Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter

HB-Männchen · 30.12.2015, 01:05

Scan TDSSKiller und wieder das Problem mit zu vielen Zeichen aber --> er meldet keinen Fund

Darum hier Teil 1...

Code:

ATTFilter

01:01:45.0764 0x10a8  TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12
01:01:50.0062 0x10a8  ============================================================
01:01:50.0062 0x10a8  Current date / time: 2015/12/30 01:01:50.0062
01:01:50.0062 0x10a8  SystemInfo:
01:01:50.0062 0x10a8  
01:01:50.0062 0x10a8  OS Version: 6.1.7601 ServicePack: 1.0
01:01:50.0062 0x10a8  Product type: Workstation
01:01:50.0062 0x10a8  ComputerName: NOTEBOOK-RS
01:01:50.0062 0x10a8  UserName: Home
01:01:50.0062 0x10a8  Windows directory: C:\Windows
01:01:50.0062 0x10a8  System windows directory: C:\Windows
01:01:50.0062 0x10a8  Running under WOW64
01:01:50.0062 0x10a8  Processor architecture: Intel x64
01:01:50.0062 0x10a8  Number of processors: 2
01:01:50.0062 0x10a8  Page size: 0x1000
01:01:50.0062 0x10a8  Boot type: Normal boot
01:01:50.0062 0x10a8  ============================================================
01:01:50.0092 0x10a8  BG loaded
01:01:50.0532 0x10a8  System UUID: {C555F022-0B4C-8013-FB7B-F2B6C5862A0A}
01:01:51.0074 0x10a8  Drive \Device\Harddisk2\DR2 - Size: 0x3BE000000 ( 14.97 Gb ), SectorSize: 0x200, Cylinders: 0x7A2, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048
01:01:51.0094 0x10a8  Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:01:51.0134 0x10a8  Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
01:01:51.0154 0x10a8  Drive \Device\Harddisk2\DR2 - Size: 0x3BE000000 ( 14.97 Gb ), SectorSize: 0x200, Cylinders: 0x7A2, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:01:51.0164 0x10a8  Drive \Device\Harddisk3\DR3 - Size: 0x76C000000 ( 29.69 Gb ), SectorSize: 0x200, Cylinders: 0xF23, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:01:51.0164 0x10a8  Drive \Device\Harddisk4\DR4 - Size: 0xEE7AA0000 ( 59.62 Gb ), SectorSize: 0x200, Cylinders: 0x1E66, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:01:51.0254 0x10a8  Drive \Device\Harddisk5\DR5 - Size: 0x1D1BF100000 ( 1862.99 Gb ), SectorSize: 0x200, Cylinders: 0x3B5FD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
01:01:51.0254 0x10a8  ============================================================
01:01:51.0254 0x10a8  \Device\Harddisk2\DR2:
01:01:51.0254 0x10a8  MBR partitions:
01:01:51.0254 0x10a8  \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x2000, BlocksNum 0x1DEE000
01:01:51.0254 0x10a8  \Device\Harddisk0\DR0:
01:01:51.0254 0x10a8  MBR partitions:
01:01:51.0254 0x10a8  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800
01:01:51.0254 0x10a8  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x12EB7348
01:01:51.0264 0x10a8  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x12F1B387, BlocksNum 0x8305F29
01:01:51.0324 0x10a8  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x1B2212EF, BlocksNum 0x5207800
01:01:51.0354 0x10a8  \Device\Harddisk0\DR0\Partition5: MBR, Type 0x7, StartLBA 0x2042C21A, BlocksNum 0xF9F800
01:01:51.0364 0x10a8  \Device\Harddisk0\DR0\Partition6: MBR, Type 0x7, StartLBA 0x213CDA6F, BlocksNum 0x267C591
01:01:51.0364 0x10a8  \Device\Harddisk0\DR0\Partition7: MBR, Type 0x7, StartLBA 0x23A4CFA7, BlocksNum 0x19E071A
01:01:51.0364 0x10a8  \Device\Harddisk1\DR1:
01:01:51.0364 0x10a8  MBR partitions:
01:01:51.0364 0x10a8  \Device\Harddisk2\DR2:
01:01:51.0364 0x10a8  MBR partitions:
01:01:51.0364 0x10a8  \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x2000, BlocksNum 0x1DEE000
01:01:51.0364 0x10a8  \Device\Harddisk3\DR3:
01:01:51.0364 0x10a8  MBR partitions:
01:01:51.0364 0x10a8  \Device\Harddisk3\DR3\Partition1: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x3B5FFE0
01:01:51.0364 0x10a8  \Device\Harddisk4\DR4:
01:01:51.0374 0x10a8  MBR partitions:
01:01:51.0374 0x10a8  \Device\Harddisk4\DR4\Partition1: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x773D4E0
01:01:51.0374 0x10a8  \Device\Harddisk5\DR5:
01:01:51.0374 0x10a8  MBR partitions:
01:01:51.0374 0x10a8  \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8DF8000
01:01:51.0374 0x10a8  ============================================================
01:01:51.0424 0x10a8  C: <-> \Device\Harddisk0\DR0\Partition2
01:01:51.0464 0x10a8  E: <-> \Device\Harddisk0\DR0\Partition7
01:01:51.0464 0x10a8  X: <-> \Device\Harddisk4\DR4\Partition1
01:01:51.0494 0x10a8  W: <-> \Device\Harddisk5\DR5\Partition1
01:01:51.0514 0x10a8  G: <-> \Device\Harddisk0\DR0\Partition3
01:01:51.0574 0x10a8  Q: <-> \Device\Harddisk0\DR0\Partition6
01:01:51.0604 0x10a8  Y: <-> \Device\Harddisk0\DR0\Partition5
01:01:51.0644 0x10a8  H: <-> \Device\Harddisk0\DR0\Partition4
01:01:51.0644 0x10a8  ============================================================
01:01:51.0644 0x10a8  Initialize success
01:01:51.0644 0x10a8  ============================================================
01:02:02.0651 0x1d4c  ============================================================
01:02:02.0651 0x1d4c  Scan started
01:02:02.0651 0x1d4c  Mode: Manual; 
01:02:02.0651 0x1d4c  ============================================================
01:02:02.0651 0x1d4c  KSN ping started
01:02:14.0602 0x1d4c  KSN ping finished: true
01:02:18.0284 0x1d4c  ================ Scan system memory ========================
01:02:18.0304 0x1d4c  System memory - ok
01:02:18.0304 0x1d4c  ================ Scan services =============================
01:02:18.0474 0x1d4c  [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci        C:\Windows\system32\drivers\1394ohci.sys
01:02:18.0504 0x1d4c  1394ohci - ok
01:02:18.0554 0x1d4c  [ E0A8525A951ADDB4655BC2068566407D, 7C08B9DB7C281422FD64219DF81B7064CE16EA53CF00EB1FC33CB0741CE6605F ] 61883           C:\Windows\system32\DRIVERS\61883.sys
01:02:18.0554 0x1d4c  61883 - ok
01:02:18.0614 0x1d4c  [ 7EEB488346FBFA3731276C3EE8A8FD9E, 97D2E49C2E615E38E8176F1C1551BF452CC6A00787FF90845EFF27A4E6E20B1F ] AAV UpdateService C:\Program Files (x86)\AAVUpdateManager\aavus.exe
01:02:18.0614 0x1d4c  AAV UpdateService - ok
01:02:18.0694 0x1d4c  [ B33CF4DE909A5B30F526D82053A63C8E, ABF5BB962C038E545C18B96E686E072D780C907096C7BB341297AF31D3703ABD ] ABBYY.Licensing.FineReader.Professional.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
01:02:18.0714 0x1d4c  ABBYY.Licensing.FineReader.Professional.9.0 - ok
01:02:18.0744 0x1d4c  [ 5C368F4B04ED2A923E6AFCA2D37BAFF5, C3CC58D636B18DF77C4C4B384AD1DE78418716A0606E564DBC63782D5EA02905 ] Accelerometer   C:\Windows\system32\DRIVERS\Accelerometer.sys
01:02:18.0744 0x1d4c  Accelerometer - ok
01:02:18.0794 0x1d4c  [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI            C:\Windows\system32\drivers\ACPI.sys
01:02:18.0804 0x1d4c  ACPI - ok
01:02:18.0834 0x1d4c  [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi         C:\Windows\system32\drivers\acpipmi.sys
01:02:18.0844 0x1d4c  AcpiPmi - ok
01:02:18.0924 0x1d4c  [ CD41DFA7A778555B2055E2D388F5CB33, AE149AB7823AE3A97E2826C06968F32A7E50331484203E4581C83E441A1680F9 ] AcrSch2Svc      C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
01:02:18.0974 0x1d4c  AcrSch2Svc - ok
01:02:19.0036 0x1d4c  [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
01:02:19.0036 0x1d4c  AdobeARMservice - ok
01:02:19.0126 0x1d4c  [ C3E7E1F3C85A6788F3BA078BA214341E, A3D72ACE045730DC1C8A6F4E3937C5C765AB447BF7C573BEC53DE8148EB4A1C8 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
01:02:19.0136 0x1d4c  AdobeFlashPlayerUpdateSvc - ok
01:02:19.0186 0x1d4c  [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx         C:\Windows\system32\DRIVERS\adp94xx.sys
01:02:19.0206 0x1d4c  adp94xx - ok
01:02:19.0216 0x1d4c  [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci         C:\Windows\system32\DRIVERS\adpahci.sys
01:02:19.0226 0x1d4c  adpahci - ok
01:02:19.0236 0x1d4c  [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320         C:\Windows\system32\DRIVERS\adpu320.sys
01:02:19.0246 0x1d4c  adpu320 - ok
01:02:19.0286 0x1d4c  [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc     C:\Windows\System32\aelupsvc.dll
01:02:19.0286 0x1d4c  AeLookupSvc - ok
01:02:19.0376 0x1d4c  [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters     C:\Program Files\IDT\WDM\AESTSr64.exe
01:02:19.0386 0x1d4c  AESTFilters - ok
01:02:19.0416 0x1d4c  [ ABCF9C80EAACE03021BB7F450EB8993F, 8E38726C423E82954CA85266D6F38B605D010A659420A4EF99D29035A9474BFB ] afcdp           C:\Windows\system32\DRIVERS\afcdp.sys
01:02:19.0426 0x1d4c  afcdp - ok
01:02:19.0588 0x1d4c  [ 3B1C11CB7006495F799F8A2AB8B2D530, B7B0C4922A1843BBF8104CDC705C4FEA1F1A760C1CC2BD6BC5E4213A0E4ED9FD ] afcdpsrv        C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
01:02:19.0728 0x1d4c  afcdpsrv - ok
01:02:19.0798 0x1d4c  [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD             C:\Windows\system32\drivers\afd.sys
01:02:19.0818 0x1d4c  AFD - ok
01:02:19.0858 0x1d4c  [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440          C:\Windows\system32\drivers\agp440.sys
01:02:19.0858 0x1d4c  agp440 - ok
01:02:19.0918 0x1d4c  [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG             C:\Windows\System32\alg.exe
01:02:19.0918 0x1d4c  ALG - ok
01:02:19.0938 0x1d4c  [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide          C:\Windows\system32\drivers\aliide.sys
01:02:19.0938 0x1d4c  aliide - ok
01:02:19.0968 0x1d4c  [ A2F5BEA5B45A8E7C4776F39C25E8699D, 52BD8D15CCDD74C193F2622928CB6C2E3FCE026B19BA6318DB04900BD19C5DC6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe
01:02:19.0978 0x1d4c  AMD External Events Utility - ok
01:02:20.0008 0x1d4c  [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide          C:\Windows\system32\drivers\amdide.sys
01:02:20.0008 0x1d4c  amdide - ok
01:02:20.0028 0x1d4c  [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8           C:\Windows\system32\DRIVERS\amdk8.sys
01:02:20.0038 0x1d4c  AmdK8 - ok
01:02:20.0422 0x1d4c  [ 5B03217859B014B090CB5060C1D96875, CFA9110054CFAF319394BB8D567B74AFFA21791A58DC81B87A714CCC7C578F33 ] amdkmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
01:02:20.0752 0x1d4c  amdkmdag - ok
01:02:20.0802 0x1d4c  [ 35D2184A99AD4CD5D17284D6C9F382C9, 93FE4EF2489C29823ED0F9C9D91B44E531BC0A9B3B56DDDDA0F947E80568F70C ] amdkmdap        C:\Windows\system32\DRIVERS\atikmpag.sys
01:02:20.0822 0x1d4c  amdkmdap - ok
01:02:20.0842 0x1d4c  [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM          C:\Windows\system32\DRIVERS\amdppm.sys
01:02:20.0842 0x1d4c  AmdPPM - ok
01:02:20.0882 0x1d4c  [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata         C:\Windows\system32\drivers\amdsata.sys
01:02:20.0882 0x1d4c  amdsata - ok
01:02:20.0892 0x1d4c  [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs          C:\Windows\system32\DRIVERS\amdsbs.sys
01:02:20.0902 0x1d4c  amdsbs - ok
01:02:20.0912 0x1d4c  [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata         C:\Windows\system32\drivers\amdxata.sys
01:02:20.0922 0x1d4c  amdxata - ok
01:02:20.0942 0x1d4c  [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID           C:\Windows\system32\drivers\appid.sys
01:02:20.0942 0x1d4c  AppID - ok
01:02:20.0962 0x1d4c  [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc        C:\Windows\System32\appidsvc.dll
01:02:20.0962 0x1d4c  AppIDSvc - ok
01:02:20.0992 0x1d4c  [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo         C:\Windows\System32\appinfo.dll
01:02:20.0992 0x1d4c  Appinfo - ok
01:02:21.0042 0x1d4c  [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
01:02:21.0042 0x1d4c  Apple Mobile Device Service - ok
01:02:21.0052 0x1d4c  [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc             C:\Windows\system32\DRIVERS\arc.sys
01:02:21.0052 0x1d4c  arc - ok
01:02:21.0062 0x1d4c  [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas          C:\Windows\system32\DRIVERS\arcsas.sys
01:02:21.0062 0x1d4c  arcsas - ok
01:02:21.0092 0x1d4c  [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac        C:\Windows\system32\DRIVERS\asyncmac.sys
01:02:21.0092 0x1d4c  AsyncMac - ok
01:02:21.0112 0x1d4c  [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi           C:\Windows\system32\drivers\atapi.sys
01:02:21.0112 0x1d4c  atapi - ok
01:02:21.0152 0x1d4c  [ ED38B8924DE8C806A2A1C12C4F61E9CF, 88B71426CF09A8458B1AE2DDF41F2C86FE9B4DDA742D22BFF8AF110915486DDA ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys
01:02:21.0152 0x1d4c  AtiHDAudioService - ok
01:02:21.0172 0x1d4c  [ 04A5815DF7E8B037DF674D3CCACC0C31, BC49D6C135C50254BF952B790046BE364DFDDA786F1EACEE4CC8880B764B7A92 ] AtiHdmiService  C:\Windows\system32\drivers\AtiHdmi.sys
01:02:21.0182 0x1d4c  AtiHdmiService - ok
01:02:21.0502 0x1d4c  [ 5B03217859B014B090CB5060C1D96875, CFA9110054CFAF319394BB8D567B74AFFA21791A58DC81B87A714CCC7C578F33 ] atikmdag        C:\Windows\system32\DRIVERS\atikmdag.sys
01:02:21.0684 0x1d4c  atikmdag - ok
01:02:21.0796 0x1d4c  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
01:02:21.0816 0x1d4c  AudioEndpointBuilder - ok
01:02:21.0836 0x1d4c  [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv        C:\Windows\System32\Audiosrv.dll
01:02:21.0856 0x1d4c  AudioSrv - ok
01:02:21.0886 0x1d4c  [ 16FABE84916623D0607E4A975544032C, 9D960CAE27B1769ED5B024C0A3375912432521C73C1F59E21111596A7981BDC3 ] Avc             C:\Windows\system32\DRIVERS\avc.sys
01:02:21.0886 0x1d4c  Avc - ok
01:02:21.0946 0x1d4c  [ 70CCDD9BCBAA5A918A7D135E28A824E2, D98A6D7885A7E44AD32F25BECE65151773E50D3B155020A03A5801DE5A090EA3 ] avc3            C:\Windows\system32\DRIVERS\avc3.sys
01:02:21.0986 0x1d4c  avc3 - ok
01:02:22.0016 0x1d4c  [ D0B093DDF5FD05E4D0109159E9153A52, 2F8430F4B7EECB3C9712E443460F1F9B4FA52EB123FE3B0ED63AAD88616C13A4 ] avchv           C:\Windows\system32\DRIVERS\avchv.sys
01:02:22.0026 0x1d4c  avchv - ok
01:02:22.0056 0x1d4c  [ 0956716D5565680DC83992C11BBDB2C2, 7349F32F3E8596E680EE26BB1CA97AFADB42ED1B4652859CE5E221F67371B412 ] avckf           C:\Windows\system32\DRIVERS\avckf.sys
01:02:22.0086 0x1d4c  avckf - ok
01:02:22.0166 0x1d4c  [ 5E3C595A18B70417858BB37A3B3F6039, 374D76D2D7C684881501A48FF00CE6E0742FE75E411212EAA72543CC94CE184F ] avgsvc          C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
01:02:22.0206 0x1d4c  avgsvc - ok
01:02:22.0226 0x1d4c  [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV        C:\Windows\System32\AxInstSV.dll
01:02:22.0236 0x1d4c  AxInstSV - ok
01:02:22.0266 0x1d4c  [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv         C:\Windows\system32\DRIVERS\bxvbda.sys
01:02:22.0286 0x1d4c  b06bdrv - ok
01:02:22.0306 0x1d4c  [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a        C:\Windows\system32\DRIVERS\b57nd60a.sys
01:02:22.0316 0x1d4c  b57nd60a - ok
01:02:22.0346 0x1d4c  [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC          C:\Windows\System32\bdesvc.dll
01:02:22.0346 0x1d4c  BDESVC - ok
01:02:22.0416 0x1d4c  [ 4CE4B0098FC315C237FA8867F07886C4, 475B2D86EE7658372D868ABC9ACA965FDD8212D3AE2C6E4749DC53DBA3DC19D6 ] bdfwfpf         C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys
01:02:22.0416 0x1d4c  bdfwfpf - ok
01:02:22.0446 0x1d4c  [ B9ECE7FD9F58DAF19450C88338DC5267, 9857DFE0BDDEA791F2DDA99C24A064D488B52E4AC1402A37EF22C244C9283681 ] BDSandBox       C:\Windows\system32\drivers\bdsandbox.sys
01:02:22.0446 0x1d4c  BDSandBox - ok
01:02:22.0466 0x1d4c  [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep            C:\Windows\system32\drivers\Beep.sys
01:02:22.0466 0x1d4c  Beep - ok
01:02:22.0506 0x1d4c  [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE             C:\Windows\System32\bfe.dll
01:02:22.0536 0x1d4c  BFE - ok
01:02:22.0596 0x1d4c  [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS            C:\Windows\System32\qmgr.dll
01:02:22.0676 0x1d4c  BITS - ok
01:02:22.0696 0x1d4c  [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive        C:\Windows\system32\DRIVERS\blbdrive.sys
01:02:22.0696 0x1d4c  blbdrive - ok
01:02:22.0736 0x1d4c  [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
01:02:22.0746 0x1d4c  Bonjour Service - ok
01:02:22.0776 0x1d4c  [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser          C:\Windows\system32\DRIVERS\bowser.sys
01:02:22.0776 0x1d4c  bowser - ok
01:02:22.0806 0x1d4c  [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo        C:\Windows\system32\DRIVERS\BrFiltLo.sys
01:02:22.0806 0x1d4c  BrFiltLo - ok
01:02:22.0826 0x1d4c  [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp        C:\Windows\system32\DRIVERS\BrFiltUp.sys
01:02:22.0826 0x1d4c  BrFiltUp - ok
01:02:22.0846 0x1d4c  [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser         C:\Windows\System32\browser.dll
01:02:22.0856 0x1d4c  Browser - ok
01:02:22.0866 0x1d4c  [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid         C:\Windows\System32\Drivers\Brserid.sys
01:02:22.0876 0x1d4c  Brserid - ok
01:02:22.0886 0x1d4c  [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm        C:\Windows\System32\Drivers\BrSerWdm.sys
01:02:22.0886 0x1d4c  BrSerWdm - ok
01:02:22.0896 0x1d4c  [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm        C:\Windows\System32\Drivers\BrUsbMdm.sys
01:02:22.0896 0x1d4c  BrUsbMdm - ok
01:02:22.0896 0x1d4c  [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer        C:\Windows\System32\Drivers\BrUsbSer.sys
01:02:22.0896 0x1d4c  BrUsbSer - ok
01:02:22.0933 0x1d4c  [ 832B121E4532919CC49F2438F1DCAA21, 70FFDD505A64D3CF03220D6422EDD47CA2E0DF711BBF2ED057F32A688CB2E2E8 ] BthAvrcp        C:\Windows\system32\DRIVERS\BthAvrcp.sys
01:02:22.0934 0x1d4c  BthAvrcp - ok
01:02:22.0958 0x1d4c  [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum         C:\Windows\system32\DRIVERS\BthEnum.sys
01:02:22.0958 0x1d4c  BthEnum - ok
01:02:22.0988 0x1d4c  [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM        C:\Windows\system32\DRIVERS\bthmodem.sys
01:02:22.0988 0x1d4c  BTHMODEM - ok
01:02:23.0008 0x1d4c  [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan          C:\Windows\system32\DRIVERS\bthpan.sys
01:02:23.0018 0x1d4c  BthPan - ok
01:02:23.0058 0x1d4c  [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT         C:\Windows\system32\Drivers\BTHport.sys
01:02:23.0078 0x1d4c  BTHPORT - ok
01:02:23.0118 0x1d4c  [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv         C:\Windows\system32\bthserv.dll
01:02:23.0118 0x1d4c  bthserv - ok
01:02:23.0148 0x1d4c  [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB          C:\Windows\system32\Drivers\BTHUSB.sys
01:02:23.0148 0x1d4c  BTHUSB - ok
01:02:23.0224 0x1d4c  [ 96E22173FD0E2670A2A20C1EEECA162A, 2CC26317DBA063058178EA9B775C2A0FA2CF94FEDC6DF89F3D8314207D56DA24 ] btwampfl        C:\Windows\system32\drivers\btwampfl.sys
01:02:23.0240 0x1d4c  btwampfl - ok
01:02:23.0270 0x1d4c  [ A771078558477068DFD8037B82EB00F8, 58E1686B12B747639FE3BF4CCA58D48B8BBB349C9D316315AD7237F44EF760A4 ] btwaudio        C:\Windows\system32\drivers\btwaudio.sys
01:02:23.0270 0x1d4c  btwaudio - ok
01:02:23.0280 0x1d4c  [ 9FF58F76024D25784755B01F926B00BE, 7A2504E326E63B7225FA25EA6D6ED3E7267278F5D2343A375D7F3B3F74EC9F38 ] btwavdt         C:\Windows\system32\DRIVERS\btwavdt.sys
01:02:23.0290 0x1d4c  btwavdt - ok
01:02:23.0350 0x1d4c  [ D1E05F8B62074E95CA251D752A7BB163, 3B5C0FF6DB5ED9346B1D2DC8C1685D6B5CAAC272C6ED9D3ABAE663A7BD48E9F7 ] btwdins         c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
01:02:23.0390 0x1d4c  btwdins - ok
01:02:23.0400 0x1264  Object required for P2P: [ C3E7E1F3C85A6788F3BA078BA214341E ] AdobeFlashPlayerUpdateSvc
01:02:23.0410 0x1d4c  [ B1ACFD00CDD13B48D86F46BFEC153BF9, CD7BE27D93364735511CC714B85CB7D97E21E84E3C2361EC405BADAAEA550925 ] btwl2cap        C:\Windows\system32\DRIVERS\btwl2cap.sys
01:02:23.0410 0x1d4c  btwl2cap - ok
01:02:23.0420 0x1d4c  [ EDD953D635F3AA89EF902E3F82D60D22, 22A60B225A1AD0F25B9715338C805FED9D5F4BCAC296BBC0D045C6935BDA55E7 ] btwrchid        C:\Windows\system32\DRIVERS\btwrchid.sys
01:02:23.0420 0x1d4c  btwrchid - ok
01:02:23.0520 0x1d4c  [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
01:02:23.0600 0x1d4c  c2cautoupdatesvc - ok
01:02:23.0692 0x1d4c  [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc       C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
01:02:23.0752 0x1d4c  c2cpnrsvc - ok
01:02:23.0779 0x1d4c  [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs            C:\Windows\system32\DRIVERS\cdfs.sys
01:02:23.0782 0x1d4c  cdfs - ok
01:02:23.0804 0x1d4c  [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom           C:\Windows\system32\DRIVERS\cdrom.sys
01:02:23.0804 0x1d4c  cdrom - ok
01:02:23.0824 0x1d4c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc     C:\Windows\System32\certprop.dll
01:02:23.0834 0x1d4c  CertPropSvc - ok
01:02:23.0844 0x1d4c  [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass        C:\Windows\system32\DRIVERS\circlass.sys
01:02:23.0844 0x1d4c  circlass - ok
01:02:23.0894 0x1d4c  [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS            C:\Windows\system32\CLFS.sys
01:02:23.0914 0x1d4c  CLFS - ok
01:02:23.0954 0x1d4c  [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
01:02:23.0954 0x1d4c  clr_optimization_v2.0.50727_32 - ok
01:02:24.0004 0x1d4c  [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe
01:02:24.0004 0x1d4c  clr_optimization_v2.0.50727_64 - ok
01:02:24.0054 0x1d4c  [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
01:02:24.0224 0x1d4c  clr_optimization_v4.0.30319_32 - ok
01:02:24.0274 0x1d4c  [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
01:02:24.0344 0x1d4c  clr_optimization_v4.0.30319_64 - ok
01:02:24.0344 0x1d4c  clwvd - ok
01:02:24.0364 0x1d4c  [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt          C:\Windows\system32\DRIVERS\CmBatt.sys
01:02:24.0364 0x1d4c  CmBatt - ok
01:02:24.0384 0x1d4c  [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide          C:\Windows\system32\drivers\cmdide.sys
01:02:24.0384 0x1d4c  cmdide - ok
01:02:24.0424 0x1d4c  [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG             C:\Windows\system32\Drivers\cng.sys
01:02:24.0434 0x1d4c  CNG - ok
01:02:24.0494 0x1d4c  [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx       C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
01:02:24.0504 0x1d4c  Com4QLBEx - ok
01:02:24.0514 0x1d4c  [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt        C:\Windows\system32\DRIVERS\compbatt.sys
01:02:24.0514 0x1d4c  Compbatt - ok
01:02:24.0544 0x1d4c  [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus    C:\Windows\system32\drivers\CompositeBus.sys
01:02:24.0544 0x1d4c  CompositeBus - ok
01:02:24.0544 0x1d4c  COMSysApp - ok
01:02:24.0654 0x1d4c  cpuz132 - ok
01:02:24.0684 0x1d4c  cpuz136 - ok
01:02:24.0714 0x1d4c  [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk         C:\Windows\system32\DRIVERS\crcdisk.sys
01:02:24.0724 0x1d4c  crcdisk - ok
01:02:24.0744 0x1d4c  [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc        C:\Windows\system32\cryptsvc.dll
01:02:24.0754 0x1d4c  CryptSvc - ok
01:02:24.0774 0x1d4c  [ DF07C6D98BA7F81D0571E366B1CD6672, 1E544237ACB354F67EAA4D805EB5D82F25CBD6F0D6D886DAFA04FC3F168A2FD3 ] csr_a2dp        C:\Windows\system32\drivers\bthav.sys
01:02:24.0774 0x1d4c  csr_a2dp - ok
01:02:24.0814 0x1d4c  dbupdate - ok
01:02:24.0814 0x1d4c  dbupdatem - ok
01:02:24.0854 0x1d4c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch      C:\Windows\system32\rpcss.dll
01:02:24.0874 0x1d4c  DcomLaunch - ok
01:02:24.0914 0x1d4c  [ C3E2CA0279F1CB3F68424993088BF16B, DB980FFC6ECF932DFC7005F8215B01079C536223110E9E3DF846A1A2F9D80C9A ] debutfilter     C:\Windows\system32\DRIVERS\debutfilterx64.sys
01:02:24.0914 0x1d4c  debutfilter - ok
01:02:24.0944 0x1d4c  [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc       C:\Windows\System32\defragsvc.dll
01:02:24.0954 0x1d4c  defragsvc - ok
01:02:24.0995 0x1d4c  [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC            C:\Windows\system32\Drivers\dfsc.sys
01:02:24.0998 0x1d4c  DfsC - ok
01:02:25.0026 0x1d4c  [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp            C:\Windows\system32\dhcpcore.dll
01:02:25.0046 0x1d4c  Dhcp - ok
01:02:25.0106 0x1d4c  [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack       C:\Windows\system32\diagtrack.dll
01:02:25.0156 0x1d4c  DiagTrack - ok
01:02:25.0186 0x1d4c  [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache        C:\Windows\system32\drivers\discache.sys
01:02:25.0186 0x1d4c  discache - ok
01:02:25.0196 0x1d4c  [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk            C:\Windows\system32\DRIVERS\disk.sys
01:02:25.0196 0x1d4c  Disk - ok
01:02:25.0226 0x1d4c  [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache        C:\Windows\System32\dnsrslvr.dll
01:02:25.0226 0x1d4c  Dnscache - ok
01:02:25.0256 0x1d4c  [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc         C:\Windows\System32\dot3svc.dll
01:02:25.0266 0x1d4c  dot3svc - ok
01:02:25.0286 0x1d4c  [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS             C:\Windows\system32\dps.dll
01:02:25.0286 0x1d4c  DPS - ok
01:02:25.0306 0x1d4c  [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud         C:\Windows\system32\drivers\drmkaud.sys
01:02:25.0306 0x1d4c  drmkaud - ok
01:02:25.0356 0x1d4c  [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl         C:\Windows\System32\drivers\dxgkrnl.sys
01:02:25.0396 0x1d4c  DXGKrnl - ok
01:02:25.0416 0x1d4c  [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost         C:\Windows\System32\eapsvc.dll
01:02:25.0416 0x1d4c  EapHost - ok
01:02:25.0549 0x1d4c  [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv           C:\Windows\system32\DRIVERS\evbda.sys
01:02:25.0676 0x1d4c  ebdrv - ok
01:02:25.0696 0x1d4c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] EFS             C:\Windows\System32\lsass.exe
01:02:25.0696 0x1d4c  EFS - ok
01:02:25.0754 0x1d4c  [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr         C:\Windows\ehome\ehRecvr.exe
01:02:25.0778 0x1d4c  ehRecvr - ok
01:02:25.0808 0x1d4c  [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched         C:\Windows\ehome\ehsched.exe
01:02:25.0808 0x1d4c  ehSched - ok
01:02:25.0838 0x1d4c  [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor         C:\Windows\system32\DRIVERS\elxstor.sys
01:02:25.0848 0x1d4c  elxstor - ok
01:02:25.0878 0x1d4c  [ 524C79054636D2E5751169005006460B, 1EBA5972E13C5BB07BBD94D6647B86469B4910F60A3C8BDDC6BB5736EF99C9C3 ] enecir          C:\Windows\system32\DRIVERS\enecir.sys
01:02:25.0878 0x1d4c  enecir - ok
01:02:25.0899 0x1d4c  [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev          C:\Windows\system32\drivers\errdev.sys
01:02:25.0909 0x1d4c  ErrDev - ok
01:02:25.0949 0x1d4c  [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem     C:\Windows\system32\es.dll
01:02:25.0959 0x1d4c  EventSystem - ok
01:02:26.0069 0x1d4c  [ BDF87981C5FEA94FD259F110FB8B1A72, 9643E423A8B88C1A585174819F662BD42FCA23D0A0C9BEF946322CAE417D322F ] EvtEng          C:\Program Files\Intel\WiFi\bin\EvtEng.exe
01:02:26.0109 0x1264  Object send P2P result: true
01:02:26.0149 0x1d4c  EvtEng - ok
01:02:26.0169 0x1d4c  [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat           C:\Windows\system32\drivers\exfat.sys
01:02:26.0169 0x1d4c  exfat - ok
01:02:26.0179 0x1d4c  ezSharedSvc - ok
01:02:26.0229 0x1d4c  Fabs - ok
01:02:26.0239 0x1d4c  [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat         C:\Windows\system32\drivers\fastfat.sys
01:02:26.0249 0x1d4c  fastfat - ok
01:02:26.0279 0x1d4c  [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax             C:\Windows\system32\fxssvc.exe
01:02:26.0309 0x1d4c  Fax - ok
01:02:26.0319 0x1d4c  [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc             C:\Windows\system32\DRIVERS\fdc.sys
01:02:26.0329 0x1d4c  fdc - ok
01:02:26.0339 0x1d4c  [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost         C:\Windows\system32\fdPHost.dll
01:02:26.0339 0x1d4c  fdPHost - ok
01:02:26.0359 0x1d4c  [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub        C:\Windows\system32\fdrespub.dll
01:02:26.0359 0x1d4c  FDResPub - ok
01:02:26.0369 0x1d4c  [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo        C:\Windows\system32\drivers\fileinfo.sys
01:02:26.0369 0x1d4c  FileInfo - ok
01:02:26.0379 0x1d4c  [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace       C:\Windows\system32\drivers\filetrace.sys
01:02:26.0379 0x1d4c  Filetrace - ok
01:02:26.0483 0x1d4c  [ 5BD96D8C5411ACE71A7EAACAF0EF2903, 2AF58E6060C7DEC44B4CA30E14E164473CD4089AE475DAFFC61DFE56990C1147 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe
01:02:26.0561 0x1d4c  FirebirdServerMAGIXInstance - ok
01:02:26.0588 0x1d4c  [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk        C:\Windows\system32\DRIVERS\flpydisk.sys
01:02:26.0589 0x1d4c  flpydisk - ok
01:02:26.0603 0x1d4c  [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr          C:\Windows\system32\drivers\fltmgr.sys
01:02:26.0613 0x1d4c  FltMgr - ok
01:02:26.0643 0x1d4c  [ FDD776FAC4159A2983940D1E411FE9F3, 3B147B4D3C5CC67117D65152FA8BD3A603728C92B023AE45CD166E6FF3F474C5 ] fltsrv          C:\Windows\system32\DRIVERS\fltsrv.sys
01:02:26.0643 0x1d4c  fltsrv - ok
01:02:26.0693 0x1d4c  [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache       C:\Windows\system32\FntCache.dll
01:02:26.0743 0x1d4c  FontCache - ok
01:02:26.0805 0x1d4c  [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
01:02:26.0815 0x1d4c  FontCache3.0.0.0 - ok
01:02:26.0825 0x1d4c  [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends       C:\Windows\system32\drivers\FsDepends.sys
01:02:26.0825 0x1d4c  FsDepends - ok
01:02:26.0855 0x1d4c  [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec          C:\Windows\system32\drivers\Fs_Rec.sys
01:02:26.0865 0x1d4c  Fs_Rec - ok
01:02:26.0895 0x1d4c  [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol          C:\Windows\system32\DRIVERS\fvevol.sys
01:02:26.0895 0x1d4c  fvevol - ok
01:02:26.0915 0x1d4c  [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx        C:\Windows\system32\DRIVERS\gagp30kx.sys
01:02:26.0915 0x1d4c  gagp30kx - ok
01:02:26.0945 0x1d4c  [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM     C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
01:02:26.0945 0x1d4c  GEARAspiWDM - ok
01:02:26.0975 0x1d4c  [ A4198F2BD8AA592CB90476277A81B5E1, D099E636541CC2D4B74541E73A7B1C0BD4FFA7B699212AD98A8615AC3066A8BB ] ggflt           C:\Windows\system32\DRIVERS\ggflt.sys
01:02:26.0975 0x1d4c  ggflt - ok
01:02:26.0985 0x1d4c  [ D266350BDAAB9EB6C1AEC370EEAAFF3A, 51F482AF0C4D823F5F0DE8BB22756B89E74D62257FE5FD251E76308D8C42EE00 ] ggsemc          C:\Windows\system32\DRIVERS\ggsemc.sys
01:02:26.0985 0x1d4c  ggsemc - ok
01:02:27.0045 0x1d4c  [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc           C:\Windows\System32\gpsvc.dll
01:02:27.0075 0x1d4c  gpsvc - ok
