|
Log-Analyse und Auswertung: Windows 7 64Bit - ständig 100% CPU Last mit lauten LüfterWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
30.12.2015, 01:05 | #16 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Scan TDSSKiller und wieder das Problem mit zu vielen Zeichen aber --> er meldet keinen Fund Darum hier Teil 1... Code:
ATTFilter 01:01:45.0764 0x10a8 TDSS rootkit removing tool 3.1.0.9 Dec 11 2015 22:49:12 01:01:50.0062 0x10a8 ============================================================ 01:01:50.0062 0x10a8 Current date / time: 2015/12/30 01:01:50.0062 01:01:50.0062 0x10a8 SystemInfo: 01:01:50.0062 0x10a8 01:01:50.0062 0x10a8 OS Version: 6.1.7601 ServicePack: 1.0 01:01:50.0062 0x10a8 Product type: Workstation 01:01:50.0062 0x10a8 ComputerName: NOTEBOOK-RS 01:01:50.0062 0x10a8 UserName: Home 01:01:50.0062 0x10a8 Windows directory: C:\Windows 01:01:50.0062 0x10a8 System windows directory: C:\Windows 01:01:50.0062 0x10a8 Running under WOW64 01:01:50.0062 0x10a8 Processor architecture: Intel x64 01:01:50.0062 0x10a8 Number of processors: 2 01:01:50.0062 0x10a8 Page size: 0x1000 01:01:50.0062 0x10a8 Boot type: Normal boot 01:01:50.0062 0x10a8 ============================================================ 01:01:50.0092 0x10a8 BG loaded 01:01:50.0532 0x10a8 System UUID: {C555F022-0B4C-8013-FB7B-F2B6C5862A0A} 01:01:51.0074 0x10a8 Drive \Device\Harddisk2\DR2 - Size: 0x3BE000000 ( 14.97 Gb ), SectorSize: 0x200, Cylinders: 0x7A2, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000048 01:01:51.0094 0x10a8 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 01:01:51.0134 0x10a8 Drive \Device\Harddisk1\DR1 - Size: 0x4A85D56000 ( 298.09 Gb ), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040 01:01:51.0154 0x10a8 Drive \Device\Harddisk2\DR2 - Size: 0x3BE000000 ( 14.97 Gb ), SectorSize: 0x200, Cylinders: 0x7A2, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 01:01:51.0164 0x10a8 Drive \Device\Harddisk3\DR3 - Size: 0x76C000000 ( 29.69 Gb ), SectorSize: 0x200, Cylinders: 0xF23, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 01:01:51.0164 0x10a8 Drive \Device\Harddisk4\DR4 - Size: 0xEE7AA0000 ( 59.62 Gb ), SectorSize: 0x200, Cylinders: 0x1E66, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 01:01:51.0254 0x10a8 Drive \Device\Harddisk5\DR5 - Size: 0x1D1BF100000 ( 1862.99 Gb ), SectorSize: 0x200, Cylinders: 0x3B5FD, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 01:01:51.0254 0x10a8 ============================================================ 01:01:51.0254 0x10a8 \Device\Harddisk2\DR2: 01:01:51.0254 0x10a8 MBR partitions: 01:01:51.0254 0x10a8 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x2000, BlocksNum 0x1DEE000 01:01:51.0254 0x10a8 \Device\Harddisk0\DR0: 01:01:51.0254 0x10a8 MBR partitions: 01:01:51.0254 0x10a8 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x63800 01:01:51.0254 0x10a8 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x64000, BlocksNum 0x12EB7348 01:01:51.0264 0x10a8 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x12F1B387, BlocksNum 0x8305F29 01:01:51.0324 0x10a8 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x1B2212EF, BlocksNum 0x5207800 01:01:51.0354 0x10a8 \Device\Harddisk0\DR0\Partition5: MBR, Type 0x7, StartLBA 0x2042C21A, BlocksNum 0xF9F800 01:01:51.0364 0x10a8 \Device\Harddisk0\DR0\Partition6: MBR, Type 0x7, StartLBA 0x213CDA6F, BlocksNum 0x267C591 01:01:51.0364 0x10a8 \Device\Harddisk0\DR0\Partition7: MBR, Type 0x7, StartLBA 0x23A4CFA7, BlocksNum 0x19E071A 01:01:51.0364 0x10a8 \Device\Harddisk1\DR1: 01:01:51.0364 0x10a8 MBR partitions: 01:01:51.0364 0x10a8 \Device\Harddisk2\DR2: 01:01:51.0364 0x10a8 MBR partitions: 01:01:51.0364 0x10a8 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x2000, BlocksNum 0x1DEE000 01:01:51.0364 0x10a8 \Device\Harddisk3\DR3: 01:01:51.0364 0x10a8 MBR partitions: 01:01:51.0364 0x10a8 \Device\Harddisk3\DR3\Partition1: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x3B5FFE0 01:01:51.0364 0x10a8 \Device\Harddisk4\DR4: 01:01:51.0374 0x10a8 MBR partitions: 01:01:51.0374 0x10a8 \Device\Harddisk4\DR4\Partition1: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x773D4E0 01:01:51.0374 0x10a8 \Device\Harddisk5\DR5: 01:01:51.0374 0x10a8 MBR partitions: 01:01:51.0374 0x10a8 \Device\Harddisk5\DR5\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0xE8DF8000 01:01:51.0374 0x10a8 ============================================================ 01:01:51.0424 0x10a8 C: <-> \Device\Harddisk0\DR0\Partition2 01:01:51.0464 0x10a8 E: <-> \Device\Harddisk0\DR0\Partition7 01:01:51.0464 0x10a8 X: <-> \Device\Harddisk4\DR4\Partition1 01:01:51.0494 0x10a8 W: <-> \Device\Harddisk5\DR5\Partition1 01:01:51.0514 0x10a8 G: <-> \Device\Harddisk0\DR0\Partition3 01:01:51.0574 0x10a8 Q: <-> \Device\Harddisk0\DR0\Partition6 01:01:51.0604 0x10a8 Y: <-> \Device\Harddisk0\DR0\Partition5 01:01:51.0644 0x10a8 H: <-> \Device\Harddisk0\DR0\Partition4 01:01:51.0644 0x10a8 ============================================================ 01:01:51.0644 0x10a8 Initialize success 01:01:51.0644 0x10a8 ============================================================ 01:02:02.0651 0x1d4c ============================================================ 01:02:02.0651 0x1d4c Scan started 01:02:02.0651 0x1d4c Mode: Manual; 01:02:02.0651 0x1d4c ============================================================ 01:02:02.0651 0x1d4c KSN ping started 01:02:14.0602 0x1d4c KSN ping finished: true 01:02:18.0284 0x1d4c ================ Scan system memory ======================== 01:02:18.0304 0x1d4c System memory - ok 01:02:18.0304 0x1d4c ================ Scan services ============================= 01:02:18.0474 0x1d4c [ A87D604AEA360176311474C87A63BB88, B1507868C382CD5D2DBC0D62114FCFBF7A780904A2E3CA7C7C1DD0844ADA9A8F ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys 01:02:18.0504 0x1d4c 1394ohci - ok 01:02:18.0554 0x1d4c [ E0A8525A951ADDB4655BC2068566407D, 7C08B9DB7C281422FD64219DF81B7064CE16EA53CF00EB1FC33CB0741CE6605F ] 61883 C:\Windows\system32\DRIVERS\61883.sys 01:02:18.0554 0x1d4c 61883 - ok 01:02:18.0614 0x1d4c [ 7EEB488346FBFA3731276C3EE8A8FD9E, 97D2E49C2E615E38E8176F1C1551BF452CC6A00787FF90845EFF27A4E6E20B1F ] AAV UpdateService C:\Program Files (x86)\AAVUpdateManager\aavus.exe 01:02:18.0614 0x1d4c AAV UpdateService - ok 01:02:18.0694 0x1d4c [ B33CF4DE909A5B30F526D82053A63C8E, ABF5BB962C038E545C18B96E686E072D780C907096C7BB341297AF31D3703ABD ] ABBYY.Licensing.FineReader.Professional.9.0 C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe 01:02:18.0714 0x1d4c ABBYY.Licensing.FineReader.Professional.9.0 - ok 01:02:18.0744 0x1d4c [ 5C368F4B04ED2A923E6AFCA2D37BAFF5, C3CC58D636B18DF77C4C4B384AD1DE78418716A0606E564DBC63782D5EA02905 ] Accelerometer C:\Windows\system32\DRIVERS\Accelerometer.sys 01:02:18.0744 0x1d4c Accelerometer - ok 01:02:18.0794 0x1d4c [ D81D9E70B8A6DD14D42D7B4EFA65D5F2, FDAAB7E23012B4D31537C5BDEF245BB0A12FA060A072C250E21C68E18B22E002 ] ACPI C:\Windows\system32\drivers\ACPI.sys 01:02:18.0804 0x1d4c ACPI - ok 01:02:18.0834 0x1d4c [ 99F8E788246D495CE3794D7E7821D2CA, F91615463270AD2601F882CAED43B88E7EDA115B9FD03FC56320E48119F15F76 ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys 01:02:18.0844 0x1d4c AcpiPmi - ok 01:02:18.0924 0x1d4c [ CD41DFA7A778555B2055E2D388F5CB33, AE149AB7823AE3A97E2826C06968F32A7E50331484203E4581C83E441A1680F9 ] AcrSch2Svc C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe 01:02:18.0974 0x1d4c AcrSch2Svc - ok 01:02:19.0036 0x1d4c [ 5DB2C6B908C50767E2EDAA294A7566B5, 13AE4879D679BB0C6B2A5A5B13910359815A9D2E569BC1DE740B5A387A78CF33 ] AdobeARMservice C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe 01:02:19.0036 0x1d4c AdobeARMservice - ok 01:02:19.0126 0x1d4c [ C3E7E1F3C85A6788F3BA078BA214341E, A3D72ACE045730DC1C8A6F4E3937C5C765AB447BF7C573BEC53DE8148EB4A1C8 ] AdobeFlashPlayerUpdateSvc C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe 01:02:19.0136 0x1d4c AdobeFlashPlayerUpdateSvc - ok 01:02:19.0186 0x1d4c [ 2F6B34B83843F0C5118B63AC634F5BF4, 43E3F5FBFB5D33981AC503DEE476868EC029815D459E7C36C4ABC2D2F75B5735 ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys 01:02:19.0206 0x1d4c adp94xx - ok 01:02:19.0216 0x1d4c [ 597F78224EE9224EA1A13D6350CED962, DA7FD99BE5E3B7B98605BF5C13BF3F1A286C0DE1240617570B46FE4605E59BDC ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys 01:02:19.0226 0x1d4c adpahci - ok 01:02:19.0236 0x1d4c [ E109549C90F62FB570B9540C4B148E54, E804563735153EA00A00641814244BC8A347B578E7D63A16F43FB17566EE5559 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys 01:02:19.0246 0x1d4c adpu320 - ok 01:02:19.0286 0x1d4c [ 262D7C87D0AC20B96EF9877D3CA478A0, 54F7E5A5F8991C5525500C1ECCF3D3135D13F48866C366E52DF1D052DB2EE15B ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 01:02:19.0286 0x1d4c AeLookupSvc - ok 01:02:19.0376 0x1d4c [ A6FB9DB8F1A86861D955FD6975977AE0, 788C6EE50719227D7A9B7F08C8D5E1289FCD0E8AC23A1021A5093D2E8368F696 ] AESTFilters C:\Program Files\IDT\WDM\AESTSr64.exe 01:02:19.0386 0x1d4c AESTFilters - ok 01:02:19.0416 0x1d4c [ ABCF9C80EAACE03021BB7F450EB8993F, 8E38726C423E82954CA85266D6F38B605D010A659420A4EF99D29035A9474BFB ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys 01:02:19.0426 0x1d4c afcdp - ok 01:02:19.0588 0x1d4c [ 3B1C11CB7006495F799F8A2AB8B2D530, B7B0C4922A1843BBF8104CDC705C4FEA1F1A760C1CC2BD6BC5E4213A0E4ED9FD ] afcdpsrv C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe 01:02:19.0728 0x1d4c afcdpsrv - ok 01:02:19.0798 0x1d4c [ 9A4A1EEE802BF2F878EE8EAB407B21B7, 177EB7DF4B35FE4C0E45E775A0FD5D48D39B410052E3EE18BDEEC809E152D9D8 ] AFD C:\Windows\system32\drivers\afd.sys 01:02:19.0818 0x1d4c AFD - ok 01:02:19.0858 0x1d4c [ 608C14DBA7299D8CB6ED035A68A15799, 45360F89640BF1127C82A32393BD76205E4FA067889C40C491602F370C09282A ] agp440 C:\Windows\system32\drivers\agp440.sys 01:02:19.0858 0x1d4c agp440 - ok 01:02:19.0918 0x1d4c [ 3290D6946B5E30E70414990574883DDB, 0E9294E1991572256B3CDA6B031DB9F39CA601385515EE59F1F601725B889663 ] ALG C:\Windows\System32\alg.exe 01:02:19.0918 0x1d4c ALG - ok 01:02:19.0938 0x1d4c [ 5812713A477A3AD7363C7438CA2EE038, A7316299470D2E57A11499C752A711BF4A71EB11C9CBA731ED0945FF6A966721 ] aliide C:\Windows\system32\drivers\aliide.sys 01:02:19.0938 0x1d4c aliide - ok 01:02:19.0968 0x1d4c [ A2F5BEA5B45A8E7C4776F39C25E8699D, 52BD8D15CCDD74C193F2622928CB6C2E3FCE026B19BA6318DB04900BD19C5DC6 ] AMD External Events Utility C:\Windows\system32\atiesrxx.exe 01:02:19.0978 0x1d4c AMD External Events Utility - ok 01:02:20.0008 0x1d4c [ 1FF8B4431C353CE385C875F194924C0C, 3EA3A7F426B0FFC2461EDF4FDB4B58ACC9D0730EDA5B728D1EA1346EA0A02720 ] amdide C:\Windows\system32\drivers\amdide.sys 01:02:20.0008 0x1d4c amdide - ok 01:02:20.0028 0x1d4c [ 7024F087CFF1833A806193EF9D22CDA9, E7F27E488C38338388103D3B7EEDD61D05E14FB140992AEE6F492FFC821BF529 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys 01:02:20.0038 0x1d4c AmdK8 - ok 01:02:20.0422 0x1d4c [ 5B03217859B014B090CB5060C1D96875, CFA9110054CFAF319394BB8D567B74AFFA21791A58DC81B87A714CCC7C578F33 ] amdkmdag C:\Windows\system32\DRIVERS\atikmdag.sys 01:02:20.0752 0x1d4c amdkmdag - ok 01:02:20.0802 0x1d4c [ 35D2184A99AD4CD5D17284D6C9F382C9, 93FE4EF2489C29823ED0F9C9D91B44E531BC0A9B3B56DDDDA0F947E80568F70C ] amdkmdap C:\Windows\system32\DRIVERS\atikmpag.sys 01:02:20.0822 0x1d4c amdkmdap - ok 01:02:20.0842 0x1d4c [ 1E56388B3FE0D031C44144EB8C4D6217, E88CA76FD47BA0EB427D59CB9BE040DE133D89D4E62D03A8D622624531D27487 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys 01:02:20.0842 0x1d4c AmdPPM - ok 01:02:20.0882 0x1d4c [ D4121AE6D0C0E7E13AA221AA57EF2D49, 626F43C099BD197BE56648C367B711143C2BCCE96496BBDEF19F391D52FA01D0 ] amdsata C:\Windows\system32\drivers\amdsata.sys 01:02:20.0882 0x1d4c amdsata - ok 01:02:20.0892 0x1d4c [ F67F933E79241ED32FF46A4F29B5120B, D6EF539058F159CC4DD14CA9B1FD924998FEAC9D325C823C7A2DD21FEF1DC1A8 ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys 01:02:20.0902 0x1d4c amdsbs - ok 01:02:20.0912 0x1d4c [ 540DAF1CEA6094886D72126FD7C33048, 296578572A93F5B74E1AD443E000B79DC99D1CBD25082E02704800F886A3065F ] amdxata C:\Windows\system32\drivers\amdxata.sys 01:02:20.0922 0x1d4c amdxata - ok 01:02:20.0942 0x1d4c [ 27DABFB4A6B0140C34DBEC713469592B, A355170D353AFBF0DE4EF53282F8404788FBBD0E2A1B7282B1B2925923E83141 ] AppID C:\Windows\system32\drivers\appid.sys 01:02:20.0942 0x1d4c AppID - ok 01:02:20.0962 0x1d4c [ ABC373B9C6275D45F17DB559408FFD1B, 12B355393BEBE2D1D24D7A9DA5E69E03E334899407503BC1CADCF7BE39828223 ] AppIDSvc C:\Windows\System32\appidsvc.dll 01:02:20.0962 0x1d4c AppIDSvc - ok 01:02:20.0992 0x1d4c [ 3EA5DA3F459F6ED19E10166965F6892F, F5618A5FA72C5E57BCFA6F2ECB840B1AEC60C72840AF3C1D94D5FCDB5ED2BF5E ] Appinfo C:\Windows\System32\appinfo.dll 01:02:20.0992 0x1d4c Appinfo - ok 01:02:21.0042 0x1d4c [ 612CB66D93ED0F2F21BB109840C7D813, 75484123DA27B8942B13148FCF061C75A08A50386A095143736B593E9C772173 ] Apple Mobile Device Service C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 01:02:21.0042 0x1d4c Apple Mobile Device Service - ok 01:02:21.0052 0x1d4c [ C484F8CEB1717C540242531DB7845C4E, C507CE26716EB923B864ED85E8FA0B24591E2784A2F4F0E78AEED7E9953311F6 ] arc C:\Windows\system32\DRIVERS\arc.sys 01:02:21.0052 0x1d4c arc - ok 01:02:21.0062 0x1d4c [ 019AF6924AEFE7839F61C830227FE79C, 5926B9DDFC9198043CDD6EA0B384C83B001EC225A8125628C4A45A3E6C42C72A ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys 01:02:21.0062 0x1d4c arcsas - ok 01:02:21.0092 0x1d4c [ 769765CE2CC62867468CEA93969B2242, 0D8F19D49869DF93A3876B4C2E249D12E83F9CE11DAE8917D368E292043D4D26 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 01:02:21.0092 0x1d4c AsyncMac - ok 01:02:21.0112 0x1d4c [ 02062C0B390B7729EDC9E69C680A6F3C, 0261683C6DC2706DCE491A1CDC954AC9C9E649376EC30760BB4E225E18DC5273 ] atapi C:\Windows\system32\drivers\atapi.sys 01:02:21.0112 0x1d4c atapi - ok 01:02:21.0152 0x1d4c [ ED38B8924DE8C806A2A1C12C4F61E9CF, 88B71426CF09A8458B1AE2DDF41F2C86FE9B4DDA742D22BFF8AF110915486DDA ] AtiHDAudioService C:\Windows\system32\drivers\AtihdW76.sys 01:02:21.0152 0x1d4c AtiHDAudioService - ok 01:02:21.0172 0x1d4c [ 04A5815DF7E8B037DF674D3CCACC0C31, BC49D6C135C50254BF952B790046BE364DFDDA786F1EACEE4CC8880B764B7A92 ] AtiHdmiService C:\Windows\system32\drivers\AtiHdmi.sys 01:02:21.0182 0x1d4c AtiHdmiService - ok 01:02:21.0502 0x1d4c [ 5B03217859B014B090CB5060C1D96875, CFA9110054CFAF319394BB8D567B74AFFA21791A58DC81B87A714CCC7C578F33 ] atikmdag C:\Windows\system32\DRIVERS\atikmdag.sys 01:02:21.0684 0x1d4c atikmdag - ok 01:02:21.0796 0x1d4c [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 01:02:21.0816 0x1d4c AudioEndpointBuilder - ok 01:02:21.0836 0x1d4c [ 6968D02DC38757C3FBE7ED7C2F9670AA, C8B3115DDB32EFBE8C56C5AA78EEA05BBB77DF3F75CC2A04532EB32327E4735A ] AudioSrv C:\Windows\System32\Audiosrv.dll 01:02:21.0856 0x1d4c AudioSrv - ok 01:02:21.0886 0x1d4c [ 16FABE84916623D0607E4A975544032C, 9D960CAE27B1769ED5B024C0A3375912432521C73C1F59E21111596A7981BDC3 ] Avc C:\Windows\system32\DRIVERS\avc.sys 01:02:21.0886 0x1d4c Avc - ok 01:02:21.0946 0x1d4c [ 70CCDD9BCBAA5A918A7D135E28A824E2, D98A6D7885A7E44AD32F25BECE65151773E50D3B155020A03A5801DE5A090EA3 ] avc3 C:\Windows\system32\DRIVERS\avc3.sys 01:02:21.0986 0x1d4c avc3 - ok 01:02:22.0016 0x1d4c [ D0B093DDF5FD05E4D0109159E9153A52, 2F8430F4B7EECB3C9712E443460F1F9B4FA52EB123FE3B0ED63AAD88616C13A4 ] avchv C:\Windows\system32\DRIVERS\avchv.sys 01:02:22.0026 0x1d4c avchv - ok 01:02:22.0056 0x1d4c [ 0956716D5565680DC83992C11BBDB2C2, 7349F32F3E8596E680EE26BB1CA97AFADB42ED1B4652859CE5E221F67371B412 ] avckf C:\Windows\system32\DRIVERS\avckf.sys 01:02:22.0086 0x1d4c avckf - ok 01:02:22.0166 0x1d4c [ 5E3C595A18B70417858BB37A3B3F6039, 374D76D2D7C684881501A48FF00CE6E0742FE75E411212EAA72543CC94CE184F ] avgsvc C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe 01:02:22.0206 0x1d4c avgsvc - ok 01:02:22.0226 0x1d4c [ A6BF31A71B409DFA8CAC83159E1E2AFF, CBB83F73FFD3C3FB4F96605067739F8F7A4A40B2B05417FA49E575E95628753F ] AxInstSV C:\Windows\System32\AxInstSV.dll 01:02:22.0236 0x1d4c AxInstSV - ok 01:02:22.0266 0x1d4c [ 3E5B191307609F7514148C6832BB0842, DE011CB7AA4A2405FAF21575182E0793A1D83DFFC44E9A7864D59F3D51D8D580 ] b06bdrv C:\Windows\system32\DRIVERS\bxvbda.sys 01:02:22.0286 0x1d4c b06bdrv - ok 01:02:22.0306 0x1d4c [ B5ACE6968304A3900EEB1EBFD9622DF2, 1DAA118D8CA3F97B34DF3D3CDA1C78EAB2ED225699FEABE89D331AE0CB7679FA ] b57nd60a C:\Windows\system32\DRIVERS\b57nd60a.sys 01:02:22.0316 0x1d4c b57nd60a - ok 01:02:22.0346 0x1d4c [ FDE360167101B4E45A96F939F388AEB0, 8D1457E866BBD645C4B9710DFBFF93405CC1193BF9AE42326F2382500B713B82 ] BDESVC C:\Windows\System32\bdesvc.dll 01:02:22.0346 0x1d4c BDESVC - ok 01:02:22.0416 0x1d4c [ 4CE4B0098FC315C237FA8867F07886C4, 475B2D86EE7658372D868ABC9ACA965FDD8212D3AE2C6E4749DC53DBA3DC19D6 ] bdfwfpf C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys 01:02:22.0416 0x1d4c bdfwfpf - ok 01:02:22.0446 0x1d4c [ B9ECE7FD9F58DAF19450C88338DC5267, 9857DFE0BDDEA791F2DDA99C24A064D488B52E4AC1402A37EF22C244C9283681 ] BDSandBox C:\Windows\system32\drivers\bdsandbox.sys 01:02:22.0446 0x1d4c BDSandBox - ok 01:02:22.0466 0x1d4c [ 16A47CE2DECC9B099349A5F840654746, 77C008AEDB07FAC66413841D65C952DDB56FE7DCA5E9EF9C8F4130336B838024 ] Beep C:\Windows\system32\drivers\Beep.sys 01:02:22.0466 0x1d4c Beep - ok 01:02:22.0506 0x1d4c [ 82974D6A2FD19445CC5171FC378668A4, 075D25F47C0D2277E40AF8615571DAA5EB16B1824563632A9A7EC62505C29A4A ] BFE C:\Windows\System32\bfe.dll 01:02:22.0536 0x1d4c BFE - ok 01:02:22.0596 0x1d4c [ 1EA7969E3271CBC59E1730697DC74682, D511A34D63A6E0E6E7D1879068E2CD3D87ABEAF4936B2EA8CDDAD9F79D60FA04 ] BITS C:\Windows\System32\qmgr.dll 01:02:22.0676 0x1d4c BITS - ok 01:02:22.0696 0x1d4c [ 61583EE3C3A17003C4ACD0475646B4D3, 17E4BECC309C450E7E44F59A9C0BBC24D21BDC66DFBA65B8F198A00BB47A9811 ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys 01:02:22.0696 0x1d4c blbdrive - ok 01:02:22.0736 0x1d4c [ EBBCD5DFBB1DE70E8F4AF8FA59E401FD, 17BFFC5DF609CE3B2F0CAB4BD6C118608C66A3AD86116A47E90B2BB7D8954122 ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 01:02:22.0746 0x1d4c Bonjour Service - ok 01:02:22.0776 0x1d4c [ 6C02A83164F5CC0A262F4199F0871CF5, AD4632A6A203CB40970D848315D8ADB9C898349E20D8DF4107C2AE2703A2CF28 ] bowser C:\Windows\system32\DRIVERS\bowser.sys 01:02:22.0776 0x1d4c bowser - ok 01:02:22.0806 0x1d4c [ F09EEE9EDC320B5E1501F749FDE686C8, 66691114C42E12F4CC6DC4078D4D2FA4029759ACDAF1B59D17383487180E84E3 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys 01:02:22.0806 0x1d4c BrFiltLo - ok 01:02:22.0826 0x1d4c [ B114D3098E9BDB8BEA8B053685831BE6, 0ED23C1897F35FA00B9C2848DE4ED200E18688AA7825674888054BBC3A3EB92C ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys 01:02:22.0826 0x1d4c BrFiltUp - ok 01:02:22.0846 0x1d4c [ 05F5A0D14A2EE1D8255C2AA0E9E8E694, 40011138869F5496A3E78D38C9900B466B6F3877526AC22952DCD528173F4645 ] Browser C:\Windows\System32\browser.dll 01:02:22.0856 0x1d4c Browser - ok 01:02:22.0866 0x1d4c [ 43BEA8D483BF1870F018E2D02E06A5BD, 4E6F5A5FD8C796A110B0DC9FF29E31EA78C04518FC1C840EF61BABD58AB10272 ] Brserid C:\Windows\System32\Drivers\Brserid.sys 01:02:22.0876 0x1d4c Brserid - ok 01:02:22.0886 0x1d4c [ A6ECA2151B08A09CACECA35C07F05B42, E2875BB7768ABAF38C3377007AA0A3C281503474D1831E396FB6599721586B0C ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys 01:02:22.0886 0x1d4c BrSerWdm - ok 01:02:22.0896 0x1d4c [ B79968002C277E869CF38BD22CD61524, 50631836502237AF4893ECDCEA43B9031C3DE97433F594D46AF7C3C77F331983 ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys 01:02:22.0896 0x1d4c BrUsbMdm - ok 01:02:22.0896 0x1d4c [ A87528880231C54E75EA7A44943B38BF, 4C8BBB29FDA76A96840AA47A8613C15D4466F9273A13941C19507008629709C9 ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys 01:02:22.0896 0x1d4c BrUsbSer - ok 01:02:22.0933 0x1d4c [ 832B121E4532919CC49F2438F1DCAA21, 70FFDD505A64D3CF03220D6422EDD47CA2E0DF711BBF2ED057F32A688CB2E2E8 ] BthAvrcp C:\Windows\system32\DRIVERS\BthAvrcp.sys 01:02:22.0934 0x1d4c BthAvrcp - ok 01:02:22.0958 0x1d4c [ CF98190A94F62E405C8CB255018B2315, E1B2540023C4FE9FD588E4B6AE6347DFA565EB3898F21E5360882BF3E8B5E781 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys 01:02:22.0958 0x1d4c BthEnum - ok 01:02:22.0988 0x1d4c [ 9DA669F11D1F894AB4EB69BF546A42E8, B498B8B6CEF957B73179D1ADAF084BBB57BB3735D810F9BE2C7B1D58A4FD25A4 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 01:02:22.0988 0x1d4c BTHMODEM - ok 01:02:23.0008 0x1d4c [ 02DD601B708DD0667E1331FA8518E9FF, 7DE6CC4DBB621CD03B01D9CE6CF66EAFE31D39030A391562CD0E278E1D70ADE1 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 01:02:23.0018 0x1d4c BthPan - ok 01:02:23.0058 0x1d4c [ 738D0E9272F59EB7A1449C3EC118E6C4, FE3D32C2A5E4DC21376A0F89C0B2EE024ECF1A3FB99213CC9BBC986ADF7AF080 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys 01:02:23.0078 0x1d4c BTHPORT - ok 01:02:23.0118 0x1d4c [ 95F9C2976059462CBBF227F7AAB10DE9, 2797AE919FF7606B070FB039CECDB0707CD2131DCAC09C5DF14F443D881C9F34 ] bthserv C:\Windows\system32\bthserv.dll 01:02:23.0118 0x1d4c bthserv - ok 01:02:23.0148 0x1d4c [ F188B7394D81010767B6DF3178519A37, 576304E92FD94908F093A6AB5F4D328F25829BE32EC3CA0D29EBFDF5DE83539B ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys 01:02:23.0148 0x1d4c BTHUSB - ok 01:02:23.0224 0x1d4c [ 96E22173FD0E2670A2A20C1EEECA162A, 2CC26317DBA063058178EA9B775C2A0FA2CF94FEDC6DF89F3D8314207D56DA24 ] btwampfl C:\Windows\system32\drivers\btwampfl.sys 01:02:23.0240 0x1d4c btwampfl - ok 01:02:23.0270 0x1d4c [ A771078558477068DFD8037B82EB00F8, 58E1686B12B747639FE3BF4CCA58D48B8BBB349C9D316315AD7237F44EF760A4 ] btwaudio C:\Windows\system32\drivers\btwaudio.sys 01:02:23.0270 0x1d4c btwaudio - ok 01:02:23.0280 0x1d4c [ 9FF58F76024D25784755B01F926B00BE, 7A2504E326E63B7225FA25EA6D6ED3E7267278F5D2343A375D7F3B3F74EC9F38 ] btwavdt C:\Windows\system32\DRIVERS\btwavdt.sys 01:02:23.0290 0x1d4c btwavdt - ok 01:02:23.0350 0x1d4c [ D1E05F8B62074E95CA251D752A7BB163, 3B5C0FF6DB5ED9346B1D2DC8C1685D6B5CAAC272C6ED9D3ABAE663A7BD48E9F7 ] btwdins c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe 01:02:23.0390 0x1d4c btwdins - ok 01:02:23.0400 0x1264 Object required for P2P: [ C3E7E1F3C85A6788F3BA078BA214341E ] AdobeFlashPlayerUpdateSvc 01:02:23.0410 0x1d4c [ B1ACFD00CDD13B48D86F46BFEC153BF9, CD7BE27D93364735511CC714B85CB7D97E21E84E3C2361EC405BADAAEA550925 ] btwl2cap C:\Windows\system32\DRIVERS\btwl2cap.sys 01:02:23.0410 0x1d4c btwl2cap - ok 01:02:23.0420 0x1d4c [ EDD953D635F3AA89EF902E3F82D60D22, 22A60B225A1AD0F25B9715338C805FED9D5F4BCAC296BBC0D045C6935BDA55E7 ] btwrchid C:\Windows\system32\DRIVERS\btwrchid.sys 01:02:23.0420 0x1d4c btwrchid - ok 01:02:23.0520 0x1d4c [ 68BD23A0AD9E934F037A1D8A1929D1E2, 7104B04435930D085D01779065C8F293A265800D90C9DEFB19C998D9326E44E7 ] c2cautoupdatesvc C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe 01:02:23.0600 0x1d4c c2cautoupdatesvc - ok 01:02:23.0692 0x1d4c [ 13297729C696656F990A5DBA53023129, EB2B34B04B79756199DBBBDE99ACBB576D20C7C0AF3E4F3C0CF0040948216AAC ] c2cpnrsvc C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe 01:02:23.0752 0x1d4c c2cpnrsvc - ok 01:02:23.0779 0x1d4c [ B8BD2BB284668C84865658C77574381A, 6C55BA288B626DF172FDFEA0BD7027FAEBA1F44EF20AB55160D7C7DC6E717D65 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 01:02:23.0782 0x1d4c cdfs - ok 01:02:23.0804 0x1d4c [ F036CE71586E93D94DAB220D7BDF4416, BD07AAD9E20CEAF9FC84E4977C55EA2C45604A2C682AC70B9B9A2199B6713D5B ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 01:02:23.0804 0x1d4c cdrom - ok 01:02:23.0824 0x1d4c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] CertPropSvc C:\Windows\System32\certprop.dll 01:02:23.0834 0x1d4c CertPropSvc - ok 01:02:23.0844 0x1d4c [ D7CD5C4E1B71FA62050515314CFB52CF, 513B5A849899F379F0BC6AB3A8A05C3493C2393C95F036612B96EC6E252E1C64 ] circlass C:\Windows\system32\DRIVERS\circlass.sys 01:02:23.0844 0x1d4c circlass - ok 01:02:23.0894 0x1d4c [ 404B7DF9CA4D1CB675045AF220FF3285, 91FFADE2ABE5C48849E63134D5FFD20671FE0D1720F7D486F904391B3D142C96 ] CLFS C:\Windows\system32\CLFS.sys 01:02:23.0914 0x1d4c CLFS - ok 01:02:23.0954 0x1d4c [ F13EC8A783E0CB0D6DC26A3CA848B7B8, 0809E3B71709F1343086EEB6C820543C1A7119E74EEF8AC1AEE1F81093ABEC66 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 01:02:23.0954 0x1d4c clr_optimization_v2.0.50727_32 - ok 01:02:24.0004 0x1d4c [ B4D73F04E9BC076F7CDAC4327DF636BB, 1ADED20D5A0D0A76E2F85CB778FD06BAB814868D35F8532E17D67045FF4770C2 ] clr_optimization_v2.0.50727_64 C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe 01:02:24.0004 0x1d4c clr_optimization_v2.0.50727_64 - ok 01:02:24.0054 0x1d4c [ F5AB4D2E36625F355E81539239765107, 48E6AD65EEFD6C54F938F5753EF58377CDA77ADBB41CD8635F0040D61EFB92A4 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 01:02:24.0224 0x1d4c clr_optimization_v4.0.30319_32 - ok 01:02:24.0274 0x1d4c [ 9ACBE5EC13C2CC95833BFB7636CA8B1A, 6224DA9FB335D2A8374C60B8DEA539DD3A0E43230DB888B137B71A56EC57D6AF ] clr_optimization_v4.0.30319_64 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe 01:02:24.0344 0x1d4c clr_optimization_v4.0.30319_64 - ok 01:02:24.0344 0x1d4c clwvd - ok 01:02:24.0364 0x1d4c [ 0840155D0BDDF1190F84A663C284BD33, 696039FA63CFEB33487FAA8FD7BBDB220141E9C6E529355D768DFC87999A9C3A ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 01:02:24.0364 0x1d4c CmBatt - ok 01:02:24.0384 0x1d4c [ E19D3F095812725D88F9001985B94EDD, 46243C5CCC4981CAC6FA6452FFCEC33329BF172448F1852D52592C9342E0E18B ] cmdide C:\Windows\system32\drivers\cmdide.sys 01:02:24.0384 0x1d4c cmdide - ok 01:02:24.0424 0x1d4c [ EC0511BB85BAA42A9734011685A6732C, 10B52F0860CCB3AA0FC34DDA5C5538BFCF7B6D40738B7756297237FD2D9E01C1 ] CNG C:\Windows\system32\Drivers\cng.sys 01:02:24.0434 0x1d4c CNG - ok 01:02:24.0494 0x1d4c [ C7A0E61D5714AC20DE52D4F66EC773B8, 53F0C91FD62E6787221EFB4BFDB087C2087CACD6B0C0605F58FC391F546EBA7A ] Com4QLBEx C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe 01:02:24.0504 0x1d4c Com4QLBEx - ok 01:02:24.0514 0x1d4c [ 102DE219C3F61415F964C88E9085AD14, CD74CB703381F1382C32CF892FF2F908F4C9412E1BC77234F8FEA5D4666E1BF1 ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 01:02:24.0514 0x1d4c Compbatt - ok 01:02:24.0544 0x1d4c [ 03EDB043586CCEBA243D689BDDA370A8, 0E4523AA332E242D5C2C61C5717DBA5AB6E42DADB5A7E512505FC2B6CC224959 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys 01:02:24.0544 0x1d4c CompositeBus - ok 01:02:24.0544 0x1d4c COMSysApp - ok 01:02:24.0654 0x1d4c cpuz132 - ok 01:02:24.0684 0x1d4c cpuz136 - ok 01:02:24.0714 0x1d4c [ 1C827878A998C18847245FE1F34EE597, 41EF7443D8B2733AA35CAC64B4F5F74FAC8BB0DA7D3936B69EC38E2DC3972E60 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys 01:02:24.0724 0x1d4c crcdisk - ok 01:02:24.0744 0x1d4c [ 7BC3E861F7E8EB543A630090FAE779E0, 52A538F25C853AAC9706CD0D4EBF80B1963391AA175895CFD9D44C8ABBFCFB74 ] CryptSvc C:\Windows\system32\cryptsvc.dll 01:02:24.0754 0x1d4c CryptSvc - ok 01:02:24.0774 0x1d4c [ DF07C6D98BA7F81D0571E366B1CD6672, 1E544237ACB354F67EAA4D805EB5D82F25CBD6F0D6D886DAFA04FC3F168A2FD3 ] csr_a2dp C:\Windows\system32\drivers\bthav.sys 01:02:24.0774 0x1d4c csr_a2dp - ok 01:02:24.0814 0x1d4c dbupdate - ok 01:02:24.0814 0x1d4c dbupdatem - ok 01:02:24.0854 0x1d4c [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] DcomLaunch C:\Windows\system32\rpcss.dll 01:02:24.0874 0x1d4c DcomLaunch - ok 01:02:24.0914 0x1d4c [ C3E2CA0279F1CB3F68424993088BF16B, DB980FFC6ECF932DFC7005F8215B01079C536223110E9E3DF846A1A2F9D80C9A ] debutfilter C:\Windows\system32\DRIVERS\debutfilterx64.sys 01:02:24.0914 0x1d4c debutfilter - ok 01:02:24.0944 0x1d4c [ 3CEC7631A84943677AA8FA8EE5B6B43D, 32061DAC9ED6C1EBA3B367B18D0E965AEEC2DF635DCF794EC39D086D32503AC5 ] defragsvc C:\Windows\System32\defragsvc.dll 01:02:24.0954 0x1d4c defragsvc - ok 01:02:24.0995 0x1d4c [ 9BB2EF44EAA163B29C4A4587887A0FE4, 03667BC3EA5003F4236929C10F23D8F108AFCB29DB5559E751FB26DFB318636F ] DfsC C:\Windows\system32\Drivers\dfsc.sys 01:02:24.0998 0x1d4c DfsC - ok 01:02:25.0026 0x1d4c [ 43D808F5D9E1A18E5EEB5EBC83969E4E, C10D1155D71EABE4ED44C656A8F13078A8A4E850C4A8FBB92D52D173430972B8 ] Dhcp C:\Windows\system32\dhcpcore.dll 01:02:25.0046 0x1d4c Dhcp - ok 01:02:25.0106 0x1d4c [ EC3F433D00365F1A9BC3411BCA7C7140, 0852D747359DE573504EBBDB99DA26D3BFA8B3C7A4836F8E3A5AD94B5571AD5C ] DiagTrack C:\Windows\system32\diagtrack.dll 01:02:25.0156 0x1d4c DiagTrack - ok 01:02:25.0186 0x1d4c [ 13096B05847EC78F0977F2C0F79E9AB3, 1E44981B684F3E56F5D2439BB7FA78BD1BC876BB2265AE089AEC68F241B05B26 ] discache C:\Windows\system32\drivers\discache.sys 01:02:25.0186 0x1d4c discache - ok 01:02:25.0196 0x1d4c [ 9819EEE8B5EA3784EC4AF3B137A5244C, 571BC886E87C888DA96282E381A746D273B58B9074E84D4CA91275E26056D427 ] Disk C:\Windows\system32\DRIVERS\disk.sys 01:02:25.0196 0x1d4c Disk - ok 01:02:25.0226 0x1d4c [ 16835866AAA693C7D7FCEBA8FFF706E4, 15891558F7C1F2BB57A98769601D447ED0D952354A8BB347312D034DC03E0242 ] Dnscache C:\Windows\System32\dnsrslvr.dll 01:02:25.0226 0x1d4c Dnscache - ok 01:02:25.0256 0x1d4c [ B1FB3DDCA0FDF408750D5843591AFBC6, AB6AD9C5E7BA2E3646D0115B67C4800D1CB43B4B12716397657C7ADEEE807304 ] dot3svc C:\Windows\System32\dot3svc.dll 01:02:25.0266 0x1d4c dot3svc - ok 01:02:25.0286 0x1d4c [ B26F4F737E8F9DF4F31AF6CF31D05820, 394BBBED4EC7FAD4110F62A43BFE0801D4AC56FFAC6C741C69407B26402311C7 ] DPS C:\Windows\system32\dps.dll 01:02:25.0286 0x1d4c DPS - ok 01:02:25.0306 0x1d4c [ 9B19F34400D24DF84C858A421C205754, 967AF267B4124BADA8F507CEBF25F2192D146A4D63BE71B45BFC03C5DA7F21A7 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 01:02:25.0306 0x1d4c drmkaud - ok 01:02:25.0356 0x1d4c [ 87CE5C8965E101CCCED1F4675557E868, 077D98F0F130B2FC710208BA34016EF2B2506EE2BD71740B228145E34A3046F1 ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 01:02:25.0396 0x1d4c DXGKrnl - ok 01:02:25.0416 0x1d4c [ E2DDA8726DA9CB5B2C4000C9018A9633, 0C967DBC3636A76A696997192A158AA92A1AF19F01E3C66D5BF91818A8FAEA76 ] EapHost C:\Windows\System32\eapsvc.dll 01:02:25.0416 0x1d4c EapHost - ok 01:02:25.0549 0x1d4c [ DC5D737F51BE844D8C82C695EB17372F, 6D4022D9A46EDE89CEF0FAEADCC94C903234DFC460C0180D24FF9E38E8853017 ] ebdrv C:\Windows\system32\DRIVERS\evbda.sys 01:02:25.0676 0x1d4c ebdrv - ok 01:02:25.0696 0x1d4c [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] EFS C:\Windows\System32\lsass.exe 01:02:25.0696 0x1d4c EFS - ok 01:02:25.0754 0x1d4c [ C4002B6B41975F057D98C439030CEA07, 3D2484FBB832EFB90504DD406ED1CF3065139B1FE1646471811F3A5679EF75F1 