|   | eye-catcher1 | 25.02.2015 19:21 |  
 Seiten scrollen alleine runter ohne das ich Maus bewege- Hilfe..
 Hey Leute, 
habe gerade den PC gestartet - es wurde dabei etwas in die Registry installiert so wie es aussah beim hochfahren. 
Anschließend gehen einige Programme nicht richtig, der Pc scrollt automatisch runter, wenn ich beim drucken einen Drucker auswählen will scrollt er einfach und lässt mich nichts auswählen. 
In Excel oder im IE wie jetzt klappt alles - Maus wurde bereits gewechselt - Fehler taucht trotzdem auf. 
Es ist ein Desktop pc - kein Laptop mit touchpad. 
Hilfe:(  
PS: Hatte die Tage Updates machen lassen von Windows - habe bereits Wiederherstellungspunkte von vor 2 Tagen wiederhergestellt - daran liegt es nicht.  
Heute Mittag lieg alles einwandfrei.  Edit: Es sieht eherso aus als wenn er eher nach rechts schiebt als nach unten! Wenn ich die Scrollmaus drücke um die Seite langsam nach unten oder oben scrollen zu lassen, kommt kurz dieses Icon mit "Pfeil unten - Pfeil oben" und verschwindet wieder. Ein "langsames" Schrollen mit gedrücktem Rad ist also nicht möglich. Dies bei mehreren Mäusen 
[CODE]Hier mal ein Logfile vom OTL:OTL Logfile:   Code: 
 OTL logfile created on: 25.02.2015 18:44:14 - Run 2OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\SUPPSTORE24\Desktop
 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
 Internet Explorer (Version = 9.11.9600.17633)
 Locale: 00000407 | Country: Deutschland | Language: DEU | Date Format: dd.MM.yyyy
 
 7,75 Gb Total Physical Memory | 5,49 Gb Available Physical Memory | 70,81% Memory free
 15,49 Gb Paging File | 13,04 Gb Available in Paging File | 84,17% Paging File free
 Paging file location(s): ?:\pagefile.sys [binary data]
 
 %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
 Drive C: | 195,21 Gb Total Space | 103,44 Gb Free Space | 52,99% Space Free | Partition Type: NTFS
 Drive D: | 736,20 Gb Total Space | 535,83 Gb Free Space | 72,78% Space Free | Partition Type: NTFS
 
 Computer Name: DANIELSPC | User Name: SUPPSTORE24 | Logged in as Administrator.
 Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
 Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
 ========== Processes (SafeList) ==========
 
 PRC - File not found --
 PRC - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
 PRC - [2014.11.21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
 PRC - [2014.11.21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
 PRC - [2014.11.21 06:12:46 | 007,229,752 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
 PRC - [2014.10.07 15:39:30 | 001,241,472 | ---- | M] (Oracle Corporation) -- C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
 PRC - [2014.02.17 14:09:48 | 004,915,040 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
 PRC - [2013.11.21 13:34:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\SUPPSTORE24\Desktop\OTL.exe
 PRC - [2013.07.25 10:19:26 | 005,624,784 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
 PRC - [2013.05.16 09:56:34 | 001,033,688 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
 PRC - [2013.05.16 09:56:30 | 001,817,560 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
 PRC - [2013.05.15 12:21:32 | 000,171,928 | ---- | M] (Safer-Networking Ltd.) -- C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
 PRC - [2010.01.22 12:29:40 | 000,106,496 | ---- | M] (NEC Electronics Corporation) -- C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
 
 
 ========== Modules (No Company Name) ==========
 
 MOD - [2013.05.16 10:55:26 | 000,113,496 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\snlThirdParty150.bpl
 MOD - [2013.05.16 10:55:24 | 000,416,600 | ---- | M] () -- C:\Program Files (x86)\Spybot - Search & Destroy 2\DEC150.bpl
 
