:29        --------        d-----w-        c:\users\Sonnenschein\AppData\Local\temp

2014-03-17 19:28 . 2014-03-17 19:28        --------        d-----w-        c:\users\Default\AppData\Local\temp

2014-03-17 13:44 . 2014-03-17 13:48        --------        d-----w-        C:\FRST

2014-03-15 18:16 . 2014-03-15 18:16        --------        d-----w-        c:\users\Sonnenschein\AppData\Roaming\Malwarebytes

2014-03-15 18:16 . 2014-03-15 18:16        --------        d-----w-        c:\programdata\Malwarebytes

2014-03-15 18:16 . 2014-03-15 18:16        --------        d-----w-        c:\program files\Malwarebytes' Anti-Malware

2014-03-15 18:16 . 2013-04-04 13:50        22856        ----a-w-        c:\windows\system32\drivers\mbam.sys

2014-03-15 16:58 . 2014-03-15 16:58        --------        d-----w-        c:\users\Sonnenschein\AppData\Roaming\Nico Mak Computing

2014-03-15 16:58 . 2014-03-15 16:58        --------        d-----w-        c:\programdata\Nico Mak Computing

2014-03-15 16:58 . 2014-03-15 16:58        --------        d-----w-        c:\program files\WinZip Malware Protector

2014-03-15 16:58 . 2013-03-15 16:01        16384        ----a-w-        c:\windows\system32\wsusnative32.exe

2014-03-15 15:19 . 2014-03-15 15:19        --------        d-----w-        c:\program files\Mozilla Maintenance Service

2014-03-14 18:40 . 2014-02-06 07:08        7947048        ----a-w-        c:\programdata\Microsoft\Windows Defender\Definition Updates\{D14AFE5F-C90A-4259-9D18-65400BBF1F31}\mpengine.dll

2014-03-08 07:39 . 2014-03-08 07:39        --------        d-----w-        c:\program files\iPod

2014-03-08 07:39 . 2014-03-08 07:40        --------        d-----w-        c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1

2014-03-08 07:39 . 2014-03-08 07:40        --------        d-----w-        c:\program files\iTunes

2014-03-08 07:31 . 2014-03-08 07:31        --------        d-----w-        c:\program files\QuickTime

.

.

.

((((((((((((((((((((((((((((((((((((   Find3M Bericht   ))))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2014-01-17 15:24 . 2014-01-17 15:24        94208        ----a-w-        c:\windows\system32\QuickTimeVR.qtx

2014-01-17 15:24 . 2014-01-17 15:24        69632        ----a-w-        c:\windows\system32\QuickTime.qts

2013-12-18 05:13 . 2010-06-28 23:04        231584        ------w-        c:\windows\system32\MpSigStub.exe

.

.

((((((((((((((((((((((((((((   Autostartpunkte der Registrierung   ))))))))))))))))))))))))))))))))))))))))

.

.

*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. 

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2013-03-06 23:32        121968        ----a-w-        c:\program files\Alwil Software\Avast5\ashShell.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2013-09-10 23:54        131248        ----a-w-        c:\users\Sonnenschein\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2013-09-10 23:54        131248        ----a-w-        c:\users\Sonnenschein\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2013-09-10 23:54        131248        ----a-w-        c:\users\Sonnenschein\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]

"OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2013-04-22 720064]

"GrooveMonitor"="c:\program files\Microsoft Office\Office14\GROOVEMN.EXE" [2013-03-06 945856]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-04-23 9177632]

"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RtHDVBg.exe" [2010-04-23 1423904]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-06-21 136216]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-06-21 171032]

"Persistence"="c:\windows\system32\igfxpers.exe" [2010-06-21 170008]

"HotkeyApp"="c:\program files\Launch Manager\HotkeyApp.exe" [2009-12-14 200704]

"LMgrVolOSD"="c:\program files\Launch Manager\OSD.exe" [2009-12-11 348960]

"Wbutton"="c:\program files\Launch Manager\Wbutton.exe" [2010-01-13 413696]

"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-12-11 1594664]

"CLMLServer"="c:\program files\CyberLink\Power2Go\CLMLSvc.exe" [2009-11-02 103720]

"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2012-11-05 89184]

"avast"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2013-03-06 4767304]

"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2014-02-05 43848]

"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2014-01-17 421888]

"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2014-02-21 152392]

.

c:\users\Sonnenschein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Dropbox.lnk - c:\users\Sonnenschein\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-1-3 30714328]

Microsoft SharePoint Workspace.lnk - c:\program files\Microsoft Office\Office14\GROOVE.EXE /TrayOnly [2013-12-19 30814400]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

Wi-Fi MediaConnect.lnk - c:\program files\Philips\Wi-Fi MediaConnect\Wi-Fi MediaConnect.exe [2013-12-26 2345984]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKLM\~\startupfolder\C:^Users^Sonnenschein^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk]

path=c:\users\Sonnenschein\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

backup=c:\windows\pss\Dropbox.lnk.Startup

backupExtension=.Startup

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]

2013-11-14 15:42        20584608        ----a-r-        c:\program files\Skype\Phone\Skype.exe

.