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 01:02:25.0778 0x1d4c ehRecvr - ok 01:02:25.0808 0x1d4c [ 4705E8EF9934482C5BB488CE28AFC681, 359E9EC5693CE0BE89082E1D5D8F5C5439A5B985010FF0CB45C11E3CFE30637D ] ehSched C:\Windows\ehome\ehsched.exe 01:02:25.0808 0x1d4c ehSched - ok 01:02:25.0838 0x1d4c [ 0E5DA5369A0FCAEA12456DD852545184, 9A64AC5396F978C3B92794EDCE84DCA938E4662868250F8C18FA7C2C172233F8 ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys 01:02:25.0848 0x1d4c elxstor - ok 01:02:25.0878 0x1d4c [ 524C79054636D2E5751169005006460B, 1EBA5972E13C5BB07BBD94D6647B86469B4910F60A3C8BDDC6BB5736EF99C9C3 ] enecir C:\Windows\system32\DRIVERS\enecir.sys 01:02:25.0878 0x1d4c enecir - ok 01:02:25.0899 0x1d4c [ 34A3C54752046E79A126E15C51DB409B, 7D5B5E150C7C73666F99CBAFF759029716C86F16B927E0078D77F8A696616D75 ] ErrDev C:\Windows\system32\drivers\errdev.sys 01:02:25.0909 0x1d4c ErrDev - ok 01:02:25.0949 0x1d4c [ 4166F82BE4D24938977DD1746BE9B8A0, 24121751B7306225AD1C808442D7B030DEF377E9316AA0A3C5C7460E87317881 ] EventSystem C:\Windows\system32\es.dll 01:02:25.0959 0x1d4c EventSystem - ok 01:02:26.0069 0x1d4c [ BDF87981C5FEA94FD259F110FB8B1A72, 9643E423A8B88C1A585174819F662BD42FCA23D0A0C9BEF946322CAE417D322F ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe 01:02:26.0109 0x1264 Object send P2P result: true 01:02:26.0149 0x1d4c EvtEng - ok 01:02:26.0169 0x1d4c [ A510C654EC00C1E9BDD91EEB3A59823B, 76CD277730F7B08D375770CD373D786160F34D1481AF0536BA1A5D2727E255F5 ] exfat C:\Windows\system32\drivers\exfat.sys 01:02:26.0169 0x1d4c exfat - ok 01:02:26.0179 0x1d4c ezSharedSvc - ok 01:02:26.0229 0x1d4c Fabs - ok 01:02:26.0239 0x1d4c [ 0ADC83218B66A6DB380C330836F3E36D, 798D6F83B5DBCC1656595E0A96CF12087FCCBE19D1982890D0CE5F629B328B29 ] fastfat C:\Windows\system32\drivers\fastfat.sys 01:02:26.0249 0x1d4c fastfat - ok 01:02:26.0279 0x1d4c [ DBEFD454F8318A0EF691FDD2EAAB44EB, 7F52AE222FF28503B6FC4A5852BD0CAEAF187BE69AF4B577D3DE474C24366099 ] Fax C:\Windows\system32\fxssvc.exe 01:02:26.0309 0x1d4c Fax - ok 01:02:26.0319 0x1d4c [ D765D19CD8EF61F650C384F62FAC00AB, 9F0A483A043D3BA873232AD3BA5F7BF9173832550A27AF3E8BD433905BD2A0EE ] fdc C:\Windows\system32\DRIVERS\fdc.sys 01:02:26.0329 0x1d4c fdc - ok 01:02:26.0339 0x1d4c [ 0438CAB2E03F4FB61455A7956026FE86, 6D4DDC2973DB25CE0C7646BC85EFBCC004EBE35EA683F62162AE317C6F1D8DFE ] fdPHost C:\Windows\system32\fdPHost.dll 01:02:26.0339 0x1d4c fdPHost - ok 01:02:26.0359 0x1d4c [ 802496CB59A30349F9A6DD22D6947644, 52D59D3D628D5661F83F090F33F744F6916E0CC1F76E5A33983E06EB66AE19F8 ] FDResPub C:\Windows\system32\fdrespub.dll 01:02:26.0359 0x1d4c FDResPub - ok 01:02:26.0369 0x1d4c [ 655661BE46B5F5F3FD454E2C3095B930, 549C8E2A2A37757E560D55FFA6BFDD838205F17E40561E67F0124C934272CD1A ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 01:02:26.0369 0x1d4c FileInfo - ok 01:02:26.0379 0x1d4c [ 5F671AB5BC87EEA04EC38A6CD5962A47, 6B61D3363FF3F9C439BD51102C284972EAE96ACC0683B9DC7E12D25D0ADC51B6 ] Filetrace C:\Windows\system32\drivers\filetrace.sys 01:02:26.0379 0x1d4c Filetrace - ok 01:02:26.0483 0x1d4c [ 5BD96D8C5411ACE71A7EAACAF0EF2903, 2AF58E6060C7DEC44B4CA30E14E164473CD4089AE475DAFFC61DFE56990C1147 ] FirebirdServerMAGIXInstance C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe 01:02:26.0561 0x1d4c FirebirdServerMAGIXInstance - ok 01:02:26.0588 0x1d4c [ C172A0F53008EAEB8EA33FE10E177AF5, 9175A95B323696D1B35C9EFEB7790DD64E6EE0B7021E6C18E2F81009B169D77B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 01:02:26.0589 0x1d4c flpydisk - ok 01:02:26.0603 0x1d4c [ DA6B67270FD9DB3697B20FCE94950741, F621A4462C9F2904063578C427FAF22D7D66AE9967605C11C798099817CE5331 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 01:02:26.0613 0x1d4c FltMgr - ok 01:02:26.0643 0x1d4c [ FDD776FAC4159A2983940D1E411FE9F3, 3B147B4D3C5CC67117D65152FA8BD3A603728C92B023AE45CD166E6FF3F474C5 ] fltsrv C:\Windows\system32\DRIVERS\fltsrv.sys 01:02:26.0643 0x1d4c fltsrv - ok 01:02:26.0693 0x1d4c [ D5A775990A7C202A037378FDBCDB6141, 27AD242914FAFB7A27B3045C0F0F6AFE6873FE331A51D8BB29A63B5D84C72EFB ] FontCache C:\Windows\system32\FntCache.dll 01:02:26.0743 0x1d4c FontCache - ok 01:02:26.0805 0x1d4c [ A8B7F3818AB65695E3A0BB3279F6DCE6, 89FCF10F599767E67A1E011753E34DA44EAA311F105DBF69549009ED932A60F0 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe 01:02:26.0815 0x1d4c FontCache3.0.0.0 - ok 01:02:26.0825 0x1d4c [ D43703496149971890703B4B1B723EAC, F06397B2EDCA61629249D2EF1CBB7827A8BEAB8488246BD85EF6AE1363C0DA6E ] FsDepends C:\Windows\system32\drivers\FsDepends.sys 01:02:26.0825 0x1d4c FsDepends - ok 01:02:26.0855 0x1d4c [ 6BD9295CC032DD3077C671FCCF579A7B, 83622FBB0CB923798E7E584BF53CAAF75B8C016E3FF7F0FA35880FF34D1DFE33 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 01:02:26.0865 0x1d4c Fs_Rec - ok 01:02:26.0895 0x1d4c [ 8F6322049018354F45F05A2FD2D4E5E0, 73BF0FB4EBD7887E992DDEBB79E906958D6678F8D1107E8C368F5A0514D80359 ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys 01:02:26.0895 0x1d4c fvevol - ok 01:02:26.0915 0x1d4c [ 8C778D335C9D272CFD3298AB02ABE3B6, 85F0B13926B0F693FA9E70AA58DE47100E4B6F893772EBE4300C37D9A36E6005 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys 01:02:26.0915 0x1d4c gagp30kx - ok 01:02:26.0945 0x1d4c [ 8E98D21EE06192492A5671A6144D092F, B8F656B34D361EA5AFB47F3A67AB2221580DADA59C8CD0CB83181E4AD8B562B4 ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 01:02:26.0945 0x1d4c GEARAspiWDM - ok 01:02:26.0975 0x1d4c [ A4198F2BD8AA592CB90476277A81B5E1, D099E636541CC2D4B74541E73A7B1C0BD4FFA7B699212AD98A8615AC3066A8BB ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys 01:02:26.0975 0x1d4c ggflt - ok 01:02:26.0985 0x1d4c [ D266350BDAAB9EB6C1AEC370EEAAFF3A, 51F482AF0C4D823F5F0DE8BB22756B89E74D62257FE5FD251E76308D8C42EE00 ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys 01:02:26.0985 0x1d4c ggsemc - ok 01:02:27.0045 0x1d4c [ 277BBC7E1AA1EE957F573A10ECA7EF3A, 2EE60B924E583E847CC24E78B401EF95C69DB777A5B74E1EC963E18D47B94D24 ] gpsvc C:\Windows\System32\gpsvc.dll 01:02:27.0075 0x1d4c gpsvc - ok 01:02:27.0095 0x1d4c [ B9893A68032A6D9ADDB5B98287C630F7, F0280764D7B31F1EA634E91397229B1C064A7C1B3A77A6BBD123CEA74180789F ] grmnusb C:\Windows\system32\drivers\grmnusb.sys 01:02:27.0105 0x1d4c grmnusb - ok 01:02:27.0165 0x1d4c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdate C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 01:02:27.0165 0x1d4c gupdate - ok 01:02:27.0185 0x1d4c [ DD7423ABBE2913E70D50E9318AD57EE4, 74BC123808F3FA60ADDC51C1383F8250608D3DBA3A8DC175B3418A1CF0BC53E9 ] gupdatem C:\Program Files (x86)\Google\Update\GoogleUpdate.exe 01:02:27.0185 0x1d4c gupdatem - ok 01:02:27.0225 0x1d4c [ C1B577B2169900F4CF7190C39F085794, 73E104B96A48F4C80D8C37254ECB0891D15C0D2F0C251B57C168F90D60316447 ] gusvc C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe 01:02:27.0235 0x1d4c gusvc - ok 01:02:27.0265 0x1d4c [ 0A9D58AABD01DA97B1D101473EFA7659, C18EA4F5BF569C230AD682A418F69B6E4209AD467BCCBDABD0515DBB582BF04B ] gzflt C:\Windows\system32\DRIVERS\gzflt.sys 01:02:27.0265 0x1d4c gzflt - ok 01:02:27.0285 0x1d4c [ F2523EF6460FC42405B12248338AB2F0, B2F3DE8DE1F512D871BC2BC2E8D0E33AB03335BFBC07627C5F88B65024928E19 ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys 01:02:27.0285 0x1d4c hcw85cir - ok 01:02:27.0325 0x1d4c [ 975761C778E33CD22498059B91E7373A, 8304E15FBE6876BE57263A03621365DA8C88005EAC532A770303C06799D915D9 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 01:02:27.0345 0x1d4c HdAudAddService - ok 01:02:27.0365 0x1d4c [ 97BFED39B6B79EB12CDDBFEED51F56BB, 3CF981D668FB2381E52AF2E51E296C6CFB47B0D62249645278479D0111A47955 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys 01:02:27.0365 0x1d4c HDAudBus - ok 01:02:27.0375 0x1d4c [ 78E86380454A7B10A5EB255DC44A355F, 11F3ED7ACFFA3024B9BD504F81AC39F5B4CED5A8A425E8BADF7132EFEDB9BD64 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys 01:02:27.0375 0x1d4c HidBatt - ok 01:02:27.0407 0x1d4c [ 7FD2A313F7AFE5C4DAB14798C48DD104, 94CBFD4506CBDE4162CEB3367BAB042D19ACA6785954DC0B554D4164B9FCD0D4 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys 01:02:27.0407 0x1d4c HidBth - ok 01:02:27.0427 0x1d4c [ 0A77D29F311B88CFAE3B13F9C1A73825, 8615DC6CEFB591505CE16E054A71A4F371B827DDFD5E980777AB4233DCFDA01D ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 01:02:27.0427 0x1d4c HidIr - ok 01:02:27.0447 0x1d4c [ BD9EB3958F213F96B97B1D897DEE006D, 4D01CBF898B528B3A4E5A683DF2177300AFABD7D4CB51F1A7891B1B545499631 ] hidserv C:\Windows\system32\hidserv.dll 01:02:27.0447 0x1d4c hidserv - ok 01:02:27.0467 0x1d4c [ 9592090A7E2B61CD582B612B6DF70536, FD11D5E02C32D658B28FCC35688AB66CCB5D3A0A0D74C82AE0F0B6C67B568A0F ] HidUsb C:\Windows\system32\drivers\hidusb.sys 01:02:27.0477 0x1d4c HidUsb - ok 01:02:27.0497 0x1d4c [ 387E72E739E15E3D37907A86D9FF98E2, 9935BE2E58788E79328293AF2F202CB0F6042441B176F75ACC5AEA93C8E05531 ] hkmsvc C:\Windows\system32\kmsvc.dll 01:02:27.0507 0x1d4c hkmsvc - ok 01:02:27.0537 0x1d4c [ EFDFB3DD38A4376F93E7985173813ABD, 70402FA73A5A2A8BB557AAC8F531E373077D28DE5F40A1F3F14B940BE01CD2E1 ] HomeGroupListener C:\Windows\system32\ListSvc.dll 01:02:27.0547 0x1d4c HomeGroupListener - ok 01:02:27.0607 0x1d4c [ 908ACB1F594274965A53926B10C81E89, 7D34A742AC486294D82676F8465A3EF26C8AC3317C32B63F62031CB007CFC208 ] HomeGroupProvider C:\Windows\system32\provsvc.dll 01:02:27.0627 0x1d4c HomeGroupProvider - ok 01:02:27.0657 0x1d4c [ C227DFCF703D02EAD4D7E44B0BA7C181, 3A4700E9D42E13051FABF868407B82A04C4A2A363AF229E420E65B62D3586196 ] hotcore3 C:\Windows\system32\DRIVERS\hotcore3.sys 01:02:27.0657 0x1d4c hotcore3 - ok 01:02:27.0717 0x1d4c [ BB1FC298BE53AAB1E110F6E786BD8AC5, C2DA2C3CE96D5F8B50013063B5EF7BED7478636896C709A7AF34855B2E69B9F1 ] HP Support Assistant Service C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe 01:02:27.0727 0x1d4c HP Support Assistant Service - ok 01:02:27.0777 0x1d4c [ 4E0BEC0F78096FFD6D3314B497FC49D3, 15B545815D0C80102963FFF13B6643CC9A74717137C1CBA45345B18912E72DB6 ] hpdskflt C:\Windows\system32\DRIVERS\hpdskflt.sys 01:02:27.0777 0x1d4c hpdskflt - ok 01:02:27.0807 0x1d4c [ 9AF482D058BE59CC28BCE52E7C4B747C, 2D150CD0C82B575CDE2E1B3941FD72EFCB254850D6FF1D7C40D3B29643018EFF ] HpqKbFiltr C:\Windows\system32\DRIVERS\HpqKbFiltr.sys 01:02:27.0807 0x1d4c HpqKbFiltr - ok 01:02:27.0897 0x1d4c [ 9B7EDD3FE7C211C36E921D34D18A3A0A, 03A450F85A042F9668D1560FA2B8B89783568C87CDB1A8685CDA2AC9FE3761C3 ] hpqwmiex C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe 01:02:27.0938 0x1d4c hpqwmiex - ok 01:02:27.0962 0x1d4c [ 39D2ABCD392F3D8A6DCE7B60AE7B8EFC, E9E6A1665740CFBC2DD321010007EF42ABA2102AEB9772EE8AA3354664B1E205 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys 01:02:27.0965 0x1d4c HpSAMD - ok 01:02:28.0069 0x1d4c HPSLPSVC - ok 01:02:28.0089 0x1d4c [ FC7C13B5A9E9BE23B7AE72BBC7FDB278, E85A7BF1CFE52BA7D663A1ED48A4F8874EFBDDF48979138F7E3E24817705B6A1 ] hpsrv C:\Windows\system32\Hpservice.exe 01:02:28.0089 0x1d4c hpsrv - ok 01:02:28.0129 0x1d4c [ 7FF1EE51F34F43D29C8E0633E966192E, 3CBCE6829EBCCC5852F72CCEF32C539D8E63E9AF6788AC52683AF0EB6AA4CAD1 ] HPSupportSolutionsFrameworkService C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe 01:02:28.0129 0x1d4c HPSupportSolutionsFrameworkService - ok 01:02:28.0179 0x1d4c [ A6C6BF09D6D2539286FF4328454696B9, 17ECE05A6D1F56CF1A2AEC3F23BDF916D87EEE1C332C8962718350F9649CBD63 ] HRService C:\Program Files (x86)\Haufe\iDesk\iDeskService\iDeskService.exe 01:02:28.0189 0x1d4c HRService - ok 01:02:28.0259 0x1d4c [ F61634BEC53F73702A10DE69F6DCAF57, BBA7344CF3AB96A46D1A6F1D50F2758EA8D097FE558C38B4EF45C8C334AF96E1 ] HTTP C:\Windows\system32\drivers\HTTP.sys 01:02:28.0279 0x1d4c HTTP - ok 01:02:28.0309 0x1d4c [ A5462BD6884960C9DC85ED49D34FF392, 53E65841AF5B06A2844D0BB6FC4DD3923A323FFA0E4BFC89B3B5CAFB592A3D53 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys 01:02:28.0309 0x1d4c hwpolicy - ok 01:02:28.0329 0x1d4c [ FA55C73D4AFFA7EE23AC4BE53B4592D3, 65CDDC62B89A60E942C5642C9D8B539EFB69DA8069B4A2E54978154B314531CD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 01:02:28.0339 0x1d4c i8042prt - ok 01:02:28.0379 0x1d4c [ D7921D5A870B11CC1ADAB198A519D50A, 5DF99EB5D5504E9D9EB21658E8B4A58DEE2AD143A1875DB7F9B7BF4877FCB57F ] iaStor C:\Windows\system32\DRIVERS\iaStor.sys 01:02:28.0409 0x1d4c iaStor - ok 01:02:28.0449 0x1d4c [ 8FFF9083252C16FE3960173722605E9E, 6546FDA34B9AF94C5E86E5269BBC2F02F1E78D6D4BE5B5EC01F4B284CC934994 ] IAStorDataMgrSvc C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 01:02:28.0449 0x1d4c IAStorDataMgrSvc - ok 01:02:28.0489 0x1d4c [ AAAF44DB3BD0B9D1FB6969B23ECC8366, 805AA4A9464002D1AB3832E4106B2AAA1331F4281367E75956062AAE99699385 ] iaStorV C:\Windows\system32\drivers\iaStorV.sys 01:02:28.0499 0x1d4c iaStorV - ok 01:02:28.0549 0x1d4c [ 6F95324909B502E2651442C1548AB12F, FF1B104990FE186C6100ED229A45345FF695323AC778688EC11AA8F5A87B141E ] IDriverT C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe 01:02:28.0549 0x1d4c IDriverT - ok 01:02:28.0679 0x1d4c [ C98A5B9D932430AD8EEBD3EF73756EF7, DF7E1D391A0F3345AD61154363922C27BD557DEEACE395A6A8A8A16BFD1BB9A8 ] idsvc C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe 01:02:28.0709 0x1d4c idsvc - ok 01:02:28.0709 0x1d4c IEEtwCollectorService - ok 01:02:28.0939 0x1d4c [ A87261EF1546325B559374F5689CF5BC, 8DE48A8A13A32AAAC54CDDF58F3F61BE3E2802C1D9CA1CA98E57EB0D65FB6002 ] igfx C:\Windows\system32\DRIVERS\igdkmd64.sys 01:02:29.0229 0x1d4c igfx - ok 01:02:29.0259 0x1d4c [ 5C18831C61933628F5BB0EA2675B9D21, 5CD9DE2F8C0256623A417B5C55BF55BB2562BD7AB2C3C83BB3D9886C2FBDA4E4 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys 01:02:29.0259 0x1d4c iirsp - ok 01:02:29.0309 0x1d4c [ 344789398EC3EE5A4E00C52B31847946, 3DA5F08E4B46F4E63456AA588D49E39A6A09A97D0509880C00F327623DB6122D ] IKEEXT C:\Windows\System32\ikeext.dll 01:02:29.0339 0x1d4c IKEEXT - ok 01:02:29.0379 0x1d4c [ F00F20E70C6EC3AA366910083A0518AA, E2F3E9FFD82C802C8BAC309893A3664ACF16A279959C0FDECCA64C3D3C60FD22 ] intelide C:\Windows\system32\drivers\intelide.sys 01:02:29.0379 0x1d4c intelide - ok 01:02:29.0389 0x1d4c [ ADA036632C664CAA754079041CF1F8C1, F2386CC09AC6DE4C54189154F7D91C1DB7AA120B13FAE8BA5B579ACF99FCC610 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 01:02:29.0389 0x1d4c intelppm - ok 01:02:29.0409 0x1d4c [ 098A91C54546A3B878DAD6A7E90A455B, 044CCE2A0DF56EBE1EFD99B4F6F0A5B9EE12498CA358CF4B2E3A1CFD872823AA ] IPBusEnum C:\Windows\system32\ipbusenum.dll 01:02:29.0419 0x1d4c IPBusEnum - ok 01:02:29.0449 0x1d4c [ C9F0E1BD74365A8771590E9008D22AB6, 728BC5A6AAE499FDC50EB01577AF16D83C2A9F3B09936DD2A89C01E074BA8E51 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 01:02:29.0449 0x1d4c IpFilterDriver - ok 01:02:29.0489 0x1d4c [ 08C2957BB30058E663720C5606885653, E13EDF6701512E2A9977A531454932CA5023087CB50E1D2F416B8BCDD92B67BE ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 01:02:29.0509 0x1d4c iphlpsvc - ok 01:02:29.0539 0x1d4c [ 0FC1AEA580957AA8817B8F305D18CA3A, 7161E4DE91AAFC3FA8BF24FAE4636390C2627DB931505247C0D52C75A31473D9 ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys 01:02:29.0539 0x1d4c IPMIDRV - ok 01:02:29.0579 0x1d4c [ AF9B39A7E7B6CAA203B3862582E9F2D0, 67128BE7EADBE6BD0205B050F96E268948E8660C4BAB259FB0BE03935153D04E ] IPNAT C:\Windows\system32\drivers\ipnat.sys 01:02:29.0589 0x1d4c IPNAT - ok 01:02:29.0699 0x1d4c [ E61BB95A7CB49696D25A0C4EBD108156, 65D95A0DBC408AD18D5E344A5E875551E6CC044038DE438E4EA1102A234FC529 ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 01:02:29.0719 0x1d4c iPod Service - ok 01:02:29.0739 0x1d4c [ 3ABF5E7213EB28966D55D58B515D5CE9, A352BCC5B6B9A28805B15CAFB235676F1FAFF0D2394F88C03089EB157D6188AE ] IRENUM C:\Windows\system32\drivers\irenum.sys 01:02:29.0739 0x1d4c IRENUM - ok 01:02:29.0759 0x1d4c [ 2F7B28DC3E1183E5EB418DF55C204F38, D40410A760965925D6F10959B2043F7BD4F68EAFCF5E743AF11AD860BD136548 ] isapnp C:\Windows\system32\drivers\isapnp.sys 01:02:29.0759 0x1d4c isapnp - ok 01:02:29.0789 0x1d4c [ 96BB922A0981BC7432C8CF52B5410FE6, 236C05509B1040059B15021CBBDBDAF3B9C0F00910142BE5887B2C7561BAAFBA ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys 01:02:29.0799 0x1d4c iScsiPrt - ok 01:02:29.0829 0x1d4c [ 08ED99A8271CF0B808C595D88ECEE779, 440ECE9999FF17A70792E530A03A9D38F44C6245F06C47C988474E110C42168C ] JMCR C:\Windows\system32\DRIVERS\jmcr.sys 01:02:29.0829 0x1d4c JMCR - ok 01:02:29.0849 0x1d4c [ 1542F0B31DD7193EF8C0606C018E19AF, FD68909AD7A8C0D8C640C9505982CB66F454AE61BC4EACDA3D0190CFCC42A10A ] johci C:\Windows\system32\DRIVERS\johci.sys 01:02:29.0859 0x1d4c johci - ok 01:02:29.0869 0x1d4c [ BC02336F1CBA7DCC7D1213BB588A68A5, 450C5BAD54CCE2AFCDFF1B6E7F8E1A8446D9D3255DF9D36C29A8F848048AAD93 ] kbdclass C:\Windows\system32\drivers\kbdclass.sys 01:02:29.0869 0x1d4c kbdclass - ok 01:02:29.0889 0x1d4c [ 0705EFF5B42A9DB58548EEC3B26BB484, 86C6824ED7ED6FA8F306DB6319A0FD688AA91295AE571262F9D8E96A32225E99 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys 01:02:29.0889 0x1d4c kbdhid - ok 01:02:29.0919 0x1d4c [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] KeyIso C:\Windows\system32\lsass.exe 01:02:29.0929 0x1d4c KeyIso - ok 01:02:29.0949 0x1d4c [ BCC83F22805F560C8A487F2F296A78FE, B6729B9D85CC3B9377E3143FEF920EFAA82D152845A43074417E9266C9F5C1A8 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 01:02:29.0949 0x1d4c KSecDD - ok 01:02:29.0989 0x1d4c [ 33D52A96BEEE8AFCE9E07EEC9FE0C9DB, 5367B46A43296792A0E6294906D40511079D5CAA23F08D5A7EDE02C06AD34484 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys 01:02:29.0989 0x1d4c KSecPkg - ok 01:02:30.0009 0x1d4c [ 6869281E78CB31A43E969F06B57347C4, 866A23E69B32A78D378D6CB3B3DA3695FFDFF0FEC3C9F68C8C3F988DF417044B ] ksthunk C:\Windows\system32\drivers\ksthunk.sys 01:02:30.0009 0x1d4c ksthunk - ok 01:02:30.0039 0x1d4c [ 6AB66E16AA859232F64DEB66887A8C9C, 5F2B579BEA8098A2994B0DECECDAE7B396E7B5DC5F09645737B9F28BEEA77FFF ] KtmRm C:\Windows\system32\msdtckrm.dll 01:02:30.0059 0x1d4c KtmRm - ok 01:02:30.0089 0x1d4c [ D9F42719019740BAA6D1C6D536CBDAA6, 8757599D0AE5302C4CE50861BEBA3A8DD14D7B0DBD916FD5404133688CDFCC40 ] LanmanServer C:\Windows\system32\srvsvc.dll 01:02:30.0099 0x1d4c LanmanServer - ok 01:02:30.0129 0x1d4c [ 851A1382EED3E3A7476DB004F4EE3E1A, B1C67F47DD594D092E6E258F01DF5E7150227CE3131A908A244DEE9F8A1FABF9 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 01:02:30.0139 0x1d4c LanmanWorkstation - ok 01:02:30.0169 0x1d4c [ 3C46290F7A5D45BA6EF32C248E22AA69, E2EAC359B38AE1A36DACDFE6E3923C1D70D6F5B9E5E411279B074802CB019760 ] Lbd C:\Windows\system32\DRIVERS\Lbd.sys 01:02:30.0169 0x1d4c Lbd - ok 01:02:30.0199 0x1d4c [ E999BEB881CA740B86F30BD81956F828, B5CEA202363134FE7D55B680721B72B39C9433F34FFDB62A5F49BD3FE00F42CA ] LBTServ C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe 01:02:30.0219 0x1d4c LBTServ - ok 01:02:30.0263 0x1d4c [ 11943FC017712F4A715F908587827636, FCCC0059F56F49A189EDF1E399773D2EDB10D006CD71A55676754C7DF4CA7698 ] LHidFilt C:\Windows\system32\DRIVERS\LHidFilt.Sys 01:02:30.0265 0x1d4c LHidFilt - ok 01:02:30.0291 0x1d4c [ 458ED3DAE4A8FF4AD350EAE1464CF65F, D8EFD7D505823EA48EFA68221C7F890A73785348FFF7AAEECB058B482B93FECC ] libusb0 C:\Windows\system32\DRIVERS\libusb0.sys 01:02:30.0291 0x1d4c libusb0 - ok 01:02:30.0311 0x1d4c [ 1538831CF8AD2979A04C423779465827, E1729B0CC4CEEE494A0B8817A8E98FF232E3A32FB023566EF0BC71A090262C0C ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 01:02:30.0311 0x1d4c lltdio - ok 01:02:30.0341 0x1d4c [ C1185803384AB3FEED115F79F109427F, 0414FE73532DCAB17E906438A14711E928CECCD5F579255410C62984DD652700 ] lltdsvc C:\Windows\System32\lltdsvc.dll 01:02:30.0361 0x1d4c lltdsvc - ok 01:02:30.0381 0x1d4c [ F993A32249B66C9D622EA5592A8B76B8, EE64672A990C6145DC5601E2B8CDBE089272A72732F59AF9865DCBA8B1717E70 ] lmhosts C:\Windows\System32\lmhsvc.dll 01:02:30.0381 0x1d4c lmhosts - ok 01:02:30.0411 0x1d4c [ 9B5BFC8D254A9A109B9AEBF6D6CE8B6C, 3815A3B8966AEE88A56D5EAF3979D119FBD0B59B70AD774EEE3AF4DD6DD74935 ] LMouFilt C:\Windows\system32\DRIVERS\LMouFilt.Sys 01:02:30.0411 0x1d4c LMouFilt - ok 01:02:30.0441 0x1d4c [ 1A93E54EB0ECE102495A51266DCDB6A6, DB6AA86AA36C3A7988BE96E87B5D3251BE7617C54EE8F894D9DC2E267FE3255B ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys 01:02:30.0441 0x1d4c LSI_FC - ok 01:02:30.0451 0x1d4c [ 1047184A9FDC8BDBFF857175875EE810, F2251EDB7736A26D388A0C5CC2FE5FB9C5E109CBB1E3800993554CB21D81AE4B ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys 01:02:30.0451 0x1d4c LSI_SAS - ok 01:02:30.0471 0x1d4c [ 30F5C0DE1EE8B5BC9306C1F0E4A75F93, 88D5740A4E9CC3FA80FA18035DAB441BDC5A039622D666BFDAA525CC9686BD06 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys 01:02:30.0471 0x1d4c LSI_SAS2 - ok 01:02:30.0481 0x1d4c [ 0504EACAFF0D3C8AED161C4B0D369D4A, 4D272237C189646F5C80822FD3CBA7C2728E482E2DAAF7A09C8AEF811C89C54D ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys 01:02:30.0491 0x1d4c LSI_SCSI - ok 01:02:30.0491 0x1d4c [ 43D0F98E1D56CCDDB0D5254CFF7B356E, 5BA498183B5C4996C694CB0A9A6B66CE6C7A460F6C91BEB9F305486FCC3B7B22 ] luafv C:\Windows\system32\drivers\luafv.sys 01:02:30.0501 0x1d4c luafv - ok 01:02:30.0531 0x1d4c [ 4A503882318BB2F59218D401614E6AF6, 678FDE29EAE20353E780F53CFB9E79EA8B43E1E8BAC77890C178918DC5CCBA0E ] lvpepf64 C:\Windows\system32\DRIVERS\lv302a64.sys 01:02:30.0531 0x1d4c lvpepf64 - ok 01:02:30.0561 0x1d4c [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2M64 C:\Windows\system32\DRIVERS\LVPr2M64.sys 01:02:30.0561 0x1d4c LVPr2M64 - ok 01:02:30.0561 0x1d4c [ DED333DBDBBCC3555A6E6244522E2F1A, 6909875090A9013685BA16EAAC666C173F138F0AF7172A40E746E6EFDE02D133 ] LVPr2Mon C:\Windows\system32\DRIVERS\LVPr2M64.sys 01:02:30.0571 0x1d4c LVPr2Mon - ok 01:02:30.0601 0x1d4c [ A35679E56E78091E1042A2D7ADBF2958, F2282B697DCDD5767F65D99FEA374D3757C6133D42BD5A9C582C217619213290 ] LVPrcS64 C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe 01:02:30.0611 0x1d4c LVPrcS64 - ok 01:02:30.0631 0x1d4c [ 125AE13C293889001B8456CF3EB04A40, EB4B7135691935A9AC515099ED8C2767BC02308068AB9BEB2869B6E841268848 ] LVRS64 C:\Windows\system32\DRIVERS\lvrs64.sys 01:02:30.0651 0x1d4c LVRS64 - ok 01:02:30.0671 0x1d4c [ 5C3FF68267A5D242EE79EE01B993D6CE, 853637AC30A16698F2F583693E98B67104ECE5B8F80C6FB88266665162623B92 ] LVUSBS64 C:\Windows\system32\drivers\LVUSBS64.sys 01:02:30.0681 0x1d4c LVUSBS64 - ok 01:02:30.0711 0x1d4c [ 0BE09CD858ABF9DF6ED259D57A1A1663, 2FD28889B93C8E801F74C1D0769673A461671E0189D0A22C94509E3F0EEB7428 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 01:02:30.0711 0x1d4c Mcx2Svc - ok 01:02:30.0731 0x1d4c [ A55805F747C6EDB6A9080D7C633BD0F4, 2DA0E83BF3C8ADEF6F551B6CC1C0A3F6149CDBE6EC60413BA1767C4DE425A728 ] megasas C:\Windows\system32\DRIVERS\megasas.sys 01:02:30.0731 0x1d4c megasas - ok 01:02:30.0761 0x1d4c [ BAF74CE0072480C3B6B7C13B2A94D6B3, 85CBB4949C090A904464F79713A3418338753D20D7FB811E68F287FDAC1DD834 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys 01:02:30.0771 0x1d4c MegaSR - ok 01:02:30.0781 0x1d4c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] MMCSS C:\Windows\system32\mmcss.dll 01:02:30.0791 0x1d4c MMCSS - ok 01:02:30.0811 0x1d4c [ 800BA92F7010378B09F9ED9270F07137, 94F9AF9E1BE80AE6AC39A2A74EF9FAB115DCAACC011D07DFA8D6A1DDC8A93342 ] Modem C:\Windows\system32\drivers\modem.sys 01:02:30.0811 0x1d4c Modem - ok 01:02:30.0821 0x1d4c [ B03D591DC7DA45ECE20B3B467E6AADAA, 701FB0CAD8138C58507BE28845D3E24CE269A040737C29885944A0D851238732 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 01:02:30.0831 0x1d4c monitor - ok 01:02:30.0841 0x1d4c [ 7D27EA49F3C1F687D357E77A470AEA99, 7FE7CAF95959F127C6D932C01D539C06D80273C49A09761F6E8331C05B1A7EE7 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 01:02:30.0851 0x1d4c mouclass - ok 01:02:30.0861 0x1d4c [ D3BF052C40B0C4166D9FD86A4288C1E6, 5E65264354CD94E844BF1838CA1B8E49080EFA34605A32CF2F6A47A2B97FC183 ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 01:02:30.0861 0x1d4c mouhid - ok 01:02:30.0881 0x1d4c [ 67050452C0118BAF2883928E6FCCFE47, 335FC0AEB7B47DCC7CE0CF3F424EB60ACB1327D2FF6515F04D9AC03A10FF1E31 ] mountmgr C:\Windows\system32\drivers\mountmgr.sys 01:02:30.0881 0x1d4c mountmgr - ok 01:02:30.0921 0x1d4c [ 9763F3C17AC8C095C4419482BD1484BA, 5E329D63ADF7ADAF615DF45F7A0C1E9528B1A5CEE50B6340CEE8584EFE285FB9 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe 01:02:30.0931 0x1d4c MozillaMaintenance - ok 01:02:30.0971 0x1d4c [ A44B420D30BD56E145D6A2BC8768EC58, B1E4DCA5A1008FA7A0492DC091FB2B820406AE13FD3D44F124E89B1037AF09B8 ] mpio C:\Windows\system32\drivers\mpio.sys 01:02:30.0971 0x1d4c mpio - ok 01:02:30.0991 0x1d4c [ 6C38C9E45AE0EA2FA5E551F2ED5E978F, 5A3FA2F110029CB4CC4384998EDB59203FDD65EC45E01B897FB684F8956EAD20 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 01:02:31.0001 0x1d4c mpsdrv - ok 01:02:31.0051 0x1d4c [ 54FFC9C8898113ACE189D4AA7199D2C1, 65F585C87F3F710FD5793FDFA96B740AD8D4317B0C120F4435CCF777300EA4F2 ] MpsSvc C:\Windows\system32\mpssvc.dll 01:02:31.0081 0x1d4c MpsSvc - ok 01:02:31.0111 0x1d4c [ AE3334958D8F631FF14A0AEB3D7EFB3A, F5FD6B61F896104C20DFC43FEE2FCE6930B73F78DF876BD19A333EABB9139C6D ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 01:02:31.0121 0x1d4c MRxDAV - ok 01:02:31.0151 0x1d4c [ 73ADDCC406B86E7DA4416691E8E74BDA, 4EC970B9095E6DAA79BF7EFB92DF3F2C0AB0C46739AA36C171A262E05B63CBB5 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 01:02:31.0151 0x1d4c mrxsmb - ok 01:02:31.0181 0x1d4c [ 7C81098FBAF2EAF5B54B939F832B0F61, 999435DF4638ECB136D5BF1B84305A84B215BAB542E4D5301E57D28D507E11B3 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 01:02:31.0201 0x1d4c mrxsmb10 - ok 01:02:31.0211 0x1d4c [ ACB763673BCCE6C7B3B8F858C9FE4F1F, CCD49558F8A01A225AEAE60BF299BCA6E9399E39F4F553FABC36CADB164BBBC0 ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 01:02:31.0221 0x1d4c mrxsmb20 - ok 01:02:31.0241 0x1d4c [ C25F0BAFA182CBCA2DD3C851C2E75796, 643E158A0948DF331807AEAA391F23960362E46C0A0CF6D22A99020EAE7B10F8 ] msahci C:\Windows\system32\drivers\msahci.sys 01:02:31.0241 0x1d4c msahci - ok 01:02:31.0261 0x1d4c [ DB801A638D011B9633829EB6F663C900, B34FD33A215ACCF2905F4B7D061686CDB1CB9C652147AF56AE14686C1F6E3C74 ] msdsm C:\Windows\system32\drivers\msdsm.sys 01:02:31.0261 0x1d4c msdsm - ok 01:02:31.0281 0x1d4c [ DE0ECE52236CFA3ED2DBFC03F28253A8, 2FBBEC4CACB5161F68D7C2935852A5888945CA0F107CF8A1C01F4528CE407DE3 ] MSDTC C:\Windows\System32\msdtc.exe 01:02:31.0291 0x1d4c MSDTC - ok 01:02:31.0321 0x1d4c [ 72949A24D37A20A54B3D4D3DADBB55E9, 580B59EF2DFA4F6EE27BA37904F0705CBCD74F9B07D2D795093C045F94AE6DB5 ] MSDV C:\Windows\system32\DRIVERS\msdv.sys 01:02:31.0331 0x1d4c MSDV - ok 01:02:31.0341 0x1d4c [ AA3FB40E17CE1388FA1BEDAB50EA8F96, 69F93E15536644C8FD679A20190CFE577F4985D3B1B4A4AA250A168615AE1E99 ] Msfs C:\Windows\system32\drivers\Msfs.sys 01:02:31.0341 0x1d4c Msfs - ok 01:02:31.0351 0x1d4c [ F9D215A46A8B9753F61767FA72A20326, 6F76642B45E0A7EF6BCAB8B37D55CCE2EAA310ED07B76D43FCB88987C2174141 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys 01:02:31.0351 0x1d4c mshidkmdf - ok 01:02:31.0361 0x1d4c [ D916874BBD4F8B07BFB7FA9B3CCAE29D, B229DA150713DEDBC4F05386C9D9DC3BC095A74F44F3081E88311AB73BC992A1 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 01:02:31.0371 0x1d4c msisadrv - ok 01:02:31.0401 0x1d4c [ 808E98FF49B155C522E6400953177B08, F873F5BFF0984C5165DF67E92874D3F6EB8D86F9B5AD17013A0091CA33A1A3D5 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 01:02:31.0401 0x1d4c MSiSCSI - ok 01:02:31.0411 0x1d4c msiserver - ok 01:02:31.0421 0x1d4c [ 49CCF2C4FEA34FFAD8B1B59D49439366, E5752EA57C7BDAD5F53E3BC441A415E909AC602CAE56234684FB8789A20396C7 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 01:02:31.0421 0x1d4c MSKSSRV - ok 01:02:31.0431 0x1d4c [ BDD71ACE35A232104DDD349EE70E1AB3, 27464A66868513BE6A01B75D7FC5B0D6B71842E4E20CE3F76B15C071A0618BBB ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 01:02:31.0431 0x1d4c MSPCLOCK - ok 01:02:31.0451 0x1d4c [ 4ED981241DB27C3383D72092B618A1D0, E12F121E641249DB3491141851B59E1496F4413EDF58E863388F1C229838DFCC ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 01:02:31.0451 0x1d4c MSPQM - ok 01:02:31.0481 0x1d4c [ 759A9EEB0FA9ED79DA1FB7D4EF78866D, 64E3BC613EC4872B1B344CBF71EE15BE195592E3244C1EE099C6F8B95A40F133 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 01:02:31.0501 0x1d4c MsRPC - ok 01:02:31.0521 0x1d4c [ 0EED230E37515A0EAEE3C2E1BC97B288, B1D8F8A75006B6E99214CA36D27A8594EF8D952F315BEB201E9BAC9DE3E64D42 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys 01:02:31.0521 0x1d4c mssmbios - ok 01:02:31.0531 0x1d4c [ 2E66F9ECB30B4221A318C92AC2250779, DF175E1AB6962303E57F26DAE5C5C1E40B8640333F3E352A64F6A5F1301586CD ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 01:02:31.0531 0x1d4c MSTEE - ok 01:02:31.0561 0x1d4c [ 7EA404308934E675BFFDE8EDF0757BCD, 306CD02D89CFCFE576242360ED5F9EEEDCAFC43CD43B7D2977AE960F9AEC3232 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys 01:02:31.0561 0x1d4c MTConfig - ok 01:02:31.0583 0x1d4c [ F9A18612FD3526FE473C1BDA678D61C8, 32F7975B5BAA447917F832D9E3499B4B6D3E90D73F478375D0B70B36C524693A ] Mup C:\Windows\system32\Drivers\mup.sys 01:02:31.0583 0x1d4c Mup - ok 01:02:31.0643 0x1d4c [ 59AA4CFF0C9EDA2252BBF5B6C7C5AA21, 83BF9D6181F2E27B790750AC088C234761EFEBCA22CE24A495BC0DA6F0E66AF4 ] MyWiFiDHCPDNS C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe 01:02:31.0673 0x1d4c MyWiFiDHCPDNS - ok 01:02:31.0733 0x1d4c [ 582AC6D9873E31DFA28A4547270862DD, BD540499F74E8F59A020D935D18E36A3A97C1A6EC59C8208436469A31B16B260 ] napagent C:\Windows\system32\qagentRT.dll 01:02:31.0763 0x1d4c napagent - ok 01:02:31.0783 0x1d4c [ 1EA3749C4114DB3E3161156FFFFA6B33, 54C2E77BCE1037711A11313AC25B8706109098C10A31AA03AEB7A185E97800D7 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 01:02:31.0803 0x1d4c NativeWifiP - ok 01:02:31.0853 0x1d4c [ F7309F42555F8AAB7144A51A1F2585B0, 065277A8AFAEE3888C997A76D2F751070F92DF4C3354D16B194860B4BDAFF937 ] NDIS C:\Windows\system32\drivers\ndis.sys 01:02:31.0883 0x1d4c NDIS - ok 01:02:31.0903 0x1d4c [ 9F9A1F53AAD7DA4D6FEF5BB73AB811AC, D7E5446E83909AE25506BB98FBDD878A529C87963E3C1125C4ABAB25823572BC ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys 01:02:31.0913 0x1d4c NdisCap - ok 01:02:31.0923 0x1d4c [ 30639C932D9FEF22B31268FE25A1B6E5, 32873D95339600F6EEFA51847D12C563FF01F320DC59055B242FA2887C99F9D6 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 01:02:31.0923 0x1d4c NdisTapi - ok 01:02:31.0953 0x1d4c [ 