 
 ========== Services (SafeList) ==========
 
 SRV:64bit: - [2015.01.30 03:15:10 | 000,366,512 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
 SRV:64bit: - [2015.01.30 03:15:10 | 000,023,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
 SRV:64bit: - [2015.01.12 03:34:30 | 000,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\IEEtwCollector.exe -- (IEEtwCollectorService)
 SRV:64bit: - [2013.05.27 06:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
 SRV:64bit: - [2012.11.16 21:44:58 | 000,238,080 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
 SRV:64bit: - [2012.11.16 15:27:28 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
 SRV:64bit: - [2012.08.23 16:18:14 | 004,412,872 | ---- | M] (SafeNet Inc.) [Auto | Running] -- C:\Windows\SysNative\hasplms.exe -- (hasplms)
 SRV - [2015.02.06 11:14:20 | 000,267,440 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
 SRV - [2014.12.19 08:48:18 | 000,081,088 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
 SRV - [2014.11.21 06:12:56 | 000,969,016 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe -- (MBAMService)
 SRV - [2014.11.21 06:12:54 | 001,871,160 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
 SRV - [2014.06.27 10:37:54 | 000,119,408 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
 SRV - [2014.04.11 23:08:08 | 000,103,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
 SRV - [2014.03.20 23:49:18 | 000,067,224 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 SRV - [2014.02.17 14:09:48 | 004,915,040 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe -- (TeamViewer9)
 SRV - [2010.02.19 12:37:14 | 000,517,096 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe -- (SwitchBoard)
 
 
 ========== Driver Services (SafeList) ==========
 
 DRV:64bit: - [2015.02.25 18:10:07 | 000,129,752 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys -- (MBAMSwissArmy)
 DRV:64bit: - [2014.11.21 06:14:22 | 000,063,704 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mwac.sys -- (MBAMWebAccessControl)
 DRV:64bit: - [2014.11.21 06:14:08 | 000,025,816 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
 DRV:64bit: - [2014.11.15 14:46:08 | 000,124,560 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
 DRV:64bit: - [2014.08.15 23:35:00 | 000,054,784 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbaapl64.sys -- (USBAAPL64)
 DRV:64bit: - [2013.10.02 03:22:20 | 000,056,832 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
 DRV:64bit: - [2013.07.24 16:02:55 | 000,034,816 | ---- | M] (Elaborate Bytes AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VClone.sys -- (VClone)
 DRV:64bit: - [2013.03.04 13:24:27 | 000,040,344 | ---- | M] (Elaborate Bytes AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\ElbyCDIO.sys -- (ElbyCDIO)
 DRV:64bit: - [2012.11.16 22:08:32 | 011,922,944 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
 DRV:64bit: - [2012.11.16 20:39:12 | 000,359,936 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
 DRV:64bit: - [2012.10.12 11:18:30 | 000,083,072 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aksdf.sys -- (aksdf)
 DRV:64bit: - [2012.10.06 16:55:24 | 000,323,584 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\hardlock.sys -- (hardlock)
 DRV:64bit: - [2012.08.23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
 DRV:64bit: - [2012.08.07 11:51:18 | 000,141,256 | ---- | M] (SafeNet Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\aksfridge.sys -- (aksfridge)
 DRV:64bit: - [2012.06.15 09:39:36 | 000,296,576 | ---- | M] (SafeNet Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\aksusb.sys -- (aksusb)
 DRV:64bit: - [2012.06.15 07:44:14 | 000,057,088 | ---- | M] (SafeNet Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\akshhl.sys -- (akshhl)
 DRV:64bit: - [2012.06.15 07:44:14 | 000,053,760 | ---- | M] (Aladdin Knowledge Systems Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\akshasp.sys -- (akshasp)
 DRV:64bit: - [2012.05.14 07:12:30 | 000,096,896 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
 DRV:64bit: - [2012.03.05 15:04:30 | 000,053,888 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.1)
 DRV:64bit: - [2012.03.01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
 DRV:64bit: - [2011.06.10 05:34:52 | 000,539,240 | ---- | M] (Realtek                                            ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
 DRV:64bit: - [2011.03.11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
 DRV:64bit: - [2011.03.11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
 DRV:64bit: - [2010.11.20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
 DRV:64bit: - [2010.02.18 08:18:24 | 000,046,136 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\amdiox64.sys -- (amdiox64)
 DRV:64bit: - [2010.01.22 12:22:22 | 000,180,224 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
 DRV:64bit: - [2010.01.22 12:22:18 | 000,077,824 | ---- | M] (NEC Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
 DRV:64bit: - [2009.07.14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
 DRV:64bit: - [2009.07.14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
 DRV:64bit: - [2009.07.14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
 DRV:64bit: - [2009.07.14 01:39:20 | 000,023,040 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDPrint.sys -- (WSDPrintDevice)
 DRV:64bit: - [2009.07.14 01:35:37 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\WSDScan.sys -- (WSDScan)
 DRV:64bit: - [2009.06.10 21:35:36 | 000,867,328 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\netr28ux.sys -- (netr28ux)
 DRV:64bit: - [2009.06.10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
 DRV:64bit: - [2009.06.10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
 DRV:64bit: - [2009.06.10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
 DRV:64bit: - [2009.06.10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
 DRV:64bit: - [2005.03.29 00:30:38 | 000,008,192 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
 DRV - [2009.07.14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
 