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]

"GameXN GO"="c:\programdata\GameXN\GameXNGO.exe" /startup

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"HP Software Update"=c:\program files\Hp\HP Software Update\HPWuSchd2.exe

"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime

"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"

"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

.

R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-09-05 171680]

R3 aswVmm;aswVmm; [x]

R3 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [2011-05-26 191752]

R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys [2010-05-24 193056]

R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe [2010-10-01 1343400]

S0 aswRvrt;aswRvrt; [x]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-03-06 66336]

S2 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\SeaPort.EXE [2011-03-10 249648]

S2 cvhsvc;Client Virtualization Handler;c:\program files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2013-04-22 822504]

S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]

S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]

S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]

S2 sftlist;Application Virtualization Client;c:\program files\Microsoft Application Virtualization Client\sftlist.exe [2013-06-26 523944]

S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-10 2320920]

S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-27 132480]

S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-02-03 232960]

S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-03-04 67624]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 22856]

S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys [2010-03-02 1006624]

S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2013-06-26 583848]

S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2013-06-26 197800]

S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2013-06-26 24232]

S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2013-06-26 20136]

S3 sftvsa;Application Virtualization Service Agent;c:\program files\Microsoft Application Virtualization Client\sftvsa.exe [2013-06-26 207528]

S3 WFMC_VAD;WFMCVAD (WDM);c:\windows\system32\DRIVERS\wfmcvad.sys [2010-02-08 19456]

S3 WisLMSvc;WisLMSvc;c:\program files\Launch Manager\WisLMSvc.exe [2009-10-23 118560]

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]

2014-03-15 17:07        1150280        ----a-w-        c:\program files\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe

.

Inhalt des "geplante Tasks" Ordners

.

2014-03-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-11 17:31]

.

2014-03-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2010-09-11 17:31]

.

.

------- Zusätzlicher Suchlauf -------

.

mStart Page = hxxp://www.bigseekpro.com/splitcam/{055CFE95-936D-417A-AAB2-2AC0AFD22D4E}

uInternet Settings,ProxyOverride = *.local

uSearchAssistant = hxxp://www.bing.com/search?q={searchTerms}

IE: An OneNote s&enden - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105

IE: Nach Microsoft E&xcel exportieren - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000

IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - hxxp://rover.ebay.com/rover/1/5221-29898-17534-1/4

TCP: DhcpNameServer = 192.168.1.1 192.168.1.1

DPF: {C8B73157-8752-429E-A465-3F361C76AE89} - hxxps://shop.hofer-fotos-druck.at/shop/activex/aldi_at_express_upload.cab

FF - ProfilePath - c:\users\Sonnenschein\AppData\Roaming\Mozilla\Firefox\Profiles\6bsdgvw3.default\

FF - prefs.js: browser.search.selectedEngine - Google

FF - prefs.js: browser.startup.homepage - about:home

FF - prefs.js: keyword.URL - hxxp://www.google.com/search?rls=org.mozilla:en-US:official&client=firefox-a&q=

.

- - - - Entfernte verwaiste Registrierungseinträge - - - -

.

HKCU-Run-LiveSupport - c:\program files\LiveSupport\LiveSupport.exe

SafeBoot-BsScanner

AddRemove-AutocompletePro3_is1 - c:\program files\AutocompletePro\unins000.exe

.

.

.

--------------------- Gesperrte Registrierungsschluessel ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Zeit der Fertigstellung: 2014-03-17  20:31:32

ComboFix-quarantined-files.txt  2014-03-17 19:31

.

Vor Suchlauf: 6 Verzeichnis(se), 379.740.397.568 Bytes frei

Nach Suchlauf: 10 Verzeichnis(se), 379.601.608.704 Bytes frei

.

- - End Of File - - C16E6F352FBBDCA999AE0F07D57A08AA

8A1C59E4DFEF87510470928550466632

und wo kann ich die automatischen updates wieder aktivieren?
danke dir für deine Hilfe :-)