01:02:27.0095 0x1d4c  [ B9893A68032A6D9ADDB5B98287C630F7, F0280764D7B31F1EA634E91397229B1C064A7C1B3A77A6BBD123CEA74180789F ] grmnusb         C:\Windows\system32\drivers\grmnusb.sys
01:02:27.0105 0x1d4c  grmnusb - ok
01:02:27.0165 0x1d4c  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate         C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:02:27.0165 0x1d4c  gupdate - ok
01:02:27.0185 0x1d4c  [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem        C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
01:02:27.0185 0x1d4c  gupdatem - ok
01:02:27.0225 0x1d4c  [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc           C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
01:02:27.0235 0x1d4c  gusvc - ok
01:02:27.0265 0x1d4c  [ 0A9D58AABD01DA97B1D101473EFA7659, C18EA4F5BF569C230AD682A418F69B6E4209AD467BCCBDABD0515DBB582BF04B ] gzflt           C:\Windows\system32\DRIVERS\gzflt.sys
01:02:27.0265 0x1d4c  gzflt - ok
01:02:27.0285 0x1d4c  [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir        C:\Windows\system32\drivers\hcw85cir.sys
01:02:27.0285 0x1d4c  hcw85cir - ok
01:02:27.0325 0x1d4c  [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
01:02:27.0345 0x1d4c  HdAudAddService - ok
01:02:27.0365 0x1d4c  [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus        C:\Windows\system32\drivers\HDAudBus.sys
01:02:27.0365 0x1d4c  HDAudBus - ok
01:02:27.0375 0x1d4c  [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt         C:\Windows\system32\DRIVERS\HidBatt.sys
01:02:27.0375 0x1d4c  HidBatt - ok
01:02:27.0407 0x1d4c  [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth          C:\Windows\system32\DRIVERS\hidbth.sys
01:02:27.0407 0x1d4c  HidBth - ok
01:02:27.0427 0x1d4c  [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr           C:\Windows\system32\DRIVERS\hidir.sys
01:02:27.0427 0x1d4c  HidIr - ok
01:02:27.0447 0x1d4c  [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv         C:\Windows\system32\hidserv.dll
01:02:27.0447 0x1d4c  hidserv - ok
01:02:27.0467 0x1d4c  [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb          C:\Windows\system32\drivers\hidusb.sys
01:02:27.0477 0x1d4c  HidUsb - ok
01:02:27.0497 0x1d4c  [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc          C:\Windows\system32\kmsvc.dll
01:02:27.0507 0x1d4c  hkmsvc - ok
01:02:27.0537 0x1d4c  [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
01:02:27.0547 0x1d4c  HomeGroupListener - ok
01:02:27.0607 0x1d4c  [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
01:02:27.0627 0x1d4c  HomeGroupProvider - ok
01:02:27.0657 0x1d4c  [ C227DFCF703D02EAD4D7E44B0BA7C181, 3A4700E9D42E13051FABF868407B82A04C4A2A363AF229E420E65B62D3586196 ] hotcore3        C:\Windows\system32\DRIVERS\hotcore3.sys
01:02:27.0657 0x1d4c  hotcore3 - ok
01:02:27.0717 0x1d4c  [ BB1FC298BE53AAB1E110F6E786BD8AC5, C2DA2C3CE96D5F8B50013063B5EF7BED7478636896C709A7AF34855B2E69B9F1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
01:02:27.0727 0x1d4c  HP Support Assistant Service - ok
01:02:27.0777 0x1d4c  [ 4E0BEC0F78096FFD6D3314B497FC49D3, 15B545815D0C80102963FFF13B6643CC9A74717137C1CBA45345B18912E72DB6 ] hpdskflt        C:\Windows\system32\DRIVERS\hpdskflt.sys
01:02:27.0777 0x1d4c  hpdskflt - ok
01:02:27.0807 0x1d4c  [ 9AF482D058BE59CC28BCE52E7C4B747C, 2D150CD0C82B575CDE2E1B3941FD72EFCB254850D6FF1D7C40D3B29643018EFF ] HpqKbFiltr      C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
01:02:27.0807 0x1d4c  HpqKbFiltr - ok
01:02:27.0897 0x1d4c  [ 9B7EDD3FE7C211C36E921D34D18A3A0A, 03A450F85A042F9668D1560FA2B8B89783568C87CDB1A8685CDA2AC9FE3761C3 ] hpqwmiex        C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
01:02:27.0938 0x1d4c  hpqwmiex - ok
01:02:27.0962 0x1d4c  [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD          C:\Windows\system32\drivers\HpSAMD.sys
01:02:27.0965 0x1d4c  HpSAMD - ok
01:02:28.0069 0x1d4c  HPSLPSVC - ok
01:02:28.0089 0x1d4c  [ FC7C13B5A9E9BE23B7AE72BBC7FDB278, E85A7BF1CFE52BA7D663A1ED48A4F8874EFBDDF48979138F7E3E24817705B6A1 ] hpsrv           C:\Windows\system32\Hpservice.exe
01:02:28.0089 0x1d4c  hpsrv - ok
01:02:28.0129 0x1d4c  [ 7FF1EE51F34F43D29C8E0633E966192E, 3CBCE6829EBCCC5852F72CCEF32C539D8E63E9AF6788AC52683AF0EB6AA4CAD1 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
01:02:28.0129 0x1d4c  HPSupportSolutionsFrameworkService - ok
01:02:28.0179 0x1d4c  [ A6C6BF09D6D2539286FF4328454696B9, 17ECE05A6D1F56CF1A2AEC3F23BDF916D87EEE1C332C8962718350F9649CBD63 ] HRService       C:\Program Files (x86)\Haufe\iDesk\iDeskService\iDeskService.exe
01:02:28.0189 0x1d4c  HRService - ok
01:02:28.0259 0x1d4c  [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP            C:\Windows\system32\drivers\HTTP.sys
01:02:28.0279 0x1d4c  HTTP - ok
01:02:28.0309 0x1d4c  [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy        C:\Windows\system32\drivers\hwpolicy.sys
01:02:28.0309 0x1d4c  hwpolicy - ok
01:02:28.0329 0x1d4c  [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt        C:\Windows\system32\DRIVERS\i8042prt.sys
01:02:28.0339 0x1d4c  i8042prt - ok
01:02:28.0379 0x1d4c  [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor          C:\Windows\system32\DRIVERS\iaStor.sys
01:02:28.0409 0x1d4c  iaStor - ok
01:02:28.0449 0x1d4c  [ 8FFF9083252C16FE3960173722605E9E, 6546FDA34B9AF94C5E86E5269BBC2F02F1E78D6D4BE5B5EC01F4B284CC934994 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
01:02:28.0449 0x1d4c  IAStorDataMgrSvc - ok
01:02:28.0489 0x1d4c  [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV         C:\Windows\system32\drivers\iaStorV.sys
01:02:28.0499 0x1d4c  iaStorV - ok
01:02:28.0549 0x1d4c  [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT        C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
01:02:28.0549 0x1d4c  IDriverT - ok
01:02:28.0679 0x1d4c  [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc           C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe
01:02:28.0709 0x1d4c  idsvc - ok
01:02:28.0709 0x1d4c  IEEtwCollectorService - ok
01:02:28.0939 0x1d4c  [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx            C:\Windows\system32\DRIVERS\igdkmd64.sys
01:02:29.0229 0x1d4c  igfx - ok
01:02:29.0259 0x1d4c  [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp           C:\Windows\system32\DRIVERS\iirsp.sys
01:02:29.0259 0x1d4c  iirsp - ok
01:02:29.0309 0x1d4c  [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT          C:\Windows\System32\ikeext.dll
01:02:29.0339 0x1d4c  IKEEXT - ok
01:02:29.0379 0x1d4c  [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide        C:\Windows\system32\drivers\intelide.sys
01:02:29.0379 0x1d4c  intelide - ok
01:02:29.0389 0x1d4c  [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm        C:\Windows\system32\DRIVERS\intelppm.sys
01:02:29.0389 0x1d4c  intelppm - ok
01:02:29.0409 0x1d4c  [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum       C:\Windows\system32\ipbusenum.dll
01:02:29.0419 0x1d4c  IPBusEnum - ok
01:02:29.0449 0x1d4c  [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver  C:\Windows\system32\DRIVERS\ipfltdrv.sys
01:02:29.0449 0x1d4c  IpFilterDriver - ok
01:02:29.0489 0x1d4c  [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc        C:\Windows\System32\iphlpsvc.dll
01:02:29.0509 0x1d4c  iphlpsvc - ok
01:02:29.0539 0x1d4c  [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV         C:\Windows\system32\drivers\IPMIDrv.sys
01:02:29.0539 0x1d4c  IPMIDRV - ok
01:02:29.0579 0x1d4c  [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT           C:\Windows\system32\drivers\ipnat.sys
01:02:29.0589 0x1d4c  IPNAT - ok
01:02:29.0699 0x1d4c  [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe
01:02:29.0719 0x1d4c  iPod Service - ok
01:02:29.0739 0x1d4c  [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM          C:\Windows\system32\drivers\irenum.sys
01:02:29.0739 0x1d4c  IRENUM - ok
01:02:29.0759 0x1d4c  [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp          C:\Windows\system32\drivers\isapnp.sys
01:02:29.0759 0x1d4c  isapnp - ok
01:02:29.0789 0x1d4c  [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt        C:\Windows\system32\drivers\msiscsi.sys
01:02:29.0799 0x1d4c  iScsiPrt - ok
01:02:29.0829 0x1d4c  [ 08ED99A8271CF0B808C595D88ECEE779, 440ECE9999FF17A70792E530A03A9D38F44C6245F06C47C988474E110C42168C ] JMCR            C:\Windows\system32\DRIVERS\jmcr.sys
01:02:29.0829 0x1d4c  JMCR - ok
01:02:29.0849 0x1d4c  [ 1542F0B31DD7193EF8C0606C018E19AF, FD68909AD7A8C0D8C640C9505982CB66F454AE61BC4EACDA3D0190CFCC42A10A ] johci           C:\Windows\system32\DRIVERS\johci.sys
01:02:29.0859 0x1d4c  johci - ok
01:02:29.0869 0x1d4c  [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass        C:\Windows\system32\drivers\kbdclass.sys
01:02:29.0869 0x1d4c  kbdclass - ok
01:02:29.0889 0x1d4c  [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid          C:\Windows\system32\drivers\kbdhid.sys
01:02:29.0889 0x1d4c  kbdhid - ok
01:02:29.0919 0x1d4c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] KeyIso          C:\Windows\system32\lsass.exe
01:02:29.0929 0x1d4c  KeyIso - ok
01:02:29.0949 0x1d4c  [ BCC83F22805F560C8A487F2F296A78FE, B6729B9D85CC3B9377E3143FEF920EFAA82D152845A43074417E9266C9F5C1A8 ] KSecDD          C:\Windows\system32\Drivers\ksecdd.sys
01:02:29.0949 0x1d4c  KSecDD - ok
01:02:29.0989 0x1d4c  [ 33D52A96BEEE8AFCE9E07EEC9FE0C9DB, 5367B46A43296792A0E6294906D40511079D5CAA23F08D5A7EDE02C06AD34484 ] KSecPkg         C:\Windows\system32\Drivers\ksecpkg.sys
01:02:29.0989 0x1d4c  KSecPkg - ok
01:02:30.0009 0x1d4c  [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk         C:\Windows\system32\drivers\ksthunk.sys
01:02:30.0009 0x1d4c  ksthunk - ok
01:02:30.0039 0x1d4c  [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm           C:\Windows\system32\msdtckrm.dll
01:02:30.0059 0x1d4c  KtmRm - ok
01:02:30.0089 0x1d4c  [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer    C:\Windows\system32\srvsvc.dll
01:02:30.0099 0x1d4c  LanmanServer - ok
01:02:30.0129 0x1d4c  [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
01:02:30.0139 0x1d4c  LanmanWorkstation - ok
01:02:30.0169 0x1d4c  [ 3C46290F7A5D45BA6EF32C248E22AA69, E2EAC359B38AE1A36DACDFE6E3923C1D70D6F5B9E5E411279B074802CB019760 ] Lbd             C:\Windows\system32\DRIVERS\Lbd.sys
01:02:30.0169 0x1d4c  Lbd - ok
01:02:30.0199 0x1d4c  [ E999BEB881CA740B86F30BD81956F828, B5CEA202363134FE7D55B680721B72B39C9433F34FFDB62A5F49BD3FE00F42CA ] LBTServ         C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe
01:02:30.0219 0x1d4c  LBTServ - ok
01:02:30.0263 0x1d4c  [ 11943FC017712F4A715F908587827636, FCCC0059F56F49A189EDF1E399773D2EDB10D006CD71A55676754C7DF4CA7698 ] LHidFilt        C:\Windows\system32\DRIVERS\LHidFilt.Sys
01:02:30.0265 0x1d4c  LHidFilt - ok
01:02:30.0291 0x1d4c  [ 458ED3DAE4A8FF4AD350EAE1464CF65F, D8EFD7D505823EA48EFA68221C7F890A73785348FFF7AAEECB058B482B93FECC ] libusb0         C:\Windows\system32\DRIVERS\libusb0.sys
01:02:30.0291 0x1d4c  libusb0 - ok
01:02:30.0311 0x1d4c  [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio          C:\Windows\system32\DRIVERS\lltdio.sys
01:02:30.0311 0x1d4c  lltdio - ok
01:02:30.0341 0x1d4c  [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc         C:\Windows\System32\lltdsvc.dll
01:02:30.0361 0x1d4c  lltdsvc - ok
01:02:30.0381 0x1d4c  [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts         C:\Windows\System32\lmhsvc.dll
01:02:30.0381 0x1d4c  lmhosts - ok
01:02:30.0411 0x1d4c  [ 9B5BFC8D254A9A109B9AEBF6D6CE8B6C, 3815A3B8966AEE88A56D5EAF3979D119FBD0B59B70AD774EEE3AF4DD6DD74935 ] LMouFilt        C:\Windows\system32\DRIVERS\LMouFilt.Sys
01:02:30.0411 0x1d4c  LMouFilt - ok
01:02:30.0441 0x1d4c  [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC          C:\Windows\system32\DRIVERS\lsi_fc.sys
01:02:30.0441 0x1d4c  LSI_FC - ok
01:02:30.0451 0x1d4c  [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS         C:\Windows\system32\DRIVERS\lsi_sas.sys
01:02:30.0451 0x1d4c  LSI_SAS - ok
01:02:30.0471 0x1d4c  [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2        C:\Windows\system32\DRIVERS\lsi_sas2.sys
01:02:30.0471 0x1d4c  LSI_SAS2 - ok
01:02:30.0481 0x1d4c  [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI        C:\Windows\system32\DRIVERS\lsi_scsi.sys
01:02:30.0491 0x1d4c  LSI_SCSI - ok
01:02:30.0491 0x1d4c  [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv           C:\Windows\system32\drivers\luafv.sys
01:02:30.0501 0x1d4c  luafv - ok
01:02:30.0531 0x1d4c  [ 4A503882318BB2F59218D401614E6AF6, 678FDE29EAE20353E780F53CFB9E79EA8B43E1E8BAC77890C178918DC5CCBA0E ] lvpepf64        C:\Windows\system32\DRIVERS\lv302a64.sys
01:02:30.0531 0x1d4c  lvpepf64 - ok
01:02:30.0561 0x1d4c  [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2M64        C:\Windows\system32\DRIVERS\LVPr2M64.sys
01:02:30.0561 0x1d4c  LVPr2M64 - ok
01:02:30.0561 0x1d4c  [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2Mon        C:\Windows\system32\DRIVERS\LVPr2M64.sys
01:02:30.0571 0x1d4c  LVPr2Mon - ok
01:02:30.0601 0x1d4c  [ A35679E56E78091E1042A2D7ADBF2958, F2282B697DCDD5767F65D99FEA374D3757C6133D42BD5A9C582C217619213290 ] LVPrcS64        C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
01:02:30.0611 0x1d4c  LVPrcS64 - ok
01:02:30.0631 0x1d4c  [ 125AE13C293889001B8456CF3EB04A40, EB4B7135691935A9AC515099ED8C2767BC02308068AB9BEB2869B6E841268848 ] LVRS64          C:\Windows\system32\DRIVERS\lvrs64.sys
01:02:30.0651 0x1d4c  LVRS64 - ok
01:02:30.0671 0x1d4c  [ 5C3FF68267A5D242EE79EE01B993D6CE, 853637AC30A16698F2F583693E98B67104ECE5B8F80C6FB88266665162623B92 ] LVUSBS64        C:\Windows\system32\drivers\LVUSBS64.sys
01:02:30.0681 0x1d4c  LVUSBS64 - ok
01:02:30.0711 0x1d4c  [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc         C:\Windows\system32\Mcx2Svc.dll
01:02:30.0711 0x1d4c  Mcx2Svc - ok
01:02:30.0731 0x1d4c  [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas         C:\Windows\system32\DRIVERS\megasas.sys
01:02:30.0731 0x1d4c  megasas - ok
01:02:30.0761 0x1d4c  [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR          C:\Windows\system32\DRIVERS\MegaSR.sys
01:02:30.0771 0x1d4c  MegaSR - ok
01:02:30.0781 0x1d4c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS           C:\Windows\system32\mmcss.dll
01:02:30.0791 0x1d4c  MMCSS - ok
01:02:30.0811 0x1d4c  [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem           C:\Windows\system32\drivers\modem.sys
01:02:30.0811 0x1d4c  Modem - ok
01:02:30.0821 0x1d4c  [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor         C:\Windows\system32\DRIVERS\monitor.sys
01:02:30.0831 0x1d4c  monitor - ok
01:02:30.0841 0x1d4c  [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass        C:\Windows\system32\DRIVERS\mouclass.sys
01:02:30.0851 0x1d4c  mouclass - ok
01:02:30.0861 0x1d4c  [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid          C:\Windows\system32\DRIVERS\mouhid.sys
01:02:30.0861 0x1d4c  mouhid - ok
01:02:30.0881 0x1d4c  [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr        C:\Windows\system32\drivers\mountmgr.sys
01:02:30.0881 0x1d4c  mountmgr - ok
01:02:30.0921 0x1d4c  [ 9763F3C17AC8C095C4419482BD1484BA, 5E329D63ADF7ADAF615DF45F7A0C1E9528B1A5CEE50B6340CEE8584EFE285FB9 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
01:02:30.0931 0x1d4c  MozillaMaintenance - ok
01:02:30.0971 0x1d4c  [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio            C:\Windows\system32\drivers\mpio.sys
01:02:30.0971 0x1d4c  mpio - ok
01:02:30.0991 0x1d4c  [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv          C:\Windows\system32\drivers\mpsdrv.sys
01:02:31.0001 0x1d4c  mpsdrv - ok
01:02:31.0051 0x1d4c  [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc          C:\Windows\system32\mpssvc.dll
01:02:31.0081 0x1d4c  MpsSvc - ok
01:02:31.0111 0x1d4c  [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV          C:\Windows\system32\drivers\mrxdav.sys
01:02:31.0121 0x1d4c  MRxDAV - ok
01:02:31.0151 0x1d4c  [ 73ADDCC406B86E7DA4416691E8E74BDA, 4EC970B9095E6DAA79BF7EFB92DF3F2C0AB0C46739AA36C171A262E05B63CBB5 ] mrxsmb          C:\Windows\system32\DRIVERS\mrxsmb.sys
01:02:31.0151 0x1d4c  mrxsmb - ok
01:02:31.0181 0x1d4c  [ 7C81098FBAF2EAF5B54B939F832B0F61, 999435DF4638ECB136D5BF1B84305A84B215BAB542E4D5301E57D28D507E11B3 ] mrxsmb10        C:\Windows\system32\DRIVERS\mrxsmb10.sys
01:02:31.0201 0x1d4c  mrxsmb10 - ok
01:02:31.0211 0x1d4c  [ ACB763673BCCE6C7B3B8F858C9FE4F1F, CCD49558F8A01A225AEAE60BF299BCA6E9399E39F4F553FABC36CADB164BBBC0 ] mrxsmb20        C:\Windows\system32\DRIVERS\mrxsmb20.sys
01:02:31.0221 0x1d4c  mrxsmb20 - ok
01:02:31.0241 0x1d4c  [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci          C:\Windows\system32\drivers\msahci.sys
01:02:31.0241 0x1d4c  msahci - ok
01:02:31.0261 0x1d4c  [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm           C:\Windows\system32\drivers\msdsm.sys
01:02:31.0261 0x1d4c  msdsm - ok
01:02:31.0281 0x1d4c  [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC           C:\Windows\System32\msdtc.exe
01:02:31.0291 0x1d4c  MSDTC - ok
01:02:31.0321 0x1d4c  [ 72949A24D37A20A54B3D4D3DADBB55E9, 580B59EF2DFA4F6EE27BA37904F0705CBCD74F9B07D2D795093C045F94AE6DB5 ] MSDV            C:\Windows\system32\DRIVERS\msdv.sys
01:02:31.0331 0x1d4c  MSDV - ok
01:02:31.0341 0x1d4c  [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs            C:\Windows\system32\drivers\Msfs.sys
01:02:31.0341 0x1d4c  Msfs - ok
01:02:31.0351 0x1d4c  [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf       C:\Windows\System32\drivers\mshidkmdf.sys
01:02:31.0351 0x1d4c  mshidkmdf - ok
01:02:31.0361 0x1d4c  [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv        C:\Windows\system32\drivers\msisadrv.sys
01:02:31.0371 0x1d4c  msisadrv - ok
01:02:31.0401 0x1d4c  [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI         C:\Windows\system32\iscsiexe.dll
01:02:31.0401 0x1d4c  MSiSCSI - ok
01:02:31.0411 0x1d4c  msiserver - ok
01:02:31.0421 0x1d4c  [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV         C:\Windows\system32\drivers\MSKSSRV.sys
01:02:31.0421 0x1d4c  MSKSSRV - ok
01:02:31.0431 0x1d4c  [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK        C:\Windows\system32\drivers\MSPCLOCK.sys
01:02:31.0431 0x1d4c  MSPCLOCK - ok
01:02:31.0451 0x1d4c  [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM           C:\Windows\system32\drivers\MSPQM.sys
01:02:31.0451 0x1d4c  MSPQM - ok
01:02:31.0481 0x1d4c  [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC           C:\Windows\system32\drivers\MsRPC.sys
01:02:31.0501 0x1d4c  MsRPC - ok
01:02:31.0521 0x1d4c  [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios        C:\Windows\system32\drivers\mssmbios.sys
01:02:31.0521 0x1d4c  mssmbios - ok
01:02:31.0531 0x1d4c  [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE           C:\Windows\system32\drivers\MSTEE.sys
01:02:31.0531 0x1d4c  MSTEE - ok
01:02:31.0561 0x1d4c  [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig        C:\Windows\system32\DRIVERS\MTConfig.sys
01:02:31.0561 0x1d4c  MTConfig - ok
01:02:31.0583 0x1d4c  [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup             C:\Windows\system32\Drivers\mup.sys
01:02:31.0583 0x1d4c  Mup - ok
01:02:31.0643 0x1d4c  [ 59AA4CFF0C9EDA2252BBF5B6C7C5AA21, 83BF9D6181F2E27B790750AC088C234761EFEBCA22CE24A495BC0DA6F0E66AF4 ] MyWiFiDHCPDNS   C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
01:02:31.0673 0x1d4c  MyWiFiDHCPDNS - ok
01:02:31.0733 0x1d4c  [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent        C:\Windows\system32\qagentRT.dll
01:02:31.0763 0x1d4c  napagent - ok
01:02:31.0783 0x1d4c  [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP     C:\Windows\system32\DRIVERS\nwifi.sys
01:02:31.0803 0x1d4c  NativeWifiP - ok
01:02:31.0853 0x1d4c  [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS            C:\Windows\system32\drivers\ndis.sys
01:02:31.0883 0x1d4c  NDIS - ok
01:02:31.0903 0x1d4c  [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap         C:\Windows\system32\DRIVERS\ndiscap.sys
01:02:31.0913 0x1d4c  NdisCap - ok
01:02:31.0923 0x1d4c  [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi        C:\Windows\system32\DRIVERS\ndistapi.sys
01:02:31.0923 0x1d4c  NdisTapi - ok
01:02:31.0953 0x1d4c  [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio         C:\Windows\system32\DRIVERS\ndisuio.sys
01:02:31.0963 0x1d4c  Ndisuio - ok
01:02:31.0993 0x1d4c  [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan         C:\Windows\system32\DRIVERS\ndiswan.sys
01:02:31.0993 0x1d4c  NdisWan - ok
01:02:32.0033 0x1d4c  [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy         C:\Windows\system32\drivers\NDProxy.sys
01:02:32.0033 0x1d4c  NDProxy - ok
01:02:32.0043 0x1d4c  [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS         C:\Windows\system32\DRIVERS\netbios.sys
01:02:32.0043 0x1d4c  NetBIOS - ok
01:02:32.0073 0x1d4c  [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT           C:\Windows\system32\DRIVERS\netbt.sys
01:02:32.0083 0x1d4c  NetBT - ok
01:02:32.0093 0x1d4c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] Netlogon        C:\Windows\system32\lsass.exe
01:02:32.0093 0x1d4c  Netlogon - ok
01:02:32.0133 0x1d4c  [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman          C:\Windows\System32\netman.dll
01:02:32.0143 0x1d4c  Netman - ok
01:02:32.0203 0x1d4c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:02:32.0223 0x1d4c  NetMsmqActivator - ok
01:02:32.0233 0x1d4c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:02:32.0243 0x1d4c  NetPipeActivator - ok
01:02:32.0273 0x1d4c  [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm        C:\Windows\System32\netprofm.dll
01:02:32.0293 0x1d4c  netprofm - ok
01:02:32.0303 0x1d4c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:02:32.0303 0x1d4c  NetTcpActivator - ok
01:02:32.0313 0x1d4c  [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
01:02:32.0313 0x1d4c  NetTcpPortSharing - ok
01:02:32.0583 0x1d4c  [ 24F64343F14A119308456E1CA7507B26, E9219B173426E872977C3D615552B066C697A31D003AE3F0012BF1C6FFCEFF51 ] NETw5s64        C:\Windows\system32\DRIVERS\NETw5s64.sys
01:02:32.0873 0x1d4c  NETw5s64 - ok
01:02:33.0093 0x1d4c  [ D68DE412A3243F8D57DDB814AA509813, 02DFDAAD8F4BCEA62197C03AB0099A498197752D6037542F62A9CD71F0A3469A ] netw5v64        C:\Windows\system32\DRIVERS\netw5v64.sys
01:02:33.0285 0x1d4c  netw5v64 - ok
01:02:33.0605 0x1d4c  [ 9AA75919D0A5F33BEA0DF7B9DB09B755, 84983ED12522B53D9EF656162730C4EEAC74F8A57EC2059DF1AEDF886AEB6915 ] NETwNs64        C:\Windows\system32\DRIVERS\NETwNs64.sys
01:02:33.0885 0x1d4c  NETwNs64 - ok
01:02:33.0935 0x1d4c  [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960         C:\Windows\system32\DRIVERS\nfrd960.sys
01:02:33.0935 0x1d4c  nfrd960 - ok
01:02:33.0955 0x1d4c  [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc          C:\Windows\System32\nlasvc.dll
01:02:33.0975 0x1d4c  NlaSvc - ok
01:02:34.0045 0x1d4c  [ 7AEA4DF1CA68FD45DD4BBE1F0243CE7F, 4CCE820F455512C41E4F98109FA6F048907DD3452D5A00D5F885C77F93C9C105 ] NMSAccess       C:\Windows\SysWOW64\NMSAccess32.exe
01:02:34.0055 0x1d4c  NMSAccess - ok
01:02:34.0085 0x1d4c  [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs            C:\Windows\system32\drivers\Npfs.sys
01:02:34.0085 0x1d4c  Npfs - ok
01:02:34.0105 0x1d4c  [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi             C:\Windows\system32\nsisvc.dll
01:02:34.0105 0x1d4c  nsi - ok
01:02:34.0115 0x1d4c  [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy        C:\Windows\system32\drivers\nsiproxy.sys
01:02:34.0125 0x1d4c  nsiproxy - ok
01:02:34.0215 0x1d4c  [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs            C:\Windows\system32\drivers\Ntfs.sys
01:02:34.0275 0x1d4c  Ntfs - ok
01:02:34.0295 0x1d4c  [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null            C:\Windows\system32\drivers\Null.sys
01:02:34.0295 0x1d4c  Null - ok
01:02:34.0325 0x1d4c  [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid          C:\Windows\system32\drivers\nvraid.sys
01:02:34.0335 0x1d4c  nvraid - ok
01:02:34.0345 0x1d4c  [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor          C:\Windows\system32\drivers\nvstor.sys
01:02:34.0345 0x1d4c  nvstor - ok
01:02:34.0385 0x1d4c  [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp          C:\Windows\system32\drivers\nv_agp.sys
01:02:34.0385 0x1d4c  nv_agp - ok
01:02:34.0415 0x1d4c  [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394        C:\Windows\system32\DRIVERS\ohci1394.sys
01:02:34.0415 0x1d4c  ohci1394 - ok
01:02:34.0455 0x1d4c  [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose             C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
01:02:34.0455 0x1d4c  ose - ok
01:02:34.0635 0x1d4c  [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc         C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
01:02:34.0795 0x1d4c  osppsvc - ok
01:02:34.0835 0x1d4c  [ DAF5D6B1696D42140839CD557336EFC8, DF5E16BFC27FB718C4C5F2FC8B20380D25A58B52E7F221957C0919C3F6D99833 ] OXSDIDRV_x64    C:\Windows\system32\DRIVERS\OXSDIDRV_x64.sys
01:02:34.0835 0x1d4c  OXSDIDRV_x64 - ok
01:02:34.0865 0x1d4c  [ D77856902312AB9129C966F64A3AC430, E0E9C8085EEC16B4D15275DB39FC906761F1F3CBE6A3D45D383977A9F1348DAE ] OXUDIDRV        C:\Windows\system32\Drivers\OXUDIDRV_X64.sys
01:02:34.0875 0x1d4c  OXUDIDRV - ok
01:02:34.0895 0x1d4c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc        C:\Windows\system32\pnrpsvc.dll
01:02:34.0915 0x1d4c  p2pimsvc - ok
01:02:34.0945 0x1d4c  [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc          C:\Windows\system32\p2psvc.dll
01:02:34.0955 0x1d4c  p2psvc - ok
01:02:34.0975 0x1d4c  [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport         C:\Windows\system32\DRIVERS\parport.sys
01:02:34.0975 0x1d4c  Parport - ok
01:02:35.0005 0x1d4c  [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr         C:\Windows\system32\drivers\partmgr.sys
01:02:35.0005 0x1d4c  partmgr - ok
01:02:35.0045 0x1d4c  [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc          C:\Windows\System32\pcasvc.dll
01:02:35.0065 0x1d4c  PcaSvc - ok
01:02:35.0075 0x1d4c  [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci             C:\Windows\system32\drivers\pci.sys
01:02:35.0085 0x1d4c  pci - ok
01:02:35.0115 0x1d4c  [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide          C:\Windows\system32\drivers\pciide.sys
01:02:35.0115 0x1d4c  pciide - ok
01:02:35.0135 0x1d4c  [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia          C:\Windows\system32\DRIVERS\pcmcia.sys
01:02:35.0145 0x1d4c  pcmcia - ok
01:02:35.0165 0x1d4c  [ AF7CE12C4F3DC8CB2B07685C916BBCFE, 1AF47113778D411BF3CF82ACF428676908121B1F3252133A5F98E188ED1E9C6C ] pcouffin        C:\Windows\system32\Drivers\pcouffin.sys
01:02:35.0175 0x1d4c  pcouffin - ok
01:02:35.0185 0x1d4c  [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw             C:\Windows\system32\drivers\pcw.sys
01:02:35.0195 0x1d4c  pcw - ok
01:02:35.0275 0x1d4c  [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH          C:\Windows\system32\drivers\peauth.sys
01:02:35.0305 0x1d4c  PEAUTH - ok
01:02:35.0325 0x1d4c  [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost        C:\Windows\SysWow64\perfhost.exe
01:02:35.0335 0x1d4c  PerfHost - ok
01:02:35.0465 0x1d4c  [ AE0B94363DA0F60D42B9D05B352F61ED, 284EA0123798BDBBAA93F912AD45B3D3F1F662FDDA5C73C0AC0D76AC2F9033C0 ] PID_PEPI        C:\Windows\system32\DRIVERS\LV302V64.SYS
01:02:35.0555 0x1d4c  PID_PEPI - ok
01:02:35.0625 0x1d4c  [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla             C:\Windows\system32\pla.dll
01:02:35.0675 0x1d4c  pla - ok
01:02:35.0725 0x1d4c  [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay        C:\Windows\system32\umpnpmgr.dll
01:02:35.0745 0x1d4c  PlugPlay - ok
01:02:35.0765 0x1d4c  [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg     C:\Windows\system32\pnrpauto.dll
01:02:35.0765 0x1d4c  PNRPAutoReg - ok
01:02:35.0785 0x1d4c  [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc         C:\Windows\system32\pnrpsvc.dll
01:02:35.0805 0x1d4c  PNRPsvc - ok
01:02:35.0835 0x1d4c  [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent     C:\Windows\System32\ipsecsvc.dll
01:02:35.0855 0x1d4c  PolicyAgent - ok
01:02:35.0955 0x1d4c  [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power           C:\Windows\system32\umpo.dll
01:02:35.0975 0x1d4c  Power - ok
01:02:36.0005 0x1d4c  [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport    C:\Windows\system32\DRIVERS\raspptp.sys
01:02:36.0005 0x1d4c  PptpMiniport - ok
01:02:36.0035 0x1d4c  [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor       C:\Windows\system32\DRIVERS\processr.sys
01:02:36.0045 0x1d4c  Processor - ok
01:02:36.0075 0x1d4c  [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc         C:\Windows\system32\profsvc.dll
01:02:36.0095 0x1d4c  ProfSvc - ok
01:02:36.0115 0x1d4c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] ProtectedStorage C:\Windows\system32\lsass.exe
01:02:36.0115 0x1d4c  ProtectedStorage - ok
01:02:36.0155 0x1d4c  [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched          C:\Windows\system32\DRIVERS\pacer.sys
01:02:36.0155 0x1d4c  Psched - ok
01:02:36.0175 0x1d4c  [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI             C:\Windows\system32\DRIVERS\psi_mf_amd64.sys
01:02:36.0175 0x1d4c  PSI - ok
01:02:36.0235 0x1d4c  [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300          C:\Windows\system32\DRIVERS\ql2300.sys
01:02:36.0285 0x1d4c  ql2300 - ok
01:02:36.0305 0x1d4c  [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx          C:\Windows\system32\DRIVERS\ql40xx.sys
01:02:36.0305 0x1d4c  ql40xx - ok
01:02:36.0365 0x1d4c  [ DE55B01FC317FB5EE2B6734C692C5A95, 9371C7D087AA8419D4772D95C2868EB09F136A0734C31471034DD54383F7B12B ] QPCopyEngine    C:\Program Files\Iomega\QuikProtect\QpMonitor.exe
01:02:36.0375 0x1d4c  QPCopyEngine - ok
01:02:36.0415 0x1d4c  [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE           C:\Windows\system32\qwave.dll
01:02:36.0425 0x1d4c  QWAVE - ok
01:02:36.0435 0x1d4c  [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv        C:\Windows\system32\drivers\qwavedrv.sys
01:02:36.0435 0x1d4c  QWAVEdrv - ok
01:02:36.0455 0x1d4c  [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd          C:\Windows\system32\DRIVERS\rasacd.sys
01:02:36.0455 0x1d4c  RasAcd - ok
01:02:36.0485 0x1d4c  [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn     C:\Windows\system32\DRIVERS\AgileVpn.sys
01:02:36.0495 0x1d4c  RasAgileVpn - ok
01:02:36.0505 0x1d4c  [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto         C:\Windows\System32\rasauto.dll
01:02:36.0515 0x1d4c  RasAuto - ok