 
 ========== Standard Registry (SafeList) ==========
 
 
 ========== Internet Explorer ==========
 
 IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
 IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
 IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
 IE - HKLM\..\SearchScopes,DefaultScope =
 IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
 
 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com/
 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://de.msn.com/?ocid=iehp
 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = de-DE
 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 8B C5 BA 61 F7 C0 CE 01  [binary data]
 IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
 IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = hxxp://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02
 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 ========== FireFox ==========
 
 FF - prefs.js..browser.search.defaultthis.engineName: ""
 FF - prefs.js..browser.search.suggest.enabled: false
 FF - prefs.js..extensions.enabledAddons: %7Ba7c6cf7f-112c-4500-a7ea-39801a327e5f%7D:2.0.19
 FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:30.0
 FF - user.js - File not found
 
 FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_16_0_0_305.dll File not found
 FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
 FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~4\Office15\NPSPWRAP.DLL (Microsoft Corporation)
 FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
 FF:64bit: - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\Win64Plugin\npAdobeExManDetectX64.dll (Adobe Systems)
 FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
 FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=11.25.2: C:\Program Files (x86)\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
 FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=11.25.2: C:\Program Files (x86)\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
 FF - HKLM\Software\MozillaPlugins\@microsoft.com/Lync,version=15.0: C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL (Microsoft Corporation)
 FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
 FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
 FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
 FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
 FF - HKLM\Software\MozillaPlugins\adobe.com/AdobeExManDetect: C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll (Adobe Systems)
 
 FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files\components
 FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files\plugins
 FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.5.0\extensions\\Components: C:\Program Files (x86)\Mozilla Thunderbird\components
 FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 24.5.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Thunderbird\plugins
 FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 30.0\extensions\\Components: C:\Program Files\components
 FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 30.0\extensions\\Plugins: C:\Program Files\plugins
 
 [2013.10.04 12:28:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SUPPSTORE24\AppData\Roaming\mozilla\Extensions
 [2014.08.13 12:47:26 | 000,000,000 | ---D | M] (No name found) -- C:\Users\SUPPSTORE24\AppData\Roaming\mozilla\Firefox\Profiles\uq2nvlzy.default\extensions
 File not found (No name found) -- C:\USERS\SUPPSTORE24\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\UQ2NVLZY.DEFAULT\EXTENSIONS\{A7C6CF7F-112C-4500-A7EA-39801A327E5F}.XPI
 [2014.07.27 10:41:38 | 000,034,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll
 
 ========== Chrome  ==========
 
 CHR - plugin: Error reading preferences file
 CHR - Extension: No name found = C:\Users\SUPPSTORE24\AppData\Local\Google\Chrome\User Data\Default\Extensions\bepbmhgboaologfdajaanbcjmnhjmhfn\0.1.1.5023_1\
 CHR - Extension: No name found = C:\Users\SUPPSTORE24\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.1_1\
 