136185F9FB2CC61E573E676AA5402356, BA3AD0A33416DA913B4242C6BE8C3E5812AD2B20BA6C11DD3094F2E8EB56E683 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 01:02:31.0963 0x1d4c Ndisuio - ok 01:02:31.0993 0x1d4c [ 53F7305169863F0A2BDDC49E116C2E11, 881E9346D3C02405B7850ADC37E720990712EC9C666A0CE96E252A487FD2CE77 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 01:02:31.0993 0x1d4c NdisWan - ok 01:02:32.0033 0x1d4c [ 015C0D8E0E0421B4CFD48CFFE2825879, 4242E2D42CCFC859B2C0275C5331798BC0BDA68E51CF4650B6E64B1332071023 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 01:02:32.0033 0x1d4c NDProxy - ok 01:02:32.0043 0x1d4c [ 86743D9F5D2B1048062B14B1D84501C4, DBF6D6A60AB774FCB0F464FF2D285A7521D0A24006687B243AB46B17D8032062 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 01:02:32.0043 0x1d4c NetBIOS - ok 01:02:32.0073 0x1d4c [ 09594D1089C523423B32A4229263F068, 7426A9B8BA27D3225928DDEFBD399650ABB90798212F56B7D12158AC22CCCE37 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys 01:02:32.0083 0x1d4c NetBT - ok 01:02:32.0093 0x1d4c [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] Netlogon C:\Windows\system32\lsass.exe 01:02:32.0093 0x1d4c Netlogon - ok 01:02:32.0133 0x1d4c [ 847D3AE376C0817161A14A82C8922A9E, 37AE692B3481323134125EF58F2C3CBC20177371AF2F5874F53DD32A827CB936 ] Netman C:\Windows\System32\netman.dll 01:02:32.0143 0x1d4c Netman - ok 01:02:32.0203 0x1d4c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetMsmqActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 01:02:32.0223 0x1d4c NetMsmqActivator - ok 01:02:32.0233 0x1d4c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetPipeActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 01:02:32.0243 0x1d4c NetPipeActivator - ok 01:02:32.0273 0x1d4c [ 5F28111C648F1E24F7DBC87CDEB091B8, 2E8645285921EDB98BB2173E11E57459C888D52E80D85791D169C869DE8813B9 ] netprofm C:\Windows\System32\netprofm.dll 01:02:32.0293 0x1d4c netprofm - ok 01:02:32.0303 0x1d4c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpActivator C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 01:02:32.0303 0x1d4c NetTcpActivator - ok 01:02:32.0313 0x1d4c [ E58808846B62041BFB05395E1CED6499, 5387F2CE6B494337725D2BF3EB563912E6EE33918F2872C5FE07BEDBB0F761EE ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe 01:02:32.0313 0x1d4c NetTcpPortSharing - ok 01:02:32.0583 0x1d4c [ 24F64343F14A119308456E1CA7507B26, E9219B173426E872977C3D615552B066C697A31D003AE3F0012BF1C6FFCEFF51 ] NETw5s64 C:\Windows\system32\DRIVERS\NETw5s64.sys 01:02:32.0873 0x1d4c NETw5s64 - ok 01:02:33.0093 0x1d4c [ D68DE412A3243F8D57DDB814AA509813, 02DFDAAD8F4BCEA62197C03AB0099A498197752D6037542F62A9CD71F0A3469A ] netw5v64 C:\Windows\system32\DRIVERS\netw5v64.sys 01:02:33.0285 0x1d4c netw5v64 - ok 01:02:33.0605 0x1d4c [ 9AA75919D0A5F33BEA0DF7B9DB09B755, 84983ED12522B53D9EF656162730C4EEAC74F8A57EC2059DF1AEDF886AEB6915 ] NETwNs64 C:\Windows\system32\DRIVERS\NETwNs64.sys 01:02:33.0885 0x1d4c NETwNs64 - ok 01:02:33.0935 0x1d4c [ 77889813BE4D166CDAB78DDBA990DA92, 2EF531AE502B943632EEC66A309A8BFCDD36120A5E1473F4AAF3C2393AD0E6A3 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys 01:02:33.0935 0x1d4c nfrd960 - ok 01:02:33.0955 0x1d4c [ 8B301D474B478E9A92823BAB50A7BC49, 8181816035F41B1DABEC05E65E4F67BCD785F56760A61F1049E91BA39D42F01D ] NlaSvc C:\Windows\System32\nlasvc.dll 01:02:33.0975 0x1d4c NlaSvc - ok 01:02:34.0045 0x1d4c [ 7AEA4DF1CA68FD45DD4BBE1F0243CE7F, 4CCE820F455512C41E4F98109FA6F048907DD3452D5A00D5F885C77F93C9C105 ] NMSAccess C:\Windows\SysWOW64\NMSAccess32.exe 01:02:34.0055 0x1d4c NMSAccess - ok 01:02:34.0085 0x1d4c [ 1E4C4AB5C9B8DD13179BBDC75A2A01F7, D8957EF7060A69DBB3CD6B2C45B1E4143592AB8D018471E17AC04668157DC67F ] Npfs C:\Windows\system32\drivers\Npfs.sys 01:02:34.0085 0x1d4c Npfs - ok 01:02:34.0105 0x1d4c [ D54BFDF3E0C953F823B3D0BFE4732528, 497A1DCC5646EC22119273216DF10D5442D16F83E4363770F507518CF6EAA53A ] nsi C:\Windows\system32\nsisvc.dll 01:02:34.0105 0x1d4c nsi - ok 01:02:34.0115 0x1d4c [ E7F5AE18AF4168178A642A9247C63001, 133023B7E4BA8049C4CAED3282BDD25571D1CC25FAC3B820C7F981D292689D76 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 01:02:34.0125 0x1d4c nsiproxy - ok 01:02:34.0215 0x1d4c [ 1A29A59A4C5BA6F8C85062A613B7E2B2, CC137F499A12C724D4166C2D85E9F447413419A0683DAC6F1A802B7F210C77F1 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 01:02:34.0275 0x1d4c Ntfs - ok 01:02:34.0295 0x1d4c [ 9899284589F75FA8724FF3D16AED75C1, 181188599FD5D4DE33B97010D9E0CAEABAB9A3EF50712FE7F9AA0735CD0666D6 ] Null C:\Windows\system32\drivers\Null.sys 01:02:34.0295 0x1d4c Null - ok 01:02:34.0325 0x1d4c [ 0A92CB65770442ED0DC44834632F66AD, 581327F07A68DBD5CC749214BE5F1211FC2CE41C7A4F0656B680AFB51A35ACE7 ] nvraid C:\Windows\system32\drivers\nvraid.sys 01:02:34.0335 0x1d4c nvraid - ok 01:02:34.0345 0x1d4c [ DAB0E87525C10052BF65F06152F37E4A, AD9BFF0D5FD3FFB95C758B478E1F6A9FE45E7B37AEC71EB5070D292FEAAEDF37 ] nvstor C:\Windows\system32\drivers\nvstor.sys 01:02:34.0345 0x1d4c nvstor - ok 01:02:34.0385 0x1d4c [ 270D7CD42D6E3979F6DD0146650F0E05, 752489E54C9004EDCBE1F1F208FFD864DA5C83E59A2DDE6B3E0D63ECA996F76F ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 01:02:34.0385 0x1d4c nv_agp - ok 01:02:34.0415 0x1d4c [ 3589478E4B22CE21B41FA1BFC0B8B8A0, AD2469FC753FE552CB809FF405A9AB23E7561292FE89117E3B3B62057EFF0203 ] ohci1394 C:\Windows\system32\DRIVERS\ohci1394.sys 01:02:34.0415 0x1d4c ohci1394 - ok 01:02:34.0455 0x1d4c [ 9D10F99A6712E28F8ACD5641E3A7EA6B, 70964A0ED9011EA94044E15FA77EDD9CF535CC79ED8E03A3721FF007E69595CC ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE 01:02:34.0455 0x1d4c ose - ok 01:02:34.0635 0x1d4c [ 61BFFB5F57AD12F83AB64B7181829B34, 1DD0DD35E4158F95765EE6639F217DF03A0A19E624E020DBA609268C08A13846 ] osppsvc C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE 01:02:34.0795 0x1d4c osppsvc - ok 01:02:34.0835 0x1d4c [ DAF5D6B1696D42140839CD557336EFC8, DF5E16BFC27FB718C4C5F2FC8B20380D25A58B52E7F221957C0919C3F6D99833 ] OXSDIDRV_x64 C:\Windows\system32\DRIVERS\OXSDIDRV_x64.sys 01:02:34.0835 0x1d4c OXSDIDRV_x64 - ok 01:02:34.0865 0x1d4c [ D77856902312AB9129C966F64A3AC430, E0E9C8085EEC16B4D15275DB39FC906761F1F3CBE6A3D45D383977A9F1348DAE ] OXUDIDRV C:\Windows\system32\Drivers\OXUDIDRV_X64.sys 01:02:34.0875 0x1d4c OXUDIDRV - ok 01:02:34.0895 0x1d4c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] p2pimsvc C:\Windows\system32\pnrpsvc.dll 01:02:34.0915 0x1d4c p2pimsvc - ok 01:02:34.0945 0x1d4c [ 927463ECB02179F88E4B9A17568C63C3, FEFD3447692C277D59EEC7BF218552C8BB6B8C98C26E973675549628408B94CE ] p2psvc C:\Windows\system32\p2psvc.dll 01:02:34.0955 0x1d4c p2psvc - ok 01:02:34.0975 0x1d4c [ 0086431C29C35BE1DBC43F52CC273887, 0D116D49EF9ABB57DA005764F25E692622210627FC2048F06A989B12FA8D0A80 ] Parport C:\Windows\system32\DRIVERS\parport.sys 01:02:34.0975 0x1d4c Parport - ok 01:02:35.0005 0x1d4c [ E9766131EEADE40A27DC27D2D68FBA9C, 63C295EC96DBD25F1A8B908295CCB86B54F2A77A02AAA11E5D9160C2C1A492B6 ] partmgr C:\Windows\system32\drivers\partmgr.sys 01:02:35.0005 0x1d4c partmgr - ok 01:02:35.0045 0x1d4c [ DB2D62AA2DF6B1F3D690A9EC9701AA2C, BEAC55E1AA0494565F1547DF5E6FE20FCEA66461764C016FCB68D8BFF0F0C375 ] PcaSvc C:\Windows\System32\pcasvc.dll 01:02:35.0065 0x1d4c PcaSvc - ok 01:02:35.0075 0x1d4c [ 94575C0571D1462A0F70BDE6BD6EE6B3, 7139BAC653EA94A3DD3821CAB35FC5E22F4CCA5ACC2BAABDAA27E4C3C8B27FC9 ] pci C:\Windows\system32\drivers\pci.sys 01:02:35.0085 0x1d4c pci - ok 01:02:35.0115 0x1d4c [ B5B8B5EF2E5CB34DF8DCF8831E3534FA, F2A7CC645B96946CC65BF60E14E70DC09C848D27C7943CE5DEA0C01A6B863480 ] pciide C:\Windows\system32\drivers\pciide.sys 01:02:35.0115 0x1d4c pciide - ok 01:02:35.0135 0x1d4c [ B2E81D4E87CE48589F98CB8C05B01F2F, 6763BEE7270A4873B3E131BFB92313E2750FCBD0AD73C23D1C4F98F7DF73DE14 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys 01:02:35.0145 0x1d4c pcmcia - ok 01:02:35.0165 0x1d4c [ AF7CE12C4F3DC8CB2B07685C916BBCFE, 1AF47113778D411BF3CF82ACF428676908121B1F3252133A5F98E188ED1E9C6C ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys 01:02:35.0175 0x1d4c pcouffin - ok 01:02:35.0185 0x1d4c [ D6B9C2E1A11A3A4B26A182FFEF18F603, BBA5FE08B1DDD6243118E11358FD61B10E850F090F061711C3CB207CE5FBBD36 ] pcw C:\Windows\system32\drivers\pcw.sys 01:02:35.0195 0x1d4c pcw - ok 01:02:35.0275 0x1d4c [ ED6E75158D28D33A2E2A020AC5B2B59D, 0F364D9A88304C45F31318605C417A70A9D0E4CF087D73E949B42C12CC76CD6C ] PEAUTH C:\Windows\system32\drivers\peauth.sys 01:02:35.0305 0x1d4c PEAUTH - ok 01:02:35.0325 0x1d4c [ E495E408C93141E8FC72DC0C6046DDFA, 489B957DADA0DC128A09468F1AD082DCC657E86053208EA06A12937BE86FB919 ] PerfHost C:\Windows\SysWow64\perfhost.exe 01:02:35.0335 0x1d4c PerfHost - ok 01:02:35.0465 0x1d4c [ AE0B94363DA0F60D42B9D05B352F61ED, 284EA0123798BDBBAA93F912AD45B3D3F1F662FDDA5C73C0AC0D76AC2F9033C0 ] PID_PEPI C:\Windows\system32\DRIVERS\LV302V64.SYS 01:02:35.0555 0x1d4c PID_PEPI - ok 01:02:35.0625 0x1d4c [ C7CF6A6E137463219E1259E3F0F0DD6C, 08D7244F52AA17DD669AA6F77C291DAC88E7B2D1887DE422509C1F83EC85F3DD ] pla C:\Windows\system32\pla.dll 01:02:35.0675 0x1d4c pla - ok 01:02:35.0725 0x1d4c [ 25FBDEF06C4D92815B353F6E792C8129, 57D9764AE6BCE33B242C399CDFC10DD405975BD6411CA8C75FBCD06EEB8442A9 ] PlugPlay C:\Windows\system32\umpnpmgr.dll 01:02:35.0745 0x1d4c PlugPlay - ok 01:02:35.0765 0x1d4c [ 7195581CEC9BB7D12ABE54036ACC2E38, 9C4E5D6EA984148F2663DC529083408B2248DFF6DAAC85D9195F80A722782315 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll 01:02:35.0765 0x1d4c PNRPAutoReg - ok 01:02:35.0785 0x1d4c [ 3EAC4455472CC2C97107B5291E0DCAFE, E51F373F2DBEAEE516B42BAE8C1B5BB68D00B881323E842CB6EDEC0A183CFFC3 ] PNRPsvc C:\Windows\system32\pnrpsvc.dll 01:02:35.0805 0x1d4c PNRPsvc - ok 01:02:35.0835 0x1d4c [ 4F15D75ADF6156BF56ECED6D4A55C389, 2ADA3EA69A5D7EC2A4D2DD89178DB94EAFDDF95F07B0070D654D9F7A5C12A044 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 01:02:35.0855 0x1d4c PolicyAgent - ok 01:02:35.0955 0x1d4c [ 6BA9D927DDED70BD1A9CADED45F8B184, 66203CE70A5EDE053929A940F38924C6792239CCCE10DD2C1D90D5B4D6748B55 ] Power C:\Windows\system32\umpo.dll 01:02:35.0975 0x1d4c Power - ok 01:02:36.0005 0x1d4c [ F92A2C41117A11A00BE01CA01A7FCDE9, 38ADC6052696D110CA5F393BC586791920663F5DA66934C2A824DDA9CD89C763 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 01:02:36.0005 0x1d4c PptpMiniport - ok 01:02:36.0035 0x1d4c [ 0D922E23C041EFB1C3FAC2A6F943C9BF, 855418A6A58DCAFB181A1A68613B3E203AFB0A9B3D9D26D0C521F9F613B4EAD5 ] Processor C:\Windows\system32\DRIVERS\processr.sys 01:02:36.0045 0x1d4c Processor - ok 01:02:36.0075 0x1d4c [ B6A58491307B4CADA572583D863DC602, 5C44936605E52C9533E4CE22F18FAB8211475877F71EFD88DA4D02FD608C90A3 ] ProfSvc C:\Windows\system32\profsvc.dll 01:02:36.0095 0x1d4c ProfSvc - ok 01:02:36.0115 0x1d4c [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] ProtectedStorage C:\Windows\system32\lsass.exe 01:02:36.0115 0x1d4c ProtectedStorage - ok 01:02:36.0155 0x1d4c [ 0557CF5A2556BD58E26384169D72438D, F6F83A616B1F1C6C0DF6D2EC2513E6C23FD4FAA6D36518B8676C619AB74957B4 ] Psched C:\Windows\system32\DRIVERS\pacer.sys 01:02:36.0155 0x1d4c Psched - ok 01:02:36.0175 0x1d4c [ DD3FD48D69F5FBBB21D46D1514C1C2DB, 2B188E3AC4BD9B608D375DD550507717852C2AF7C0F99FFED90098999B9D4F01 ] PSI C:\Windows\system32\DRIVERS\psi_mf_amd64.sys 01:02:36.0175 0x1d4c PSI - ok 01:02:36.0235 0x1d4c [ A53A15A11EBFD21077463EE2C7AFEEF0, 6002B012A75045DEA62640A864A8721EADE2F8B65BEB5F5BA76D8CD819774489 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys 01:02:36.0285 0x1d4c ql2300 - ok 01:02:36.0305 0x1d4c [ 4F6D12B51DE1AAEFF7DC58C4D75423C8, FB6ABAB741CED66A79E31A45111649F2FA3E26CEE77209B5296F789F6F7D08DE ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys 01:02:36.0305 0x1d4c ql40xx - ok 01:02:36.0365 0x1d4c [ DE55B01FC317FB5EE2B6734C692C5A95, 9371C7D087AA8419D4772D95C2868EB09F136A0734C31471034DD54383F7B12B ] QPCopyEngine C:\Program Files\Iomega\QuikProtect\QpMonitor.exe 01:02:36.0375 0x1d4c QPCopyEngine - ok 01:02:36.0415 0x1d4c [ 906191634E99AEA92C4816150BDA3732, A0305436384104C3B559F9C73902DA19B96B518413379E397C5CDAB0B2B9418F ] QWAVE C:\Windows\system32\qwave.dll 01:02:36.0425 0x1d4c QWAVE - ok 01:02:36.0435 0x1d4c [ 76707BB36430888D9CE9D705398ADB6C, 35C1D1D05F98AC29A33D3781F497A0B40A3CB9CDF25FE1F28F574E40DDF70535 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 01:02:36.0435 0x1d4c QWAVEdrv - ok 01:02:36.0455 0x1d4c [ 5A0DA8AD5762FA2D91678A8A01311704, 8A64EB5DBAB7048A9E42A21CEB62CCD5B007A80C199892D7F8C69B48E8A255EF ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 01:02:36.0455 0x1d4c RasAcd - ok 01:02:36.0485 0x1d4c [ 7ECFF9B22276B73F43A99A15A6094E90, 62C70DA127F48F796F8897BBFA23AB6EB080CC923F0F091DFA384A93F5C90CA1 ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys 01:02:36.0495 0x1d4c RasAgileVpn - ok 01:02:36.0505 0x1d4c [ 8F26510C5383B8DBE976DE1CD00FC8C7, 60E618C010E8A723960636415573FA17EA0BBEF79647196B3BC0B8DEE680E090 ] RasAuto C:\Windows\System32\rasauto.dll 01:02:36.0515 0x1d4c RasAuto - ok 01:02:36.0545 0x1d4c [ 471815800AE33E6F1C32FB1B97C490CA, 27307265F743DE3A3A3EC1B2C472A3D85FDD0AEC458E0B1177593141EE072698 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 01:02:36.0555 0x1d4c Rasl2tp - ok 01:02:36.0585 0x1d4c [ EE867A0870FC9E4972BA9EAAD35651E2, 1B848D81705081FD2E18AC762DA7F51455657DAF860BF363DC15925A148BCADA ] RasMan C:\Windows\System32\rasmans.dll 01:02:36.0605 0x1d4c RasMan - ok 01:02:36.0615 0x1d4c [ 855C9B1CD4756C5E9A2AA58A15F58C25, A514F8A9C304D54BDA8DC60F5A64259B057EC83A1CAAF6D2B58CFD55E9561F72 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 01:02:36.0625 0x1d4c RasPppoe - ok 01:02:36.0635 0x1d4c [ E8B1E447B008D07FF47D016C2B0EEECB, FEC789F82B912F3E14E49524D40FEAA4373B221156F14045E645D7C37859258C ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 01:02:36.0645 0x1d4c RasSstp - ok 01:02:36.0665 0x1d4c [ 77F665941019A1594D887A74F301FA2F, 1FDC6F6853400190C086042933F157814D915C54F26793CAD36CD2607D8810DA ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 01:02:36.0675 0x1d4c rdbss - ok 01:02:36.0685 0x1d4c [ 302DA2A0539F2CF54D7C6CC30C1F2D8D, 1DF3501BBFFB56C3ECC39DBCC4287D3302216C2208CE22428B8C4967E5DE9D17 ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys 01:02:36.0685 0x1d4c rdpbus - ok 01:02:36.0705 0x1d4c [ CEA6CC257FC9B7715F1C2B4849286D24, A78144D18352EA802C39D9D42921CF97A3E0211766B2169B6755C6FC2D77A804 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 01:02:36.0705 0x1d4c RDPCDD - ok 01:02:36.0725 0x1d4c [ BB5971A4F00659529A5C44831AF22365, 9AAA5C0D448E821FD85589505D99DF7749715A046BBD211F139E4E652ADDE41F ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 01:02:36.0725 0x1d4c RDPENCDD - ok 01:02:36.0745 0x1d4c [ 216F3FA57533D98E1F74DED70113177A, 60C126A1409D1E9C39F1C9E95F70115BF4AF07780AB499F6E10A612540F173F4 ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys 01:02:36.0745 0x1d4c RDPREFMP - ok 01:02:36.0795 0x1d4c [ 313F68E1A3E6345A4F47A36B07062F34, B8318A0AE06BDE278931CA52F960B9FE226FD9894B076858DDB755AE26E1E66F ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys 01:02:36.0815 0x1d4c RdpVideoMiniport - ok 01:02:36.0865 0x1d4c [ FE571E088C2D83619D2D48D4E961BF41, 88C5A2FCB1D0E528657842E39963471A6E42FCA3FCDF37955AEC8258AB4C48EA ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 01:02:36.0885 0x1d4c RDPWD - ok 01:02:36.0925 0x1d4c [ 34ED295FA0121C241BFEF24764FC4520, AAEE5F00CAA763A5BA51CF56BD7262C03409CD72BD5601490E3EC3FFF929BB5F ] rdyboost C:\Windows\system32\drivers\rdyboost.sys 01:02:36.0945 0x1d4c rdyboost - ok 01:02:37.0035 0x1d4c [ 2528D733DA7F5AC8D3D32C74EE4CFF16, 0C021B5DBF6D0094A2DBE69B3E56F4EF910D27B76C83B8C15A98198C4FA3C32D ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe 01:02:37.0075 0x1d4c RegSrvc - ok 01:02:37.0115 0x1d4c [ 254FB7A22D74E5511C73A3F6D802F192, 3D0FB5840364200DE394F8CC28DA0E334C2B5FA8FF28A41656EE72287F3D3836 ] RemoteAccess C:\Windows\System32\mprdim.dll 01:02:37.0115 0x1d4c RemoteAccess - ok 01:02:37.0155 0x1d4c [ E4D94F24081440B5FC5AA556C7C62702, 147CAA03568DC480F9506E30B84891AB7E433B5EBC05F34FF10F72B00E1C6B22 ] RemoteRegistry C:\Windows\system32\regsvc.dll 01:02:37.0165 0x1d4c RemoteRegistry - ok 01:02:37.0185 0x1d4c [ 3DD798846E2C28102B922C56E71B7932, 30B111615D74CB2213997A5C08DD9C8613ADE441D9423CC1C49A753D13CE524D ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 01:02:37.0185 0x1d4c RFCOMM - ok 01:02:37.0205 0x1d4c [ E4DC58CF7B3EA515AE917FF0D402A7BB, 665B5CD9FE905B0EE3F59A7B1A94760F5393EBEE729877D8584349754C2867E8 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll 01:02:37.0205 0x1d4c RpcEptMapper - ok 01:02:37.0235 0x1d4c [ D5BA242D4CF8E384DB90E6A8ED850B8C, CB4CB2608B5E31B55FB1A2CF4051E6D08A0C2A5FB231B2116F95938D7577334E ] RpcLocator C:\Windows\system32\locator.exe 01:02:37.0235 0x1d4c RpcLocator - ok 01:02:37.0275 0x1d4c [ 5C627D1B1138676C0A7AB2C2C190D123, C5003F2C912C5CA990E634818D3B4FD72F871900AF2948BD6C4D6400B354B401 ] RpcSs C:\Windows\system32\rpcss.dll 01:02:37.0345 0x1d4c RpcSs - ok 01:02:37.0395 0x1d4c [ DDC86E4F8E7456261E637E3552E804FF, D250C69CCC75F2D88E7E624FCC51300E75637333317D53908CCA7E0F117173DD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 01:02:37.0395 0x1d4c rspndr - ok 01:02:37.0445 0x1d4c [ 6DF02B4EEF2869B77637EB65DDCED864, 74C2EFCCC7CA09B729BB99EE7F6D4F2A82B1E1923D7FE5D5A6C7DD1334D09E4D ] RtkBtFilter C:\Windows\system32\DRIVERS\RtkBtfilter.sys 01:02:37.0475 0x1d4c RtkBtFilter - ok 01:02:37.0505 0x1d4c [ AFC12DFA4C7B089673AD67402CA19EDB, 9CA430E8DFAE9B7A245FCD766CB60245418C80CEBCD2E9FACA9DE62E3E60ADDF ] RTL8167 C:\Windows\system32\DRIVERS\Rt64win7.sys 01:02:37.0525 0x1d4c RTL8167 - ok 01:02:37.0545 0x1d4c [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] SamSs C:\Windows\system32\lsass.exe 01:02:37.0545 0x1d4c SamSs - ok 01:02:37.0565 0x1d4c [ AC03AF3329579FFFB455AA2DAABBE22B, 7AD3B62ADFEC166F9E256F9FF8BAA0568B2ED7308142BF8F5269E6EAA5E0A656 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 01:02:37.0575 0x1d4c sbp2port - ok 01:02:37.0595 0x1d4c [ 9B7395789E3791A3B6D000FE6F8B131E, E5F067F3F212BF5481668BE1779CBEF053F511F8967589BE2E865ACB9A620024 ] SCardSvr C:\Windows\System32\SCardSvr.dll 01:02:37.0605 0x1d4c SCardSvr - ok 01:02:37.0625 0x1d4c [ 253F38D0D7074C02FF8DEB9836C97D2B, CB5CAFCB8628BB22877F74ACF1DED0BBAED8F4573A74DA7FE94BBBA584889116 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys 01:02:37.0635 0x1d4c scfilter - ok 01:02:37.0695 0x1d4c [ 40686B59C127F0C93B4234E4A1E3472A, B2DD61CB796C6AA8AFD285D43472B94646CA6D331D282818E0FDC9DE28DDE9CF ] Schedule C:\Windows\system32\schedsvc.dll 01:02:37.0736 0x1d4c Schedule - ok 01:02:37.0766 0x1d4c [ F17D1D393BBC69C5322FBFAFACA28C7F, 62A1A92B3C52ADFD0B808D7F69DD50238B5F202421F1786F7EAEAA63F274B3E8 ] SCPolicySvc C:\Windows\System32\certprop.dll 01:02:37.0766 0x1d4c SCPolicySvc - ok 01:02:37.0856 0x1d4c [ B60E9769655DDEE8368E3ABB6668E076, EECA05B36C6F837FA6DB2EDD78E17E9EA5F0D793B869CB99A08C61AB485A1E67 ] ScrybeUpdater C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe 01:02:37.0896 0x1d4c ScrybeUpdater - ok 01:02:37.0926 0x1d4c [ 111E0EBC0AD79CB0FA014B907B231CF0, B7D43D156C2524938503CF8E99C4D1F7A5C55E16C0368F57F4CD23C6D833B38F ] sdbus C:\Windows\system32\drivers\sdbus.sys 01:02:37.0926 0x1d4c sdbus - ok 01:02:37.0956 0x1d4c [ 6EA4234DC55346E0709560FE7C2C1972, 64011E044C16E2F92689E5F7E4666A075E27BBFA61F3264E5D51CE1656C1D5B8 ] SDRSVC C:\Windows\System32\SDRSVC.dll 01:02:37.0966 0x1d4c SDRSVC - ok 01:02:37.0986 0x1d4c [ 3EA8A16169C26AFBEB544E0E48421186, 34BBB0459C96B3DE94CCB0D73461562935C583D7BF93828DA4E20A6BC9B7301D ] secdrv C:\Windows\system32\drivers\secdrv.sys 01:02:37.0986 0x1d4c secdrv - ok 01:02:38.0016 0x1d4c [ BC617A4E1B4FA8DF523A061739A0BD87, 10C4057F6B321EB5237FF619747B74F5401BC17D15A8C7060829E8204A2297F9 ] seclogon C:\Windows\system32\seclogon.dll 01:02:38.0016 0x1d4c seclogon - ok 01:02:38.0086 0x1d4c [ 398A81D590424441B2F5C5C08073CADB, 1E064DFCC49EB0D8A4150276BF796B9DFA030C451570A170EC940F8CBAAD80F3 ] Secunia PSI Agent C:\Program Files (x86)\Secunia\PSI\PSIA.exe 01:02:38.0136 0x1d4c Secunia PSI Agent - ok 01:02:38.0166 0x1d4c [ 8C2D3A80FC90A860F0F24DEB67471481, CE4D17B63149C44B4CD5CB7776FD4705DC675F6D2D077D53BE15578294EBC9D4 ] Secunia Update Agent C:\Program Files (x86)\Secunia\PSI\sua.exe 01:02:38.0196 0x1d4c Secunia Update Agent - ok 01:02:38.0226 0x1d4c [ C32AB8FA018EF34C0F113BD501436D21, E0EB8E80B51E45CA7EB061E705DA0BC07878759418A8519AE6E12326FE79E7C7 ] SENS C:\Windows\System32\sens.dll 01:02:38.0226 0x1d4c SENS - ok 01:02:38.0236 0x1d4c [ 0336CFFAFAAB87A11541F1CF1594B2B2, 8B8A6A33E78A12FB05E29B2E2775850626574AFD2EF88748D65E690A07B10B8D ] SensrSvc C:\Windows\system32\sensrsvc.dll 01:02:38.0246 0x1d4c SensrSvc - ok 01:02:38.0266 0x1d4c [ CB624C0035412AF0DEBEC78C41F5CA1B, A4D937F11E06CAE914347CA1362F4C98EC5EE0C0C80321E360EA1ABD6726F8D4 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys 01:02:38.0266 0x1d4c Serenum - ok 01:02:38.0286 0x1d4c [ C1D8E28B2C2ADFAEC4BA89E9FDA69BD6, 8F9776FB84C5D11068EAF1FF1D1A46466C655D64D256A8B1E31DC0C23B5DD22D ] Serial C:\Windows\system32\DRIVERS\serial.sys 01:02:38.0286 0x1d4c Serial - ok 01:02:38.0316 0x1d4c [ 1C545A7D0691CC4A027396535691C3E3, 065C30BE598FF4DC55C37E0BBE0CEDF10A370AE2BF5404B42EBBB867A3FFED6D ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys 01:02:38.0316 0x1d4c sermouse - ok 01:02:38.0376 0x1d4c [ 0B6231BF38174A1628C4AC812CC75804, E569BF1F7F5689E2E917FA6516DB53388A5B8B1C6699DEE030147E853218811D ] SessionEnv C:\Windows\system32\sessenv.dll 01:02:38.0376 0x1d4c SessionEnv - ok 01:02:38.0406 0x1d4c [ A554811BCD09279536440C964AE35BBF, DA8F893722F803E189D7D4D6C6232ED34505B63A64ED3A0132A5BB7A2BABDE55 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 01:02:38.0416 0x1d4c sffdisk - ok 01:02:38.0436 0x1d4c [ FF414F0BAEFEBA59BC6C04B3DB0B87BF, B81EF5D26AEB572CAB590F7AD7CA8C89F296420089EF5E6148E972F2DBCA1042 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 01:02:38.0436 0x1d4c sffp_mmc - ok 01:02:38.0446 0x1d4c [ DD85B78243A19B59F0637DCF284DA63C, 6730D4F2BAE7E24615746ACC41B42D01DB6068D6504982008ADA1890DE900197 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 01:02:38.0446 0x1d4c sffp_sd - ok 01:02:38.0466 0x1d4c [ A9D601643A1647211A1EE2EC4E433FF4, 7AC60B4AB48D4BBF1F9681C12EC2A75C72E6E12D30FABC564A24394310E9A5F9 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys 01:02:38.0466 0x1d4c sfloppy - ok 01:02:38.0536 0x1d4c [ B95F6501A2F8B2E78C697FEC401970CE, 758B73A32902299A313348CE7EC189B20EB4CB398D0180E4EE24B84DAD55F291 ] SharedAccess C:\Windows\System32\ipnathlp.dll 01:02:38.0566 0x1d4c SharedAccess - ok 01:02:38.0606 0x1d4c [ AAF932B4011D14052955D4B212A4DA8D, 2A3BFD0FA9569288E91AE3E72CA1EC39E1450D01E6473CE51157E0F138257923 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 01:02:38.0626 0x1d4c ShellHWDetection - ok 01:02:38.0646 0x1d4c [ 843CAF1E5FDE1FFD5FF768F23A51E2E1, 89CA9F516E42A6B905474D738CDA2C121020A07DBD4E66CFE569DD77D79D7820 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys 01:02:38.0646 0x1d4c SiSRaid2 - ok 01:02:38.0656 0x1d4c [ 6A6C106D42E9FFFF8B9FCB4F754F6DA4, 87B85C66DF7EB6FDB8A2341D05FAA5261FF68A90CCFC63F0E4A03824F1E33E5E ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys 01:02:38.0666 0x1d4c SiSRaid4 - ok 01:02:38.0706 0x1d4c [ F6EF225A23D336CA30001E5007644C24, B0A4B1256C1074F1B4F73E3BBA16FD4683D6EEA583DEEF8E11EFD29BA7541F2A ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe 01:02:38.0726 0x1d4c SkypeUpdate - ok 01:02:38.0756 0x1d4c [ 548260A7B8654E024DC30BF8A7C5BAA4, 4A7E58331D7765A12F53DC2371739DC9A463940B13E16157CE10DB80E958D740 ] Smb C:\Windows\system32\DRIVERS\smb.sys 01:02:38.0756 0x1d4c Smb - ok 01:02:38.0796 0x1d4c [ FBE0201AB61E18934C812C34D31A4403, 549E51FC11CCA30B21970C90F4799D6CB94481CDC623B8C319F16DAEFC8A190B ] snapman C:\Windows\system32\DRIVERS\snapman.sys 01:02:38.0806 0x1d4c snapman - ok 01:02:38.0836 0x1d4c [ 6313F223E817CC09AA41811DAA7F541D, D787061043BEEDB9386B048CB9E680E6A88A1CBAE9BD4A8C0209155BFB76C630 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 01:02:38.0836 0x1d4c SNMPTRAP - ok 01:02:38.0876 0x1d4c [ F9369327409492097B0BB7CE86BD29DE, 7E9B7A9659A6971029E491C702C306E2078B8F5547FCF874FDA8BAD5898D5E25 ] Soluto C:\Windows\system32\DRIVERS\Soluto.sys 01:02:38.0876 0x1d4c Soluto - ok 01:02:38.0976 0x1d4c [ D56C85099CA6D7A5CED861FE920D2DB6, D6D003B660E5F9B2AA5546C96283D76833A6CDD16DEFC46D7225348192F47655 ] SolutoLauncherService C:\Program Files\Soluto\SolutoLauncherService.exe 01:02:39.0017 0x1d4c SolutoLauncherService - ok 01:02:39.0119 0x1d4c [ 92875E1EE2915A165C5E86089197E94B, 65BCE5670A9A7A98A59F48043AD61475FB85AC7A5DCC72C6DFC12305FC308A53 ] SolutoRemoteService C:\Program Files\Soluto\SolutoRemoteService.exe 01:02:39.0189 0x1d4c SolutoRemoteService - ok 01:02:39.0279 0x1d4c [ 7B35E1FFBF3B3A8763122BC34FEAEA3C, 8E3DCA135759FFD7ED1032CCCE5D562D60E4BDFE6C4C3AEC50F893C2657CC810 ] SolutoService C:\Program Files\Soluto\SolutoService.exe 01:02:39.0309 0x1d4c SolutoService - ok 01:02:39.0389 0x1d4c [ B9E31E5CACDFE584F34F730A677803F9, 21A5130BD00089C609522A372018A719F8E37103D2DD22C59EACB393BE35A063 ] spldr C:\Windows\system32\drivers\spldr.sys 01:02:39.0389 0x1d4c spldr - ok 01:02:39.0499 0x1d4c [ 85DAA09A98C9286D4EA2BA8D0E644377, F9C324E2EF81193FE831C7EECC44A100CA06F82FA731BF555D9EA4D91DA13329 ] Spooler C:\Windows\System32\spoolsv.exe 01:02:39.0529 0x1d4c Spooler - ok 01:02:39.0689 0x1d4c [ E17E0188BB90FAE42D83E98707EFA59C, FC075F7B39E86CC8EF6DA4E339FE946917E319C347AC70FB0C50AAF36F97E27F ] sppsvc C:\Windows\system32\sppsvc.exe 01:02:39.0821 0x1d4c sppsvc - ok 01:02:39.0856 0x1d4c [ 93D7D61317F3D4BC4F4E9F8A96A7DE45, 36D48B23B8243BE5229707375FCD11C2DCAC96983199345365F065A0CBF33314 ] sppuinotify C:\Windows\system32\sppuinotify.dll 01:02:39.0861 0x1d4c sppuinotify - ok 01:02:39.0901 0x1d4c [ D6AB7C13FCDD2E4CAC35244D2C172D9A, 64A66368F5336B7A5879D083C2FE57DFD384410ADCC18004F327A4004A4F4300 ] sptd C:\Windows\System32\Drivers\sptd.sys 01:02:39.0931 0x1d4c sptd - ok 01:02:39.0951 0x1d4c [ A340ABC480C43C30CABC943E78AC631E, 6D7A157B96F6AB1D853E1EDB74359F9EC9E046D29E9C3D2B77BE456BF46BBE88 ] sp_rsdrv2 C:\Windows\system32\DRIVERS\stflt.sys 01:02:39.0961 0x1d4c sp_rsdrv2 - ok 01:02:40.0029 0x1d4c [ 7DDBDA0DDA8BD831EE8839ADD067FA7E, 5499CF53EC7E4EAFD455B6DB959AD3FFE2F16C9B18CA89DD2413091E1043ABD8 ] sp_rssrv C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe 01:02:40.0089 0x1d4c sp_rssrv - ok 01:02:40.0129 0x1d4c [ 441FBA48BFF01FDB9D5969EBC1838F0B, 306128F1AD489F87161A089D1BDC1542A4CB742D91A0C12A7CD1863FDB8932C0 ] srv C:\Windows\system32\DRIVERS\srv.sys 01:02:40.0149 0x1d4c srv - ok 01:02:40.0179 0x1d4c [ B4ADEBBF5E3677CCE9651E0F01F7CC28, 726DB2283113AB2A9681E8E9F61132303D6D86E9CD034C40EE4A8C9DB29E87F7 ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 01:02:40.0189 0x1d4c srv2 - ok 01:02:40.0239 0x1d4c [ 0C4540311E11664B245A263E1154CEF8, 63376322BFFAFF2F166AF3FDD3F1A346C21FAE21F406F659F8630779D1D6525D ] SrvHsfHDA C:\Windows\system32\DRIVERS\VSTAZL6.SYS 01:02:40.0239 0x1d4c SrvHsfHDA - ok 01:02:40.0329 0x1d4c [ 02071D207A9858FBE3A48CBFD59C4A04, FEA4DEBAEC3465E0C7C1E8B721805922F6BBCB96A60A193B11688F4252F4B89E ] SrvHsfV92 C:\Windows\system32\DRIVERS\VSTDPV6.SYS 01:02:40.0369 0x1d4c SrvHsfV92 - ok 01:02:40.0429 0x1d4c [ 18E40C245DBFAF36FD0134A7EF2DF396, 0138A68958112101A5D3BD94114F320CE80B0C9A93E009AC78DE7415FCCC7DE7 ] SrvHsfWinac C:\Windows\system32\DRIVERS\VSTCNXT6.SYS 01:02:40.0459 0x1d4c SrvHsfWinac - ok 01:02:40.0489 0x1d4c [ 27E461F0BE5BFF5FC737328F749538C3, AFA4704ED8FFC1A0BAB40DFB81D3AE3F3D933A3C9BF54DDAF39FF9AF3646D9E6 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 01:02:40.0489 0x1d4c srvnet - ok 01:02:40.0509 0x1d4c [ 51B52FBD583CDE8AA9BA62B8B4298F33, 2E2403F8AA39E79D1281CA006B51B43139C32A5FDD64BD34DAA4B935338BD740 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 01:02:40.0509 0x1d4c SSDPSRV - ok 01:02:40.0539 0x1d4c [ AB7AEBF58DAD8DAAB7A6C45E6A8885CB, D21CDBC4C2AA0DB5B4455D5108B0CAF4282A2E664B9035708F212CC094569D9D ] SstpSvc C:\Windows\system32\sstpsvc.dll 01:02:40.0539 0x1d4c SstpSvc - ok 01:02:40.0639 0x1d4c [ 1ED49590CC2276FDC50B4D05AA47303A, 4659E017FC285561BC910CDAB4BCB3978E3E558C34F61968C423D48FFAEA45C7 ] STacSV C:\Program Files\IDT\WDM\STacSV64.exe 01:02:40.0649 0x1d4c STacSV - ok 01:02:40.0669 0x1d4c [ F3817967ED533D08327DC73BC4D5542A, 1B204454408A690C0A86447F3E4AA9E7C58A9CFB567C94C17C21920BA648B4D5 ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys 01:02:40.0679 0x1d4c stexstor - ok 01:02:40.0709 0x1d4c [ 6374AB1C9E23F2BA68A25F1619A79E03, B931489B79AAA1964227B35F0B525D44106B3B17217EEE578117F916485A058C ] STHDA C:\Windows\system32\DRIVERS\stwrt64.sys 01:02:40.0739 0x1d4c STHDA - ok 01:02:40.0789 0x1d4c [ 8DD52E8E6128F4B2DA92CE27402871C1, 1101C38BE8FC383B5F2F9FA402F9652B23B88A764DE2B584DFE62B88B11DEF92 ] stisvc C:\Windows\System32\wiaservc.dll 01:02:40.0819 0x1d4c stisvc - ok 01:02:40.0849 0x1d4c [ 4C2D24EB13F611AC742809A2AAA25BE1, B0746D93A46812608FAF84167A178C118FA6318996E15C17DF170E7B6B2D69F5 ] SWDUMon C:\Windows\system32\DRIVERS\SWDUMon.sys 01:02:40.0849 0x1d4c SWDUMon - ok 01:02:40.0879 0x1d4c [ D01EC09B6711A5F8E7E6564A4D0FBC90, 3CB922291DBADC92B46B9E28CCB6810CD8CCDA3E74518EC9522B58B998E1F969 ] swenum C:\Windows\system32\drivers\swenum.sys 01:02:40.0879 0x1d4c swenum - ok 01:02:40.0899 0x1d4c [ E08E46FDD841B7184194011CA1955A0B, 9C3725BB1F08F92744C980A22ED5C874007D3B5863C7E1F140F50061052AC418 ] swprv C:\Windows\System32\swprv.dll 01:02:40.0929 0x1d4c swprv - ok 01:02:41.0309 0x1d4c [ 0FE29D81F372CA2DCE9E49736A3BD3E6, 10ED93BEE7ECBD2AF5E7AB0197CC82A5424FD63A2ED90F0417B266AD06E5F32C ] syncagentsrv C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe 01:02:41.0599 0x1d4c syncagentsrv - ok 01:02:41.0649 0x1d4c [ AC3CC98B1BDB6540021D3FFB105AC2B9, 671146CC16139AECE0BCCC44983807E045A930E262F64461D0D882A0A0B77E4F ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 01:02:41.0659 0x1d4c SynTP - ok 01:02:41.0739 0x1d4c [ 2E730941CC5BF6200A4F56D1E9C24AAD, 758836D55DC84F3EBE9917DC6FAB8E6170A5B238FEDBCFDB6D7C5C6EA98E08B2 ] SysMain C:\Windows\system32\sysmain.dll 01:02:41.0799 0x1d4c SysMain - ok 01:02:41.0829 0x1d4c [ E3C61FD7B7C2557E1F1B0B4CEC713585, 01F0E116606D185BF93B540868075BFB1A398197F6AABD994983DBFF56B3A8A0 ] TabletInputService C:\Windows\System32\TabSvc.dll 01:02:41.0839 0x1d4c TabletInputService - ok 01:02:41.0859 0x1d4c [ 40F0849F65D13EE87B9A9AE3C1DD6823, E251A7EF3D0FD2973AF33A62FC457A7E8D5E8694208F811F52455F7C2426121F ] TapiSrv