01:02:36.0545 0x1d4c  [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp         C:\Windows\system32\DRIVERS\rasl2tp.sys
01:02:36.0555 0x1d4c  Rasl2tp - ok
01:02:36.0585 0x1d4c  [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan          C:\Windows\System32\rasmans.dll
01:02:36.0605 0x1d4c  RasMan - ok
01:02:36.0615 0x1d4c  [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe        C:\Windows\system32\DRIVERS\raspppoe.sys
01:02:36.0625 0x1d4c  RasPppoe - ok
01:02:36.0635 0x1d4c  [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp         C:\Windows\system32\DRIVERS\rassstp.sys
01:02:36.0645 0x1d4c  RasSstp - ok
01:02:36.0665 0x1d4c  [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss           C:\Windows\system32\DRIVERS\rdbss.sys
01:02:36.0675 0x1d4c  rdbss - ok
01:02:36.0685 0x1d4c  [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus          C:\Windows\system32\DRIVERS\rdpbus.sys
01:02:36.0685 0x1d4c  rdpbus - ok
01:02:36.0705 0x1d4c  [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD          C:\Windows\system32\DRIVERS\RDPCDD.sys
01:02:36.0705 0x1d4c  RDPCDD - ok
01:02:36.0725 0x1d4c  [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD        C:\Windows\system32\drivers\rdpencdd.sys
01:02:36.0725 0x1d4c  RDPENCDD - ok
01:02:36.0745 0x1d4c  [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP        C:\Windows\system32\drivers\rdprefmp.sys
01:02:36.0745 0x1d4c  RDPREFMP - ok
01:02:36.0795 0x1d4c  [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
01:02:36.0815 0x1d4c  RdpVideoMiniport - ok
01:02:36.0865 0x1d4c  [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD           C:\Windows\system32\drivers\RDPWD.sys
01:02:36.0885 0x1d4c  RDPWD - ok
01:02:36.0925 0x1d4c  [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost        C:\Windows\system32\drivers\rdyboost.sys
01:02:36.0945 0x1d4c  rdyboost - ok
01:02:37.0035 0x1d4c  [ 2528D733DA7F5AC8D3D32C74EE4CFF16, 0C021B5DBF6D0094A2DBE69B3E56F4EF910D27B76C83B8C15A98198C4FA3C32D ] RegSrvc         C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
01:02:37.0075 0x1d4c  RegSrvc - ok
01:02:37.0115 0x1d4c  [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess    C:\Windows\System32\mprdim.dll
01:02:37.0115 0x1d4c  RemoteAccess - ok
01:02:37.0155 0x1d4c  [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry  C:\Windows\system32\regsvc.dll
01:02:37.0165 0x1d4c  RemoteRegistry - ok
01:02:37.0185 0x1d4c  [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM          C:\Windows\system32\DRIVERS\rfcomm.sys
01:02:37.0185 0x1d4c  RFCOMM - ok
01:02:37.0205 0x1d4c  [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper    C:\Windows\System32\RpcEpMap.dll
01:02:37.0205 0x1d4c  RpcEptMapper - ok
01:02:37.0235 0x1d4c  [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator      C:\Windows\system32\locator.exe
01:02:37.0235 0x1d4c  RpcLocator - ok
01:02:37.0275 0x1d4c  [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs           C:\Windows\system32\rpcss.dll
01:02:37.0345 0x1d4c  RpcSs - ok
01:02:37.0395 0x1d4c  [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr          C:\Windows\system32\DRIVERS\rspndr.sys
01:02:37.0395 0x1d4c  rspndr - ok
01:02:37.0445 0x1d4c  [ 6DF02B4EEF2869B77637EB65DDCED864, 74C2EFCCC7CA09B729BB99EE7F6D4F2A82B1E1923D7FE5D5A6C7DD1334D09E4D ] RtkBtFilter     C:\Windows\system32\DRIVERS\RtkBtfilter.sys
01:02:37.0475 0x1d4c  RtkBtFilter - ok
01:02:37.0505 0x1d4c  [ AFC12DFA4C7B089673AD67402CA19EDB, 9CA430E8DFAE9B7A245FCD766CB60245418C80CEBCD2E9FACA9DE62E3E60ADDF ] RTL8167         C:\Windows\system32\DRIVERS\Rt64win7.sys
01:02:37.0525 0x1d4c  RTL8167 - ok
01:02:37.0545 0x1d4c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] SamSs           C:\Windows\system32\lsass.exe
01:02:37.0545 0x1d4c  SamSs - ok
01:02:37.0565 0x1d4c  [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port        C:\Windows\system32\drivers\sbp2port.sys
01:02:37.0575 0x1d4c  sbp2port - ok
01:02:37.0595 0x1d4c  [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr        C:\Windows\System32\SCardSvr.dll
01:02:37.0605 0x1d4c  SCardSvr - ok
01:02:37.0625 0x1d4c  [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter        C:\Windows\system32\DRIVERS\scfilter.sys
01:02:37.0635 0x1d4c  scfilter - ok
01:02:37.0695 0x1d4c  [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule        C:\Windows\system32\schedsvc.dll
01:02:37.0736 0x1d4c  Schedule - ok
01:02:37.0766 0x1d4c  [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc     C:\Windows\System32\certprop.dll
01:02:37.0766 0x1d4c  SCPolicySvc - ok
01:02:37.0856 0x1d4c  [ B60E9769655DDEE8368E3ABB6668E076, EECA05B36C6F837FA6DB2EDD78E17E9EA5F0D793B869CB99A08C61AB485A1E67 ] ScrybeUpdater   C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe
01:02:37.0896 0x1d4c  ScrybeUpdater - ok
01:02:37.0926 0x1d4c  [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus           C:\Windows\system32\drivers\sdbus.sys
01:02:37.0926 0x1d4c  sdbus - ok
01:02:37.0956 0x1d4c  [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC          C:\Windows\System32\SDRSVC.dll
01:02:37.0966 0x1d4c  SDRSVC - ok
01:02:37.0986 0x1d4c  [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv          C:\Windows\system32\drivers\secdrv.sys
01:02:37.0986 0x1d4c  secdrv - ok
01:02:38.0016 0x1d4c  [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon        C:\Windows\system32\seclogon.dll
01:02:38.0016 0x1d4c  seclogon - ok
01:02:38.0086 0x1d4c  [ 398A81D590424441B2F5C5C08073CADB, 1E064DFCC49EB0D8A4150276BF796B9DFA030C451570A170EC940F8CBAAD80F3 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe
01:02:38.0136 0x1d4c  Secunia PSI Agent - ok
01:02:38.0166 0x1d4c  [ 8C2D3A80FC90A860F0F24DEB67471481, CE4D17B63149C44B4CD5CB7776FD4705DC675F6D2D077D53BE15578294EBC9D4 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe
01:02:38.0196 0x1d4c  Secunia Update Agent - ok
01:02:38.0226 0x1d4c  [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS            C:\Windows\System32\sens.dll
01:02:38.0226 0x1d4c  SENS - ok
01:02:38.0236 0x1d4c  [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc        C:\Windows\system32\sensrsvc.dll
01:02:38.0246 0x1d4c  SensrSvc - ok
01:02:38.0266 0x1d4c  [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum         C:\Windows\system32\DRIVERS\serenum.sys
01:02:38.0266 0x1d4c  Serenum - ok
01:02:38.0286 0x1d4c  [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial          C:\Windows\system32\DRIVERS\serial.sys
01:02:38.0286 0x1d4c  Serial - ok
01:02:38.0316 0x1d4c  [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse        C:\Windows\system32\DRIVERS\sermouse.sys
01:02:38.0316 0x1d4c  sermouse - ok
01:02:38.0376 0x1d4c  [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv      C:\Windows\system32\sessenv.dll
01:02:38.0376 0x1d4c  SessionEnv - ok
01:02:38.0406 0x1d4c  [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk         C:\Windows\system32\drivers\sffdisk.sys
01:02:38.0416 0x1d4c  sffdisk - ok
01:02:38.0436 0x1d4c  [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc        C:\Windows\system32\drivers\sffp_mmc.sys
01:02:38.0436 0x1d4c  sffp_mmc - ok
01:02:38.0446 0x1d4c  [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd         C:\Windows\system32\drivers\sffp_sd.sys
01:02:38.0446 0x1d4c  sffp_sd - ok
01:02:38.0466 0x1d4c  [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy         C:\Windows\system32\DRIVERS\sfloppy.sys
01:02:38.0466 0x1d4c  sfloppy - ok
01:02:38.0536 0x1d4c  [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess    C:\Windows\System32\ipnathlp.dll
01:02:38.0566 0x1d4c  SharedAccess - ok
01:02:38.0606 0x1d4c  [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
01:02:38.0626 0x1d4c  ShellHWDetection - ok
01:02:38.0646 0x1d4c  [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2        C:\Windows\system32\DRIVERS\SiSRaid2.sys
01:02:38.0646 0x1d4c  SiSRaid2 - ok
01:02:38.0656 0x1d4c  [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4        C:\Windows\system32\DRIVERS\sisraid4.sys
01:02:38.0666 0x1d4c  SiSRaid4 - ok
01:02:38.0706 0x1d4c  [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate     C:\Program Files (x86)\Skype\Updater\Updater.exe
01:02:38.0726 0x1d4c  SkypeUpdate - ok
01:02:38.0756 0x1d4c  [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb             C:\Windows\system32\DRIVERS\smb.sys
01:02:38.0756 0x1d4c  Smb - ok
01:02:38.0796 0x1d4c  [ FBE0201AB61E18934C812C34D31A4403, 549E51FC11CCA30B21970C90F4799D6CB94481CDC623B8C319F16DAEFC8A190B ] snapman         C:\Windows\system32\DRIVERS\snapman.sys
01:02:38.0806 0x1d4c  snapman - ok
01:02:38.0836 0x1d4c  [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP        C:\Windows\System32\snmptrap.exe
01:02:38.0836 0x1d4c  SNMPTRAP - ok
01:02:38.0876 0x1d4c  [ F9369327409492097B0BB7CE86BD29DE, 7E9B7A9659A6971029E491C702C306E2078B8F5547FCF874FDA8BAD5898D5E25 ] Soluto          C:\Windows\system32\DRIVERS\Soluto.sys
01:02:38.0876 0x1d4c  Soluto - ok
01:02:38.0976 0x1d4c  [ D56C85099CA6D7A5CED861FE920D2DB6, D6D003B660E5F9B2AA5546C96283D76833A6CDD16DEFC46D7225348192F47655 ] SolutoLauncherService C:\Program Files\Soluto\SolutoLauncherService.exe
01:02:39.0017 0x1d4c  SolutoLauncherService - ok
01:02:39.0119 0x1d4c  [ 92875E1EE2915A165C5E86089197E94B, 65BCE5670A9A7A98A59F48043AD61475FB85AC7A5DCC72C6DFC12305FC308A53 ] SolutoRemoteService C:\Program Files\Soluto\SolutoRemoteService.exe
01:02:39.0189 0x1d4c  SolutoRemoteService - ok
01:02:39.0279 0x1d4c  [ 7B35E1FFBF3B3A8763122BC34FEAEA3C, 8E3DCA135759FFD7ED1032CCCE5D562D60E4BDFE6C4C3AEC50F893C2657CC810 ] SolutoService   C:\Program Files\Soluto\SolutoService.exe
01:02:39.0309 0x1d4c  SolutoService - ok
01:02:39.0389 0x1d4c  [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr           C:\Windows\system32\drivers\spldr.sys
01:02:39.0389 0x1d4c  spldr - ok
01:02:39.0499 0x1d4c  [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler         C:\Windows\System32\spoolsv.exe
01:02:39.0529 0x1d4c  Spooler - ok
01:02:39.0689 0x1d4c  [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc          C:\Windows\system32\sppsvc.exe
01:02:39.0821 0x1d4c  sppsvc - ok
01:02:39.0856 0x1d4c  [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify     C:\Windows\system32\sppuinotify.dll
01:02:39.0861 0x1d4c  sppuinotify - ok
01:02:39.0901 0x1d4c  [ D6AB7C13FCDD2E4CAC35244D2C172D9A, 64A66368F5336B7A5879D083C2FE57DFD384410ADCC18004F327A4004A4F4300 ] sptd            C:\Windows\System32\Drivers\sptd.sys
01:02:39.0931 0x1d4c  sptd - ok
01:02:39.0951 0x1d4c  [ A340ABC480C43C30CABC943E78AC631E, 6D7A157B96F6AB1D853E1EDB74359F9EC9E046D29E9C3D2B77BE456BF46BBE88 ] sp_rsdrv2       C:\Windows\system32\DRIVERS\stflt.sys
01:02:39.0961 0x1d4c  sp_rsdrv2 - ok
01:02:40.0029 0x1d4c  [ 7DDBDA0DDA8BD831EE8839ADD067FA7E, 5499CF53EC7E4EAFD455B6DB959AD3FFE2F16C9B18CA89DD2413091E1043ABD8 ] sp_rssrv        C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe
01:02:40.0089 0x1d4c  sp_rssrv - ok
01:02:40.0129 0x1d4c  [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv             C:\Windows\system32\DRIVERS\srv.sys
01:02:40.0149 0x1d4c  srv - ok
01:02:40.0179 0x1d4c  [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2            C:\Windows\system32\DRIVERS\srv2.sys
01:02:40.0189 0x1d4c  srv2 - ok
01:02:40.0239 0x1d4c  [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA       C:\Windows\system32\DRIVERS\VSTAZL6.SYS
01:02:40.0239 0x1d4c  SrvHsfHDA - ok
01:02:40.0329 0x1d4c  [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92       C:\Windows\system32\DRIVERS\VSTDPV6.SYS
01:02:40.0369 0x1d4c  SrvHsfV92 - ok
01:02:40.0429 0x1d4c  [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac     C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
01:02:40.0459 0x1d4c  SrvHsfWinac - ok
01:02:40.0489 0x1d4c  [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet          C:\Windows\system32\DRIVERS\srvnet.sys
01:02:40.0489 0x1d4c  srvnet - ok
01:02:40.0509 0x1d4c  [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV         C:\Windows\System32\ssdpsrv.dll
01:02:40.0509 0x1d4c  SSDPSRV - ok
01:02:40.0539 0x1d4c  [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc         C:\Windows\system32\sstpsvc.dll
01:02:40.0539 0x1d4c  SstpSvc - ok
01:02:40.0639 0x1d4c  [ 1ED49590CC2276FDC50B4D05AA47303A, 4659E017FC285561BC910CDAB4BCB3978E3E558C34F61968C423D48FFAEA45C7 ] STacSV          C:\Program Files\IDT\WDM\STacSV64.exe
01:02:40.0649 0x1d4c  STacSV - ok
01:02:40.0669 0x1d4c  [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor        C:\Windows\system32\DRIVERS\stexstor.sys
01:02:40.0679 0x1d4c  stexstor - ok
01:02:40.0709 0x1d4c  [ 6374AB1C9E23F2BA68A25F1619A79E03, B931489B79AAA1964227B35F0B525D44106B3B17217EEE578117F916485A058C ] STHDA           C:\Windows\system32\DRIVERS\stwrt64.sys
01:02:40.0739 0x1d4c  STHDA - ok
01:02:40.0789 0x1d4c  [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc          C:\Windows\System32\wiaservc.dll
01:02:40.0819 0x1d4c  stisvc - ok
01:02:40.0849 0x1d4c  [ 4C2D24EB13F611AC742809A2AAA25BE1, B0746D93A46812608FAF84167A178C118FA6318996E15C17DF170E7B6B2D69F5 ] SWDUMon         C:\Windows\system32\DRIVERS\SWDUMon.sys
01:02:40.0849 0x1d4c  SWDUMon - ok
01:02:40.0879 0x1d4c  [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum          C:\Windows\system32\drivers\swenum.sys
01:02:40.0879 0x1d4c  swenum - ok
01:02:40.0899 0x1d4c  [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv           C:\Windows\System32\swprv.dll
01:02:40.0929 0x1d4c  swprv - ok
01:02:41.0309 0x1d4c  [ 0FE29D81F372CA2DCE9E49736A3BD3E6, 10ED93BEE7ECBD2AF5E7AB0197CC82A5424FD63A2ED90F0417B266AD06E5F32C ] syncagentsrv    C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
01:02:41.0599 0x1d4c  syncagentsrv - ok
01:02:41.0649 0x1d4c  [ AC3CC98B1BDB6540021D3FFB105AC2B9, 671146CC16139AECE0BCCC44983807E045A930E262F64461D0D882A0A0B77E4F ] SynTP           C:\Windows\system32\DRIVERS\SynTP.sys
01:02:41.0659 0x1d4c  SynTP - ok
01:02:41.0739 0x1d4c  [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain         C:\Windows\system32\sysmain.dll
01:02:41.0799 0x1d4c  SysMain - ok
01:02:41.0829 0x1d4c  [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll
01:02:41.0839 0x1d4c  TabletInputService - ok
01:02:41.0859 0x1d4c  [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv         C:\Windows\System32\tapisrv.dll
01:02:41.0869 0x1d4c  TapiSrv - ok
01:02:41.0899 0x1d4c  [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS             C:\Windows\System32\tbssvc.dll
01:02:41.0909 0x1d4c  TBS - ok
01:02:42.0019 0x1d4c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip           C:\Windows\system32\drivers\tcpip.sys
01:02:42.0069 0x1d4c  Tcpip - ok
01:02:42.0139 0x1d4c  [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6          C:\Windows\system32\DRIVERS\tcpip.sys
01:02:42.0179 0x1d4c  TCPIP6 - ok
01:02:42.0239 0x1d4c  [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg        C:\Windows\system32\drivers\tcpipreg.sys
01:02:42.0239 0x1d4c  tcpipreg - ok
01:02:42.0269 0x1d4c  [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE          C:\Windows\system32\drivers\tdpipe.sys
01:02:42.0269 0x1d4c  TDPIPE - ok
01:02:42.0369 0x1d4c  [ 07330E30921C70E9D9B416EE43A06349, 398500C12E685BCF732C7F80A2C0E95181E5377A0E6C14CF9A3EE8580083A556 ] tdrpman         C:\Windows\system32\DRIVERS\tdrpman.sys
01:02:42.0419 0x1d4c  tdrpman - ok
01:02:42.0449 0x1d4c  [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP           C:\Windows\system32\drivers\tdtcp.sys
01:02:42.0449 0x1d4c  TDTCP - ok
01:02:42.0479 0x1d4c  [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx             C:\Windows\system32\DRIVERS\tdx.sys
01:02:42.0489 0x1d4c  tdx - ok
01:02:42.0899 0x1d4c  [ E72B44F86082DFE649CD991E3CD2F8B6, C5A1E53E41E48D3465A7D96886A1E5D1C3145C7E1A40FB74E3A05EDC2DA04F84 ] TeamViewer      C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
01:02:43.0151 0x1d4c  TeamViewer - ok
01:02:43.0191 0x1d4c  [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD          C:\Windows\system32\drivers\termdd.sys
01:02:43.0191 0x1d4c  TermDD - ok
01:02:43.0261 0x1d4c  [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService     C:\Windows\System32\termsrv.dll
01:02:43.0291 0x1d4c  TermService - ok
01:02:43.0331 0x1d4c  [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes          C:\Windows\system32\themeservice.dll
01:02:43.0331 0x1d4c  Themes - ok
01:02:43.0371 0x1d4c  [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER     C:\Windows\system32\mmcss.dll
01:02:43.0381 0x1d4c  THREADORDER - ok
01:02:43.0471 0x1d4c  [ DE604462206F7D8C203F767F425FCA8D, 149FBF6367C45415B939A9B1A7A10DA7A5E19F28CE533BCBE2B20DA4B78F8645 ] tib             C:\Windows\system32\DRIVERS\tib.sys
01:02:43.0511 0x1d4c  tib - ok
01:02:43.0541 0x1d4c  [ 3C29FB9FC9B4C511AD69DC50257FEC75, 4906DADE076FD363C53044C805602EEA4D0EF6E92041C693E1BED2286614B36E ] tib_mounter     C:\Windows\system32\DRIVERS\tib_mounter.sys
01:02:43.0551 0x1d4c  tib_mounter - ok
01:02:43.0581 0x1d4c  [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks          C:\Windows\System32\trkwks.dll
01:02:43.0581 0x1d4c  TrkWks - ok
01:02:43.0641 0x1d4c  [ 3E75A47D2DEFD2683DCA409572FBE8B2, 33964B1A05E045D3B878CDFD9F52A9086B4FA54D6D4D1DC38062D2874CACD4A0 ] trufos          C:\Windows\system32\DRIVERS\trufos.sys
01:02:43.0661 0x1d4c  trufos - ok
01:02:43.0731 0x1d4c  [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
01:02:43.0751 0x1d4c  TrustedInstaller - ok
01:02:43.0801 0x1d4c  [ 19BEDA57F3E0A06B8D5EB6D619BD5624, 952D5FAFD662C93628C12A6F7EB8E240A44216C0A15CBD2F5016BC357CBFE821 ] tssecsrv        C:\Windows\system32\DRIVERS\tssecsrv.sys
01:02:43.0804 0x1d4c  tssecsrv - ok
01:02:43.0843 0x1d4c  [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt        C:\Windows\system32\drivers\tsusbflt.sys
01:02:43.0843 0x1d4c  TsUsbFlt - ok
01:02:44.0013 0x1d4c  [ 4645910BE6CB805DB15CC49D8B6BAA39, A773290E200E8E7BCD52A88EA2464D93D2BFF47434592DF46B626F9C86BC9ED1 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
01:02:44.0113 0x1d4c  TuneUp.UtilitiesSvc - ok
01:02:44.0153 0x1d4c  [ DB3C912A851FCA6358FED4D53DAA7E91, B35375EC9AF61D829489D9B278605E2098D6402419E79EB24C65D3B65816AEBC ] TuneUpUtilitiesDrv C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys
01:02:44.0153 0x1d4c  TuneUpUtilitiesDrv - ok
01:02:44.0183 0x1d4c  [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel          C:\Windows\system32\DRIVERS\tunnel.sys
01:02:44.0193 0x1d4c  tunnel - ok
01:02:44.0213 0x1d4c  [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35          C:\Windows\system32\DRIVERS\uagp35.sys
01:02:44.0223 0x1d4c  uagp35 - ok
01:02:44.0243 0x1d4c  [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs            C:\Windows\system32\DRIVERS\udfs.sys
01:02:44.0263 0x1d4c  udfs - ok
01:02:44.0293 0x1d4c  [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect       C:\Windows\system32\UI0Detect.exe
01:02:44.0293 0x1d4c  UI0Detect - ok
01:02:44.0323 0x1d4c  [ BA1B69C9B7F8C952201B30D26A4BC0B2, EED9C21931922B680AEA4E2490F7D832494EA171354C467ADD2C71C5625CADB3 ] UimBus          C:\Windows\system32\DRIVERS\uimx64.sys
01:02:44.0323 0x1d4c  UimBus - ok
01:02:44.0353 0x1d4c  [ 56060B99D10F381CAA70D2684E6512D3, 2EFEA60201519FA478D512A3CE54A2F1E0537BB15B5D0EE01A0730D847873EC9 ] Uim_IM          C:\Windows\system32\Drivers\Uim_IMx64.sys
01:02:44.0383 0x1d4c  Uim_IM - ok
01:02:44.0403 0x1d4c  [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx        C:\Windows\system32\drivers\uliagpkx.sys
01:02:44.0403 0x1d4c  uliagpkx - ok
01:02:44.0433 0x1d4c  [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus           C:\Windows\system32\DRIVERS\umbus.sys
01:02:44.0433 0x1d4c  umbus - ok
01:02:44.0463 0x1d4c  [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass          C:\Windows\system32\DRIVERS\umpass.sys
01:02:44.0463 0x1d4c  UmPass - ok
01:02:44.0533 0x1d4c  [ B239FDC885A77E4D5FB93AD1BA2A80EC, EA4D6DF359FD9BD6465C44D718638ECF2F68F163F44F72B1897065012FBF7426 ] UPDATESRV       C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
01:02:44.0543 0x1d4c  UPDATESRV - ok
01:02:44.0576 0x1d4c  [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost        C:\Windows\System32\upnphost.dll
01:02:44.0585 0x1d4c  upnphost - ok
01:02:44.0645 0x1d4c  [ C669DE449D5D399037EF9FF77C03C23C, 1B6B4582ABD65A384BCBAE684B56C3F2C96F85FDDEA4F7763057C7260D476F05 ] USB28xxBGA      C:\Windows\system32\DRIVERS\emBDA64.sys
01:02:44.0675 0x1d4c  USB28xxBGA - ok
01:02:44.0724 0x1d4c  [ 46C0FB27F28531D9D19573FD97EBCF90, DA8C7B3FF1ECFF445B962F5673CDFF8C9203C2BE485A74BA9C35E6807683347B ] USB28xxOEM      C:\Windows\system32\DRIVERS\emOEM64.sys
01:02:44.0747 0x1d4c  USB28xxOEM - ok
01:02:44.0787 0x1d4c  [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio        C:\Windows\system32\drivers\usbaudio.sys
01:02:44.0787 0x1d4c  usbaudio - ok
01:02:44.0827 0x1d4c  [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp         C:\Windows\system32\DRIVERS\usbccgp.sys
01:02:44.0827 0x1d4c  usbccgp - ok
01:02:44.0867 0x1d4c  [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir          C:\Windows\system32\drivers\usbcir.sys
01:02:44.0867 0x1d4c  usbcir - ok
01:02:44.0897 0x1d4c  [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci         C:\Windows\system32\DRIVERS\usbehci.sys
01:02:44.0907 0x1d4c  usbehci - ok
01:02:44.0937 0x1d4c  [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub          C:\Windows\system32\DRIVERS\usbhub.sys
01:02:44.0957 0x1d4c  usbhub - ok
01:02:44.0977 0x1d4c  [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci         C:\Windows\system32\drivers\usbohci.sys
01:02:44.0977 0x1d4c  usbohci - ok
01:02:45.0007 0x1d4c  [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint        C:\Windows\system32\DRIVERS\usbprint.sys
01:02:45.0007 0x1d4c  usbprint - ok
01:02:45.0047 0x1d4c  [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan         C:\Windows\system32\drivers\usbscan.sys
01:02:45.0047 0x1d4c  usbscan - ok
01:02:45.0087 0x1d4c  [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR         C:\Windows\system32\DRIVERS\USBSTOR.SYS
01:02:45.0087 0x1d4c  USBSTOR - ok
01:02:45.0107 0x1d4c  [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci         C:\Windows\system32\DRIVERS\usbuhci.sys
01:02:45.0107 0x1d4c  usbuhci - ok
01:02:45.0157 0x1d4c  [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo        C:\Windows\System32\Drivers\usbvideo.sys
01:02:45.0177 0x1d4c  usbvideo - ok
01:02:45.0207 0x1d4c  [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms           C:\Windows\System32\uxsms.dll
01:02:45.0207 0x1d4c  UxSms - ok
01:02:45.0257 0x1d4c  [ E646F34228D63EF5BA94A8E209430D2B, 082DB7A2C377AFF085D777DC1F070965C33E8C4F78F72E0B478551A218F039A8 ] UxTuneUp        C:\Windows\System32\uxtuneup.dll
01:02:45.0267 0x1d4c  UxTuneUp - ok
01:02:45.0307 0x1d4c  [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] VaultSvc        C:\Windows\system32\lsass.exe
01:02:45.0307 0x1d4c  VaultSvc - ok
01:02:45.0327 0x1d4c  [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot        C:\Windows\system32\drivers\vdrvroot.sys
01:02:45.0327 0x1d4c  vdrvroot - ok
01:02:45.0377 0x1d4c  [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds             C:\Windows\System32\vds.exe
01:02:45.0397 0x1d4c  vds - ok
01:02:45.0417 0x1d4c  [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga             C:\Windows\system32\DRIVERS\vgapnp.sys
01:02:45.0417 0x1d4c  vga - ok
01:02:45.0437 0x1d4c  [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave         C:\Windows\System32\drivers\vga.sys
01:02:45.0437 0x1d4c  VgaSave - ok
01:02:45.0477 0x1d4c  [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp           C:\Windows\system32\drivers\vhdmp.sys
01:02:45.0477 0x1d4c  vhdmp - ok
01:02:45.0517 0x1d4c  [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide          C:\Windows\system32\drivers\viaide.sys
01:02:45.0517 0x1d4c  viaide - ok
01:02:45.0547 0x1d4c  [ 35E8A18D1C558D5C2FF2FFED2FD396F6, 5516AC03964DD33CF239AB3FB1D41BAB7454DB35FB38C45907614C3DB8F23391 ] vididr          C:\Windows\system32\DRIVERS\vididr.sys
01:02:45.0557 0x1d4c  vididr - ok
01:02:45.0587 0x1d4c  [ 0DCD5C8F2E0B3650C4A29F6569C074FD, 8FB24D79ADE1541C5DD6241A3395EF2E6575A8376111294CD5C87ECA798EDCFD ] vidsflt         C:\Windows\system32\DRIVERS\vidsflt.sys
01:02:45.0587 0x1d4c  vidsflt - ok
01:02:45.0627 0x1d4c  [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr          C:\Windows\system32\drivers\volmgr.sys
01:02:45.0627 0x1d4c  volmgr - ok
01:02:45.0657 0x1d4c  [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx         C:\Windows\system32\drivers\volmgrx.sys
01:02:45.0667 0x1d4c  volmgrx - ok
01:02:45.0687 0x1d4c  [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap         C:\Windows\system32\drivers\volsnap.sys
01:02:45.0697 0x1d4c  volsnap - ok
01:02:45.0707 0x1d4c  [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid         C:\Windows\system32\DRIVERS\vsmraid.sys
01:02:45.0717 0x1d4c  vsmraid - ok
01:02:45.0797 0x1d4c  [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS             C:\Windows\system32\vssvc.exe
01:02:45.0847 0x1d4c  VSS - ok
01:02:45.0967 0x1d4c  [ ACEC3397D7FE8DF37DAD3B175CA2E148, EC917AC9274784E22A7D25B14B0294A7804FD098D8BD6295CFF4F17A2507694C ] vsserv          C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
01:02:46.0027 0x1d4c  vsserv - ok
01:02:46.0057 0x1d4c  [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus        C:\Windows\system32\DRIVERS\vwifibus.sys
01:02:46.0057 0x1d4c  vwifibus - ok
01:02:46.0107 0x1d4c  [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt        C:\Windows\system32\DRIVERS\vwififlt.sys
01:02:46.0117 0x1d4c  vwififlt - ok
01:02:46.0147 0x1d4c  [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp         C:\Windows\system32\DRIVERS\vwifimp.sys
01:02:46.0147 0x1d4c  vwifimp - ok
01:02:46.0197 0x1d4c  [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time         C:\Windows\system32\w32time.dll
01:02:46.0207 0x1d4c  W32Time - ok
01:02:46.0237 0x1d4c  [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen        C:\Windows\system32\DRIVERS\wacompen.sys
01:02:46.0247 0x1d4c  WacomPen - ok
01:02:46.0267 0x1d4c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP          C:\Windows\system32\DRIVERS\wanarp.sys
01:02:46.0277 0x1d4c  WANARP - ok
01:02:46.0287 0x1d4c  [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6        C:\Windows\system32\DRIVERS\wanarp.sys
01:02:46.0287 0x1d4c  Wanarpv6 - ok
01:02:46.0357 0x1d4c  [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine        C:\Windows\system32\wbengine.exe
01:02:46.0417 0x1d4c  wbengine - ok
01:02:46.0457 0x1d4c  [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc        C:\Windows\System32\wbiosrvc.dll
01:02:46.0487 0x1d4c  WbioSrvc - ok
01:02:46.0537 0x1d4c  [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc         C:\Windows\System32\wcncsvc.dll
01:02:46.0587 0x1d4c  wcncsvc - ok
01:02:46.0607 0x1d4c  [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
01:02:46.0607 0x1d4c  WcsPlugInService - ok
01:02:46.0617 0x1d4c  [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd              C:\Windows\system32\DRIVERS\wd.sys
01:02:46.0617 0x1d4c  Wd - ok
01:02:46.0717 0x1d4c  [ 3A164E4C3F453230B6F6C3BD319D83C1, 11A5A5646A113F2BA2A9E355E579F3E516A5860E2E0AC479491663FCEF226CFF ] WDBackup        C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
01:02:46.0757 0x1d4c  WDBackup - ok
01:02:46.0789 0x1d4c  [ D0335A55E5C3F812548E18300C2ACB62, 7EF7C3A21E97197E1A6D2956D0F5A7C23F2D590C9709708394426031634990A5 ] WDC_SAM         C:\Windows\system32\DRIVERS\wdcsam64.sys
01:02:46.0791 0x1d4c  WDC_SAM - ok
01:02:46.0819 0x1d4c  [ AFA293DAE84019BB65E17F926E9F5185, EE056291483376D7944CD2AB4EDE34B1031915EAB1C168B9777A4C8E840033AD ] WDDriveService  C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
01:02:46.0819 0x1d4c  WDDriveService - ok
01:02:46.0869 0x1d4c  [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000        C:\Windows\system32\drivers\Wdf01000.sys
01:02:46.0899 0x1d4c  Wdf01000 - ok
01:02:46.0929 0x1d4c  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost  C:\Windows\system32\wdi.dll
01:02:46.0939 0x1d4c  WdiServiceHost - ok
01:02:46.0949 0x1d4c  [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost   C:\Windows\system32\wdi.dll
01:02:46.0949 0x1d4c  WdiSystemHost - ok
01:02:46.0989 0x1d4c  [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient       C:\Windows\System32\webclnt.dll
01:02:46.0999 0x1d4c  WebClient - ok
01:02:47.0029 0x1d4c  [ D5BA7D43FA2EF656BF7E98A188391E40, 56CF132B7C43A0F9C7C4D070730315FE7AFD2E87E94014DFC3D7107BB52B9C64 ] Wecsvc          C:\Windows\system32\wecsvc.dll
01:02:47.0039 0x1d4c  Wecsvc - ok
01:02:47.0049 0x1d4c  [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport   C:\Windows\System32\wercplsupport.dll
01:02:47.0049 0x1d4c  wercplsupport - ok
01:02:47.0069 0x1d4c  [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc          C:\Windows\System32\WerSvc.dll
01:02:47.0079 0x1d4c  WerSvc - ok
01:02:47.0089 0x1d4c  [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf          C:\Windows\system32\DRIVERS\wfplwf.sys
01:02:47.0089 0x1d4c  WfpLwf - ok
01:02:47.0119 0x1d4c  [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount        C:\Windows\system32\drivers\wimmount.sys
01:02:47.0119 0x1d4c  WIMMount - ok
01:02:47.0139 0x1d4c  WinDefend - ok
01:02:47.0169 0x1d4c  WinHttpAutoProxySvc - ok
01:02:47.0219 0x1d4c  [ 136760C1E9697BAF4ECDEAE5590A0806, 12E80D0923D794F4C520FEA7CB98EF581231B996FB1876EB20995E6E457EFF56 ] Winmgmt         C:\Windows\system32\wbem\WMIsvc.dll
01:02:47.0229 0x1d4c  Winmgmt - ok
01:02:47.0369 0x1d4c  [ 3BB6B401A780BF434C8F58137DE10BF7, 1A377C39B78B92A1A1FED699EE5E5ED0271A6FFAC143F1D29FC1FDF4D726A522 ] WinRM           C:\Windows\system32\WsmSvc.dll
01:02:47.0479 0x1d4c  WinRM - ok
01:02:47.0529 0x1d4c  [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb          C:\Windows\system32\DRIVERS\WinUsb.sys
01:02:47.0529 0x1d4c  WinUsb - ok
01:02:47.0589 0x1d4c  [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc         C:\Windows\System32\wlansvc.dll
01:02:47.0619 0x1d4c  Wlansvc - ok
01:02:47.0649 0x1d4c  [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi         C:\Windows\system32\drivers\wmiacpi.sys
01:02:47.0649 0x1d4c  WmiAcpi - ok
01:02:47.0699 0x1d4c  [ 4DF841632B62A7CF19A79A05046A8AB1, D80F28FD7FEB95DB83976EAFECB2E9AE1423DA4D34EC5D820FC39A33444B82DA ] wmiApSrv        C:\Windows\system32\wbem\WmiApSrv.exe
01:02:47.0699 0x1d4c  wmiApSrv - ok
01:02:47.0709 0x1d4c  WMPNetworkSvc - ok
01:02:47.0729 0x1d4c  [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc          C:\Windows\System32\wpcsvc.dll
01:02:47.0729 0x1d4c  WPCSvc - ok
01:02:47.0759 0x1d4c  [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum      C:\Windows\system32\wpdbusenum.dll