 O1 HOSTS File: ([2013.11.17 15:01:15 | 000,001,983 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
 O1 - Hosts: 127.0.0.1 lmlicenses.wip4.adobe.com
 O1 - Hosts: 127.0.0.1 lm.licenses.adobe.com
 O1 - Hosts:
 O1 - Hosts:        127.0.0.1 activate.adobe.com
 O1 - Hosts:        127.0.0.1 practivate.adobe.com
 O1 - Hosts:        127.0.0.1 ereg.adobe.com
 O1 - Hosts:        127.0.0.1 activate.wip3.adobe.com
 O1 - Hosts:        127.0.0.1 wip3.adobe.com
 O1 - Hosts:        127.0.0.1 3dns-3.adobe.com
 O1 - Hosts:        127.0.0.1 3dns-2.adobe.com
 O1 - Hosts:        127.0.0.1 adobe-dns.adobe.com
 O1 - Hosts:        127.0.0.1 adobe-dns-2.adobe.com
 O1 - Hosts:        127.0.0.1 adobe-dns-3.adobe.com
 O1 - Hosts:        127.0.0.1 ereg.wip3.adobe.com
 O1 - Hosts:        127.0.0.1 activate-sea.adobe.com
 O1 - Hosts:        127.0.0.1 wwis-dubc1-vip60.adobe.com
 O1 - Hosts:        127.0.0.1 activate-sjc0.adobe.com
 O1 - Hosts:        127.0.0.1 adobe.activate.com
 O1 - Hosts:        127.0.0.1 hl2rcv.adobe.com
 O1 - Hosts:        127.0.0.1 209.34.83.73:443
 O1 - Hosts:        127.0.0.1 209.34.83.73:43
 O1 - Hosts:        127.0.0.1 209.34.83.73
 O1 - Hosts:        127.0.0.1 209.34.83.67:443
 O1 - Hosts:        127.0.0.1 209.34.83.67:43
 O1 - Hosts:        127.0.0.1 209.34.83.67
 O1 - Hosts: 8 more lines...
 O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
 O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~3\Office15\URLREDIR.DLL (Microsoft Corporation)
 O2 - BHO: (Microsoft SkyDrive Pro Browser Helper) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~3\Office15\GROOVEEX.DLL (Microsoft Corporation)
 O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
 O4:64bit: - HKLM..\Run: [AdobeAAMUpdater-1.0] C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated)
 O4:64bit: - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
 O4 - HKLM..\Run: [AMD AVT] C:\Windows\SysWow64\cmd.exe (Microsoft Corporation)
 O4 - HKLM..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" File not found
 O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (NEC Electronics Corporation)
 O4 - HKLM..\Run: [SDTray] C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe (Safer-Networking Ltd.)
 O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
 O4 - HKLM..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe (Adobe Systems Incorporated)
 O4 - HKLM..\Run: [TrojanScanner] C:\Program Files (x86)\Trojan Remover\Trjscan.exe /boot File not found
 O4 - HKCU..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup File not found
 O4 - Startup: C:\Users\SUPPSTORE24\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk =  File not found
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoNotification = 0
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 0
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: TaskbarNoNotification = 0
 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HideSCAHealth = 0
 O1364bit: - gopher Prefix: missing
 O13 - gopher Prefix: missing
 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.178.1
 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{B209B968-B62A-4F2D-8451-7E13C53A2B90}: DhcpNameServer = 192.168.178.1
 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E7FC54E9-7ADE-4E6D-A2FD-6A5D57EEC164}: DhcpNameServer = 192.168.178.1
 O18 - Protocol\Handler\ms-help - No CLSID value found
 O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
 O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
 O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
 O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
 O20 - Winlogon\Notify\SDWinLogon: DllName - (SDWinLogon.dll) -  File not found
 O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
 O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
 O32 - HKLM CDRom: AutoRun - 1
 O33 - MountPoints2\{563a0e17-d64c-11d6-a2df-bb6bb0813172}\Shell - "" = AutoRun
 O33 - MountPoints2\{563a0e17-d64c-11d6-a2df-bb6bb0813172}\Shell\AutoRun\command - "" = C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL H:\start.html
 O33 - MountPoints2\{ea572a09-9fb0-11e3-889d-20cf30c133d5}\Shell - "" = AutoRun
 O33 - MountPoints2\{ea572a09-9fb0-11e3-889d-20cf30c133d5}\Shell\AutoRun\command - "" = G:\autorun.exe
 O34 - HKLM BootExecute: (autocheck autochk *)
 O35:64bit: - HKLM\..comfile [open] -- "%1" %*
 O35:64bit: - HKLM\..exefile [open] -- "%1" %*
 O35 - HKLM\..comfile [open] -- "%1" %*
 O35 - HKLM\..exefile [open] -- "%1" %*
 O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
 O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
 O37 - HKLM\...com [@ = comfile] -- "%1" %*
 O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
 O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)
 