C:\Windows\System32\tapisrv.dll 01:02:41.0869 0x1d4c TapiSrv - ok 01:02:41.0899 0x1d4c [ 1BE03AC720F4D302EA01D40F588162F6, AB644862BF1D2E824FD846180DEC4E2C0FAFCC517451486DE5A92E5E78A952E4 ] TBS C:\Windows\System32\tbssvc.dll 01:02:41.0909 0x1d4c TBS - ok 01:02:42.0019 0x1d4c [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 01:02:42.0069 0x1d4c Tcpip - ok 01:02:42.0139 0x1d4c [ 04ADD18EE5CC9FBEDAEC1DD1CD0CB45E, F05C0C4CA3DD234AD5D60CF1EF763C9A1D9EC3C157E180C2D75CC07E6B02A611 ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys 01:02:42.0179 0x1d4c TCPIP6 - ok 01:02:42.0239 0x1d4c [ 1B16D0BD9841794A6E0CDE0CEF744ABC, 7EB8BA97339199EEE7F2B09DA2DA6279DA64A510D4598D42CF86415D67CD674C ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 01:02:42.0239 0x1d4c tcpipreg - ok 01:02:42.0269 0x1d4c [ 3371D21011695B16333A3934340C4E7C, 7416F9BBFC1BA9D875EA7D1C7A0D912FC6977B49A865D67E3F9C4E18A965082D ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 01:02:42.0269 0x1d4c TDPIPE - ok 01:02:42.0369 0x1d4c [ 07330E30921C70E9D9B416EE43A06349, 398500C12E685BCF732C7F80A2C0E95181E5377A0E6C14CF9A3EE8580083A556 ] tdrpman C:\Windows\system32\DRIVERS\tdrpman.sys 01:02:42.0419 0x1d4c tdrpman - ok 01:02:42.0449 0x1d4c [ 51C5ECEB1CDEE2468A1748BE550CFBC8, 4E8F83877330B421F7B5D8393D34BC44C6450E69209DAA95B29CB298166A5DF9 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 01:02:42.0449 0x1d4c TDTCP - ok 01:02:42.0479 0x1d4c [ AA77EB517D2F07A947294F260E3ACA83, B7A5DF3066830C0C2302B059778A67419792058A0D300C471DE40AB245EA7E58 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 01:02:42.0489 0x1d4c tdx - ok 01:02:42.0899 0x1d4c [ E72B44F86082DFE649CD991E3CD2F8B6, C5A1E53E41E48D3465A7D96886A1E5D1C3145C7E1A40FB74E3A05EDC2DA04F84 ] TeamViewer C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe 01:02:43.0151 0x1d4c TeamViewer - ok 01:02:43.0191 0x1d4c [ 561E7E1F06895D78DE991E01DD0FB6E5, 83BFA50A528762EC52A011302AC3874636FB7E26628CD7ACFBF2BDC9FAA8110D ] TermDD C:\Windows\system32\drivers\termdd.sys 01:02:43.0191 0x1d4c TermDD - ok 01:02:43.0261 0x1d4c [ 008CD4EBFABCF78D0F19B3778492648C, 9050490EEE0AD86E73F0A82D83E4FC29DF84F6B6FDB389AE135FD712B5F425BE ] TermService C:\Windows\System32\termsrv.dll 01:02:43.0291 0x1d4c TermService - ok 01:02:43.0331 0x1d4c [ F0344071948D1A1FA732231785A0664C, DB9886C2C858FAF45AEA15F8E42860343F73EB8685C53EC2E8CCC10586CB0832 ] Themes C:\Windows\system32\themeservice.dll 01:02:43.0331 0x1d4c Themes - ok 01:02:43.0371 0x1d4c [ E40E80D0304A73E8D269F7141D77250B, 0DB4AC13A264F19A84DC0BCED54E8E404014CC09C993B172002B1561EC7E265A ] THREADORDER C:\Windows\system32\mmcss.dll 01:02:43.0381 0x1d4c THREADORDER - ok 01:02:43.0471 0x1d4c [ DE604462206F7D8C203F767F425FCA8D, 149FBF6367C45415B939A9B1A7A10DA7A5E19F28CE533BCBE2B20DA4B78F8645 ] tib C:\Windows\system32\DRIVERS\tib.sys 01:02:43.0511 0x1d4c tib - ok 01:02:43.0541 0x1d4c [ 3C29FB9FC9B4C511AD69DC50257FEC75, 4906DADE076FD363C53044C805602EEA4D0EF6E92041C693E1BED2286614B36E ] tib_mounter C:\Windows\system32\DRIVERS\tib_mounter.sys 01:02:43.0551 0x1d4c tib_mounter - ok 01:02:43.0581 0x1d4c [ 7E7AFD841694F6AC397E99D75CEAD49D, DE87F203FD8E6BDCCFCA1860A85F283301A365846FB703D9BB86278D8AC96B07 ] TrkWks C:\Windows\System32\trkwks.dll 01:02:43.0581 0x1d4c TrkWks - ok 01:02:43.0641 0x1d4c [ 3E75A47D2DEFD2683DCA409572FBE8B2, 33964B1A05E045D3B878CDFD9F52A9086B4FA54D6D4D1DC38062D2874CACD4A0 ] trufos C:\Windows\system32\DRIVERS\trufos.sys 01:02:43.0661 0x1d4c trufos - ok 01:02:43.0731 0x1d4c [ 773212B2AAA24C1E31F10246B15B276C, F2EF85F5ABA307976D9C649D710B408952089458DDE97D4DEF321DF14E46A046 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 01:02:43.0751 0x1d4c TrustedInstaller - ok 01:02:43.0801 0x1d4c [ 19BEDA57F3E0A06B8D5EB6D619BD5624, 952D5FAFD662C93628C12A6F7EB8E240A44216C0A15CBD2F5016BC357CBFE821 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 01:02:43.0804 0x1d4c tssecsrv - ok 01:02:43.0843 0x1d4c [ E9981ECE8D894CEF7038FD1D040EB426, DCDDCE933CAECE8180A3447199B07F2F0413704EEC1A09606EE357901A84A7CF ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys 01:02:43.0843 0x1d4c TsUsbFlt - ok 01:02:44.0013 0x1d4c [ 4645910BE6CB805DB15CC49D8B6BAA39, A773290E200E8E7BCD52A88EA2464D93D2BFF47434592DF46B626F9C86BC9ED1 ] TuneUp.UtilitiesSvc C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe 01:02:44.0113 0x1d4c TuneUp.UtilitiesSvc - ok 01:02:44.0153 0x1d4c [ DB3C912A851FCA6358FED4D53DAA7E91, B35375EC9AF61D829489D9B278605E2098D6402419E79EB24C65D3B65816AEBC ] TuneUpUtilitiesDrv C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys 01:02:44.0153 0x1d4c TuneUpUtilitiesDrv - ok 01:02:44.0183 0x1d4c [ 3566A8DAAFA27AF944F5D705EAA64894, AE9D8B648DA08AF667B9456C3FE315489859C157510A258559F18238F2CC92B8 ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 01:02:44.0193 0x1d4c tunnel - ok 01:02:44.0213 0x1d4c [ B4DD609BD7E282BFC683CEC7EAAAAD67, EF131DB6F6411CAD36A989A421AF93F89DD61601AC524D2FF11C10FF6E3E9123 ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys 01:02:44.0223 0x1d4c uagp35 - ok 01:02:44.0243 0x1d4c [ FF4232A1A64012BAA1FD97C7B67DF593, D8591B4EB056899C7B604E4DD852D82D4D9809F508ABCED4A03E1BE6D5D456E3 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 01:02:44.0263 0x1d4c udfs - ok 01:02:44.0293 0x1d4c [ 3CBDEC8D06B9968ABA702EBA076364A1, B8DAB8AA804FC23021BFEBD7AE4D40FBE648D6C6BA21CC008E26D1C084972F9B ] UI0Detect C:\Windows\system32\UI0Detect.exe 01:02:44.0293 0x1d4c UI0Detect - ok 01:02:44.0323 0x1d4c [ BA1B69C9B7F8C952201B30D26A4BC0B2, EED9C21931922B680AEA4E2490F7D832494EA171354C467ADD2C71C5625CADB3 ] UimBus C:\Windows\system32\DRIVERS\uimx64.sys 01:02:44.0323 0x1d4c UimBus - ok 01:02:44.0353 0x1d4c [ 56060B99D10F381CAA70D2684E6512D3, 2EFEA60201519FA478D512A3CE54A2F1E0537BB15B5D0EE01A0730D847873EC9 ] Uim_IM C:\Windows\system32\Drivers\Uim_IMx64.sys 01:02:44.0383 0x1d4c Uim_IM - ok 01:02:44.0403 0x1d4c [ 4BFE1BC28391222894CBF1E7D0E42320, 5918B1ED2030600DF77BDACF1C808DF6EADDD8BF3E7003AF1D72050D8B102B3A ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 01:02:44.0403 0x1d4c uliagpkx - ok 01:02:44.0433 0x1d4c [ DC54A574663A895C8763AF0FA1FF7561, 09A3F3597E91CBEB2F38E96E75134312B60CAE5574B2AD4606C2D3E992AEDDFE ] umbus C:\Windows\system32\DRIVERS\umbus.sys 01:02:44.0433 0x1d4c umbus - ok 01:02:44.0463 0x1d4c [ B2E8E8CB557B156DA5493BBDDCC1474D, F547509A08C0679ACB843E20C9C0CF51BED1B06530BBC529DFB0944504564A43 ] UmPass C:\Windows\system32\DRIVERS\umpass.sys 01:02:44.0463 0x1d4c UmPass - ok 01:02:44.0533 0x1d4c [ B239FDC885A77E4D5FB93AD1BA2A80EC, EA4D6DF359FD9BD6465C44D718638ECF2F68F163F44F72B1897065012FBF7426 ] UPDATESRV C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe 01:02:44.0543 0x1d4c UPDATESRV - ok 01:02:44.0576 0x1d4c [ D47EC6A8E81633DD18D2436B19BAF6DE, 0FB461E2D5E0B75BB5958F6362F4880BFA4C36AD930542609BCAF574941AA7AE ] upnphost C:\Windows\System32\upnphost.dll 01:02:44.0585 0x1d4c upnphost - ok 01:02:44.0645 0x1d4c [ C669DE449D5D399037EF9FF77C03C23C, 1B6B4582ABD65A384BCBAE684B56C3F2C96F85FDDEA4F7763057C7260D476F05 ] USB28xxBGA C:\Windows\system32\DRIVERS\emBDA64.sys 01:02:44.0675 0x1d4c USB28xxBGA - ok 01:02:44.0724 0x1d4c [ 46C0FB27F28531D9D19573FD97EBCF90, DA8C7B3FF1ECFF445B962F5673CDFF8C9203C2BE485A74BA9C35E6807683347B ] USB28xxOEM C:\Windows\system32\DRIVERS\emOEM64.sys 01:02:44.0747 0x1d4c USB28xxOEM - ok 01:02:44.0787 0x1d4c [ B0435098C81D04CAFFF80DDB746CD3A2, A17B207740382E38729571F0B0BC98FF874E856A7C7CE9EB930328A2AD88F52A ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 01:02:44.0787 0x1d4c usbaudio - ok 01:02:44.0827 0x1d4c [ DCA68B0943D6FA415F0C56C92158A83A, BEE5A5B33B22D1DF50B884D46D89FC3B8286EB16E38AD5A20F0A49E5C6766C57 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 01:02:44.0827 0x1d4c usbccgp - ok 01:02:44.0867 0x1d4c [ 80B0F7D5CCF86CEB5D402EAAF61FEC31, 140C62116A425DEAD25FE8D82DE283BC92C482A9F643658D512F9F67061F28AD ] usbcir C:\Windows\system32\drivers\usbcir.sys 01:02:44.0867 0x1d4c usbcir - ok 01:02:44.0897 0x1d4c [ 18A85013A3E0F7E1755365D287443965, 811C5EDF38C765BCF71BCE25CB6626FF6988C3699F5EF1846240EA0052F34C33 ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 01:02:44.0907 0x1d4c usbehci - ok 01:02:44.0937 0x1d4c [ 8D1196CFBB223621F2C67D45710F25BA, B5D7AFE51833B24FC9576F3AED3D8A2B290E5846060E73F9FFFAC1890A8B6003 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 01:02:44.0957 0x1d4c usbhub - ok 01:02:44.0977 0x1d4c [ 765A92D428A8DB88B960DA5A8D6089DC, 56DE8A2ED58E53B202C399CA7BACB1551136303C2EE0AB426BDBBF880E3C542C ] usbohci C:\Windows\system32\drivers\usbohci.sys 01:02:44.0977 0x1d4c usbohci - ok 01:02:45.0007 0x1d4c [ 73188F58FB384E75C4063D29413CEE3D, B485463933306036B1D490722CB1674DC85670753D79FA0EF7EBCA7BBAAD9F7C ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 01:02:45.0007 0x1d4c usbprint - ok 01:02:45.0047 0x1d4c [ 9661DA76B4531B2DA272ECCE25A8AF24, FEA93254A21E71A7EB8AD35FCCAD2C1E41F7329EC33B1734F5B41307A34D8637 ] usbscan C:\Windows\system32\drivers\usbscan.sys 01:02:45.0047 0x1d4c usbscan - ok 01:02:45.0087 0x1d4c [ FED648B01349A3C8395A5169DB5FB7D6, DC4D7594C24ADD076927B9347F1B50B91CF03A4ABDB284248D5711D9C19DEB96 ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 01:02:45.0087 0x1d4c USBSTOR - ok 01:02:45.0107 0x1d4c [ DD253AFC3BC6CBA412342DE60C3647F3, 146F8613F1057AC054DC3593E84BC52899DA27EA33B0E72ACFB78C3699ADCDE7 ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 01:02:45.0107 0x1d4c usbuhci - ok 01:02:45.0157 0x1d4c [ 1F775DA4CF1A3A1834207E975A72E9D7, 6D3DE5BD3EF3A76E997E5BAF900C51D25308F5A9682D1F62017F577A24095B90 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys 01:02:45.0177 0x1d4c usbvideo - ok 01:02:45.0207 0x1d4c [ EDBB23CBCF2CDF727D64FF9B51A6070E, 7202484C8E1BFB2AFD64D8C81668F3EDE0E3BF5EB27572877A0A7B337AE5AE42 ] UxSms C:\Windows\System32\uxsms.dll 01:02:45.0207 0x1d4c UxSms - ok 01:02:45.0257 0x1d4c [ E646F34228D63EF5BA94A8E209430D2B, 082DB7A2C377AFF085D777DC1F070965C33E8C4F78F72E0B478551A218F039A8 ] UxTuneUp C:\Windows\System32\uxtuneup.dll 01:02:45.0267 0x1d4c UxTuneUp - ok 01:02:45.0307 0x1d4c [ 2BC45F4CF55B45BDD650828192F132B8, 4ABBC1DE6B17F7FEE9CB0BEEFEB6C88321826B4D52FBDF8B4B885CEA3CFD24F7 ] VaultSvc C:\Windows\system32\lsass.exe 01:02:45.0307 0x1d4c VaultSvc - ok 01:02:45.0327 0x1d4c [ C5C876CCFC083FF3B128F933823E87BD, 6FE0FBB6C3207E09300E0789E2168F76668D87C317FE9F263E733827ADCFBE0D ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys 01:02:45.0327 0x1d4c vdrvroot - ok 01:02:45.0377 0x1d4c [ 8D6B481601D01A456E75C3210F1830BE, A2CEF483F4231367138EEF7E67FD5BE5364FC0780C44CA1368E36CE4AA3D0633 ] vds C:\Windows\System32\vds.exe 01:02:45.0397 0x1d4c vds - ok 01:02:45.0417 0x1d4c [ DA4DA3F5E02943C2DC8C6ED875DE68DD, EDE604536DB78C512D68C92B26DA77C8811AC109D1F0A473673F0A82D15A2838 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 01:02:45.0417 0x1d4c vga - ok 01:02:45.0437 0x1d4c [ 53E92A310193CB3C03BEA963DE7D9CFC, 45898604375B42EB1246C17A22D91C2440F11C746FF6459AD38027C1BC2E3125 ] VgaSave C:\Windows\System32\drivers\vga.sys 01:02:45.0437 0x1d4c VgaSave - ok 01:02:45.0477 0x1d4c [ 2CE2DF28C83AEAF30084E1B1EB253CBB, D1946816A1CB89F825CBEA58F94A4C9D0CE7249355CD3915563F54054EE564BF ] vhdmp C:\Windows\system32\drivers\vhdmp.sys 01:02:45.0477 0x1d4c vhdmp - ok 01:02:45.0517 0x1d4c [ E5689D93FFE4E5D66C0178761240DD54, 6D35CED80681B12AAF63BFA0DA1C386E71D3838839B68A686990AA8031949D27 ] viaide C:\Windows\system32\drivers\viaide.sys 01:02:45.0517 0x1d4c viaide - ok 01:02:45.0547 0x1d4c [ 35E8A18D1C558D5C2FF2FFED2FD396F6, 5516AC03964DD33CF239AB3FB1D41BAB7454DB35FB38C45907614C3DB8F23391 ] vididr C:\Windows\system32\DRIVERS\vididr.sys 01:02:45.0557 0x1d4c vididr - ok 01:02:45.0587 0x1d4c [ 0DCD5C8F2E0B3650C4A29F6569C074FD, 8FB24D79ADE1541C5DD6241A3395EF2E6575A8376111294CD5C87ECA798EDCFD ] vidsflt C:\Windows\system32\DRIVERS\vidsflt.sys 01:02:45.0587 0x1d4c vidsflt - ok 01:02:45.0627 0x1d4c [ D2AAFD421940F640B407AEFAAEBD91B0, 31EF342A60AF04F4108759A71F8FB7B8C8819216CF3D16A95B2BA0E33A8A9161 ] volmgr C:\Windows\system32\drivers\volmgr.sys 01:02:45.0627 0x1d4c volmgr - ok 01:02:45.0657 0x1d4c [ A255814907C89BE58B79EF2F189B843B, 463DB771851352185B6AC323BD93B9084D47291E53C1F7B628B65D6918B2E28F ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 01:02:45.0667 0x1d4c volmgrx - ok 01:02:45.0687 0x1d4c [ 0D08D2F3B3FF84E433346669B5E0F639, 3D6716CEC95B8861A7CC5778E91F310528DC6BEE0E57A3C8757FC675154EBDEC ] volsnap C:\Windows\system32\drivers\volsnap.sys 01:02:45.0697 0x1d4c volsnap - ok 01:02:45.0707 0x1d4c [ 5E2016EA6EBACA03C04FEAC5F330D997, 53106EB877459FE55A459111F7AB0EE320BB3B4C954D3DB6FA1642396001F2AC ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys 01:02:45.0717 0x1d4c vsmraid - ok 01:02:45.0797 0x1d4c [ B60BA0BC31B0CB414593E169F6F21CC2, 47B801E623254CF0202B3591CB5C019CABFB52F123C7D47E29D19B32F1F2B915 ] VSS C:\Windows\system32\vssvc.exe 01:02:45.0847 0x1d4c VSS - ok 01:02:45.0967 0x1d4c [ ACEC3397D7FE8DF37DAD3B175CA2E148, EC917AC9274784E22A7D25B14B0294A7804FD098D8BD6295CFF4F17A2507694C ] vsserv C:\Program Files\Bitdefender\Bitdefender\vsserv.exe 01:02:46.0027 0x1d4c vsserv - ok 01:02:46.0057 0x1d4c [ 36D4720B72B5C5D9CB2B9C29E9DF67A1, 3254523C85C70EBA2DBAC05DB2DBA89EDF8E9195F390F7C21F96458FB6B2E3D7 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys 01:02:46.0057 0x1d4c vwifibus - ok 01:02:46.0107 0x1d4c [ 6A3D66263414FF0D6FA754C646612F3F, 30F6BA594B0D3B94113064015A16D97811CD989DF1715CCE21CEAB9894C1B4FB ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys 01:02:46.0117 0x1d4c vwififlt - ok 01:02:46.0147 0x1d4c [ 6A638FC4BFDDC4D9B186C28C91BD1A01, 5521F1DC515586777EC4837E0AEAA3E613CC178AF1074031C4D0D0C695A93168 ] vwifimp C:\Windows\system32\DRIVERS\vwifimp.sys 01:02:46.0147 0x1d4c vwifimp - ok 01:02:46.0197 0x1d4c [ 1C9D80CC3849B3788048078C26486E1A, 34A89F31E53F6B6C209B286F580CC2257AE6D057E4E20741F241C9C167947962 ] W32Time C:\Windows\system32\w32time.dll 01:02:46.0207 0x1d4c W32Time - ok 01:02:46.0237 0x1d4c [ 4E9440F4F152A7B944CB1663D3935A3E, 8FE04EBD3BC612EE943A21A3E56F37E5C9B578CDACA6044048181DAD81816D53 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys 01:02:46.0247 0x1d4c WacomPen - ok 01:02:46.0267 0x1d4c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys 01:02:46.0277 0x1d4c WANARP - ok 01:02:46.0287 0x1d4c [ 356AFD78A6ED4457169241AC3965230C, CE4D1EE3525C10AC658B20776C3E444DE44874C837713DC5311386EDFCB18399 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 01:02:46.0287 0x1d4c Wanarpv6 - ok 01:02:46.0357 0x1d4c [ 78F4E7F5C56CB9716238EB57DA4B6A75, 46A4E78CE5F2A4B26F4E9C3FF04A99D9B727A82AC2E390A82A1611C3F6E0C9AF ] wbengine C:\Windows\system32\wbengine.exe 01:02:46.0417 0x1d4c wbengine - ok 01:02:46.0457 0x1d4c [ 3AA101E8EDAB2DB4131333F4325C76A3, 4F7BD3DA5E58B18BFF106CFF7B45E75FD13EE556D433C695BA23EC80827E49DE ] WbioSrvc C:\Windows\System32\wbiosrvc.dll 01:02:46.0487 0x1d4c WbioSrvc - ok 01:02:46.0537 0x1d4c [ 7368A2AFD46E5A4481D1DE9D14848EDD, 8039C478FC2D9F095F5883A4FA47F9E6EDF57CC88A4AA74F07C88445F90DED57 ] wcncsvc C:\Windows\System32\wcncsvc.dll 01:02:46.0587 0x1d4c wcncsvc - ok 01:02:46.0607 0x1d4c [ 20F7441334B18CEE52027661DF4A6129, 7B8E0247234B740FED2BE9B833E9CE8DD7453340123AB43F6B495A7E6A27B0DD ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 01:02:46.0607 0x1d4c WcsPlugInService - ok 01:02:46.0617 0x1d4c [ 72889E16FF12BA0F235467D6091B17DC, F2FD0BBD075E33608D93F350D216F97442AB89ABD540513C2D568C78096E12A8 ] Wd C:\Windows\system32\DRIVERS\wd.sys 01:02:46.0617 0x1d4c Wd - ok 01:02:46.0717 0x1d4c [ 3A164E4C3F453230B6F6C3BD319D83C1, 11A5A5646A113F2BA2A9E355E579F3E516A5860E2E0AC479491663FCEF226CFF ] WDBackup C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe 01:02:46.0757 0x1d4c WDBackup - ok 01:02:46.0789 0x1d4c [ D0335A55E5C3F812548E18300C2ACB62, 7EF7C3A21E97197E1A6D2956D0F5A7C23F2D590C9709708394426031634990A5 ] WDC_SAM C:\Windows\system32\DRIVERS\wdcsam64.sys 01:02:46.0791 0x1d4c WDC_SAM - ok 01:02:46.0819 0x1d4c [ AFA293DAE84019BB65E17F926E9F5185, EE056291483376D7944CD2AB4EDE34B1031915EAB1C168B9777A4C8E840033AD ] WDDriveService C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe 01:02:46.0819 0x1d4c WDDriveService - ok 01:02:46.0869 0x1d4c [ E2C933EDBC389386EBE6D2BA953F43D8, AF1DEADD5F1267CCEBD226E8EEB971D1946EA6A5A9645A36F5D111F758AF2F07 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 01:02:46.0899 0x1d4c Wdf01000 - ok 01:02:46.0929 0x1d4c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiServiceHost C:\Windows\system32\wdi.dll 01:02:46.0939 0x1d4c WdiServiceHost - ok 01:02:46.0949 0x1d4c [ C6F7473B55510F0B93961DA03D8E3B38, 4BAB9274DED8F7AC4A52B8739F501323FFFA0367CAA24BFAFDB5523812E0CE39 ] WdiSystemHost C:\Windows\system32\wdi.dll 01:02:46.0949 0x1d4c WdiSystemHost - ok 01:02:46.0989 0x1d4c [ 4E89FC53493704BF835F0300DC201C34, FB3080725E144D93512DED81047D21C0582BC3412250EFF37E039108D7351F53 ] WebClient C:\Windows\System32\webclnt.dll 01:02:46.0999 0x1d4c WebClient - ok 01:02:47.0029 0x1d4c [ D5BA7D43FA2EF656BF7E98A188391E40, 56CF132B7C43A0F9C7C4D070730315FE7AFD2E87E94014DFC3D7107BB52B9C64 ] Wecsvc C:\Windows\system32\wecsvc.dll 01:02:47.0039 0x1d4c Wecsvc - ok 01:02:47.0049 0x1d4c [ 7E591867422DC788B9E5BD337A669A08, 484E6BCCDF7ADCE9A1AACAD1BC7C7D7694B9E40FA90D94B14D80C607784F6C75 ] wercplsupport C:\Windows\System32\wercplsupport.dll 01:02:47.0049 0x1d4c wercplsupport - ok 01:02:47.0069 0x1d4c [ 6D137963730144698CBD10F202E9F251, A9F522A125158D94F540544CCD4DBF47B9DCE2EA878C33675AFE40F80E8F4979 ] WerSvc C:\Windows\System32\WerSvc.dll 01:02:47.0079 0x1d4c WerSvc - ok 01:02:47.0089 0x1d4c [ 611B23304BF067451A9FDEE01FBDD725, 0AF2734B978165FC6FD22B64862132CCE32528A21C698A49D176129446E099C8 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys 01:02:47.0089 0x1d4c WfpLwf - ok 01:02:47.0119 0x1d4c [ 05ECAEC3E4529A7153B3136CEB49F0EC, 9995CB2CEC70A633EA33CBB0DEAD2BB28CB67132B41E9444BDAB9E75744C9A50 ] WIMMount C:\Windows\system32\drivers\wimmount.sys 01:02:47.0119 0x1d4c WIMMount - ok 01:02:47.0139 0x1d4c WinDefend - ok 01:02:47.0169 0x1d4c WinHttpAutoProxySvc - ok 01:02:47.0219 0x1d4c [ 136760C1E9697BAF4ECDEAE5590A0806, 12E80D0923D794F4C520FEA7CB98EF581231B996FB1876EB20995E6E457EFF56 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 01:02:47.0229 0x1d4c Winmgmt - ok 01:02:47.0369 0x1d4c [ 3BB6B401A780BF434C8F58137DE10BF7, 1A377C39B78B92A1A1FED699EE5E5ED0271A6FFAC143F1D29FC1FDF4D726A522 ] WinRM C:\Windows\system32\WsmSvc.dll 01:02:47.0479 0x1d4c WinRM - ok 01:02:47.0529 0x1d4c [ FE88B288356E7B47B74B13372ADD906D, A16B166F6BB32EF9D2A142F27B9EC54CBC7B3AC915799783CF4C40E525BC9E03 ] WinUsb C:\Windows\system32\DRIVERS\WinUsb.sys 01:02:47.0529 0x1d4c WinUsb - ok 01:02:47.0589 0x1d4c [ 4FADA86E62F18A1B2F42BA18AE24E6AA, CE1683386886BF34862681A46199EA7E7FB4232A186047DA7FBD8EC240AF6726 ] Wlansvc C:\Windows\System32\wlansvc.dll 01:02:47.0619 0x1d4c Wlansvc - ok 01:02:47.0649 0x1d4c [ F6FF8944478594D0E414D3F048F0D778, 6F75E0AE6127B33A92A88E59D4B048FD4C15F997807BE7BF0EFE76F95235B1D9 ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys 01:02:47.0649 0x1d4c WmiAcpi - ok 01:02:47.0699 0x1d4c [ 4DF841632B62A7CF19A79A05046A8AB1, D80F28FD7FEB95DB83976EAFECB2E9AE1423DA4D34EC5D820FC39A33444B82DA ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 01:02:47.0699 0x1d4c wmiApSrv - ok 01:02:47.0709 0x1d4c WMPNetworkSvc - ok 01:02:47.0729 0x1d4c [ 96C6E7100D724C69FCF9E7BF590D1DCA, 2E63C9B0893B4FC03B7A71BAEA6202D3D3DB1B52F3643467829B5A573FD7655B ] WPCSvc C:\Windows\System32\wpcsvc.dll 01:02:47.0729 0x1d4c WPCSvc - ok 01:02:47.0759 0x1d4c [ 93221146D4EBBF314C29B23CD6CC391D, C0750858A65BF51E210CD244C825C121D67E025CD2D2455139991AAC289A90FE ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll |
30.12.2015, 01:05 | #17 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter ... und Teil 2
__________________Code:
ATTFilter 01:02:47.0759 0x1d4c WPDBusEnum - ok 01:02:47.0769 0x1d4c WPRO_40_1340 - ok 01:02:47.0799 0x1d4c [ 6BCC1D7D2FD2453957C5479A32364E52, E48554D31FBDCF8F985C1C72524CAA9106F5B7CC2B79064F8F5E2562D517F090 ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 01:02:47.0799 0x1d4c ws2ifsl - ok 01:02:47.0829 0x1d4c [ E8B1FE6669397D1772D8196DF0E57A9E, 39FE0819360719F756BD31A1884A0508A1E2371ACC723E25E005CBEC0A7B02FA ] wscsvc C:\Windows\System32\wscsvc.dll 01:02:47.0829 0x1d4c wscsvc - ok 01:02:47.0849 0x1d4c WSearch - ok 01:02:47.0949 0x1d4c [ 361845875ED8ED13086E7F37265C45DA, A0931DC1E35712036E93BBC3600530C0DA12E94E0D898787C818C526DFF240C2 ] wuauserv C:\Windows\system32\wuaueng.dll 01:02:48.0059 0x1d4c wuauserv - ok 01:02:48.0089 0x1d4c [ AB886378EEB55C6C75B4F2D14B6C869F, D6C4602EB8F291DADEDF3CD211013D4AC752DDE7E799C2D8D74AA4F5477CAED6 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 01:02:48.0089 0x1d4c WudfPf - ok 01:02:48.0119 0x1d4c [ DDA4CAF29D8C0A297F886BFE561E6659, 94E5DD649B5D86FA1A7C7D30FCF9644D0EE048D312E626111458ADF66BFBE978 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 01:02:48.0119 0x1d4c WUDFRd - ok 01:02:48.0159 0x1d4c [ B20F051B03A966392364C83F009F7D17, 88ECEB55AE91F58F592B96EBC10B572747D5A2F9B7629E8F371761E4F7408A65 ] wudfsvc C:\Windows\System32\WUDFSvc.dll 01:02:48.0159 0x1d4c wudfsvc - ok 01:02:48.0199 0x1d4c [ 04F82965C09CBDF646B487E145060301, 2CD8533EDBE24C3E42EB7550E20F8A2EB9E5E345B165DEF543163A6BC1FDD18B ] WwanSvc C:\Windows\System32\wwansvc.dll 01:02:48.0209 0x1d4c WwanSvc - ok 01:02:48.0259 0x1d4c [ B3EEACF62445E24FBB2CD4B0FB4DB026, 2E5B6220094C47754233EDA59E6514CE47AC6C6879F367C72B2C02330EABE8E0 ] yukonw7 C:\Windows\system32\DRIVERS\yk62x64.sys 01:02:48.0269 0x1d4c yukonw7 - ok 01:02:48.0319 0x1d4c ================ Scan global =============================== 01:02:48.0359 0x1d4c [ 168EA9CD9BD6056BB6F60B57D5304BBE, 5A2F98754F042A7D80E7483842967EB362F01D57CE9720B24C7EDAA047F24C6F ] C:\Windows\system32\basesrv.dll 01:02:48.0409 0x1d4c [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll 01:02:48.0429 0x1d4c [ FF41063E45C6238CAF48CBE6D0D6FC4B, 9B755EA23E7D2554E3AC3ADFFC4AFF7EB4F4A0F5CD3E6F2300BC98B21474CBC6 ] C:\Windows\system32\winsrv.dll 01:02:48.0449 0x1d4c [ D6160F9D869BA3AF0B787F971DB56368, 0033E6212DD8683E4EE611B290931FDB227B4795F0B17C309DC686C696790529 ] C:\Windows\system32\sxssrv.dll 01:02:48.0479 0x1d4c [ 71C85477DF9347FE8E7BC55768473FCA, A86D6A6D1F5A0EFCD649792A06F3AE9B37158D48493D2ECA7F52DCC1CB9B6536 ] C:\Windows\system32\services.exe 01:02:48.0499 0x1d4c [ Global ] - ok 01:02:48.0499 0x1d4c ================ Scan MBR ================================== 01:02:48.0499 0x1d4c [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2 01:02:48.0509 0x1d4c \Device\Harddisk2\DR2 - ok 01:02:48.0529 0x1d4c [ 66142FDC27A57FAA177560576925A0BF ] \Device\Harddisk0\DR0 01:02:48.0990 0x1d4c \Device\Harddisk0\DR0 - ok 01:02:48.0990 0x1d4c [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1 01:02:49.0000 0x1d4c \Device\Harddisk1\DR1 - ok 01:02:49.0000 0x1d4c [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk2\DR2 01:02:49.0010 0x1d4c \Device\Harddisk2\DR2 - ok 01:02:49.0010 0x1d4c [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk3\DR3 01:02:49.0020 0x1d4c \Device\Harddisk3\DR3 - ok 01:02:49.0020 0x1d4c [ 5FB38429D5D77768867C76DCBDB35194 ] \Device\Harddisk4\DR4 01:02:49.0030 0x1d4c \Device\Harddisk4\DR4 - ok 01:02:49.0030 0x1d4c [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk5\DR5 01:02:49.0040 0x1d4c \Device\Harddisk5\DR5 - ok 01:02:49.0040 0x1d4c ================ Scan VBR ================================== 01:02:49.0050 0x1d4c [ 5F47E7C9653287EFF6F2E1661769AFBB ] \Device\Harddisk2\DR2\Partition1 01:02:49.0050 0x1d4c \Device\Harddisk2\DR2\Partition1 - ok 01:02:49.0050 0x1d4c [ 1C644B7BB785F243AE79EC9B2D83F5D4 ] \Device\Harddisk0\DR0\Partition1 01:02:49.0050 0x1d4c \Device\Harddisk0\DR0\Partition1 - ok 01:02:49.0050 0x1d4c [ 0A787A451001138B0991BB0437556A4B ] \Device\Harddisk0\DR0\Partition2 01:02:49.0060 0x1d4c \Device\Harddisk0\DR0\Partition2 - ok 01:02:49.0060 0x1d4c [ 18B59861CD3B0E0AD79B5F7BF0F503B1 ] \Device\Harddisk0\DR0\Partition3 01:02:49.0060 0x1d4c \Device\Harddisk0\DR0\Partition3 - ok 01:02:49.0080 0x1d4c [ 1FF60EA2AB54673B21D0E974BB23B0A0 ] \Device\Harddisk0\DR0\Partition4 01:02:49.0080 0x1d4c \Device\Harddisk0\DR0\Partition4 - ok 01:02:49.0100 0x1d4c [ 6C68CE463391F7B22928CB66B03756AE ] \Device\Harddisk0\DR0\Partition5 01:02:49.0100 0x1d4c \Device\Harddisk0\DR0\Partition5 - ok 01:02:49.0110 0x1d4c [ 951648D4640200A66E9BAB1046360D0C ] \Device\Harddisk0\DR0\Partition6 01:02:49.0110 0x1d4c \Device\Harddisk0\DR0\Partition6 - ok 01:02:49.0120 0x1d4c [ 06615A31F60B472827C1F9C6F46204AC ] \Device\Harddisk0\DR0\Partition7 01:02:49.0120 0x1d4c \Device\Harddisk0\DR0\Partition7 - ok 01:02:49.0120 0x1d4c [ 5F47E7C9653287EFF6F2E1661769AFBB ] \Device\Harddisk2\DR2\Partition1 01:02:49.0120 0x1d4c \Device\Harddisk2\DR2\Partition1 - ok 01:02:49.0130 0x1d4c [ F60067E2D8668D450B6ADF2F47971D09 ] \Device\Harddisk3\DR3\Partition1 01:02:49.0130 0x1d4c \Device\Harddisk3\DR3\Partition1 - ok 01:02:49.0130 0x1d4c [ 203B5D5337E6F10D2E5CE8F5BB651B61 ] \Device\Harddisk4\DR4\Partition1 01:02:49.0130 0x1d4c \Device\Harddisk4\DR4\Partition1 - ok 01:02:49.0140 0x1d4c [ 5DB2964D79F1D8BF196A1BFF5708EE05 ] \Device\Harddisk5\DR5\Partition1 01:02:49.0530 0x1d4c \Device\Harddisk5\DR5\Partition1 - ok 01:02:49.0530 0x1d4c ================ Scan generic autorun ====================== 01:02:49.0712 0x1d4c [ 4076E418CD3EB0E09FFBCD828C35CE26, C39896CC2EF80FE0937A96585AE3A981A93A4139EA21609D2A94076C331ED3DC ] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 01:02:49.0832 0x1d4c SynTPEnh - ok 01:02:49.0862 0x1d4c [ 6AA5B04FE91031F7D68C2315B123392F, 3424B089D42B99DC2F14E0262F3FEB37B9E5471BA163AC5A42884FC2AB1AFFCD ] C:\Windows\KHALMNPR.EXE 01:02:49.0862 0x1d4c Kernel and Hardware Abstraction Layer - ok 01:02:49.0932 0x1d4c [ D5F1ADEA6513A230E27A3ADAD2A3B160, 947AA3C8C2AB8C07832BE1BE337ADD4B3105785FDF5844537D658554EF265A73 ] C:\Program Files\Bitdefender\Bitdefender\bdagent.exe 01:02:49.0992 0x1d4c Bdagent - ok 01:02:50.0092 0x1d4c [ DD79A6B15C2F28DE98DF4852AAF6B13B, 0F7E9023E0BA4B40E2DE9A9FA34E85FEAF72B93049AAB3E1D73AD046BB113E05 ] C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe 01:02:50.0102 0x1d4c NCPluginUpdater - ok 01:02:50.0192 0x1d4c [ B2D3666199175389D771DD94F5C98594, 4238DC200F718DC425F2CF4C2716289845EF207ADFDB1CAC154271FFF8528D9B ] C:\Program Files (x86)\AVG\Framework\Common\avguix.exe 01:02:50.0232 0x1d4c AvgUi - ok 01:02:50.0302 0x1d4c [ 5FF9A79628D4A0BA3DCD6CF5EC8FD3BF, 9818AAF8F1F1C0CBD8B89352DBAF1ADBEA1F19928543517EB6473C112E95A38D ] C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe 01:02:50.0342 0x1d4c AcronisTibMounterMonitor - ok 01:02:50.0634 0x1d4c [ B8434467D90B65E5A2D697C7FF511802, A0F5D234A1CA1384160FB63AF40B169B4649DF7D77534DE1B16E1063EC922A87 ] C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe 01:02:50.0764 0x1d4c TrueImageMonitor.exe - ok 01:02:51.0114 0x1d4c Dropbox - ok 01:02:51.0414 0x1d4c [ F1021BD18F1F726DAD6E00398FD1CCB6, A76FC4DFB1E9BFE0B920C78E36C1E77D4AA2224D37A26B26AD843D60949D2214 ] C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe 01:02:51.0514 0x1d4c KeePass 2 PreLoad - ok 01:02:51.0664 0x1d4c [ 8D8D9C8486CB29D01000BFFFE132780A, E1DD85E8CF029FA2F294A2E162838C0D5F11795338C4DE585FD3A0E58894F7C6 ] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe 01:02:51.0744 0x1d4c Wondershare Helper Compact.exe - ok 01:02:52.0094 0x1d4c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 01:02:52.0204 0x1d4c Sidebar - ok 01:02:52.0224 0x1d4c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 01:02:52.0224 0x1d4c mctadmin - ok 01:02:52.0274 0x1d4c [ DCCA4B04AF87E52EF9EAA2190E06CBAC, 8858CFD159BB32AE9FCCA1A79EA83C876D481A286E914071D48F42FCA5B343D8 ] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe 01:02:52.0294 0x1d4c Sidebar - ok 01:02:52.0294 0x1d4c [ 0FA760BF380B08D0B67B5507CD8B32AA, 0F73A7F64C4FDAB98CD3A865CC54B3A7195761530FCB115B725CC5A9FB738739 ] C:\Windows\System32\mctadmin.exe 01:02:52.0304 0x1d4c mctadmin - ok 01:02:52.0334 0x1d4c [ 0DFC21F95480B688E83C715A6C668095, 43D5B04031F991B2866B369CFA83079AC43DF362D1524541F39C648D1A516D07 ] C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe 01:02:52.0364 0x1d4c Bitdefender-Geldbörse-Agent - ok 01:02:52.0414 0x1d4c [ DD5A8388F7BC7052EED93207A8B3A0B7, E3EEC0B262D2C0063C694118A634A2F09C019D7A024A18C8BE83AF60BE45ECDC ] C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe 01:02:52.0454 0x1d4c Bitdefender-Geldbörse - ok 01:02:52.0504 0x1d4c [ DB1919F34AB9CD5F43B0ED463D7E8D28, B7FC47EACF3B0B352AC7552743A43CD1DF147D8E1F6D0BF30D300000E12859A6 ] C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe 01:02:52.0534 0x1d4c Bitdefender-Geldbörse-Anwendungs-Agent - ok 01:02:52.0704 0x1d4c [ 7619D9ABB017DEBB29D0793A9C2B64A8, 744555E842A71FA6157D1A1DD90ED67F13D6AED4259C23DA0540955FCEF71347 ] C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe 01:02:52.0844 0x1d4c DAEMON Tools Lite - ok 01:02:53.0514 0x1d4c [ 40335C8877B6B84842AF03A40E1BB206, 33433ED8961B1AEEBD30F8DD53A541C711C403D019F1074406FF9C9D1E9F4113 ] C:\Program Files\CCleaner\CCleaner64.exe 01:02:53.0914 0x1d4c CCleaner Monitoring - ok 01:02:53.0934 0x1d4c Waiting for KSN requests completion. In queue: 135 01:02:54.0934 0x1d4c Waiting for KSN requests completion. In queue: 135 01:02:55.0934 0x1d4c Waiting for KSN requests completion. In queue: 135 01:02:56.0354 0x0b28 Object required for P2P: [ 4645910BE6CB805DB15CC49D8B6BAA39 ] TuneUp.UtilitiesSvc 01:02:56.0936 0x1d4c Waiting for KSN requests completion. In queue: 100 01:02:57.0938 0x1d4c Waiting for KSN requests completion. In queue: 100 01:02:58.0878 0x0b28 Object send P2P result: true 01:02:59.0000 0x1d4c AV detected via SS2: Bitdefender Antivirus, C:\Program Files\Bitdefender\Bitdefender\wscfix.exe ( 17.30.0.1307 ), 0x41000 ( enabled : updated ) 01:02:59.0050 0x1d4c Win FW state via NFP2: enabled ( trusted ) 01:03:01.0504 0x1d4c ============================================================ 01:03:01.0504 0x1d4c Scan finished 01:03:01.0504 0x1d4c ============================================================ 01:03:01.0524 0x1b18 Detected object count: 0 01:03:01.0524 0x1b18 Actual detected object count: 0 |
30.12.2015, 01:23 | #18 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Schritt 1
__________________Lade Dir bitte von hier Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
Schritt 2 Downloade Dir bitte AdwCleaner auf deinen Desktop.