HB-Männchen · 30.12.2015, 01:05

... und Teil 2

Code:

ATTFilter

01:02:47.0759 0x1d4c  WPDBusEnum - ok
01:02:47.0769 0x1d4c  WPRO_40_1340 - ok
01:02:47.0799 0x1d4c  [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl         C:\Windows\system32\drivers\ws2ifsl.sys
01:02:47.0799 0x1d4c  ws2ifsl - ok
01:02:47.0829 0x1d4c  [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc          C:\Windows\System32\wscsvc.dll
01:02:47.0829 0x1d4c  wscsvc - ok
01:02:47.0849 0x1d4c  WSearch - ok
01:02:47.0949 0x1d4c  [ 361845875ED8ED13086E7F37265C45DA, A0931DC1E35712036E93BBC3600530C0DA12E94E0D898787C818C526DFF240C2 ] wuauserv        C:\Windows\system32\wuaueng.dll
01:02:48.0059 0x1d4c  wuauserv - ok
01:02:48.0089 0x1d4c  [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf          C:\Windows\system32\drivers\WudfPf.sys
01:02:48.0089 0x1d4c  WudfPf - ok
01:02:48.0119 0x1d4c  [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd          C:\Windows\system32\DRIVERS\WUDFRd.sys
01:02:48.0119 0x1d4c  WUDFRd - ok
01:02:48.0159 0x1d4c  [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc         C:\Windows\System32\WUDFSvc.dll
01:02:48.0159 0x1d4c  wudfsvc - ok
01:02:48.0199 0x1d4c  [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc         C:\Windows\System32\wwansvc.dll
01:02:48.0209 0x1d4c  WwanSvc - ok
01:02:48.0259 0x1d4c  [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7         C:\Windows\system32\DRIVERS\yk62x64.sys
01:02:48.0269 0x1d4c  yukonw7 - ok
01:02:48.0319 0x1d4c  ================ Scan global ===============================
01:02:48.0359 0x1d4c  [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll
01:02:48.0409 0x1d4c  [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
01:02:48.0429 0x1d4c  [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll
01:02:48.0449 0x1d4c  [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll
01:02:48.0479 0x1d4c  [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe
01:02:48.0499 0x1d4c  [ Global ] - ok
01:02:48.0499 0x1d4c  ================ Scan MBR ==================================
01:02:48.0499 0x1d4c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
01:02:48.0509 0x1d4c  \Device\Harddisk2\DR2 - ok
01:02:48.0529 0x1d4c  [ 66142FDC27A57FAA177560576925A0BF ] \Device\Harddisk0\DR0
01:02:48.0990 0x1d4c  \Device\Harddisk0\DR0 - ok
01:02:48.0990 0x1d4c  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
01:02:49.0000 0x1d4c  \Device\Harddisk1\DR1 - ok
01:02:49.0000 0x1d4c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2
01:02:49.0010 0x1d4c  \Device\Harddisk2\DR2 - ok
01:02:49.0010 0x1d4c  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk3\DR3
01:02:49.0020 0x1d4c  \Device\Harddisk3\DR3 - ok
01:02:49.0020 0x1d4c  [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR4
01:02:49.0030 0x1d4c  \Device\Harddisk4\DR4 - ok
01:02:49.0030 0x1d4c  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk5\DR5
01:02:49.0040 0x1d4c  \Device\Harddisk5\DR5 - ok
01:02:49.0040 0x1d4c  ================ Scan VBR ==================================
01:02:49.0050 0x1d4c  [ 5F47E7C9653287EFF6F2E1661769AFBB ] \Device\Harddisk2\DR2\Partition1
01:02:49.0050 0x1d4c  \Device\Harddisk2\DR2\Partition1 - ok
01:02:49.0050 0x1d4c  [ 1C644B7BB785F243AE79EC9B2D83F5D4 ] \Device\Harddisk0\DR0\Partition1
01:02:49.0050 0x1d4c  \Device\Harddisk0\DR0\Partition1 - ok
01:02:49.0050 0x1d4c  [ 0A787A451001138B0991BB0437556A4B ] \Device\Harddisk0\DR0\Partition2
01:02:49.0060 0x1d4c  \Device\Harddisk0\DR0\Partition2 - ok
01:02:49.0060 0x1d4c  [ 18B59861CD3B0E0AD79B5F7BF0F503B1 ] \Device\Harddisk0\DR0\Partition3
01:02:49.0060 0x1d4c  \Device\Harddisk0\DR0\Partition3 - ok
01:02:49.0080 0x1d4c  [ 1FF60EA2AB54673B21D0E974BB23B0A0 ] \Device\Harddisk0\DR0\Partition4
01:02:49.0080 0x1d4c  \Device\Harddisk0\DR0\Partition4 - ok
01:02:49.0100 0x1d4c  [ 6C68CE463391F7B22928CB66B03756AE ] \Device\Harddisk0\DR0\Partition5
01:02:49.0100 0x1d4c  \Device\Harddisk0\DR0\Partition5 - ok
01:02:49.0110 0x1d4c  [ 951648D4640200A66E9BAB1046360D0C ] \Device\Harddisk0\DR0\Partition6
01:02:49.0110 0x1d4c  \Device\Harddisk0\DR0\Partition6 - ok
01:02:49.0120 0x1d4c  [ 06615A31F60B472827C1F9C6F46204AC ] \Device\Harddisk0\DR0\Partition7
01:02:49.0120 0x1d4c  \Device\Harddisk0\DR0\Partition7 - ok
01:02:49.0120 0x1d4c  [ 5F47E7C9653287EFF6F2E1661769AFBB ] \Device\Harddisk2\DR2\Partition1
01:02:49.0120 0x1d4c  \Device\Harddisk2\DR2\Partition1 - ok
01:02:49.0130 0x1d4c  [ F60067E2D8668D450B6ADF2F47971D09 ] \Device\Harddisk3\DR3\Partition1
01:02:49.0130 0x1d4c  \Device\Harddisk3\DR3\Partition1 - ok
01:02:49.0130 0x1d4c  [ 203B5D5337E6F10D2E5CE8F5BB651B61 ] \Device\Harddisk4\DR4\Partition1
01:02:49.0130 0x1d4c  \Device\Harddisk4\DR4\Partition1 - ok
01:02:49.0140 0x1d4c  [ 5DB2964D79F1D8BF196A1BFF5708EE05 ] \Device\Harddisk5\DR5\Partition1
01:02:49.0530 0x1d4c  \Device\Harddisk5\DR5\Partition1 - ok
01:02:49.0530 0x1d4c  ================ Scan generic autorun ======================
01:02:49.0712 0x1d4c  [ 4076E418CD3EB0E09FFBCD828C35CE26, C39896CC2EF80FE0937A96585AE3A981A93A4139EA21609D2A94076C331ED3DC ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
01:02:49.0832 0x1d4c  SynTPEnh - ok
01:02:49.0862 0x1d4c  [ 6AA5B04FE91031F7D68C2315B123392F, 3424B089D42B99DC2F14E0262F3FEB37B9E5471BA163AC5A42884FC2AB1AFFCD ] C:\Windows\KHALMNPR.EXE
01:02:49.0862 0x1d4c  Kernel and Hardware Abstraction Layer - ok
01:02:49.0932 0x1d4c  [ D5F1ADEA6513A230E27A3ADAD2A3B160, 947AA3C8C2AB8C07832BE1BE337ADD4B3105785FDF5844537D658554EF265A73 ] C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
01:02:49.0992 0x1d4c  Bdagent - ok
01:02:50.0092 0x1d4c  [ DD79A6B15C2F28DE98DF4852AAF6B13B, 0F7E9023E0BA4B40E2DE9A9FA34E85FEAF72B93049AAB3E1D73AD046BB113E05 ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe
01:02:50.0102 0x1d4c  NCPluginUpdater - ok
01:02:50.0192 0x1d4c  [ B2D3666199175389D771DD94F5C98594, 4238DC200F718DC425F2CF4C2716289845EF207ADFDB1CAC154271FFF8528D9B ] C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
01:02:50.0232 0x1d4c  AvgUi - ok
01:02:50.0302 0x1d4c  [ 5FF9A79628D4A0BA3DCD6CF5EC8FD3BF, 9818AAF8F1F1C0CBD8B89352DBAF1ADBEA1F19928543517EB6473C112E95A38D ] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
01:02:50.0342 0x1d4c  AcronisTibMounterMonitor - ok
01:02:50.0634 0x1d4c  [ B8434467D90B65E5A2D697C7FF511802, A0F5D234A1CA1384160FB63AF40B169B4649DF7D77534DE1B16E1063EC922A87 ] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
01:02:50.0764 0x1d4c  TrueImageMonitor.exe - ok
01:02:51.0114 0x1d4c  Dropbox - ok
01:02:51.0414 0x1d4c  [ F1021BD18F1F726DAD6E00398FD1CCB6, A76FC4DFB1E9BFE0B920C78E36C1E77D4AA2224D37A26B26AD843D60949D2214 ] C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe
01:02:51.0514 0x1d4c  KeePass 2 PreLoad - ok
01:02:51.0664 0x1d4c  [ 8D8D9C8486CB29D01000BFFFE132780A, E1DD85E8CF029FA2F294A2E162838C0D5F11795338C4DE585FD3A0E58894F7C6 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
01:02:51.0744 0x1d4c  Wondershare Helper Compact.exe - ok
01:02:52.0094 0x1d4c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
01:02:52.0204 0x1d4c  Sidebar - ok
01:02:52.0224 0x1d4c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
01:02:52.0224 0x1d4c  mctadmin - ok
01:02:52.0274 0x1d4c  [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe
01:02:52.0294 0x1d4c  Sidebar - ok
01:02:52.0294 0x1d4c  [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe
01:02:52.0304 0x1d4c  mctadmin - ok
01:02:52.0334 0x1d4c  [ 0DFC21F95480B688E83C715A6C668095, 43D5B04031F991B2866B369CFA83079AC43DF362D1524541F39C648D1A516D07 ] C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
01:02:52.0364 0x1d4c  Bitdefender-Geldbörse-Agent - ok
01:02:52.0414 0x1d4c  [ DD5A8388F7BC7052EED93207A8B3A0B7, E3EEC0B262D2C0063C694118A634A2F09C019D7A024A18C8BE83AF60BE45ECDC ] C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe
01:02:52.0454 0x1d4c  Bitdefender-Geldbörse - ok
01:02:52.0504 0x1d4c  [ DB1919F34AB9CD5F43B0ED463D7E8D28, B7FC47EACF3B0B352AC7552743A43CD1DF147D8E1F6D0BF30D300000E12859A6 ] C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
01:02:52.0534 0x1d4c  Bitdefender-Geldbörse-Anwendungs-Agent - ok
01:02:52.0704 0x1d4c  [ 7619D9ABB017DEBB29D0793A9C2B64A8, 744555E842A71FA6157D1A1DD90ED67F13D6AED4259C23DA0540955FCEF71347 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
01:02:52.0844 0x1d4c  DAEMON Tools Lite - ok
01:02:53.0514 0x1d4c  [ 40335C8877B6B84842AF03A40E1BB206, 33433ED8961B1AEEBD30F8DD53A541C711C403D019F1074406FF9C9D1E9F4113 ] C:\Program Files\CCleaner\CCleaner64.exe
01:02:53.0914 0x1d4c  CCleaner Monitoring - ok
01:02:53.0934 0x1d4c  Waiting for KSN requests completion. In queue: 135
01:02:54.0934 0x1d4c  Waiting for KSN requests completion. In queue: 135
01:02:55.0934 0x1d4c  Waiting for KSN requests completion. In queue: 135
01:02:56.0354 0x0b28  Object required for P2P: [ 4645910BE6CB805DB15CC49D8B6BAA39 ] TuneUp.UtilitiesSvc
01:02:56.0936 0x1d4c  Waiting for KSN requests completion. In queue: 100
01:02:57.0938 0x1d4c  Waiting for KSN requests completion. In queue: 100
01:02:58.0878 0x0b28  Object send P2P result: true
01:02:59.0000 0x1d4c  AV detected via SS2: Bitdefender Antivirus, C:\Program Files\Bitdefender\Bitdefender\wscfix.exe ( 17.30.0.1307 ), 0x41000 ( enabled : updated )
01:02:59.0050 0x1d4c  Win FW state via NFP2: enabled ( trusted )
01:03:01.0504 0x1d4c  ============================================================
01:03:01.0504 0x1d4c  Scan finished
01:03:01.0504 0x1d4c  ============================================================
01:03:01.0524 0x1b18  Detected object count: 0
01:03:01.0524 0x1b18  Actual detected object count: 0

burningice · 30.12.2015, 01:23

Schritt 1
Lade Dir bitte von hier

Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.

Installiere und starte das Programm. (Bebilderte Anleitung zu Revo Uninstaller)
Klicke auf Optionen und wähle als Sprache Deutsch.
Suche im Uninstallerfeld nach den Programmen:

QuickStores-Toolbar 1.0.0
Vuze Remote Toolbar
Windows Searchqu Toolbar
WSE_Binkiland
Wähle die Programme nacheinander aus und klicke jedes Mal auf Uninstall.
Wähle anschließend den Modus "Moderat" aus.
Reste löschen:
Klicke auf dann auf und dann auf .

Schritt 2
Downloade Dir bitte

AdwCleaner auf deinen Desktop.

Schließe alle offenen Programme und Browser. Bebilderte Anleitung zu AdwCleaner.
Starte die AdwCleaner.exe mit einem Doppelklick.
Stimme den Nutzungsbedingungen zu.
Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
- "Tracing" Schlüssel löschen
- Winsock Einstellungen zurücksetzen
- Proxy Einstellungen zurücksetzen
- Internet Explorer Richtlinien zurücksetzen
- Chrome Richtlinien zurücksetzen
- Stelle sicher, dass alle 5 Optionen wie hier dargestellt, ausgewählt sind
Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).

Schritt 3
Downloade Dir bitte

Malwarebytes Anti-Malware

Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
Starte Malwarebytes' Anti-Malware (MBAM).
Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.

Schritt 4
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.

Bitte poste in deiner nächsten Antwort also:

Logfile von AdwCleaner
Logfile von Malwarebytes
Frst.txt
Addition.txt

HB-Männchen · 30.12.2015, 20:04

Hallo Rafael, nur kurz für dich zur Info. Da ich heute arbeiten muss kann ich deine vorgegebenen Schritte erst heute abend erledigen.

Gruß Ron

Ergebnis vom Lauf "AdwCleaner [C1]"

Code:

ATTFilter

# AdwCleaner v5.027 - Bericht erstellt am 30/12/2015 um 18:58:01
# Aktualisiert am 30/12/2015 von Xplode
# Datenbank : 2015-12-30.1 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64)
# Benutzername : Home - NOTEBOOK-RS
# Gestartet von : C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 6\adwcleaner_5.027.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****

[-] Dienst Gelöscht : sp_rsdrv2
[-] Dienst Gelöscht : swdumon

***** [ Ordner ] *****

[-] Ordner Gelöscht : C:\Program Files (x86)\Conduit
[-] Ordner Gelöscht : C:\Program Files (x86)\ConduitEngine
[-] Ordner Gelöscht : C:\Program Files (x86)\Mobogenie
[-] Ordner Gelöscht : C:\Program Files (x86)\vShare.tv plugin
[-] Ordner Gelöscht : C:\Program Files (x86)\DriverToolkit
[-] Ordner Gelöscht : C:\Program Files (x86)\Applian Technologies
[-] Ordner Gelöscht : C:\Program Files (x86)\myfree codec
[-] Ordner Gelöscht : C:\Program Files (x86)\Common Files\Tobit
[-] Ordner Gelöscht : C:\ProgramData\Trymedia
[-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applian Technologies
[-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
[-] Ordner Gelöscht : C:\Users\Home\AppData\Local\Conduit
[-] Ordner Gelöscht : C:\Users\Home\AppData\Local\Mobogenie
[-] Ordner Gelöscht : C:\Users\Home\AppData\Local\NativeMessaging
[-] Ordner Gelöscht : C:\Users\Home\AppData\Local\DriverToolkit
[-] Ordner Gelöscht : C:\Users\Home\AppData\Local\StormFall
[-] Ordner Gelöscht : C:\Users\Home\AppData\Local\slimware utilities inc
[-] Ordner Gelöscht : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj
[-] Ordner Gelöscht : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil
[-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\Conduit
[-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\ConduitEngine
[-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\facemoods.com
[-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\searchquband
[-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\Searchqutoolbar
[-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\Vuze_Remote
[-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\DesktopIconForAmazon
[-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\GrabPro
[-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\Mysearchdial
[-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\Tobit
[-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\ProgSense
[-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Smartbar
[-] Ordner Gelöscht : C:\Users\Home\Documents\Mobogenie
[-] Ordner Gelöscht : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar

***** [ Dateien ] *****

[-] Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\Plugins\npvsharetvplg.dll
[-] Datei Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk
[-] Datei Gelöscht : C:\Users\Home\daemonprocess.txt
[-] Datei Gelöscht : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_ojpijjmpahflnipadmlpgbjmagmjchkk_0
[-] Datei Gelöscht : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_elicpjhcidhpjomhibiffojpinpmmpil_0.localstorage
[-] Datei Gelöscht : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\elicpjhcidhpjomhibiffojpinpmmpil
[-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickStores.url
[-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickStores.url
[-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\QuickStores.url
[-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\searchplugins\Binkiland.xml
[-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\searchplugins\Mysearchdial.xml
[-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\user.js
[-] Datei Gelöscht : C:\Windows\SysNative\drivers\swdumon.sys
[-] Datei Gelöscht : C:\Windows\SysWOW64\conduitEngine.tmp

***** [ DLLs ] *****


***** [ Verknüpfungen ] *****


***** [ Aufgabenplanung ] *****


***** [ Registrierungsdatenbank ] *****

[-] Schlüssel Gelöscht : HKCU\Software\Classes\pokki
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BrowserConnection.Loader
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Conduit.Engine
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\DnsBHO.BHO
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\MyNewsBarLauncher.IE5BarLauncher
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IEhelperActiveX.IEhelperLabel
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IEhelperActiveX.IEhelperLabel.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{A5BBB804-8009-4246-BED3-2D3335981EF6}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{7CD74AFF-3433-4E34-92E2-D98DFDB30754}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{97D69524-BB57-4185-9C7F-5F05593B771A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A1B48071-416D-474E-A13B-BE5456E7FC31}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7854F00C-DC77-477E-A10E-603F48442D3B}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1B48071-416D-474E-A13B-BE5456E7FC31}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1B48071-416D-474E-A13B-BE5456E7FC31}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7}
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}]
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}]
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
[-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}]
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0}
[-] Schlüssel Gelöscht : HKCU\Software\Conduit
[-] Schlüssel Gelöscht : HKCU\Software\DataMngr
[-] Schlüssel Gelöscht : HKCU\Software\InstallCore
[-] Schlüssel Gelöscht : HKCU\Software\Myfree Codec
[-] Schlüssel Gelöscht : HKCU\Software\mysearchdial.com
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\Softonic
[-] Schlüssel Gelöscht : HKCU\Software\StartSearch
[-] Schlüssel Gelöscht : HKCU\Software\vShare.tv
[-] Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar
[-] Schlüssel Gelöscht : HKCU\Software\ProgSense
[-] Schlüssel Gelöscht : HKCU\Software\Binkiland Browser
[-] Schlüssel Gelöscht : HKCU\Software\DriverToolkit
[-] Schlüssel Gelöscht : HKCU\Software\SlimWare Utilities Inc
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Toolbar
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\conduitEngine
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\searchqutoolbar
[-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Show-Password
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Conduit
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\conduitEngine
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\dt soft\daemon tools toolbar
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Myfree Codec
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Trymedia Systems
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\JetSwap
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\SlimWare Utilities Inc
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DataMngr
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar
[-] Daten Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs]
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{92CCF319-2686-454F-8CE4-9A8CD6E19B34}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}
[-] Daten Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D50E2419-E5E1-4F12-80CA-4F531FC04860}
[-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EC9DA127-81F1-4B24-B912-DC42D05B1C9B}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}
[-] Daten Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope]
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D50E2419-E5E1-4F12-80CA-4F531FC04860}

***** [ Internetbrowser ] *****

[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.FirstTime", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.FirstTimeFF3", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.LoginRevertSettingsEnabled", false);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.RevertSettingsEnabled", true);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.UserID", "UN22834245930166208");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.addressBarTakeOverEnabledInHidden", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.autoDisableScopes", -1);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.cbcountry_001.enc", "REU=");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.cbfirsttime.enc", "TW9uIE5vdiAxMiAyMDEyIDAwOjA1OjQwIEdNVCswMTAw");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.defaultSearch", "false");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.embeddedsData", "[{\"appId\":\"129079840422026594\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...]
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.enableAlerts", "always");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.enableSearchFromAddressBar", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.firstTimeDialogOpened", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.fixPageNotFoundError", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.fixPageNotFoundErrorInHidden", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.fixUrls", true);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.installId", "conduitinstallerstub.exe");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.installType", "conduitnsisintegration");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isCheckedStartAsHidden", true);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isFirstTimeToolbarLoading", "false");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isNewTabEnabled", false);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isPerformedSmartBarTransition", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.migrateAppsAndComponents", true);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxp%3A%2F%2Fwww.piriform.com%2Frecuva%2Frelease-notes%2F1.43.623%2Fb2\",\"EB_MAIN_FRAME_TITLE\":\"Recuva%20-%20Release%20Notes\"[...]
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.openThankYouPage", "false");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.openUninstallPage", "false");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.price-gong.bornDate", "{\"dataType\":\"string\",\"data\":\"{\\\"Response\\\":\\\"11\\\\/12\\\\/2012 02\\\"}\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.price-gong.isManagedApp", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.revertSettingsEnabled", "false");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.search.searchAppId", "129079840422026594");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.search.searchCount", "0");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.searchInNewTabEnabled", "false");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.searchInNewTabEnabledInHidden", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"2\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2504091\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://VuzeRemote.OurToolbar.com//xpi\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"Vuze Remote\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1352675135212");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_appsMetadata_lastUpdate", "1352675135181");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1352675136450");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_login_10.13.40.15_lastUpdate", "1352675135468");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1352675136337");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_searchAPI_lastUpdate", "1352675133749");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_serviceMap_lastUpdate", "1352675132532");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_toolbarContextMenu_lastUpdate", "1352675136408");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_toolbarSettings_lastUpdate", "1352675134641");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_translation_lastUpdate", "1352675135165");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_userApps_lastUpdate", "1352675136132");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.settingsINI", true);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.shouldFirstTimeDialog", "false");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.smartbar.CTID", "CT2504091");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.smartbar.Uninstall", "1");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.smartbar.toolbarName", "Vuze Remote ");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.startPage", "false");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.toolbarBornServerTime", "12-11-2012");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.toolbarCurrentServerTime", "12-11-2012");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.toolbarDisabled", "true");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.url_history0001.enc", "aHR0cDovL3d3dy5jaGlwLmRlL2Rvd25sb2Fkcy9SZWN1dmFfMjM5MzUyNjEuaHRtbDo6OmNsaWNraGFuZGxlcjo6OjEzNTI2NzUzMzE1NDQsLCxodHRwOi8vd3d3LmNoaXAuZGUvZG93bmxvYWRzL1JlY3V2[...]
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1352675401934,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("browser.search.order.1", "Mysearchdial");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.fvd_single.surfcanyon.ramp.start_time", "1394224942457");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.irmysearch.aflt", "irmsd0202ch");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.irmysearch.cr", "1960053735");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.irmysearch.instlRef", "");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.AL", 2);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.aflt", "irmsd0202ch");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.cntry", "DE");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.cr", "1960053735");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.dfltLng", "");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.dfltSrch", true);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.dnsErr", true);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,752626116,1657571787,3224935090,2597085128,18285[...]
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.excTlbr", false);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.hdrMd5", "C3E3EFF608746A1D94A8706995B5A5E4");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.hmpg", true);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1Czu[...]
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.id", "00269E3074F2DDAF");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.instlDay", "16124");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.instlRef", "");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.lastB", "hxxp://start.mysearchdial.com/?f=1&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutB[...]
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.lastVrsnTs", "1.8.21.021:32:20");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1C[...]
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.pnu_base", "{\"newVrsn\":\"90\",\"lastVrsn\":\"90\",\"vrsnLoad\":\"\",\"showMsg\":\"false\",\"showSilent\":\"false\",\"msgTs\":0,\"lstMsgTs\":\"0\"}");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.sg", "none");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.tlbrId", "base");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L[...]
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.vrsn", "1.8.21.0");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.vrsni", "1.8.21.0");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial_i.hmpg", true);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial_i.newTab", false);
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial_i.smplGrp", "none");
[-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.021:32:20");
[-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : searchqu.com
[-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : websearch.ask.com
[-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : search.babylon.com
[-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : slirsredirect.search.aol.com
[-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : binkiland.com
[-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : amazon-cover-downloader.de.softonic.com
[-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Gelöscht : hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir=
[-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Gelöscht : elicpjhcidhpjomhibiffojpinpmmpil
[-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Gelöscht : kpionmjnkbpcdpcflammlgllecmejgjj

*************************

:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Chrome Richtlinien gelöscht

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [38723 Bytes] ##########

so hier die mbam.txt

Code:

ATTFilter

 Malwarebytes Anti-Malware 
www.malwarebytes.org

Suchlaufdatum: 30.12.2015
Suchlaufzeit: 19:15
Protokolldatei: mbam.txt
Administrator: Ja

Version: 2.2.0.1024
Malware-Datenbank: v2015.12.30.04
Rootkit-Datenbank: v2015.12.26.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Home

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 451048
Abgelaufene Zeit: 28 Min., 53 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 8
PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}, In Quarantäne, [95a704a73c4f2a0c20caa5c2d230758b], 
PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0B4D26F6-61A8-4463-99DD-5F2FE0400FA6}, In Quarantäne, [b9839714a3e8999da00c4c6c6e951ee2], 
PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}, In Quarantäne, [77c5adfebbd0aa8cff25e9ad08fb8b75], 
PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Binkiland cini, Löschen bei Neustart, [c775eac1e0ab72c4ab7b2c6a897a4eb2], 
PUP.Optional.VuzeRemoteTB, HKLM\SOFTWARE\WOW6432NODE\Vuze_Remote, In Quarantäne, [a5970f9c048748ee1ee98b458b785fa1], 
PUP.Optional.VShare, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kpionmjnkbpcdpcflammlgllecmejgjj, In Quarantäne, [bf7d17940586092d30d57a56b94a0cf4], 
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{34429CBB-A506-4DA6-BBCB-98445A821F5B}, In Quarantäne, [251773387714f2447394772681823bc5], 
PUP.Optional.Bandoo.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{9A6FAF99-126F-435B-95F7-733A21E7C2D6}, In Quarantäne, [9d9f5655a9e263d3155f51bfda2acf31], 

Registrierungswerte: 14
PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}|URL, hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1960053735&ir=, In Quarantäne, [b9839714a3e8999da00c4c6c6e951ee2]
PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}|TopResultURLFallback, hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1960053735&ir=, In Quarantäne, [221a6249c2c92a0c9d0fb9fffb08df21]
PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}|FaviconPath, C:\Program Files (x86)\Mysearchdial\1.8.21.0\FavIcon.ico, In Quarantäne, [84b88427e1aa88ae46668830798a0000]
PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}, Mysearchdial, In Quarantäne, [3b01acffd9b2d264426a0cac8f74fa06]
PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}|DisplayName, Mysearchdial, In Quarantäne, [ca72ccdf008bce68d6d6cbedae55f20e]
PUP.Optional.SearchQu, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}|URL, hxxp://www.searchqu.com//web?src=ieb&appid=0&systemid=413&sr=0&q={searchTerms}, In Quarantäne, [fb4119926f1ca393dfa91da601027888]
PUP.Optional.SearchQu, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}|SuggestionsURL_JSON, hxxp://www.searchqu.com/suggest.php?src=ieb&appid=0&systemid=413&qu={searchTerms}&ft=json, In Quarantäne, [1626eac1187369cdccbcb70c887b0af6]
PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}|URL, hxxp://binkiland.com/results.php?f=4&q={searchTerms}&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir=, In Quarantäne, [77c5adfebbd0aa8cff25e9ad08fb8b75]
PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}|TopResultURLFallback, hxxp://binkiland.com/results.php?f=4&q={searchTerms}&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir=, In Quarantäne, [9aa255568ffcea4c38ec2274b94a8080]
PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}, Binkiland, In Quarantäne, [48f4d8d394f7c472e83c732322e160a0]
PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}|DisplayName, Binkiland, In Quarantäne, [45f7f9b2a5e655e129fb1c7a1de6966a]
PUP.Optional.Binkiland, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files (x86)\WSE_Binkiland\\, In Quarantäne, [1e1e8a21ccbfb581c65d7224fd06dd23]
PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{34429CBB-A506-4DA6-BBCB-98445A821F5B}|AppPath, C:\Users\Home\AppData\Local\Conduit\CT2504091, In Quarantäne, [251773387714f2447394772681823bc5]
PUP.Optional.Bandoo.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{9A6FAF99-126F-435B-95F7-733A21E7C2D6}|AppPath, C:\PROGRA~2\WIA6EB~1\Datamngr\ToolBar, In Quarantäne, [9d9f5655a9e263d3155f51bfda2acf31]

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 2
PUP.Optional.Conduit, C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_ojpijjmpahflnipadmlpgbjmagmjchkk_0, In Quarantäne, [f349c1eaa0ebed491097711e748e6799], 
PUP.Optional.DataMngr.AppFlsh, C:\Users\Home\AppData\LocalLow\DataMngr, In Quarantäne, [f04ccddeb5d6d1652577e8cfb44ebb45], 

Dateien: 9
PUP.Optional.ConduitTB.Gen, C:\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$R1NPZA7\prxtbVuz2.dll, In Quarantäne, [ae8eb2f9612ab482e319c6f07094d030], 
PUP.Optional.ConduitTB.Gen, C:\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$R1NPZA7\tbVuz0.dll, In Quarantäne, [3606e6c5bbd0ff378a72c0f6768e6898], 
PUP.Optional.ConduitTB.Gen, C:\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$R1NPZA7\tbVuz1.dll, In Quarantäne, [0f2d35760883f93db943e5d1ca3a2dd3], 
PUP.Optional.ConduitTB.Gen, C:\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$R1NPZA7\tbVuz2.dll, In Quarantäne, [b785604b83087bbb7587b0069e6651af], 
PUP.Optional.Binkiland, C:\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$RXYRB45\uninstall.exe, In Quarantäne, [66d6e8c3533852e423213c79ae56c63a], 
PUP.Optional.InstallCore, C:\Users\Home\AppData\Local\Temp\13095084881362594809.exe, In Quarantäne, [3309c5e6fb905ed855d48caba75aad53], 
PUP.Optional.Binkiland, C:\Windows\System32\Tasks\Binkiland cini, In Quarantäne, [48f49d0e0c7ff145fc192a6cf80bc838], 
PUP.Optional.DataMngr.AppFlsh, C:\Users\Home\AppData\LocalLow\DataMngr\{7CA1F051-A4FB-4143-B263-02B41E571EED}, In Quarantäne, [f04ccddeb5d6d1652577e8cfb44ebb45], 
PUP.Optional.DataMngr.AppFlsh, C:\Users\Home\AppData\LocalLow\DataMngr\{7CA1F051-A4FB-4143-B263-02B41E571EED}64, In Quarantäne, [f04ccddeb5d6d1652577e8cfb44ebb45], 

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)

hier FRST.txt

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-12-2015
durchgeführt von Home (Administrator) auf NOTEBOOK-RS (30-12-2015 19:58:24)
Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 1
Geladene Profile: Home (Verfügbare Profile: Home)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files (x86)\AAVUpdateManager\aavus.exe
(Soluto) C:\Program Files\Soluto\Soluto.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
(CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
() C:\Windows\SysWOW64\NMSAccess32.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
() C:\Program Files\Iomega\QuikProtect\QpMonitor.exe
(Synaptics, Inc.) C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Soluto) C:\Program Files\Soluto\SolutoLauncherService.exe
(Xacti LLC) C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Synaptics Incorporated) C:\Program Files (x86)\Synaptics\Scrybe\scrybe.exe
() C:\Program Files\Rainmeter\Rainmeter.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\pmbxcrnmh.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Soluto) C:\Program Files\Soluto\SolutoService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [134416 2007-06-12] (Logitech, Inc.)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1757520 2015-02-02] (Bitdefender)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1702912 2000-01-01] (IDT, Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1104616 2013-10-10] (Acronis International GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7843744 2014-02-04] (Acronis)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-02] (Hewlett-Packard)
HKLM\...\Winlogon: [Userinit] c:\windows\system32\userinit.exe,c:\program files\soluto\soluto.exe /userinit,
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender)
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender)
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender)
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd)
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\system: [WallpaperStyle] 2
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender)
HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender)
HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender)
HKU\S-1-5-18\...\Policies\system: [WallpaperStyle] 2
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> 
Lsa: [Notification Packages] scecli c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-06-11]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Scrybe.lnk [2012-01-14]
ShortcutTarget: Scrybe.lnk -> C:\Windows\Installer\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}\NewShortcut11_8ACB210B42E44145A8C31F8E3DD765A3.exe (Acresso Software Inc.)
Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2015-06-10]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
BootExecute: autocheck autochk * auto_reactivate \\?\Volume{f7c81a36-efb9-11de-a798-806e6f6e6963}\bootwiz\asrm.bin