 ========== Files/Folders - Created Within 30 Days ==========
 
 [2015.02.24 11:23:40 | 000,000,000 | ---D | C] -- C:\Users\SUPPSTORE24\Desktop\sandro
 [2015.02.22 14:40:45 | 000,129,752 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\6C723508.sys
 [2015.02.18 13:24:56 | 000,000,000 | ---D | C] -- C:\Users\SUPPSTORE24\Desktop\ssss
 [2015.02.18 13:20:18 | 000,000,000 | ---D | C] -- C:\Users\SUPPSTORE24\Desktop\püocl
 [2015.02.18 10:06:56 | 000,950,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\perftrack.dll
 [2015.02.18 10:06:56 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\powertracker.dll
 [2015.02.11 15:48:21 | 000,620,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9diag.dll
 [2015.02.11 15:48:20 | 006,041,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
 [2015.02.11 15:48:20 | 000,814,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9diag.dll
 [2015.02.11 00:09:57 | 000,000,000 | R--D | C] -- C:\Users\SUPPSTORE24\Documents\Scanned Documents
 [2015.02.11 00:09:57 | 000,000,000 | ---D | C] -- C:\Users\SUPPSTORE24\Documents\Fax
 [2015.02.10 22:04:32 | 000,309,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ncrypt.dll
 [2015.02.10 22:04:25 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollector.exe
 [2015.02.10 22:04:25 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwproxystub.dll
 [2015.02.10 22:04:25 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieetwproxystub.dll
 [2015.02.10 22:04:25 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iernonce.dll
 [2015.02.10 22:04:24 | 000,718,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ie4uinit.exe
 [2015.02.10 22:04:24 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\JavaScriptCollectionAgent.dll
 [2015.02.10 22:04:24 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
 [2015.02.10 22:04:24 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\MshtmlDac.dll
 [2015.02.10 22:04:24 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
 [2015.02.10 22:04:24 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iernonce.dll
 [2015.02.10 22:04:22 | 002,052,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
 [2015.02.10 22:04:22 | 000,710,144 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieapfltr.dll
 [2015.02.10 22:04:22 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\iesetup.dll
 [2015.02.10 22:04:22 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieetwcollectorres.dll
 [2015.02.10 22:04:21 | 000,968,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MsSpellCheckingFacility.exe
 [2015.02.10 22:04:21 | 000,801,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msfeeds.dll
 [2015.02.10 22:04:21 | 000,478,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
 [2015.02.10 22:04:21 | 000,316,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtrans.dll
 [2015.02.10 22:04:21 | 000,115,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
 [2015.02.10 22:04:20 | 002,125,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
 [2015.02.10 22:04:20 | 000,800,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieapfltr.dll
 [2015.02.10 22:04:20 | 000,066,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\iesetup.dll
 [2015.02.10 22:04:19 | 001,155,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmlmedia.dll
 [2015.02.10 22:04:18 | 000,490,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dxtmsft.dll
 [2015.02.10 22:04:18 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrating.dll
 [2015.02.10 22:04:18 | 000,144,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
 [2015.02.10 22:04:17 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmlmedia.dll
 [2015.02.10 22:04:17 | 000,633,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
 [2015.02.10 22:04:17 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
 [2015.02.10 22:04:16 | 000,584,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\vbscript.dll
 [2015.02.10 22:04:15 | 000,088,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\MshtmlDac.dll
 [2015.02.10 22:04:14 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msrating.dll
 [2015.02.10 22:03:38 | 001,424,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\WindowsCodecs.dll
 [2015.02.10 22:03:34 | 001,461,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
 [2015.02.10 22:03:34 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\adtschema.dll
 [2015.02.10 22:03:34 | 000,686,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\adtschema.dll
 [2015.02.10 22:03:34 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msaudite.dll
 [2015.02.10 22:03:34 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msaudite.dll
 [2015.02.10 22:03:34 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
 [2015.02.10 22:03:34 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\auditpol.exe
 [2015.02.10 22:03:34 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msobjs.dll
 [2015.02.10 22:03:34 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msobjs.dll
 [2015.02.10 22:03:34 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\auditpol.exe
 [2015.02.10 22:03:34 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
 [2015.02.10 22:03:34 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
 [2015.02.10 22:03:29 | 001,480,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
 [2015.02.10 22:03:20 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
 [2015.02.10 22:03:08 | 000,406,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\scesrv.dll
 [2015.02.10 22:03:08 | 000,308,224 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\scesrv.dll
 [2015.02.10 22:03:00 | 005,554,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
 [2015.02.10 22:03:00 | 003,972,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
 [2015.02.10 22:02:59 | 003,917,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
 [2015.02.10 22:02:58 | 000,503,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srcore.dll
 [2015.02.10 22:02:58 | 000,296,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rstrui.exe
 [2015.02.10 22:02:58 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\srclient.dll
 [2015.02.10 09:28:15 | 000,129,752 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\21C71C42.sys
 [2015.02.09 22:40:41 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Thunderbird
 [2015.02.03 09:16:49 | 000,129,752 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\49527094.sys
 [2015.01.29 18:48:02 | 000,000,000 | ---D | C] -- C:\Users\SUPPSTORE24\Desktop\FTP sachen
 [2013.10.04 12:03:50 | 000,049,560 | ---- | C] (Mozilla.org) -- C:\Program Files\mozMapi32_InUse.dll
 [2013.10.04 12:03:50 | 000,018,328 | ---- | C] (Mozilla.org) -- C:\Program Files\MapiProxy_InUse.dll
 [2010.10.25 16:39:00 | 000,562,280 | ---- | C] (Acresso Software Inc.) -- C:\Program Files\ISSetup.dll
 [2008.05.10 12:27:18 | 000,324,920 | ---- | C] (Acresso Software Inc.) -- C:\Program Files\_Setup.dll
 