Schritt 3 Downloade Dir bitte Malwarebytes Anti-Malware
Schritt 4 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen. Bitte poste in deiner nächsten Antwort also:
__________________ |
30.12.2015, 20:04 | #19 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Hallo Rafael, nur kurz für dich zur Info. Da ich heute arbeiten muss kann ich deine vorgegebenen Schritte erst heute abend erledigen. Gruß Ron Ergebnis vom Lauf "AdwCleaner [C1]" Code:
ATTFilter # AdwCleaner v5.027 - Bericht erstellt am 30/12/2015 um 18:58:01 # Aktualisiert am 30/12/2015 von Xplode # Datenbank : 2015-12-30.1 [Server] # Betriebssystem : Windows 7 Home Premium Service Pack 1 (x64) # Benutzername : Home - NOTEBOOK-RS # Gestartet von : C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 6\adwcleaner_5.027.exe # Option : Löschen # Unterstützung : hxxp://toolslib.net/forum ***** [ Dienste ] ***** [-] Dienst Gelöscht : sp_rsdrv2 [-] Dienst Gelöscht : swdumon ***** [ Ordner ] ***** [-] Ordner Gelöscht : C:\Program Files (x86)\Conduit [-] Ordner Gelöscht : C:\Program Files (x86)\ConduitEngine [-] Ordner Gelöscht : C:\Program Files (x86)\Mobogenie [-] Ordner Gelöscht : C:\Program Files (x86)\vShare.tv plugin [-] Ordner Gelöscht : C:\Program Files (x86)\DriverToolkit [-] Ordner Gelöscht : C:\Program Files (x86)\Applian Technologies [-] Ordner Gelöscht : C:\Program Files (x86)\myfree codec [-] Ordner Gelöscht : C:\Program Files (x86)\Common Files\Tobit [-] Ordner Gelöscht : C:\ProgramData\Trymedia [-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applian Technologies [-] Ordner Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec [-] Ordner Gelöscht : C:\Users\Home\AppData\Local\Conduit [-] Ordner Gelöscht : C:\Users\Home\AppData\Local\Mobogenie [-] Ordner Gelöscht : C:\Users\Home\AppData\Local\NativeMessaging [-] Ordner Gelöscht : C:\Users\Home\AppData\Local\DriverToolkit [-] Ordner Gelöscht : C:\Users\Home\AppData\Local\StormFall [-] Ordner Gelöscht : C:\Users\Home\AppData\Local\slimware utilities inc [-] Ordner Gelöscht : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj [-] Ordner Gelöscht : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\Conduit [-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\ConduitEngine [-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\facemoods.com [-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\searchquband [-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\Searchqutoolbar [-] Ordner Gelöscht : C:\Users\Home\AppData\LocalLow\Vuze_Remote [-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\DesktopIconForAmazon [-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\GrabPro [-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\Mysearchdial [-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\Tobit [-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\ProgSense [-] Ordner Gelöscht : C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Smartbar [-] Ordner Gelöscht : C:\Users\Home\Documents\Mobogenie [-] Ordner Gelöscht : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar ***** [ Dateien ] ***** [-] Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\Plugins\npvsharetvplg.dll [-] Datei Gelöscht : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eBay.lnk [-] Datei Gelöscht : C:\Users\Home\daemonprocess.txt [-] Datei Gelöscht : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_ojpijjmpahflnipadmlpgbjmagmjchkk_0 [-] Datei Gelöscht : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_elicpjhcidhpjomhibiffojpinpmmpil_0.localstorage [-] Datei Gelöscht : C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\elicpjhcidhpjomhibiffojpinpmmpil [-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickStores.url [-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickStores.url [-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\QuickStores.url [-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\searchplugins\Binkiland.xml [-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\searchplugins\Mysearchdial.xml [-] Datei Gelöscht : C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\user.js [-] Datei Gelöscht : C:\Windows\SysNative\drivers\swdumon.sys [-] Datei Gelöscht : C:\Windows\SysWOW64\conduitEngine.tmp ***** [ DLLs ] ***** ***** [ Verknüpfungen ] ***** ***** [ Aufgabenplanung ] ***** ***** [ Registrierungsdatenbank ] ***** [-] Schlüssel Gelöscht : HKCU\Software\Classes\pokki [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BabylonHelper.EXE [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\BrowserConnection.dll [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\DNSBHO.dll [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BrowserConnection.Loader [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1 [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Conduit.Engine [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\DnsBHO.BHO [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1 [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\MyNewsBarLauncher.IE5BarLauncher [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Prod.cap [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IEhelperActiveX.IEhelperLabel [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\IEhelperActiveX.IEhelperLabel.1 [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{6536801B-F50C-449B-9476-093DFD3789E3} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{A5BBB804-8009-4246-BED3-2D3335981EF6} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{00B11DA2-75ED-4364-ABA5-9A95B1F5E946} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{76C45B18-A29E-43EA-AAF8-AF55C2E1AE17} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{7CD74AFF-3433-4E34-92E2-D98DFDB30754} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{8F97BFF8-488B-4107-BCEE-B161AB4E4183} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{96EF404C-24C7-43D0-9096-4CCC8BB7CCAC} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{97720195-206A-42AE-8E65-260B9BA5589F} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{97D69524-BB57-4185-9C7F-5F05593B771A} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{986F7A5A-9676-47E1-8642-F41F8C3FCF82} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9AFB8248-617F-460D-9366-D71CDEDA3179} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A1B48071-416D-474E-A13B-BE5456E7FC31} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B18788A4-92BD-440E-A4D1-380C36531119} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{D40753C7-8A59-4C1F-BE88-C300F4624D5B} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{3CCC052E-BDEE-408A-BEA7-90914EF2964B} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{61F47056-E400-43D3-AF1E-AB7DFFD4C4AD} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{E2B98EEA-EE55-4E9B-A8C1-6E5288DF785A} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7854F00C-DC77-477E-A10E-603F48442D3B} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A1B48071-416D-474E-A13B-BE5456E7FC31} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{78F3A323-798E-4AEA-9A57-88F4B05FD5DD} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F97BFF8-488B-4107-BCEE-B161AB4E4183} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1B48071-416D-474E-A13B-BE5456E7FC31} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4250488A-CB24-0893-C066-B1AEA57BCFF2} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{99079A25-328F-4BD4-BE04-00955ACAA0A7} [-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{99079A25-328F-4BD4-BE04-00955ACAA0A7}] [-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{BA14329E-9550-4989-B3F2-9732E92D17CC}] [-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{7AC3E13B-3BCA-4158-B330-F66DBB03C1B5}] [-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BA14329E-9550-4989-B3F2-9732E92D17CC}] [-] Wert Gelöscht : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}] [-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BA14329E-9550-4989-B3F2-9732E92D17CC}] [-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{9D717F81-9148-4F12-8568-69135F087DB0} [-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\CLSID\{FEFD3AF5-A346-4451-AA23-A3AD54915515} [-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{0BF91075-F457-4A8B-99EF-140B52D2F22A} [-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534} [-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{37425600-CB21-49A0-8659-476FBAB0F8E8} [-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE} [-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9D717F81-9148-4F12-8568-69135F087DB0} [-] Schlüssel Gelöscht : HKCU\Software\Conduit [-] Schlüssel Gelöscht : HKCU\Software\DataMngr [-] Schlüssel Gelöscht : HKCU\Software\InstallCore [-] Schlüssel Gelöscht : HKCU\Software\Myfree Codec [-] Schlüssel Gelöscht : HKCU\Software\mysearchdial.com [-] Schlüssel Gelöscht : HKCU\Software\OCS [-] Schlüssel Gelöscht : HKCU\Software\Softonic [-] Schlüssel Gelöscht : HKCU\Software\StartSearch [-] Schlüssel Gelöscht : HKCU\Software\vShare.tv [-] Schlüssel Gelöscht : HKCU\Software\YahooPartnerToolbar [-] Schlüssel Gelöscht : HKCU\Software\ProgSense [-] Schlüssel Gelöscht : HKCU\Software\Binkiland Browser [-] Schlüssel Gelöscht : HKCU\Software\DriverToolkit [-] Schlüssel Gelöscht : HKCU\Software\SlimWare Utilities Inc [-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Toolbar [-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Conduit [-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\conduitEngine [-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\searchqutoolbar [-] Schlüssel Gelöscht : HKCU\Software\AppDataLow\Software\Show-Password [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Conduit [-] Schlüssel Gelöscht : HKLM\SOFTWARE\conduitEngine [-] Schlüssel Gelöscht : HKLM\SOFTWARE\dt soft\daemon tools toolbar [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Myfree Codec [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Trymedia Systems [-] Schlüssel Gelöscht : HKLM\SOFTWARE\JetSwap [-] Schlüssel Gelöscht : HKLM\SOFTWARE\SlimWare Utilities Inc [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec [-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DataMngr [-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar [-] Daten Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls [Tabs] [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{77AA745B-F4F8-45DA-9B14-61D2D95054C8} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{92CCF319-2686-454F-8CE4-9A8CD6E19B34} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} [-] Daten Wiederhergestellt : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope] [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D50E2419-E5E1-4F12-80CA-4F531FC04860} [-] Schlüssel Gelöscht : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EC9DA127-81F1-4B24-B912-DC42D05B1C9B} [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} [-] Daten Wiederhergestellt : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes [DefaultScope] [-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D50E2419-E5E1-4F12-80CA-4F531FC04860} ***** [ Internetbrowser ] ***** [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.ENABALE_HISTORY", "{\"dataType\":\"string\",\"data\":\"true\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.ENABLE_RETURN_WEB_SEARCH_ON_THE_PAGE", "{\"dataType\":\"string\",\"data\":\"true\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.FirstTime", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.FirstTimeFF3", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.LoginRevertSettingsEnabled", false); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.RevertSettingsEnabled", true); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.UserID", "UN22834245930166208"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.addressBarTakeOverEnabledInHidden", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.autoDisableScopes", -1); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.cbcountry_001.enc", "REU="); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.cbfirsttime.enc", "TW9uIE5vdiAxMiAyMDEyIDAwOjA1OjQwIEdNVCswMTAw"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.defaultSearch", "false"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.embeddedsData", "[{\"appId\":\"129079840422026594\",\"apiPermissions\":{\"crossDomainAjax\":true,\"getMainFrameTitle\":true,\"getMainFrameUrl\":true,\"getSearchTerm\":true,\"insta[...] [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.enableAlerts", "always"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.enableSearchFromAddressBar", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.firstTimeDialogOpened", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.fixPageNotFoundError", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.fixPageNotFoundErrorInHidden", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.fixUrls", true); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.installId", "conduitinstallerstub.exe"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.installType", "conduitnsisintegration"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isCheckedStartAsHidden", true); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isEnableAllDialogs", "{\"dataType\":\"string\",\"data\":\"true\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isFirstTimeToolbarLoading", "false"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isNewTabEnabled", false); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isPerformedSmartBarTransition", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.isToolbarShrinked", "{\"dataType\":\"string\",\"data\":\"false\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.migrateAppsAndComponents", true); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.navigationAliasesJson", "{\"EB_MAIN_FRAME_URL\":\"hxxp%3A%2F%2Fwww.piriform.com%2Frecuva%2Frelease-notes%2F1.43.623%2Fb2\",\"EB_MAIN_FRAME_TITLE\":\"Recuva%20-%20Release%20Notes\"[...] [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.openThankYouPage", "false"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.openUninstallPage", "false"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.price-gong.bornDate", "{\"dataType\":\"string\",\"data\":\"{\\\"Response\\\":\\\"11\\\\/12\\\\/2012 02\\\"}\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.price-gong.isManagedApp", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.revertSettingsEnabled", "false"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.search.searchAppId", "129079840422026594"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.search.searchCount", "0"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.searchInNewTabEnabled", "false"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.searchInNewTabEnabledInHidden", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.selectToSearchBoxEnabled", "{\"dataType\":\"string\",\"data\":\"true\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_login_isFirstLoginInvoked", "{\"dataType\":\"boolean\",\"data\":\"true\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_login_loginCount", "{\"dataType\":\"number\",\"data\":\"2\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeCTID", "{\"dataType\":\"string\",\"data\":\"CT2504091\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeDownloadUrl", "{\"dataType\":\"string\",\"data\":\"hxxp://VuzeRemote.OurToolbar.com//xpi\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_toolbarGrouping_activeToolbarName", "{\"dataType\":\"string\",\"data\":\"Vuze Remote\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_service_toolbarGrouping_invoked", "{\"dataType\":\"string\",\"data\":\"true\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_appTrackingFirstTime_lastUpdate", "1352675135212"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_appsMetadata_lastUpdate", "1352675135181"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_gottenAppsContextMenu_lastUpdate", "1352675136450"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_login_10.13.40.15_lastUpdate", "1352675135468"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_otherAppsContextMenu_lastUpdate", "1352675136337"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_searchAPI_lastUpdate", "1352675133749"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_serviceMap_lastUpdate", "1352675132532"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_toolbarContextMenu_lastUpdate", "1352675136408"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_toolbarSettings_lastUpdate", "1352675134641"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_translation_lastUpdate", "1352675135165"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.serviceLayer_services_userApps_lastUpdate", "1352675136132"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.settingsINI", true); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.shouldFirstTimeDialog", "false"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.smartbar.CTID", "CT2504091"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.smartbar.Uninstall", "1"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.smartbar.toolbarName", "Vuze Remote "); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.startPage", "false"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.toolbarBornServerTime", "12-11-2012"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.toolbarCurrentServerTime", "12-11-2012"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.toolbarDisabled", "true"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091.url_history0001.enc", "aHR0cDovL3d3dy5jaGlwLmRlL2Rvd25sb2Fkcy9SZWN1dmFfMjM5MzUyNjEuaHRtbDo6OmNsaWNraGFuZGxlcjo6OjEzNTI2NzUzMzE1NDQsLCxodHRwOi8vd3d3LmNoaXAuZGUvZG93bmxvYWRzL1JlY3V2[...] [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("CT2504091_Firefox.csv", "[{\"from\":\"Abs Layer\",\"action\":\"loading toolbar\",\"time\":1352675401934,\"isWithState\":\"\",\"timeFromStart\":0,\"timeFromPrev\":0}]"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("browser.search.order.1", "Mysearchdial"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.fvd_single.surfcanyon.ramp.start_time", "1394224942457"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.irmysearch.aflt", "irmsd0202ch"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.irmysearch.cd", "2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.irmysearch.cr", "1960053735"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.irmysearch.instlRef", ""); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.AL", 2); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.aflt", "irmsd0202ch"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.cntry", "DE"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.cr", "1960053735"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.dfltLng", ""); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.dfltSrch", true); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.dnsErr", true); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.dpkLst", "3654782829,1334533236,1121012847,231756876,1895130307,603719297,4288797614,3754950497,426401714,3046281807,752626116,1657571787,3224935090,2597085128,18285[...] [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.excTlbr", false); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.hdrMd5", "C3E3EFF608746A1D94A8706995B5A5E4"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.hmpg", true); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1Czu[...] [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.id", "00269E3074F2DDAF"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.instlDay", "16124"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.instlRef", ""); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.lastB", "hxxp://start.mysearchdial.com/?f=1&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutB[...] [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.lastVrsnTs", "1.8.21.021:32:20"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1C[...] [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.pnu_base", "{\"newVrsn\":\"90\",\"lastVrsn\":\"90\",\"vrsnLoad\":\"\",\"showMsg\":\"false\",\"showSilent\":\"false\",\"msgTs\":0,\"lstMsgTs\":\"0\"}"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.prdct", "mysearchdial"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.sg", "none"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.tlbrId", "base"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L[...] [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.vrsn", "1.8.21.0"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial.vrsni", "1.8.21.0"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial_i.hmpg", true); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial_i.newTab", false); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial_i.smplGrp", "none"); [-] [C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\prefs.js] [Preference] Gelöscht : user_pref("extensions.mysearchdial_i.vrsnTs", "1.8.21.021:32:20"); [-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : searchqu.com [-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : websearch.ask.com [-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : search.babylon.com [-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : slirsredirect.search.aol.com [-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : binkiland.com [-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Gelöscht : amazon-cover-downloader.de.softonic.com [-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Gelöscht : hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir= [-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Gelöscht : elicpjhcidhpjomhibiffojpinpmmpil [-] [C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Gelöscht : kpionmjnkbpcdpcflammlgllecmejgjj ************************* :: "Tracing" Schlüssel gelöscht :: Proxy Einstellungen zurückgesetzt :: Winsock Einstellungen zurückgesetzt :: Chrome Richtlinien gelöscht ########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [38723 Bytes] ########## Code:
ATTFilter Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 30.12.2015 Suchlaufzeit: 19:15 Protokolldatei: mbam.txt Administrator: Ja Version: 2.2.0.1024 Malware-Datenbank: v2015.12.30.04 Rootkit-Datenbank: v2015.12.26.01 Lizenz: Testversion Malware-Schutz: Aktiviert Schutz vor bösartigen Websites: Aktiviert Selbstschutz: Deaktiviert Betriebssystem: Windows 7 Service Pack 1 CPU: x64 Dateisystem: NTFS Benutzer: Home Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 451048 Abgelaufene Zeit: 28 Min., 53 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 8 PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}, In Quarantäne, [95a704a73c4f2a0c20caa5c2d230758b], PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0B4D26F6-61A8-4463-99DD-5F2FE0400FA6}, In Quarantäne, [b9839714a3e8999da00c4c6c6e951ee2], PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}, In Quarantäne, [77c5adfebbd0aa8cff25e9ad08fb8b75], PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\Binkiland cini, Löschen bei Neustart, [c775eac1e0ab72c4ab7b2c6a897a4eb2], PUP.Optional.VuzeRemoteTB, HKLM\SOFTWARE\WOW6432NODE\Vuze_Remote, In Quarantäne, [a5970f9c048748ee1ee98b458b785fa1], PUP.Optional.VShare, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\kpionmjnkbpcdpcflammlgllecmejgjj, In Quarantäne, [bf7d17940586092d30d57a56b94a0cf4], PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{34429CBB-A506-4DA6-BBCB-98445A821F5B}, In Quarantäne, [251773387714f2447394772681823bc5], PUP.Optional.Bandoo.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{9A6FAF99-126F-435B-95F7-733A21E7C2D6}, In Quarantäne, [9d9f5655a9e263d3155f51bfda2acf31], Registrierungswerte: 14 PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}|URL, hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1960053735&ir=, In Quarantäne, [b9839714a3e8999da00c4c6c6e951ee2] PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}|TopResultURLFallback, hxxp://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd0202ch&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0CyBzzyDtN1L2XzutBtFtBtFtCyDtFtCyCtAtCtN1L1CzutBtAtDtC1N1R&cr=1960053735&ir=, In Quarantäne, [221a6249c2c92a0c9d0fb9fffb08df21] PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}|FaviconPath, C:\Program Files (x86)\Mysearchdial\1.8.21.0\FavIcon.ico, In Quarantäne, [84b88427e1aa88ae46668830798a0000] PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}, Mysearchdial, In Quarantäne, [3b01acffd9b2d264426a0cac8f74fa06] PUP.Optional.MySearchDial, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{0b4d26f6-61a8-4463-99dd-5f2fe0400fa6}|DisplayName, Mysearchdial, In Quarantäne, [ca72ccdf008bce68d6d6cbedae55f20e] PUP.Optional.SearchQu, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}|URL, hxxp://www.searchqu.com//web?src=ieb&appid=0&systemid=413&sr=0&q={searchTerms}, In Quarantäne, [fb4119926f1ca393dfa91da601027888] PUP.Optional.SearchQu, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{77AA745B-F4F8-45DA-9B14-61D2D95054C8}|SuggestionsURL_JSON, hxxp://www.searchqu.com/suggest.php?src=ieb&appid=0&systemid=413&qu={searchTerms}&ft=json, In Quarantäne, [1626eac1187369cdccbcb70c887b0af6] PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}|URL, hxxp://binkiland.com/results.php?f=4&q={searchTerms}&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir=, In Quarantäne, [77c5adfebbd0aa8cff25e9ad08fb8b75] PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}|TopResultURLFallback, hxxp://binkiland.com/results.php?f=4&q={searchTerms}&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir=, In Quarantäne, [9aa255568ffcea4c38ec2274b94a8080] PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}, Binkiland, In Quarantäne, [48f4d8d394f7c472e83c732322e160a0] PUP.Optional.Binkiland, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\SEARCHSCOPES\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2413}|DisplayName, Binkiland, In Quarantäne, [45f7f9b2a5e655e129fb1c7a1de6966a] PUP.Optional.Binkiland, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY|AppPath, C:\Program Files (x86)\WSE_Binkiland\\, In Quarantäne, [1e1e8a21ccbfb581c65d7224fd06dd23] PUP.Optional.ConduitTB.Gen, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{34429CBB-A506-4DA6-BBCB-98445A821F5B}|AppPath, C:\Users\Home\AppData\Local\Conduit\CT2504091, In Quarantäne, [251773387714f2447394772681823bc5] PUP.Optional.Bandoo.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{9A6FAF99-126F-435B-95F7-733A21E7C2D6}|AppPath, C:\PROGRA~2\WIA6EB~1\Datamngr\ToolBar, In Quarantäne, [9d9f5655a9e263d3155f51bfda2acf31] Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 2 PUP.Optional.Conduit, C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\databases\chrome-extension_ojpijjmpahflnipadmlpgbjmagmjchkk_0, In Quarantäne, [f349c1eaa0ebed491097711e748e6799], PUP.Optional.DataMngr.AppFlsh, C:\Users\Home\AppData\LocalLow\DataMngr, In Quarantäne, [f04ccddeb5d6d1652577e8cfb44ebb45], Dateien: 9 PUP.Optional.ConduitTB.Gen, C:\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$R1NPZA7\prxtbVuz2.dll, In Quarantäne, [ae8eb2f9612ab482e319c6f07094d030], PUP.Optional.ConduitTB.Gen, C:\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$R1NPZA7\tbVuz0.dll, In Quarantäne, [3606e6c5bbd0ff378a72c0f6768e6898], PUP.Optional.ConduitTB.Gen, C:\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$R1NPZA7\tbVuz1.dll, In Quarantäne, [0f2d35760883f93db943e5d1ca3a2dd3], PUP.Optional.ConduitTB.Gen, C:\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$R1NPZA7\tbVuz2.dll, In Quarantäne, [b785604b83087bbb7587b0069e6651af], PUP.Optional.Binkiland, C:\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$RXYRB45\uninstall.exe, In Quarantäne, [66d6e8c3533852e423213c79ae56c63a], PUP.Optional.InstallCore, C:\Users\Home\AppData\Local\Temp\13095084881362594809.exe, In Quarantäne, [3309c5e6fb905ed855d48caba75aad53], PUP.Optional.Binkiland, C:\Windows\System32\Tasks\Binkiland cini, In Quarantäne, [48f49d0e0c7ff145fc192a6cf80bc838], PUP.Optional.DataMngr.AppFlsh, C:\Users\Home\AppData\LocalLow\DataMngr\{7CA1F051-A4FB-4143-B263-02B41E571EED}, In Quarantäne, [f04ccddeb5d6d1652577e8cfb44ebb45], PUP.Optional.DataMngr.AppFlsh, C:\Users\Home\AppData\LocalLow\DataMngr\{7CA1F051-A4FB-4143-B263-02B41E571EED}64, In Quarantäne, [f04ccddeb5d6d1652577e8cfb44ebb45], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-12-2015 durchgeführt von Home (Administrator) auf NOTEBOOK-RS (30-12-2015 19:58:24) Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 1 Geladene Profile: Home (Verfügbare Profile: Home) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (AMD) C:\Windows\System32\atiesrxx.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe () C:\Program Files (x86)\AAVUpdateManager\aavus.exe (Soluto) C:\Program Files\Soluto\Soluto.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe (Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe () C:\Windows\SysWOW64\NMSAccess32.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe () C:\Program Files\Iomega\QuikProtect\QpMonitor.exe (Synaptics, Inc.) C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe (Soluto) C:\Program Files\Soluto\SolutoLauncherService.exe (Xacti LLC) C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe (AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Synaptics Incorporated) C:\Program Files (x86)\Synaptics\Scrybe\scrybe.exe () C:\Program Files\Rainmeter\Rainmeter.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\pmbxcrnmh.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Soluto) C:\Program Files\Soluto\SolutoService.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v2.0.50727\csc.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated) HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [134416 2007-06-12] (Logitech, Inc.) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1757520 2015-02-02] (Bitdefender) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1702912 2000-01-01] (IDT, Inc.) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1104616 2013-10-10] (Acronis International GmbH) HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7843744 2014-02-04] (Acronis) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.) HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare) HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-02] (Hewlett-Packard) HKLM\...\Winlogon: [Userinit] c:\windows\system32\userinit.exe,c:\program files\soluto\soluto.exe /userinit, HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\system: [WallpaperStyle] 2 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Policies\system: [WallpaperStyle] 2 HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> Lsa: [Notification Packages] scecli c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Keine Datei ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-06-11] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Scrybe.lnk [2012-01-14] ShortcutTarget: Scrybe.lnk -> C:\Windows\Installer\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}\NewShortcut11_8ACB210B42E44145A8C31F8E3DD765A3.exe (Acresso Software Inc.) Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2015-06-10] ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe () BootExecute: autocheck autochk * auto_reactivate \\?\Volume{f7c81a36-efb9-11de-a798-806e6f6e6963}\bootwiz\asrm.bin ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{7A31314E-4D6E-42E3-9220-5D359B8B3242}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{D2518004-8FB8-4822-8DAA-FD4DF64F2AD4}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll [2014-11-13] (Bitdefender) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard) BHO: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG) BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll [2014-11-13] (Bitdefender) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-18] (Oracle Corporation) BHO-x32: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-18] (Oracle Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard) BHO-x32: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files (x86)\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG) DPF: HKLM-x32 {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} file:///H:/Projekte%20Magix/Tatort/components/hidinputmonitorx.ocx DPF: HKLM-x32 {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} file:///H:/Projekte%20Magix/Tatort/components/A9.ocx DPF: HKLM-x32 {7030CC6C-1A88-4591-BB5A-651B9F7F0C30} file:///H:/Projekte%20Magix/Tatort/components/wmvhdrating.ocx Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029 FF SelectedSearchEngine: Binkiland FF Homepage: hxxps://www.google.de/ FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-28] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.) FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-14] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-28] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2013-08-28] (DivX, LLC) FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2010-10-28] (GARMIN Corp.) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-18] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-18] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei] FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-10-15] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/O1DPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-02] (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Extension: azid - Amazon Zoom Image Downloader - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\azid@craue.de.xpi [2015-10-12] FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\artur.dubovoy@gmail.com [2015-12-06] FF Extension: Secure Login - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\secureLogin@blueimp.net.xpi [2015-12-22] FF Extension: Kein Name - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\auto-plugin-checker@jetpack.xpi [2015-09-04] [ist nicht signiert] FF Extension: Flagfox - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2015-12-21] FF Extension: Video DownloadHelper - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-31] FF Extension: Adblock Plus - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-15] FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman [2014-03-27] [ist nicht signiert] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.de/ CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir=" CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\PepperFlash\pepflashplayer.dll () CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation) CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation) CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.) CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) CHR Plugin: (Unity Player) - C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05] CHR Extension: (Google Drive) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22] CHR Extension: (YouTube) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Bitdefender Wallet) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl [2014-11-07] CHR Extension: (Google-Suche) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (Video Downloader professional) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-12-30] CHR Extension: (Google Docs Offline) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17] CHR Extension: (WhatFont) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2015-08-18] CHR Extension: (Skype) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-19] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25] CHR Extension: (chromeIPass) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompiailgknfdndiefoaoiligalphfdae [2014-12-24] CHR Extension: (Unblock Youku) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnfnkhpgegpcingjbfihlkjeighnddk [2015-11-24] CHR Extension: (Google Mail) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28] CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-04-27] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AAV UpdateService; C:\Program Files (x86)\AAVUpdateManager\aavus.exe [128296 2008-10-24] () R2 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1046952 2015-11-12] (AVG Technologies CZ, s.r.o.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.) R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [Datei ist nicht signiert] S4 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert] S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert] S3 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [Datei ist nicht signiert] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [72992 2014-07-07] (Hewlett-Packard Company) S3 HRService; C:\Program Files (x86)\Haufe\iDesk\iDeskService\iDeskService.exe [71024 2010-10-25] () S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert] R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-10-19] () R2 NMSAccess; C:\Windows\SysWOW64\NMSAccess32.exe [71096 2009-01-12] () R2 QPCopyEngine; C:\Program Files\Iomega\QuikProtect\QpMonitor.exe [394544 2010-06-24] () R2 ScrybeUpdater; C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe [1300264 2011-05-27] (Synaptics, Inc.) R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) R2 SolutoLauncherService; C:\Program Files\Soluto\SolutoLauncherService.exe [182848 2013-11-14] (Soluto) R3 SolutoRemoteService; C:\Program Files\Soluto\SolutoRemoteService.exe [1942016 2013-11-14] (GlavSoft LLC.) [Datei ist nicht signiert] R2 sp_rssrv; C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe [1033255 2010-09-29] (Xacti LLC) [Datei ist nicht signiert] R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2000-01-01] (IDT, Inc.) [Datei ist nicht signiert] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH) R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2014-11-13] (Bitdefender) R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies) R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies) R2 vsserv; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1538672 2015-02-02] (Bitdefender) S4 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2013-11-02] (Western Digital Technologies, Inc.) S4 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [270704 2013-11-02] (Western Digital Technologies, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1288472 2015-02-02] (BitDefender) R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [263032 2015-02-02] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-11-13] (BitDefender) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL) S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc) R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx64.sys [34512 2015-02-06] () S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC) R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-05-20] (Paragon Software Group) R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2000-01-01] (JMicron Technology Corp.) R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-09-08] (Lavasoft AB) S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42944 2010-11-06] (hxxp://libusb-win32.sourceforge.net) R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-30] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation) S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] () S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] () S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [585944 2014-12-31] (Realtek Semiconductor Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-12-03] (Duplex Secure Ltd.) R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [50696 2010-07-07] (Windows (R) Win 7 DDK provider) R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-02-08] (Acronis International GmbH) R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2014-02-08] (Acronis International GmbH) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2015-02-02] (BitDefender S.R.L.) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software) S1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [50768 2010-07-14] (Windows (R) 2000 DDK provider) S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [566864 2010-07-14] (Paragon) R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2014-02-08] (Acronis International GmbH) U3 a0jtzv1x; C:\Windows\System32\Drivers\a0jtzv1x.sys [0 ] (JMicron Technology Corporation) <==== ACHTUNG (Null Byte Datei/Ordner) S3 clwvd; system32\DRIVERS\clwvd.sys [X] S3 cpuz132; \??\C:\Users\Home\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [X] R3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X] U4 eabfiltr; kein ImagePath S3 WPRO_40_1340; system32\drivers\WPRO_40_1340.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-30 19:55 - 2015-12-30 19:55 - 00008364 _____ C:\Users\Home\Desktop\mbam.txt 2015-12-30 19:14 - 2015-12-30 19:51 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-12-30 19:13 - 2015-12-30 19:13 - 00001064 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-12-30 19:13 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-12-30 19:13 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-12-30 19:13 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2015-12-30 18:54 - 2015-12-30 18:58 - 00000000 ____D C:\AdwCleaner 2015-12-30 18:11 - 2015-12-30 18:11 - 00001226 _____ C:\Users\Home\Desktop\Revo Uninstaller.lnk 2015-12-30 18:11 - 2015-12-30 18:11 - 00000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2015-12-30 18:11 - 2015-12-30 18:11 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2015-12-30 01:01 - 2015-12-30 01:06 - 00256514 _____ C:\TDSSKiller.3.1.0.9_30.12.2015_01.01.45_log.txt 2015-12-30 00:23 - 2015-12-30 00:23 - 00001082 _____ C:\Users\Home\Desktop\Hilfe 100 % CPU - Verknüpfung.lnk 2015-12-29 22:20 - 2015-12-29 22:20 - 00000376 _____ C:\Users\Home\AppData\Roamingprivacy.xml 2015-12-29 22:19 - 2015-12-29 22:26 - 00007892 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_22.19.36_log.txt 2015-12-29 22:12 - 2015-12-29 22:12 - 00000000 ____D C:\TDSSKiller_Quarantine 2015-12-29 21:51 - 2015-12-30 18:10 - 00000000 ____D C:\Users\Home\Downloads\Hilfe 100 % CPU 2015-12-29 21:40 - 2015-12-29 22:12 - 00510822 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_21.40.36_log.txt 2015-12-29 19:30 - 2015-12-30 19:58 - 00000000 ____D C:\FRST 2015-12-23 17:24 - 2015-12-23 17:24 - 00000657 _____ C:\Users\Home\Desktop\Steffi - Verknüpfung.lnk 2015-12-23 16:51 - 2015-12-23 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-12-20 12:59 - 2015-12-20 12:59 - 00000000 ____D C:\Users\Home\Documents\Applian 2015-12-20 12:56 - 2015-12-20 15:20 - 00000000 ____D C:\Windows\Jaksta 2015-12-20 12:56 - 2015-12-20 13:11 - 00000000 ____D C:\Users\Home\AppData\Local\Jaksta_Technologies_Pty_L 2015-12-20 12:37 - 2015-12-20 13:13 - 00000000 ____D C:\Users\Home\AppData\Local\JDownloader v2.0 2015-12-19 15:36 - 2015-12-19 15:36 - 00001053 _____ C:\Users\Public\Desktop\StreamTransport.lnk 2015-12-19 15:36 - 2015-12-19 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamTransport 2015-12-19 15:36 - 2015-12-19 15:36 - 00000000 ____D C:\Program Files (x86)\StreamTransport 2015-12-19 15:35 - 2014-07-09 11:33 - 15123328 _____ (hxxp://www.streamtransport.com/ ) C:\Users\Home\Downloads\streamtransport_chrome_setup1.1.6.2.exe 2015-12-15 22:37 - 2015-12-15 22:42 - 00007154 _____ C:\Users\Home\Documents\starburn.txt 2015-12-15 22:37 - 2015-12-15 22:37 - 00000000 ____D C:\ProgramData\Wondershare 2015-12-15 22:36 - 2015-12-15 22:36 - 00001105 _____ C:\Users\Public\Desktop\Wondershare Filmora.lnk 2015-12-15 22:36 - 2015-12-15 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\Wondershare 2015-12-15 22:36 - 2015-12-15 22:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2015-12-15 22:35 - 2015-12-15 22:43 - 00000000 ____D C:\Users\Home\Documents\Wondershare Filmora 2015-12-15 22:35 - 2015-12-15 22:35 - 00000000 ____D C:\ProgramData\Wondershare Video Editor 2015-12-15 22:35 - 2015-12-15 22:35 - 00000000 ____D C:\Program Files (x86)\Wondershare 2015-12-15 22:33 - 2015-12-15 22:35 - 00000000 ____D C:\Users\Public\Documents\Wondershare 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\Documents\FlashIntegro 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\VideoEditor 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\FlashIntegro 2015-12-15 22:06 - 2015-12-15 22:06 - 00001164 _____ C:\Users\Home\Desktop\VSDC Free Video Editor.lnk 2015-12-15 22:06 - 2015-12-15 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro 2015-12-15 22:06 - 2015-12-15 22:06 - 00000000 ____D C:\Program Files (x86)\FlashIntegro 2015-12-15 22:06 - 2014-12-09 12:21 - 00081792 _____ (Flash-Integro LLC) C:\Windows\SysWOW64\mslvddsfilter2.ax 2015-12-15 22:06 - 2011-12-07 18:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\Lagarith.dll 2015-12-15 22:06 - 2005-08-01 18:43 - 00245760 _____ () C:\Windows\SysWOW64\lame.ax 2015-12-15 22:06 - 2004-12-10 09:03 - 00438272 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll 2015-12-15 22:06 - 2004-02-04 20:11 - 00081920 _____ (fccHandler) C:\Windows\SysWOW64\AC3ACM.acm 2015-12-15 22:06 - 2003-05-22 11:26 - 00221215 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divxdec.ax 2015-12-15 22:06 - 2003-05-21 22:50 - 00261632 _____ (MainConcept) C:\Windows\SysWOW64\mcdvd_32.dll 2015-12-15 22:06 - 2003-05-21 22:50 - 00156910 _____ C:\Windows\WMSysPr8.prx 2015-12-15 22:06 - 2003-05-21 22:50 - 00082944 _____ (Voxware, Inc.) C:\Windows\SysWOW64\vct3216.acm 2015-12-15 22:06 - 2003-05-21 22:50 - 00038912 _____ (NCT Company) C:\Windows\SysWOW64\alf2cd.acm 2015-12-15 22:06 - 2003-05-21 22:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll 2015-12-15 22:06 - 2003-03-25 04:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\L3CODECX.AX 2015-12-15 22:06 - 2002-08-19 23:41 - 00413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll 2015-12-15 22:06 - 2000-03-14 19:55 - 00013239 _____ (SHARP Corporation) C:\Windows\SysWOW64\Scg726.acm 2015-12-15 20:00 - 2015-12-15 20:00 - 00200764 _____ C:\Users\Home\Desktop\Anzeige Kolb.pdf 2015-12-14 22:05 - 2015-12-14 22:05 - 24386352 _____ (Siber Systems) C:\Users\Home\Downloads\GoodSync-Setup.exe 2015-12-12 10:57 - 2015-12-12 10:57 - 00001067 _____ C:\Users\Home\Desktop\KeePass 2.lnk 2015-12-11 22:27 - 2015-12-11 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\ApplicationHistory 2015-12-11 22:27 - 2015-12-11 22:27 - 00000092 _____ C:\Users\Home\AppData\Local\fusioncache.dat 2015-12-11 21:01 - 2015-12-11 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-12-07 21:29 - 2015-12-07 21:29 - 00002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2015-12-07 21:29 - 2015-12-07 21:29 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk 2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\Program Files\CCleaner 2015-12-03 20:32 - 2015-12-03 20:32 - 00000993 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk 2015-11-30 22:16 - 2015-11-30 22:16 - 00000973 _____ C:\Users\Home\Desktop\Wanderprogramm 2016.lnk ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-30 19:59 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-12-30 19:59 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-12-30 19:52 - 2012-11-11 23:17 - 00000000 ___RD C:\Users\Home\Dropbox 2015-12-30 19:52 - 2012-11-11 22:00 - 00000000 ____D C:\Users\Home\AppData\Roaming\Dropbox 2015-12-30 19:49 - 2015-07-25 12:03 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2015-12-30 19:49 - 2013-02-16 23:12 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-12-30 19:48 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-12-30 19:47 - 2011-08-31 23:22 - 00000000 ____D C:\Windows\HPQ 2015-12-30 19:46 - 2014-03-24 01:26 - 00290514 _____ C:\bdlog.txt 2015-12-30 19:41 - 2014-03-16 22:56 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job 2015-12-30 19:36 - 2013-02-16 23:12 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-12-30 19:30 - 2012-12-17 11:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-12-30 19:09 - 2015-07-25 12:04 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2015-12-30 18:58 - 2015-02-01 12:28 - 00000008 __RSH C:\Users\Home\ntuser.pol 2015-12-30 18:58 - 2011-10-14 22:55 - 00000008 __RSH C:\ProgramData\ntuser.pol 2015-12-30 18:58 - 2009-12-23 23:38 - 00000000 ____D C:\Users\Home 2015-12-30 18:06 - 2014-03-16 22:56 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job 2015-12-30 17:10 - 2009-12-30 19:59 - 00003938 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{5E08B2BB-8B59-4E04-AFC6-843827792A81} 2015-12-30 17:09 - 2014-02-08 12:05 - 00000000 ___RD C:\Users\Home\Sync 2015-12-29 22:42 - 2009-07-14 04:20 - 00000000 ____D C:\Windows 2015-12-29 07:46 - 2011-02-11 00:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\TeamViewer 2015-12-28 22:43 - 2012-02-27 18:28 - 00000000 ____D C:\Users\Home\.Zettelkasten 2015-12-28 22:31 - 2012-12-17 11:41 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-12-28 22:31 - 2012-04-05 21:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-12-28 22:31 - 2011-06-17 20:10 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-12-28 20:51 - 2011-08-22 08:48 - 00000000 ____D C:\Users\Home\AppData\Roaming\vlc 2015-12-28 20:22 - 2015-10-22 20:31 - 00000026 _____ C:\Users\Home\AppData\Local\isoworkshop.ini 2015-12-25 13:23 - 2012-04-25 19:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-12-23 18:38 - 2010-05-30 10:42 - 00000000 ___RD C:\Users\Home\Desktop\Büro 2015-12-23 18:30 - 2014-12-14 14:49 - 00000000 ____D C:\Users\Home\Desktop\Anwendungen 2015-12-23 18:25 - 2014-01-03 23:23 - 00000000 ____D C:\Users\Home\Desktop\Videoschnitt 2015-12-22 12:51 - 2011-02-11 00:26 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2015-12-19 21:43 - 2013-07-31 19:56 - 00668984 _____ C:\Windows\system32\FNTCACHE.DAT 2015-12-17 22:47 - 2014-10-24 20:20 - 00003834 _____ C:\Windows\System32\Tasks\Google Update 2015-12-17 22:46 - 2015-10-30 21:33 - 00000000 ____D C:\Users\Home\AppData\Local\Microsoft Help 2015-12-17 22:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2015-12-17 12:17 - 2009-12-28 15:17 - 00000000 ____D C:\Users\Home\AppData\Roaming\Mozilla 2015-12-15 22:37 - 2013-07-31 19:58 - 00202240 _____ C:\Users\Home\AppData\Local\GDIPFONTCACHEV1.DAT 2015-12-15 22:37 - 2009-07-14 05:57 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-12-13 17:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration 2015-12-12 11:02 - 2013-03-22 21:05 - 00000000 ____D C:\Users\Home\AppData\Roaming\KeePass 2015-12-12 10:57 - 2013-06-30 11:16 - 00001079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk 2015-12-12 10:57 - 2013-03-22 20:44 - 00000000 ____D C:\Program Files (x86)\KeePass Password Safe 2 2015-12-12 00:13 - 2011-09-13 21:54 - 00000000 ____D C:\Users\Home\AppData\Roaming\dvdcss 2015-12-11 21:01 - 2015-07-25 12:03 - 00000000 ____D C:\Program Files (x86)\Dropbox 2015-12-11 00:33 - 2012-04-14 00:02 - 00000000 ____D C:\ProgramData\tmp 2015-12-10 09:17 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-12-07 22:19 - 2010-10-28 00:06 - 00000000 ____D C:\Users\Home\AppData\Roaming\DAEMON Tools Lite 2015-12-07 22:19 - 2010-07-12 20:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\PhotoScape 2015-12-07 22:19 - 2010-01-01 19:25 - 00000000 ____D C:\Users\Home\AppData\Roaming\Azureus 2015-12-07 22:19 - 2009-12-27 19:22 - 00000000 ____D C:\Users\Home\AppData\Roaming\Skype 2015-12-06 10:08 - 2009-12-27 19:22 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-12-05 01:31 - 2013-02-16 23:12 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-12-05 01:31 - 2013-02-16 23:12 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-12-02 21:20 - 2014-08-23 23:02 - 00000000 ____D C:\ProgramData\Avg 2015-12-02 21:09 - 2013-02-24 11:34 - 00004020 _____ C:\Windows\System32\Tasks\MUI StartMenu Application 2015-12-02 14:24 - 2013-07-14 10:55 - 00000000 ____D C:\Users\Home\.gimp-2.8 2015-12-02 07:36 - 2014-03-16 22:56 - 00004084 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA 2015-12-02 07:36 - 2014-03-16 22:56 - 00003688 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2010-01-06 11:53 - 2010-12-29 22:04 - 0000030 _____ () C:\Program Files (x86)\Exiferupdate.ini 2011-11-09 20:47 - 2011-11-09 20:48 - 0000288 _____ () C:\Users\Home\AppData\Roaming\.backup.dm 2012-01-08 21:35 - 2012-01-15 21:40 - 0000598 _____ () C:\Users\Home\AppData\Roaming\AutoGK.ini 2012-11-29 19:33 - 2014-12-14 12:35 - 0000307 _____ () C:\Users\Home\AppData\Roaming\burnaware.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000096 _____ () C:\Users\Home\AppData\Roaming\Camdata.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamLayout.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamShapes.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0004534 _____ () C:\Users\Home\AppData\Roaming\CamStudio.cfg 2012-05-28 20:08 - 2012-05-28 20:08 - 0000000 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.Data.ini 2012-05-28 20:08 - 2012-05-28 20:08 - 0001206 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.ini 2011-09-13 21:13 - 2011-09-13 21:13 - 0099384 _____ () C:\Users\Home\AppData\Roaming\inst.exe 2010-01-14 00:44 - 2010-01-14 00:44 - 0031793 _____ () C:\Users\Home\AppData\Roaming\mdbu.bin 2010-02-20 00:34 - 2010-03-28 22:30 - 0038276 _____ () C:\Users\Home\AppData\Roaming\Microsoft Excel.ADR 2011-09-13 21:13 - 2011-09-13 21:13 - 0007859 _____ () C:\Users\Home\AppData\Roaming\pcouffin.cat 2011-09-13 21:13 - 2011-09-13 21:13 - 0001167 _____ () C:\Users\Home\AppData\Roaming\pcouffin.inf 2011-09-13 21:14 - 2011-09-13 21:14 - 0000034 _____ () C:\Users\Home\AppData\Roaming\pcouffin.log 2011-09-13 21:13 - 2011-09-13 21:13 - 0082816 _____ (VSO Software) C:\Users\Home\AppData\Roaming\pcouffin.sys 2015-09-11 20:01 - 2015-09-11 20:01 - 0001181 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt 2015-09-11 20:01 - 2015-09-11 20:01 - 0000000 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt 2015-02-06 17:44 - 2015-02-06 17:44 - 0000096 _____ () C:\Users\Home\AppData\Roaming\version2.xml 2013-02-03 23:24 - 2015-10-10 10:14 - 0080896 _____ () C:\Users\Home\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-12-11 22:27 - 2015-12-11 22:27 - 0000092 _____ () C:\Users\Home\AppData\Local\fusioncache.dat 2015-10-22 20:31 - 2015-12-28 20:22 - 0000026 _____ () C:\Users\Home\AppData\Local\isoworkshop.ini 2014-12-07 13:33 - 2014-12-07 13:33 - 0007931 _____ () C:\Users\Home\AppData\Local\recently-used.xbel 2013-04-02 13:55 - 2015-06-09 22:58 - 0007663 _____ () C:\Users\Home\AppData\Local\Resmon.ResmonCfg 2014-03-22 10:49 - 2014-03-22 10:49 - 0617204 _____ () C:\ProgramData\1395480845.bdinstall.bin 2014-04-27 16:55 - 2014-04-27 16:55 - 0240135 _____ () C:\ProgramData\1398614049.bdinstall.bin 2014-04-27 16:59 - 2014-04-27 17:01 - 0001545 _____ () C:\ProgramData\1398614324.1288.bin 2014-04-27 17:02 - 2014-04-27 17:02 - 0002247 _____ () C:\ProgramData\1398614324.1620.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0017887 _____ () C:\ProgramData\1398614324.2428.bin 2014-04-27 17:14 - 2014-04-27 17:14 - 0081185 _____ () C:\ProgramData\1398614324.3016.bin 2014-04-27 16:59 - 2014-04-27 17:02 - 0017801 _____ () C:\ProgramData\1398614324.3400.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0010224 _____ () C:\ProgramData\1398614324.3536.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0001090 _____ () C:\ProgramData\1398614324.3736.bin 2014-04-27 16:59 - 2014-04-27 17:14 - 0109821 _____ () C:\ProgramData\1398614324.4176.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0002736 _____ () C:\ProgramData\1398614324.4392.bin 2014-04-27 16:59 - 2014-04-27 17:02 - 0001090 _____ () C:\ProgramData\1398614324.4412.bin 2014-04-27 16:58 - 2014-04-27 17:14 - 0125567 _____ () C:\ProgramData\1398614324.5048.bin 2014-04-27 16:58 - 2014-04-27 17:01 - 0009868 _____ () C:\ProgramData\1398614324.5076.bin 2014-04-27 16:58 - 2014-04-27 17:14 - 0134906 _____ () C:\ProgramData\1398614324.5080.bin 2014-04-27 17:16 - 2014-04-27 17:16 - 0062879 _____ () C:\ProgramData\1398615359.bdinstall.bin 2014-04-27 17:47 - 2014-04-27 17:47 - 0670431 _____ () C:\ProgramData\1398615493.bdinstall.bin 2009-12-23 23:54 - 2012-01-26 19:18 - 0000190 _____ () C:\ProgramData\HPWALog.txt 2015-06-09 23:00 - 2015-06-12 17:59 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc 2012-08-12 04:28 - 2012-08-12 04:28 - 0000051 _____ () C:\ProgramData\zdtckhrezdorpjg 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log 2009-08-20 10:08 - 2009-08-20 10:08 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log 2009-08-20 10:03 - 2009-08-20 10:04 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log 2009-12-23 13:06 - 2009-12-23 13:06 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log 2009-08-20 10:02 - 2009-08-20 10:03 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log 2009-08-20 10:04 - 2009-08-20 10:08 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log Dateien, die verschoben oder gelöscht werden sollten: ==================== C:\Users\Home\DMOrganizer.dat Einige Dateien in TEMP: ==================== C:\Users\Home\AppData\Local\Temp\JDSetup130950848601933840.exe C:\Users\Home\AppData\Local\Temp\proxy_vole8078083222123595070.dll C:\Users\Home\AppData\Local\Temp\sqlite3.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-12-22 15:06 ==================== Ende von FRST.txt ============================ |
30.12.2015, 20:05 | #20 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter edit: |
30.12.2015, 20:28 | #21 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter und hier Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015 durchgeführt von Home (2015-12-30 20:01:48) Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 1 Windows 7 Home Premium Service Pack 1 (X64) (2009-12-23 22:38:53) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-2055331987-1518689308-177053510-500 - Administrator - Disabled) ASPNET (S-1-5-21-2055331987-1518689308-177053510-1012 - Limited - Enabled) Gast (S-1-5-21-2055331987-1518689308-177053510-501 - Limited - Disabled) Home (S-1-5-21-2055331987-1518689308-177053510-1000 - Administrator - Enabled) => C:\Users\Home HomeGroupUser$ (S-1-5-21-2055331987-1518689308-177053510-1002 - Limited - Enabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D} AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) [verify-U]_AVS_IE_Add-on (HKLM-x32\...\[verify-U]_AVS_IE_Add-on) (Version: 1.0.0.3 - cybits AG) 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) AAVUpdateManager (HKLM-x32\...\{DF6FE172-006A-4324-AF7F-ACFE4BA290FE}) (Version: 12.00.0000 - Akademische Arbeitsgemeinschaft) ABBYY FineReader 9.0 Professional Edition (HKLM-x32\...\{F9000000-0001-0000-0000-074957833700}) (Version: 9.00.453.55019 - ABBYY) ABBYY PDF Transformer 2.0 (HKLM-x32\...\{FA200000-0001-0000-0000-074957833700}) (Version: 2.0.1147.49010 - ABBYY Software Ltd.) Acronis True Image 2014 (HKLM-x32\...\{3ECDD663-5AF8-489B-9E3C-561F33A271BD}Visible) (Version: 17.0.6673 - Acronis) Acronis True Image 2014 (x32 Version: 17.0.6673 - Acronis) Hidden Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.) Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.) AMD Catalyst Install Manager (HKLM\...\{ACF4E7FE-650D-9BD7-BAE5-1AD061F40F69}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Anti-Twin (Installation 14.02.2010) (HKLM-x32\...\Anti-Twin 2010-02-14 18.44.43) (Version: - Joerg Rosenthal, Germany) Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) AVCutty 3.5 (HKLM-x32\...\AVCutty) (Version: 3.5 - ) AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies) AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies) AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version: - AVM Berlin) Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 17.27.0.1146 - Bitdefender) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5300 - Broadcom Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.8.2631 - CDBurnerXP) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP) CDDRV_Installer (x32 Version: 4.20 - Logitech) Hidden CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.79.0.2015 - Georgy Berdyshev) Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Content Pack (HKLM\...\{832191A7-9336-4DCD-94EF-F29955DEA165}) (Version: 1.0.0.0 - MAGIX Software GmbH) CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd) Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 2.05 - NCH Software) DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.84 - DivX, LLC) dm-Fotowelt (HKLM-x32\...\dm-Fotowelt) (Version: 6.0.5 - CEWE Stiftung u Co. KGaA) Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.) Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden eMedia Piano Einstieg Für Dummies (HKLM-x32\...\{D0D24351-FF92-450e-8143-6D848C6EFAC6}) (Version: - eMedia Piano Einstieg Für Dummies) ENE CIR Receiver Driver (HKLM\...\FFE7D41DF3C645075BB149E21988B63996C34187) (Version: 2.7.4.0 - ENE) Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG) FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden FormatFactory 3.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.5.0 - Free Time) FOTOParadies (HKLM-x32\...\{A606BBD1-0BC4-45C1-8C26-C1471D85DAE4}}_is1) (Version: 3.1.10.105 - Foto Online Service GmbH) Garmin BaseCamp (HKLM-x32\...\{81EF7DBD-909A-455B-8B32-24B8CDC75039}) (Version: 4.3.3 - Garmin Ltd or its subsidiaries) Garmin Communicator Plugin (HKLM-x32\...\{B1EE1CC5-6CED-4801-BFFF-8454F21A245A}) (Version: 2.9.3 - Garmin Ltd or its subsidiaries) Garmin TOPO Deutschland 2010 (HKLM-x32\...\{C7C82ED1-E5AD-48CF-8B92-38DD9B49610C}) (Version: 4.0.0.0 - Garmin Ltd or its subsidiaries) Garmin Trip and Waypoint Manager v5 (HKLM-x32\...\{414A373B-59DF-4102-94CA-9FE9A74CBDDA}) (Version: 5.0.0.0 - Garmin Ltd or its subsidiaries) Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries) Garmin WebUpdater (HKLM-x32\...\{00FE2935-FB56-4410-AB5F-D6E70C1771D2}) (Version: 2.5.6 - Garmin Ltd or its subsidiaries) GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.) Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.) Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Talk Plugin (HKLM-x32\...\{36A52BCF-AC3D-32F1-AD5F-A09769EB8887}) (Version: 4.1.3.13728 - Google) Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Google+ Auto Backup (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.) GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.) Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2 (HKLM-x32\...\Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2) (Version: - ) Haufe iDesk-Service (HKLM-x32\...\{27F10580-E040-11DF-8C28-005056B12123}) (Version: 10.10.25.7810 - Haufe) Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden HP 3D DriveGuard (HKLM\...\{7FD7F421-39B2-4CAC-BC41-7D83DDBAB329}) (Version: 4.0.3.1 - Hewlett-Packard) HP Advisor (HKLM-x32\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard) HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.0.3123 - Hewlett-Packard) HP MediaSmart Internet TV (HKLM-x32\...\InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}) (Version: 3.0.1916 - Hewlett-Packard) HP MediaSmart Live TV (HKLM-x32\...\InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}) (Version: 3.0.1924 - Hewlett-Packard) HP MediaSmart Movie Themes (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.0.3102 - Hewlett-Packard) HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.0.3123 - Hewlett-Packard) HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.0.30.1 - Hewlett-Packard) HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.1.1208 - Hewlett-Packard) HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.16.1 - Hewlett-Packard Company) HP Setup (HKLM-x32\...\{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}) (Version: 1.2.3220.3079 - Hewlett-Packard) HP Support Solutions Framework (HKLM-x32\...\{C43602FE-988C-47BA-9F9F-B95FDDAFB624}) (Version: 11.50.0031 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard) HP User Guides 0153 (HKLM-x32\...\{2EBA8202-FBD5-4004-81EA-BDC38C054CE2}) (Version: 1.01.0000 - Hewlett-Packard) HP Wireless Assistant (HKLM-x32\...\{F9A43C0C-F274-4EC0-B02E-202C15C09C00}) (Version: 3.50.12.1 - Hewlett-Packard) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT) ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Indeo® software (HKLM-x32\...\Indeo® software) (Version: - ) Intel(R) PROSet/Wireless WiFi-Software (HKLM\...\{D75AEB5B-FA18-4BD4-9EED-54CA46DB5AE8}) (Version: 13.04.0000 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Internet-TV für Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation) ISO Workshop 6.0 (HKLM-x32\...\ISO Workshop_is1) (Version: - Glorylogic) iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.) Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation) JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.) JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.50.2 - JMicron Technology Corp.) Junk Mail filter update (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden KacoViso (HKLM-x32\...\{9D874610-1444-412E-B379-FD8107FE768B}) (Version: 2.3.0.0 - KACO new energy GmbH ) KacoViso (HKLM-x32\...\{B34110B2-FA4C-40DA-B546-C85B0E2CD114}) (Version: 2.1.5 - Kaco) KeePass Password Safe 2.30 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.30 - Dominik Reichl) KhalInstallWrapper (Version: 4.20.131 - Logitech) Hidden Logitech SetPoint (HKLM-x32\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 4.20 - Logitech) Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.) Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.) MAGIX Page & Layout Designer 11 (HKLM-x32\...\MX.{72EF1C8F-D57A-493D-A8FF-8C966DD46613}) (Version: 11.2.2.40388 - MAGIX Software GmbH) MAGIX Page & Layout Designer 11 (Version: 11.2.2.40388 - MAGIX Software GmbH) Hidden MAGIX Retten Sie Ihre Videokassetten! Version 5 (HKLM-x32\...\MAGIX_MSI_Video_easy_4_RYVT) (Version: 3.0.1.28 - MAGIX AG) MAGIX Retten Sie Ihre Videokassetten! Version 5 (x32 Version: 3.0.1.28 - MAGIX AG) Hidden MAGIX Screenshare (HKLM-x32\...\{31D888B7-9DA0-4219-9371-9A0037A097C6}) (Version: 4.3.6.1987 - MAGIX AG) MAGIX Screenshare (HKLM-x32\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG) MAGIX Speed burnR (HKLM-x32\...\MAGIX Speed burnR D) (Version: 6.0.1.4 - MAGIX AG) MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{49209082-E4F9-410D-B74D-E6506977F30B}) (Version: 7.0.2.6 - MAGIX AG) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden MAGIX USB-Videowandler 2 (HKLM-x32\...\{8D85149E-D7A0-4920-BEBF-B6CEDFED8D1E}) (Version: 1.02.0000 - Ihr Firmenname) MAGIX USB-Videowandler 2 (HKLM-x32\...\InstallShield_{91065458-A5CF-474C-9160-B44B974B3C25}) (Version: 1.00.0000 - MAGIX) MAGIX USB-Videowandler 2 (x32 Version: 1.00.0000 - MAGIX) Hidden MAGIX Video deluxe 16 Premium 9.0.0.54 (D) (HKLM-x32\...\MAGIX Video deluxe 16 Premium D) (Version: 9.0.0.54 - MAGIX AG) MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{85061988-E889-4A37-9CB7-4F695AC35544}) (Version: 13.0.2.8 - MAGIX AG) MAGIX Video deluxe 2014 Plus (Version: 13.0.2.8 - MAGIX AG) Hidden MAGIX Web Designer MX Premium (HKLM-x32\...\MAGIX_{739FE2DC-0C7E-4A1C-AC6E-46348169E27E}) (Version: 8.0.2.21761 - MAGIX AG) MAGIX Web Designer MX Premium (Version: 8.0.2.21761 - MAGIX AG) Hidden MAGIX Xtreme Foto Designer 6 (HKLM-x32\...\MAGIX Xtreme Foto Designer 6 D) (Version: 6.0.29.0 - MAGIX AG) Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Media Go Video Playback Engine 1.88.103.12040 (HKLM-x32\...\{7FA1DAFD-AF55-E915-FD92-F269443A2ADF}) (Version: 1.88.103.12040 - Sony) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Office Home and Business 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 43.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.2 (x86 de)) (Version: 43.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) myBet Poker (HKLM-x32\...\myBet Poker) (Version: - ) myBet Poker (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\myBet Poker) (Version: - ) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger) NVIDIA PhysX v8.10.29 (HKLM-x32\...\{D56B0E27-4A3E-46C9-B5C1-D93D580C099C}) (Version: 8.10.29 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation) Page & Layout Designer Update (Version: 11.2.3.40790 - MAGIX Software GmbH) Hidden Paragon Partition Manager™ 11 Professional (HKLM-x32\...\{A35001F0-F1E4-11DD-A38B-005056C00008}) (Version: 90.00.0003 - Paragon Software) Parrot Software Update Tool (HKLM-x32\...\Parrot Flash Update Wizard) (Version: - ) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) PowerRecover (x32 Version: 5.5.1923 - CyberLink Corp.) Hidden PriMus Free 1.1 (Build 10843) (HKLM-x32\...\PriMus Free_is1) (Version: 1.1.0.10843 - Columbus Soft) proDAD Mercalli 1.0 (HKLM-x32\...\proDAD-Mercalli-1.0) (Version: - ) QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.2.1 r2386 - ) Ravensburger tiptoi (HKLM-x32\...\Ravensburger tiptoi) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek) Recuva (HKLM\...\Recuva) (Version: 1.43 - Piriform) RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version: - ) RemoteComms External Disk Access (HKLM-x32\...\{04FCD5DE-1662-4F99-BDA9-C57212113EF2}) (Version: 1.25.0003 - PLX Technology) Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) SanDiskSecureAccess_Manager.exe (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\@@__UNKNOWN__@@SanDiskSecureAccess_Manager.exe) (Version: 1.0.0 - DMAILER) Scribus 1.4.4 (64bit) (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team) Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) SlimDrivers (HKLM-x32\...\{87E60394-2E62-400D-99C0-C1BEA2F9A439}) (Version: 2.2.14197 - SlimWare Utilities, Inc.) Soluto (HKLM\...\{037C627B-384E-450E-866C-95BAB3CDEA17}) (Version: 1.3.1494.0 - Soluto) Spyware Terminator (HKLM-x32\...\Spyware Terminator_is1) (Version: 2.8.0.18 - Crawler Inc.) Steuer 2012 (HKLM-x32\...\{01159E8A-44F7-4885-A7F9-872CE4D74063}) (Version: 20.00.8137 - Buhl Data Service GmbH) Steuer 2013 (HKLM-x32\...\{05AEF487-8926-48A9-B5BA-9BED72BC6B1C}) (Version: 21.00.8480 - Buhl Data Service GmbH) Steuer 2014 (HKLM-x32\...\{2EE860C7-4551-479F-AF01-328B8AA46051}) (Version: 22.00.8811 - Buhl Data Service GmbH) StreamTransport version: 1.1.6.2 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version: - ) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Gesture Suite featuring SYNAPTICS | Scrybe (HKLM-x32\...\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}) (Version: 1.6.5.17120 - Synaptics Inc.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer) TELL ME MORE (HKLM-x32\...\TMM90) (Version: - ) TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 10.0.4200.97 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.2160.11 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden Unity Web Player (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN) VSDC Free Video Editor Version 3.3.0.394 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 3.3.0.394 - Flash-Integro LLC) Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.4.0.0 - Azureus Software, Inc.) WD Drive Utilities (HKLM-x32\...\{C093AD5D-29E9-4777-AAAC-28C02FCC2A51}) (Version: 1.0.4.11 - Western Digital Technologies, Inc.) WD Quick View (HKLM-x32\...\{507B1304-194A-4204-A9D9-9BAAF51EF760}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) WD Security (HKLM-x32\...\{8A7B24E8-864E-4794-95C4-17644D0991AA}) (Version: 1.0.6.3 - Western Digital Technologies, Inc.) WD SmartWare (HKLM\...\{A7C403DA-B8D9-4CA0-93D9-6C7F00772240}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) WD SmartWare Installer (HKLM-x32\...\{ba99df5b-3e46-419e-81e2-544352772fda}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) Web Designer Premium MX Update (Version: 8.1.4.24749 - MAGIX AG) Hidden Web Designer Premium MX Update (Version: 8.1.5.31094 - MAGIX AG) Hidden Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom) Windows Driver Package - Cambridge Silicon Radio Ltd. (CSRBC) USB (04/21/2011 01.0.0.0) (HKLM\...\BEA7B05370C19B9C86893BB484FD6B9CC52B0CD8) (Version: 04/21/2011 01.0.0.0 - Cambridge Silicon Radio Ltd.) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin) Windows Live Anmelde-Assistent (HKLM-x32\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8064.0206 - Microsoft Corporation) Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) WinRAR 4.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH) Wondershare Filmora(Build 6.8.1) (HKLM-x32\...\Wondershare Filmora_is1) (Version: - Wondershare Software) XviD MPEG4 Video Codec (remove only) (HKLM-x32\...\XviD MPEG4 Video Codec) (Version: - ) Youku Downloader (xmlbar) (nur entfernen) (HKLM-x32\...\Xmlbar YoukuDownloader) (Version: - ) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {045E10BA-2180-4CAD-BE93-C57695CDB4AF} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2011-08-15] (SlimWare Utilities, Inc.) Task: {06DDAB1C-A9B0-4233-AD4A-9714FAC58293} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2014-12-02] (Microsoft) Task: {0754560E-352E-4440-828F-5C0DD743751A} - System32\Tasks\CapUninst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe [2009-07-24] (CL) Task: {0A5DE71C-6CC7-4132-8642-DE8FDF084929} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09] (Oracle Corporation) Task: {111BCB09-5A3A-41E6-8091-507CD9430C3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard) Task: {26E5C788-0C67-4826-A062-97DED9F10166} - System32\Tasks\CapSchedInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe [2009-07-24] (CL) Task: {2D56EEEE-26A0-46DF-B413-1D3CE199C7C3} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender\bdproductdata.exe [2015-07-29] (Bitdefender) Task: {31CF6315-5D02-47EF-96EA-B64999B55273} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-07-23] (CyberLink) Task: {34316C50-305D-41F4-BA48-B585821B76C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {3AAD950A-BD91-4D39-A9F5-E9BDEF7213E7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2012-09-27] (Hewlett-Packard Company) Task: {3D7E7FE8-CD48-4E47-831B-B1FB839665EE} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {41001F0E-CE0D-42DC-A287-0139252339EA} - System32\Tasks\{752DFCA0-ED28-44AD-87EE-69C977B3D27A} => pcalua.exe -a C:\Users\Home\Downloads\im3stp03.exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {5169FC5F-F639-4B35-8619-8F930B314AD3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {5496EA6A-D5B0-4B53-AC15-10FE00BDB8E9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.) Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {6A0E2448-B98A-4236-BB75-E849ABAEF03A} - System32\Tasks\CapSvcInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe [2009-07-24] (CL) Task: {6E3E742C-E8A4-4A3C-97C9-7218152143A1} - System32\Tasks\{217E48E3-275F-49B5-A2E9-74B488C70DCF} => pcalua.exe -a "C:\Program Files (x86)\MAGIX\Video_deluxe_16_Premium\unwise.exe" Task: {76BC6246-6003-4080-8B9E-A373848B4A9E} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [2009-07-23] (CyberLink Corp.) Task: {85D7737D-3F15-4558-B2D3-908BDF7DED1F} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {86DC2FFE-238A-470A-81E3-04BAAD9C65F0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {92463B00-1FE5-417F-B89A-393662C1FDAF} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe Task: {9C78DE40-3602-407B-8909-420D2939C191} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies) Task: {9CDC2E3E-0C0C-446F-AE9D-6EDD35609373} - System32\Tasks\{070A97D9-16E9-488C-B625-9FEBA1B5A458} => pcalua.exe -a "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -d "C:\Program Files (x86)\Mozilla Firefox" Task: {A1B285B5-9BD8-4862-81BC-91706A2089ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard) Task: {BFA0B1A9-7428-4972-8D29-A0527369CB6A} - \Binkiland cini -> Keine Datei <==== ACHTUNG Task: {C0C404B2-08F6-4EA9-B6DA-80531A854F44} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {C873030E-708B-4409-BD74-68A7A27634D9} - System32\Tasks\Google Update => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {CFD66453-3FDF-4F51-A0B9-C34317E22FC4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {D04B8C5C-C79F-4AA1-A96B-B8F51DCC4CD6} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.) Task: {D1198108-4694-4BAC-B4C0-320192E98CA1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd) Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc Task: {E1CE8085-686D-42F0-A130-A4C45C50F1D6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {EE990A70-EF3E-483F-8B79-397011620C5E} - System32\Tasks\TVAgent => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [2009-07-24] (CyberLink Corp.) Task: {F32EF2A0-7535-4703-88F8-27871EA02D08} - System32\Tasks\MUI StartMenu Application => C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [2008-11-14] (CyberLink Corp.) Task: {F6254647-B40C-457B-B576-4CFE3DC30071} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28] (Adobe Systems Incorporated) Task: {FC5B39F5-D584-47ED-8686-C5DB6678275C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2014-11-13 23:11 - 2014-11-13 23:11 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll 2014-11-13 23:11 - 2014-11-13 23:11 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui 2014-11-13 23:11 - 2014-11-13 23:11 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui 2015-12-03 21:05 - 2015-12-03 21:05 - 00876888 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpbr.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 00742976 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpdsp.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 02803536 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpph.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 01415584 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttprbl.mdl 2010-10-19 12:39 - 2010-10-19 12:39 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll 2008-10-24 15:35 - 2008-10-24 15:35 - 00128296 _____ () C:\Program Files (x86)\AAVUpdateManager\aavus.exe 2015-06-12 18:02 - 2015-06-12 18:02 - 03672064 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\PCGPreCompiled\0054b581ad9fcca18b54c7b4c1e4a8ef\PCGPreCompiled.ni.dll 2015-06-12 18:03 - 2015-06-12 18:03 - 00267264 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\PCGAppControlPlugin#\9283595dae0849d5cca5f0ee2ca2fbec\PCGAppControlPluginLoader.ni.dll 2013-11-14 13:26 - 2013-11-14 13:26 - 00090688 _____ () c:\program files\soluto\PCGDllExportInspector.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2009-09-28 10:00 - 2009-01-12 07:15 - 00071096 _____ () C:\Windows\SysWOW64\NMSAccess32.exe 2010-06-24 16:04 - 2010-06-24 16:04 - 00394544 ____R () C:\Program Files\Iomega\QuikProtect\QpMonitor.exe 2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll 2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll 2015-03-24 14:28 - 2015-03-24 14:28 - 00036544 _____ () C:\Program Files\Rainmeter\Rainmeter.exe 2015-03-24 14:28 - 2015-03-24 14:28 - 00775872 _____ () C:\Program Files\Rainmeter\Rainmeter.dll 2015-03-24 14:27 - 2015-03-24 14:27 - 00058368 _____ () C:\Program Files\Rainmeter\Plugins\WebParser.DLL 2015-11-16 17:55 - 2015-11-16 17:55 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll 2015-06-12 18:04 - 2015-06-12 18:04 - 00068096 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\SignalRWrapper\8c1ffb2a0dcd72467ea977a4a25eea8d\SignalRWrapper.ni.dll 2009-07-23 11:37 - 2009-07-23 11:37 - 00931112 ____N () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll 2014-04-27 17:32 - 2014-11-13 23:09 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll 2015-09-04 10:41 - 2015-09-04 10:40 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll 2013-10-10 12:02 - 2013-10-10 12:02 - 00013120 _____ () C:\Program Files (x86)\Common Files\Acronis\TibMounter\icudt38.dll 2014-02-04 18:25 - 2014-02-04 18:25 - 00036672 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll 2014-02-04 18:25 - 2014-02-04 18:25 - 00028992 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll 2015-12-11 21:01 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll 2015-12-11 21:01 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll 2015-12-11 21:01 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2015-12-11 21:01 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00486704 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd 2015-10-03 11:33 - 2015-10-31 02:01 - 00019920 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll 2015-08-15 08:55 - 2015-10-31 02:00 - 00786904 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-10-03 11:33 - 2015-10-31 02:00 - 00063448 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-10-03 11:33 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll 2015-12-15 22:36 - 2014-09-11 18:09 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll 2015-12-15 22:36 - 2014-05-19 17:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll 2014-10-17 04:08 - 2014-10-17 04:08 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\098e8bf088c2956ba306dfd643107a7e\IsdiInterop.ni.dll 2011-08-31 23:38 - 2010-11-05 22:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2014-02-04 18:28 - 2014-02-04 18:28 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll 2015-12-17 12:31 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll 2015-12-17 12:31 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\ProgramData\Temp:0888F409 AlternateDataStreams: C:\ProgramData\Temp:11EFE63D AlternateDataStreams: C:\ProgramData\Temp:3969ACF7 AlternateDataStreams: C:\ProgramData\Temp:3991CD7D AlternateDataStreams: C:\ProgramData\Temp:4A1628E5 AlternateDataStreams: C:\ProgramData\Temp:5C4A588B AlternateDataStreams: C:\ProgramData\Temp:99AC3203 AlternateDataStreams: C:\ProgramData\Temp:A4E7D25F AlternateDataStreams: C:\ProgramData\Temp:A5FC8FA1 AlternateDataStreams: C:\ProgramData\Temp:C64BF02A AlternateDataStreams: C:\ProgramData\Temp:EC0279DC AlternateDataStreams: C:\ProgramData\Temp:FD000392 AlternateDataStreams: C:\Users\Home\Downloads\GoodSync-Setup.exe:BDU ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\45303408.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\45303408.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Home\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.178.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: gusvc => 3 MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Electronic Arts\EADM\EADMUI\EADMUI.exe" MSCONFIG\startupreg: TrayServer => C:\PROGRA~2\MAGIX\VIDEO_~1\TrayServer.exe ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{B368F941-0CB4-4EF3-A560-ECE92A7CCA92}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe FirewallRules: [{C0F1CDEB-8A20-49A1-B35F-5DAF6B0806A4}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe FirewallRules: [{8A169D17-0EB7-49FF-931C-5C43E2073505}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{DE33A289-732E-4654-943F-7A45743D6E43}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [UDP Query User{58171B02-7028-4BF1-9160-E1F593897D8F}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [TCP Query User{A23EF6E2-8FE1-490B-B182-4B1D855313A1}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [UDP Query User{747DCA01-6FAE-4DD4-87BD-04DEE5969E99}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [{0D44D73D-B6F6-479E-AD4A-A863E07010D2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{10E3F261-C815-4590-A29E-EC4173FB564B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{0DB76952-E1CC-4093-8D00-69A1B877A183}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{79A45DF0-A4C0-4C5C-8D73-5633069B5AB1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{87DD92E8-3A51-4F11-A27A-D7F0E392A084}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{3F29078F-E968-4BBF-914A-C14E9E9053AB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{53F35B89-2E99-40C6-8489-81A8CFBDE47B}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [UDP Query User{6857BD51-C109-4A14-BE0E-236E4BADABAA}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [TCP Query User{1B913C34-2DEA-465C-B4AF-F0478C3604D2}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [UDP Query User{6E9D74FC-F1A2-400E-9926-98A4F719EE31}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [{CB1292DF-547A-4225-B447-A7CF9A1AF843}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{DAF16138-C0FB-4179-A6A8-5DF3FF390167}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe FirewallRules: [UDP Query User{82BF5BFC-EC69-4092-98FB-B299CDAD059E}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe FirewallRules: [{73A0BC91-D30C-4791-A427-715EA9C500AA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{86796E47-EB99-4916-BACB-2967A65E14EB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{EFAEE846-1759-4F70-A6FF-86B7449CB4A2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{48A53461-FCE7-4A5D-ACD6-387272CE8B2C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{469A731D-13DA-4D3E-BB89-207BAE65F4C6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{D88A371D-7671-42B9-87BB-F72D52A80278}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{058DE289-ACB7-491D-B16B-7F684C3A3F3D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{F125FF56-47A7-405C-8727-338099D9B436}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{ED6F9988-0AD6-441A-8F5F-BCD0BFC8236B}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [UDP Query User{9E2A97ED-6B26-4F70-BE14-218E65B14490}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [{D4CB0E40-90B9-489A-831E-236EA6BE6DC1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{293F9E14-6E7E-4DC1-8FBA-CEE79D5BCBB2}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{76CEB911-B258-459D-963A-F8B71E4A8AB6}] => (Allow) LPort=54010 FirewallRules: [{7D213076-29F2-40D4-92E9-CC4274B63F77}] => (Allow) LPort=49165 FirewallRules: [{A74E5788-619C-4AB8-B62E-DBB7CFB9B976}] => (Allow) LPort=5000 FirewallRules: [TCP Query User{C4E47B49-F94E-4559-BB5D-1C96688348B0}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe FirewallRules: [UDP Query User{FE0B45D0-DE05-474F-8531-831A5F53C150}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe FirewallRules: [TCP Query User{CE0F1D27-01E9-45EB-A33E-839D40D9B075}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [UDP Query User{3D17EF45-2CEF-4683-88C5-4B626DB2AC8E}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [{A1CDAA7C-8504-4A92-B537-99523681F143}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{923B94FB-9D8E-4E25-BF03-86BC271C5D6E}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [TCP Query User{FFDC21D7-07DA-4596-96F6-2606D1EE5523}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [UDP Query User{14F53A11-7ED1-4DE0-A7D2-97B462A28FBD}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [TCP Query User{55946F33-1BFB-4145-8AB1-5D1F22F492E7}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [UDP Query User{C090514C-6057-4356-8FF6-C331D79D3331}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [{970D3085-A7A4-4F79-B343-049A8BCA0A5C}] => (Allow) F:\fsetup.exe FirewallRules: [{2B7218D5-2AD3-4B90-A65B-D5408829DE19}] => (Allow) F:\fsetup.exe FirewallRules: [TCP Query User{542118CF-7A70-4724-8A79-A6EB75B4FFED}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe FirewallRules: [UDP Query User{D39C71E1-53A0-431D-AB76-ACC2297B9F8C}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe FirewallRules: [TCP Query User{10CE6C0D-E841-420D-90D5-DC3DAC394401}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe FirewallRules: [UDP Query User{04E6753E-4B85-4D1B-ABA4-A9478F312164}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe FirewallRules: [{AA815EF5-355D-4D28-A008-E21B73350E82}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{CB407730-B925-456F-AA28-CE95A904668F}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{4BE75D74-AF9E-40FE-9152-7E9E2059F0EC}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{FC013570-8818-49C7-B0EE-3CCB7A4C0201}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{26DEB5FB-BE8C-4DC4-A0B5-048BFF82B0AC}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{365B34C2-C733-431E-8642-4A93CCCBD74A}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{4BD8A3E4-BF87-42FC-A8B4-76310CBF3534}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{049AC890-1243-4FE2-8EF7-84F0BA451EAD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{7E20B448-3ED1-4F81-A122-E8A94D23D474}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [UDP Query User{DCEE4AC1-9E2A-42F7-AD9E-7E1457569345}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [{317403D4-D673-41E0-9FA7-D691E575DFE6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{FD9A778E-8629-4836-8AC3-C1F8257A39E1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C65A4598-15FC-4B7B-8B8E-0707C30116A1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{AA9F69DB-EB14-4AE5-B989-0FEACAB37859}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{A756DD02-76B3-411A-A389-9540F12347CA}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{F04E674E-45C2-4495-A8B5-44D0C60BD685}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{9C4BF95C-CB89-4999-BB0D-61D4F7BEA3E3}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{37AF3EA8-2C25-476F-BB39-27CC871F71FA}] => (Allow) C:\Program Files\Soluto\SolutoRemoteDirect.exe FirewallRules: [{B68280D6-21A4-4F84-9120-CDE12F4387B5}] => (Allow) C:\Program Files\Soluto\Soluto.exe FirewallRules: [{4DD06769-4B02-421C-B33F-3A814CDCF202}] => (Allow) C:\Program Files\Soluto\SolutoCleanup.exe FirewallRules: [{8789811D-F810-43A9-A24F-76E107F77FCA}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe FirewallRules: [{2F5EA5E9-9EB8-469B-AE8F-25800A72831C}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe FirewallRules: [{8B3A6641-9A02-4BBF-A3E3-E471BE7F2A9C}] => (Allow) C:\Program Files\Soluto\SolutoService.exe FirewallRules: [{E7147E98-EB39-4389-AA34-1C8F13036CEA}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PFInstOnline.exe FirewallRules: [{818B516A-0465-4991-834F-18450FBFDB0E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe FirewallRules: [{D93A30B2-2F50-4501-9A99-8163D5CEE919}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{36F8F835-FD92-413A-8422-C8B288FDFEFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{523F29E1-4B2C-4CFF-B172-219BBA061846}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe FirewallRules: [{485D813E-61CB-4ACC-A0E5-4605B70CD791}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe FirewallRules: [{06AFD3D5-E41F-43FA-93A1-D3BF6A35DF9E}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe FirewallRules: [{99EFE046-3B35-4BA0-AF8D-3343067636AD}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe FirewallRules: [{F29603EC-DA84-4DA0-9087-AEEA9BB682BE}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe FirewallRules: [{74F4A7EF-37C3-48B6-8186-D35FCDBFEDE3}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe FirewallRules: [{83EBD3A4-87A8-4B2E-95C0-17FBDAA35500}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{768B6FD9-DE8E-4019-94F4-317AC81ECE6C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{0EB65856-E6E3-4B5B-953C-375C0CC1F35E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{91D760C6-8120-489B-A05B-B1EC38BC73B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{7C818C20-03B9-42CC-89EE-075253F470D7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ==================== Wiederherstellungspunkte ========================= 22-12-2015 15:13:31 Geplanter Prüfpunkt 30-12-2015 18:14:08 Revo Uninstaller's restore point - QuickStores-Toolbar 1.0.0 30-12-2015 18:22:33 Revo Uninstaller's restore point - Vuze Remote Toolbar 30-12-2015 18:43:58 Revo Uninstaller's restore point - WSE_Binkiland ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Bluetooth-Peripheriegerät Description: Bluetooth-Peripheriegerät Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: Unknown Device Description: Unknown Device Class Guid: {36fc9e60-c465-11cf-8056-444553540000} Manufacturer: (Standard-USB-Hostcontroller) Service: Problem: : Windows has stopped this device because it has reported problems. (Code 43) Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation. Name: FKZAZUJ 52JWDUFO96 SCSI CdRom Device Description: CD-ROM-Laufwerk Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard-CD-ROM-Laufwerke) Service: cdrom Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (12/30/2015 07:55:55 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (12/30/2015 07:09:32 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (12/30/2015 06:42:21 PM) (Source: System Restore) (EventID: 8193) (User: ) Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Program Files (x86)\VS Revo Group\Revo Uninstaller\revouninstaller.exe Files (x86)\VS Revo Group\Revo Uninstaller\revouninstaller.exe"; Beschreibung = Revo Uninstaller's restore point - Windows Searchqu Toolbar; Fehler = 0x81000101). Error: (12/30/2015 05:09:09 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 55512191 Error: (12/30/2015 05:09:09 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 55512191 Error: (12/30/2015 05:09:09 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/29/2015 11:17:20 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (12/29/2015 10:25:15 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (12/29/2015 09:37:14 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (12/29/2015 07:17:11 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 18704 Systemfehler: ============= Error: (12/30/2015 07:57:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Soluto PCGenome Core Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/30/2015 07:57:47 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Soluto PCGenome Core Service erreicht. Error: (12/30/2015 07:52:34 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "PnP-X-IP-Busenumerator" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Error: (12/30/2015 07:52:29 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Der Dienst "HP Network Devices Support" wurde mit folgendem Fehler beendet: %%126 Error: (12/30/2015 07:50:24 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: UimBus Uim_IM Error: (12/30/2015 07:50:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "Soluto PCGenome Core Service" wurde aufgrund folgenden Fehlers nicht gestartet: %%1053 Error: (12/30/2015 07:50:15 PM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Soluto PCGenome Core Service erreicht. Error: (12/30/2015 07:46:03 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (12/30/2015 07:07:28 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "PnP-X-IP-Busenumerator" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Error: (12/30/2015 07:06:54 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Der Dienst "HP Network Devices Support" wurde mit folgendem Fehler beendet: %%126 CodeIntegrity: =================================== Date: 2015-12-30 19:57:57.601 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-30 19:57:32.882 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-30 19:53:55.342 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-30 19:52:55.307 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-30 19:22:24.088 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-30 19:21:38.563 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-30 19:13:18.544 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-30 19:11:51.080 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-30 19:10:42.551 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-30 19:10:39.780 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz Prozentuale Nutzung des RAM: 71% Installierter physikalischer RAM: 4063.19 MB Verfügbarer physikalischer RAM: 1156.02 MB Summe virtueller Speicher: 8124.58 MB Verfügbarer virtueller Speicher: 4511.57 MB ==================== Laufwerke ================================ Drive c: (OS) (Fixed) (Total:151.36 GB) (Free:32.89 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] Drive d: (Büro) (Fixed) (Total:48.83 GB) (Free:6.32 GB) NTFS Drive e: (Z***) (Fixed) (Total:12.94 GB) (Free:3.74 GB) NTFS Drive g: (Fotos) (Fixed) (Total:65.51 GB) (Free:14.11 GB) NTFS Drive h: (Videoprojekte) (Fixed) (Total:41.01 GB) (Free:19.68 GB) NTFS Drive p: (Videoschnitt) (Fixed) (Total:43.01 GB) (Free:7.79 GB) NTFS Drive q: (Container) (Fixed) (Total:19.24 GB) (Free:4.42 GB) NTFS Drive y: (Excelprojekte) (Fixed) (Total:7.81 GB) (Free:7.03 GB) NTFS Drive z: (Sonstiges) (Fixed) (Total:206.24 GB) (Free:76.85 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 298.1 GB) (Disk ID: 44854109) Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=151.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=133.6 GB) - (Type=05) Partition 4: (Not Active) - (Size=12.9 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 4BBD1113) Partition 1: (Not Active) - (Size=298.1 GB) - (Type=42) ==================== Ende von Addition.txt ============================ Hallo Rafael, mich würde jetzt mal interessieren wie wir weiter verfahren werden. Morgen ist ja bekanntlich Silvester. Ich denke mal das wir dann am 2 oder 3 weiter machen können/wollen oder... bzw heute abend noch was zeitlich möglich ist. Was ist dein Vorschlag? |
30.12.2015, 21:10 | #22 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Wir schreiben einfach wenn es uns ausgeht Schritt 1 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Keine Datei SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 FF SelectedSearchEngine: Binkiland FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei] CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEt CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X] C:\Users\Home\DMOrganizer.dat AlternateDataStreams: C:\ProgramData\Temp:0888F409 AlternateDataStreams: C:\ProgramData\Temp:11EFE63D AlternateDataStreams: C:\ProgramData\Temp:3969ACF7 AlternateDataStreams: C:\ProgramData\Temp:3991CD7D AlternateDataStreams: C:\ProgramData\Temp:4A1628E5 AlternateDataStreams: C:\ProgramData\Temp:5C4A588B AlternateDataStreams: C:\ProgramData\Temp:99AC3203 AlternateDataStreams: C:\ProgramData\Temp:A4E7D25F AlternateDataStreams: C:\ProgramData\Temp:A5FC8FA1 AlternateDataStreams: C:\ProgramData\Temp:C64BF02A AlternateDataStreams: C:\ProgramData\Temp:EC0279DC AlternateDataStreams: C:\ProgramData\Temp:FD000392 Task: {BFA0B1A9-7428-4972-8D29-A0527369CB6A} - \Binkiland cini -> Keine Datei <==== ACHTUNG emptytemp: Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Schritt 2 Öffne wieder FRST und kopiere das folgende in das weiße Feld: Code:
ATTFilter binkiland Es wird eine Search.txt erstellt werden, bitte poste diese wieder hier. Schritt 3 ESET Online Scanner
Schritt 4 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen. Hast du noch irgendwelche Probleme mit deinem Rechner? Wie verhält sich deine Auslastung? Bitte poste in deiner nächsten Antwort also:
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
30.12.2015, 21:15 | #23 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Jetzt muss ich zuerst mal was fragen. Scheinbar dreht es sich ja jetzt um dieses komische binkiland. Was ist das?? Ah und noch was. Was macht jetzt diese notepaddatei? |
30.12.2015, 21:28 | #24 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Binkiland ist einfach ein relativ hartnäckiges unerwünschtes Programm, das du auf deinem PC hattest/hast. darum mache ich danach eine extra Suche. Und die Textdatei ist eine Liste von Anweisungen für FRST
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
30.12.2015, 21:34 | #25 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter kannst du irgendwo sehen wie lange dieses Binkiland auf meinem Rechner schon ist? hier schon mal die Fixlog.txt Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015 durchgeführt von Home (2015-12-30 21:32:51) Run:1 Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 7 Geladene Profile: Home (Verfügbare Profile: Home) Start-Modus: Normal ============================================== fixlist Inhalt: ***************** HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Keine Datei SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 FF SelectedSearchEngine: Binkiland FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei] CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEt CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X] C:\Users\Home\DMOrganizer.dat AlternateDataStreams: C:\ProgramData\Temp:0888F409 AlternateDataStreams: C:\ProgramData\Temp:11EFE63D AlternateDataStreams: C:\ProgramData\Temp:3969ACF7 AlternateDataStreams: C:\ProgramData\Temp:3991CD7D AlternateDataStreams: C:\ProgramData\Temp:4A1628E5 AlternateDataStreams: C:\ProgramData\Temp:5C4A588B AlternateDataStreams: C:\ProgramData\Temp:99AC3203 AlternateDataStreams: C:\ProgramData\Temp:A4E7D25F AlternateDataStreams: C:\ProgramData\Temp:A5FC8FA1 AlternateDataStreams: C:\ProgramData\Temp:C64BF02A AlternateDataStreams: C:\ProgramData\Temp:EC0279DC AlternateDataStreams: C:\ProgramData\Temp:FD000392 Task: {BFA0B1A9-7428-4972-8D29-A0527369CB6A} - \Binkiland cini -> Keine Datei <==== ACHTUNG emptytemp: ***************** "HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Keine Datei SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 FF SelectedSearchEngine: Binkiland FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei] CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEt CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X] C:\Users\Home\DMOrganizer.dat C:\ProgramData\Temp" => "HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Keine Datei SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 FF SelectedSearchEngine: Binkiland FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei] CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEt CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X] C:\Users\Home\DMOrganizer.dat :0888F409 AlternateDataStreams: C:\ProgramData\Temp:11EFE63D AlternateDataStreams: C:\ProgramData\Temp:3969ACF7 AlternateDataStreams: C:\ProgramData\Temp:3991CD7D AlternateDataStreams: C:\ProgramData\Temp:4A1628E5 AlternateDataStreams: C:\ProgramData\Temp:5C4A588B AlternateDataStreams: C:\ProgramData\Temp:99AC3203 AlternateDataStreams: C:\ProgramData\Temp:A4E7D25F AlternateDataStreams: C:\ProgramData\Temp:A5FC8FA1 AlternateDataStreams: C:\ProgramData\Temp:C64BF02A AlternateDataStreams: C:\ProgramData\Temp:EC0279DC AlternateDataStreams: C:\ProgramData\Temp:FD000392 Task: {BFA0B1A9-7428-4972-8D29-A0527369CB6A} - \Binkiland cini -> Keine Datei <==== ACHTUNG emptytemp:" ADS nicht gefunden. ==== Ende von Fixlog 21:32:52 ==== |
30.12.2015, 21:38 | #26 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Der Fix hat nicht funktioniert. Es muss eine Zeile unter der nächsten stehen und nicht alle nebeneinander. Manchmal hilft es, bei meiner Codebox nicht auf "Aufklappen" zu drücken sondern direkt auf "Alles auswählen" und dann kopieren.