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7A31314E-4D6E-42E3-9220-5D359B8B3242}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{D2518004-8FB8-4822-8DAA-FD4DF64F2AD4}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKLM -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll [2014-11-13] (Bitdefender)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG)
BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll [2014-11-13] (Bitdefender)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-18] (Oracle Corporation)
BHO-x32: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-18] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files (x86)\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG)
DPF: HKLM-x32 {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} file:///H:/Projekte%20Magix/Tatort/components/hidinputmonitorx.ocx
DPF: HKLM-x32 {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} file:///H:/Projekte%20Magix/Tatort/components/A9.ocx
DPF: HKLM-x32 {7030CC6C-1A88-4591-BB5A-651B9F7F0C30} file:///H:/Projekte%20Magix/Tatort/components/wmvhdrating.ocx
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029
FF SelectedSearchEngine: Binkiland
FF Homepage: hxxps://www.google.de/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-28] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-14] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-28] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2013-08-28] (DivX, LLC)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2010-10-28] (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-18] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-10-15] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/O1DPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-02] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Extension: azid - Amazon Zoom Image Downloader - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\azid@craue.de.xpi [2015-10-12]
FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\artur.dubovoy@gmail.com [2015-12-06]
FF Extension: Secure Login - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\secureLogin@blueimp.net.xpi [2015-12-22]
FF Extension: Kein Name - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\auto-plugin-checker@jetpack.xpi [2015-09-04] [ist nicht signiert]
FF Extension: Flagfox - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2015-12-21]
FF Extension: Video DownloadHelper - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-31]
FF Extension: Adblock Plus - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-15]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]
FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman [2014-03-27] [ist nicht signiert]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir="
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei
CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei
CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei
CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei
CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Unity Player) - C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei
CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei
CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Google Drive) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Bitdefender Wallet) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl [2014-11-07]
CHR Extension: (Google-Suche) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Video Downloader professional) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-12-30]
CHR Extension: (Google Docs Offline) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17]
CHR Extension: (WhatFont) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2015-08-18]
CHR Extension: (Skype) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-19]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (chromeIPass) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompiailgknfdndiefoaoiligalphfdae [2014-12-24]
CHR Extension: (Unblock Youku) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnfnkhpgegpcingjbfihlkjeighnddk [2015-11-24]
CHR Extension: (Google Mail) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-04-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AAV UpdateService; C:\Program Files (x86)\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
R2 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1046952 2015-11-12] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [Datei ist nicht signiert]
S4 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert]
S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert]
S3 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [72992 2014-07-07] (Hewlett-Packard Company)
S3 HRService; C:\Program Files (x86)\Haufe\iDesk\iDeskService\iDeskService.exe [71024 2010-10-25] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert]
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-10-19] ()
R2 NMSAccess; C:\Windows\SysWOW64\NMSAccess32.exe [71096 2009-01-12] ()
R2 QPCopyEngine; C:\Program Files\Iomega\QuikProtect\QpMonitor.exe [394544 2010-06-24] ()
R2 ScrybeUpdater; C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe [1300264 2011-05-27] (Synaptics, Inc.)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
R2 SolutoLauncherService; C:\Program Files\Soluto\SolutoLauncherService.exe [182848 2013-11-14] (Soluto)
R3 SolutoRemoteService; C:\Program Files\Soluto\SolutoRemoteService.exe [1942016 2013-11-14] (GlavSoft LLC.) [Datei ist nicht signiert]
R2 sp_rssrv; C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe [1033255 2010-09-29] (Xacti LLC) [Datei ist nicht signiert]
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2000-01-01] (IDT, Inc.) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2014-11-13] (Bitdefender)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies)
R2 vsserv; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1538672 2015-02-02] (Bitdefender)
S4 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2013-11-02] (Western Digital Technologies, Inc.)
S4 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [270704 2013-11-02] (Western Digital Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X]

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1288472 2015-02-02] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [263032 2015-02-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-11-13] (BitDefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc)
R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx64.sys [34512 2015-02-06] ()
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-05-20] (Paragon Software Group)
R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2000-01-01] (JMicron Technology Corp.)
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-09-08] (Lavasoft AB)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42944 2010-11-06] (hxxp://libusb-win32.sourceforge.net)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-30] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] ()
S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] ()
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [585944 2014-12-31] (Realtek Semiconductor Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-12-03] (Duplex Secure Ltd.)
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [50696 2010-07-07] (Windows (R) Win 7 DDK provider)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-02-08] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2014-02-08] (Acronis International GmbH)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2015-02-02] (BitDefender S.R.L.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
S1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [50768 2010-07-14] (Windows (R) 2000 DDK provider)
S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [566864 2010-07-14] (Paragon)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2014-02-08] (Acronis International GmbH)
U3 a0jtzv1x; C:\Windows\System32\Drivers\a0jtzv1x.sys [0 ] (JMicron Technology Corporation) <==== ACHTUNG (Null Byte Datei/Ordner)
S3 clwvd; system32\DRIVERS\clwvd.sys [X]
S3 cpuz132; \??\C:\Users\Home\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [X]
R3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
U4 eabfiltr; kein ImagePath
S3 WPRO_40_1340; system32\drivers\WPRO_40_1340.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-30 19:55 - 2015-12-30 19:55 - 00008364 _____ C:\Users\Home\Desktop\mbam.txt
2015-12-30 19:14 - 2015-12-30 19:51 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-12-30 19:13 - 2015-12-30 19:13 - 00001064 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-12-30 19:13 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-12-30 19:13 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-12-30 19:13 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-12-30 18:54 - 2015-12-30 18:58 - 00000000 ____D C:\AdwCleaner
2015-12-30 18:11 - 2015-12-30 18:11 - 00001226 _____ C:\Users\Home\Desktop\Revo Uninstaller.lnk
2015-12-30 18:11 - 2015-12-30 18:11 - 00000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2015-12-30 18:11 - 2015-12-30 18:11 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-12-30 01:01 - 2015-12-30 01:06 - 00256514 _____ C:\TDSSKiller.3.1.0.9_30.12.2015_01.01.45_log.txt
2015-12-30 00:23 - 2015-12-30 00:23 - 00001082 _____ C:\Users\Home\Desktop\Hilfe 100 % CPU - Verknüpfung.lnk
2015-12-29 22:20 - 2015-12-29 22:20 - 00000376 _____ C:\Users\Home\AppData\Roamingprivacy.xml
2015-12-29 22:19 - 2015-12-29 22:26 - 00007892 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_22.19.36_log.txt
2015-12-29 22:12 - 2015-12-29 22:12 - 00000000 ____D C:\TDSSKiller_Quarantine
2015-12-29 21:51 - 2015-12-30 18:10 - 00000000 ____D C:\Users\Home\Downloads\Hilfe 100 % CPU
2015-12-29 21:40 - 2015-12-29 22:12 - 00510822 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_21.40.36_log.txt
2015-12-29 19:30 - 2015-12-30 19:58 - 00000000 ____D C:\FRST
2015-12-23 17:24 - 2015-12-23 17:24 - 00000657 _____ C:\Users\Home\Desktop\Steffi - Verknüpfung.lnk
2015-12-23 16:51 - 2015-12-23 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-20 12:59 - 2015-12-20 12:59 - 00000000 ____D C:\Users\Home\Documents\Applian
2015-12-20 12:56 - 2015-12-20 15:20 - 00000000 ____D C:\Windows\Jaksta
2015-12-20 12:56 - 2015-12-20 13:11 - 00000000 ____D C:\Users\Home\AppData\Local\Jaksta_Technologies_Pty_L
2015-12-20 12:37 - 2015-12-20 13:13 - 00000000 ____D C:\Users\Home\AppData\Local\JDownloader v2.0
2015-12-19 15:36 - 2015-12-19 15:36 - 00001053 _____ C:\Users\Public\Desktop\StreamTransport.lnk
2015-12-19 15:36 - 2015-12-19 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamTransport
2015-12-19 15:36 - 2015-12-19 15:36 - 00000000 ____D C:\Program Files (x86)\StreamTransport
2015-12-19 15:35 - 2014-07-09 11:33 - 15123328 _____ (hxxp://www.streamtransport.com/ ) C:\Users\Home\Downloads\streamtransport_chrome_setup1.1.6.2.exe
2015-12-15 22:37 - 2015-12-15 22:42 - 00007154 _____ C:\Users\Home\Documents\starburn.txt
2015-12-15 22:37 - 2015-12-15 22:37 - 00000000 ____D C:\ProgramData\Wondershare
2015-12-15 22:36 - 2015-12-15 22:36 - 00001105 _____ C:\Users\Public\Desktop\Wondershare Filmora.lnk
2015-12-15 22:36 - 2015-12-15 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\Wondershare
2015-12-15 22:36 - 2015-12-15 22:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2015-12-15 22:35 - 2015-12-15 22:43 - 00000000 ____D C:\Users\Home\Documents\Wondershare Filmora
2015-12-15 22:35 - 2015-12-15 22:35 - 00000000 ____D C:\ProgramData\Wondershare Video Editor
2015-12-15 22:35 - 2015-12-15 22:35 - 00000000 ____D C:\Program Files (x86)\Wondershare
2015-12-15 22:33 - 2015-12-15 22:35 - 00000000 ____D C:\Users\Public\Documents\Wondershare
2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\Documents\FlashIntegro
2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\VideoEditor
2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\FlashIntegro
2015-12-15 22:06 - 2015-12-15 22:06 - 00001164 _____ C:\Users\Home\Desktop\VSDC Free Video Editor.lnk
2015-12-15 22:06 - 2015-12-15 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro
2015-12-15 22:06 - 2015-12-15 22:06 - 00000000 ____D C:\Program Files (x86)\FlashIntegro
2015-12-15 22:06 - 2014-12-09 12:21 - 00081792 _____ (Flash-Integro LLC) C:\Windows\SysWOW64\mslvddsfilter2.ax
2015-12-15 22:06 - 2011-12-07 18:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\Lagarith.dll
2015-12-15 22:06 - 2005-08-01 18:43 - 00245760 _____ () C:\Windows\SysWOW64\lame.ax
2015-12-15 22:06 - 2004-12-10 09:03 - 00438272 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2015-12-15 22:06 - 2004-02-04 20:11 - 00081920 _____ (fccHandler) C:\Windows\SysWOW64\AC3ACM.acm
2015-12-15 22:06 - 2003-05-22 11:26 - 00221215 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divxdec.ax
2015-12-15 22:06 - 2003-05-21 22:50 - 00261632 _____ (MainConcept) C:\Windows\SysWOW64\mcdvd_32.dll
2015-12-15 22:06 - 2003-05-21 22:50 - 00156910 _____ C:\Windows\WMSysPr8.prx
2015-12-15 22:06 - 2003-05-21 22:50 - 00082944 _____ (Voxware, Inc.) C:\Windows\SysWOW64\vct3216.acm
2015-12-15 22:06 - 2003-05-21 22:50 - 00038912 _____ (NCT Company) C:\Windows\SysWOW64\alf2cd.acm
2015-12-15 22:06 - 2003-05-21 22:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2015-12-15 22:06 - 2003-03-25 04:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\L3CODECX.AX
2015-12-15 22:06 - 2002-08-19 23:41 - 00413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll
2015-12-15 22:06 - 2000-03-14 19:55 - 00013239 _____ (SHARP Corporation) C:\Windows\SysWOW64\Scg726.acm
2015-12-15 20:00 - 2015-12-15 20:00 - 00200764 _____ C:\Users\Home\Desktop\Anzeige Kolb.pdf
2015-12-14 22:05 - 2015-12-14 22:05 - 24386352 _____ (Siber Systems) C:\Users\Home\Downloads\GoodSync-Setup.exe
2015-12-12 10:57 - 2015-12-12 10:57 - 00001067 _____ C:\Users\Home\Desktop\KeePass 2.lnk
2015-12-11 22:27 - 2015-12-11 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\ApplicationHistory
2015-12-11 22:27 - 2015-12-11 22:27 - 00000092 _____ C:\Users\Home\AppData\Local\fusioncache.dat
2015-12-11 21:01 - 2015-12-11 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-12-07 21:29 - 2015-12-07 21:29 - 00002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-12-07 21:29 - 2015-12-07 21:29 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\Program Files\CCleaner
2015-12-03 20:32 - 2015-12-03 20:32 - 00000993 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk
2015-11-30 22:16 - 2015-11-30 22:16 - 00000973 _____ C:\Users\Home\Desktop\Wanderprogramm 2016.lnk

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-30 19:59 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-30 19:59 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-30 19:52 - 2012-11-11 23:17 - 00000000 ___RD C:\Users\Home\Dropbox
2015-12-30 19:52 - 2012-11-11 22:00 - 00000000 ____D C:\Users\Home\AppData\Roaming\Dropbox
2015-12-30 19:49 - 2015-07-25 12:03 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-12-30 19:49 - 2013-02-16 23:12 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-30 19:48 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-30 19:47 - 2011-08-31 23:22 - 00000000 ____D C:\Windows\HPQ
2015-12-30 19:46 - 2014-03-24 01:26 - 00290514 _____ C:\bdlog.txt
2015-12-30 19:41 - 2014-03-16 22:56 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job
2015-12-30 19:36 - 2013-02-16 23:12 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-30 19:30 - 2012-12-17 11:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-30 19:09 - 2015-07-25 12:04 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-12-30 18:58 - 2015-02-01 12:28 - 00000008 __RSH C:\Users\Home\ntuser.pol
2015-12-30 18:58 - 2011-10-14 22:55 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-12-30 18:58 - 2009-12-23 23:38 - 00000000 ____D C:\Users\Home
2015-12-30 18:06 - 2014-03-16 22:56 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job
2015-12-30 17:10 - 2009-12-30 19:59 - 00003938 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{5E08B2BB-8B59-4E04-AFC6-843827792A81}
2015-12-30 17:09 - 2014-02-08 12:05 - 00000000 ___RD C:\Users\Home\Sync
2015-12-29 22:42 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2015-12-29 07:46 - 2011-02-11 00:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\TeamViewer
2015-12-28 22:43 - 2012-02-27 18:28 - 00000000 ____D C:\Users\Home\.Zettelkasten
2015-12-28 22:31 - 2012-12-17 11:41 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-12-28 22:31 - 2012-04-05 21:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-12-28 22:31 - 2011-06-17 20:10 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-28 20:51 - 2011-08-22 08:48 - 00000000 ____D C:\Users\Home\AppData\Roaming\vlc
2015-12-28 20:22 - 2015-10-22 20:31 - 00000026 _____ C:\Users\Home\AppData\Local\isoworkshop.ini
2015-12-25 13:23 - 2012-04-25 19:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-23 18:38 - 2010-05-30 10:42 - 00000000 ___RD C:\Users\Home\Desktop\Büro
2015-12-23 18:30 - 2014-12-14 14:49 - 00000000 ____D C:\Users\Home\Desktop\Anwendungen
2015-12-23 18:25 - 2014-01-03 23:23 - 00000000 ____D C:\Users\Home\Desktop\Videoschnitt
2015-12-22 12:51 - 2011-02-11 00:26 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-12-19 21:43 - 2013-07-31 19:56 - 00668984 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-17 22:47 - 2014-10-24 20:20 - 00003834 _____ C:\Windows\System32\Tasks\Google Update
2015-12-17 22:46 - 2015-10-30 21:33 - 00000000 ____D C:\Users\Home\AppData\Local\Microsoft Help
2015-12-17 22:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2015-12-17 12:17 - 2009-12-28 15:17 - 00000000 ____D C:\Users\Home\AppData\Roaming\Mozilla
2015-12-15 22:37 - 2013-07-31 19:58 - 00202240 _____ C:\Users\Home\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-15 22:37 - 2009-07-14 05:57 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-12-13 17:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2015-12-12 11:02 - 2013-03-22 21:05 - 00000000 ____D C:\Users\Home\AppData\Roaming\KeePass
2015-12-12 10:57 - 2013-06-30 11:16 - 00001079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2015-12-12 10:57 - 2013-03-22 20:44 - 00000000 ____D C:\Program Files (x86)\KeePass Password Safe 2
2015-12-12 00:13 - 2011-09-13 21:54 - 00000000 ____D C:\Users\Home\AppData\Roaming\dvdcss
2015-12-11 21:01 - 2015-07-25 12:03 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-12-11 00:33 - 2012-04-14 00:02 - 00000000 ____D C:\ProgramData\tmp
2015-12-10 09:17 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-12-07 22:19 - 2010-10-28 00:06 - 00000000 ____D C:\Users\Home\AppData\Roaming\DAEMON Tools Lite
2015-12-07 22:19 - 2010-07-12 20:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\PhotoScape
2015-12-07 22:19 - 2010-01-01 19:25 - 00000000 ____D C:\Users\Home\AppData\Roaming\Azureus
2015-12-07 22:19 - 2009-12-27 19:22 - 00000000 ____D C:\Users\Home\AppData\Roaming\Skype
2015-12-06 10:08 - 2009-12-27 19:22 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-05 01:31 - 2013-02-16 23:12 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-05 01:31 - 2013-02-16 23:12 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-02 21:20 - 2014-08-23 23:02 - 00000000 ____D C:\ProgramData\Avg
2015-12-02 21:09 - 2013-02-24 11:34 - 00004020 _____ C:\Windows\System32\Tasks\MUI StartMenu Application
2015-12-02 14:24 - 2013-07-14 10:55 - 00000000 ____D C:\Users\Home\.gimp-2.8
2015-12-02 07:36 - 2014-03-16 22:56 - 00004084 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA
2015-12-02 07:36 - 2014-03-16 22:56 - 00003688 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2010-01-06 11:53 - 2010-12-29 22:04 - 0000030 _____ () C:\Program Files (x86)\Exiferupdate.ini
2011-11-09 20:47 - 2011-11-09 20:48 - 0000288 _____ () C:\Users\Home\AppData\Roaming\.backup.dm
2012-01-08 21:35 - 2012-01-15 21:40 - 0000598 _____ () C:\Users\Home\AppData\Roaming\AutoGK.ini
2012-11-29 19:33 - 2014-12-14 12:35 - 0000307 _____ () C:\Users\Home\AppData\Roaming\burnaware.ini
2012-05-28 20:15 - 2015-02-06 17:45 - 0000096 _____ () C:\Users\Home\AppData\Roaming\Camdata.ini
2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamLayout.ini
2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamShapes.ini
2012-05-28 20:15 - 2015-02-06 17:45 - 0004534 _____ () C:\Users\Home\AppData\Roaming\CamStudio.cfg
2012-05-28 20:08 - 2012-05-28 20:08 - 0000000 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.Data.ini
2012-05-28 20:08 - 2012-05-28 20:08 - 0001206 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.ini
2011-09-13 21:13 - 2011-09-13 21:13 - 0099384 _____ () C:\Users\Home\AppData\Roaming\inst.exe
2010-01-14 00:44 - 2010-01-14 00:44 - 0031793 _____ () C:\Users\Home\AppData\Roaming\mdbu.bin
2010-02-20 00:34 - 2010-03-28 22:30 - 0038276 _____ () C:\Users\Home\AppData\Roaming\Microsoft Excel.ADR
2011-09-13 21:13 - 2011-09-13 21:13 - 0007859 _____ () C:\Users\Home\AppData\Roaming\pcouffin.cat
2011-09-13 21:13 - 2011-09-13 21:13 - 0001167 _____ () C:\Users\Home\AppData\Roaming\pcouffin.inf
2011-09-13 21:14 - 2011-09-13 21:14 - 0000034 _____ () C:\Users\Home\AppData\Roaming\pcouffin.log
2011-09-13 21:13 - 2011-09-13 21:13 - 0082816 _____ (VSO Software) C:\Users\Home\AppData\Roaming\pcouffin.sys
2015-09-11 20:01 - 2015-09-11 20:01 - 0001181 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt
2015-09-11 20:01 - 2015-09-11 20:01 - 0000000 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2015-02-06 17:44 - 2015-02-06 17:44 - 0000096 _____ () C:\Users\Home\AppData\Roaming\version2.xml
2013-02-03 23:24 - 2015-10-10 10:14 - 0080896 _____ () C:\Users\Home\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-11 22:27 - 2015-12-11 22:27 - 0000092 _____ () C:\Users\Home\AppData\Local\fusioncache.dat
2015-10-22 20:31 - 2015-12-28 20:22 - 0000026 _____ () C:\Users\Home\AppData\Local\isoworkshop.ini
2014-12-07 13:33 - 2014-12-07 13:33 - 0007931 _____ () C:\Users\Home\AppData\Local\recently-used.xbel
2013-04-02 13:55 - 2015-06-09 22:58 - 0007663 _____ () C:\Users\Home\AppData\Local\Resmon.ResmonCfg
2014-03-22 10:49 - 2014-03-22 10:49 - 0617204 _____ () C:\ProgramData\1395480845.bdinstall.bin
2014-04-27 16:55 - 2014-04-27 16:55 - 0240135 _____ () C:\ProgramData\1398614049.bdinstall.bin
2014-04-27 16:59 - 2014-04-27 17:01 - 0001545 _____ () C:\ProgramData\1398614324.1288.bin
2014-04-27 17:02 - 2014-04-27 17:02 - 0002247 _____ () C:\ProgramData\1398614324.1620.bin
2014-04-27 16:59 - 2014-04-27 16:59 - 0017887 _____ () C:\ProgramData\1398614324.2428.bin
2014-04-27 17:14 - 2014-04-27 17:14 - 0081185 _____ () C:\ProgramData\1398614324.3016.bin
2014-04-27 16:59 - 2014-04-27 17:02 - 0017801 _____ () C:\ProgramData\1398614324.3400.bin
2014-04-27 16:59 - 2014-04-27 16:59 - 0010224 _____ () C:\ProgramData\1398614324.3536.bin
2014-04-27 16:59 - 2014-04-27 16:59 - 0001090 _____ () C:\ProgramData\1398614324.3736.bin
2014-04-27 16:59 - 2014-04-27 17:14 - 0109821 _____ () C:\ProgramData\1398614324.4176.bin
2014-04-27 16:59 - 2014-04-27 16:59 - 0002736 _____ () C:\ProgramData\1398614324.4392.bin
2014-04-27 16:59 - 2014-04-27 17:02 - 0001090 _____ () C:\ProgramData\1398614324.4412.bin
2014-04-27 16:58 - 2014-04-27 17:14 - 0125567 _____ () C:\ProgramData\1398614324.5048.bin
2014-04-27 16:58 - 2014-04-27 17:01 - 0009868 _____ () C:\ProgramData\1398614324.5076.bin
2014-04-27 16:58 - 2014-04-27 17:14 - 0134906 _____ () C:\ProgramData\1398614324.5080.bin
2014-04-27 17:16 - 2014-04-27 17:16 - 0062879 _____ () C:\ProgramData\1398615359.bdinstall.bin
2014-04-27 17:47 - 2014-04-27 17:47 - 0670431 _____ () C:\ProgramData\1398615493.bdinstall.bin
2009-12-23 23:54 - 2012-01-26 19:18 - 0000190 _____ () C:\ProgramData\HPWALog.txt
2015-06-09 23:00 - 2015-06-12 17:59 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2012-08-12 04:28 - 2012-08-12 04:28 - 0000051 _____ () C:\ProgramData\zdtckhrezdorpjg
2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
2009-08-20 10:08 - 2009-08-20 10:08 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
2009-08-20 10:03 - 2009-08-20 10:04 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2009-12-23 13:06 - 2009-12-23 13:06 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
2009-08-20 10:02 - 2009-08-20 10:03 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2009-08-20 10:04 - 2009-08-20 10:08 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
2009-12-23 13:07 - 2009-12-23 13:07 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log

Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Home\DMOrganizer.dat


Einige Dateien in TEMP:
====================
C:\Users\Home\AppData\Local\Temp\JDSetup130950848601933840.exe
C:\Users\Home\AppData\Local\Temp\proxy_vole8078083222123595070.dll
C:\Users\Home\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-12-22 15:06

==================== Ende von FRST.txt ============================

HB-Männchen · 30.12.2015, 20:05

edit:

HB-Männchen · 30.12.2015, 20:28

und hier Addition.txt

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015
durchgeführt von Home (2015-12-30 20:01:48)
Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 1
Windows 7 Home Premium Service Pack 1 (X64) (2009-12-23 22:38:53)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2055331987-1518689308-177053510-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2055331987-1518689308-177053510-1012 - Limited - Enabled)
Gast (S-1-5-21-2055331987-1518689308-177053510-501 - Limited - Disabled)
Home (S-1-5-21-2055331987-1518689308-177053510-1000 - Administrator - Enabled) => C:\Users\Home
HomeGroupUser$ (S-1-5-21-2055331987-1518689308-177053510-1002 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

[verify-U]_AVS_IE_Add-on (HKLM-x32\...\[verify-U]_AVS_IE_Add-on) (Version: 1.0.0.3 - cybits AG)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
AAVUpdateManager (HKLM-x32\...\{DF6FE172-006A-4324-AF7F-ACFE4BA290FE}) (Version: 12.00.0000 - Akademische Arbeitsgemeinschaft)
ABBYY FineReader 9.0 Professional Edition (HKLM-x32\...\{F9000000-0001-0000-0000-074957833700}) (Version: 9.00.453.55019 - ABBYY)
ABBYY PDF Transformer 2.0 (HKLM-x32\...\{FA200000-0001-0000-0000-074957833700}) (Version: 2.0.1147.49010 - ABBYY Software Ltd.)
Acronis True Image 2014 (HKLM-x32\...\{3ECDD663-5AF8-489B-9E3C-561F33A271BD}Visible) (Version: 17.0.6673 - Acronis)
Acronis True Image 2014 (x32 Version: 17.0.6673 - Acronis) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{ACF4E7FE-650D-9BD7-BAE5-1AD061F40F69}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Anti-Twin (Installation 14.02.2010) (HKLM-x32\...\Anti-Twin 2010-02-14 18.44.43) (Version:  - Joerg Rosenthal, Germany)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AVCutty 3.5 (HKLM-x32\...\AVCutty) (Version: 3.5 - )
AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden
AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version:  - AVM Berlin)
Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 17.27.0.1146 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5300 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.8.2631 - CDBurnerXP)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP)
CDDRV_Installer (x32 Version: 4.20 - Logitech) Hidden
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.79.0.2015 - Georgy Berdyshev)
Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Content Pack (HKLM\...\{832191A7-9336-4DCD-94EF-F29955DEA165}) (Version: 1.0.0.0 - MAGIX Software GmbH)
CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 2.05 - NCH Software)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.84 - DivX, LLC)
dm-Fotowelt (HKLM-x32\...\dm-Fotowelt) (Version: 6.0.5 - CEWE Stiftung u Co. KGaA)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
eMedia Piano Einstieg Für Dummies (HKLM-x32\...\{D0D24351-FF92-450e-8143-6D848C6EFAC6}) (Version:  - eMedia Piano Einstieg Für Dummies)
ENE CIR Receiver Driver (HKLM\...\FFE7D41DF3C645075BB149E21988B63996C34187) (Version: 2.7.4.0 - ENE)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden
FormatFactory 3.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.5.0 - Free Time)
FOTOParadies (HKLM-x32\...\{A606BBD1-0BC4-45C1-8C26-C1471D85DAE4}}_is1) (Version: 3.1.10.105 - Foto Online Service GmbH)
Garmin BaseCamp (HKLM-x32\...\{81EF7DBD-909A-455B-8B32-24B8CDC75039}) (Version: 4.3.3 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin (HKLM-x32\...\{B1EE1CC5-6CED-4801-BFFF-8454F21A245A}) (Version: 2.9.3 - Garmin Ltd or its subsidiaries)
Garmin TOPO Deutschland 2010 (HKLM-x32\...\{C7C82ED1-E5AD-48CF-8B92-38DD9B49610C}) (Version: 4.0.0.0 - Garmin Ltd or its subsidiaries)
Garmin Trip and Waypoint Manager v5 (HKLM-x32\...\{414A373B-59DF-4102-94CA-9FE9A74CBDDA}) (Version: 5.0.0.0 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Garmin WebUpdater (HKLM-x32\...\{00FE2935-FB56-4410-AB5F-D6E70C1771D2}) (Version: 2.5.6 - Garmin Ltd or its subsidiaries)
GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{36A52BCF-AC3D-32F1-AD5F-A09769EB8887}) (Version: 4.1.3.13728 - Google)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Google+ Auto Backup (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.)
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.)
Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2 (HKLM-x32\...\Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2) (Version:  - )
Haufe iDesk-Service (HKLM-x32\...\{27F10580-E040-11DF-8C28-005056B12123}) (Version: 10.10.25.7810 - Haufe)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{7FD7F421-39B2-4CAC-BC41-7D83DDBAB329}) (Version: 4.0.3.1 - Hewlett-Packard)
HP Advisor (HKLM-x32\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.0.3123 - Hewlett-Packard)
HP MediaSmart Internet TV (HKLM-x32\...\InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}) (Version: 3.0.1916 - Hewlett-Packard)
HP MediaSmart Live TV (HKLM-x32\...\InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}) (Version: 3.0.1924 - Hewlett-Packard)
HP MediaSmart Movie Themes (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.0.3102 - Hewlett-Packard)
HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.0.3123 - Hewlett-Packard)
HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.0.30.1 - Hewlett-Packard)
HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.1.1208 - Hewlett-Packard)
HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.16.1 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}) (Version: 1.2.3220.3079 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{C43602FE-988C-47BA-9F9F-B95FDDAFB624}) (Version: 11.50.0031 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard)
HP User Guides 0153 (HKLM-x32\...\{2EBA8202-FBD5-4004-81EA-BDC38C054CE2}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wireless Assistant (HKLM-x32\...\{F9A43C0C-F274-4EC0-B02E-202C15C09C00}) (Version: 3.50.12.1 - Hewlett-Packard)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Indeo® software (HKLM-x32\...\Indeo® software) (Version:  - )
Intel(R) PROSet/Wireless WiFi-Software (HKLM\...\{D75AEB5B-FA18-4BD4-9EED-54CA46DB5AE8}) (Version: 13.04.0000 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden
Internet-TV für Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation)
ISO Workshop 6.0 (HKLM-x32\...\ISO Workshop_is1) (Version:  - Glorylogic)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.50.2 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden
KacoViso (HKLM-x32\...\{9D874610-1444-412E-B379-FD8107FE768B}) (Version: 2.3.0.0 - KACO new energy GmbH )
KacoViso (HKLM-x32\...\{B34110B2-FA4C-40DA-B546-C85B0E2CD114}) (Version: 2.1.5 - Kaco)
KeePass Password Safe 2.30 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.30 - Dominik Reichl)
KhalInstallWrapper (Version: 4.20.131 - Logitech) Hidden
Logitech SetPoint (HKLM-x32\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 4.20 - Logitech)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
MAGIX Page & Layout Designer 11 (HKLM-x32\...\MX.{72EF1C8F-D57A-493D-A8FF-8C966DD46613}) (Version: 11.2.2.40388 - MAGIX Software GmbH)
MAGIX Page & Layout Designer 11 (Version: 11.2.2.40388 - MAGIX Software GmbH) Hidden
MAGIX Retten Sie Ihre Videokassetten! Version 5 (HKLM-x32\...\MAGIX_MSI_Video_easy_4_RYVT) (Version: 3.0.1.28 - MAGIX AG)
MAGIX Retten Sie Ihre Videokassetten! Version 5 (x32 Version: 3.0.1.28 - MAGIX AG) Hidden
MAGIX Screenshare (HKLM-x32\...\{31D888B7-9DA0-4219-9371-9A0037A097C6}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare (HKLM-x32\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (HKLM-x32\...\MAGIX Speed burnR D) (Version: 6.0.1.4 - MAGIX AG)
MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{49209082-E4F9-410D-B74D-E6506977F30B}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX USB-Videowandler 2 (HKLM-x32\...\{8D85149E-D7A0-4920-BEBF-B6CEDFED8D1E}) (Version: 1.02.0000 - Ihr Firmenname)
MAGIX USB-Videowandler 2 (HKLM-x32\...\InstallShield_{91065458-A5CF-474C-9160-B44B974B3C25}) (Version: 1.00.0000 - MAGIX)
MAGIX USB-Videowandler 2 (x32 Version: 1.00.0000 - MAGIX) Hidden
MAGIX Video deluxe 16 Premium 9.0.0.54 (D) (HKLM-x32\...\MAGIX Video deluxe 16 Premium D) (Version: 9.0.0.54 - MAGIX AG)
MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{85061988-E889-4A37-9CB7-4F695AC35544}) (Version: 13.0.2.8 - MAGIX AG)
MAGIX Video deluxe 2014 Plus (Version: 13.0.2.8 - MAGIX AG) Hidden
MAGIX Web Designer MX Premium (HKLM-x32\...\MAGIX_{739FE2DC-0C7E-4A1C-AC6E-46348169E27E}) (Version: 8.0.2.21761 - MAGIX AG)
MAGIX Web Designer MX Premium (Version: 8.0.2.21761 - MAGIX AG) Hidden
MAGIX Xtreme Foto Designer 6 (HKLM-x32\...\MAGIX Xtreme Foto Designer 6 D) (Version: 6.0.29.0 - MAGIX AG)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Media Go Video Playback Engine 1.88.103.12040 (HKLM-x32\...\{7FA1DAFD-AF55-E915-FD92-F269443A2ADF}) (Version: 1.88.103.12040 - Sony)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Office Home and Business 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 43.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.2 (x86 de)) (Version: 43.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
myBet Poker (HKLM-x32\...\myBet Poker) (Version:  - )
myBet Poker (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\myBet Poker) (Version:  - )
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
NVIDIA PhysX v8.10.29 (HKLM-x32\...\{D56B0E27-4A3E-46C9-B5C1-D93D580C099C}) (Version: 8.10.29 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Page & Layout Designer Update (Version: 11.2.3.40790 - MAGIX Software GmbH) Hidden
Paragon Partition Manager™ 11 Professional (HKLM-x32\...\{A35001F0-F1E4-11DD-A38B-005056C00008}) (Version: 90.00.0003 - Paragon Software)
Parrot Software Update Tool (HKLM-x32\...\Parrot Flash Update Wizard) (Version:  - )
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PowerRecover (x32 Version: 5.5.1923 - CyberLink Corp.) Hidden
PriMus Free 1.1 (Build 10843) (HKLM-x32\...\PriMus Free_is1) (Version: 1.1.0.10843 - Columbus Soft)
proDAD Mercalli 1.0 (HKLM-x32\...\proDAD-Mercalli-1.0) (Version:  - )
QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.2.1 r2386 - )
Ravensburger tiptoi (HKLM-x32\...\Ravensburger tiptoi) (Version:  - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek)
Recuva (HKLM\...\Recuva) (Version: 1.43 - Piriform)
RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version:  - )
RemoteComms External Disk Access (HKLM-x32\...\{04FCD5DE-1662-4F99-BDA9-C57212113EF2}) (Version: 1.25.0003 - PLX Technology)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SanDiskSecureAccess_Manager.exe (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\@@__UNKNOWN__@@SanDiskSecureAccess_Manager.exe) (Version: 1.0.0 - DMAILER)
Scribus 1.4.4 (64bit) (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SlimDrivers (HKLM-x32\...\{87E60394-2E62-400D-99C0-C1BEA2F9A439}) (Version: 2.2.14197 - SlimWare Utilities, Inc.)
Soluto (HKLM\...\{037C627B-384E-450E-866C-95BAB3CDEA17}) (Version: 1.3.1494.0 - Soluto)
Spyware Terminator (HKLM-x32\...\Spyware Terminator_is1) (Version: 2.8.0.18 - Crawler Inc.)
Steuer 2012 (HKLM-x32\...\{01159E8A-44F7-4885-A7F9-872CE4D74063}) (Version: 20.00.8137 - Buhl Data Service GmbH)
Steuer 2013 (HKLM-x32\...\{05AEF487-8926-48A9-B5BA-9BED72BC6B1C}) (Version: 21.00.8480 - Buhl Data Service GmbH)
Steuer 2014 (HKLM-x32\...\{2EE860C7-4551-479F-AF01-328B8AA46051}) (Version: 22.00.8811 - Buhl Data Service GmbH)
StreamTransport version: 1.1.6.2 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version:  - )
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Gesture Suite featuring SYNAPTICS | Scrybe (HKLM-x32\...\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}) (Version: 1.6.5.17120 - Synaptics Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
TELL ME MORE (HKLM-x32\...\TMM90) (Version:  - )
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 10.0.4200.97 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.2160.11 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden
Unity Web Player (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
VSDC Free Video Editor Version 3.3.0.394 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 3.3.0.394 - Flash-Integro LLC)
Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.4.0.0 - Azureus Software, Inc.)
WD Drive Utilities (HKLM-x32\...\{C093AD5D-29E9-4777-AAAC-28C02FCC2A51}) (Version: 1.0.4.11 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{507B1304-194A-4204-A9D9-9BAAF51EF760}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{8A7B24E8-864E-4794-95C4-17644D0991AA}) (Version: 1.0.6.3 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{A7C403DA-B8D9-4CA0-93D9-6C7F00772240}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{ba99df5b-3e46-419e-81e2-544352772fda}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.)
Web Designer Premium MX Update (Version: 8.1.4.24749 - MAGIX AG) Hidden
Web Designer Premium MX Update (Version: 8.1.5.31094 - MAGIX AG) Hidden
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Driver Package - Cambridge Silicon Radio Ltd. (CSRBC) USB  (04/21/2011 01.0.0.0) (HKLM\...\BEA7B05370C19B9C86893BB484FD6B9CC52B0CD8) (Version: 04/21/2011 01.0.0.0 - Cambridge Silicon Radio Ltd.)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Live Anmelde-Assistent (HKLM-x32\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8064.0206 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
Wondershare Filmora(Build 6.8.1) (HKLM-x32\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
XviD MPEG4 Video Codec (remove only) (HKLM-x32\...\XviD MPEG4 Video Codec) (Version:  - )
Youku Downloader (xmlbar) (nur entfernen) (HKLM-x32\...\Xmlbar YoukuDownloader) (Version:  - )