 ========== Files - Modified Within 30 Days ==========
 
 [2015.02.25 18:15:57 | 000,014,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
 [2015.02.25 18:15:57 | 000,014,608 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
 [2015.02.25 18:14:04 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
 [2015.02.25 18:10:07 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\MBAMSwissArmy.sys
 [2015.02.25 18:08:24 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
 [2015.02.25 18:08:18 | 1944,625,151 | -HS- | M] () -- C:\hiberfil.sys
 [2015.02.25 17:27:32 | 002,272,841 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Rechnung5.bk4
 [2015.02.25 12:40:28 | 000,020,658 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Händler anschreiben.odt
 [2015.02.25 11:39:34 | 001,404,047 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\SCANI.jpeg
 [2015.02.25 11:39:02 | 000,401,283 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Scan000222.pdf
 [2015.02.22 14:40:45 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\6C723508.sys
 [2015.02.21 14:01:00 | 000,001,110 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
 [2015.02.20 12:26:37 | 000,012,419 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\preise.odt
 [2015.02.20 12:26:10 | 000,152,392 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\February_Promotions_Pricelist.pdf
 [2015.02.20 12:20:29 | 000,758,957 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\wholesale pricelist 2015.pdf
 [2015.02.20 11:02:38 | 000,002,175 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
 [2015.02.18 13:27:48 | 000,001,456 | ---- | M] () -- C:\Users\SUPPSTORE24\AppData\Local\Adobe Für Web speichern 13.0 Prefs
 [2015.02.18 13:16:49 | 000,062,162 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\ferox.jpg
 [2015.02.17 11:24:53 | 003,299,420 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\dddd-1.pdf
 [2015.02.17 11:23:30 | 000,050,452 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\EVN_RG1239454161.pdf
 [2015.02.14 11:22:01 | 000,016,685 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Rechnung Nr._120389.pdf
 [2015.02.13 22:45:26 | 000,120,007 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\asdfsdfsdf.jpg
 [2015.02.13 21:52:43 | 000,346,160 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\3.jpg
 [2015.02.13 21:52:06 | 000,323,614 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt1.jpg
 [2015.02.13 13:22:21 | 000,000,132 | ---- | M] () -- C:\Users\SUPPSTORE24\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
 [2015.02.13 10:47:55 | 004,831,859 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Was ist hier bitte ungültig.jpg
 [2015.02.13 10:47:41 | 037,473,242 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Bild 005.psd
 [2015.02.11 11:02:53 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\21C71C42.sys
 [2015.02.11 11:01:39 | 005,456,376 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
 [2015.02.11 02:06:12 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif
 [2015.02.10 23:01:12 | 000,011,195 | ---- | M] () -- C:\Users\SUPPSTORE24\Documents\ElStEr Daniel Kvesic UStVA Dezember 2014 Übertragung (Normale_Übertragung) am 2015-02-10_23.01.09.045.pdf
 [2015.02.10 23:00:19 | 000,011,302 | ---- | M] () -- C:\Users\SUPPSTORE24\Documents\ElStEr Daniel Kvesic UStVA Jahr 2015 Übertragung (Normale_Übertragung) am 2015-02-10_23.00.16.097.pdf
 [2015.02.10 19:00:12 | 000,018,306 | ---- | M] () -- C:\Users\SUPPSTORE24\Documents\alter bestand.ods
 [2015.02.09 23:32:22 | 000,076,212 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\slider_pic1.jpg
 [2015.02.09 09:42:37 | 001,629,572 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
 [2015.02.09 09:42:37 | 000,703,092 | ---- | M] () -- C:\Windows\SysNative\perfh007.dat
 [2015.02.09 09:42:37 | 000,657,196 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
 [2015.02.09 09:42:37 | 000,150,676 | ---- | M] () -- C:\Windows\SysNative\perfc007.dat
 [2015.02.09 09:42:37 | 000,123,008 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
 [2015.02.08 23:53:27 | 000,002,000 | ---- | M] () -- C:\Users\Public\Desktop\FileZilla Client.lnk
 [2015.02.07 00:30:01 | 000,018,186 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt.jpg
 [2015.02.06 11:14:20 | 000,701,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
 [2015.02.06 11:14:20 | 000,071,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
 [2015.02.05 14:55:59 | 000,001,106 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
 [2015.02.05 12:24:42 | 000,000,494 | ---- | M] () -- C:\Lokaler Datenträger (D) - Verknüpfung.lnk
 [2015.02.03 09:16:49 | 000,129,752 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\49527094.sys
 [2015.01.30 09:39:15 | 000,292,062 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt.png
 [2015.01.29 19:37:01 | 000,000,171 | ---- | M] () -- C:\Users\SUPPSTORE24\Desktop\tablerates.csv
 