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
30.12.2015, 23:49 | #27 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter so Fixlog.txt zum Zweiten. Aber was ich jetzt festgestellt habe das er speziell im Chrome viele Daten gelöscht hat. Musste das so sein??? Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015 durchgeführt von Home (2015-12-30 21:42:11) Run:2 Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 7 Geladene Profile: Home (Verfügbare Profile: Home) Start-Modus: Normal ============================================== fixlist Inhalt: ***************** HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [CDRAutoRun] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\Explorer: [NoRecentDocsNetHood] 1 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {0743d3d7-f369-11e0-a486-00247eed28c3} - I:\Startme.exe HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {8e21365f-6b7d-11e0-9ee4-00247eed28c3} - D:\SETUP.cmd HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\MountPoints2: {f7c81a47-efb9-11de-a798-806e6f6e6963} - F:\AurLaunch\LaunchScreen.exe ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Keine Datei SearchScopes: HKLM -> DefaultScope {9BB47C17-9C68-4BB3-B188-DD9AF0FD2413} URL = SearchScopes: HKLM -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM -> {D50E2419-E5E1-4F12-80CA-4F531FC04860} URL = hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=1145&query={searchTerms}&invocationType=tb50hpcnnbie7-de-de SearchScopes: HKLM-x32 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 SearchScopes: HKLM-x32 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {23654B7C-0371-44D6-95EF-A42DDBEF7CFF} URL = hxxp://de.kelkoopartners.net/ctl/do/search?siteSearchQuery={searchTerms}&fromform=true&x=true&y=true&partner=hp&partnerId=96913933 FF SelectedSearchEngine: Binkiland FF Plugin-x32: @pages.tvunetworks.com/WebPlayer -> C:\Program Files (x86)\TVUPlayer\npTVUAx.dll [Keine Datei] CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEt CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei S2 HPSLPSVC; C:\Users\Home\AppData\Local\Temp\7zS73F1\hpslpsvc64.dll [X] C:\Users\Home\DMOrganizer.dat AlternateDataStreams: C:\ProgramData\Temp:0888F409 AlternateDataStreams: C:\ProgramData\Temp:11EFE63D AlternateDataStreams: C:\ProgramData\Temp:3969ACF7 AlternateDataStreams: C:\ProgramData\Temp:3991CD7D AlternateDataStreams: C:\ProgramData\Temp:4A1628E5 AlternateDataStreams: C:\ProgramData\Temp:5C4A588B AlternateDataStreams: C:\ProgramData\Temp:99AC3203 AlternateDataStreams: C:\ProgramData\Temp:A4E7D25F AlternateDataStreams: C:\ProgramData\Temp:A5FC8FA1 AlternateDataStreams: C:\ProgramData\Temp:C64BF02A AlternateDataStreams: C:\ProgramData\Temp:EC0279DC AlternateDataStreams: C:\ProgramData\Temp:FD000392 Task: {BFA0B1A9-7428-4972-8D29-A0527369CB6A} - \Binkiland cini -> Keine Datei <==== ACHTUNG emptytemp: ***************** HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\CDRAutoRun => Wert erfolgreich entfernt HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoRecentDocsNetHood => Wert erfolgreich entfernt "HKU\S-1-5-21-2055331987-1518689308-177053510-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{0743d3d7-f369-11e0-a486-00247eed28c3}" => Schlüssel erfolgreich entfernt HKCR\CLSID\{0743d3d7-f369-11e0-a486-00247eed28c3} => Schlüssel nicht gefunden. "HKU\S-1-5-21-2055331987-1518689308-177053510-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{8e21365f-6b7d-11e0-9ee4-00247eed28c3}" => Schlüssel erfolgreich entfernt HKCR\CLSID\{8e21365f-6b7d-11e0-9ee4-00247eed28c3} => Schlüssel nicht gefunden. "HKU\S-1-5-21-2055331987-1518689308-177053510-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f7c81a47-efb9-11de-a798-806e6f6e6963}" => Schlüssel erfolgreich entfernt HKCR\CLSID\{f7c81a47-efb9-11de-a798-806e6f6e6963} => Schlüssel nicht gefunden. "HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay" => Schlüssel erfolgreich entfernt HKCR\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => Schlüssel nicht gefunden. HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Wert erfolgreich wiederhergestellt "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF}" => Schlüssel erfolgreich entfernt HKCR\CLSID\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF} => Schlüssel nicht gefunden. "HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D50E2419-E5E1-4F12-80CA-4F531FC04860}" => Schlüssel erfolgreich entfernt HKCR\CLSID\{D50E2419-E5E1-4F12-80CA-4F531FC04860} => Schlüssel nicht gefunden. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF}" => Schlüssel erfolgreich entfernt HKCR\Wow6432Node\CLSID\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF} => Schlüssel nicht gefunden. "HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{2B3C2340-94E2-4C61-B6DF-044D73A4A925}" => Schlüssel erfolgreich entfernt HKCR\Wow6432Node\CLSID\{2B3C2340-94E2-4C61-B6DF-044D73A4A925} => Schlüssel nicht gefunden. "HKU\S-1-5-21-2055331987-1518689308-177053510-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF}" => Schlüssel erfolgreich entfernt HKCR\CLSID\{23654B7C-0371-44D6-95EF-A42DDBEF7CFF} => Schlüssel nicht gefunden. Firefox SelectedSearchEngine erfolgreich entfernt "HKLM\Software\Wow6432Node\MozillaPlugins\@pages.tvunetworks.com/WebPlayer" => Schlüssel erfolgreich entfernt Chrome StartupUrls => erfolgreich entfernt C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => nicht gefunden. C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => nicht gefunden. C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => nicht gefunden. C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => nicht gefunden. C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => nicht gefunden. C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => nicht gefunden. C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => nicht gefunden. C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => nicht gefunden. C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => nicht gefunden. C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => nicht gefunden. C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => nicht gefunden. C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => nicht gefunden. C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => nicht gefunden. C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => nicht gefunden. C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => nicht gefunden. C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => nicht gefunden. C:\Program Files (x86)\Sony\Media Go\npmediago.dll => nicht gefunden. C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => nicht gefunden. C:\Windows\system32\TVUAx\npTVUAx.dll => nicht gefunden. HPSLPSVC => Dienst erfolgreich entfernt C:\Users\Home\DMOrganizer.dat => erfolgreich verschoben C:\ProgramData\Temp => ":0888F409" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":11EFE63D" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":3969ACF7" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":3991CD7D" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":4A1628E5" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":5C4A588B" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":99AC3203" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":A4E7D25F" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":A5FC8FA1" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":C64BF02A" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":EC0279DC" ADS erfolgreich entfernt. C:\ProgramData\Temp => ":FD000392" ADS erfolgreich entfernt. "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BFA0B1A9-7428-4972-8D29-A0527369CB6A}" => Schlüssel erfolgreich entfernt "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BFA0B1A9-7428-4972-8D29-A0527369CB6A}" => Schlüssel erfolgreich entfernt HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Binkiland cini => Schlüssel nicht gefunden. EmptyTemp: => 1.4 GB temporäre Dateien entfernt. Das System musste neu gestartet werden. ==== Ende von Fixlog 21:43:36 ==== Code:
ATTFilter Farbar Recovery Scan Tool (x64) Version:29-12-2015 durchgeführt von Home (2015-12-30 22:01:50) Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 7 Start-Modus: Normal ================== Registry-Suche: "binkiland" =========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.htm\OpenWithProgids] "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.html\OpenWithProgids] "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.shtml\OpenWithProgids] "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.webp\OpenWithProgids] "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xht\OpenWithProgids] "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xhtml\OpenWithProgids] "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"="" [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W] ""="Binkiland HTML Document" [HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithProgids] "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"="" [HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithProgids] "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"="" [HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\OpenWithProgids] "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W"="" [HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W] [HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W] ====== Ende von Suche ====== das mit Schritt 3 --> ESET Online Scanner wird heute nix mehr. Das Tool läuft nun schon seit 01:19:00 und ist erst bei 7%. Das Tool benötigt scheinbar die ganze Nacht.... oder ist das unnormal das das so langsam läuft? |
31.12.2015, 01:03 | #28 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Nein das Programm braucht immer sehr lange, kannst du problemlos laufen lassen
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
31.12.2015, 08:24 | #29 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter hier nun das Ergebnis vom ESET Online Scanner Code:
ATTFilter ESETSmartInstaller@High as downloader log: all ok # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=e1b00f9b020dcb4cbfff6ab69488c96f # end=init # utc_time=2015-12-30 09:06:55 # local_time=2015-12-30 10:06:55 (+0100, Mitteleuropäische Zeit) # country="Germany" # osver=6.1.7601 NT Service Pack 1 Update Init Update Download Update Finalize Updated modules version: 27429 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # EOSSerial=e1b00f9b020dcb4cbfff6ab69488c96f # end=updated # utc_time=2015-12-30 09:29:50 # local_time=2015-12-30 10:29:50 (+0100, Mitteleuropäische Zeit) # country="Germany" # osver=6.1.7601 NT Service Pack 1 # product=EOS # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.7777 # api_version=3.1.1 # EOSSerial=e1b00f9b020dcb4cbfff6ab69488c96f # engine=27429 # end=finished # remove_checked=false # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2015-12-31 01:15:57 # local_time=2015-12-31 02:15:57 (+0100, Mitteleuropäische Zeit) # country="Germany" # lang=1031 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode_1='Bitdefender Antivirus' # compatibility_mode=2063 16777213 100 100 19665 130237117 0 0 # compatibility_mode_1='' # compatibility_mode=5893 16776574 100 94 56085811 203154407 0 0 # compatibility_mode_1='' # compatibility_mode=7937 16777213 100 100 158245893 166934169 0 0 # scanned=509900 # found=18 # cleaned=0 # scan_time=13565 sh=A47739F27C4BC8FD3A48B4A90B40679DF1218E1B ft=1 fh=ab4f3351c96b3042 vn="Win32/Toolbar.Conduit.Y evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert.dll.vir" sh=664270A860DDB3D6F23F617D0615070330A71A30 ft=1 fh=192f7aaecaa32147 vn="Win32/Toolbar.Conduit.Y evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert0.dll.vir" sh=0C73CCC63EC56232CA1EF6BF8573B3A9AB323052 ft=1 fh=d014c1be8c7ac6c1 vn="Variante von Win32/Toolbar.Conduit.B evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ConduitEngine\ConduitEngin.dll.vir" sh=57CD8DEAF43DF3A2F4703E5219A69935B119D0DB ft=1 fh=311781f1ea21501f vn="Variante von Win32/Toolbar.Conduit.P evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ConduitEngine\ConduitEngine.dll.vir" sh=685D65CCD52FD9D90C402CF9026344267E8B6FD9 ft=1 fh=532da5564656d18c vn="Variante von Win32/Toolbar.Conduit.AQ evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Program Files (x86)\ConduitEngine\prxConduitEngine.dll.vir" sh=61B7E90CDDCBD4092BB7046FF144F63246A5B4D0 ft=1 fh=dbccb0ef456bcd91 vn="Variante von Win32/Toolbar.Conduit.AJ evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Home\AppData\Local\Conduit\Chrome\CT2504091\UninstallerUI.exe.vir" sh=0DDC9EFBCBB739ECBC9645E0D81144ACB0DC139F ft=1 fh=2cd04407df9b26ee vn="Variante von Win32/Toolbar.Conduit.P evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Home\AppData\Local\Conduit\CT2504091\Vuze_RemoteAutoUpdaterHelper.exe.vir" sh=57CD8DEAF43DF3A2F4703E5219A69935B119D0DB ft=1 fh=311781f1ea21501f vn="Variante von Win32/Toolbar.Conduit.P evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Home\AppData\LocalLow\ConduitEngine\ConduitEngine.dll.vir" sh=57CD8DEAF43DF3A2F4703E5219A69935B119D0DB ft=1 fh=311781f1ea21501f vn="Variante von Win32/Toolbar.Conduit.P evtl. unerwünschte Anwendung" ac=I fn="C:\AdwCleaner\Quarantine\C\Users\Home\AppData\LocalLow\Vuze_Remote\tbVuz2.dll.vir" sh=9AC895227E99844E98E0A886E66D8CEE5BBF9CC8 ft=1 fh=2715e7aa80286db9 vn="Variante von Win32/InstallCore.ACL evtl. unerwünschte Anwendung" ac=I fn="C:\Program Files (x86)\Flash Player\vlccfg.exe" sh=2E3EC3DE33BEBF95A86F39BD8FA2A47564F65C08 ft=1 fh=c670ce6802e7e868 vn="Variante von Win32/Toolbar.Conduit.J evtl. unerwünschte Anwendung" ac=I fn="C:\Program Files (x86)\NCH Software\Debut\debutsetup_1.50_v1.50.exe" sh=C634AE4C9C2FE768B7D5D93CF13F3C1A8A242FFA ft=1 fh=c272f7e8fc5ffdbe vn="Variante von Win32/Toolbar.Conduit.J evtl. unerwünschte Anwendung" ac=I fn="C:\Program Files (x86)\NCH Software\Debut\uninst.exe" sh=E0B37C57E99FE566CE70DE1FE6B0A8E222BC133A ft=1 fh=040dd3f1fe168480 vn="Win32/Somoto.F evtl. unerwünschte Anwendung" ac=I fn="C:\Program Files (x86)\Vuze\.install4j\i4j_extf_20_5p83tu.exe" sh=3E37507BBD4C0287689634B2CDD77E59679681AF ft=1 fh=cbd9e88b633aff58 vn="Win32/Toolbar.Conduit.AP evtl. unerwünschte Anwendung" ac=I fn="C:\Program Files (x86)\Vuze\.install4j\user\mism.exe" sh=D9B09B46D16D525758605E327DFB6B35788EEA48 ft=0 fh=0000000000000000 vn="HTML/Ransom.B Trojaner" ac=I fn="C:\ProgramData\wvxvrwzbhkxwagk\main.html" sh=D9B09B46D16D525758605E327DFB6B35788EEA48 ft=0 fh=0000000000000000 vn="HTML/Ransom.B Trojaner" ac=I fn="C:\Users\All Users\wvxvrwzbhkxwagk\main.html" sh=2E3EC3DE33BEBF95A86F39BD8FA2A47564F65C08 ft=1 fh=c670ce6802e7e868 vn="Variante von Win32/Toolbar.Conduit.J evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Home\Desktop\Büro\debutsetup_1.50.exe" sh=075478ED256C74207FB1540F41BE4934B47D549B ft=1 fh=5a1a58d6a5023955 vn="Win32/Somoto.Q evtl. unerwünschte Anwendung" ac=I fn="C:\Users\Home\Downloads\streamtransport_chrome_setup1.1.6.2.exe" Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-12-2015 durchgeführt von Home (Administrator) auf NOTEBOOK-RS (31-12-2015 08:21:31) Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 9 Geladene Profile: Home (Verfügbare Profile: Home) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe (Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (AMD) C:\Windows\System32\atiesrxx.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe () C:\Program Files (x86)\AAVUpdateManager\aavus.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Soluto) C:\Program Files\Soluto\Soluto.exe (Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe (Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe () C:\Windows\SysWOW64\NMSAccess32.exe () C:\Program Files\Iomega\QuikProtect\QpMonitor.exe (Synaptics, Inc.) C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (Soluto) C:\Program Files\Soluto\SolutoLauncherService.exe (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe (Xacti LLC) C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe (AVG Technologies) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (Synaptics Incorporated) C:\Program Files (x86)\Synaptics\Scrybe\scrybe.exe (Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe () C:\Program Files\Rainmeter\Rainmeter.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Soluto) C:\Program Files\Soluto\SolutoService.exe (GlavSoft LLC.) C:\Program Files\Soluto\SolutoRemoteService.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\pmbxcrnmh.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated) HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [134416 2007-06-12] (Logitech, Inc.) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1757520 2015-02-02] (Bitdefender) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1702912 2000-01-01] (IDT, Inc.) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1104616 2013-10-10] (Acronis International GmbH) HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7843744 2014-02-04] (Acronis) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.) HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl) HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2087264 2014-09-11] (Wondershare) HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-02] (Hewlett-Packard) HKLM\...\Winlogon: [Userinit] c:\windows\system32\userinit.exe,c:\program files\soluto\soluto.exe /userinit, HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3673728 2012-11-06] (DT Soft Ltd) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8591272 2015-11-16] (Piriform Ltd) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\system: [WallpaperStyle] 2 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Policies\system: [WallpaperStyle] 2 HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> Lsa: [Notification Packages] scecli c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-06-11] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Scrybe.lnk [2012-01-14] ShortcutTarget: Scrybe.lnk -> C:\Windows\Installer\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}\NewShortcut11_8ACB210B42E44145A8C31F8E3DD765A3.exe (Acresso Software Inc.) Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2015-06-10] ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe () BootExecute: autocheck autochk * auto_reactivate \\?\Volume{f7c81a36-efb9-11de-a798-806e6f6e6963}\bootwiz\asrm.bin ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{7A31314E-4D6E-42E3-9220-5D359B8B3242}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{D2518004-8FB8-4822-8DAA-FD4DF64F2AD4}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll [2014-11-13] (Bitdefender) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard) BHO: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG) BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll [2014-11-13] (Bitdefender) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-18] (Oracle Corporation) BHO-x32: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-18] (Oracle Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard) BHO-x32: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files (x86)\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG) DPF: HKLM-x32 {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} file:///H:/Projekte%20Magix/Tatort/components/hidinputmonitorx.ocx DPF: HKLM-x32 {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} file:///H:/Projekte%20Magix/Tatort/components/A9.ocx DPF: HKLM-x32 {7030CC6C-1A88-4591-BB5A-651B9F7F0C30} file:///H:/Projekte%20Magix/Tatort/components/wmvhdrating.ocx Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029 FF Homepage: hxxps://www.google.de/ FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-28] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.) FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-14] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-28] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2013-08-28] (DivX, LLC) FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2010-10-28] (GARMIN Corp.) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-18] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-18] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-10-15] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/O1DPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-02] (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Extension: azid - Amazon Zoom Image Downloader - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\azid@craue.de.xpi [2015-10-12] FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\artur.dubovoy@gmail.com [2015-12-06] FF Extension: Secure Login - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\secureLogin@blueimp.net.xpi [2015-12-22] FF Extension: Kein Name - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\auto-plugin-checker@jetpack.xpi [2015-09-04] [ist nicht signiert] FF Extension: Flagfox - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2015-12-21] FF Extension: Video DownloadHelper - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-31] FF Extension: Adblock Plus - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-15] FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman [2014-03-27] [ist nicht signiert] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.de/ CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir=" CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\PepperFlash\pepflashplayer.dll () CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\ppGoogleNaClPluginChrome.dll => Keine Datei CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\pdf.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\kpionmjnkbpcdpcflammlgllecmejgjj\1.3_0\chvsharetvplg.dll => Keine Datei CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => Keine Datei CHR Plugin: (Microsoft® Windows Media Player Firefox Plugin) - C:\Program Files (x86)\Mozilla Firefox\plugins\np-mswmp.dll (Microsoft Corporation) CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin2.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin3.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin4.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin5.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin6.dll => Keine Datei CHR Plugin: (QuickTime Plug-in 7.7.3) - C:\Program Files (x86)\Mozilla Firefox\plugins\npqtplugin7.dll => Keine Datei CHR Plugin: (vShare.tv plug-in) - C:\Program Files (x86)\Mozilla Firefox\plugins\npvsharetvplg.dll => Keine Datei CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation) CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation) CHR Plugin: (DivX VOD Helper Plug-in) - C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.) CHR Plugin: (DivX Plus Web Player) - C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll => Keine Datei CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.) CHR Plugin: (Picasa) - C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll (Google, Inc.) CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.124\npGoogleUpdate3.dll => Keine Datei CHR Plugin: (Java(TM) Platform SE 7 U11) - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll => Keine Datei CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll => Keine Datei CHR Plugin: (Media Go Detector) - C:\Program Files (x86)\Sony\Media Go\npmediago.dll => Keine Datei CHR Plugin: (VLC Web Plugin) - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN) CHR Plugin: (Unity Player) - C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) CHR Plugin: (Shockwave for Director) - C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.) CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll => Keine Datei CHR Plugin: (TVU Web Player for FireFox) - C:\Windows\system32\TVUAx\npTVUAx.dll => Keine Datei CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Docs) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05] CHR Extension: (Google Drive) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22] CHR Extension: (YouTube) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25] CHR Extension: (Bitdefender Wallet) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl [2014-11-07] CHR Extension: (Google-Suche) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27] CHR Extension: (Video Downloader professional) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-12-30] CHR Extension: (Google Docs Offline) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-17] CHR Extension: (WhatFont) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2015-08-18] CHR Extension: (Skype) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-19] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25] CHR Extension: (chromeIPass) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompiailgknfdndiefoaoiligalphfdae [2014-12-24] CHR Extension: (Unblock Youku) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnfnkhpgegpcingjbfihlkjeighnddk [2015-11-24] CHR Extension: (Google Mail) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28] CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-04-27] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AAV UpdateService; C:\Program Files (x86)\AAVUpdateManager\aavus.exe [128296 2008-10-24] () R2 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1046952 2015-11-12] (AVG Technologies CZ, s.r.o.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.) R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [Datei ist nicht signiert] S4 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert] S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert] S3 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [Datei ist nicht signiert] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [72992 2014-07-07] (Hewlett-Packard Company) S3 HRService; C:\Program Files (x86)\Haufe\iDesk\iDeskService\iDeskService.exe [71024 2010-10-25] () S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert] R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-10-19] () R2 NMSAccess; C:\Windows\SysWOW64\NMSAccess32.exe [71096 2009-01-12] () R2 QPCopyEngine; C:\Program Files\Iomega\QuikProtect\QpMonitor.exe [394544 2010-06-24] () R2 ScrybeUpdater; C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe [1300264 2011-05-27] (Synaptics, Inc.) R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) R2 SolutoLauncherService; C:\Program Files\Soluto\SolutoLauncherService.exe [182848 2013-11-14] (Soluto) R3 SolutoRemoteService; C:\Program Files\Soluto\SolutoRemoteService.exe [1942016 2013-11-14] (GlavSoft LLC.) [Datei ist nicht signiert] R2 sp_rssrv; C:\Program Files (x86)\Spyware Terminator\sp_rsser.exe [1033255 2010-09-29] (Xacti LLC) [Datei ist nicht signiert] R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2000-01-01] (IDT, Inc.) [Datei ist nicht signiert] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH) R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2973400 2015-08-04] (AVG Technologies) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2014-11-13] (Bitdefender) R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [44760 2015-08-04] (AVG Technologies) R2 UxTuneUp; C:\Windows\SysWOW64\uxtuneup.dll [36568 2015-08-04] (AVG Technologies) R2 vsserv; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1538672 2015-02-02] (Bitdefender) S4 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2013-11-02] (Western Digital Technologies, Inc.) S4 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [270704 2013-11-02] (Western Digital Technologies, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1288472 2015-02-02] (BitDefender) R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [263032 2015-02-02] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-11-13] (BitDefender) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL) S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc) R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx64.sys [34512 2015-02-06] () S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC) R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-05-20] (Paragon Software Group) R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2000-01-01] (JMicron Technology Corp.) R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-09-08] (Lavasoft AB) S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42944 2010-11-06] (hxxp://libusb-win32.sourceforge.net) R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2015-12-31] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation) S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] () S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] () S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [585944 2014-12-31] (Realtek Semiconductor Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-12-03] (Duplex Secure Ltd.) R2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [50696 2010-07-07] (Windows (R) Win 7 DDK provider) R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-02-08] (Acronis International GmbH) R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2014-02-08] (Acronis International GmbH) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2015-02-02] (BitDefender S.R.L.) R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-06-25] (TuneUp Software) S1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [50768 2010-07-14] (Windows (R) 2000 DDK provider) S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [566864 2010-07-14] (Paragon) R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2014-02-08] (Acronis International GmbH) U3 audmuowe; C:\Windows\System32\Drivers\audmuowe.sys [0 ] (Emulex) <==== ACHTUNG (Null Byte Datei/Ordner) S3 clwvd; system32\DRIVERS\clwvd.sys [X] S3 cpuz132; \??\C:\Users\Home\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [X] R3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X] U4 eabfiltr; kein ImagePath S3 WPRO_40_1340; system32\drivers\WPRO_40_1340.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-30 19:55 - 2015-12-30 19:55 - 00008364 _____ C:\Users\Home\Desktop\mbam.txt 2015-12-30 19:14 - 2015-12-31 05:45 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-12-30 19:13 - 2015-12-30 19:13 - 00001064 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-12-30 19:13 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-12-30 19:13 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-12-30 19:13 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2015-12-30 18:54 - 2015-12-30 18:58 - 00000000 ____D C:\AdwCleaner 2015-12-30 18:11 - 2015-12-30 18:11 - 00001226 _____ C:\Users\Home\Desktop\Revo Uninstaller.lnk 2015-12-30 18:11 - 2015-12-30 18:11 - 00000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2015-12-30 18:11 - 2015-12-30 18:11 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2015-12-30 01:01 - 2015-12-30 01:06 - 00256514 _____ C:\TDSSKiller.3.1.0.9_30.12.2015_01.01.45_log.txt 2015-12-30 00:23 - 2015-12-30 00:23 - 00001082 _____ C:\Users\Home\Desktop\Hilfe 100 % CPU - Verknüpfung.lnk 2015-12-29 22:20 - 2015-12-29 22:20 - 00000376 _____ C:\Users\Home\AppData\Roamingprivacy.xml 2015-12-29 22:19 - 2015-12-29 22:26 - 00007892 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_22.19.36_log.txt 2015-12-29 22:12 - 2015-12-29 22:12 - 00000000 ____D C:\TDSSKiller_Quarantine 2015-12-29 21:51 - 2015-12-31 08:20 - 00000000 ____D C:\Users\Home\Downloads\Hilfe 100 % CPU 2015-12-29 21:40 - 2015-12-29 22:12 - 00510822 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_21.40.36_log.txt 2015-12-29 19:30 - 2015-12-31 08:21 - 00000000 ____D C:\FRST 2015-12-23 17:24 - 2015-12-23 17:24 - 00000657 _____ C:\Users\Home\Desktop\Steffi - Verknüpfung.lnk 2015-12-23 16:51 - 2015-12-23 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-12-20 12:59 - 2015-12-20 12:59 - 00000000 ____D C:\Users\Home\Documents\Applian 2015-12-20 12:56 - 2015-12-20 15:20 - 00000000 ____D C:\Windows\Jaksta 2015-12-20 12:56 - 2015-12-20 13:11 - 00000000 ____D C:\Users\Home\AppData\Local\Jaksta_Technologies_Pty_L 2015-12-20 12:37 - 2015-12-20 13:13 - 00000000 ____D C:\Users\Home\AppData\Local\JDownloader v2.0 2015-12-19 15:36 - 2015-12-19 15:36 - 00001053 _____ C:\Users\Public\Desktop\StreamTransport.lnk 2015-12-19 15:36 - 2015-12-19 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamTransport 2015-12-19 15:36 - 2015-12-19 15:36 - 00000000 ____D C:\Program Files (x86)\StreamTransport 2015-12-19 15:35 - 2014-07-09 11:33 - 15123328 _____ (hxxp://www.streamtransport.com/ ) C:\Users\Home\Downloads\streamtransport_chrome_setup1.1.6.2.exe 2015-12-15 22:37 - 2015-12-15 22:42 - 00007154 _____ C:\Users\Home\Documents\starburn.txt 2015-12-15 22:37 - 2015-12-15 22:37 - 00000000 ____D C:\ProgramData\Wondershare 2015-12-15 22:36 - 2015-12-15 22:36 - 00001105 _____ C:\Users\Public\Desktop\Wondershare Filmora.lnk 2015-12-15 22:36 - 2015-12-15 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\Wondershare 2015-12-15 22:36 - 2015-12-15 22:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare 2015-12-15 22:35 - 2015-12-15 22:43 - 00000000 ____D C:\Users\Home\Documents\Wondershare Filmora 2015-12-15 22:35 - 2015-12-15 22:35 - 00000000 ____D C:\ProgramData\Wondershare Video Editor 2015-12-15 22:35 - 2015-12-15 22:35 - 00000000 ____D C:\Program Files (x86)\Wondershare 2015-12-15 22:33 - 2015-12-15 22:35 - 00000000 ____D C:\Users\Public\Documents\Wondershare 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\Documents\FlashIntegro 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\VideoEditor 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\FlashIntegro 2015-12-15 22:06 - 2015-12-15 22:06 - 00001164 _____ C:\Users\Home\Desktop\VSDC Free Video Editor.lnk 2015-12-15 22:06 - 2015-12-15 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro 2015-12-15 22:06 - 2015-12-15 22:06 - 00000000 ____D C:\Program Files (x86)\FlashIntegro 2015-12-15 22:06 - 2014-12-09 12:21 - 00081792 _____ (Flash-Integro LLC) C:\Windows\SysWOW64\mslvddsfilter2.ax 2015-12-15 22:06 - 2011-12-07 18:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\Lagarith.dll 2015-12-15 22:06 - 2005-08-01 18:43 - 00245760 _____ () C:\Windows\SysWOW64\lame.ax 2015-12-15 22:06 - 2004-12-10 09:03 - 00438272 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll 2015-12-15 22:06 - 2004-02-04 20:11 - 00081920 _____ (fccHandler) C:\Windows\SysWOW64\AC3ACM.acm 2015-12-15 22:06 - 2003-05-22 11:26 - 00221215 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divxdec.ax 2015-12-15 22:06 - 2003-05-21 22:50 - 00261632 _____ (MainConcept) C:\Windows\SysWOW64\mcdvd_32.dll 2015-12-15 22:06 - 2003-05-21 22:50 - 00156910 _____ C:\Windows\WMSysPr8.prx 2015-12-15 22:06 - 2003-05-21 22:50 - 00082944 _____ (Voxware, Inc.) C:\Windows\SysWOW64\vct3216.acm 2015-12-15 22:06 - 2003-05-21 22:50 - 00038912 _____ (NCT Company) C:\Windows\SysWOW64\alf2cd.acm 2015-12-15 22:06 - 2003-05-21 22:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll 2015-12-15 22:06 - 2003-03-25 04:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\L3CODECX.AX 2015-12-15 22:06 - 2002-08-19 23:41 - 00413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll 2015-12-15 22:06 - 2000-03-14 19:55 - 00013239 _____ (SHARP Corporation) C:\Windows\SysWOW64\Scg726.acm 2015-12-15 20:00 - 2015-12-15 20:00 - 00200764 _____ C:\Users\Home\Desktop\Anzeige Kolb.pdf 2015-12-14 22:05 - 2015-12-14 22:05 - 24386352 _____ (Siber Systems) C:\Users\Home\Downloads\GoodSync-Setup.exe 2015-12-12 10:57 - 2015-12-12 10:57 - 00001067 _____ C:\Users\Home\Desktop\KeePass 2.lnk 2015-12-11 22:27 - 2015-12-11 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\ApplicationHistory 2015-12-11 22:27 - 2015-12-11 22:27 - 00000092 _____ C:\Users\Home\AppData\Local\fusioncache.dat 2015-12-11 21:01 - 2015-12-11 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-12-07 21:29 - 2015-12-07 21:29 - 00002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2015-12-07 21:29 - 2015-12-07 21:29 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk 2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\Program Files\CCleaner 2015-12-03 20:32 - 2015-12-03 20:32 - 00000993 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-31 08:09 - 2015-07-25 12:04 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2015-12-31 07:41 - 2014-03-16 22:56 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job 2015-12-31 07:41 - 2014-03-16 22:56 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job 2015-12-31 07:36 - 2013-02-16 23:12 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2015-12-31 07:30 - 2012-12-17 11:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2015-12-31 05:30 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2015-12-31 05:30 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2015-12-31 01:36 - 2013-02-16 23:12 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2015-12-31 00:32 - 2009-12-30 19:59 - 00003938 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{5E08B2BB-8B59-4E04-AFC6-843827792A81} 2015-12-30 21:50 - 2012-11-11 23:17 - 00000000 ___RD C:\Users\Home\Dropbox 2015-12-30 21:50 - 2012-11-11 22:00 - 00000000 ____D C:\Users\Home\AppData\Roaming\Dropbox 2015-12-30 21:47 - 2015-07-25 12:03 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2015-12-30 21:47 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-12-30 21:45 - 2014-03-24 01:26 - 00291369 _____ C:\bdlog.txt 2015-12-30 21:42 - 2010-01-24 09:02 - 00000000 ____D C:\Users\Home\AppData\LocalLow\Temp 2015-12-30 21:42 - 2009-12-23 23:38 - 00000000 ____D C:\Users\Home 2015-12-30 20:02 - 2009-07-14 04:20 - 00000000 ____D C:\Windows 2015-12-30 19:47 - 2011-08-31 23:22 - 00000000 ____D C:\Windows\HPQ 2015-12-30 18:58 - 2015-02-01 12:28 - 00000008 __RSH C:\Users\Home\ntuser.pol 2015-12-30 18:58 - 2011-10-14 22:55 - 00000008 __RSH C:\ProgramData\ntuser.pol 2015-12-30 17:09 - 2014-02-08 12:05 - 00000000 ___RD C:\Users\Home\Sync 2015-12-29 07:46 - 2011-02-11 00:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\TeamViewer 2015-12-28 22:43 - 2012-02-27 18:28 - 00000000 ____D C:\Users\Home\.Zettelkasten 2015-12-28 22:31 - 2012-12-17 11:41 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-12-28 22:31 - 2012-04-05 21:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-12-28 22:31 - 2011-06-17 20:10 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-12-28 20:51 - 2011-08-22 08:48 - 00000000 ____D C:\Users\Home\AppData\Roaming\vlc 2015-12-28 20:22 - 2015-10-22 20:31 - 00000026 _____ C:\Users\Home\AppData\Local\isoworkshop.ini 2015-12-25 13:23 - 2012-04-25 19:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-12-23 18:38 - 2010-05-30 10:42 - 00000000 ___RD C:\Users\Home\Desktop\Büro 2015-12-23 18:30 - 2014-12-14 14:49 - 00000000 ____D C:\Users\Home\Desktop\Anwendungen 2015-12-23 18:25 - 2014-01-03 23:23 - 00000000 ____D C:\Users\Home\Desktop\Videoschnitt 2015-12-22 12:51 - 2011-02-11 00:26 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2015-12-19 21:43 - 2013-07-31 19:56 - 00668984 _____ C:\Windows\system32\FNTCACHE.DAT 2015-12-17 22:47 - 2014-10-24 20:20 - 00003834 _____ C:\Windows\System32\Tasks\Google Update 2015-12-17 22:46 - 2015-10-30 21:33 - 00000000 ____D C:\Users\Home\AppData\Local\Microsoft Help 2015-12-17 22:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2015-12-17 12:17 - 2009-12-28 15:17 - 00000000 ____D C:\Users\Home\AppData\Roaming\Mozilla 2015-12-15 22:37 - 2013-07-31 19:58 - 00202240 _____ C:\Users\Home\AppData\Local\GDIPFONTCACHEV1.DAT 2015-12-15 22:37 - 2009-07-14 05:57 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-12-13 17:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration 2015-12-12 11:02 - 2013-03-22 21:05 - 00000000 ____D C:\Users\Home\AppData\Roaming\KeePass 2015-12-12 10:57 - 2013-06-30 11:16 - 00001079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk 2015-12-12 10:57 - 2013-03-22 20:44 - 00000000 ____D C:\Program Files (x86)\KeePass Password Safe 2 2015-12-12 00:13 - 2011-09-13 21:54 - 00000000 ____D C:\Users\Home\AppData\Roaming\dvdcss 2015-12-11 21:01 - 2015-07-25 12:03 - 00000000 ____D C:\Program Files (x86)\Dropbox 2015-12-11 00:33 - 2012-04-14 00:02 - 00000000 ____D C:\ProgramData\tmp 2015-12-10 09:17 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-12-07 22:19 - 2010-10-28 00:06 - 00000000 ____D C:\Users\Home\AppData\Roaming\DAEMON Tools Lite 2015-12-07 22:19 - 2010-07-12 20:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\PhotoScape 2015-12-07 22:19 - 2010-01-01 19:25 - 00000000 ____D C:\Users\Home\AppData\Roaming\Azureus 2015-12-07 22:19 - 2009-12-27 19:22 - 00000000 ____D C:\Users\Home\AppData\Roaming\Skype 2015-12-06 10:08 - 2009-12-27 19:22 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-12-05 01:31 - 2013-02-16 23:12 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-12-05 01:31 - 2013-02-16 23:12 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-12-02 21:20 - 2014-08-23 23:02 - 00000000 ____D C:\ProgramData\Avg 2015-12-02 21:09 - 2013-02-24 11:34 - 00004020 _____ C:\Windows\System32\Tasks\MUI StartMenu Application 2015-12-02 14:24 - 2013-07-14 10:55 - 00000000 ____D C:\Users\Home\.gimp-2.8 2015-12-02 07:36 - 2014-03-16 22:56 - 00004084 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA 2015-12-02 07:36 - 2014-03-16 22:56 - 00003688 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2010-01-06 11:53 - 2010-12-29 22:04 - 0000030 _____ () C:\Program Files (x86)\Exiferupdate.ini 2011-11-09 20:47 - 2011-11-09 20:48 - 0000288 _____ () C:\Users\Home\AppData\Roaming\.backup.dm 2012-01-08 21:35 - 2012-01-15 21:40 - 0000598 _____ () C:\Users\Home\AppData\Roaming\AutoGK.ini 2012-11-29 19:33 - 2014-12-14 12:35 - 0000307 _____ () C:\Users\Home\AppData\Roaming\burnaware.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000096 _____ () C:\Users\Home\AppData\Roaming\Camdata.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamLayout.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamShapes.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0004534 _____ () C:\Users\Home\AppData\Roaming\CamStudio.cfg 2012-05-28 20:08 - 2012-05-28 20:08 - 0000000 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.Data.ini 2012-05-28 20:08 - 2012-05-28 20:08 - 0001206 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.ini 2011-09-13 21:13 - 2011-09-13 21:13 - 0099384 _____ () C:\Users\Home\AppData\Roaming\inst.exe 2010-01-14 00:44 - 2010-01-14 00:44 - 0031793 _____ () C:\Users\Home\AppData\Roaming\mdbu.bin 2010-02-20 00:34 - 2010-03-28 22:30 - 0038276 _____ () C:\Users\Home\AppData\Roaming\Microsoft Excel.ADR 2011-09-13 21:13 - 2011-09-13 21:13 - 0007859 _____ () C:\Users\Home\AppData\Roaming\pcouffin.cat 2011-09-13 21:13 - 2011-09-13 21:13 - 0001167 _____ () C:\Users\Home\AppData\Roaming\pcouffin.inf 2011-09-13 21:14 - 2011-09-13 21:14 - 0000034 _____ () C:\Users\Home\AppData\Roaming\pcouffin.log 2011-09-13 21:13 - 2011-09-13 21:13 - 0082816 _____ (VSO Software) C:\Users\Home\AppData\Roaming\pcouffin.sys 2015-09-11 20:01 - 2015-09-11 20:01 - 0001181 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt 2015-09-11 20:01 - 2015-09-11 20:01 - 0000000 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt 2015-02-06 17:44 - 2015-02-06 17:44 - 0000096 _____ () C:\Users\Home\AppData\Roaming\version2.xml 2013-02-03 23:24 - 2015-10-10 10:14 - 0080896 _____ () C:\Users\Home\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-12-11 22:27 - 2015-12-11 22:27 - 0000092 _____ () C:\Users\Home\AppData\Local\fusioncache.dat 2015-10-22 20:31 - 2015-12-28 20:22 - 0000026 _____ () C:\Users\Home\AppData\Local\isoworkshop.ini 2014-12-07 13:33 - 2014-12-07 13:33 - 0007931 _____ () C:\Users\Home\AppData\Local\recently-used.xbel 2013-04-02 13:55 - 2015-06-09 22:58 - 0007663 _____ () C:\Users\Home\AppData\Local\Resmon.ResmonCfg 2014-03-22 10:49 - 2014-03-22 10:49 - 0617204 _____ () C:\ProgramData\1395480845.bdinstall.bin 2014-04-27 16:55 - 2014-04-27 16:55 - 0240135 _____ () C:\ProgramData\1398614049.bdinstall.bin 2014-04-27 16:59 - 2014-04-27 17:01 - 0001545 _____ () C:\ProgramData\1398614324.1288.bin 2014-04-27 17:02 - 2014-04-27 17:02 - 0002247 _____ () C:\ProgramData\1398614324.1620.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0017887 _____ () C:\ProgramData\1398614324.2428.bin 2014-04-27 17:14 - 2014-04-27 17:14 - 0081185 _____ () C:\ProgramData\1398614324.3016.bin 2014-04-27 16:59 - 2014-04-27 17:02 - 0017801 _____ () C:\ProgramData\1398614324.3400.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0010224 _____ () C:\ProgramData\1398614324.3536.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0001090 _____ () C:\ProgramData\1398614324.3736.bin 2014-04-27 16:59 - 2014-04-27 17:14 - 0109821 _____ () C:\ProgramData\1398614324.4176.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0002736 _____ () C:\ProgramData\1398614324.4392.bin 2014-04-27 16:59 - 2014-04-27 17:02 - 0001090 _____ () C:\ProgramData\1398614324.4412.bin 2014-04-27 16:58 - 2014-04-27 17:14 - 0125567 _____ () C:\ProgramData\1398614324.5048.bin 2014-04-27 16:58 - 2014-04-27 17:01 - 0009868 _____ () C:\ProgramData\1398614324.5076.bin 2014-04-27 16:58 - 2014-04-27 17:14 - 0134906 _____ () C:\ProgramData\1398614324.5080.bin 2014-04-27 17:16 - 2014-04-27 17:16 - 0062879 _____ () C:\ProgramData\1398615359.bdinstall.bin 2014-04-27 17:47 - 2014-04-27 17:47 - 0670431 _____ () C:\ProgramData\1398615493.bdinstall.bin 2009-12-23 23:54 - 2012-01-26 19:18 - 0000190 _____ () C:\ProgramData\HPWALog.txt 2015-06-09 23:00 - 2015-06-12 17:59 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc 2012-08-12 04:28 - 2012-08-12 04:28 - 0000051 _____ () C:\ProgramData\zdtckhrezdorpjg 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log 2009-08-20 10:08 - 2009-08-20 10:08 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log 2009-08-20 10:03 - 2009-08-20 10:04 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log 2009-12-23 13:06 - 2009-12-23 13:06 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log 2009-08-20 10:02 - 2009-08-20 10:03 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log 2009-08-20 10:04 - 2009-08-20 10:08 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-12-31 02:48 ==================== Ende von FRST.txt ============================ |
31.12.2015, 08:31 | #30 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter und hier die Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015 durchgeführt von Home (2015-12-31 08:22:36) Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU\Schritt 9 Windows 7 Home Premium Service Pack 1 (X64) (2009-12-23 22:38:53) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-2055331987-1518689308-177053510-500 - Administrator - Disabled) ASPNET (S-1-5-21-2055331987-1518689308-177053510-1012 - Limited - Enabled) Gast (S-1-5-21-2055331987-1518689308-177053510-501 - Limited - Disabled) Home (S-1-5-21-2055331987-1518689308-177053510-1000 - Administrator - Enabled) => C:\Users\Home HomeGroupUser$ (S-1-5-21-2055331987-1518689308-177053510-1002 - Limited - Enabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D} AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) [verify-U]_AVS_IE_Add-on (HKLM-x32\...\[verify-U]_AVS_IE_Add-on) (Version: 1.0.0.3 - cybits AG) 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) AAVUpdateManager (HKLM-x32\...\{DF6FE172-006A-4324-AF7F-ACFE4BA290FE}) (Version: 12.00.0000 - Akademische Arbeitsgemeinschaft) ABBYY FineReader 9.0 Professional Edition (HKLM-x32\...\{F9000000-0001-0000-0000-074957833700}) (Version: 9.00.453.55019 - ABBYY) ABBYY PDF Transformer 2.0 (HKLM-x32\...\{FA200000-0001-0000-0000-074957833700}) (Version: 2.0.1147.49010 - ABBYY Software Ltd.) Acronis True Image 2014 (HKLM-x32\...\{3ECDD663-5AF8-489B-9E3C-561F33A271BD}Visible) (Version: 17.0.6673 - Acronis) Acronis True Image 2014 (x32 Version: 17.0.6673 - Acronis) Hidden Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated) Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.) Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.) AMD Catalyst Install Manager (HKLM\...\{ACF4E7FE-650D-9BD7-BAE5-1AD061F40F69}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Anti-Twin (Installation 14.02.2010) (HKLM-x32\...\Anti-Twin 2010-02-14 18.44.43) (Version: - Joerg Rosenthal, Germany) Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.) Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.) AVCutty 3.5 (HKLM-x32\...\AVCutty) (Version: 3.5 - ) AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies) AVG PC TuneUp 2015 (de-DE) (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden AVG PC TuneUp 2015 (HKLM-x32\...\AVG PC TuneUp) (Version: 15.0.1001.638 - AVG Technologies) AVG PC TuneUp 2015 (x32 Version: 15.0.1001.638 - AVG Technologies) Hidden AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version: - AVM Berlin) Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 17.27.0.1146 - Bitdefender) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5300 - Broadcom Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.8.2631 - CDBurnerXP) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP) CDDRV_Installer (x32 Version: 4.20 - Logitech) Hidden CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.79.0.2015 - Georgy Berdyshev) Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Content Pack (HKLM\...\{832191A7-9336-4DCD-94EF-F29955DEA165}) (Version: 1.0.0.0 - MAGIX Software GmbH) CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.46.1.0327 - DT Soft Ltd) Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 2.05 - NCH Software) DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.84 - DivX, LLC) dm-Fotowelt (HKLM-x32\...\dm-Fotowelt) (Version: 6.0.5 - CEWE Stiftung u Co. KGaA) Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.) Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden eMedia Piano Einstieg Für Dummies (HKLM-x32\...\{D0D24351-FF92-450e-8143-6D848C6EFAC6}) (Version: - eMedia Piano Einstieg Für Dummies) ENE CIR Receiver Driver (HKLM\...\FFE7D41DF3C645075BB149E21988B63996C34187) (Version: 2.7.4.0 - ENE) Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG) FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden FormatFactory 3.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.5.0 - Free Time) FOTOParadies (HKLM-x32\...\{A606BBD1-0BC4-45C1-8C26-C1471D85DAE4}}_is1) (Version: 3.1.10.105 - Foto Online Service GmbH) Garmin BaseCamp (HKLM-x32\...\{81EF7DBD-909A-455B-8B32-24B8CDC75039}) (Version: 4.3.3 - Garmin Ltd or its subsidiaries) Garmin Communicator Plugin (HKLM-x32\...\{B1EE1CC5-6CED-4801-BFFF-8454F21A245A}) (Version: 2.9.3 - Garmin Ltd or its subsidiaries) Garmin TOPO Deutschland 2010 (HKLM-x32\...\{C7C82ED1-E5AD-48CF-8B92-38DD9B49610C}) (Version: 4.0.0.0 - Garmin Ltd or its subsidiaries) Garmin Trip and Waypoint Manager v5 (HKLM-x32\...\{414A373B-59DF-4102-94CA-9FE9A74CBDDA}) (Version: 5.0.0.0 - Garmin Ltd or its subsidiaries) Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries) Garmin WebUpdater (HKLM-x32\...\{00FE2935-FB56-4410-AB5F-D6E70C1771D2}) (Version: 2.5.6 - Garmin Ltd or its subsidiaries) GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.) Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.) Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Talk Plugin (HKLM-x32\...\{36A52BCF-AC3D-32F1-AD5F-A09769EB8887}) (Version: 4.1.3.13728 - Google) Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Google+ Auto Backup (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.) GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.) Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2 (HKLM-x32\...\Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2) (Version: - ) Haufe iDesk-Service (HKLM-x32\...\{27F10580-E040-11DF-8C28-005056B12123}) (Version: 10.10.25.7810 - Haufe) Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden HP 3D DriveGuard (HKLM\...\{7FD7F421-39B2-4CAC-BC41-7D83DDBAB329}) (Version: 4.0.3.1 - Hewlett-Packard) HP Advisor (HKLM-x32\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard) HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.0.3123 - Hewlett-Packard) HP MediaSmart Internet TV (HKLM-x32\...\InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}) (Version: 3.0.1916 - Hewlett-Packard) HP MediaSmart Live TV (HKLM-x32\...\InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}) (Version: 3.0.1924 - Hewlett-Packard) HP MediaSmart Movie Themes (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.0.3102 - Hewlett-Packard) HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.0.3123 - Hewlett-Packard) HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.0.30.1 - Hewlett-Packard) HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.1.1208 - Hewlett-Packard) HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.16.1 - Hewlett-Packard Company) HP Setup (HKLM-x32\...\{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}) (Version: 1.2.3220.3079 - Hewlett-Packard) HP Support Solutions Framework (HKLM-x32\...\{C43602FE-988C-47BA-9F9F-B95FDDAFB624}) (Version: 11.50.0031 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard) HP User Guides 0153 (HKLM-x32\...\{2EBA8202-FBD5-4004-81EA-BDC38C054CE2}) (Version: 1.01.0000 - Hewlett-Packard) HP Wireless Assistant (HKLM-x32\...\{F9A43C0C-F274-4EC0-B02E-202C15C09C00}) (Version: 3.50.12.1 - Hewlett-Packard) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT) ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Indeo® software (HKLM-x32\...\Indeo® software) (Version: - ) Intel(R) PROSet/Wireless WiFi-Software (HKLM\...\{D75AEB5B-FA18-4BD4-9EED-54CA46DB5AE8}) (Version: 13.04.0000 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Internet-TV für Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation) ISO Workshop 6.0 (HKLM-x32\...\ISO Workshop_is1) (Version: - Glorylogic) iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.) Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation) JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.) JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.50.2 - JMicron Technology Corp.) Junk Mail filter update (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden KacoViso (HKLM-x32\...\{9D874610-1444-412E-B379-FD8107FE768B}) (Version: 2.3.0.0 - KACO new energy GmbH ) KacoViso (HKLM-x32\...\{B34110B2-FA4C-40DA-B546-C85B0E2CD114}) (Version: 2.1.5 - Kaco) KeePass Password Safe 2.30 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.30 - Dominik Reichl) KhalInstallWrapper (Version: 4.20.131 - Logitech) Hidden Logitech SetPoint (HKLM-x32\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 4.20 - Logitech) Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.) Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.) MAGIX Page & Layout Designer 11 (HKLM-x32\...\MX.{72EF1C8F-D57A-493D-A8FF-8C966DD46613}) (Version: 11.2.2.40388 - MAGIX Software GmbH) MAGIX Page & Layout Designer 11 (Version: 11.2.2.40388 - MAGIX Software GmbH) Hidden MAGIX Retten Sie Ihre Videokassetten! Version 5 (HKLM-x32\...\MAGIX_MSI_Video_easy_4_RYVT) (Version: 3.0.1.28 - MAGIX AG) MAGIX Retten Sie Ihre Videokassetten! Version 5 (x32 Version: 3.0.1.28 - MAGIX AG) Hidden MAGIX Screenshare (HKLM-x32\...\{31D888B7-9DA0-4219-9371-9A0037A097C6}) (Version: 4.3.6.1987 - MAGIX AG) MAGIX Screenshare (HKLM-x32\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG) MAGIX Speed burnR (HKLM-x32\...\MAGIX Speed burnR D) (Version: 6.0.1.4 - MAGIX AG) MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{49209082-E4F9-410D-B74D-E6506977F30B}) (Version: 7.0.2.6 - MAGIX AG) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden MAGIX USB-Videowandler 2 (HKLM-x32\...\{8D85149E-D7A0-4920-BEBF-B6CEDFED8D1E}) (Version: 1.02.0000 - Ihr Firmenname) MAGIX USB-Videowandler 2 (HKLM-x32\...\InstallShield_{91065458-A5CF-474C-9160-B44B974B3C25}) (Version: 1.00.0000 - MAGIX) MAGIX USB-Videowandler 2 (x32 Version: 1.00.0000 - MAGIX) Hidden MAGIX Video deluxe 16 Premium 9.0.0.54 (D) (HKLM-x32\...\MAGIX Video deluxe 16 Premium D) (Version: 9.0.0.54 - MAGIX AG) MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{85061988-E889-4A37-9CB7-4F695AC35544}) (Version: 13.0.2.8 - MAGIX AG) MAGIX Video deluxe 2014 Plus (Version: 13.0.2.8 - MAGIX AG) Hidden MAGIX Web Designer MX Premium (HKLM-x32\...\MAGIX_{739FE2DC-0C7E-4A1C-AC6E-46348169E27E}) (Version: 8.0.2.21761 - MAGIX AG) MAGIX Web Designer MX Premium (Version: 8.0.2.21761 - MAGIX AG) Hidden MAGIX Xtreme Foto Designer 6 (HKLM-x32\...\MAGIX Xtreme Foto Designer 6 D) (Version: 6.0.29.0 - MAGIX AG) Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Media Go Video Playback Engine 1.88.103.12040 (HKLM-x32\...\{7FA1DAFD-AF55-E915-FD92-F269443A2ADF}) (Version: 1.88.103.12040 - Sony) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Office Home and Business 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 43.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.2 (x86 de)) (Version: 43.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) myBet Poker (HKLM-x32\...\myBet Poker) (Version: - ) myBet Poker (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\myBet Poker) (Version: - ) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger) NVIDIA PhysX v8.10.29 (HKLM-x32\...\{D56B0E27-4A3E-46C9-B5C1-D93D580C099C}) (Version: 8.10.29 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation) Page & Layout Designer Update (Version: 11.2.3.40790 - MAGIX Software GmbH) Hidden Paragon Partition Manager™ 11 Professional (HKLM-x32\...\{A35001F0-F1E4-11DD-A38B-005056C00008}) (Version: 90.00.0003 - Paragon Software) Parrot Software Update Tool (HKLM-x32\...\Parrot Flash Update Wizard) (Version: - ) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) PowerRecover (x32 Version: 5.5.1923 - CyberLink Corp.) Hidden PriMus Free 1.1 (Build 10843) (HKLM-x32\...\PriMus Free_is1) (Version: 1.1.0.10843 - Columbus Soft) proDAD Mercalli 1.0 (HKLM-x32\...\proDAD-Mercalli-1.0) (Version: - ) QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.2.1 r2386 - ) Ravensburger tiptoi (HKLM-x32\...\Ravensburger tiptoi) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek) Recuva (HKLM\...\Recuva) (Version: 1.43 - Piriform) RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version: - ) RemoteComms External Disk Access (HKLM-x32\...\{04FCD5DE-1662-4F99-BDA9-C57212113EF2}) (Version: 1.25.0003 - PLX Technology) Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) SanDiskSecureAccess_Manager.exe (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\@@__UNKNOWN__@@SanDiskSecureAccess_Manager.exe) (Version: 1.0.0 - DMAILER) Scribus 1.4.4 (64bit) (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team) Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) SlimDrivers (HKLM-x32\...\{87E60394-2E62-400D-99C0-C1BEA2F9A439}) (Version: 2.2.14197 - SlimWare Utilities, Inc.) Soluto (HKLM\...\{037C627B-384E-450E-866C-95BAB3CDEA17}) (Version: 1.3.1494.0 - Soluto) Spyware Terminator (HKLM-x32\...\Spyware Terminator_is1) (Version: 2.8.0.18 - Crawler Inc.) Steuer 2012 (HKLM-x32\...\{01159E8A-44F7-4885-A7F9-872CE4D74063}) (Version: 20.00.8137 - Buhl Data Service GmbH) Steuer 2013 (HKLM-x32\...\{05AEF487-8926-48A9-B5BA-9BED72BC6B1C}) (Version: 21.00.8480 - Buhl Data Service GmbH) Steuer 2014 (HKLM-x32\...\{2EE860C7-4551-479F-AF01-328B8AA46051}) (Version: 22.00.8811 - Buhl Data Service GmbH) StreamTransport version: 1.1.6.2 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version: - ) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Gesture Suite featuring SYNAPTICS | Scrybe (HKLM-x32\...\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}) (Version: 1.6.5.17120 - Synaptics Inc.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer) TELL ME MORE (HKLM-x32\...\TMM90) (Version: - ) TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 10.0.4200.97 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.2160.11 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden Unity Web Player (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN) VSDC Free Video Editor Version 3.3.0.394 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 3.3.0.394 - Flash-Integro LLC) Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.4.0.0 - Azureus Software, Inc.) WD Drive Utilities (HKLM-x32\...\{C093AD5D-29E9-4777-AAAC-28C02FCC2A51}) (Version: 1.0.4.11 - Western Digital Technologies, Inc.) WD Quick View (HKLM-x32\...\{507B1304-194A-4204-A9D9-9BAAF51EF760}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) WD Security (HKLM-x32\...\{8A7B24E8-864E-4794-95C4-17644D0991AA}) (Version: 1.0.6.3 - Western Digital Technologies, Inc.) WD SmartWare (HKLM\...\{A7C403DA-B8D9-4CA0-93D9-6C7F00772240}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) WD SmartWare Installer (HKLM-x32\...\{ba99df5b-3e46-419e-81e2-544352772fda}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) Web Designer Premium MX Update (Version: 8.1.4.24749 - MAGIX AG) Hidden Web Designer Premium MX Update (Version: 8.1.5.31094 - MAGIX AG) Hidden Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom) Windows Driver Package - Cambridge Silicon Radio Ltd. (CSRBC) USB (04/21/2011 01.0.0.0) (HKLM\...\BEA7B05370C19B9C86893BB484FD6B9CC52B0CD8) (Version: 04/21/2011 01.0.0.0 - Cambridge Silicon Radio Ltd.) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin) Windows Live Anmelde-Assistent (HKLM-x32\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8064.0206 - Microsoft Corporation) Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) WinRAR 4.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH) Wondershare Filmora(Build 6.8.1) (HKLM-x32\...\Wondershare Filmora_is1) (Version: - Wondershare Software) XviD MPEG4 Video Codec (remove only) (HKLM-x32\...\XviD MPEG4 Video Codec) (Version: - ) Youku Downloader (xmlbar) (nur entfernen) (HKLM-x32\...\Xmlbar YoukuDownloader) (Version: - ) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {045E10BA-2180-4CAD-BE93-C57695CDB4AF} - System32\Tasks\SlimDrivers Startup => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe [2011-08-15] (SlimWare Utilities, Inc.) Task: {06DDAB1C-A9B0-4233-AD4A-9714FAC58293} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2014-12-02] (Microsoft) Task: {0754560E-352E-4440-828F-5C0DD743751A} - System32\Tasks\CapUninst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe [2009-07-24] (CL) Task: {0A5DE71C-6CC7-4132-8642-DE8FDF084929} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09] (Oracle Corporation) Task: {111BCB09-5A3A-41E6-8091-507CD9430C3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard) Task: {26E5C788-0C67-4826-A062-97DED9F10166} - System32\Tasks\CapSchedInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe [2009-07-24] (CL) Task: {2D56EEEE-26A0-46DF-B413-1D3CE199C7C3} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender\bdproductdata.exe [2015-07-29] (Bitdefender) Task: {31CF6315-5D02-47EF-96EA-B64999B55273} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-07-23] (CyberLink) Task: {34316C50-305D-41F4-BA48-B585821B76C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {3AAD950A-BD91-4D39-A9F5-E9BDEF7213E7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2012-09-27] (Hewlett-Packard Company) Task: {3D7E7FE8-CD48-4E47-831B-B1FB839665EE} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {41001F0E-CE0D-42DC-A287-0139252339EA} - System32\Tasks\{752DFCA0-ED28-44AD-87EE-69C977B3D27A} => pcalua.exe -a C:\Users\Home\Downloads\im3stp03.exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {5169FC5F-F639-4B35-8619-8F930B314AD3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {5496EA6A-D5B0-4B53-AC15-10FE00BDB8E9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.) Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {6A0E2448-B98A-4236-BB75-E849ABAEF03A} - System32\Tasks\CapSvcInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe [2009-07-24] (CL) Task: {6E3E742C-E8A4-4A3C-97C9-7218152143A1} - System32\Tasks\{217E48E3-275F-49B5-A2E9-74B488C70DCF} => pcalua.exe -a "C:\Program Files (x86)\MAGIX\Video_deluxe_16_Premium\unwise.exe" Task: {76BC6246-6003-4080-8B9E-A373848B4A9E} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [2009-07-23] (CyberLink Corp.) Task: {85D7737D-3F15-4558-B2D3-908BDF7DED1F} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {86DC2FFE-238A-470A-81E3-04BAAD9C65F0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {92463B00-1FE5-417F-B89A-393662C1FDAF} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe Task: {9C78DE40-3602-407B-8909-420D2939C191} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\AVG\AVG PC TuneUp\OneClick.exe [2015-08-04] (AVG Technologies) Task: {9CDC2E3E-0C0C-446F-AE9D-6EDD35609373} - System32\Tasks\{070A97D9-16E9-488C-B625-9FEBA1B5A458} => pcalua.exe -a "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -d "C:\Program Files (x86)\Mozilla Firefox" Task: {A1B285B5-9BD8-4862-81BC-91706A2089ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard) Task: {C0C404B2-08F6-4EA9-B6DA-80531A854F44} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {C873030E-708B-4409-BD74-68A7A27634D9} - System32\Tasks\Google Update => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {CFD66453-3FDF-4F51-A0B9-C34317E22FC4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {D04B8C5C-C79F-4AA1-A96B-B8F51DCC4CD6} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.) Task: {D1198108-4694-4BAC-B4C0-320192E98CA1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd) Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc Task: {E1CE8085-686D-42F0-A130-A4C45C50F1D6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {EE990A70-EF3E-483F-8B79-397011620C5E} - System32\Tasks\TVAgent => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [2009-07-24] (CyberLink Corp.) Task: {F32EF2A0-7535-4703-88F8-27871EA02D08} - System32\Tasks\MUI StartMenu Application => C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [2008-11-14] (CyberLink Corp.) Task: {F6254647-B40C-457B-B576-4CFE3DC30071} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28] (Adobe Systems Incorporated) Task: {FC5B39F5-D584-47ED-8686-C5DB6678275C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\SlimDrivers Startup.job => C:\Program Files (x86)\SlimDrivers\SlimDrivers.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2014-11-13 23:11 - 2014-11-13 23:11 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll 2014-11-13 23:11 - 2014-11-13 23:11 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui 2015-12-03 21:05 - 2015-12-03 21:05 - 00876888 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpbr.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 00742976 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpdsp.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 02803536 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpph.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 01415584 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttprbl.mdl 2014-11-13 23:11 - 2014-11-13 23:11 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui 2010-10-19 12:39 - 2010-10-19 12:39 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll 2008-10-24 15:35 - 2008-10-24 15:35 - 00128296 _____ () C:\Program Files (x86)\AAVUpdateManager\aavus.exe 2011-09-04 19:41 - 2011-05-28 21:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll 2011-06-28 00:47 - 2013-10-01 10:32 - 02818216 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll 2010-09-29 21:53 - 2010-09-29 21:53 - 00076288 _____ () C:\Program Files (x86)\Spyware Terminator\sptcontmenu64.dll 2015-06-12 18:02 - 2015-06-12 18:02 - 03672064 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\PCGPreCompiled\0054b581ad9fcca18b54c7b4c1e4a8ef\PCGPreCompiled.ni.dll 2015-06-12 18:03 - 2015-06-12 18:03 - 00267264 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\PCGAppControlPlugin#\9283595dae0849d5cca5f0ee2ca2fbec\PCGAppControlPluginLoader.ni.dll 2013-11-14 13:26 - 2013-11-14 13:26 - 00090688 _____ () c:\program files\soluto\PCGDllExportInspector.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2009-09-28 10:00 - 2009-01-12 07:15 - 00071096 _____ () C:\Windows\SysWOW64\NMSAccess32.exe 2010-06-24 16:04 - 2010-06-24 16:04 - 00394544 ____R () C:\Program Files\Iomega\QuikProtect\QpMonitor.exe 2015-08-04 13:26 - 2015-08-04 13:26 - 00718040 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\avgrepliba.dll 2015-08-04 13:26 - 2015-08-04 13:26 - 00861912 _____ () C:\Program Files (x86)\AVG\AVG PC TuneUp\tulnga.dll 2015-03-24 14:28 - 2015-03-24 14:28 - 00036544 _____ () C:\Program Files\Rainmeter\Rainmeter.exe 2015-03-24 14:28 - 2015-03-24 14:28 - 00775872 _____ () C:\Program Files\Rainmeter\Rainmeter.dll 2015-03-24 14:27 - 2015-03-24 14:27 - 00058368 _____ () C:\Program Files\Rainmeter\Plugins\WebParser.DLL 2015-11-16 17:55 - 2015-11-16 17:55 - 00057344 _____ () C:\Program Files\CCleaner\lang\lang-1031.dll 2015-06-12 18:04 - 2015-06-12 18:04 - 00068096 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_64\SignalRWrapper\8c1ffb2a0dcd72467ea977a4a25eea8d\SignalRWrapper.ni.dll 2013-11-14 13:26 - 2013-11-14 13:26 - 00090688 _____ () C:\Program Files\Soluto\PCGDllExportInspector.dll 2013-11-14 13:26 - 2013-11-14 13:26 - 00054848 ____R () C:\Program Files\Soluto\PCGDeviceScanLib.dll 2009-07-23 11:37 - 2009-07-23 11:37 - 00931112 ____N () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll 2014-04-27 17:32 - 2014-11-13 23:09 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll 2015-09-04 10:41 - 2015-09-04 10:40 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll 2013-10-10 12:02 - 2013-10-10 12:02 - 00013120 _____ () C:\Program Files (x86)\Common Files\Acronis\TibMounter\icudt38.dll 2014-02-04 18:25 - 2014-02-04 18:25 - 00036672 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll 2014-02-04 18:25 - 2014-02-04 18:25 - 00028992 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll 2015-12-11 21:01 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll 2015-12-11 21:01 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll 2015-12-11 21:01 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2015-12-11 21:01 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00486704 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd 2015-10-03 11:33 - 2015-10-31 02:01 - 00019920 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll 2015-08-15 08:55 - 2015-10-31 02:00 - 00786904 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-10-03 11:33 - 2015-10-31 02:00 - 00063448 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-10-03 11:33 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll 2015-12-15 22:36 - 2014-09-11 18:09 - 01498112 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll 2015-12-15 22:36 - 2014-05-19 17:19 - 00137728 _____ () C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll 2014-10-17 04:08 - 2014-10-17 04:08 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\098e8bf088c2956ba306dfd643107a7e\IsdiInterop.ni.dll 2011-08-31 23:38 - 2010-11-05 22:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2014-02-04 18:28 - 2014-02-04 18:28 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll 2015-10-23 22:27 - 2015-10-23 22:27 - 21344952 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.dll 2015-03-17 01:34 - 2015-03-17 01:34 - 00322208 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\sqlite.dll 2015-09-30 21:47 - 2015-09-30 21:47 - 45080248 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\libcef.dll 2015-12-17 12:31 - 2015-12-11 04:54 - 01583432 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libglesv2.dll 2015-12-17 12:31 - 2015-12-11 04:54 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\47.0.2526.106\libegl.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\Users\Home\Downloads\GoodSync-Setup.exe:BDU ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\45303408.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\45303408.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Home\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.178.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: gusvc => 3 MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Electronic Arts\EADM\EADMUI\EADMUI.exe" MSCONFIG\startupreg: TrayServer => C:\PROGRA~2\MAGIX\VIDEO_~1\TrayServer.exe ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{B368F941-0CB4-4EF3-A560-ECE92A7CCA92}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe FirewallRules: [{C0F1CDEB-8A20-49A1-B35F-5DAF6B0806A4}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe FirewallRules: [{8A169D17-0EB7-49FF-931C-5C43E2073505}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{DE33A289-732E-4654-943F-7A45743D6E43}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [UDP Query User{58171B02-7028-4BF1-9160-E1F593897D8F}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [TCP Query User{A23EF6E2-8FE1-490B-B182-4B1D855313A1}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [UDP Query User{747DCA01-6FAE-4DD4-87BD-04DEE5969E99}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [{0D44D73D-B6F6-479E-AD4A-A863E07010D2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{10E3F261-C815-4590-A29E-EC4173FB564B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{0DB76952-E1CC-4093-8D00-69A1B877A183}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{79A45DF0-A4C0-4C5C-8D73-5633069B5AB1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{87DD92E8-3A51-4F11-A27A-D7F0E392A084}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{3F29078F-E968-4BBF-914A-C14E9E9053AB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{53F35B89-2E99-40C6-8489-81A8CFBDE47B}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [UDP Query User{6857BD51-C109-4A14-BE0E-236E4BADABAA}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [TCP Query User{1B913C34-2DEA-465C-B4AF-F0478C3604D2}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [UDP Query User{6E9D74FC-F1A2-400E-9926-98A4F719EE31}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [{CB1292DF-547A-4225-B447-A7CF9A1AF843}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{DAF16138-C0FB-4179-A6A8-5DF3FF390167}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe FirewallRules: [UDP Query User{82BF5BFC-EC69-4092-98FB-B299CDAD059E}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe FirewallRules: [{73A0BC91-D30C-4791-A427-715EA9C500AA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{86796E47-EB99-4916-BACB-2967A65E14EB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{EFAEE846-1759-4F70-A6FF-86B7449CB4A2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{48A53461-FCE7-4A5D-ACD6-387272CE8B2C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{469A731D-13DA-4D3E-BB89-207BAE65F4C6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{D88A371D-7671-42B9-87BB-F72D52A80278}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{058DE289-ACB7-491D-B16B-7F684C3A3F3D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{F125FF56-47A7-405C-8727-338099D9B436}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{ED6F9988-0AD6-441A-8F5F-BCD0BFC8236B}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [UDP Query User{9E2A97ED-6B26-4F70-BE14-218E65B14490}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [{D4CB0E40-90B9-489A-831E-236EA6BE6DC1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{293F9E14-6E7E-4DC1-8FBA-CEE79D5BCBB2}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{76CEB911-B258-459D-963A-F8B71E4A8AB6}] => (Allow) LPort=54010 FirewallRules: [{7D213076-29F2-40D4-92E9-CC4274B63F77}] => (Allow) LPort=49165 FirewallRules: [{A74E5788-619C-4AB8-B62E-DBB7CFB9B976}] => (Allow) LPort=5000 FirewallRules: [TCP Query User{C4E47B49-F94E-4559-BB5D-1C96688348B0}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe FirewallRules: [UDP Query User{FE0B45D0-DE05-474F-8531-831A5F53C150}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe FirewallRules: [TCP Query User{CE0F1D27-01E9-45EB-A33E-839D40D9B075}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [UDP Query User{3D17EF45-2CEF-4683-88C5-4B626DB2AC8E}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [{A1CDAA7C-8504-4A92-B537-99523681F143}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{923B94FB-9D8E-4E25-BF03-86BC271C5D6E}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [TCP Query User{FFDC21D7-07DA-4596-96F6-2606D1EE5523}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [UDP Query User{14F53A11-7ED1-4DE0-A7D2-97B462A28FBD}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [TCP Query User{55946F33-1BFB-4145-8AB1-5D1F22F492E7}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [UDP Query User{C090514C-6057-4356-8FF6-C331D79D3331}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [{970D3085-A7A4-4F79-B343-049A8BCA0A5C}] => (Allow) F:\fsetup.exe FirewallRules: [{2B7218D5-2AD3-4B90-A65B-D5408829DE19}] => (Allow) F:\fsetup.exe FirewallRules: [TCP Query User{542118CF-7A70-4724-8A79-A6EB75B4FFED}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe FirewallRules: [UDP Query User{D39C71E1-53A0-431D-AB76-ACC2297B9F8C}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe FirewallRules: [TCP Query User{10CE6C0D-E841-420D-90D5-DC3DAC394401}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe FirewallRules: [UDP Query User{04E6753E-4B85-4D1B-ABA4-A9478F312164}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe FirewallRules: [{AA815EF5-355D-4D28-A008-E21B73350E82}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{CB407730-B925-456F-AA28-CE95A904668F}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{4BE75D74-AF9E-40FE-9152-7E9E2059F0EC}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{FC013570-8818-49C7-B0EE-3CCB7A4C0201}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{26DEB5FB-BE8C-4DC4-A0B5-048BFF82B0AC}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{365B34C2-C733-431E-8642-4A93CCCBD74A}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{4BD8A3E4-BF87-42FC-A8B4-76310CBF3534}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{049AC890-1243-4FE2-8EF7-84F0BA451EAD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{7E20B448-3ED1-4F81-A122-E8A94D23D474}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [UDP Query User{DCEE4AC1-9E2A-42F7-AD9E-7E1457569345}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [{317403D4-D673-41E0-9FA7-D691E575DFE6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{FD9A778E-8629-4836-8AC3-C1F8257A39E1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C65A4598-15FC-4B7B-8B8E-0707C30116A1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{AA9F69DB-EB14-4AE5-B989-0FEACAB37859}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{A756DD02-76B3-411A-A389-9540F12347CA}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{F04E674E-45C2-4495-A8B5-44D0C60BD685}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{9C4BF95C-CB89-4999-BB0D-61D4F7BEA3E3}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{37AF3EA8-2C25-476F-BB39-27CC871F71FA}] => (Allow) C:\Program Files\Soluto\SolutoRemoteDirect.exe FirewallRules: [{B68280D6-21A4-4F84-9120-CDE12F4387B5}] => (Allow) C:\Program Files\Soluto\Soluto.exe FirewallRules: [{4DD06769-4B02-421C-B33F-3A814CDCF202}] => (Allow) C:\Program Files\Soluto\SolutoCleanup.exe FirewallRules: [{8789811D-F810-43A9-A24F-76E107F77FCA}] => (Allow) C:\Program Files\Soluto\SolutoConsole.exe FirewallRules: [{2F5EA5E9-9EB8-469B-AE8F-25800A72831C}] => (Allow) C:\Program Files\Soluto\SolutoUpdateService.exe FirewallRules: [{8B3A6641-9A02-4BBF-A3E3-E471BE7F2A9C}] => (Allow) C:\Program Files\Soluto\SolutoService.exe FirewallRules: [{E7147E98-EB39-4389-AA34-1C8F13036CEA}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PFInstOnline.exe FirewallRules: [{818B516A-0465-4991-834F-18450FBFDB0E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe FirewallRules: [{D93A30B2-2F50-4501-9A99-8163D5CEE919}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{36F8F835-FD92-413A-8422-C8B288FDFEFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{523F29E1-4B2C-4CFF-B172-219BBA061846}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe FirewallRules: [{485D813E-61CB-4ACC-A0E5-4605B70CD791}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe FirewallRules: [{06AFD3D5-E41F-43FA-93A1-D3BF6A35DF9E}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe FirewallRules: [{99EFE046-3B35-4BA0-AF8D-3343067636AD}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe FirewallRules: [{F29603EC-DA84-4DA0-9087-AEEA9BB682BE}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe FirewallRules: [{74F4A7EF-37C3-48B6-8186-D35FCDBFEDE3}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe FirewallRules: [{83EBD3A4-87A8-4B2E-95C0-17FBDAA35500}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe FirewallRules: [{768B6FD9-DE8E-4019-94F4-317AC81ECE6C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{0EB65856-E6E3-4B5B-953C-375C0CC1F35E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{91D760C6-8120-489B-A05B-B1EC38BC73B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{7C818C20-03B9-42CC-89EE-075253F470D7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe ==================== Wiederherstellungspunkte ========================= 22-12-2015 15:13:31 Geplanter Prüfpunkt 30-12-2015 18:14:08 Revo Uninstaller's restore point - QuickStores-Toolbar 1.0.0 30-12-2015 18:22:33 Revo Uninstaller's restore point - Vuze Remote Toolbar 30-12-2015 18:43:58 Revo Uninstaller's restore point - WSE_Binkiland ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Bluetooth-Peripheriegerät Description: Bluetooth-Peripheriegerät Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: FKZAZUJ 52JWDUFO96 SCSI CdRom Device Description: CD-ROM-Laufwerk Class Guid: {4d36e965-e325-11ce-bfc1-08002be10318} Manufacturer: (Standard-CD-ROM-Laufwerke) Service: cdrom Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (12/31/2015 08:15:45 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (12/31/2015 05:31:42 AM) (Source: SideBySide) (EventID: 63) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "assemblyIdentity1". Fehler in Manifest- oder Richtliniendatei "assemblyIdentity2" in Zeile assemblyIdentity3. Der Wert "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR" des "version"-Attributs im assemblyIdentity-Element ist ungültig. Error: (12/31/2015 05:31:40 AM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (12/31/2015 05:30:38 AM) (Source: SideBySide) (EventID: 33) (User: ) Description: Fehler beim Generieren des Aktivierungskontextes für "UCCAPI,processorArchitecture="x86",type="win32",version="2.0.0.0"1". Die abhängige Assemblierung "UCCAPI,processorArchitecture="x86",type="win32",version="2.0.0.0"" konnte nicht gefunden werden. Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe". Error: (12/30/2015 10:05:29 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (12/30/2015 10:05:13 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (12/30/2015 10:04:45 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (12/30/2015 10:04:33 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (12/30/2015 09:55:05 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (12/30/2015 08:52:30 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Systemfehler: ============= Error: (12/31/2015 05:56:47 AM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Error: (12/30/2015 10:29:47 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: %%1275 Error: (12/30/2015 10:29:47 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Home\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten. Error: (12/30/2015 10:29:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: %%1275 Error: (12/30/2015 10:29:46 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Home\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten. Error: (12/30/2015 10:29:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: %%1275 Error: (12/30/2015 10:29:46 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Home\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten. Error: (12/30/2015 10:07:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: %%1275 Error: (12/30/2015 10:07:40 PM) (Source: Application Popup) (EventID: 1060) (User: ) Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Home\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten. Error: (12/30/2015 10:07:40 PM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: %%1275 CodeIntegrity: =================================== Date: 2015-12-31 08:21:18.303 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-31 08:21:03.096 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-31 08:21:01.834 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-31 08:20:57.715 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-31 08:20:56.689 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-31 08:20:44.663 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-31 08:20:41.272 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-31 08:20:39.507 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-31 08:19:50.680 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2015-12-31 08:19:46.598 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz Prozentuale Nutzung des RAM: 75% Installierter physikalischer RAM: 4063.19 MB Verfügbarer physikalischer RAM: 999.24 MB Summe virtueller Speicher: 8124.58 MB Verfügbarer virtueller Speicher: 3690.25 MB ==================== Laufwerke ================================ Drive c: (OS) (Fixed) (Total:151.36 GB) (Free:31.36 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] Drive d: (Büro) (Fixed) (Total:48.83 GB) (Free:6.32 GB) NTFS Drive e: (Z***) (Fixed) (Total:12.94 GB) (Free:3.74 GB) NTFS Drive g: (Fotos) (Fixed) (Total:65.51 GB) (Free:14.11 GB) NTFS Drive h: (Videoprojekte) (Fixed) (Total:41.01 GB) (Free:19.68 GB) NTFS Drive p: (Videoschnitt) (Fixed) (Total:43.01 GB) (Free:7.79 GB) NTFS Drive q: (Container) (Fixed) (Total:19.24 GB) (Free:4.42 GB) NTFS Drive y: (Excelprojekte) (Fixed) (Total:7.81 GB) (Free:7.03 GB) NTFS Drive z: (Sonstiges) (Fixed) (Total:206.24 GB) (Free:76.79 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 298.1 GB) (Disk ID: 44854109) Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=151.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=133.6 GB) - (Type=05) Partition 4: (Not Active) - (Size=12.9 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 4BBD1113) Partition 1: (Not Active) - (Size=298.1 GB) - (Type=42) ==================== Ende von Addition.txt ============================ "Hast du noch irgendwelche Probleme mit deinem Rechner? Wie verhält sich deine Auslastung?" Also: - der Laptop braucht immer noch gut 5 min (lt Anzeige von Soluto) um hochzufahren und bereit zu sein - die CPU schwankt beim "bloß anschauen und sonst nichts tun" zwischen 2% und knapp 60%. (mache ich mir sichtbar über Rainmeter --> gibt es zu diesem Programm dir bekannte Alternativen?) - der Lüfter pustet aber nicht mehr so laut wie zum Beginn dieses Threads - was ich auch seltsam finde ist die Tatsache, das lt Taskmanager mein Arbeitsspeicher mit fast 3 GB benutzt wird aber so gut wie nichts offen ist - und aktuell laufen 113 Prozesse im Hintergrund, das hatte ich vorher auch immer in etwa nur da war die CPU wie gesagt bei 100% ständig am Anschlag und der Lüfter war sehr laut - dieses Malwarebytes hat sich jetzt in meine Statusleiste eingenistet --> was mache ich mit dem Programm zukünftig? Ich wollte dich noch mal fragen ob ich, wenn das hier durch ist dich auch mal mit anderen Fragen, die jetzt nicht unbedingt was mit Trojanern zu tun haben aber mit den PC fragen kann...oder gibt es da andere Spezialisten hier im Team? Geändert von HB-Männchen (31.12.2015 um 08:39 Uhr) |
Themen zu Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter |
bonjour, desktop, dnsapi.dll, downloader, fehler, firefox, flash player, frage, google, helper, home, homepage, iexplore.exe, mozilla, problem, proxy, prozesse, realtek, registry, rundll, scan, software, spyware, system, viren, windows |