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {045E10BA-2180-4CAD-BE93-C57695CDB4AF} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2011-08-15] (SlimWare Utilities, Inc.)
Task: {06DDAB1C-A9B0-4233-AD4A-9714FAC58293} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2014-12-02] (Microsoft)
Task: {0754560E-352E-4440-828F-5C0DD743751A} - System32\Tasks\CapUninst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe [2009-07-24] (CL)
Task: {0A5DE71C-6CC7-4132-8642-DE8FDF084929} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09] (Oracle Corporation)
Task: {111BCB09-5A3A-41E6-8091-507CD9430C3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard)
Task: {26E5C788-0C67-4826-A062-97DED9F10166} - System32\Tasks\CapSchedInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe [2009-07-24] (CL)
Task: {2D56EEEE-26A0-46DF-B413-1D3CE199C7C3} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender\bdproductdata.exe [2015-07-29] (Bitdefender)
Task: {31CF6315-5D02-47EF-96EA-B64999B55273} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-07-23] (CyberLink)
Task: {34316C50-305D-41F4-BA48-B585821B76C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.)
Task: {3AAD950A-BD91-4D39-A9F5-E9BDEF7213E7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2012-09-27] (Hewlett-Packard Company)
Task: {3D7E7FE8-CD48-4E47-831B-B1FB839665EE} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {41001F0E-CE0D-42DC-A287-0139252339EA} - System32\Tasks\{752DFCA0-ED28-44AD-87EE-69C977B3D27A} => pcalua.exe -a C:\Users\Home\Downloads\im3stp03.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {5169FC5F-F639-4B35-8619-8F930B314AD3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {5496EA6A-D5B0-4B53-AC15-10FE00BDB8E9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6A0E2448-B98A-4236-BB75-E849ABAEF03A} - System32\Tasks\CapSvcInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe [2009-07-24] (CL)
Task: {6E3E742C-E8A4-4A3C-97C9-7218152143A1} - System32\Tasks\{217E48E3-275F-49B5-A2E9-74B488C70DCF} => pcalua.exe -a "C:\Program Files (x86)\MAGIX\Video_deluxe_16_Premium\unwise.exe"
Task: {76BC6246-6003-4080-8B9E-A373848B4A9E} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [2009-07-23] (CyberLink Corp.)
Task: {85D7737D-3F15-4558-B2D3-908BDF7DED1F} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {86DC2FFE-238A-470A-81E3-04BAAD9C65F0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {92463B00-1FE5-417F-B89A-393662C1FDAF} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe
Task: {9C78DE40-3602-407B-8909-420D2939C191} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {9CDC2E3E-0C0C-446F-AE9D-6EDD35609373} - System32\Tasks\{070A97D9-16E9-488C-B625-9FEBA1B5A458} => pcalua.exe -a "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {A1B285B5-9BD8-4862-81BC-91706A2089ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard)
Task: {BFA0B1A9-7428-4972-8D29-A0527369CB6A} - \Binkiland cini -> Keine Datei <==== ACHTUNG
Task: {C0C404B2-08F6-4EA9-B6DA-80531A854F44} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.)
Task: {C873030E-708B-4409-BD74-68A7A27634D9} - System32\Tasks\Google Update => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.)
Task: {CFD66453-3FDF-4F51-A0B9-C34317E22FC4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.)
Task: {D04B8C5C-C79F-4AA1-A96B-B8F51DCC4CD6} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.)
Task: {D1198108-4694-4BAC-B4C0-320192E98CA1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {E1CE8085-686D-42F0-A130-A4C45C50F1D6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.)
Task: {EE990A70-EF3E-483F-8B79-397011620C5E} - System32\Tasks\TVAgent => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [2009-07-24] (CyberLink Corp.)
Task: {F32EF2A0-7535-4703-88F8-27871EA02D08} - System32\Tasks\MUI StartMenu Application => C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [2008-11-14] (CyberLink Corp.)
Task: {F6254647-B40C-457B-B576-4CFE3DC30071} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28] (Adobe Systems Incorporated)
Task: {FC5B39F5-D584-47ED-8686-C5DB6678275C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-11-13 23:11 - 2014-11-13 23:11 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2014-11-13 23:11 - 2014-11-13 23:11 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui
2014-11-13 23:11 - 2014-11-13 23:11 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2015-12-03 21:05 - 2015-12-03 21:05 - 00876888 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpbr.mdl
2015-12-03 21:05 - 2015-12-03 21:05 - 00742976 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpdsp.mdl
2015-12-03 21:05 - 2015-12-03 21:05 - 02803536 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpph.mdl
2015-12-03 21:05 - 2015-12-03 21:05 - 01415584 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttprbl.mdl
2010-10-19 12:39 - 2010-10-19 12:39 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2008-10-24 15:35 - 2008-10-24 15:35 - 00128296 _____ () C:\Program Files (x86)\AAVUpdateManager\aavus.exe
2015-06-12 18:02 - 2015-06-12 18:02 - 03672064 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\PCGPreCompiled\0054b581ad9fcca18b54c7b4c1e4a8ef\PCGPreCompiled.ni.dll
2015-06-12 18:03 - 2015-06-12 18:03 - 00267264 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\PCGAppControlPlugin#\9283595dae0849d5cca5f0ee2ca2fbec\PCGAppControlPluginLoader.ni.dll
2013-11-14 13:26 - 2013-11-14 13:26 - 00090688 _____ () c:\program files\soluto\PCGDllExportInspector.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2009-09-28 10:00 - 2009-01-12 07:15 - 00071096 _____ () C:\Windows\SysWOW64\NMSAccess32.exe
2010-06-24 16:04 - 2010-06-24 16:04 - 00394544 ____R () C:\Program Files\Iomega\QuikProtect\QpMonitor.exe
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-03-24 14:28 - 2015-03-24 14:28 - 00036544 _____ () C:\Program Files\Rainmeter\Rainmeter.exe
2015-03-24 14:28 - 2015-03-24 14:28 - 00775872 _____ () C:\Program Files\Rainmeter\Rainmeter.dll
2015-03-24 14:27 - 2015-03-24 14:27 - 00058368 _____ () C:\Program Files\Rainmeter\Plugins\WebParser.DLL
2015-11-16 17:55 - 2015-11-16 17:55 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-06-12 18:04 - 2015-06-12 18:04 - 00068096 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\SignalRWrapper\8c1ffb2a0dcd72467ea977a4a25eea8d\SignalRWrapper.ni.dll
2009-07-23 11:37 - 2009-07-23 11:37 - 00931112 ____N () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
2014-04-27 17:32 - 2014-11-13 23:09 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll
2015-09-04 10:41 - 2015-09-04 10:40 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll
2013-10-10 12:02 - 2013-10-10 12:02 - 00013120 _____ () C:\Program Files (x86)\Common Files\Acronis\TibMounter\icudt38.dll
2014-02-04 18:25 - 2014-02-04 18:25 - 00036672 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll
2014-02-04 18:25 - 2014-02-04 18:25 - 00028992 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-12-11 21:01 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-11 21:01 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-11 21:01 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-11 21:01 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00486704 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2015-10-03 11:33 - 2015-10-31 02:01 - 00019920 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll
2015-08-15 08:55 - 2015-10-31 02:00 - 00786904 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-10-03 11:33 - 2015-10-31 02:00 - 00063448 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-10-03 11:33 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll
2015-12-15 22:36 - 2014-09-11 18:09 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-12-15 22:36 - 2014-05-19 17:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2014-10-17 04:08 - 2014-10-17 04:08 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\098e8bf088c2956ba306dfd643107a7e\IsdiInterop.ni.dll
2011-08-31 23:38 - 2010-11-05 22:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-02-04 18:28 - 2014-02-04 18:28 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2015-12-17 12:31 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 12:31 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Temp:0888F409
AlternateDataStreams: C:\ProgramData\Temp:11EFE63D
AlternateDataStreams: C:\ProgramData\Temp:3969ACF7
AlternateDataStreams: C:\ProgramData\Temp:3991CD7D
AlternateDataStreams: C:\ProgramData\Temp:4A1628E5
AlternateDataStreams: C:\ProgramData\Temp:5C4A588B
AlternateDataStreams: C:\ProgramData\Temp:99AC3203
AlternateDataStreams: C:\ProgramData\Temp:A4E7D25F
AlternateDataStreams: C:\ProgramData\Temp:A5FC8FA1
AlternateDataStreams: C:\ProgramData\Temp:C64BF02A
AlternateDataStreams: C:\ProgramData\Temp:EC0279DC
AlternateDataStreams: C:\ProgramData\Temp:FD000392
AlternateDataStreams: C:\Users\Home\Downloads\GoodSync-Setup.exe:BDU

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\45303408.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\45303408.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Home\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Electronic Arts\EADM\EADMUI\EADMUI.exe"
MSCONFIG\startupreg: TrayServer => C:\PROGRA~2\MAGIX\VIDEO_~1\TrayServer.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{B368F941-0CB4-4EF3-A560-ECE92A7CCA92}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{C0F1CDEB-8A20-49A1-B35F-5DAF6B0806A4}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe
FirewallRules: [{8A169D17-0EB7-49FF-931C-5C43E2073505}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{DE33A289-732E-4654-943F-7A45743D6E43}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe
FirewallRules: [UDP Query User{58171B02-7028-4BF1-9160-E1F593897D8F}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe
FirewallRules: [TCP Query User{A23EF6E2-8FE1-490B-B182-4B1D855313A1}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe
FirewallRules: [UDP Query User{747DCA01-6FAE-4DD4-87BD-04DEE5969E99}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe
FirewallRules: [{0D44D73D-B6F6-479E-AD4A-A863E07010D2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{10E3F261-C815-4590-A29E-EC4173FB564B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{0DB76952-E1CC-4093-8D00-69A1B877A183}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{79A45DF0-A4C0-4C5C-8D73-5633069B5AB1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{87DD92E8-3A51-4F11-A27A-D7F0E392A084}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{3F29078F-E968-4BBF-914A-C14E9E9053AB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{53F35B89-2E99-40C6-8489-81A8CFBDE47B}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{6857BD51-C109-4A14-BE0E-236E4BADABAA}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [TCP Query User{1B913C34-2DEA-465C-B4AF-F0478C3604D2}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{6E9D74FC-F1A2-400E-9926-98A4F719EE31}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [{CB1292DF-547A-4225-B447-A7CF9A1AF843}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{DAF16138-C0FB-4179-A6A8-5DF3FF390167}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe
FirewallRules: [UDP Query User{82BF5BFC-EC69-4092-98FB-B299CDAD059E}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe
FirewallRules: [{73A0BC91-D30C-4791-A427-715EA9C500AA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{86796E47-EB99-4916-BACB-2967A65E14EB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{EFAEE846-1759-4F70-A6FF-86B7449CB4A2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{48A53461-FCE7-4A5D-ACD6-387272CE8B2C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{469A731D-13DA-4D3E-BB89-207BAE65F4C6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{D88A371D-7671-42B9-87BB-F72D52A80278}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{058DE289-ACB7-491D-B16B-7F684C3A3F3D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{F125FF56-47A7-405C-8727-338099D9B436}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{ED6F9988-0AD6-441A-8F5F-BCD0BFC8236B}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{9E2A97ED-6B26-4F70-BE14-218E65B14490}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{D4CB0E40-90B9-489A-831E-236EA6BE6DC1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{293F9E14-6E7E-4DC1-8FBA-CEE79D5BCBB2}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{76CEB911-B258-459D-963A-F8B71E4A8AB6}] => (Allow) LPort=54010
FirewallRules: [{7D213076-29F2-40D4-92E9-CC4274B63F77}] => (Allow) LPort=49165
FirewallRules: [{A74E5788-619C-4AB8-B62E-DBB7CFB9B976}] => (Allow) LPort=5000
FirewallRules: [TCP Query User{C4E47B49-F94E-4559-BB5D-1C96688348B0}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe
FirewallRules: [UDP Query User{FE0B45D0-DE05-474F-8531-831A5F53C150}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe
FirewallRules: [TCP Query User{CE0F1D27-01E9-45EB-A33E-839D40D9B075}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{3D17EF45-2CEF-4683-88C5-4B626DB2AC8E}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{A1CDAA7C-8504-4A92-B537-99523681F143}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{923B94FB-9D8E-4E25-BF03-86BC271C5D6E}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [TCP Query User{FFDC21D7-07DA-4596-96F6-2606D1EE5523}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe
FirewallRules: [UDP Query User{14F53A11-7ED1-4DE0-A7D2-97B462A28FBD}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe
FirewallRules: [TCP Query User{55946F33-1BFB-4145-8AB1-5D1F22F492E7}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe
FirewallRules: [UDP Query User{C090514C-6057-4356-8FF6-C331D79D3331}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe
FirewallRules: [{970D3085-A7A4-4F79-B343-049A8BCA0A5C}] => (Allow) F:\fsetup.exe
FirewallRules: [{2B7218D5-2AD3-4B90-A65B-D5408829DE19}] => (Allow) F:\fsetup.exe
FirewallRules: [TCP Query User{542118CF-7A70-4724-8A79-A6EB75B4FFED}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe
FirewallRules: [UDP Query User{D39C71E1-53A0-431D-AB76-ACC2297B9F8C}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe
FirewallRules: [TCP Query User{10CE6C0D-E841-420D-90D5-DC3DAC394401}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe
FirewallRules: [UDP Query User{04E6753E-4B85-4D1B-ABA4-A9478F312164}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe
FirewallRules: [{AA815EF5-355D-4D28-A008-E21B73350E82}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
FirewallRules: [{CB407730-B925-456F-AA28-CE95A904668F}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
FirewallRules: [{4BE75D74-AF9E-40FE-9152-7E9E2059F0EC}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{FC013570-8818-49C7-B0EE-3CCB7A4C0201}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{26DEB5FB-BE8C-4DC4-A0B5-048BFF82B0AC}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{365B34C2-C733-431E-8642-4A93CCCBD74A}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{4BD8A3E4-BF87-42FC-A8B4-76310CBF3534}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{049AC890-1243-4FE2-8EF7-84F0BA451EAD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7E20B448-3ED1-4F81-A122-E8A94D23D474}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [UDP Query User{DCEE4AC1-9E2A-42F7-AD9E-7E1457569345}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [{317403D4-D673-41E0-9FA7-D691E575DFE6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FD9A778E-8629-4836-8AC3-C1F8257A39E1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C65A4598-15FC-4B7B-8B8E-0707C30116A1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{AA9F69DB-EB14-4AE5-B989-0FEACAB37859}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A756DD02-76B3-411A-A389-9540F12347CA}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{F04E674E-45C2-4495-A8B5-44D0C60BD685}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{9C4BF95C-CB89-4999-BB0D-61D4F7BEA3E3}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{37AF3EA8-2C25-476F-BB39-27CC871F71FA}] => (Allow) C:\Program Files\Soluto\SolutoRemoteDirect.exe
FirewallRules: [{B68280D6-21A4-4F84-9120-CDE12F4387B5}] => (Allow) C:\Program Files\Soluto\Soluto.exe
FirewallRules: [{4DD06769-4B02-421C-B33F-3A814CDCF202}] => (Allow) C:\Program Files\Soluto\SolutoCleanup.exe
FirewallRules: [{8789811D-F810-43A9-A24F-76E107F77FCA}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe
FirewallRules: [{2F5EA5E9-9EB8-469B-AE8F-25800A72831C}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe
FirewallRules: [{8B3A6641-9A02-4BBF-A3E3-E471BE7F2A9C}] => (Allow) C:\Program Files\Soluto\SolutoService.exe
FirewallRules: [{E7147E98-EB39-4389-AA34-1C8F13036CEA}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PFInstOnline.exe
FirewallRules: [{818B516A-0465-4991-834F-18450FBFDB0E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{D93A30B2-2F50-4501-9A99-8163D5CEE919}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{36F8F835-FD92-413A-8422-C8B288FDFEFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{523F29E1-4B2C-4CFF-B172-219BBA061846}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [{485D813E-61CB-4ACC-A0E5-4605B70CD791}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{06AFD3D5-E41F-43FA-93A1-D3BF6A35DF9E}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe
FirewallRules: [{99EFE046-3B35-4BA0-AF8D-3343067636AD}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe
FirewallRules: [{F29603EC-DA84-4DA0-9087-AEEA9BB682BE}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe
FirewallRules: [{74F4A7EF-37C3-48B6-8186-D35FCDBFEDE3}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe
FirewallRules: [{83EBD3A4-87A8-4B2E-95C0-17FBDAA35500}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{768B6FD9-DE8E-4019-94F4-317AC81ECE6C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0EB65856-E6E3-4B5B-953C-375C0CC1F35E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{91D760C6-8120-489B-A05B-B1EC38BC73B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7C818C20-03B9-42CC-89EE-075253F470D7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Wiederherstellungspunkte =========================

22-12-2015 15:13:31 Geplanter Prüfpunkt
30-12-2015 18:14:08 Revo Uninstaller's restore point - QuickStores-Toolbar 1.0.0
30-12-2015 18:22:33 Revo Uninstaller's restore point - Vuze Remote Toolbar
30-12-2015 18:43:58 Revo Uninstaller's restore point - WSE_Binkiland

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Unknown Device
Description: Unknown Device
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service: 
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. 

Name: FKZAZUJ 52JWDUFO96 SCSI CdRom Device
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/30/2015 07:55:55 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT)
Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten.

Error: (12/30/2015 07:09:32 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT)
Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten.

Error: (12/30/2015 06:42:21 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\revouninstaller.exe Files (x86)\VS Revo Group\Revo Uninstaller\revouninstaller.exe"; Beschreibung = Revo Uninstaller's restore point - Windows Searchqu Toolbar; Fehler = 0x81000101).

Error: (12/30/2015 05:09:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 55512191

Error: (12/30/2015 05:09:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 55512191

Error: (12/30/2015 05:09:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/29/2015 11:17:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT)
Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten.

Error: (12/29/2015 10:25:15 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT)
Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten.

Error: (12/29/2015 09:37:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT)
Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten.

Error: (12/29/2015 07:17:11 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 18704


Systemfehler:
=============
Error: (12/30/2015 07:57:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Soluto PCGenome Core Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (12/30/2015 07:57:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Soluto PCGenome Core Service erreicht.

Error: (12/30/2015 07:52:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "PnP-X-IP-Busenumerator" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (12/30/2015 07:52:29 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "HP Network Devices Support" wurde mit folgendem Fehler beendet: 
%%126

Error: (12/30/2015 07:50:24 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
UimBus
Uim_IM

Error: (12/30/2015 07:50:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Soluto PCGenome Core Service" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1053

Error: (12/30/2015 07:50:15 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Soluto PCGenome Core Service erreicht.

Error: (12/30/2015 07:46:03 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (12/30/2015 07:07:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "PnP-X-IP-Busenumerator" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (12/30/2015 07:06:54 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "HP Network Devices Support" wurde mit folgendem Fehler beendet: 
%%126


CodeIntegrity:
===================================
  Date: 2015-12-30 19:57:57.601
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-30 19:57:32.882
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-30 19:53:55.342
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-30 19:52:55.307
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-30 19:22:24.088
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-30 19:21:38.563
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-30 19:13:18.544
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-30 19:11:51.080
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-30 19:10:42.551
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-30 19:10:39.780
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz
Prozentuale Nutzung des RAM: 71%
Installierter physikalischer RAM: 4063.19 MB
Verfügbarer physikalischer RAM: 1156.02 MB
Summe virtueller Speicher: 8124.58 MB
Verfügbarer virtueller Speicher: 4511.57 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:151.36 GB) (Free:32.89 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (Büro) (Fixed) (Total:48.83 GB) (Free:6.32 GB) NTFS
Drive e: (Z***) (Fixed) (Total:12.94 GB) (Free:3.74 GB) NTFS
Drive g: (Fotos) (Fixed) (Total:65.51 GB) (Free:14.11 GB) NTFS
Drive h: (Videoprojekte) (Fixed) (Total:41.01 GB) (Free:19.68 GB) NTFS
Drive p: (Videoschnitt) (Fixed) (Total:43.01 GB) (Free:7.79 GB) NTFS
Drive q: (Container) (Fixed) (Total:19.24 GB) (Free:4.42 GB) NTFS
Drive y: (Excelprojekte) (Fixed) (Total:7.81 GB) (Free:7.03 GB) NTFS
Drive z: (Sonstiges) (Fixed) (Total:206.24 GB) (Free:76.85 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 44854109)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=151.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=133.6 GB) - (Type=05)
Partition 4: (Not Active) - (Size=12.9 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 4BBD1113)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=42)

==================== Ende von Addition.txt ============================

Damit wäre alles da was du brauchst hoffe ich zumindest...jetzt bin ich mal gespannt was nun raus kommt

Hallo Rafael,

mich würde jetzt mal interessieren wie wir weiter verfahren werden.
Morgen ist ja bekanntlich Silvester. Ich denke mal das wir dann am 2 oder 3 weiter machen können/wollen oder... bzw heute abend noch was zeitlich möglich ist.

Was ist dein Vorschlag?

burningice · 30.12.2015, 21:10

Wir schreiben einfach wenn es uns ausgeht

Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument

Code:

ATTFilter

HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  Keine Datei
SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = 
SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
FF SelectedSearchEngine: Binkiland
FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei]
CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEt
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei
CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei
CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei
CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei
CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei
S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X]
C:\Users\Home\DMOrganizer.dat
AlternateDataStreams: C:\ProgramData\Temp:0888F409
AlternateDataStreams: C:\ProgramData\Temp:11EFE63D
AlternateDataStreams: C:\ProgramData\Temp:3969ACF7
AlternateDataStreams: C:\ProgramData\Temp:3991CD7D
AlternateDataStreams: C:\ProgramData\Temp:4A1628E5
AlternateDataStreams: C:\ProgramData\Temp:5C4A588B
AlternateDataStreams: C:\ProgramData\Temp:99AC3203
AlternateDataStreams: C:\ProgramData\Temp:A4E7D25F
AlternateDataStreams: C:\ProgramData\Temp:A5FC8FA1
AlternateDataStreams: C:\ProgramData\Temp:C64BF02A
AlternateDataStreams: C:\ProgramData\Temp:EC0279DC
AlternateDataStreams: C:\ProgramData\Temp:FD000392
Task: {BFA0B1A9-7428-4972-8D29-A0527369CB6A} - \Binkiland cini -> Keine Datei <==== ACHTUNG
emptytemp:

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).

Starte nun FRST erneut und klicke den Entfernen Button.
Das Tool erstellt eine Fixlog.txt.
Poste mir deren Inhalt.

Schritt 2
Öffne wieder FRST und kopiere das folgende in das weiße Feld:

Code:

ATTFilter

binkiland

Drücke dann auf dem Button "Registry-Suche".

Es wird eine Search.txt erstellt werden, bitte poste diese wieder hier.

Schritt 3

ESET Online Scanner

Hier findest du eine bebilderte Anleitung zu ESET Online Scanner
Lade und starte Eset Online Scanner
Setze einen Haken bei Ja, ich bin mit den Nutzungsbedingungen einverstanden und klicke auf Starten.
Aktiviere die "Erkennung von eventuell unerwünschten Anwendungen" und wähle folgende Einstellungen.
Klicke auf Starten.
Die Signaturen werden heruntergeladen, der Scan beginnt automatisch.
Klicke am Ende des Suchlaufs auf Fertig stellen.
Schließe das Fenster von ESET.
Explorer öffnen.
C:\Programme\Eset\EsetOnlineScanner\log.txt (bei 64 Bit auch C:\Programme (x86)\Eset\EsetOnlineScanner\log.txt) suchen und mit Deinem Editor öffnen (bebildert).
Logfile hier posten.
Deinstallation: Systemsteuerung => Software / Programme deinstallieren => Eset Online Scanner V3 entfernen.
Manuell folgenden Ordner löschen und Papierkorb leeren => C:\Programme\Eset

Schritt 4
Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.

Hast du noch irgendwelche Probleme mit deinem Rechner? Wie verhält sich deine Auslastung?

Bitte poste in deiner nächsten Antwort also:

Search.txt
Fixlog.txt
Frst.txt
Addition.txt

HB-Männchen · 30.12.2015, 21:15

Jetzt muss ich zuerst mal was fragen. Scheinbar dreht es sich ja jetzt um dieses komische binkiland.

Was ist das??

Ah und noch was. Was macht jetzt diese notepaddatei?

burningice · 30.12.2015, 21:28

Binkiland ist einfach ein relativ hartnäckiges unerwünschtes Programm, das du auf deinem PC hattest/hast. darum mache ich danach eine extra Suche.

Und die Textdatei ist eine Liste von Anweisungen für FRST

HB-Männchen · 30.12.2015, 21:34

kannst du irgendwo sehen wie lange dieses Binkiland auf meinem Rechner schon ist?

hier schon mal die Fixlog.txt

Code:

ATTFilter

Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015
durchgeführt von Home (2015-12-30 21:32:51) Run:1
Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 7
Geladene Profile: Home (Verfügbare Profile: Home)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Keine Datei SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL =  SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 FF SelectedSearchEngine: Binkiland FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei] CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEt CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X] C:\Users\Home\DMOrganizer.dat AlternateDataStreams: C:\ProgramData\Temp:0888F409 AlternateDataStreams: C:\ProgramData\Temp:11EFE63D AlternateDataStreams: C:\ProgramData\Temp:3969ACF7 AlternateDataStreams: C:\ProgramData\Temp:3991CD7D AlternateDataStreams: C:\ProgramData\Temp:4A1628E5 AlternateDataStreams: C:\ProgramData\Temp:5C4A588B AlternateDataStreams: C:\ProgramData\Temp:99AC3203 AlternateDataStreams: C:\ProgramData\Temp:A4E7D25F AlternateDataStreams: C:\ProgramData\Temp:A5FC8FA1 AlternateDataStreams: C:\ProgramData\Temp:C64BF02A AlternateDataStreams: C:\ProgramData\Temp:EC0279DC AlternateDataStreams: C:\ProgramData\Temp:FD000392 Task: {BFA0B1A9-7428-4972-8D29-A0527369CB6A} - \Binkiland cini -> Keine Datei <==== ACHTUNG emptytemp:
*****************

"HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Keine Datei SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL =  SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 FF SelectedSearchEngine: Binkiland FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei] CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEt CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X] C:\Users\Home\DMOrganizer.dat C:\ProgramData\Temp" => "HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Keine Datei SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL =  SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 FF SelectedSearchEngine: Binkiland FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei] CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEt CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X] C:\Users\Home\DMOrganizer.dat :0888F409 AlternateDataStreams: C:\ProgramData\Temp:11EFE63D AlternateDataStreams: C:\ProgramData\Temp:3969ACF7 AlternateDataStreams: C:\ProgramData\Temp:3991CD7D AlternateDataStreams: C:\ProgramData\Temp:4A1628E5 AlternateDataStreams: C:\ProgramData\Temp:5C4A588B AlternateDataStreams: C:\ProgramData\Temp:99AC3203 AlternateDataStreams: C:\ProgramData\Temp:A4E7D25F AlternateDataStreams: C:\ProgramData\Temp:A5FC8FA1 AlternateDataStreams: C:\ProgramData\Temp:C64BF02A AlternateDataStreams: C:\ProgramData\Temp:EC0279DC AlternateDataStreams: C:\ProgramData\Temp:FD000392 Task: {BFA0B1A9-7428-4972-8D29-A0527369CB6A} - \Binkiland cini -> Keine Datei <==== ACHTUNG emptytemp:" ADS nicht gefunden.

==== Ende von Fixlog 21:32:52 ====

burningice · 30.12.2015, 21:38

Der Fix hat nicht funktioniert.

Es muss eine Zeile unter der nächsten stehen und nicht alle nebeneinander.

Manchmal hilft es, bei meiner Codebox nicht auf "Aufklappen" zu drücken sondern direkt auf "Alles auswählen" und dann kopieren.

HB-Männchen · 30.12.2015, 23:49

so Fixlog.txt zum Zweiten.

Aber was ich jetzt festgestellt habe das er speziell im Chrome viele Daten gelöscht hat. Musste das so sein???

Code:

ATTFilter

Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015
durchgeführt von Home (2015-12-30 21:42:11) Run:2
Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 7
Geladene Profile: Home (Verfügbare Profile: Home)
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  Keine Datei
SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = 
SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de
SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933
FF SelectedSearchEngine: Binkiland
FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei]
CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEt
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei
CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei
CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei
CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei
CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei
S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X]
C:\Users\Home\DMOrganizer.dat
AlternateDataStreams: C:\ProgramData\Temp:0888F409
AlternateDataStreams: C:\ProgramData\Temp:11EFE63D
AlternateDataStreams: C:\ProgramData\Temp:3969ACF7
AlternateDataStreams: C:\ProgramData\Temp:3991CD7D
AlternateDataStreams: C:\ProgramData\Temp:4A1628E5
AlternateDataStreams: C:\ProgramData\Temp:5C4A588B
AlternateDataStreams: C:\ProgramData\Temp:99AC3203
AlternateDataStreams: C:\ProgramData\Temp:A4E7D25F
AlternateDataStreams: C:\ProgramData\Temp:A5FC8FA1
AlternateDataStreams: C:\ProgramData\Temp:C64BF02A
AlternateDataStreams: C:\ProgramData\Temp:EC0279DC
AlternateDataStreams: C:\ProgramData\Temp:FD000392
Task: {BFA0B1A9-7428-4972-8D29-A0527369CB6A} - \Binkiland cini -> Keine Datei <==== ACHTUNG
emptytemp:
         
*****************

HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\CDRAutoRun => Wert erfolgreich entfernt
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoRecentDocsNetHood => Wert erfolgreich entfernt
"HKU\S-1-5-21-2055331987-1518689308-177053510-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0743d3d7-f369-11e0-a486-00247eed28c3}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{0743d3d7-f369-11e0-a486-00247eed28c3} => Schlüssel nicht gefunden. 
"HKU\S-1-5-21-2055331987-1518689308-177053510-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8e21365f-6b7d-11e0-9ee4-00247eed28c3}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{8e21365f-6b7d-11e0-9ee4-00247eed28c3} => Schlüssel nicht gefunden. 
"HKU\S-1-5-21-2055331987-1518689308-177053510-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f7c81a47-efb9-11de-a798-806e6f6e6963}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{f7c81a47-efb9-11de-a798-806e6f6e6963} => Schlüssel nicht gefunden. 
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Schlüssel nicht gefunden. 
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wert erfolgreich wiederhergestellt
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF} => Schlüssel nicht gefunden. 
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D50E2419-E5E1-4F12-80CA-4F531FC04860}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{D50E2419-E5E1-4F12-80CA-4F531FC04860} => Schlüssel nicht gefunden. 
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF}" => Schlüssel erfolgreich entfernt
HKCR\Wow6432Node\CLSID\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF} => Schlüssel nicht gefunden. 
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2B3C2340-94E2-4C61-B6DF-044D73A4A925}" => Schlüssel erfolgreich entfernt
HKCR\Wow6432Node\CLSID\{2B3C2340-94E2-4C61-B6DF-044D73A4A925} => Schlüssel nicht gefunden. 
"HKU\S-1-5-21-2055331987-1518689308-177053510-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF}" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF} => Schlüssel nicht gefunden. 
Firefox SelectedSearchEngine erfolgreich entfernt
"HKLM\Software\Wow6432Node\MozillaPlugins\@pages.tvunetworks.com/WebPlayer" => Schlüssel erfolgreich entfernt
Chrome StartupUrls => erfolgreich entfernt
C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => nicht gefunden.
C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => nicht gefunden.
C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => nicht gefunden.
C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => nicht gefunden.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => nicht gefunden.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => nicht gefunden.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => nicht gefunden.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => nicht gefunden.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => nicht gefunden.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => nicht gefunden.
C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => nicht gefunden.
C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => nicht gefunden.
C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => nicht gefunden.
C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => nicht gefunden.
C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => nicht gefunden.
C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => nicht gefunden.
C:\Program Files (x86)\Sony\Media Go\npmediago.dll => nicht gefunden.
C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => nicht gefunden.
C:\Windows\system32\TVUAx\npTVUAx.dll => nicht gefunden.
HPSLPSVC => Dienst erfolgreich entfernt
C:\Users\Home\DMOrganizer.dat => erfolgreich verschoben
C:\ProgramData\Temp => ":0888F409" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":11EFE63D" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":3969ACF7" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":3991CD7D" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":4A1628E5" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":5C4A588B" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":99AC3203" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":A4E7D25F" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":A5FC8FA1" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":C64BF02A" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":EC0279DC" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":FD000392" ADS erfolgreich entfernt.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BFA0B1A9-7428-4972-8D29-A0527369CB6A}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BFA0B1A9-7428-4972-8D29-A0527369CB6A}" => Schlüssel erfolgreich entfernt
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Binkiland cini => Schlüssel nicht gefunden. 
EmptyTemp: => 1.4 GB temporäre Dateien entfernt.