 ========== Files Created - No Company Name ==========
 
 [2015.02.25 17:27:13 | 002,272,841 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Rechnung5.bk4
 [2015.02.25 12:40:26 | 000,020,658 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Händler anschreiben.odt
 [2015.02.25 11:39:25 | 001,404,047 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\SCANI.jpeg
 [2015.02.25 11:39:02 | 000,401,283 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Scan000222.pdf
 [2015.02.20 12:26:09 | 000,152,392 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\February_Promotions_Pricelist.pdf
 [2015.02.20 12:20:29 | 000,758,957 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\wholesale pricelist 2015.pdf
 [2015.02.20 11:40:27 | 000,012,419 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\preise.odt
 [2015.02.18 13:18:38 | 000,062,162 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\ferox.jpg
 [2015.02.17 11:24:45 | 003,299,420 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\dddd-1.pdf
 [2015.02.17 11:23:30 | 000,050,452 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\EVN_RG1239454161.pdf
 [2015.02.14 11:22:01 | 000,016,685 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Rechnung Nr._120389.pdf
 [2015.02.13 22:45:26 | 000,120,007 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\asdfsdfsdf.jpg
 [2015.02.13 21:52:43 | 000,346,160 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\3.jpg
 [2015.02.13 21:52:06 | 000,323,614 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt1.jpg
 [2015.02.13 10:47:49 | 004,831,859 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Was ist hier bitte ungültig.jpg
 [2015.02.13 10:47:39 | 037,473,242 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Bild 005.psd
 [2015.02.10 23:01:12 | 000,011,195 | ---- | C] () -- C:\Users\SUPPSTORE24\Documents\ElStEr Daniel Kvesic UStVA Dezember 2014 Übertragung (Normale_Übertragung) am 2015-02-10_23.01.09.045.pdf
 [2015.02.10 23:00:19 | 000,011,302 | ---- | C] () -- C:\Users\SUPPSTORE24\Documents\ElStEr Daniel Kvesic UStVA Jahr 2015 Übertragung (Normale_Übertragung) am 2015-02-10_23.00.16.097.pdf
 [2015.02.10 19:00:10 | 000,018,306 | ---- | C] () -- C:\Users\SUPPSTORE24\Documents\alter bestand.ods
 [2015.02.07 00:30:01 | 000,018,186 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt.jpg
 [2015.02.05 12:24:42 | 000,000,494 | ---- | C] () -- C:\Lokaler Datenträger (D) - Verknüpfung.lnk
 [2015.01.30 09:39:15 | 000,292,062 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\Unbenannt.png
 [2015.01.29 19:05:27 | 000,000,171 | ---- | C] () -- C:\Users\SUPPSTORE24\Desktop\tablerates.csv
 [2014.11.24 12:38:07 | 000,919,000 | ---- | C] () -- C:\Windows\SysWow64\BpShellEx.dll
 [2014.11.24 12:38:00 | 000,013,778 | ---- | C] () -- C:\Windows\SysWow64\SELF32.INI
 [2014.09.26 11:27:36 | 000,000,908 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Local\recently-used.xbel
 [2014.07.18 17:49:57 | 000,000,137 | ---- | C] () -- C:\Users\SUPPSTORE24\tablerates.csv
 [2014.02.28 16:40:21 | 000,000,600 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Local\PUTTY.RND
 [2014.02.02 21:24:35 | 000,000,132 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Roaming\Adobe CS6-GIF-Format - Voreinstellungen
 [2014.01.03 12:26:03 | 000,001,769 | ---- | C] () -- C:\Windows\Language_trs.ini
 [2013.11.28 13:18:30 | 000,000,132 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
 [2013.11.14 15:52:44 | 000,001,456 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Local\Adobe Für Web speichern 13.0 Prefs
 [2013.10.30 20:56:00 | 001,371,436 | R--- | C] () -- C:\Windows\SysWow64\VBAR2132.DLL
 [2013.10.28 22:20:06 | 000,007,605 | ---- | C] () -- C:\Users\SUPPSTORE24\AppData\Local\Resmon.ResmonCfg
 [2013.10.18 20:57:16 | 001,602,916 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
 [2013.09.20 13:02:20 | 153,313,362 | ---- | C] () -- C:\Program Files\openoffice1.cab
 [2013.09.20 13:00:46 | 002,269,184 | ---- | C] () -- C:\Program Files\openoffice401.msi
 [2013.09.20 13:00:46 | 000,475,136 | ---- | C] () -- C:\Program Files\setup.exe
 [2013.09.20 13:00:46 | 000,000,279 | ---- | C] () -- C:\Program Files\setup.ini
 [2013.03.03 19:55:17 | 000,000,000 | ---- | C] () -- C:\Windows\longfile.INI
 [2013.03.03 19:55:16 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
 [2010.09.27 16:06:24 | 000,035,720 | ---- | C] () -- C:\Program Files\data1.hdr
 [2010.09.27 16:06:24 | 000,000,512 | ---- | C] () -- C:\Program Files\data2.cab
 [2010.09.27 16:06:24 | 000,000,473 | ---- | C] () -- C:\Program Files\layout.bin
 [2010.09.27 16:06:22 | 003,558,733 | ---- | C] () -- C:\Program Files\data1.cab
 [2010.09.27 14:26:50 | 000,263,514 | ---- | C] () -- C:\Program Files\setup.inx
 [2008.12.23 10:47:38 | 000,000,892 | ---- | C] () -- C:\Program Files\setup.iss
 [2008.12.23 10:47:38 | 000,000,672 | ---- | C] () -- C:\Program Files\uninstall.iss
 [2008.12.22 20:38:48 | 000,000,031 | ---- | C] () -- C:\Program Files\Silent_Uninstall.bat
 [2008.12.22 20:38:32 | 000,000,012 | ---- | C] () -- C:\Program Files\Silent_Install.bat
 [2008.05.10 12:07:02 | 000,041,059 | ---- | C] () -- C:\Program Files\setup.isn
 
 ========== ZeroAccess Check ==========
 
 [2009.07.14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini
 
 [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 
 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
 [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64
 
 [HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
 [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
 "" = C:\Windows\SysNative\shell32.dll -- [2014.06.25 03:05:42 | 014,175,744 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Apartment
 
 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 "" = %SystemRoot%\system32\shell32.dll -- [2014.06.25 02:41:30 | 012,874,240 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Apartment
 
 [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
 "" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Free
 
 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
 "" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Free
 
 [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
 "" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
 "ThreadingModel" = Both
 
 [HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
 
 ========== Alternate Data Streams ==========
 
 @Alternate Data Stream - 269 bytes -> C:\ProgramData\TEMP:CB0AACC9
 
 < End of report >
 --- --- ---  
Thema hat sich erledigt - PC komplett runtergefahren und hochgefahren dann ging es. 
Dabei wurden wieder updates installiert - lag wohl daran |