Das System musste neu gestartet werden.

==== Ende von Fixlog 21:43:36 ====

so hier die Search.txt dazu

Code:

ATTFilter

Farbar Recovery Scan Tool (x64) Version:29-12-2015
durchgeführt von Home (2015-12-30 22:01:50)
Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 7
Start-Modus: Normal

================== Registry-Suche: "binkiland" ===========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.htm\OpenWithProgids]
"BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.html\OpenWithProgids]
"BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.shtml\OpenWithProgids]
"BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.webp\OpenWithProgids]
"BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xht\OpenWithProgids]
"BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xhtml\OpenWithProgids]
"BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"=""
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W]
""="Binkiland HTML Document"
[HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithProgids]
"BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"=""
[HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithProgids]
"BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"=""
[HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\OpenWithProgids]
"BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"=""
[HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W]
[HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W]

====== Ende von Suche ======

übrigens Rafael,

das mit Schritt 3 --> ESET Online Scanner wird heute nix mehr.

Das Tool läuft nun schon seit 01:19:00 und ist erst bei 7%. Das Tool benötigt scheinbar die ganze Nacht.... oder ist das unnormal das das so langsam läuft?

burningice · 31.12.2015, 01:03

Nein das Programm braucht immer sehr lange, kannst du problemlos laufen lassen

HB-Männchen · 31.12.2015, 08:24

hier nun das Ergebnis vom ESET Online Scanner

Code:

ATTFilter

ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=e1b00f9b020dcb4cbfff6ab69488c96f
# end=init
# utc_time=2015-12-30 09:06:55
# local_time=2015-12-30 10:06:55 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 27429
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=e1b00f9b020dcb4cbfff6ab69488c96f
# end=updated
# utc_time=2015-12-30 09:29:50
# local_time=2015-12-30 10:29:50 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=e1b00f9b020dcb4cbfff6ab69488c96f
# engine=27429
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2015-12-31 01:15:57
# local_time=2015-12-31 02:15:57 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Bitdefender Antivirus'
# compatibility_mode=2063 16777213 100 100 19665 130237117 0 0
# compatibility_mode_1=''
# compatibility_mode=5893 16776574 100 94 56085811 203154407 0 0
# compatibility_mode_1=''
# compatibility_mode=7937 16777213 100 100 158245893 166934169 0 0
# scanned=509900
# found=18
# cleaned=0
# scan_time=13565
sh=A47739F27C4BC8FD3A48B4A90B40679DF1218E1B ft=1 fh=ab4f3351c96b3042 vn="Win32/Toolbar.Conduit.Y evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert.dll.vir"
sh=664270A860DDB3D6F23F617D0615070330A71A30 ft=1 fh=192f7aaecaa32147 vn="Win32/Toolbar.Conduit.Y evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert0.dll.vir"
sh=0C73CCC63EC56232CA1EF6BF8573B3A9AB323052 ft=1 fh=d014c1be8c7ac6c1 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ConduitEngine\ConduitEngin.dll.vir"
sh=57CD8DEAF43DF3A2F4703E5219A69935B119D0DB ft=1 fh=311781f1ea21501f vn="Variante von Win32/Toolbar.Conduit.P evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ConduitEngine\ConduitEngine.dll.vir"
sh=685D65CCD52FD9D90C402CF9026344267E8B6FD9 ft=1 fh=532da5564656d18c vn="Variante von Win32/Toolbar.Conduit.AQ evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ConduitEngine\prxConduitEngine.dll.vir"
sh=61B7E90CDDCBD4092BB7046FF144F63246A5B4D0 ft=1 fh=dbccb0ef456bcd91 vn="Variante von Win32/Toolbar.Conduit.AJ evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Home\AppData\Local\Conduit\Chrome\CT2504091\UninstallerUI.exe.vir"
sh=0DDC9EFBCBB739ECBC9645E0D81144ACB0DC139F ft=1 fh=2cd04407df9b26ee vn="Variante von Win32/Toolbar.Conduit.P evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Home\AppData\Local\Conduit\CT2504091\Vuze_RemoteAutoUpdaterHelper.exe.vir"
sh=57CD8DEAF43DF3A2F4703E5219A69935B119D0DB ft=1 fh=311781f1ea21501f vn="Variante von Win32/Toolbar.Conduit.P evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Home\AppData\LocalLow\ConduitEngine\ConduitEngine.dll.vir"
sh=57CD8DEAF43DF3A2F4703E5219A69935B119D0DB ft=1 fh=311781f1ea21501f vn="Variante von Win32/Toolbar.Conduit.P evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Home\AppData\LocalLow\Vuze_Remote\tbVuz2.dll.vir"
sh=9AC895227E99844E98E0A886E66D8CEE5BBF9CC8 ft=1 fh=2715e7aa80286db9 vn="Variante von Win32/InstallCore.ACL evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\Program Files (x86)\Flash Player\vlccfg.exe"
sh=2E3EC3DE33BEBF95A86F39BD8FA2A47564F65C08 ft=1 fh=c670ce6802e7e868 vn="Variante von Win32/Toolbar.Conduit.J evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\Program Files (x86)\NCH Software\Debut\debutsetup_1.50_v1.50.exe"
sh=C634AE4C9C2FE768B7D5D93CF13F3C1A8A242FFA ft=1 fh=c272f7e8fc5ffdbe vn="Variante von Win32/Toolbar.Conduit.J evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\Program Files (x86)\NCH Software\Debut\uninst.exe"
sh=E0B37C57E99FE566CE70DE1FE6B0A8E222BC133A ft=1 fh=040dd3f1fe168480 vn="Win32/Somoto.F evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\Program Files (x86)\Vuze\.install4j\i4j_extf_20_5p83tu.exe"
sh=3E37507BBD4C0287689634B2CDD77E59679681AF ft=1 fh=cbd9e88b633aff58 vn="Win32/Toolbar.Conduit.AP evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\Program Files (x86)\Vuze\.install4j\user\mism.exe"
sh=D9B09B46D16D525758605E327DFB6B35788EEA48 ft=0 fh=0000000000000000 vn="HTML/Ransom.B Trojaner" ac=I fn="C:\ProgramData\wvxvrwzbhkxwagk\main.html"
sh=D9B09B46D16D525758605E327DFB6B35788EEA48 ft=0 fh=0000000000000000 vn="HTML/Ransom.B Trojaner" ac=I fn="C:\Users\All Users\wvxvrwzbhkxwagk\main.html"
sh=2E3EC3DE33BEBF95A86F39BD8FA2A47564F65C08 ft=1 fh=c670ce6802e7e868 vn="Variante von Win32/Toolbar.Conduit.J evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\Users\Home\Desktop\BÃ¼ro\debutsetup_1.50.exe"
sh=075478ED256C74207FB1540F41BE4934B47D549B ft=1 fh=5a1a58d6a5023955 vn="Win32/Somoto.Q evtl. unerwÃ¼nschte Anwendung" ac=I fn="C:\Users\Home\Downloads\streamtransport_chrome_setup1.1.6.2.exe"

hier die Frst.txt

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-12-2015
durchgeführt von Home (Administrator) auf NOTEBOOK-RS (31-12-2015 08:21:31)
Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 9
Geladene Profile: Home (Verfügbare Profile: Home)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
() C:\Program Files (x86)\AAVUpdateManager\aavus.exe
(ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Soluto) C:\Program Files\Soluto\Soluto.exe
(Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe
(Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe
() C:\Windows\SysWOW64\NMSAccess32.exe
() C:\Program Files\Iomega\QuikProtect\QpMonitor.exe
(Synaptics, Inc.) C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe
(Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe
(Soluto) C:\Program Files\Soluto\SolutoLauncherService.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe
(CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe
(CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe
(Xacti LLC) C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
(AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Synaptics Incorporated) C:\Program Files (x86)\Synaptics\Scrybe\scrybe.exe
(Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe
(Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe
() C:\Program Files\Rainmeter\Rainmeter.exe
(Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Soluto) C:\Program Files\Soluto\SolutoService.exe
(GlavSoft LLC.) C:\Program Files\Soluto\SolutoRemoteService.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\pmbxcrnmh.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [134416 2007-06-12] (Logitech, Inc.)
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1757520 2015-02-02] (Bitdefender)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1702912 2000-01-01] (IDT, Inc.)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1104616 2013-10-10] (Acronis International GmbH)
HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7843744 2014-02-04] (Acronis)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.)
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare)
HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-02] (Hewlett-Packard)
HKLM\...\Winlogon: [Userinit] c:\windows\system32\userinit.exe,c:\program files\soluto\soluto.exe /userinit,
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender)
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender)
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender)
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd)
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd)
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\system: [WallpaperStyle] 2
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> 
HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender)
HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender)
HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender)
HKU\S-1-5-18\...\Policies\system: [WallpaperStyle] 2
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> 
Lsa: [Notification Packages] scecli c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google)
ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] ()
ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-06-11]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Scrybe.lnk [2012-01-14]
ShortcutTarget: Scrybe.lnk -> C:\Windows\Installer\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}\NewShortcut11_8ACB210B42E44145A8C31F8E3DD765A3.exe (Acresso Software Inc.)
Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2015-06-10]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe ()
BootExecute: autocheck autochk * auto_reactivate \\?\Volume{f7c81a36-efb9-11de-a798-806e6f6e6963}\bootwiz\asrm.bin

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{7A31314E-4D6E-42E3-9220-5D359B8B3242}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{D2518004-8FB8-4822-8DAA-FD4DF64F2AD4}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll [2014-11-13] (Bitdefender)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard)
BHO: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG)
BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll [2014-11-13] (Bitdefender)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-18] (Oracle Corporation)
BHO-x32: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-18] (Oracle Corporation)
BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard)
BHO-x32: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files (x86)\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG)
DPF: HKLM-x32 {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} file:///H:/Projekte%20Magix/Tatort/components/hidinputmonitorx.ocx
DPF: HKLM-x32 {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} file:///H:/Projekte%20Magix/Tatort/components/A9.ocx
DPF: HKLM-x32 {7030CC6C-1A88-4591-BB5A-651B9F7F0C30} file:///H:/Projekte%20Magix/Tatort/components/wmvhdrating.ocx
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029
FF Homepage: hxxps://www.google.de/
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-28] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-14] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-28] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2013-08-28] (DivX, LLC)
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2010-10-28] (GARMIN Corp.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-18] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-10-15] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/O1DPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-02] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google)
FF Extension: azid - Amazon Zoom Image Downloader - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\azid@craue.de.xpi [2015-10-12]
FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\artur.dubovoy@gmail.com [2015-12-06]
FF Extension: Secure Login - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\secureLogin@blueimp.net.xpi [2015-12-22]
FF Extension: Kein Name - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\auto-plugin-checker@jetpack.xpi [2015-09-04] [ist nicht signiert]
FF Extension: Flagfox - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2015-12-21]
FF Extension: Video DownloadHelper - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-31]
FF Extension: Adblock Plus - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-15]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08]
FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman
FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman [2014-03-27] [ist nicht signiert]

Chrome: 
=======
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir="
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei
CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei
CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation)
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei
CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei
CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei
CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei
CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei
CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei
CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Unity Player) - C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei
CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei
CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Google Drive) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Bitdefender Wallet) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl [2014-11-07]
CHR Extension: (Google-Suche) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Video Downloader professional) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-12-30]
CHR Extension: (Google Docs Offline) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17]
CHR Extension: (WhatFont) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2015-08-18]
CHR Extension: (Skype) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-19]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (chromeIPass) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompiailgknfdndiefoaoiligalphfdae [2014-12-24]
CHR Extension: (Unblock Youku) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnfnkhpgegpcingjbfihlkjeighnddk [2015-11-24]
CHR Extension: (Google Mail) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-04-27]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AAV UpdateService; C:\Program Files (x86)\AAVUpdateManager\aavus.exe [128296 2008-10-24] ()
R2 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1046952 2015-11-12] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.)
R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [Datei ist nicht signiert]
S4 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert]
S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert]
S3 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [Datei ist nicht signiert]
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [72992 2014-07-07] (Hewlett-Packard Company)
S3 HRService; C:\Program Files (x86)\Haufe\iDesk\iDeskService\iDeskService.exe [71024 2010-10-25] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert]
R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-10-19] ()
R2 NMSAccess; C:\Windows\SysWOW64\NMSAccess32.exe [71096 2009-01-12] ()
R2 QPCopyEngine; C:\Program Files\Iomega\QuikProtect\QpMonitor.exe [394544 2010-06-24] ()
R2 ScrybeUpdater; C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe [1300264 2011-05-27] (Synaptics, Inc.)
R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia)
R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia)
R2 SolutoLauncherService; C:\Program Files\Soluto\SolutoLauncherService.exe [182848 2013-11-14] (Soluto)
R3 SolutoRemoteService; C:\Program Files\Soluto\SolutoRemoteService.exe [1942016 2013-11-14] (GlavSoft LLC.) [Datei ist nicht signiert]
R2 sp_rssrv; C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe [1033255 2010-09-29] (Xacti LLC) [Datei ist nicht signiert]
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2000-01-01] (IDT, Inc.) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2014-11-13] (Bitdefender)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies)
R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies)
R2 vsserv; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1538672 2015-02-02] (Bitdefender)
S4 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2013-11-02] (Western Digital Technologies, Inc.)
S4 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [270704 2013-11-02] (Western Digital Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1288472 2015-02-02] (BitDefender)
R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [263032 2015-02-02] (BitDefender)
R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-11-13] (BitDefender)
R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC)
S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL)
S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc)
R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx64.sys [34512 2015-02-06] ()
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC)
R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-05-20] (Paragon Software Group)
R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2000-01-01] (JMicron Technology Corp.)
R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-09-08] (Lavasoft AB)
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42944 2010-11-06] (hxxp://libusb-win32.sourceforge.net)
R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-31] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] ()
S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] ()
S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia)
S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [585944 2014-12-31] (Realtek Semiconductor Corporation)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-12-03] (Duplex Secure Ltd.)
R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [50696 2010-07-07] (Windows (R) Win 7 DDK provider)
R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-02-08] (Acronis International GmbH)
R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2014-02-08] (Acronis International GmbH)
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2015-02-02] (BitDefender S.R.L.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software)
S1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [50768 2010-07-14] (Windows (R) 2000 DDK provider)
S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [566864 2010-07-14] (Paragon)
R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2014-02-08] (Acronis International GmbH)
U3 audmuowe; C:\Windows\System32\Drivers\audmuowe.sys [0 ] (Emulex) <==== ACHTUNG (Null Byte Datei/Ordner)
S3 clwvd; system32\DRIVERS\clwvd.sys [X]
S3 cpuz132; \??\C:\Users\Home\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [X]
R3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X]
U4 eabfiltr; kein ImagePath
S3 WPRO_40_1340; system32\drivers\WPRO_40_1340.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-30 19:55 - 2015-12-30 19:55 - 00008364 _____ C:\Users\Home\Desktop\mbam.txt
2015-12-30 19:14 - 2015-12-31 05:45 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2015-12-30 19:13 - 2015-12-30 19:13 - 00001064 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk
2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 
2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2015-12-30 19:13 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2015-12-30 19:13 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2015-12-30 19:13 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2015-12-30 18:54 - 2015-12-30 18:58 - 00000000 ____D C:\AdwCleaner
2015-12-30 18:11 - 2015-12-30 18:11 - 00001226 _____ C:\Users\Home\Desktop\Revo Uninstaller.lnk
2015-12-30 18:11 - 2015-12-30 18:11 - 00000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2015-12-30 18:11 - 2015-12-30 18:11 - 00000000 ____D C:\Program Files (x86)\VS Revo Group
2015-12-30 01:01 - 2015-12-30 01:06 - 00256514 _____ C:\TDSSKiller.3.1.0.9_30.12.2015_01.01.45_log.txt
2015-12-30 00:23 - 2015-12-30 00:23 - 00001082 _____ C:\Users\Home\Desktop\Hilfe 100 % CPU - Verknüpfung.lnk
2015-12-29 22:20 - 2015-12-29 22:20 - 00000376 _____ C:\Users\Home\AppData\Roamingprivacy.xml
2015-12-29 22:19 - 2015-12-29 22:26 - 00007892 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_22.19.36_log.txt
2015-12-29 22:12 - 2015-12-29 22:12 - 00000000 ____D C:\TDSSKiller_Quarantine
2015-12-29 21:51 - 2015-12-31 08:20 - 00000000 ____D C:\Users\Home\Downloads\Hilfe 100 % CPU
2015-12-29 21:40 - 2015-12-29 22:12 - 00510822 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_21.40.36_log.txt
2015-12-29 19:30 - 2015-12-31 08:21 - 00000000 ____D C:\FRST
2015-12-23 17:24 - 2015-12-23 17:24 - 00000657 _____ C:\Users\Home\Desktop\Steffi - Verknüpfung.lnk
2015-12-23 16:51 - 2015-12-23 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-12-20 12:59 - 2015-12-20 12:59 - 00000000 ____D C:\Users\Home\Documents\Applian
2015-12-20 12:56 - 2015-12-20 15:20 - 00000000 ____D C:\Windows\Jaksta
2015-12-20 12:56 - 2015-12-20 13:11 - 00000000 ____D C:\Users\Home\AppData\Local\Jaksta_Technologies_Pty_L
2015-12-20 12:37 - 2015-12-20 13:13 - 00000000 ____D C:\Users\Home\AppData\Local\JDownloader v2.0
2015-12-19 15:36 - 2015-12-19 15:36 - 00001053 _____ C:\Users\Public\Desktop\StreamTransport.lnk
2015-12-19 15:36 - 2015-12-19 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamTransport
2015-12-19 15:36 - 2015-12-19 15:36 - 00000000 ____D C:\Program Files (x86)\StreamTransport
2015-12-19 15:35 - 2014-07-09 11:33 - 15123328 _____ (hxxp://www.streamtransport.com/ ) C:\Users\Home\Downloads\streamtransport_chrome_setup1.1.6.2.exe
2015-12-15 22:37 - 2015-12-15 22:42 - 00007154 _____ C:\Users\Home\Documents\starburn.txt
2015-12-15 22:37 - 2015-12-15 22:37 - 00000000 ____D C:\ProgramData\Wondershare
2015-12-15 22:36 - 2015-12-15 22:36 - 00001105 _____ C:\Users\Public\Desktop\Wondershare Filmora.lnk
2015-12-15 22:36 - 2015-12-15 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\Wondershare
2015-12-15 22:36 - 2015-12-15 22:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare
2015-12-15 22:35 - 2015-12-15 22:43 - 00000000 ____D C:\Users\Home\Documents\Wondershare Filmora
2015-12-15 22:35 - 2015-12-15 22:35 - 00000000 ____D C:\ProgramData\Wondershare Video Editor
2015-12-15 22:35 - 2015-12-15 22:35 - 00000000 ____D C:\Program Files (x86)\Wondershare
2015-12-15 22:33 - 2015-12-15 22:35 - 00000000 ____D C:\Users\Public\Documents\Wondershare
2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\Documents\FlashIntegro
2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\VideoEditor
2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\FlashIntegro
2015-12-15 22:06 - 2015-12-15 22:06 - 00001164 _____ C:\Users\Home\Desktop\VSDC Free Video Editor.lnk
2015-12-15 22:06 - 2015-12-15 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro
2015-12-15 22:06 - 2015-12-15 22:06 - 00000000 ____D C:\Program Files (x86)\FlashIntegro
2015-12-15 22:06 - 2014-12-09 12:21 - 00081792 _____ (Flash-Integro LLC) C:\Windows\SysWOW64\mslvddsfilter2.ax
2015-12-15 22:06 - 2011-12-07 18:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\Lagarith.dll
2015-12-15 22:06 - 2005-08-01 18:43 - 00245760 _____ () C:\Windows\SysWOW64\lame.ax
2015-12-15 22:06 - 2004-12-10 09:03 - 00438272 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2015-12-15 22:06 - 2004-02-04 20:11 - 00081920 _____ (fccHandler) C:\Windows\SysWOW64\AC3ACM.acm
2015-12-15 22:06 - 2003-05-22 11:26 - 00221215 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divxdec.ax
2015-12-15 22:06 - 2003-05-21 22:50 - 00261632 _____ (MainConcept) C:\Windows\SysWOW64\mcdvd_32.dll
2015-12-15 22:06 - 2003-05-21 22:50 - 00156910 _____ C:\Windows\WMSysPr8.prx
2015-12-15 22:06 - 2003-05-21 22:50 - 00082944 _____ (Voxware, Inc.) C:\Windows\SysWOW64\vct3216.acm
2015-12-15 22:06 - 2003-05-21 22:50 - 00038912 _____ (NCT Company) C:\Windows\SysWOW64\alf2cd.acm
2015-12-15 22:06 - 2003-05-21 22:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll
2015-12-15 22:06 - 2003-03-25 04:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\L3CODECX.AX
2015-12-15 22:06 - 2002-08-19 23:41 - 00413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll
2015-12-15 22:06 - 2000-03-14 19:55 - 00013239 _____ (SHARP Corporation) C:\Windows\SysWOW64\Scg726.acm
2015-12-15 20:00 - 2015-12-15 20:00 - 00200764 _____ C:\Users\Home\Desktop\Anzeige Kolb.pdf
2015-12-14 22:05 - 2015-12-14 22:05 - 24386352 _____ (Siber Systems) C:\Users\Home\Downloads\GoodSync-Setup.exe
2015-12-12 10:57 - 2015-12-12 10:57 - 00001067 _____ C:\Users\Home\Desktop\KeePass 2.lnk
2015-12-11 22:27 - 2015-12-11 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\ApplicationHistory
2015-12-11 22:27 - 2015-12-11 22:27 - 00000092 _____ C:\Users\Home\AppData\Local\fusioncache.dat
2015-12-11 21:01 - 2015-12-11 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-12-07 21:29 - 2015-12-07 21:29 - 00002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2015-12-07 21:29 - 2015-12-07 21:29 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk
2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\Program Files\CCleaner
2015-12-03 20:32 - 2015-12-03 20:32 - 00000993 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2015-12-31 08:09 - 2015-07-25 12:04 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2015-12-31 07:41 - 2014-03-16 22:56 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job
2015-12-31 07:41 - 2014-03-16 22:56 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job
2015-12-31 07:36 - 2013-02-16 23:12 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-31 07:30 - 2012-12-17 11:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-31 05:30 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-31 05:30 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-31 01:36 - 2013-02-16 23:12 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-31 00:32 - 2009-12-30 19:59 - 00003938 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{5E08B2BB-8B59-4E04-AFC6-843827792A81}
2015-12-30 21:50 - 2012-11-11 23:17 - 00000000 ___RD C:\Users\Home\Dropbox
2015-12-30 21:50 - 2012-11-11 22:00 - 00000000 ____D C:\Users\Home\AppData\Roaming\Dropbox
2015-12-30 21:47 - 2015-07-25 12:03 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2015-12-30 21:47 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-30 21:45 - 2014-03-24 01:26 - 00291369 _____ C:\bdlog.txt
2015-12-30 21:42 - 2010-01-24 09:02 - 00000000 ____D C:\Users\Home\AppData\LocalLow\Temp
2015-12-30 21:42 - 2009-12-23 23:38 - 00000000 ____D C:\Users\Home
2015-12-30 20:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2015-12-30 19:47 - 2011-08-31 23:22 - 00000000 ____D C:\Windows\HPQ
2015-12-30 18:58 - 2015-02-01 12:28 - 00000008 __RSH C:\Users\Home\ntuser.pol
2015-12-30 18:58 - 2011-10-14 22:55 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-12-30 17:09 - 2014-02-08 12:05 - 00000000 ___RD C:\Users\Home\Sync
2015-12-29 07:46 - 2011-02-11 00:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\TeamViewer
2015-12-28 22:43 - 2012-02-27 18:28 - 00000000 ____D C:\Users\Home\.Zettelkasten
2015-12-28 22:31 - 2012-12-17 11:41 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-12-28 22:31 - 2012-04-05 21:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-12-28 22:31 - 2011-06-17 20:10 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-28 20:51 - 2011-08-22 08:48 - 00000000 ____D C:\Users\Home\AppData\Roaming\vlc
2015-12-28 20:22 - 2015-10-22 20:31 - 00000026 _____ C:\Users\Home\AppData\Local\isoworkshop.ini
2015-12-25 13:23 - 2012-04-25 19:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-12-23 18:38 - 2010-05-30 10:42 - 00000000 ___RD C:\Users\Home\Desktop\Büro
2015-12-23 18:30 - 2014-12-14 14:49 - 00000000 ____D C:\Users\Home\Desktop\Anwendungen
2015-12-23 18:25 - 2014-01-03 23:23 - 00000000 ____D C:\Users\Home\Desktop\Videoschnitt
2015-12-22 12:51 - 2011-02-11 00:26 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-12-19 21:43 - 2013-07-31 19:56 - 00668984 _____ C:\Windows\system32\FNTCACHE.DAT
2015-12-17 22:47 - 2014-10-24 20:20 - 00003834 _____ C:\Windows\System32\Tasks\Google Update
2015-12-17 22:46 - 2015-10-30 21:33 - 00000000 ____D C:\Users\Home\AppData\Local\Microsoft Help
2015-12-17 22:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2015-12-17 12:17 - 2009-12-28 15:17 - 00000000 ____D C:\Users\Home\AppData\Roaming\Mozilla
2015-12-15 22:37 - 2013-07-31 19:58 - 00202240 _____ C:\Users\Home\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-15 22:37 - 2009-07-14 05:57 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-12-13 17:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration
2015-12-12 11:02 - 2013-03-22 21:05 - 00000000 ____D C:\Users\Home\AppData\Roaming\KeePass
2015-12-12 10:57 - 2013-06-30 11:16 - 00001079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2015-12-12 10:57 - 2013-03-22 20:44 - 00000000 ____D C:\Program Files (x86)\KeePass Password Safe 2
2015-12-12 00:13 - 2011-09-13 21:54 - 00000000 ____D C:\Users\Home\AppData\Roaming\dvdcss
2015-12-11 21:01 - 2015-07-25 12:03 - 00000000 ____D C:\Program Files (x86)\Dropbox
2015-12-11 00:33 - 2012-04-14 00:02 - 00000000 ____D C:\ProgramData\tmp
2015-12-10 09:17 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-12-07 22:19 - 2010-10-28 00:06 - 00000000 ____D C:\Users\Home\AppData\Roaming\DAEMON Tools Lite
2015-12-07 22:19 - 2010-07-12 20:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\PhotoScape
2015-12-07 22:19 - 2010-01-01 19:25 - 00000000 ____D C:\Users\Home\AppData\Roaming\Azureus
2015-12-07 22:19 - 2009-12-27 19:22 - 00000000 ____D C:\Users\Home\AppData\Roaming\Skype
2015-12-06 10:08 - 2009-12-27 19:22 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-12-05 01:31 - 2013-02-16 23:12 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-05 01:31 - 2013-02-16 23:12 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-02 21:20 - 2014-08-23 23:02 - 00000000 ____D C:\ProgramData\Avg
2015-12-02 21:09 - 2013-02-24 11:34 - 00004020 _____ C:\Windows\System32\Tasks\MUI StartMenu Application
2015-12-02 14:24 - 2013-07-14 10:55 - 00000000 ____D C:\Users\Home\.gimp-2.8
2015-12-02 07:36 - 2014-03-16 22:56 - 00004084 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA
2015-12-02 07:36 - 2014-03-16 22:56 - 00003688 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2010-01-06 11:53 - 2010-12-29 22:04 - 0000030 _____ () C:\Program Files (x86)\Exiferupdate.ini
2011-11-09 20:47 - 2011-11-09 20:48 - 0000288 _____ () C:\Users\Home\AppData\Roaming\.backup.dm
2012-01-08 21:35 - 2012-01-15 21:40 - 0000598 _____ () C:\Users\Home\AppData\Roaming\AutoGK.ini
2012-11-29 19:33 - 2014-12-14 12:35 - 0000307 _____ () C:\Users\Home\AppData\Roaming\burnaware.ini
2012-05-28 20:15 - 2015-02-06 17:45 - 0000096 _____ () C:\Users\Home\AppData\Roaming\Camdata.ini
2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamLayout.ini
2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamShapes.ini
2012-05-28 20:15 - 2015-02-06 17:45 - 0004534 _____ () C:\Users\Home\AppData\Roaming\CamStudio.cfg
2012-05-28 20:08 - 2012-05-28 20:08 - 0000000 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.Data.ini
2012-05-28 20:08 - 2012-05-28 20:08 - 0001206 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.ini
2011-09-13 21:13 - 2011-09-13 21:13 - 0099384 _____ () C:\Users\Home\AppData\Roaming\inst.exe
2010-01-14 00:44 - 2010-01-14 00:44 - 0031793 _____ () C:\Users\Home\AppData\Roaming\mdbu.bin
2010-02-20 00:34 - 2010-03-28 22:30 - 0038276 _____ () C:\Users\Home\AppData\Roaming\Microsoft Excel.ADR
2011-09-13 21:13 - 2011-09-13 21:13 - 0007859 _____ () C:\Users\Home\AppData\Roaming\pcouffin.cat
2011-09-13 21:13 - 2011-09-13 21:13 - 0001167 _____ () C:\Users\Home\AppData\Roaming\pcouffin.inf
2011-09-13 21:14 - 2011-09-13 21:14 - 0000034 _____ () C:\Users\Home\AppData\Roaming\pcouffin.log
2011-09-13 21:13 - 2011-09-13 21:13 - 0082816 _____ (VSO Software) C:\Users\Home\AppData\Roaming\pcouffin.sys
2015-09-11 20:01 - 2015-09-11 20:01 - 0001181 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt
2015-09-11 20:01 - 2015-09-11 20:01 - 0000000 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt
2015-02-06 17:44 - 2015-02-06 17:44 - 0000096 _____ () C:\Users\Home\AppData\Roaming\version2.xml
2013-02-03 23:24 - 2015-10-10 10:14 - 0080896 _____ () C:\Users\Home\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-12-11 22:27 - 2015-12-11 22:27 - 0000092 _____ () C:\Users\Home\AppData\Local\fusioncache.dat
2015-10-22 20:31 - 2015-12-28 20:22 - 0000026 _____ () C:\Users\Home\AppData\Local\isoworkshop.ini
2014-12-07 13:33 - 2014-12-07 13:33 - 0007931 _____ () C:\Users\Home\AppData\Local\recently-used.xbel
2013-04-02 13:55 - 2015-06-09 22:58 - 0007663 _____ () C:\Users\Home\AppData\Local\Resmon.ResmonCfg
2014-03-22 10:49 - 2014-03-22 10:49 - 0617204 _____ () C:\ProgramData\1395480845.bdinstall.bin
2014-04-27 16:55 - 2014-04-27 16:55 - 0240135 _____ () C:\ProgramData\1398614049.bdinstall.bin
2014-04-27 16:59 - 2014-04-27 17:01 - 0001545 _____ () C:\ProgramData\1398614324.1288.bin
2014-04-27 17:02 - 2014-04-27 17:02 - 0002247 _____ () C:\ProgramData\1398614324.1620.bin
2014-04-27 16:59 - 2014-04-27 16:59 - 0017887 _____ () C:\ProgramData\1398614324.2428.bin
2014-04-27 17:14 - 2014-04-27 17:14 - 0081185 _____ () C:\ProgramData\1398614324.3016.bin
2014-04-27 16:59 - 2014-04-27 17:02 - 0017801 _____ () C:\ProgramData\1398614324.3400.bin
2014-04-27 16:59 - 2014-04-27 16:59 - 0010224 _____ () C:\ProgramData\1398614324.3536.bin
2014-04-27 16:59 - 2014-04-27 16:59 - 0001090 _____ () C:\ProgramData\1398614324.3736.bin
2014-04-27 16:59 - 2014-04-27 17:14 - 0109821 _____ () C:\ProgramData\1398614324.4176.bin
2014-04-27 16:59 - 2014-04-27 16:59 - 0002736 _____ () C:\ProgramData\1398614324.4392.bin
2014-04-27 16:59 - 2014-04-27 17:02 - 0001090 _____ () C:\ProgramData\1398614324.4412.bin
2014-04-27 16:58 - 2014-04-27 17:14 - 0125567 _____ () C:\ProgramData\1398614324.5048.bin
2014-04-27 16:58 - 2014-04-27 17:01 - 0009868 _____ () C:\ProgramData\1398614324.5076.bin
2014-04-27 16:58 - 2014-04-27 17:14 - 0134906 _____ () C:\ProgramData\1398614324.5080.bin
2014-04-27 17:16 - 2014-04-27 17:16 - 0062879 _____ () C:\ProgramData\1398615359.bdinstall.bin
2014-04-27 17:47 - 2014-04-27 17:47 - 0670431 _____ () C:\ProgramData\1398615493.bdinstall.bin
2009-12-23 23:54 - 2012-01-26 19:18 - 0000190 _____ () C:\ProgramData\HPWALog.txt
2015-06-09 23:00 - 2015-06-12 17:59 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc
2012-08-12 04:28 - 2012-08-12 04:28 - 0000051 _____ () C:\ProgramData\zdtckhrezdorpjg
2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log
2009-08-20 10:08 - 2009-08-20 10:08 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log
2009-08-20 10:03 - 2009-08-20 10:04 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2009-12-23 13:06 - 2009-12-23 13:06 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log
2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log
2009-08-20 10:02 - 2009-08-20 10:03 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log
2009-08-20 10:04 - 2009-08-20 10:08 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
2009-12-23 13:07 - 2009-12-23 13:07 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log

==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2015-12-31 02:48

==================== Ende von FRST.txt ============================

HB-Männchen · 31.12.2015, 08:31

und hier die Addition.txt

Code:

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015
durchgeführt von Home (2015-12-31 08:22:36)
Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 9
Windows 7 Home Premium Service Pack 1 (X64) (2009-12-23 22:38:53)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2055331987-1518689308-177053510-500 - Administrator - Disabled)
ASPNET (S-1-5-21-2055331987-1518689308-177053510-1012 - Limited - Enabled)
Gast (S-1-5-21-2055331987-1518689308-177053510-501 - Limited - Disabled)
Home (S-1-5-21-2055331987-1518689308-177053510-1000 - Administrator - Enabled) => C:\Users\Home
HomeGroupUser$ (S-1-5-21-2055331987-1518689308-177053510-1002 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

[verify-U]_AVS_IE_Add-on (HKLM-x32\...\[verify-U]_AVS_IE_Add-on) (Version: 1.0.0.3 - cybits AG)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
AAVUpdateManager (HKLM-x32\...\{DF6FE172-006A-4324-AF7F-ACFE4BA290FE}) (Version: 12.00.0000 - Akademische Arbeitsgemeinschaft)
ABBYY FineReader 9.0 Professional Edition (HKLM-x32\...\{F9000000-0001-0000-0000-074957833700}) (Version: 9.00.453.55019 - ABBYY)
ABBYY PDF Transformer 2.0 (HKLM-x32\...\{FA200000-0001-0000-0000-074957833700}) (Version: 2.0.1147.49010 - ABBYY Software Ltd.)
Acronis True Image 2014 (HKLM-x32\...\{3ECDD663-5AF8-489B-9E3C-561F33A271BD}Visible) (Version: 17.0.6673 - Acronis)
Acronis True Image 2014 (x32 Version: 17.0.6673 - Acronis) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.)
AMD Catalyst Install Manager (HKLM\...\{ACF4E7FE-650D-9BD7-BAE5-1AD061F40F69}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Anti-Twin (Installation 14.02.2010) (HKLM-x32\...\Anti-Twin 2010-02-14 18.44.43) (Version:  - Joerg Rosenthal, Germany)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AVCutty 3.5 (HKLM-x32\...\AVCutty) (Version: 3.5 - )
AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies)
AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies)
AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden
AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden
AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version:  - AVM Berlin)
Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 17.27.0.1146 - Bitdefender)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5300 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.8.2631 - CDBurnerXP)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP)
CDDRV_Installer (x32 Version: 4.20 - Logitech) Hidden
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.79.0.2015 - Georgy Berdyshev)
Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Content Pack (HKLM\...\{832191A7-9336-4DCD-94EF-F29955DEA165}) (Version: 1.0.0.0 - MAGIX Software GmbH)
CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version:  - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd)
Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 2.05 - NCH Software)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.84 - DivX, LLC)
dm-Fotowelt (HKLM-x32\...\dm-Fotowelt) (Version: 6.0.5 - CEWE Stiftung u Co. KGaA)
Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.)
Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden
eMedia Piano Einstieg Für Dummies (HKLM-x32\...\{D0D24351-FF92-450e-8143-6D848C6EFAC6}) (Version:  - eMedia Piano Einstieg Für Dummies)
ENE CIR Receiver Driver (HKLM\...\FFE7D41DF3C645075BB149E21988B63996C34187) (Version: 2.7.4.0 - ENE)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG)
FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden
FormatFactory 3.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.5.0 - Free Time)
FOTOParadies (HKLM-x32\...\{A606BBD1-0BC4-45C1-8C26-C1471D85DAE4}}_is1) (Version: 3.1.10.105 - Foto Online Service GmbH)
Garmin BaseCamp (HKLM-x32\...\{81EF7DBD-909A-455B-8B32-24B8CDC75039}) (Version: 4.3.3 - Garmin Ltd or its subsidiaries)
Garmin Communicator Plugin (HKLM-x32\...\{B1EE1CC5-6CED-4801-BFFF-8454F21A245A}) (Version: 2.9.3 - Garmin Ltd or its subsidiaries)
Garmin TOPO Deutschland 2010 (HKLM-x32\...\{C7C82ED1-E5AD-48CF-8B92-38DD9B49610C}) (Version: 4.0.0.0 - Garmin Ltd or its subsidiaries)
Garmin Trip and Waypoint Manager v5 (HKLM-x32\...\{414A373B-59DF-4102-94CA-9FE9A74CBDDA}) (Version: 5.0.0.0 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries)
Garmin WebUpdater (HKLM-x32\...\{00FE2935-FB56-4410-AB5F-D6E70C1771D2}) (Version: 2.5.6 - Garmin Ltd or its subsidiaries)
GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.)
Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{36A52BCF-AC3D-32F1-AD5F-A09769EB8887}) (Version: 4.1.3.13728 - Google)
Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden
Google+ Auto Backup (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.)
GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.)
Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2 (HKLM-x32\...\Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2) (Version:  - )
Haufe iDesk-Service (HKLM-x32\...\{27F10580-E040-11DF-8C28-005056B12123}) (Version: 10.10.25.7810 - Haufe)
Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP 3D DriveGuard (HKLM\...\{7FD7F421-39B2-4CAC-BC41-7D83DDBAB329}) (Version: 4.0.3.1 - Hewlett-Packard)
HP Advisor (HKLM-x32\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard)
HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.0.3123 - Hewlett-Packard)
HP MediaSmart Internet TV (HKLM-x32\...\InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}) (Version: 3.0.1916 - Hewlett-Packard)
HP MediaSmart Live TV (HKLM-x32\...\InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}) (Version: 3.0.1924 - Hewlett-Packard)
HP MediaSmart Movie Themes (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.0.3102 - Hewlett-Packard)
HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.0.3123 - Hewlett-Packard)
HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.0.30.1 - Hewlett-Packard)
HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.1.1208 - Hewlett-Packard)
HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.16.1 - Hewlett-Packard Company)
HP Setup (HKLM-x32\...\{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}) (Version: 1.2.3220.3079 - Hewlett-Packard)
HP Support Solutions Framework (HKLM-x32\...\{C43602FE-988C-47BA-9F9F-B95FDDAFB624}) (Version: 11.50.0031 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard)
HP User Guides 0153 (HKLM-x32\...\{2EBA8202-FBD5-4004-81EA-BDC38C054CE2}) (Version: 1.01.0000 - Hewlett-Packard)
HP Wireless Assistant (HKLM-x32\...\{F9A43C0C-F274-4EC0-B02E-202C15C09C00}) (Version: 3.50.12.1 - Hewlett-Packard)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT)
ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Indeo® software (HKLM-x32\...\Indeo® software) (Version:  - )
Intel(R) PROSet/Wireless WiFi-Software (HKLM\...\{D75AEB5B-FA18-4BD4-9EED-54CA46DB5AE8}) (Version: 13.04.0000 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden
Internet-TV für Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation)
ISO Workshop 6.0 (HKLM-x32\...\ISO Workshop_is1) (Version:  - Glorylogic)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.50.2 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden
KacoViso (HKLM-x32\...\{9D874610-1444-412E-B379-FD8107FE768B}) (Version: 2.3.0.0 - KACO new energy GmbH )
KacoViso (HKLM-x32\...\{B34110B2-FA4C-40DA-B546-C85B0E2CD114}) (Version: 2.1.5 - Kaco)
KeePass Password Safe 2.30 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.30 - Dominik Reichl)
KhalInstallWrapper (Version: 4.20.131 - Logitech) Hidden
Logitech SetPoint (HKLM-x32\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 4.20 - Logitech)
Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.)
Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.)
MAGIX Page & Layout Designer 11 (HKLM-x32\...\MX.{72EF1C8F-D57A-493D-A8FF-8C966DD46613}) (Version: 11.2.2.40388 - MAGIX Software GmbH)
MAGIX Page & Layout Designer 11 (Version: 11.2.2.40388 - MAGIX Software GmbH) Hidden
MAGIX Retten Sie Ihre Videokassetten! Version 5 (HKLM-x32\...\MAGIX_MSI_Video_easy_4_RYVT) (Version: 3.0.1.28 - MAGIX AG)
MAGIX Retten Sie Ihre Videokassetten! Version 5 (x32 Version: 3.0.1.28 - MAGIX AG) Hidden
MAGIX Screenshare (HKLM-x32\...\{31D888B7-9DA0-4219-9371-9A0037A097C6}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare (HKLM-x32\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (HKLM-x32\...\MAGIX Speed burnR D) (Version: 6.0.1.4 - MAGIX AG)
MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{49209082-E4F9-410D-B74D-E6506977F30B}) (Version: 7.0.2.6 - MAGIX AG)
MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden
MAGIX USB-Videowandler 2 (HKLM-x32\...\{8D85149E-D7A0-4920-BEBF-B6CEDFED8D1E}) (Version: 1.02.0000 - Ihr Firmenname)
MAGIX USB-Videowandler 2 (HKLM-x32\...\InstallShield_{91065458-A5CF-474C-9160-B44B974B3C25}) (Version: 1.00.0000 - MAGIX)
MAGIX USB-Videowandler 2 (x32 Version: 1.00.0000 - MAGIX) Hidden
MAGIX Video deluxe 16 Premium 9.0.0.54 (D) (HKLM-x32\...\MAGIX Video deluxe 16 Premium D) (Version: 9.0.0.54 - MAGIX AG)
MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{85061988-E889-4A37-9CB7-4F695AC35544}) (Version: 13.0.2.8 - MAGIX AG)
MAGIX Video deluxe 2014 Plus (Version: 13.0.2.8 - MAGIX AG) Hidden
MAGIX Web Designer MX Premium (HKLM-x32\...\MAGIX_{739FE2DC-0C7E-4A1C-AC6E-46348169E27E}) (Version: 8.0.2.21761 - MAGIX AG)
MAGIX Web Designer MX Premium (Version: 8.0.2.21761 - MAGIX AG) Hidden
MAGIX Xtreme Foto Designer 6 (HKLM-x32\...\MAGIX Xtreme Foto Designer 6 D) (Version: 6.0.29.0 - MAGIX AG)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Media Go Video Playback Engine 1.88.103.12040 (HKLM-x32\...\{7FA1DAFD-AF55-E915-FD92-F269443A2ADF}) (Version: 1.88.103.12040 - Sony)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Office Home and Business 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 43.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.2 (x86 de)) (Version: 43.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
myBet Poker (HKLM-x32\...\myBet Poker) (Version:  - )
myBet Poker (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\myBet Poker) (Version:  - )
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
NVIDIA PhysX v8.10.29 (HKLM-x32\...\{D56B0E27-4A3E-46C9-B5C1-D93D580C099C}) (Version: 8.10.29 - NVIDIA Corporation)
OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation)
Page & Layout Designer Update (Version: 11.2.3.40790 - MAGIX Software GmbH) Hidden
Paragon Partition Manager™ 11 Professional (HKLM-x32\...\{A35001F0-F1E4-11DD-A38B-005056C00008}) (Version: 90.00.0003 - Paragon Software)
Parrot Software Update Tool (HKLM-x32\...\Parrot Flash Update Wizard) (Version:  - )
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PowerRecover (x32 Version: 5.5.1923 - CyberLink Corp.) Hidden
PriMus Free 1.1 (Build 10843) (HKLM-x32\...\PriMus Free_is1) (Version: 1.1.0.10843 - Columbus Soft)
proDAD Mercalli 1.0 (HKLM-x32\...\proDAD-Mercalli-1.0) (Version:  - )
QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.2.1 r2386 - )
Ravensburger tiptoi (HKLM-x32\...\Ravensburger tiptoi) (Version:  - )
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek)
Recuva (HKLM\...\Recuva) (Version: 1.43 - Piriform)
RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version:  - )
RemoteComms External Disk Access (HKLM-x32\...\{04FCD5DE-1662-4F99-BDA9-C57212113EF2}) (Version: 1.25.0003 - PLX Technology)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
SanDiskSecureAccess_Manager.exe (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\@@__UNKNOWN__@@SanDiskSecureAccess_Manager.exe) (Version: 1.0.0 - DMAILER)
Scribus 1.4.4 (64bit) (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team)
Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version:  - Microsoft)
Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
SlimDrivers (HKLM-x32\...\{87E60394-2E62-400D-99C0-C1BEA2F9A439}) (Version: 2.2.14197 - SlimWare Utilities, Inc.)
Soluto (HKLM\...\{037C627B-384E-450E-866C-95BAB3CDEA17}) (Version: 1.3.1494.0 - Soluto)
Spyware Terminator (HKLM-x32\...\Spyware Terminator_is1) (Version: 2.8.0.18 - Crawler Inc.)
Steuer 2012 (HKLM-x32\...\{01159E8A-44F7-4885-A7F9-872CE4D74063}) (Version: 20.00.8137 - Buhl Data Service GmbH)
Steuer 2013 (HKLM-x32\...\{05AEF487-8926-48A9-B5BA-9BED72BC6B1C}) (Version: 21.00.8480 - Buhl Data Service GmbH)
Steuer 2014 (HKLM-x32\...\{2EE860C7-4551-479F-AF01-328B8AA46051}) (Version: 22.00.8811 - Buhl Data Service GmbH)
StreamTransport version: 1.1.6.2 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version:  - )
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Gesture Suite featuring SYNAPTICS | Scrybe (HKLM-x32\...\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}) (Version: 1.6.5.17120 - Synaptics Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer)
TELL ME MORE (HKLM-x32\...\TMM90) (Version:  - )
TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 10.0.4200.97 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.2160.11 - TuneUp Software) Hidden
TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden
Unity Web Player (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\UnityWebPlayer) (Version:  - Unity Technologies ApS)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN)
VSDC Free Video Editor Version 3.3.0.394 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 3.3.0.394 - Flash-Integro LLC)
Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.4.0.0 - Azureus Software, Inc.)
WD Drive Utilities (HKLM-x32\...\{C093AD5D-29E9-4777-AAAC-28C02FCC2A51}) (Version: 1.0.4.11 - Western Digital Technologies, Inc.)
WD Quick View (HKLM-x32\...\{507B1304-194A-4204-A9D9-9BAAF51EF760}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.)
WD Security (HKLM-x32\...\{8A7B24E8-864E-4794-95C4-17644D0991AA}) (Version: 1.0.6.3 - Western Digital Technologies, Inc.)
WD SmartWare (HKLM\...\{A7C403DA-B8D9-4CA0-93D9-6C7F00772240}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.)
WD SmartWare Installer (HKLM-x32\...\{ba99df5b-3e46-419e-81e2-544352772fda}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.)
Web Designer Premium MX Update (Version: 8.1.4.24749 - MAGIX AG) Hidden
Web Designer Premium MX Update (Version: 8.1.5.31094 - MAGIX AG) Hidden
Windows Driver Package - Broadcom HIDClass  (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Driver Package - Cambridge Silicon Radio Ltd. (CSRBC) USB  (04/21/2011 01.0.0.0) (HKLM\...\BEA7B05370C19B9C86893BB484FD6B9CC52B0CD8) (Version: 04/21/2011 01.0.0.0 - Cambridge Silicon Radio Ltd.)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Live Anmelde-Assistent (HKLM-x32\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8064.0206 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
Wondershare Filmora(Build 6.8.1) (HKLM-x32\...\Wondershare Filmora_is1) (Version:  - Wondershare Software)
XviD MPEG4 Video Codec (remove only) (HKLM-x32\...\XviD MPEG4 Video Codec) (Version:  - )
Youku Downloader (xmlbar) (nur entfernen) (HKLM-x32\...\Xmlbar YoukuDownloader) (Version:  - )

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {045E10BA-2180-4CAD-BE93-C57695CDB4AF} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2011-08-15] (SlimWare Utilities, Inc.)
Task: {06DDAB1C-A9B0-4233-AD4A-9714FAC58293} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2014-12-02] (Microsoft)
Task: {0754560E-352E-4440-828F-5C0DD743751A} - System32\Tasks\CapUninst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe [2009-07-24] (CL)
Task: {0A5DE71C-6CC7-4132-8642-DE8FDF084929} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09] (Oracle Corporation)
Task: {111BCB09-5A3A-41E6-8091-507CD9430C3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard)
Task: {26E5C788-0C67-4826-A062-97DED9F10166} - System32\Tasks\CapSchedInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe [2009-07-24] (CL)
Task: {2D56EEEE-26A0-46DF-B413-1D3CE199C7C3} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender\bdproductdata.exe [2015-07-29] (Bitdefender)
Task: {31CF6315-5D02-47EF-96EA-B64999B55273} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-07-23] (CyberLink)
Task: {34316C50-305D-41F4-BA48-B585821B76C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.)
Task: {3AAD950A-BD91-4D39-A9F5-E9BDEF7213E7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2012-09-27] (Hewlett-Packard Company)
Task: {3D7E7FE8-CD48-4E47-831B-B1FB839665EE} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe
Task: {41001F0E-CE0D-42DC-A287-0139252339EA} - System32\Tasks\{752DFCA0-ED28-44AD-87EE-69C977B3D27A} => pcalua.exe -a C:\Users\Home\Downloads\im3stp03.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {5169FC5F-F639-4B35-8619-8F930B314AD3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {5496EA6A-D5B0-4B53-AC15-10FE00BDB8E9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.)
Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {6A0E2448-B98A-4236-BB75-E849ABAEF03A} - System32\Tasks\CapSvcInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe [2009-07-24] (CL)
Task: {6E3E742C-E8A4-4A3C-97C9-7218152143A1} - System32\Tasks\{217E48E3-275F-49B5-A2E9-74B488C70DCF} => pcalua.exe -a "C:\Program Files (x86)\MAGIX\Video_deluxe_16_Premium\unwise.exe"
Task: {76BC6246-6003-4080-8B9E-A373848B4A9E} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [2009-07-23] (CyberLink Corp.)
Task: {85D7737D-3F15-4558-B2D3-908BDF7DED1F} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {86DC2FFE-238A-470A-81E3-04BAAD9C65F0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company)
Task: {92463B00-1FE5-417F-B89A-393662C1FDAF} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe
Task: {9C78DE40-3602-407B-8909-420D2939C191} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies)
Task: {9CDC2E3E-0C0C-446F-AE9D-6EDD35609373} - System32\Tasks\{070A97D9-16E9-488C-B625-9FEBA1B5A458} => pcalua.exe -a "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {A1B285B5-9BD8-4862-81BC-91706A2089ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard)
Task: {C0C404B2-08F6-4EA9-B6DA-80531A854F44} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.)
Task: {C873030E-708B-4409-BD74-68A7A27634D9} - System32\Tasks\Google Update => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.)
Task: {CFD66453-3FDF-4F51-A0B9-C34317E22FC4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.)
Task: {D04B8C5C-C79F-4AA1-A96B-B8F51DCC4CD6} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.)
Task: {D1198108-4694-4BAC-B4C0-320192E98CA1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd)
Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc
Task: {E1CE8085-686D-42F0-A130-A4C45C50F1D6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.)
Task: {EE990A70-EF3E-483F-8B79-397011620C5E} - System32\Tasks\TVAgent => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [2009-07-24] (CyberLink Corp.)
Task: {F32EF2A0-7535-4703-88F8-27871EA02D08} - System32\Tasks\MUI StartMenu Application => C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [2008-11-14] (CyberLink Corp.)
Task: {F6254647-B40C-457B-B576-4CFE3DC30071} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28] (Adobe Systems Incorporated)
Task: {FC5B39F5-D584-47ED-8686-C5DB6678275C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-11-13 23:11 - 2014-11-13 23:11 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll
2014-11-13 23:11 - 2014-11-13 23:11 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui
2015-12-03 21:05 - 2015-12-03 21:05 - 00876888 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpbr.mdl
2015-12-03 21:05 - 2015-12-03 21:05 - 00742976 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpdsp.mdl
2015-12-03 21:05 - 2015-12-03 21:05 - 02803536 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpph.mdl
2015-12-03 21:05 - 2015-12-03 21:05 - 01415584 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttprbl.mdl
2014-11-13 23:11 - 2014-11-13 23:11 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui
2010-10-19 12:39 - 2010-10-19 12:39 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2008-10-24 15:35 - 2008-10-24 15:35 - 00128296 _____ () C:\Program Files (x86)\AAVUpdateManager\aavus.exe
2011-09-04 19:41 - 2011-05-28 21:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll
2011-06-28 00:47 - 2013-10-01 10:32 - 02818216 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll
2010-09-29 21:53 - 2010-09-29 21:53 - 00076288 _____ () C:\Program Files (x86)\Spyware Terminator\sptcontmenu64.dll
2015-06-12 18:02 - 2015-06-12 18:02 - 03672064 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\PCGPreCompiled\0054b581ad9fcca18b54c7b4c1e4a8ef\PCGPreCompiled.ni.dll
2015-06-12 18:03 - 2015-06-12 18:03 - 00267264 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\PCGAppControlPlugin#\9283595dae0849d5cca5f0ee2ca2fbec\PCGAppControlPluginLoader.ni.dll
2013-11-14 13:26 - 2013-11-14 13:26 - 00090688 _____ () c:\program files\soluto\PCGDllExportInspector.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2009-09-28 10:00 - 2009-01-12 07:15 - 00071096 _____ () C:\Windows\SysWOW64\NMSAccess32.exe
2010-06-24 16:04 - 2010-06-24 16:04 - 00394544 ____R () C:\Program Files\Iomega\QuikProtect\QpMonitor.exe
2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll
2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll
2015-03-24 14:28 - 2015-03-24 14:28 - 00036544 _____ () C:\Program Files\Rainmeter\Rainmeter.exe
2015-03-24 14:28 - 2015-03-24 14:28 - 00775872 _____ () C:\Program Files\Rainmeter\Rainmeter.dll
2015-03-24 14:27 - 2015-03-24 14:27 - 00058368 _____ () C:\Program Files\Rainmeter\Plugins\WebParser.DLL
2015-11-16 17:55 - 2015-11-16 17:55 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll
2015-06-12 18:04 - 2015-06-12 18:04 - 00068096 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\SignalRWrapper\8c1ffb2a0dcd72467ea977a4a25eea8d\SignalRWrapper.ni.dll
2013-11-14 13:26 - 2013-11-14 13:26 - 00090688 _____ () C:\Program Files\Soluto\PCGDllExportInspector.dll
2013-11-14 13:26 - 2013-11-14 13:26 - 00054848 ____R () C:\Program Files\Soluto\PCGDeviceScanLib.dll
2009-07-23 11:37 - 2009-07-23 11:37 - 00931112 ____N () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll
2014-04-27 17:32 - 2014-11-13 23:09 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll
2015-09-04 10:41 - 2015-09-04 10:40 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll
2013-10-10 12:02 - 2013-10-10 12:02 - 00013120 _____ () C:\Program Files (x86)\Common Files\Acronis\TibMounter\icudt38.dll
2014-02-04 18:25 - 2014-02-04 18:25 - 00036672 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll
2014-02-04 18:25 - 2014-02-04 18:25 - 00028992 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll
2015-12-11 21:01 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2015-12-11 21:01 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2015-12-11 21:01 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd
2015-12-11 21:01 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2015-12-11 21:01 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2015-12-11 21:01 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00486704 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2015-12-11 21:01 - 2015-12-08 22:36 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2015-10-03 11:33 - 2015-10-31 02:01 - 00019920 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll
2015-08-15 08:55 - 2015-10-31 02:00 - 00786904 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-10-03 11:33 - 2015-10-31 02:00 - 00063448 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-10-03 11:33 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll
2015-12-15 22:36 - 2014-09-11 18:09 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2015-12-15 22:36 - 2014-05-19 17:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2014-10-17 04:08 - 2014-10-17 04:08 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\098e8bf088c2956ba306dfd643107a7e\IsdiInterop.ni.dll
2011-08-31 23:38 - 2010-11-05 22:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2014-02-04 18:28 - 2014-02-04 18:28 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll
2015-10-23 22:27 - 2015-10-23 22:27 - 21344952 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 00322208 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\sqlite.dll
2015-09-30 21:47 - 2015-09-30 21:47 - 45080248 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\libcef.dll
2015-12-17 12:31 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll
2015-12-17 12:31 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Home\Downloads\GoodSync-Setup.exe:BDU

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\45303408.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\45303408.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Home\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: gusvc => 3
MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Electronic Arts\EADM\EADMUI\EADMUI.exe"
MSCONFIG\startupreg: TrayServer => C:\PROGRA~2\MAGIX\VIDEO_~1\TrayServer.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{B368F941-0CB4-4EF3-A560-ECE92A7CCA92}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{C0F1CDEB-8A20-49A1-B35F-5DAF6B0806A4}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe
FirewallRules: [{8A169D17-0EB7-49FF-931C-5C43E2073505}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{DE33A289-732E-4654-943F-7A45743D6E43}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe
FirewallRules: [UDP Query User{58171B02-7028-4BF1-9160-E1F593897D8F}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe
FirewallRules: [TCP Query User{A23EF6E2-8FE1-490B-B182-4B1D855313A1}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe
FirewallRules: [UDP Query User{747DCA01-6FAE-4DD4-87BD-04DEE5969E99}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe
FirewallRules: [{0D44D73D-B6F6-479E-AD4A-A863E07010D2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{10E3F261-C815-4590-A29E-EC4173FB564B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{0DB76952-E1CC-4093-8D00-69A1B877A183}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{79A45DF0-A4C0-4C5C-8D73-5633069B5AB1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{87DD92E8-3A51-4F11-A27A-D7F0E392A084}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{3F29078F-E968-4BBF-914A-C14E9E9053AB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{53F35B89-2E99-40C6-8489-81A8CFBDE47B}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{6857BD51-C109-4A14-BE0E-236E4BADABAA}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [TCP Query User{1B913C34-2DEA-465C-B4AF-F0478C3604D2}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [UDP Query User{6E9D74FC-F1A2-400E-9926-98A4F719EE31}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe
FirewallRules: [{CB1292DF-547A-4225-B447-A7CF9A1AF843}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{DAF16138-C0FB-4179-A6A8-5DF3FF390167}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe
FirewallRules: [UDP Query User{82BF5BFC-EC69-4092-98FB-B299CDAD059E}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe
FirewallRules: [{73A0BC91-D30C-4791-A427-715EA9C500AA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{86796E47-EB99-4916-BACB-2967A65E14EB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{EFAEE846-1759-4F70-A6FF-86B7449CB4A2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{48A53461-FCE7-4A5D-ACD6-387272CE8B2C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{469A731D-13DA-4D3E-BB89-207BAE65F4C6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{D88A371D-7671-42B9-87BB-F72D52A80278}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{058DE289-ACB7-491D-B16B-7F684C3A3F3D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{F125FF56-47A7-405C-8727-338099D9B436}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{ED6F9988-0AD6-441A-8F5F-BCD0BFC8236B}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [UDP Query User{9E2A97ED-6B26-4F70-BE14-218E65B14490}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe
FirewallRules: [{D4CB0E40-90B9-489A-831E-236EA6BE6DC1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{293F9E14-6E7E-4DC1-8FBA-CEE79D5BCBB2}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{76CEB911-B258-459D-963A-F8B71E4A8AB6}] => (Allow) LPort=54010
FirewallRules: [{7D213076-29F2-40D4-92E9-CC4274B63F77}] => (Allow) LPort=49165
FirewallRules: [{A74E5788-619C-4AB8-B62E-DBB7CFB9B976}] => (Allow) LPort=5000
FirewallRules: [TCP Query User{C4E47B49-F94E-4559-BB5D-1C96688348B0}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe
FirewallRules: [UDP Query User{FE0B45D0-DE05-474F-8531-831A5F53C150}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe
FirewallRules: [TCP Query User{CE0F1D27-01E9-45EB-A33E-839D40D9B075}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{3D17EF45-2CEF-4683-88C5-4B626DB2AC8E}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [{A1CDAA7C-8504-4A92-B537-99523681F143}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{923B94FB-9D8E-4E25-BF03-86BC271C5D6E}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [TCP Query User{FFDC21D7-07DA-4596-96F6-2606D1EE5523}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe
FirewallRules: [UDP Query User{14F53A11-7ED1-4DE0-A7D2-97B462A28FBD}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe
FirewallRules: [TCP Query User{55946F33-1BFB-4145-8AB1-5D1F22F492E7}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe
FirewallRules: [UDP Query User{C090514C-6057-4356-8FF6-C331D79D3331}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe
FirewallRules: [{970D3085-A7A4-4F79-B343-049A8BCA0A5C}] => (Allow) F:\fsetup.exe
FirewallRules: [{2B7218D5-2AD3-4B90-A65B-D5408829DE19}] => (Allow) F:\fsetup.exe
FirewallRules: [TCP Query User{542118CF-7A70-4724-8A79-A6EB75B4FFED}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe
FirewallRules: [UDP Query User{D39C71E1-53A0-431D-AB76-ACC2297B9F8C}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe
FirewallRules: [TCP Query User{10CE6C0D-E841-420D-90D5-DC3DAC394401}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe
FirewallRules: [UDP Query User{04E6753E-4B85-4D1B-ABA4-A9478F312164}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe
FirewallRules: [{AA815EF5-355D-4D28-A008-E21B73350E82}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
FirewallRules: [{CB407730-B925-456F-AA28-CE95A904668F}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe
FirewallRules: [{4BE75D74-AF9E-40FE-9152-7E9E2059F0EC}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{FC013570-8818-49C7-B0EE-3CCB7A4C0201}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
FirewallRules: [{26DEB5FB-BE8C-4DC4-A0B5-048BFF82B0AC}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{365B34C2-C733-431E-8642-4A93CCCBD74A}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe
FirewallRules: [{4BD8A3E4-BF87-42FC-A8B4-76310CBF3534}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{049AC890-1243-4FE2-8EF7-84F0BA451EAD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{7E20B448-3ED1-4F81-A122-E8A94D23D474}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [UDP Query User{DCEE4AC1-9E2A-42F7-AD9E-7E1457569345}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [{317403D4-D673-41E0-9FA7-D691E575DFE6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FD9A778E-8629-4836-8AC3-C1F8257A39E1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C65A4598-15FC-4B7B-8B8E-0707C30116A1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{AA9F69DB-EB14-4AE5-B989-0FEACAB37859}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A756DD02-76B3-411A-A389-9540F12347CA}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{F04E674E-45C2-4495-A8B5-44D0C60BD685}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{9C4BF95C-CB89-4999-BB0D-61D4F7BEA3E3}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{37AF3EA8-2C25-476F-BB39-27CC871F71FA}] => (Allow) C:\Program Files\Soluto\SolutoRemoteDirect.exe
FirewallRules: [{B68280D6-21A4-4F84-9120-CDE12F4387B5}] => (Allow) C:\Program Files\Soluto\Soluto.exe
FirewallRules: [{4DD06769-4B02-421C-B33F-3A814CDCF202}] => (Allow) C:\Program Files\Soluto\SolutoCleanup.exe
FirewallRules: [{8789811D-F810-43A9-A24F-76E107F77FCA}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe
FirewallRules: [{2F5EA5E9-9EB8-469B-AE8F-25800A72831C}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe
FirewallRules: [{8B3A6641-9A02-4BBF-A3E3-E471BE7F2A9C}] => (Allow) C:\Program Files\Soluto\SolutoService.exe
FirewallRules: [{E7147E98-EB39-4389-AA34-1C8F13036CEA}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PFInstOnline.exe
FirewallRules: [{818B516A-0465-4991-834F-18450FBFDB0E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe
FirewallRules: [{D93A30B2-2F50-4501-9A99-8163D5CEE919}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{36F8F835-FD92-413A-8422-C8B288FDFEFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{523F29E1-4B2C-4CFF-B172-219BBA061846}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe
FirewallRules: [{485D813E-61CB-4ACC-A0E5-4605B70CD791}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{06AFD3D5-E41F-43FA-93A1-D3BF6A35DF9E}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe
FirewallRules: [{99EFE046-3B35-4BA0-AF8D-3343067636AD}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe
FirewallRules: [{F29603EC-DA84-4DA0-9087-AEEA9BB682BE}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe
FirewallRules: [{74F4A7EF-37C3-48B6-8186-D35FCDBFEDE3}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe
FirewallRules: [{83EBD3A4-87A8-4B2E-95C0-17FBDAA35500}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{768B6FD9-DE8E-4019-94F4-317AC81ECE6C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{0EB65856-E6E3-4B5B-953C-375C0CC1F35E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{91D760C6-8120-489B-A05B-B1EC38BC73B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{7C818C20-03B9-42CC-89EE-075253F470D7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe

==================== Wiederherstellungspunkte =========================

22-12-2015 15:13:31 Geplanter Prüfpunkt
30-12-2015 18:14:08 Revo Uninstaller's restore point - QuickStores-Toolbar 1.0.0
30-12-2015 18:22:33 Revo Uninstaller's restore point - Vuze Remote Toolbar
30-12-2015 18:43:58 Revo Uninstaller's restore point - WSE_Binkiland

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Bluetooth-Peripheriegerät
Description: Bluetooth-Peripheriegerät
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: FKZAZUJ 52JWDUFO96 SCSI CdRom Device
Description: CD-ROM-Laufwerk
Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318}
Manufacturer: (Standard-CD-ROM-Laufwerke)
Service: cdrom
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/31/2015 08:15:45 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/31/2015 05:31:42 AM) (Source: SideBySide) (EventID: 63) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3.
Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig.

Error: (12/31/2015 05:31:40 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/31/2015 05:30:38 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "UCCAPI,processorArchitecture="x86",type="win32",version="2.0.0.0"1".
Die abhängige Assemblierung "UCCAPI,processorArchitecture="x86",type="win32",version="2.0.0.0"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".

Error: (12/30/2015 10:05:29 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/30/2015 10:05:13 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/30/2015 10:04:45 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/30/2015 10:04:33 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in
Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3.
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/30/2015 09:55:05 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT)
Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten.

Error: (12/30/2015 08:52:30 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT)
Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten.


Systemfehler:
=============
Error: (12/31/2015 05:56:47 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: 
%%1058

Error: (12/30/2015 10:29:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (12/30/2015 10:29:47 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Home\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (12/30/2015 10:29:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (12/30/2015 10:29:46 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Home\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (12/30/2015 10:29:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (12/30/2015 10:29:46 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Home\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (12/30/2015 10:07:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275

Error: (12/30/2015 10:07:40 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Home\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (12/30/2015 10:07:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
%%1275


CodeIntegrity:
===================================
  Date: 2015-12-31 08:21:18.303
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-31 08:21:03.096
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-31 08:21:01.834
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-31 08:20:57.715
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-31 08:20:56.689
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-31 08:20:44.663
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-31 08:20:41.272
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-31 08:20:39.507
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-31 08:19:50.680
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2015-12-31 08:19:46.598
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz
Prozentuale Nutzung des RAM: 75%
Installierter physikalischer RAM: 4063.19 MB
Verfügbarer physikalischer RAM: 999.24 MB
Summe virtueller Speicher: 8124.58 MB
Verfügbarer virtueller Speicher: 3690.25 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:151.36 GB) (Free:31.36 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (Büro) (Fixed) (Total:48.83 GB) (Free:6.32 GB) NTFS
Drive e: (Z***) (Fixed) (Total:12.94 GB) (Free:3.74 GB) NTFS
Drive g: (Fotos) (Fixed) (Total:65.51 GB) (Free:14.11 GB) NTFS
Drive h: (Videoprojekte) (Fixed) (Total:41.01 GB) (Free:19.68 GB) NTFS
Drive p: (Videoschnitt) (Fixed) (Total:43.01 GB) (Free:7.79 GB) NTFS
Drive q: (Container) (Fixed) (Total:19.24 GB) (Free:4.42 GB) NTFS
Drive y: (Excelprojekte) (Fixed) (Total:7.81 GB) (Free:7.03 GB) NTFS
Drive z: (Sonstiges) (Fixed) (Total:206.24 GB) (Free:76.79 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: 44854109)
Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=151.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=133.6 GB) - (Type=05)
Partition 4: (Not Active) - (Size=12.9 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 4BBD1113)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=42)

==================== Ende von Addition.txt ============================

So und nun noch die Antwort auf deine Frage:

"Hast du noch irgendwelche Probleme mit deinem Rechner? Wie verhält sich deine Auslastung?"

Also:
- der Laptop braucht immer noch gut 5 min (lt Anzeige von Soluto) um hochzufahren und bereit zu sein
- die CPU schwankt beim "bloß anschauen und sonst nichts tun" zwischen 2% und knapp 60%. (mache ich mir sichtbar über Rainmeter --> gibt es zu diesem Programm dir bekannte Alternativen?)
- der Lüfter pustet aber nicht mehr so laut wie zum Beginn dieses Threads
- was ich auch seltsam finde ist die Tatsache, das lt Taskmanager mein Arbeitsspeicher mit fast 3 GB benutzt wird aber so gut wie nichts offen ist
- und aktuell laufen 113 Prozesse im Hintergrund, das hatte ich vorher auch immer in etwa nur da war die CPU wie gesagt bei 100% ständig am Anschlag und der Lüfter war sehr laut
- dieses Malwarebytes hat sich jetzt in meine Statusleiste eingenistet --> was mache ich mit dem Programm zukünftig?

Ich wollte dich noch mal fragen ob ich, wenn das hier durch ist dich auch mal mit anderen Fragen, die jetzt nicht unbedingt was mit Trojanern zu tun haben aber mit den PC fragen kann...oder gibt es da andere Spezialisten hier im Team?

31.12.2015, 01:03	#28
burningice /// Malwareteam	Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Nein das Programm braucht immer sehr lange, kannst du problemlos laufen lassen __________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook ..........

Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter

Log-Analyse und Auswertung: Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter