|
Log-Analyse und Auswertung: Windows 7 64Bit - ständig 100% CPU Last mit lauten LüfterWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
31.12.2015, 12:23 | #31 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Schritt 1 Verwende wieder den Revo Uninstaller um Chrome von deinem Rechner zu deinstallieren und lasse von Revo anschließend wieder die Reste entfernen. Im Anschluss kannst du Chrome wieder installieren. Wenn du das gemacht hast, folge zusätzlich dieser Anleitung: https://support.google.com/chrome/answer/3296214?hl=de Schritt 2 Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster. Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument Code:
ATTFilter C:\Program Files (x86)\Flash Player\vlccfg.exe C:\Program Files (x86)\NCH Software\Debut\debutsetup_1.50_v1.50.exe C:\Program Files (x86)\NCH Software\Debut\uninst.exe C:\Program Files (x86)\Vuze\.install4j\i4j_extf_20_5p83tu.exe C:\Program Files (x86)\Vuze\.install4j\user\mism.exe C:\ProgramData\wvxvrwzbhkxwagk C:\Users\All Users\wvxvrwzbhkxwagk C:\Users\Home\Desktop\Büro\debutsetup_1.50.exe C:\Users\Home\Downloads\streamtransport_chrome_setup1.1.6.2.exe reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.htm\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.html\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.shtml\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.webp\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xht\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xhtml\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W] reg: reg delete "HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" [-HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W] [-HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W] folder: C:\Windows\Jaksta folder: C:\Users\Home\AppData\Local\Jaksta_Technologies_Pty_L 2012-08-12 04:28 - 2012-08-12 04:28 - 0000051 _____ () C:\ProgramData\zdtckhrezdorpjg 2011-09-13 21:13 - 2011-09-13 21:13 - 0082816 _____ (VSO Software) C:\Users\Home\AppData\Roaming\pcouffin.sys HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\45303408.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\45303408.sys => ""="Driver" emptytemp: Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
Wichtig: Speichere diese Datei mit dem Zeichensatz Unicode ab, da sie Sonderzeichen bzw. Umlaute enthält. Schritt 3 Deine Anzahl der Prozesse passt schon so, aber du hast einfach eine enorme Anzahl an "Krempel" auf deinem PC, der sogar im Autostart mitläuft. Ich sehe das Du sogenannte Registry Cleaner am System hast. In deinem Fall AVG PC TuneUp 2015. Wir empfehlen auf keinen Fall jegliche Art von Registry Cleaner. Der Grund ist ganz einfach: Die Registry ist das Hirn des Systems. Funktioniert das Hirn nicht, funktioniert der Rest nicht mehr wirklich. Wir lesen oft genug von Hilfesuchenden, dass deren System nach der Nutzung von Registry Cleanern nicht mehr booted.
Zerstörst Du die Registry, zerstörst Du Windows. Ich empfehle Dir hiermit die oben genannte Software zu deinstallieren und in Zukunft auf solche Art von Software zu verzichten. Darüber hinaus würde ich bitte alle Programme deinstallieren, die du nicht mehr benötigst. (Deinstalliere auch Soluto, das bringt nix ausser selber verlangsamen) Im Anschluss noch den Autostart von allen Programmen bereinigen, die du nicht wirklich bei jedem Systemstart benötigst. http://www.trojaner-board.de/71631-p...tml#post425617 Beispielsweise Daemon Tools, Acronis, ... Schritt 4 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen. Bemerkst du Verbesserungen?
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
31.12.2015, 13:13 | #32 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Ähm wenn ich im Schritt 1 Chrome deinstalliere dann werden doch auch alle meine Favoriten gelöscht oder?
__________________Wenn ich wählen müsste zwischen Firefox und Chrome --> was wäre deine Empfehlung? Und warum muss ich eigentlich Chrome de- und wieder installieren? |
31.12.2015, 13:18 | #33 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Wenn du keinen Google Account hast zum synchronisieren dann musst du sie extra sichern ja: https://support.google.com/chrome/answer/96816?hl=de
__________________Einfach als HTML exportieren und danach wieder importieren. Das Problem ist, dass sich die unerwünschte Software bisschen in Chrome reingefressen hat und das bekommt man schon mal nicht so einfach wieder raus, darum das zurücksetzen. FF und Chrome haben beides Vorteile und Nachteile, ich mag Chrome wegen der schönen Synchronisierbarkeit mit meinem Smartphone und allen meinen Geräten, dafür ist er bisschen doof zu bereinigen manchmal... Nimm den, der dir mehr zusagt.
__________________ |
31.12.2015, 13:22 | #34 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Ich habe einen google Account und eine gmail. Wo kann ich denn sehen / erkennen ob diese Syncronisation eingestellt ist oder nicht? |
31.12.2015, 13:25 | #35 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
31.12.2015, 13:31 | #36 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Sorry wenn jetzt so viele Gegenfragen kommen aber hier ist mein Wissen sehr begrenzt. Noch. Bei mir war die Funktion "Alles Syncronisieren" gestellt. Und es waren auch alle Haken gesetzt. Ich habe in Chrome mir in dieser Lesezeilenliste auch noch viele Ordern angelegt, die wiederum Links enthalten. Und dann habe ich auch noch die ein oder andere Erweiterung. Wenn ich jetzt Chrome de- und wieder installiere wird dann alles wieder so hergestellt bzw syncronisiert, wie ich es jetzt aktuell sehe oder zerschießt es mir alles und ich muss alles wieder neu anordnen? |
31.12.2015, 13:36 | #37 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Kein Problem, dafür sind wir ja hier Das ist so der Witz an der Synchronisation dass das so klappt, ja. Gleichzeitig aber auch ein Problem mit Chrome weil es dann manchmal wieder die schädlichen Eigenschaften zurücksynchronisiert. Üblicherweise lädst du dann Chrome neu herunter, meldest dich an und wartest paar Minuten, bis die Synch vollständig ist. Danach sollst du den Browser zurcksetzen, dabei sind deine Lesezeichen nicht betroffen, aber die Plugins werden deaktiviert. Dann kannst du wieder manuell die aktivieren, die du wirklich brauchst. So schließen wir aus, dass sich was durchmogelt, dass nicht gewünscht ist. Zu 99,999% wird deinen Lesezeichen nichts passieren, um nochmal ganz sicher zu gehen kannst du sie ja manuell sichern (wie oben beschrieben, geht ja ganz schnell) wenn dir so viel an ihnen liegt
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
31.12.2015, 13:47 | #38 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Ok. Ich muss jetzt leider, recht spontan an dieser Stelle das ganze abbrechen. Ich melde mich definitiv am 1.1. oder 2.1. wieder zurück mit den Infos aus #31 und evtl mit meinen Fragen. Vielen herzlichen Dank erst einmal bis hier her und ich wünsche dir einen guten Rutsch in neue Jahr. Gruß Ron |
31.12.2015, 14:07 | #39 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Alles klar Ron, einen guten Rutsch ins neue Jahr und eine schöne Zeit!
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
31.12.2015, 17:43 | #40 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter So. Konnte jetzt doch noch etwas weiter machen. Schritt 1 (aus Post #31) das war etwas kniffliger weil es bei Chrome nicht mehr heißt "Browsereinstellungen zurücksetzen" sondern "Einstellungen zurück setzen". Und ich hatte die ganze Zeit nach dem ersteren gesucht. Aber ok. Schlussendlich habe ich es so gemacht über "Einstellungen zurück setzen" Schritt 2 (aus #31) die Fixlog.txt Code:
ATTFilter Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015 durchgeführt von Home (2015-12-31 17:27:09) Run:3 Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU Geladene Profile: Home (Verfügbare Profile: Home) Start-Modus: Normal ============================================== fixlist Inhalt: ***************** C:\Program Files (x86)\Flash Player\vlccfg.exe C:\Program Files (x86)\NCH Software\Debut\debutsetup_1.50_v1.50.exe C:\Program Files (x86)\NCH Software\Debut\uninst.exe C:\Program Files (x86)\Vuze\.install4j\i4j_extf_20_5p83tu.exe C:\Program Files (x86)\Vuze\.install4j\user\mism.exe C:\ProgramData\wvxvrwzbhkxwagk C:\Users\All Users\wvxvrwzbhkxwagk C:\Users\Home\Desktop\Büro\debutsetup_1.50.exe C:\Users\Home\Downloads\streamtransport_chrome_setup1.1.6.2.exe reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.htm\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.html\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.shtml\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.webp\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xht\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xhtml\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" [-HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W] reg: reg delete "HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" reg: reg delete "HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" [-HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W] [-HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W] folder: C:\Windows\Jaksta folder: C:\Users\Home\AppData\Local\Jaksta_Technologies_Pty_L 2012-08-12 04:28 - 2012-08-12 04:28 - 0000051 _____ () C:\ProgramData\zdtckhrezdorpjg 2011-09-13 21:13 - 2011-09-13 21:13 - 0082816 _____ (VSO Software) C:\Users\Home\AppData\Roaming\pcouffin.sys HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\45303408.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\45303408.sys => ""="Driver" emptytemp: ***************** C:\Program Files (x86)\Flash Player\vlccfg.exe => erfolgreich verschoben C:\Program Files (x86)\NCH Software\Debut\debutsetup_1.50_v1.50.exe => erfolgreich verschoben C:\Program Files (x86)\NCH Software\Debut\uninst.exe => erfolgreich verschoben C:\Program Files (x86)\Vuze\.install4j\i4j_extf_20_5p83tu.exe => erfolgreich verschoben C:\Program Files (x86)\Vuze\.install4j\user\mism.exe => erfolgreich verschoben C:\ProgramData\wvxvrwzbhkxwagk => erfolgreich verschoben "C:\Users\All Users\wvxvrwzbhkxwagk" => nicht gefunden. C:\Users\Home\Desktop\Büro\debutsetup_1.50.exe => erfolgreich verschoben C:\Users\Home\Downloads\streamtransport_chrome_setup1.1.6.2.exe => erfolgreich verschoben ========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.htm\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" ========= Registrierungswert BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W l”schen (Ja/Nein)? Der Vorgang wurde erfolgreich beendet. ========= Ende von Reg: ========= ========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.html\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" ========= Registrierungswert BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W l”schen (Ja/Nein)? Der Vorgang wurde erfolgreich beendet. ========= Ende von Reg: ========= ========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.shtml\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" ========= Registrierungswert BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W l”schen (Ja/Nein)? Der Vorgang wurde erfolgreich beendet. ========= Ende von Reg: ========= ========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.webp\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" ========= Registrierungswert BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W l”schen (Ja/Nein)? Der Vorgang wurde erfolgreich beendet. ========= Ende von Reg: ========= ========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xht\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" ========= Registrierungswert BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W l”schen (Ja/Nein)? Der Vorgang wurde erfolgreich beendet. ========= Ende von Reg: ========= ========= reg delete "HKEY_LOCAL_MACHINE\SOFTWARE\Classes\.xhtml\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" ========= Registrierungswert BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W l”schen (Ja/Nein)? Der Vorgang wurde erfolgreich beendet. ========= Ende von Reg: ========= HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile. HKEY_LOCAL_MACHINE\SOFTWARE\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W => Schlüssel erfolgreich entfernt ========= reg delete "HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" ========= Registrierungswert BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W l”schen (Ja/Nein)? Der Vorgang wurde erfolgreich beendet. ========= Ende von Reg: ========= ========= reg delete "HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" ========= Registrierungswert BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W l”schen (Ja/Nein)? Der Vorgang wurde erfolgreich beendet. ========= Ende von Reg: ========= ========= reg delete "HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\OpenWithProgids" /v "BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W" ========= Registrierungswert BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W l”schen (Ja/Nein)? Der Vorgang wurde erfolgreich beendet. ========= Ende von Reg: ========= HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W => konnte nicht entfernt werden im ersten Versuch (ErrorCode: C0000121), siehe nächste Zeile. HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W => Schlüssel erfolgreich entfernt HKEY_USERS\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\BinkilandHTML.NNTMQDUMRBBZDLVF57JAMBX5W => Schlüssel nicht gefunden. ========================= folder: C:\Windows\Jaksta ======================== ====== Ende von Folder: ====== ========================= folder: C:\Users\Home\AppData\Local\Jaksta_Technologies_Pty_L ======================== ====== Ende von Folder: ====== C:\ProgramData\zdtckhrezdorpjg => erfolgreich verschoben C:\Users\Home\AppData\Roaming\pcouffin.sys => erfolgreich verschoben "HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\45303408.sys" => Schlüssel erfolgreich entfernt "HKLM\System\CurrentControlSet\Control\SafeBoot\Network\45303408.sys" => Schlüssel erfolgreich entfernt EmptyTemp: => 30.5 MB temporäre Dateien entfernt. Das System musste neu gestartet werden. ==== Ende von Fixlog 17:27:57 ==== |
01.01.2016, 19:39 | #41 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter so Schritt 3 aus Post #31 habe ich nun auch gemacht. Ich habe paar Programme deinstalliert doch dabei habe ich eins festgestellt: das Programm Soluto hatte mir Revo Uninstaller nicht angezeigt --> warum auch immer. Auch beim Autostart konnte ich bis auf den CCleaner nichts deaktivieren weil ich die Programme schlichtweg nicht kenne. so und hier die Log FRST.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-12-2015 durchgeführt von Home (Administrator) auf NOTEBOOK-RS (01-01-2016 19:32:50) Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU Geladene Profile: Home (Verfügbare Profile: Home) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe (AMD) C:\Windows\System32\atiesrxx.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe (Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe () C:\Windows\SysWOW64\NMSAccess32.exe () C:\Program Files\Iomega\QuikProtect\QpMonitor.exe (Synaptics, Inc.) C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe (CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Synaptics Incorporated) C:\Program Files (x86)\Synaptics\Scrybe\scrybe.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe () C:\Program Files\Rainmeter\Rainmeter.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\Windows\System32\dllhost.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated) HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [134416 2007-06-12] (Logitech, Inc.) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1757520 2015-02-02] (Bitdefender) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1702912 2000-01-01] (IDT, Inc.) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1104616 2013-10-10] (Acronis International GmbH) HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7843744 2014-02-04] (Acronis) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.) HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl) HKLM\...\RunOnce: [NCPluginUpdater] => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [21720 2014-12-02] (Hewlett-Packard) HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\system: [WallpaperStyle] 2 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Policies\system: [WallpaperStyle] 2 HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> Lsa: [Notification Packages] scecli c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-06-11] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Scrybe.lnk [2012-01-14] ShortcutTarget: Scrybe.lnk -> C:\Windows\Installer\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}\NewShortcut11_8ACB210B42E44145A8C31F8E3DD765A3.exe (Acresso Software Inc.) Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2015-06-10] ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe () BootExecute: autocheck autochk * auto_reactivate \\?\Volume{f7c81a36-efb9-11de-a798-806e6f6e6963}\bootwiz\asrm.bin ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{7A31314E-4D6E-42E3-9220-5D359B8B3242}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{D2518004-8FB8-4822-8DAA-FD4DF64F2AD4}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll [2014-11-13] (Bitdefender) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard) BHO: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG) BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll [2014-11-13] (Bitdefender) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-18] (Oracle Corporation) BHO-x32: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-18] (Oracle Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28] (Hewlett-Packard) BHO-x32: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files (x86)\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG) DPF: HKLM-x32 {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} file:///H:/Projekte%20Magix/Tatort/components/hidinputmonitorx.ocx DPF: HKLM-x32 {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} file:///H:/Projekte%20Magix/Tatort/components/A9.ocx DPF: HKLM-x32 {7030CC6C-1A88-4591-BB5A-651B9F7F0C30} file:///H:/Projekte%20Magix/Tatort/components/wmvhdrating.ocx Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029 FF Homepage: hxxps://www.google.de/ FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-28] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.) FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-14] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-28] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2013-08-28] (DivX, LLC) FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2010-10-28] (GARMIN Corp.) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-18] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-18] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-10-15] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/O1DPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-02] (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Extension: azid - Amazon Zoom Image Downloader - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\azid@craue.de.xpi [2015-10-12] FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\artur.dubovoy@gmail.com [2015-12-06] FF Extension: Secure Login - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\secureLogin@blueimp.net.xpi [2015-12-22] FF Extension: Kein Name - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\auto-plugin-checker@jetpack.xpi [2015-09-04] [ist nicht signiert] FF Extension: Flagfox - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2015-12-21] FF Extension: Video DownloadHelper - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-31] FF Extension: Adblock Plus - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-15] FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman [2014-03-27] [ist nicht signiert] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.de/ CHR StartupUrls: Default -> "hxxps://www.google.de/","hxxp://binkiland.com/?f=7&a=bnk_ir_15_06&cd=2XzuyEtN2Y1L1QzutDtDtByCzy0EtAtDyByE0FtB0D0D0A0FtN0D0Tzu0StCtCtAtBtN1L2XzutAtFyBtFyBtFyDtN1L1CzutCyEtBzytDyD1V1BtAtN1L1G1B1V1N2Y1L1Qzu2SyE0CyEzytB0EtB0BtGtC0DyEtCtG0E0F0D0DtGzy0FtB0DtGtC0DyEzzzz0E0FtBtD0FyCyB2QtN1M1F1B2Z1V1N2Y1L1Qzu2S0B0FyC0DtCzy0CzztGyEtDtC0CtGyE0Czy0DtG0ByByC0FtGtByD0AtC0F0DyC0F0D0BtD0E2Q&cr=314920664&ir=" CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-31] CHR Extension: (Google Docs) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-31] CHR Extension: (Google Drive) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-31] CHR Extension: (YouTube) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-31] CHR Extension: (Bitdefender Wallet) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl [2015-12-31] CHR Extension: (Google-Suche) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-31] CHR Extension: (Video Downloader professional) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-12-31] CHR Extension: (Google Tabellen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-31] CHR Extension: (Google Docs Offline) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-31] CHR Extension: (WhatFont) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2015-12-31] CHR Extension: (Skype) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-31] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-31] CHR Extension: (chromeIPass) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompiailgknfdndiefoaoiligalphfdae [2015-12-31] CHR Extension: (Unblock Youku) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnfnkhpgegpcingjbfihlkjeighnddk [2015-12-31] CHR Extension: (Google Mail) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-31] CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-04-27] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1046952 2015-11-12] (AVG Technologies CZ, s.r.o.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.) R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [Datei ist nicht signiert] S4 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert] S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert] S3 HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [86528 2012-09-27] (Hewlett-Packard Company) [Datei ist nicht signiert] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hp\Common\HPSupportSolutionsFrameworkService.exe [72992 2014-07-07] (Hewlett-Packard Company) S3 HRService; C:\Program Files (x86)\Haufe\iDesk\iDeskService\iDeskService.exe [71024 2010-10-25] () S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert] R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-10-19] () R2 NMSAccess; C:\Windows\SysWOW64\NMSAccess32.exe [71096 2009-01-12] () R2 QPCopyEngine; C:\Program Files\Iomega\QuikProtect\QpMonitor.exe [394544 2010-06-24] () R2 ScrybeUpdater; C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe [1300264 2011-05-27] (Synaptics, Inc.) R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2000-01-01] (IDT, Inc.) [Datei ist nicht signiert] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2014-11-13] (Bitdefender) R2 vsserv; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1538672 2015-02-02] (Bitdefender) S4 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2013-11-02] (Western Digital Technologies, Inc.) S4 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [270704 2013-11-02] (Western Digital Technologies, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1288472 2015-02-02] (BitDefender) R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [263032 2015-02-02] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-11-13] (BitDefender) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL) S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc) R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx64.sys [34512 2015-02-06] () S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-05] (Microsoft Corporation) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC) R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-05-20] (Paragon Software Group) R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2000-01-01] (JMicron Technology Corp.) R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-09-08] (Lavasoft AB) S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42944 2010-11-06] (hxxp://libusb-win32.sourceforge.net) R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-01] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation) S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] () S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] () S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [585944 2014-12-31] (Realtek Semiconductor Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-12-03] (Duplex Secure Ltd.) R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-02-08] (Acronis International GmbH) R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2014-02-08] (Acronis International GmbH) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2015-02-02] (BitDefender S.R.L.) S1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [50768 2010-07-14] (Windows (R) 2000 DDK provider) S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [566864 2010-07-14] (Paragon) R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2014-02-08] (Acronis International GmbH) U3 a2ap12gs; kein ImagePath S3 clwvd; system32\DRIVERS\clwvd.sys [X] S3 cpuz132; \??\C:\Users\Home\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [X] S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X] U4 eabfiltr; kein ImagePath S3 WPRO_40_1340; system32\drivers\WPRO_40_1340.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2015-12-31 17:45 - 2015-12-31 17:45 - 00000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2015-12-31 16:45 - 2015-12-31 16:45 - 00002209 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-12-31 16:45 - 2015-12-31 16:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-12-31 16:43 - 2015-12-31 16:43 - 00927824 _____ (Google Inc.) C:\Users\Home\Downloads\ChromeSetup.exe 2015-12-30 19:55 - 2015-12-30 19:55 - 00008364 _____ C:\Users\Home\Desktop\mbam.txt 2015-12-30 19:14 - 2016-01-01 18:26 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-12-30 19:13 - 2015-12-30 19:13 - 00001064 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-12-30 19:13 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-12-30 19:13 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-12-30 19:13 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2015-12-30 18:54 - 2015-12-30 18:58 - 00000000 ____D C:\AdwCleaner 2015-12-30 18:11 - 2015-12-31 17:45 - 00001226 _____ C:\Users\Home\Desktop\Revo Uninstaller.lnk 2015-12-30 18:11 - 2015-12-31 17:45 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2015-12-30 01:01 - 2015-12-30 01:06 - 00256514 _____ C:\TDSSKiller.3.1.0.9_30.12.2015_01.01.45_log.txt 2015-12-30 00:23 - 2015-12-30 00:23 - 00001082 _____ C:\Users\Home\Desktop\Hilfe 100 % CPU - Verknüpfung.lnk 2015-12-29 22:20 - 2015-12-29 22:20 - 00000376 _____ C:\Users\Home\AppData\Roamingprivacy.xml 2015-12-29 22:19 - 2015-12-29 22:26 - 00007892 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_22.19.36_log.txt 2015-12-29 22:12 - 2015-12-29 22:12 - 00000000 ____D C:\TDSSKiller_Quarantine 2015-12-29 21:51 - 2016-01-01 19:32 - 00000000 ____D C:\Users\Home\Downloads\Hilfe 100 % CPU 2015-12-29 21:40 - 2015-12-29 22:12 - 00510822 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_21.40.36_log.txt 2015-12-29 19:30 - 2016-01-01 19:32 - 00000000 ____D C:\FRST 2015-12-23 17:24 - 2015-12-23 17:24 - 00000657 _____ C:\Users\Home\Desktop\Steffi - Verknüpfung.lnk 2015-12-23 16:51 - 2015-12-23 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-12-20 12:59 - 2015-12-20 12:59 - 00000000 ____D C:\Users\Home\Documents\Applian 2015-12-20 12:56 - 2015-12-20 15:20 - 00000000 ____D C:\Windows\Jaksta 2015-12-20 12:56 - 2015-12-20 13:11 - 00000000 ____D C:\Users\Home\AppData\Local\Jaksta_Technologies_Pty_L 2015-12-20 12:37 - 2015-12-20 13:13 - 00000000 ____D C:\Users\Home\AppData\Local\JDownloader v2.0 2015-12-19 15:36 - 2015-12-19 15:36 - 00001053 _____ C:\Users\Public\Desktop\StreamTransport.lnk 2015-12-19 15:36 - 2015-12-19 15:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamTransport 2015-12-19 15:36 - 2015-12-19 15:36 - 00000000 ____D C:\Program Files (x86)\StreamTransport 2015-12-15 22:37 - 2015-12-15 22:42 - 00007154 _____ C:\Users\Home\Documents\starburn.txt 2015-12-15 22:37 - 2015-12-15 22:37 - 00000000 ____D C:\ProgramData\Wondershare 2015-12-15 22:36 - 2015-12-15 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\Wondershare 2015-12-15 22:35 - 2015-12-15 22:43 - 00000000 ____D C:\Users\Home\Documents\Wondershare Filmora 2015-12-15 22:33 - 2015-12-15 22:35 - 00000000 ____D C:\Users\Public\Documents\Wondershare 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\Documents\FlashIntegro 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\VideoEditor 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\FlashIntegro 2015-12-15 22:06 - 2015-12-15 22:06 - 00001164 _____ C:\Users\Home\Desktop\VSDC Free Video Editor.lnk 2015-12-15 22:06 - 2015-12-15 22:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro 2015-12-15 22:06 - 2015-12-15 22:06 - 00000000 ____D C:\Program Files (x86)\FlashIntegro 2015-12-15 22:06 - 2014-12-09 12:21 - 00081792 _____ (Flash-Integro LLC) C:\Windows\SysWOW64\mslvddsfilter2.ax 2015-12-15 22:06 - 2011-12-07 18:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\Lagarith.dll 2015-12-15 22:06 - 2005-08-01 18:43 - 00245760 _____ () C:\Windows\SysWOW64\lame.ax 2015-12-15 22:06 - 2004-12-10 09:03 - 00438272 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll 2015-12-15 22:06 - 2004-02-04 20:11 - 00081920 _____ (fccHandler) C:\Windows\SysWOW64\AC3ACM.acm 2015-12-15 22:06 - 2003-05-22 11:26 - 00221215 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divxdec.ax 2015-12-15 22:06 - 2003-05-21 22:50 - 00261632 _____ (MainConcept) C:\Windows\SysWOW64\mcdvd_32.dll 2015-12-15 22:06 - 2003-05-21 22:50 - 00156910 _____ C:\Windows\WMSysPr8.prx 2015-12-15 22:06 - 2003-05-21 22:50 - 00082944 _____ (Voxware, Inc.) C:\Windows\SysWOW64\vct3216.acm 2015-12-15 22:06 - 2003-05-21 22:50 - 00038912 _____ (NCT Company) C:\Windows\SysWOW64\alf2cd.acm 2015-12-15 22:06 - 2003-05-21 22:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll 2015-12-15 22:06 - 2003-03-25 04:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\L3CODECX.AX 2015-12-15 22:06 - 2002-08-19 23:41 - 00413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll 2015-12-15 22:06 - 2000-03-14 19:55 - 00013239 _____ (SHARP Corporation) C:\Windows\SysWOW64\Scg726.acm 2015-12-15 20:00 - 2015-12-15 20:00 - 00200764 _____ C:\Users\Home\Desktop\Anzeige Kolb.pdf 2015-12-14 22:05 - 2015-12-14 22:05 - 24386352 _____ (Siber Systems) C:\Users\Home\Downloads\GoodSync-Setup.exe 2015-12-12 10:57 - 2015-12-12 10:57 - 00001067 _____ C:\Users\Home\Desktop\KeePass 2.lnk 2015-12-11 22:27 - 2015-12-11 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\ApplicationHistory 2015-12-11 22:27 - 2015-12-11 22:27 - 00000092 _____ C:\Users\Home\AppData\Local\fusioncache.dat 2015-12-11 21:01 - 2015-12-11 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-12-07 21:29 - 2015-12-07 21:29 - 00002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2015-12-07 21:29 - 2015-12-07 21:29 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk 2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\Program Files\CCleaner 2015-12-03 20:32 - 2015-12-03 20:32 - 00000993 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-01-01 19:30 - 2012-12-17 11:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-01-01 19:09 - 2015-07-25 12:04 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2016-01-01 18:41 - 2014-03-16 22:56 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job 2016-01-01 18:38 - 2015-07-25 12:03 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2016-01-01 18:38 - 2013-02-16 23:12 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-01 18:36 - 2014-03-16 22:56 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job 2016-01-01 18:36 - 2013-02-16 23:12 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-01 18:33 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-01-01 18:33 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-01-01 18:29 - 2009-12-30 19:59 - 00003938 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{5E08B2BB-8B59-4E04-AFC6-843827792A81} 2015-12-31 18:56 - 2014-02-08 12:05 - 00000000 ___RD C:\Users\Home\Sync 2015-12-31 18:55 - 2012-11-11 23:17 - 00000000 ___RD C:\Users\Home\Dropbox 2015-12-31 18:55 - 2012-11-11 22:00 - 00000000 ____D C:\Users\Home\AppData\Roaming\Dropbox 2015-12-31 18:52 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2015-12-31 18:51 - 2014-03-24 01:26 - 00294573 _____ C:\bdlog.txt 2015-12-31 18:37 - 2013-09-19 22:01 - 00000000 ____D C:\Poker 2015-12-31 18:35 - 2010-10-28 00:06 - 00000000 ____D C:\Users\Home\AppData\Roaming\DAEMON Tools Lite 2015-12-31 18:35 - 2010-10-28 00:06 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2015-12-31 18:30 - 2015-06-12 18:00 - 00000000 ____D C:\Program Files\Soluto 2015-12-31 18:30 - 2015-06-09 22:57 - 00000000 ____D C:\ProgramData\Soluto 2015-12-31 18:03 - 2014-08-23 23:02 - 00000000 ____D C:\Program Files (x86)\AVG 2015-12-31 17:28 - 2013-03-22 21:05 - 00000000 ____D C:\Users\Home\AppData\Roaming\KeePass 2015-12-31 17:27 - 2010-08-25 21:49 - 00000000 ____D C:\Program Files (x86)\Flash Player 2015-12-31 17:27 - 2010-05-30 10:42 - 00000000 ___RD C:\Users\Home\Desktop\Büro 2015-12-31 16:46 - 2010-02-06 23:59 - 00000000 ____D C:\Users\Home\AppData\Local\Google 2015-12-31 16:29 - 2012-02-27 18:28 - 00000000 ____D C:\Users\Home\.Zettelkasten 2015-12-31 12:32 - 2011-08-22 08:48 - 00000000 ____D C:\Users\Home\AppData\Roaming\vlc 2015-12-31 08:23 - 2009-07-14 04:20 - 00000000 ____D C:\Windows 2015-12-30 21:42 - 2010-01-24 09:02 - 00000000 ____D C:\Users\Home\AppData\LocalLow\Temp 2015-12-30 21:42 - 2009-12-23 23:38 - 00000000 ____D C:\Users\Home 2015-12-30 19:47 - 2011-08-31 23:22 - 00000000 ____D C:\Windows\HPQ 2015-12-30 18:58 - 2015-02-01 12:28 - 00000008 __RSH C:\Users\Home\ntuser.pol 2015-12-30 18:58 - 2011-10-14 22:55 - 00000008 __RSH C:\ProgramData\ntuser.pol 2015-12-29 07:46 - 2011-02-11 00:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\TeamViewer 2015-12-28 22:31 - 2012-12-17 11:41 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-12-28 22:31 - 2012-04-05 21:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-12-28 22:31 - 2011-06-17 20:10 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-12-28 20:22 - 2015-10-22 20:31 - 00000026 _____ C:\Users\Home\AppData\Local\isoworkshop.ini 2015-12-25 13:23 - 2012-04-25 19:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-12-23 18:30 - 2014-12-14 14:49 - 00000000 ____D C:\Users\Home\Desktop\Anwendungen 2015-12-23 18:25 - 2014-01-03 23:23 - 00000000 ____D C:\Users\Home\Desktop\Videoschnitt 2015-12-22 12:51 - 2011-02-11 00:26 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2015-12-19 21:43 - 2013-07-31 19:56 - 00668984 _____ C:\Windows\system32\FNTCACHE.DAT 2015-12-17 22:47 - 2014-10-24 20:20 - 00003834 _____ C:\Windows\System32\Tasks\Google Update 2015-12-17 22:46 - 2015-10-30 21:33 - 00000000 ____D C:\Users\Home\AppData\Local\Microsoft Help 2015-12-17 22:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2015-12-17 12:17 - 2009-12-28 15:17 - 00000000 ____D C:\Users\Home\AppData\Roaming\Mozilla 2015-12-15 22:37 - 2013-07-31 19:58 - 00202240 _____ C:\Users\Home\AppData\Local\GDIPFONTCACHEV1.DAT 2015-12-15 22:37 - 2009-07-14 05:57 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-12-13 17:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration 2015-12-12 10:57 - 2013-06-30 11:16 - 00001079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk 2015-12-12 10:57 - 2013-03-22 20:44 - 00000000 ____D C:\Program Files (x86)\KeePass Password Safe 2 2015-12-12 00:13 - 2011-09-13 21:54 - 00000000 ____D C:\Users\Home\AppData\Roaming\dvdcss 2015-12-11 21:01 - 2015-07-25 12:03 - 00000000 ____D C:\Program Files (x86)\Dropbox 2015-12-11 00:33 - 2012-04-14 00:02 - 00000000 ____D C:\ProgramData\tmp 2015-12-10 09:17 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-12-07 22:19 - 2010-07-12 20:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\PhotoScape 2015-12-07 22:19 - 2010-01-01 19:25 - 00000000 ____D C:\Users\Home\AppData\Roaming\Azureus 2015-12-07 22:19 - 2009-12-27 19:22 - 00000000 ____D C:\Users\Home\AppData\Roaming\Skype 2015-12-06 10:08 - 2009-12-27 19:22 - 00000000 ___RD C:\Program Files (x86)\Skype 2015-12-05 01:31 - 2013-02-16 23:12 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-12-05 01:31 - 2013-02-16 23:12 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore 2015-12-02 21:20 - 2014-08-23 23:02 - 00000000 ____D C:\ProgramData\Avg 2015-12-02 21:09 - 2013-02-24 11:34 - 00004020 _____ C:\Windows\System32\Tasks\MUI StartMenu Application 2015-12-02 14:24 - 2013-07-14 10:55 - 00000000 ____D C:\Users\Home\.gimp-2.8 2015-12-02 07:36 - 2014-03-16 22:56 - 00004084 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA 2015-12-02 07:36 - 2014-03-16 22:56 - 00003688 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2010-01-06 11:53 - 2010-12-29 22:04 - 0000030 _____ () C:\Program Files (x86)\Exiferupdate.ini 2011-11-09 20:47 - 2011-11-09 20:48 - 0000288 _____ () C:\Users\Home\AppData\Roaming\.backup.dm 2012-01-08 21:35 - 2012-01-15 21:40 - 0000598 _____ () C:\Users\Home\AppData\Roaming\AutoGK.ini 2012-11-29 19:33 - 2014-12-14 12:35 - 0000307 _____ () C:\Users\Home\AppData\Roaming\burnaware.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000096 _____ () C:\Users\Home\AppData\Roaming\Camdata.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamLayout.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamShapes.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0004534 _____ () C:\Users\Home\AppData\Roaming\CamStudio.cfg 2012-05-28 20:08 - 2012-05-28 20:08 - 0000000 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.Data.ini 2012-05-28 20:08 - 2012-05-28 20:08 - 0001206 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.ini 2011-09-13 21:13 - 2011-09-13 21:13 - 0099384 _____ () C:\Users\Home\AppData\Roaming\inst.exe 2010-01-14 00:44 - 2010-01-14 00:44 - 0031793 _____ () C:\Users\Home\AppData\Roaming\mdbu.bin 2010-02-20 00:34 - 2010-03-28 22:30 - 0038276 _____ () C:\Users\Home\AppData\Roaming\Microsoft Excel.ADR 2011-09-13 21:13 - 2011-09-13 21:13 - 0007859 _____ () C:\Users\Home\AppData\Roaming\pcouffin.cat 2011-09-13 21:13 - 2011-09-13 21:13 - 0001167 _____ () C:\Users\Home\AppData\Roaming\pcouffin.inf 2011-09-13 21:14 - 2011-09-13 21:14 - 0000034 _____ () C:\Users\Home\AppData\Roaming\pcouffin.log 2015-09-11 20:01 - 2015-09-11 20:01 - 0001181 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt 2015-09-11 20:01 - 2015-09-11 20:01 - 0000000 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt 2015-02-06 17:44 - 2015-02-06 17:44 - 0000096 _____ () C:\Users\Home\AppData\Roaming\version2.xml 2013-02-03 23:24 - 2015-10-10 10:14 - 0080896 _____ () C:\Users\Home\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-12-11 22:27 - 2015-12-11 22:27 - 0000092 _____ () C:\Users\Home\AppData\Local\fusioncache.dat 2015-10-22 20:31 - 2015-12-28 20:22 - 0000026 _____ () C:\Users\Home\AppData\Local\isoworkshop.ini 2014-12-07 13:33 - 2014-12-07 13:33 - 0007931 _____ () C:\Users\Home\AppData\Local\recently-used.xbel 2013-04-02 13:55 - 2015-06-09 22:58 - 0007663 _____ () C:\Users\Home\AppData\Local\Resmon.ResmonCfg 2014-03-22 10:49 - 2014-03-22 10:49 - 0617204 _____ () C:\ProgramData\1395480845.bdinstall.bin 2014-04-27 16:55 - 2014-04-27 16:55 - 0240135 _____ () C:\ProgramData\1398614049.bdinstall.bin 2014-04-27 16:59 - 2014-04-27 17:01 - 0001545 _____ () C:\ProgramData\1398614324.1288.bin 2014-04-27 17:02 - 2014-04-27 17:02 - 0002247 _____ () C:\ProgramData\1398614324.1620.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0017887 _____ () C:\ProgramData\1398614324.2428.bin 2014-04-27 17:14 - 2014-04-27 17:14 - 0081185 _____ () C:\ProgramData\1398614324.3016.bin 2014-04-27 16:59 - 2014-04-27 17:02 - 0017801 _____ () C:\ProgramData\1398614324.3400.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0010224 _____ () C:\ProgramData\1398614324.3536.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0001090 _____ () C:\ProgramData\1398614324.3736.bin 2014-04-27 16:59 - 2014-04-27 17:14 - 0109821 _____ () C:\ProgramData\1398614324.4176.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0002736 _____ () C:\ProgramData\1398614324.4392.bin 2014-04-27 16:59 - 2014-04-27 17:02 - 0001090 _____ () C:\ProgramData\1398614324.4412.bin 2014-04-27 16:58 - 2014-04-27 17:14 - 0125567 _____ () C:\ProgramData\1398614324.5048.bin 2014-04-27 16:58 - 2014-04-27 17:01 - 0009868 _____ () C:\ProgramData\1398614324.5076.bin 2014-04-27 16:58 - 2014-04-27 17:14 - 0134906 _____ () C:\ProgramData\1398614324.5080.bin 2014-04-27 17:16 - 2014-04-27 17:16 - 0062879 _____ () C:\ProgramData\1398615359.bdinstall.bin 2014-04-27 17:47 - 2014-04-27 17:47 - 0670431 _____ () C:\ProgramData\1398615493.bdinstall.bin 2009-12-23 23:54 - 2012-01-26 19:18 - 0000190 _____ () C:\ProgramData\HPWALog.txt 2015-06-09 23:00 - 2015-06-12 17:59 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log 2009-08-20 10:08 - 2009-08-20 10:08 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log 2009-08-20 10:03 - 2009-08-20 10:04 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log 2009-12-23 13:06 - 2009-12-23 13:06 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log 2009-08-20 10:02 - 2009-08-20 10:03 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log 2009-08-20 10:04 - 2009-08-20 10:08 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log Einige Dateien in TEMP: ==================== C:\Users\Home\AppData\Local\Temp\DseShExt-x64.dll C:\Users\Home\AppData\Local\Temp\DseShExt-x86.dll C:\Users\Home\AppData\Local\Temp\SDShelEx-win32.dll C:\Users\Home\AppData\Local\Temp\SDShelEx-x64.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-12-31 02:48 ==================== Ende von FRST.txt ============================ |
01.01.2016, 20:19 | #42 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter und hier von Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015 durchgeführt von Home (2016-01-01 19:33:51) Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU Windows 7 Home Premium Service Pack 1 (X64) (2009-12-23 22:38:53) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-2055331987-1518689308-177053510-500 - Administrator - Disabled) ASPNET (S-1-5-21-2055331987-1518689308-177053510-1012 - Limited - Enabled) Gast (S-1-5-21-2055331987-1518689308-177053510-501 - Limited - Disabled) Home (S-1-5-21-2055331987-1518689308-177053510-1000 - Administrator - Enabled) => C:\Users\Home HomeGroupUser$ (S-1-5-21-2055331987-1518689308-177053510-1002 - Limited - Enabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D} AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) [verify-U]_AVS_IE_Add-on (HKLM-x32\...\[verify-U]_AVS_IE_Add-on) (Version: 1.0.0.3 - cybits AG) 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) ABBYY FineReader 9.0 Professional Edition (HKLM-x32\...\{F9000000-0001-0000-0000-074957833700}) (Version: 9.00.453.55019 - ABBYY) ABBYY PDF Transformer 2.0 (HKLM-x32\...\{FA200000-0001-0000-0000-074957833700}) (Version: 2.0.1147.49010 - ABBYY Software Ltd.) Acronis True Image 2014 (HKLM-x32\...\{3ECDD663-5AF8-489B-9E3C-561F33A271BD}Visible) (Version: 17.0.6673 - Acronis) Acronis True Image 2014 (x32 Version: 17.0.6673 - Acronis) Hidden Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated) Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.) AMD Catalyst Install Manager (HKLM\...\{ACF4E7FE-650D-9BD7-BAE5-1AD061F40F69}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.) AVCutty 3.5 (HKLM-x32\...\AVCutty) (Version: 3.5 - ) AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies) AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version: - AVM Berlin) Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 17.27.0.1146 - Bitdefender) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5300 - Broadcom Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.8.2631 - CDBurnerXP) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP) CDDRV_Installer (x32 Version: 4.20 - Logitech) Hidden CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.79.0.2015 - Georgy Berdyshev) Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Content Pack (HKLM\...\{832191A7-9336-4DCD-94EF-F29955DEA165}) (Version: 1.0.0.0 - MAGIX Software GmbH) CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 2.05 - NCH Software) DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.84 - DivX, LLC) dm-Fotowelt (HKLM-x32\...\dm-Fotowelt) (Version: 6.0.5 - CEWE Stiftung u Co. KGaA) Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.) Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden eMedia Piano Einstieg Für Dummies (HKLM-x32\...\{D0D24351-FF92-450e-8143-6D848C6EFAC6}) (Version: - eMedia Piano Einstieg Für Dummies) ENE CIR Receiver Driver (HKLM\...\FFE7D41DF3C645075BB149E21988B63996C34187) (Version: 2.7.4.0 - ENE) Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG) FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden FormatFactory 3.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.5.0 - Free Time) FOTOParadies (HKLM-x32\...\{A606BBD1-0BC4-45C1-8C26-C1471D85DAE4}}_is1) (Version: 3.1.10.105 - Foto Online Service GmbH) Garmin BaseCamp (HKLM-x32\...\{81EF7DBD-909A-455B-8B32-24B8CDC75039}) (Version: 4.3.3 - Garmin Ltd or its subsidiaries) Garmin Communicator Plugin (HKLM-x32\...\{B1EE1CC5-6CED-4801-BFFF-8454F21A245A}) (Version: 2.9.3 - Garmin Ltd or its subsidiaries) Garmin TOPO Deutschland 2010 (HKLM-x32\...\{C7C82ED1-E5AD-48CF-8B92-38DD9B49610C}) (Version: 4.0.0.0 - Garmin Ltd or its subsidiaries) Garmin Trip and Waypoint Manager v5 (HKLM-x32\...\{414A373B-59DF-4102-94CA-9FE9A74CBDDA}) (Version: 5.0.0.0 - Garmin Ltd or its subsidiaries) Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries) Garmin WebUpdater (HKLM-x32\...\{00FE2935-FB56-4410-AB5F-D6E70C1771D2}) (Version: 2.5.6 - Garmin Ltd or its subsidiaries) GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.) Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.) Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Talk Plugin (HKLM-x32\...\{36A52BCF-AC3D-32F1-AD5F-A09769EB8887}) (Version: 4.1.3.13728 - Google) Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Google+ Auto Backup (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.) GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.) Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2 (HKLM-x32\...\Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2) (Version: - ) Haufe iDesk-Service (HKLM-x32\...\{27F10580-E040-11DF-8C28-005056B12123}) (Version: 10.10.25.7810 - Haufe) Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden HP 3D DriveGuard (HKLM\...\{7FD7F421-39B2-4CAC-BC41-7D83DDBAB329}) (Version: 4.0.3.1 - Hewlett-Packard) HP Advisor (HKLM-x32\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard) HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.0.3123 - Hewlett-Packard) HP MediaSmart Internet TV (HKLM-x32\...\InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}) (Version: 3.0.1916 - Hewlett-Packard) HP MediaSmart Live TV (HKLM-x32\...\InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}) (Version: 3.0.1924 - Hewlett-Packard) HP MediaSmart Movie Themes (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.0.3102 - Hewlett-Packard) HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.0.3123 - Hewlett-Packard) HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.0.30.1 - Hewlett-Packard) HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.1.1208 - Hewlett-Packard) HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.16.1 - Hewlett-Packard Company) HP Setup (HKLM-x32\...\{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}) (Version: 1.2.3220.3079 - Hewlett-Packard) HP Support Solutions Framework (HKLM-x32\...\{C43602FE-988C-47BA-9F9F-B95FDDAFB624}) (Version: 11.50.0031 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard) HP User Guides 0153 (HKLM-x32\...\{2EBA8202-FBD5-4004-81EA-BDC38C054CE2}) (Version: 1.01.0000 - Hewlett-Packard) HP Wireless Assistant (HKLM-x32\...\{F9A43C0C-F274-4EC0-B02E-202C15C09C00}) (Version: 3.50.12.1 - Hewlett-Packard) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT) ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Indeo® software (HKLM-x32\...\Indeo® software) (Version: - ) Intel(R) PROSet/Wireless WiFi-Software (HKLM\...\{D75AEB5B-FA18-4BD4-9EED-54CA46DB5AE8}) (Version: 13.04.0000 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Internet-TV für Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation) ISO Workshop 6.0 (HKLM-x32\...\ISO Workshop_is1) (Version: - Glorylogic) iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.) Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation) JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.) JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.50.2 - JMicron Technology Corp.) Junk Mail filter update (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden KacoViso (HKLM-x32\...\{9D874610-1444-412E-B379-FD8107FE768B}) (Version: 2.3.0.0 - KACO new energy GmbH ) KacoViso (HKLM-x32\...\{B34110B2-FA4C-40DA-B546-C85B0E2CD114}) (Version: 2.1.5 - Kaco) KeePass Password Safe 2.30 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.30 - Dominik Reichl) KhalInstallWrapper (Version: 4.20.131 - Logitech) Hidden Logitech SetPoint (HKLM-x32\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 4.20 - Logitech) Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.) Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.) MAGIX Page & Layout Designer 11 (HKLM-x32\...\MX.{72EF1C8F-D57A-493D-A8FF-8C966DD46613}) (Version: 11.2.2.40388 - MAGIX Software GmbH) MAGIX Page & Layout Designer 11 (Version: 11.2.2.40388 - MAGIX Software GmbH) Hidden MAGIX Retten Sie Ihre Videokassetten! Version 5 (HKLM-x32\...\MAGIX_MSI_Video_easy_4_RYVT) (Version: 3.0.1.28 - MAGIX AG) MAGIX Retten Sie Ihre Videokassetten! Version 5 (x32 Version: 3.0.1.28 - MAGIX AG) Hidden MAGIX Screenshare (HKLM-x32\...\{31D888B7-9DA0-4219-9371-9A0037A097C6}) (Version: 4.3.6.1987 - MAGIX AG) MAGIX Screenshare (HKLM-x32\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG) MAGIX Speed burnR (HKLM-x32\...\MAGIX Speed burnR D) (Version: 6.0.1.4 - MAGIX AG) MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{49209082-E4F9-410D-B74D-E6506977F30B}) (Version: 7.0.2.6 - MAGIX AG) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden MAGIX USB-Videowandler 2 (HKLM-x32\...\{8D85149E-D7A0-4920-BEBF-B6CEDFED8D1E}) (Version: 1.02.0000 - Ihr Firmenname) MAGIX USB-Videowandler 2 (HKLM-x32\...\InstallShield_{91065458-A5CF-474C-9160-B44B974B3C25}) (Version: 1.00.0000 - MAGIX) MAGIX USB-Videowandler 2 (x32 Version: 1.00.0000 - MAGIX) Hidden MAGIX Video deluxe 16 Premium 9.0.0.54 (D) (HKLM-x32\...\MAGIX Video deluxe 16 Premium D) (Version: 9.0.0.54 - MAGIX AG) MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{85061988-E889-4A37-9CB7-4F695AC35544}) (Version: 13.0.2.8 - MAGIX AG) MAGIX Video deluxe 2014 Plus (Version: 13.0.2.8 - MAGIX AG) Hidden MAGIX Web Designer MX Premium (HKLM-x32\...\MAGIX_{739FE2DC-0C7E-4A1C-AC6E-46348169E27E}) (Version: 8.0.2.21761 - MAGIX AG) MAGIX Web Designer MX Premium (Version: 8.0.2.21761 - MAGIX AG) Hidden MAGIX Xtreme Foto Designer 6 (HKLM-x32\...\MAGIX Xtreme Foto Designer 6 D) (Version: 6.0.29.0 - MAGIX AG) Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Media Go Video Playback Engine 1.88.103.12040 (HKLM-x32\...\{7FA1DAFD-AF55-E915-FD92-F269443A2ADF}) (Version: 1.88.103.12040 - Sony) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Office Home and Business 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 43.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.2 (x86 de)) (Version: 43.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger) NVIDIA PhysX v8.10.29 (HKLM-x32\...\{D56B0E27-4A3E-46C9-B5C1-D93D580C099C}) (Version: 8.10.29 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation) Page & Layout Designer Update (Version: 11.2.3.40790 - MAGIX Software GmbH) Hidden Paragon Partition Manager™ 11 Professional (HKLM-x32\...\{A35001F0-F1E4-11DD-A38B-005056C00008}) (Version: 90.00.0003 - Paragon Software) Parrot Software Update Tool (HKLM-x32\...\Parrot Flash Update Wizard) (Version: - ) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) PowerRecover (x32 Version: 5.5.1923 - CyberLink Corp.) Hidden PriMus Free 1.1 (Build 10843) (HKLM-x32\...\PriMus Free_is1) (Version: 1.1.0.10843 - Columbus Soft) proDAD Mercalli 1.0 (HKLM-x32\...\proDAD-Mercalli-1.0) (Version: - ) QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.2.1 r2386 - ) Ravensburger tiptoi (HKLM-x32\...\Ravensburger tiptoi) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek) Recuva (HKLM\...\Recuva) (Version: 1.43 - Piriform) RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version: - ) RemoteComms External Disk Access (HKLM-x32\...\{04FCD5DE-1662-4F99-BDA9-C57212113EF2}) (Version: 1.25.0003 - PLX Technology) Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) SanDiskSecureAccess_Manager.exe (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\@@__UNKNOWN__@@SanDiskSecureAccess_Manager.exe) (Version: 1.0.0 - DMAILER) Scribus 1.4.4 (64bit) (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team) Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation) Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.) Steuer 2012 (HKLM-x32\...\{01159E8A-44F7-4885-A7F9-872CE4D74063}) (Version: 20.00.8137 - Buhl Data Service GmbH) Steuer 2013 (HKLM-x32\...\{05AEF487-8926-48A9-B5BA-9BED72BC6B1C}) (Version: 21.00.8480 - Buhl Data Service GmbH) Steuer 2014 (HKLM-x32\...\{2EE860C7-4551-479F-AF01-328B8AA46051}) (Version: 22.00.8811 - Buhl Data Service GmbH) StreamTransport version: 1.1.6.2 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version: - ) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Gesture Suite featuring SYNAPTICS | Scrybe (HKLM-x32\...\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}) (Version: 1.6.5.17120 - Synaptics Inc.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer) TELL ME MORE (HKLM-x32\...\TMM90) (Version: - ) TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 10.0.4200.97 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.2160.11 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden Unity Web Player (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN) VSDC Free Video Editor Version 3.3.0.394 (HKLM-x32\...\VSDC Free Video Editor_is1) (Version: 3.3.0.394 - Flash-Integro LLC) Vuze (HKLM-x32\...\8461-7759-5462-8226) (Version: 5.4.0.0 - Azureus Software, Inc.) WD Drive Utilities (HKLM-x32\...\{C093AD5D-29E9-4777-AAAC-28C02FCC2A51}) (Version: 1.0.4.11 - Western Digital Technologies, Inc.) WD Quick View (HKLM-x32\...\{507B1304-194A-4204-A9D9-9BAAF51EF760}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) WD Security (HKLM-x32\...\{8A7B24E8-864E-4794-95C4-17644D0991AA}) (Version: 1.0.6.3 - Western Digital Technologies, Inc.) WD SmartWare (HKLM\...\{A7C403DA-B8D9-4CA0-93D9-6C7F00772240}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) WD SmartWare Installer (HKLM-x32\...\{ba99df5b-3e46-419e-81e2-544352772fda}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) Web Designer Premium MX Update (Version: 8.1.4.24749 - MAGIX AG) Hidden Web Designer Premium MX Update (Version: 8.1.5.31094 - MAGIX AG) Hidden Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom) Windows Driver Package - Cambridge Silicon Radio Ltd. (CSRBC) USB (04/21/2011 01.0.0.0) (HKLM\...\BEA7B05370C19B9C86893BB484FD6B9CC52B0CD8) (Version: 04/21/2011 01.0.0.0 - Cambridge Silicon Radio Ltd.) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin) Windows Live Anmelde-Assistent (HKLM-x32\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8064.0206 - Microsoft Corporation) Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) WinRAR 4.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH) XviD MPEG4 Video Codec (remove only) (HKLM-x32\...\XviD MPEG4 Video Codec) (Version: - ) Youku Downloader (xmlbar) (nur entfernen) (HKLM-x32\...\Xmlbar YoukuDownloader) (Version: - ) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {06DDAB1C-A9B0-4233-AD4A-9714FAC58293} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPSAObjUtilTask => C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\UtilTask.exe [2014-12-02] (Microsoft) Task: {0754560E-352E-4440-828F-5C0DD743751A} - System32\Tasks\CapUninst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe [2009-07-24] (CL) Task: {0A5DE71C-6CC7-4132-8642-DE8FDF084929} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09] (Oracle Corporation) Task: {111BCB09-5A3A-41E6-8091-507CD9430C3D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard) Task: {26E5C788-0C67-4826-A062-97DED9F10166} - System32\Tasks\CapSchedInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe [2009-07-24] (CL) Task: {2D56EEEE-26A0-46DF-B413-1D3CE199C7C3} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender\bdproductdata.exe [2015-07-29] (Bitdefender) Task: {31CF6315-5D02-47EF-96EA-B64999B55273} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-07-23] (CyberLink) Task: {34316C50-305D-41F4-BA48-B585821B76C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {3AAD950A-BD91-4D39-A9F5-E9BDEF7213E7} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [2012-09-27] (Hewlett-Packard Company) Task: {3D7E7FE8-CD48-4E47-831B-B1FB839665EE} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {41001F0E-CE0D-42DC-A287-0139252339EA} - System32\Tasks\{752DFCA0-ED28-44AD-87EE-69C977B3D27A} => pcalua.exe -a C:\Users\Home\Downloads\im3stp03.exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {5169FC5F-F639-4B35-8619-8F930B314AD3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {5496EA6A-D5B0-4B53-AC15-10FE00BDB8E9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.) Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {6A0E2448-B98A-4236-BB75-E849ABAEF03A} - System32\Tasks\CapSvcInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe [2009-07-24] (CL) Task: {6E3E742C-E8A4-4A3C-97C9-7218152143A1} - System32\Tasks\{217E48E3-275F-49B5-A2E9-74B488C70DCF} => pcalua.exe -a "C:\Program Files (x86)\MAGIX\Video_deluxe_16_Premium\unwise.exe" Task: {76BC6246-6003-4080-8B9E-A373848B4A9E} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [2009-07-23] (CyberLink Corp.) Task: {85D7737D-3F15-4558-B2D3-908BDF7DED1F} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {86DC2FFE-238A-470A-81E3-04BAAD9C65F0} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2012-09-27] (Hewlett-Packard Company) Task: {92463B00-1FE5-417F-B89A-393662C1FDAF} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe Task: {9CDC2E3E-0C0C-446F-AE9D-6EDD35609373} - System32\Tasks\{070A97D9-16E9-488C-B625-9FEBA1B5A458} => pcalua.exe -a "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -d "C:\Program Files (x86)\Mozilla Firefox" Task: {A1B285B5-9BD8-4862-81BC-91706A2089ED} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2014-10-21] (Hewlett-Packard) Task: {C0C404B2-08F6-4EA9-B6DA-80531A854F44} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {C873030E-708B-4409-BD74-68A7A27634D9} - System32\Tasks\Google Update => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {CFD66453-3FDF-4F51-A0B9-C34317E22FC4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {D04B8C5C-C79F-4AA1-A96B-B8F51DCC4CD6} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.) Task: {D1198108-4694-4BAC-B4C0-320192E98CA1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd) Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc Task: {E1CE8085-686D-42F0-A130-A4C45C50F1D6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {EE990A70-EF3E-483F-8B79-397011620C5E} - System32\Tasks\TVAgent => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [2009-07-24] (CyberLink Corp.) Task: {F32EF2A0-7535-4703-88F8-27871EA02D08} - System32\Tasks\MUI StartMenu Application => C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [2008-11-14] (CyberLink Corp.) Task: {F6254647-B40C-457B-B576-4CFE3DC30071} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28] (Adobe Systems Incorporated) Task: {FC5B39F5-D584-47ED-8686-C5DB6678275C} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2014-11-13 23:11 - 2014-11-13 23:11 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll 2014-11-13 23:11 - 2014-11-13 23:11 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui 2014-11-13 23:11 - 2014-11-13 23:11 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui 2015-12-03 21:05 - 2015-12-03 21:05 - 00876888 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpbr.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 00742976 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpdsp.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 02803536 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpph.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 01415584 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttprbl.mdl 2010-10-19 12:39 - 2010-10-19 12:39 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll 2011-06-28 00:47 - 2013-10-01 10:32 - 02818216 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll 2011-09-04 19:41 - 2011-05-28 21:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2009-09-28 10:00 - 2009-01-12 07:15 - 00071096 _____ () C:\Windows\SysWOW64\NMSAccess32.exe 2010-06-24 16:04 - 2010-06-24 16:04 - 00394544 ____R () C:\Program Files\Iomega\QuikProtect\QpMonitor.exe 2015-03-24 14:28 - 2015-03-24 14:28 - 00036544 _____ () C:\Program Files\Rainmeter\Rainmeter.exe 2015-03-24 14:28 - 2015-03-24 14:28 - 00775872 _____ () C:\Program Files\Rainmeter\Rainmeter.dll 2015-03-24 14:27 - 2015-03-24 14:27 - 00058368 _____ () C:\Program Files\Rainmeter\Plugins\WebParser.DLL 2009-07-23 11:37 - 2009-07-23 11:37 - 00931112 ____N () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll 2014-04-27 17:32 - 2014-11-13 23:09 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll 2015-09-04 10:41 - 2015-09-04 10:40 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll 2013-10-10 12:02 - 2013-10-10 12:02 - 00013120 _____ () C:\Program Files (x86)\Common Files\Acronis\TibMounter\icudt38.dll 2014-02-04 18:25 - 2014-02-04 18:25 - 00036672 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll 2014-02-04 18:25 - 2014-02-04 18:25 - 00028992 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll 2015-12-11 21:01 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll 2015-12-11 21:01 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll 2015-12-11 21:01 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2015-12-11 21:01 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00486704 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd 2015-10-03 11:33 - 2015-10-31 02:01 - 00019920 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll 2015-08-15 08:55 - 2015-10-31 02:00 - 00786904 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-10-03 11:33 - 2015-10-31 02:00 - 00063448 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-10-03 11:33 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll 2014-10-17 04:08 - 2014-10-17 04:08 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\098e8bf088c2956ba306dfd643107a7e\IsdiInterop.ni.dll 2011-08-31 23:38 - 2010-11-05 22:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2014-02-04 18:28 - 2014-02-04 18:28 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\Users\Home\Downloads\ChromeSetup.exe:BDU AlternateDataStreams: C:\Users\Home\Downloads\GoodSync-Setup.exe:BDU ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Home\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.178.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: gusvc => 3 MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Electronic Arts\EADM\EADMUI\EADMUI.exe" MSCONFIG\startupreg: TrayServer => C:\PROGRA~2\MAGIX\VIDEO_~1\TrayServer.exe MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{B368F941-0CB4-4EF3-A560-ECE92A7CCA92}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe FirewallRules: [{C0F1CDEB-8A20-49A1-B35F-5DAF6B0806A4}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe FirewallRules: [{8A169D17-0EB7-49FF-931C-5C43E2073505}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{DE33A289-732E-4654-943F-7A45743D6E43}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [UDP Query User{58171B02-7028-4BF1-9160-E1F593897D8F}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [TCP Query User{A23EF6E2-8FE1-490B-B182-4B1D855313A1}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [UDP Query User{747DCA01-6FAE-4DD4-87BD-04DEE5969E99}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [{0D44D73D-B6F6-479E-AD4A-A863E07010D2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{10E3F261-C815-4590-A29E-EC4173FB564B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{0DB76952-E1CC-4093-8D00-69A1B877A183}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{79A45DF0-A4C0-4C5C-8D73-5633069B5AB1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{87DD92E8-3A51-4F11-A27A-D7F0E392A084}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{3F29078F-E968-4BBF-914A-C14E9E9053AB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{53F35B89-2E99-40C6-8489-81A8CFBDE47B}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [UDP Query User{6857BD51-C109-4A14-BE0E-236E4BADABAA}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [TCP Query User{1B913C34-2DEA-465C-B4AF-F0478C3604D2}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [UDP Query User{6E9D74FC-F1A2-400E-9926-98A4F719EE31}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [{CB1292DF-547A-4225-B447-A7CF9A1AF843}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{DAF16138-C0FB-4179-A6A8-5DF3FF390167}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe FirewallRules: [UDP Query User{82BF5BFC-EC69-4092-98FB-B299CDAD059E}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe FirewallRules: [{73A0BC91-D30C-4791-A427-715EA9C500AA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{86796E47-EB99-4916-BACB-2967A65E14EB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{EFAEE846-1759-4F70-A6FF-86B7449CB4A2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{48A53461-FCE7-4A5D-ACD6-387272CE8B2C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{469A731D-13DA-4D3E-BB89-207BAE65F4C6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{D88A371D-7671-42B9-87BB-F72D52A80278}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{058DE289-ACB7-491D-B16B-7F684C3A3F3D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{F125FF56-47A7-405C-8727-338099D9B436}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{ED6F9988-0AD6-441A-8F5F-BCD0BFC8236B}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [UDP Query User{9E2A97ED-6B26-4F70-BE14-218E65B14490}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [{D4CB0E40-90B9-489A-831E-236EA6BE6DC1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{293F9E14-6E7E-4DC1-8FBA-CEE79D5BCBB2}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{76CEB911-B258-459D-963A-F8B71E4A8AB6}] => (Allow) LPort=54010 FirewallRules: [{7D213076-29F2-40D4-92E9-CC4274B63F77}] => (Allow) LPort=49165 FirewallRules: [{A74E5788-619C-4AB8-B62E-DBB7CFB9B976}] => (Allow) LPort=5000 FirewallRules: [TCP Query User{C4E47B49-F94E-4559-BB5D-1C96688348B0}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe FirewallRules: [UDP Query User{FE0B45D0-DE05-474F-8531-831A5F53C150}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe FirewallRules: [TCP Query User{CE0F1D27-01E9-45EB-A33E-839D40D9B075}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [UDP Query User{3D17EF45-2CEF-4683-88C5-4B626DB2AC8E}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [{A1CDAA7C-8504-4A92-B537-99523681F143}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{923B94FB-9D8E-4E25-BF03-86BC271C5D6E}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [TCP Query User{FFDC21D7-07DA-4596-96F6-2606D1EE5523}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [UDP Query User{14F53A11-7ED1-4DE0-A7D2-97B462A28FBD}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [TCP Query User{55946F33-1BFB-4145-8AB1-5D1F22F492E7}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [UDP Query User{C090514C-6057-4356-8FF6-C331D79D3331}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [{970D3085-A7A4-4F79-B343-049A8BCA0A5C}] => (Allow) F:\fsetup.exe FirewallRules: [{2B7218D5-2AD3-4B90-A65B-D5408829DE19}] => (Allow) F:\fsetup.exe FirewallRules: [TCP Query User{542118CF-7A70-4724-8A79-A6EB75B4FFED}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe FirewallRules: [UDP Query User{D39C71E1-53A0-431D-AB76-ACC2297B9F8C}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe FirewallRules: [TCP Query User{10CE6C0D-E841-420D-90D5-DC3DAC394401}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe FirewallRules: [UDP Query User{04E6753E-4B85-4D1B-ABA4-A9478F312164}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe FirewallRules: [{AA815EF5-355D-4D28-A008-E21B73350E82}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{CB407730-B925-456F-AA28-CE95A904668F}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{4BE75D74-AF9E-40FE-9152-7E9E2059F0EC}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{FC013570-8818-49C7-B0EE-3CCB7A4C0201}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{26DEB5FB-BE8C-4DC4-A0B5-048BFF82B0AC}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{365B34C2-C733-431E-8642-4A93CCCBD74A}] => (Allow) C:\Program Files (x86)\Vuze\Azureus.exe FirewallRules: [{4BD8A3E4-BF87-42FC-A8B4-76310CBF3534}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{049AC890-1243-4FE2-8EF7-84F0BA451EAD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{7E20B448-3ED1-4F81-A122-E8A94D23D474}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [UDP Query User{DCEE4AC1-9E2A-42F7-AD9E-7E1457569345}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [{317403D4-D673-41E0-9FA7-D691E575DFE6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{FD9A778E-8629-4836-8AC3-C1F8257A39E1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C65A4598-15FC-4B7B-8B8E-0707C30116A1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{AA9F69DB-EB14-4AE5-B989-0FEACAB37859}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{A756DD02-76B3-411A-A389-9540F12347CA}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{F04E674E-45C2-4495-A8B5-44D0C60BD685}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{9C4BF95C-CB89-4999-BB0D-61D4F7BEA3E3}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{37AF3EA8-2C25-476F-BB39-27CC871F71FA}] => (Allow) C:\Program Files\Soluto\SolutoRemoteDirect.exe FirewallRules: [{E7147E98-EB39-4389-AA34-1C8F13036CEA}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PFInstOnline.exe FirewallRules: [{818B516A-0465-4991-834F-18450FBFDB0E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe FirewallRules: [{D93A30B2-2F50-4501-9A99-8163D5CEE919}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{36F8F835-FD92-413A-8422-C8B288FDFEFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{523F29E1-4B2C-4CFF-B172-219BBA061846}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe FirewallRules: [{485D813E-61CB-4ACC-A0E5-4605B70CD791}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe FirewallRules: [{06AFD3D5-E41F-43FA-93A1-D3BF6A35DF9E}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe FirewallRules: [{99EFE046-3B35-4BA0-AF8D-3343067636AD}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\VideoEditor.exe FirewallRules: [{F29603EC-DA84-4DA0-9087-AEEA9BB682BE}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe FirewallRules: [{74F4A7EF-37C3-48B6-8186-D35FCDBFEDE3}] => (Allow) C:\Program Files (x86)\FlashIntegro\VideoEditor\Updater.exe FirewallRules: [{768B6FD9-DE8E-4019-94F4-317AC81ECE6C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{0EB65856-E6E3-4B5B-953C-375C0CC1F35E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{91D760C6-8120-489B-A05B-B1EC38BC73B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{7C818C20-03B9-42CC-89EE-075253F470D7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F3D82C56-40A4-4AAC-8131-C68328FF9882}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Wiederherstellungspunkte ========================= 31-12-2015 16:32:23 Revo Uninstaller's restore point - Google Chrome 31-12-2015 17:47:55 Revo Uninstaller's restore point - AAVUpdateManager 31-12-2015 17:48:53 Removed AAVUpdateManager. 31-12-2015 17:57:35 Revo Uninstaller's restore point - Apple Software Update 31-12-2015 17:59:41 Revo Uninstaller's restore point - AVG PC TuneUp 2015 31-12-2015 18:00:50 AVG PC TuneUp 2015 wird entfernt 31-12-2015 18:03:43 AVG PC TuneUp 2015 (de-DE) wird entfernt 31-12-2015 18:06:02 Revo Uninstaller's restore point - Spyware Terminator 31-12-2015 18:19:55 Revo Uninstaller's restore point - SlimDrivers 31-12-2015 18:22:35 Removed SlimDrivers 31-12-2015 18:31:39 Revo Uninstaller's restore point - Adobe AIR 31-12-2015 18:32:41 Revo Uninstaller's restore point - Anti-Twin (Installation 14.02.2010) 31-12-2015 18:34:15 Revo Uninstaller's restore point - DAEMON Tools Lite 31-12-2015 18:35:35 Revo Uninstaller's restore point - myBet Poker 31-12-2015 18:57:07 Revo Uninstaller's restore point - Wondershare Filmora(Build 6.8.1) ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Bluetooth-Peripheriegerät Description: Bluetooth-Peripheriegerät Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: AT6DYR4J IDE Controller Description: AT6DYR4J IDE Controller Class Guid: {4D36E97B-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard mass storage controllers) Service: a2ap12gs Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39) Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (01/01/2016 07:32:26 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (01/01/2016 06:25:19 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 12043 Error: (01/01/2016 06:25:19 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 12043 Error: (01/01/2016 06:25:16 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (12/31/2015 06:59:37 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (12/31/2015 06:50:05 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (12/31/2015 06:35:35 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer". Details: AddWin32ServiceFiles: Unable to back up image of service Windows Presentation Foundation-Schriftartcache 3.0.0.0 since QueryServiceConfig API failed System Error: Das System kann die angegebene Datei nicht finden. . Error: (12/31/2015 06:34:15 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer". Details: AddWin32ServiceFiles: Unable to back up image of service Windows Presentation Foundation-Schriftartcache 3.0.0.0 since QueryServiceConfig API failed System Error: Das System kann die angegebene Datei nicht finden. . Error: (12/31/2015 06:32:42 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer". Details: AddWin32ServiceFiles: Unable to back up image of service Windows Presentation Foundation-Schriftartcache 3.0.0.0 since QueryServiceConfig API failed System Error: Das System kann die angegebene Datei nicht finden. . Error: (12/31/2015 06:31:39 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: ) Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer". Details: AddWin32ServiceFiles: Unable to back up image of service Windows Presentation Foundation-Schriftartcache 3.0.0.0 since QueryServiceConfig API failed System Error: Das System kann die angegebene Datei nicht finden. . Systemfehler: ============= Error: (01/01/2016 06:25:56 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst afcdpsrv erreicht. Error: (01/01/2016 06:25:46 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Error: (01/01/2016 06:25:18 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {995C996E-D918-4A8C-A302-45719A6F4EA7} Error: (01/01/2016 06:25:10 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst afcdpsrv erreicht. Error: (12/31/2015 06:56:13 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "PnP-X-IP-Busenumerator" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Error: (12/31/2015 06:53:57 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: UimBus Uim_IM Error: (12/31/2015 06:50:54 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (12/31/2015 06:47:24 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "PnP-X-IP-Busenumerator" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Error: (12/31/2015 06:45:19 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: UimBus Uim_IM Error: (12/31/2015 06:39:43 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst vsserv erreicht. CodeIntegrity: =================================== Date: 2016-01-01 19:32:44.426 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-01 19:32:35.059 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-01 18:47:29.586 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$RIEZ1IZ.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-01 18:47:29.507 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$RIEZ1IZ.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-01 18:47:29.419 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$RIEZ1IZ.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-01 18:47:25.134 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$RPA07M0.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-01 18:47:25.026 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$RPA07M0.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-01 18:47:24.879 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\$Recycle.Bin\S-1-5-21-2055331987-1518689308-177053510-1000\$RPA07M0.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-01 18:31:33.427 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-01 18:26:04.519 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz Prozentuale Nutzung des RAM: 68% Installierter physikalischer RAM: 4063.19 MB Verfügbarer physikalischer RAM: 1274.44 MB Summe virtueller Speicher: 8124.58 MB Verfügbarer virtueller Speicher: 4863.26 MB ==================== Laufwerke ================================ Drive c: (OS) (Fixed) (Total:151.36 GB) (Free:35.76 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] Drive d: (Büro) (Fixed) (Total:48.83 GB) (Free:6.32 GB) NTFS Drive e: (Z***) (Fixed) (Total:12.94 GB) (Free:3.74 GB) NTFS Drive g: (Fotos) (Fixed) (Total:65.51 GB) (Free:14.11 GB) NTFS Drive h: (Videoprojekte) (Fixed) (Total:41.01 GB) (Free:19.68 GB) NTFS Drive p: (Videoschnitt) (Fixed) (Total:43.01 GB) (Free:7.79 GB) NTFS Drive q: (Container) (Fixed) (Total:19.24 GB) (Free:4.31 GB) NTFS Drive y: (Excelprojekte) (Fixed) (Total:7.81 GB) (Free:6.48 GB) NTFS Drive z: (Sonstiges) (Fixed) (Total:206.24 GB) (Free:73.3 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 298.1 GB) (Disk ID: 44854109) Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=151.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=133.6 GB) - (Type=05) Partition 4: (Not Active) - (Size=12.9 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 4BBD1113) Partition 1: (Not Active) - (Size=298.1 GB) - (Type=42) ==================== Ende von Addition.txt ============================ Bemerkst du Verbesserungen? Die CPU schwankt immer noch hin und her. Aber nicht mehr ganz so hoch. Sondern nur noch bis zu ca. 30% |
02.01.2016, 15:27 | #43 |
/// Malwareteam | Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter Schritt 1
Schritt 2 Bitte suche deinen Papierkorb auf dem Desktop, mache einen Rechtsklick darauf und wähle "Papierkorb leeren" - bestätige die Aktion. Schritt 3 Bitte starte wieder FRST, setze den Haken bei Addition und drücke auf Untersuchen. Poste bitte wieder die beiden Textdateien, die so entstehen.
__________________ Mfg, Rafael ~ I'm storm. I'm calm. I'm fire. I'm ice. I'm burningice. ~ Unterstütze uns mit einer Spende ......... Lob, Kritik oder Wünsche ......... .......... Folge uns auf Facebook .......... |
02.01.2016, 17:33 | #44 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter hier die FRST.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:29-12-2015 durchgeführt von Home (Administrator) auf NOTEBOOK-RS (02-01-2016 17:28:51) Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU Geladene Profile: Home (Verfügbare Profile: Home) Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland) Internet Explorer Version 11 (Standard-Browser: FF) Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\vsserv.exe (AMD) C:\Windows\System32\atiesrxx.exe (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe (Logitech, Inc.) C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe (AMD) C:\Windows\System32\atieclxx.exe (Microsoft Corporation) C:\Windows\System32\wlanext.exe (ABBYY) C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe (Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AESTSr64.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe (Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe (Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe (Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe (Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe (Logitech Inc.) C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe (Logitech Inc.) C:\Program Files (x86)\Common Files\LogiShrd\LVMVFM\LVPrS64H.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe () C:\Windows\SysWOW64\NMSAccess32.exe () C:\Program Files\Iomega\QuikProtect\QpMonitor.exe (Synaptics, Inc.) C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\psia.exe (Malwarebytes) C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbam.exe (TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (CyberLink) C:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe (CyberLink Corp.) C:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\bdagent.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe (Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe (Acronis) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Synaptics Incorporated) C:\Program Files (x86)\Synaptics\Scrybe\scrybe.exe () C:\Program Files\Rainmeter\Rainmeter.exe (Secunia) C:\Program Files (x86)\Secunia\PSI\sua.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe (Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe (Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Acronis) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\Bluetooth Headset Helper.exe (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE (MAGIX Software GmbH) C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\PageLayoutDesigner.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe (Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE (Google Inc.) C:\Program Files (x86)\Google\Picasa3\Picasa3.exe (Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Bitdefender) C:\Program Files\Bitdefender\Bitdefender\downloader.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2837288 2011-10-14] (Synaptics Incorporated) HKLM\...\Run: [Kernel and Hardware Abstraction Layer] => C:\Windows\KHALMNPR.EXE [134416 2007-06-12] (Logitech, Inc.) HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [1757520 2015-02-02] (Bitdefender) HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1702912 2000-01-01] (IDT, Inc.) HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1136552 2015-11-12] (AVG Technologies CZ, s.r.o.) HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [1104616 2013-10-10] (Acronis International GmbH) HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [7843744 2014-02-04] (Acronis) HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [24952456 2015-12-08] (Dropbox, Inc.) HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [2720144 2015-08-09] (Dominik Reichl) HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Policies\system: [WallpaperStyle] 2 HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Agent] => C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [568400 2015-02-02] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse] => C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [1002048 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Run: [Bitdefender-Geldb�rse-Anwendungs-Agent] => C:\Program Files\Bitdefender\Bitdefender\antispam32\bdapppassmgr.exe [615256 2014-11-13] (Bitdefender) HKU\S-1-5-18\...\Policies\system: [WallpaperStyle] 2 HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE -> Lsa: [Notification Packages] scecli c:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2015-11-04] (Google) ShellIconOverlayIdentifiers: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2013-10-01] () ShellIconOverlayIdentifiers-x32: [ DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt3] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt4] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt5] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt6] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt7] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt8] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt.28.dll [2015-12-08] (Dropbox, Inc.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2015-06-11] ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Scrybe.lnk [2012-01-14] ShortcutTarget: Scrybe.lnk -> C:\Windows\Installer\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}\NewShortcut11_8ACB210B42E44145A8C31F8E3DD765A3.exe (Acresso Software Inc.) Startup: C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2015-06-10] ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe () BootExecute: autocheck autochk * auto_reactivate \\?\Volume{f7c81a36-efb9-11de-a798-806e6f6e6963}\bootwiz\asrm.bin ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{7A31314E-4D6E-42E3-9220-5D359B8B3242}: [DhcpNameServer] 192.168.178.1 Tcpip\..\Interfaces\{D2518004-8FB8-4822-8DAA-FD4DF64F2AD4}: [DhcpNameServer] 192.168.178.1 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = SearchScopes: HKU\S-1-5-21-2055331987-1518689308-177053510-1000 -> {2B3C2340-94E2-4C61-B6DF-044D73A4A925} URL = hxxp://de.search.yahoo.com/search?p={searchTerms}&ei={inputEncoding}&fr=cb-hp06&type=ie2008 BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll [2014-11-13] (Bitdefender) BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28] (Hewlett-Packard) BHO: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG) BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxie.dll [2014-11-13] (Bitdefender) BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-11-18] (Oracle Corporation) BHO-x32: Windows Live Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation) BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation) BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-18] (Oracle Corporation) BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2015-10-19] (Hewlett-Packard Company) BHO-x32: [verify-U]_Add-on -> {F4552A56-119C-478E-AB3F-2C850F78B72E} -> C:\Program Files (x86)\[verify-U]_AVS_IE_Add-on\[verify-U]_AVS.dll [2009-09-09] (Cybits AG) DPF: HKLM-x32 {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} file:///H:/Projekte%20Magix/Tatort/components/hidinputmonitorx.ocx DPF: HKLM-x32 {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} file:///H:/Projekte%20Magix/Tatort/components/A9.ocx DPF: HKLM-x32 {7030CC6C-1A88-4591-BB5A-651B9F7F0C30} file:///H:/Projekte%20Magix/Tatort/components/wmvhdrating.ocx Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation) Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation) StartMenuInternet: IEXPLORE.EXE - iexplore.exe FireFox: ======== FF ProfilePath: C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029 FF Homepage: hxxps://www.google.de/ FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-28] () FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.) FF Plugin: @java.com/DTPlugin,version=10.11.2 -> C:\Windows\system32\npDeployJava1.dll [2013-01-14] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MIF5BA~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-28] () FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll [2012-10-04] (Adobe Systems, Inc.) FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] () FF Plugin-x32: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.) FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2013-08-28] (DivX, LLC) FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2010-10-28] (GARMIN Corp.) FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google, Inc.) FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-18] (Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-18] (Oracle Corporation) FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation) FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~4\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-05] (Google Inc.) FF Plugin-x32: @videolan.org/vlc,version=2.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2012-10-15] (VideoLAN) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @talk.google.com/O1DPlugin -> C:\Users\Home\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.) FF Plugin HKU\S-1-5-21-2055331987-1518689308-177053510-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Home\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2014-06-02] (Unity Technologies ApS) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation) FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2015-09-30] (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-12-08] (Google) FF Plugin ProgramFiles/Appdata: C:\Users\Home\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-12-08] (Google) FF Extension: azid - Amazon Zoom Image Downloader - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\azid@craue.de.xpi [2015-10-12] FF Extension: Flash Video Downloader - YouTube HD Download [4K] - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\artur.dubovoy@gmail.com [2015-12-06] FF Extension: Secure Login - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\extensions\secureLogin@blueimp.net.xpi [2015-12-22] FF Extension: Kein Name - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\auto-plugin-checker@jetpack.xpi [2015-09-04] [ist nicht signiert] FF Extension: Flagfox - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}.xpi [2015-12-21] FF Extension: Video DownloadHelper - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2015-10-31] FF Extension: Adblock Plus - C:\Users\Home\AppData\Roaming\Mozilla\Firefox\Profiles\3ozmut5c.default-1349541916029\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-12-15] FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi [2015-10-08] FF HKLM-x32\...\Firefox\Extensions: [ffpwdman@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman FF Extension: Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\Antispam32\ffpwdman [2014-03-27] [ist nicht signiert] Chrome: ======= CHR HomePage: Default -> hxxp://www.google.de/ CHR StartupUrls: Default -> "hxxps://www.google.de/" CHR Profile: C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default CHR Extension: (Google Präsentationen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-12-31] CHR Extension: (Google Docs) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-12-31] CHR Extension: (Google Drive) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-31] CHR Extension: (YouTube) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-31] CHR Extension: (Bitdefender Wallet) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccahoghmggldkcdjiebjkidpfongdfbl [2015-12-31] CHR Extension: (Google-Suche) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-31] CHR Extension: (Video Downloader professional) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2015-12-31] CHR Extension: (Google Tabellen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-12-31] CHR Extension: (Google Docs Offline) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-12-31] CHR Extension: (WhatFont) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\jabopobgcpjmedljpbcaablpmlmfcogm [2015-12-31] CHR Extension: (Skype) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-31] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-12-31] CHR Extension: (chromeIPass) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\ompiailgknfdndiefoaoiligalphfdae [2015-12-31] CHR Extension: (Unblock Youku) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdnfnkhpgegpcingjbfihlkjeighnddk [2015-12-31] CHR Extension: (Google Mail) - C:\Users\Home\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-12-31] CHR HKLM-x32\...\Chrome\Extension: [ccahoghmggldkcdjiebjkidpfongdfbl] - C:\Program Files\Bitdefender\Bitdefender\Antispam32\pmbxcr.crx [2014-04-27] CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12] ==================== Dienste (Nicht auf der Ausnahmeliste) ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 ABBYY.Licensing.FineReader.Professional.9.0; C:\Program Files (x86)\Common Files\ABBYY\FineReader\9.00\Licensing\PE\NetworkLicenseServer.exe [759048 2009-05-14] (ABBYY) R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-19] (Apple Inc.) R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1046952 2015-11-12] (AVG Technologies CZ, s.r.o.) R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation) R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation) S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.) S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [136048 2015-07-25] (Dropbox, Inc.) R2 ezSharedSvc; C:\Windows\SysWOW64\ezsvc7.dll [129584 2009-02-22] (EasyBits Sofware AS) [Datei ist nicht signiert] S4 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert] S4 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert] R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [25800 2015-09-28] (Hewlett-Packard Company) S3 HRService; C:\Program Files (x86)\Haufe\iDesk\iDeskService\iDeskService.exe [71024 2010-10-25] () S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert] R2 MBAMScheduler; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamscheduler.exe [1513784 2015-10-05] (Malwarebytes) R2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1135416 2015-10-05] (Malwarebytes) S4 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2010-10-19] () R2 NMSAccess; C:\Windows\SysWOW64\NMSAccess32.exe [71096 2009-01-12] () R2 QPCopyEngine; C:\Program Files\Iomega\QuikProtect\QpMonitor.exe [394544 2010-06-24] () R2 ScrybeUpdater; C:\Program Files (x86)\Synaptics\Scrybe\Service\ScrybeUpdater.exe [1300264 2011-05-27] (Synaptics, Inc.) R2 Secunia PSI Agent; C:\Program Files (x86)\Secunia\PSI\PSIA.exe [1229528 2013-12-06] (Secunia) R2 Secunia Update Agent; C:\Program Files (x86)\Secunia\PSI\sua.exe [662232 2013-12-06] (Secunia) R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [332800 2000-01-01] (IDT, Inc.) [Datei ist nicht signiert] R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [6889232 2015-12-14] (TeamViewer GmbH) R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [67320 2014-11-13] (Bitdefender) R2 vsserv; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [1538672 2015-02-02] (Bitdefender) S4 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2013-11-02] (Western Digital Technologies, Inc.) S4 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [270704 2013-11-02] (Western Digital Technologies, Inc.) S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation) ===================== Treiber (Nicht auf der Ausnahmeliste) ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation) R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1288472 2015-02-02] (BitDefender) R3 avchv; C:\Windows\System32\DRIVERS\avchv.sys [263032 2015-02-02] (BitDefender) R3 avckf; C:\Windows\System32\DRIVERS\avckf.sys [647752 2014-11-13] (BitDefender) R1 bdfwfpf; C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [103504 2011-11-14] (BitDefender LLC) S3 BDSandBox; C:\Windows\system32\drivers\bdsandbox.sys [82824 2013-11-04] (BitDefender SRL) S3 BthAvrcp; C:\Windows\System32\DRIVERS\BthAvrcp.sys [29184 2009-08-13] (CSR, plc) R3 debutfilter; C:\Windows\System32\DRIVERS\debutfilterx64.sys [34512 2015-02-06] () S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation) U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-05] (Microsoft Corporation) R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [150256 2013-08-23] (BitDefender LLC) R0 hotcore3; C:\Windows\System32\DRIVERS\hotcore3.sys [37392 2010-05-20] (Paragon Software Group) R3 johci; C:\Windows\System32\DRIVERS\johci.sys [26208 2000-01-01] (JMicron Technology Corp.) R0 Lbd; C:\Windows\System32\DRIVERS\Lbd.sys [69152 2010-09-08] (Lavasoft AB) S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [42944 2010-11-06] (hxxp://libusb-win32.sourceforge.net) R3 LVPr2M64; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () S3 LVPr2Mon; C:\Windows\System32\DRIVERS\LVPr2M64.sys [30232 2009-10-07] () R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes) R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-01-02] (Malwarebytes) R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation) S3 OXSDIDRV_x64; C:\Windows\System32\DRIVERS\OXSDIDRV_x64.sys [51760 2009-09-28] () S3 OXUDIDRV; C:\Windows\system32\Drivers\OXUDIDRV_X64.sys [31280 2010-05-25] () S3 PSI; C:\Windows\System32\DRIVERS\psi_mf_amd64.sys [18456 2013-12-06] (Secunia) S3 RtkBtFilter; C:\Windows\System32\DRIVERS\RtkBtfilter.sys [585944 2014-12-31] (Realtek Semiconductor Corporation) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2012-12-03] (Duplex Secure Ltd.) R0 tib; C:\Windows\System32\DRIVERS\tib.sys [1120032 2014-02-08] (Acronis International GmbH) R0 tib_mounter; C:\Windows\System32\DRIVERS\tib_mounter.sys [198432 2014-02-08] (Acronis International GmbH) R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [452040 2015-02-02] (BitDefender S.R.L.) S1 UimBus; C:\Windows\System32\DRIVERS\uimx64.sys [50768 2010-07-14] (Windows (R) 2000 DDK provider) S1 Uim_IM; C:\Windows\System32\Drivers\Uim_IMx64.sys [566864 2010-07-14] (Paragon) R0 vidsflt; C:\Windows\System32\DRIVERS\vidsflt.sys [117024 2014-02-08] (Acronis International GmbH) U3 age73b4f; kein ImagePath S3 clwvd; system32\DRIVERS\clwvd.sys [X] S3 cpuz132; \??\C:\Users\Home\AppData\Local\Temp\cpuz132\cpuz132_x64.sys [X] S3 cpuz136; \??\C:\Windows\TEMP\cpuz136\cpuz136_x64.sys [X] U4 eabfiltr; kein ImagePath S3 WPRO_40_1340; system32\drivers\WPRO_40_1340.sys [X] ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat: Erstellte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-01-02 14:07 - 2016-01-02 14:07 - 00001175 _____ C:\Users\Home\Desktop\Logitech USB Camera (QuickCam) - Verknüpfung.lnk 2016-01-02 13:24 - 2016-01-02 13:24 - 00000000 ____D C:\Users\Home\Tracing 2016-01-02 13:24 - 2016-01-02 13:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype 2016-01-02 13:01 - 2016-01-02 13:01 - 00002189 _____ C:\Users\Home\Desktop\HP Support Assistant.lnk 2016-01-02 13:01 - 2016-01-02 13:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support 2016-01-02 12:45 - 2016-01-02 12:45 - 03795680 _____ (Oleg N. Scherbakov) C:\Users\Home\Downloads\HPSupportSolutionsFramework-12.0.30.219.exe 2016-01-02 04:14 - 2016-01-02 04:14 - 01466656 _____ C:\Users\Home\Downloads\MediathekView - CHIP-Installer.exe 2016-01-02 02:13 - 2016-01-02 02:13 - 00001053 _____ C:\Users\Public\Desktop\StreamTransport.lnk 2016-01-02 02:13 - 2016-01-02 02:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamTransport 2016-01-02 02:13 - 2016-01-02 02:13 - 00000000 ____D C:\Program Files (x86)\StreamTransport 2016-01-02 02:12 - 2016-01-02 02:12 - 17805707 _____ C:\Users\Home\Downloads\streamtransport_1.1.6.2.zip 2016-01-02 02:09 - 2016-01-02 02:09 - 00000000 ____D C:\Users\Home\.streamCapture 2016-01-02 02:08 - 2016-01-02 02:09 - 10929534 _____ C:\Users\Home\Downloads\install-0.3.3.exe 2016-01-02 01:11 - 2016-01-02 01:11 - 00000024 _____ C:\Windows\GetFLV.ini 2016-01-02 01:07 - 2016-01-02 01:07 - 00000000 ____D C:\Users\Home\Downloads\Neuer Ordner (2) 2016-01-02 00:48 - 2016-01-02 00:48 - 00000000 ____D C:\Users\Home\Downloads\Neuer Ordner 2016-01-02 00:23 - 2016-01-02 01:14 - 00000000 ____D C:\Users\Home\AppData\Local\CrashDumps 2016-01-01 21:02 - 2016-01-01 21:02 - 00000000 ____D C:\Users\Home\AppData\Roaming\BitTorrent Sync 2016-01-01 21:01 - 2016-01-01 21:02 - 06884888 _____ (BitTorrent, Inc.) C:\Users\Home\Downloads\BitTorrent-Sync.exe 2016-01-01 20:53 - 2016-01-01 20:53 - 00001726 _____ C:\Users\Public\Desktop\Defraggler.lnk 2016-01-01 20:53 - 2016-01-01 20:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler 2016-01-01 20:53 - 2016-01-01 20:53 - 00000000 ____D C:\Program Files\Defraggler 2016-01-01 20:50 - 2016-01-01 20:50 - 04532776 _____ (Piriform Ltd) C:\Users\Home\Downloads\dfsetup219.exe 2015-12-31 17:45 - 2015-12-31 17:45 - 00000000 ____D C:\Users\Home\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller 2015-12-31 16:45 - 2015-12-31 16:45 - 00002209 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2015-12-31 16:45 - 2015-12-31 16:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome 2015-12-31 16:43 - 2015-12-31 16:43 - 00927824 _____ (Google Inc.) C:\Users\Home\Downloads\ChromeSetup.exe 2015-12-30 19:55 - 2015-12-30 19:55 - 00008364 _____ C:\Users\Home\Desktop\mbam.txt 2015-12-30 19:14 - 2016-01-02 13:14 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys 2015-12-30 19:13 - 2015-12-30 19:13 - 00001064 _____ C:\Users\Public\Desktop\ Malwarebytes Anti-Malware .lnk 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ Malwarebytes Anti-Malware 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\ProgramData\Malwarebytes 2015-12-30 19:13 - 2015-12-30 19:13 - 00000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 2015-12-30 19:13 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys 2015-12-30 19:13 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys 2015-12-30 19:13 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys 2015-12-30 18:54 - 2015-12-30 18:58 - 00000000 ____D C:\AdwCleaner 2015-12-30 18:11 - 2015-12-31 17:45 - 00001226 _____ C:\Users\Home\Desktop\Revo Uninstaller.lnk 2015-12-30 18:11 - 2015-12-31 17:45 - 00000000 ____D C:\Program Files (x86)\VS Revo Group 2015-12-30 01:01 - 2015-12-30 01:06 - 00256514 _____ C:\TDSSKiller.3.1.0.9_30.12.2015_01.01.45_log.txt 2015-12-30 00:23 - 2015-12-30 00:23 - 00001082 _____ C:\Users\Home\Desktop\Hilfe 100 % CPU - Verknüpfung.lnk 2015-12-29 22:20 - 2015-12-29 22:20 - 00000376 _____ C:\Users\Home\AppData\Roamingprivacy.xml 2015-12-29 22:19 - 2015-12-29 22:26 - 00007892 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_22.19.36_log.txt 2015-12-29 22:12 - 2015-12-29 22:12 - 00000000 ____D C:\TDSSKiller_Quarantine 2015-12-29 21:51 - 2016-01-02 17:28 - 00000000 ____D C:\Users\Home\Downloads\Hilfe 100 % CPU 2015-12-29 21:40 - 2015-12-29 22:12 - 00510822 _____ C:\TDSSKiller.3.1.0.9_29.12.2015_21.40.36_log.txt 2015-12-29 19:30 - 2016-01-02 17:28 - 00000000 ____D C:\FRST 2015-12-23 17:24 - 2015-12-23 17:24 - 00000657 _____ C:\Users\Home\Desktop\Steffi - Verknüpfung.lnk 2015-12-23 16:51 - 2015-12-23 16:58 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox 2015-12-20 12:59 - 2015-12-20 12:59 - 00000000 ____D C:\Users\Home\Documents\Applian 2015-12-20 12:56 - 2015-12-20 15:20 - 00000000 ____D C:\Windows\Jaksta 2015-12-20 12:56 - 2015-12-20 13:11 - 00000000 ____D C:\Users\Home\AppData\Local\Jaksta_Technologies_Pty_L 2015-12-20 12:37 - 2015-12-20 13:13 - 00000000 ____D C:\Users\Home\AppData\Local\JDownloader v2.0 2015-12-15 22:37 - 2015-12-15 22:42 - 00007154 _____ C:\Users\Home\Documents\starburn.txt 2015-12-15 22:37 - 2015-12-15 22:37 - 00000000 ____D C:\ProgramData\Wondershare 2015-12-15 22:36 - 2015-12-15 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\Wondershare 2015-12-15 22:35 - 2015-12-15 22:43 - 00000000 ____D C:\Users\Home\Documents\Wondershare Filmora 2015-12-15 22:33 - 2015-12-15 22:35 - 00000000 ____D C:\Users\Public\Documents\Wondershare 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\Documents\FlashIntegro 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\VideoEditor 2015-12-15 22:08 - 2015-12-15 22:08 - 00000000 ____D C:\Users\Home\AppData\Roaming\FlashIntegro 2015-12-15 22:06 - 2014-12-09 12:21 - 00081792 _____ (Flash-Integro LLC) C:\Windows\SysWOW64\mslvddsfilter2.ax 2015-12-15 22:06 - 2011-12-07 18:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\Lagarith.dll 2015-12-15 22:06 - 2005-08-01 18:43 - 00245760 _____ () C:\Windows\SysWOW64\lame.ax 2015-12-15 22:06 - 2004-12-10 09:03 - 00438272 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll 2015-12-15 22:06 - 2004-02-04 20:11 - 00081920 _____ (fccHandler) C:\Windows\SysWOW64\AC3ACM.acm 2015-12-15 22:06 - 2003-05-22 11:26 - 00221215 _____ (DivXNetworks, Inc.) C:\Windows\SysWOW64\divxdec.ax 2015-12-15 22:06 - 2003-05-21 22:50 - 00261632 _____ (MainConcept) C:\Windows\SysWOW64\mcdvd_32.dll 2015-12-15 22:06 - 2003-05-21 22:50 - 00156910 _____ C:\Windows\WMSysPr8.prx 2015-12-15 22:06 - 2003-05-21 22:50 - 00082944 _____ (Voxware, Inc.) C:\Windows\SysWOW64\vct3216.acm 2015-12-15 22:06 - 2003-05-21 22:50 - 00038912 _____ (NCT Company) C:\Windows\SysWOW64\alf2cd.acm 2015-12-15 22:06 - 2003-05-21 22:50 - 00024576 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3a.dll 2015-12-15 22:06 - 2003-03-25 04:49 - 00098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\SysWOW64\L3CODECX.AX 2015-12-15 22:06 - 2002-08-19 23:41 - 00413760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mpg4c32.dll 2015-12-15 22:06 - 2000-03-14 19:55 - 00013239 _____ (SHARP Corporation) C:\Windows\SysWOW64\Scg726.acm 2015-12-15 20:00 - 2015-12-15 20:00 - 00200764 _____ C:\Users\Home\Desktop\Anzeige Kolb.pdf 2015-12-14 22:05 - 2015-12-14 22:05 - 24386352 _____ (Siber Systems) C:\Users\Home\Downloads\GoodSync-Setup.exe 2015-12-12 10:57 - 2015-12-12 10:57 - 00001067 _____ C:\Users\Home\Desktop\KeePass 2.lnk 2015-12-11 22:27 - 2015-12-11 22:36 - 00000000 ____D C:\Users\Home\AppData\Local\ApplicationHistory 2015-12-11 22:27 - 2015-12-11 22:27 - 00000092 _____ C:\Users\Home\AppData\Local\fusioncache.dat 2015-12-11 21:01 - 2015-12-11 21:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox 2015-12-07 21:29 - 2015-12-07 21:29 - 00002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC 2015-12-07 21:29 - 2015-12-07 21:29 - 00000824 _____ C:\Users\Public\Desktop\CCleaner.lnk 2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner 2015-12-07 21:29 - 2015-12-07 21:29 - 00000000 ____D C:\Program Files\CCleaner 2015-12-03 20:32 - 2015-12-03 20:32 - 00000993 _____ C:\Users\Public\Desktop\TeamViewer 11.lnk ==================== Ein Monat: Geänderte Dateien und Ordner ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2016-01-02 17:30 - 2012-12-17 11:41 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2016-01-02 17:09 - 2015-07-25 12:04 - 00001210 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job 2016-01-02 16:41 - 2014-03-16 22:56 - 00001116 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job 2016-01-02 16:36 - 2013-02-16 23:12 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2016-01-02 15:29 - 2011-08-22 08:48 - 00000000 ____D C:\Users\Home\AppData\Roaming\vlc 2016-01-02 15:02 - 2010-01-24 09:02 - 00000000 ____D C:\Users\Home\AppData\LocalLow\Temp 2016-01-02 14:51 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2016-01-02 14:51 - 2009-07-14 05:45 - 00025968 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2016-01-02 14:45 - 2014-02-08 12:05 - 00000000 ___RD C:\Users\Home\Sync 2016-01-02 14:41 - 2009-12-27 19:22 - 00000000 ____D C:\Users\Home\AppData\Roaming\Skype 2016-01-02 13:24 - 2014-07-30 16:57 - 00000000 ____D C:\Users\Home\AppData\Local\Skype 2016-01-02 13:24 - 2009-12-27 19:22 - 00000000 ___RD C:\Program Files (x86)\Skype 2016-01-02 13:24 - 2009-12-27 19:22 - 00000000 ____D C:\ProgramData\Skype 2016-01-02 13:24 - 2009-12-23 23:38 - 00000000 ____D C:\Users\Home 2016-01-02 13:23 - 2009-08-20 10:57 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard 2016-01-02 13:23 - 2009-08-20 08:16 - 00000000 ____D C:\ProgramData\Hewlett-Packard 2016-01-02 13:14 - 2012-11-11 23:17 - 00000000 ___RD C:\Users\Home\Dropbox 2016-01-02 13:14 - 2012-11-11 22:00 - 00000000 ____D C:\Users\Home\AppData\Roaming\Dropbox 2016-01-02 13:12 - 2015-07-25 12:03 - 00001206 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job 2016-01-02 13:12 - 2013-02-16 23:12 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2016-01-02 13:11 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2016-01-02 13:09 - 2014-03-24 01:26 - 00295428 _____ C:\bdlog.txt 2016-01-02 12:56 - 2009-08-20 08:14 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard 2016-01-02 12:56 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help 2016-01-02 12:55 - 2009-08-20 08:16 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information 2016-01-02 12:52 - 2009-12-23 23:53 - 00000000 ____D C:\Users\Home\AppData\Roaming\hpqlog 2016-01-02 12:18 - 2014-03-16 22:56 - 00001064 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job 2016-01-02 03:05 - 2012-02-27 18:28 - 00000000 ____D C:\Users\Home\.Zettelkasten 2016-01-02 03:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\LiveKernelReports 2016-01-02 01:11 - 2009-07-14 04:20 - 00000000 ____D C:\Windows 2016-01-01 20:49 - 2009-12-30 19:59 - 00003938 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{5E08B2BB-8B59-4E04-AFC6-843827792A81} 2015-12-31 18:37 - 2013-09-19 22:01 - 00000000 ____D C:\Poker 2015-12-31 18:35 - 2010-10-28 00:06 - 00000000 ____D C:\Users\Home\AppData\Roaming\DAEMON Tools Lite 2015-12-31 18:35 - 2010-10-28 00:06 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite 2015-12-31 18:30 - 2015-06-12 18:00 - 00000000 ____D C:\Program Files\Soluto 2015-12-31 18:30 - 2015-06-09 22:57 - 00000000 ____D C:\ProgramData\Soluto 2015-12-31 18:03 - 2014-08-23 23:02 - 00000000 ____D C:\Program Files (x86)\AVG 2015-12-31 17:28 - 2013-03-22 21:05 - 00000000 ____D C:\Users\Home\AppData\Roaming\KeePass 2015-12-31 17:27 - 2010-08-25 21:49 - 00000000 ____D C:\Program Files (x86)\Flash Player 2015-12-31 17:27 - 2010-05-30 10:42 - 00000000 ___RD C:\Users\Home\Desktop\Büro 2015-12-31 16:46 - 2010-02-06 23:59 - 00000000 ____D C:\Users\Home\AppData\Local\Google 2015-12-30 19:47 - 2011-08-31 23:22 - 00000000 ____D C:\Windows\HPQ 2015-12-30 18:58 - 2015-02-01 12:28 - 00000008 __RSH C:\Users\Home\ntuser.pol 2015-12-30 18:58 - 2011-10-14 22:55 - 00000008 __RSH C:\ProgramData\ntuser.pol 2015-12-29 07:46 - 2011-02-11 00:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\TeamViewer 2015-12-28 22:31 - 2012-12-17 11:41 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater 2015-12-28 22:31 - 2012-04-05 21:25 - 00796864 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe 2015-12-28 22:31 - 2011-06-17 20:10 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl 2015-12-28 20:22 - 2015-10-22 20:31 - 00000026 _____ C:\Users\Home\AppData\Local\isoworkshop.ini 2015-12-25 13:23 - 2012-04-25 19:28 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service 2015-12-23 18:30 - 2014-12-14 14:49 - 00000000 ____D C:\Users\Home\Desktop\Anwendungen 2015-12-23 18:25 - 2014-01-03 23:23 - 00000000 ____D C:\Users\Home\Desktop\Videoschnitt 2015-12-22 12:51 - 2011-02-11 00:26 - 00000000 ____D C:\Program Files (x86)\TeamViewer 2015-12-19 21:43 - 2013-07-31 19:56 - 00668984 _____ C:\Windows\system32\FNTCACHE.DAT 2015-12-17 22:47 - 2014-10-24 20:20 - 00003834 _____ C:\Windows\System32\Tasks\Google Update 2015-12-17 22:46 - 2015-10-30 21:33 - 00000000 ____D C:\Users\Home\AppData\Local\Microsoft Help 2015-12-17 22:46 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf 2015-12-17 12:17 - 2009-12-28 15:17 - 00000000 ____D C:\Users\Home\AppData\Roaming\Mozilla 2015-12-15 22:37 - 2013-07-31 19:58 - 00202240 _____ C:\Users\Home\AppData\Local\GDIPFONTCACHEV1.DAT 2015-12-15 22:37 - 2009-07-14 05:57 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk 2015-12-13 17:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\registration 2015-12-12 10:57 - 2013-06-30 11:16 - 00001079 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk 2015-12-12 10:57 - 2013-03-22 20:44 - 00000000 ____D C:\Program Files (x86)\KeePass Password Safe 2 2015-12-12 00:13 - 2011-09-13 21:54 - 00000000 ____D C:\Users\Home\AppData\Roaming\dvdcss 2015-12-11 21:01 - 2015-07-25 12:03 - 00000000 ____D C:\Program Files (x86)\Dropbox 2015-12-11 00:33 - 2012-04-14 00:02 - 00000000 ____D C:\ProgramData\tmp 2015-12-10 09:17 - 2009-07-14 06:08 - 00032632 _____ C:\Windows\Tasks\SCHEDLGU.TXT 2015-12-07 22:19 - 2010-07-12 20:28 - 00000000 ____D C:\Users\Home\AppData\Roaming\PhotoScape 2015-12-07 22:19 - 2010-01-01 19:25 - 00000000 ____D C:\Users\Home\AppData\Roaming\Azureus 2015-12-05 01:31 - 2013-02-16 23:12 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA 2015-12-05 01:31 - 2013-02-16 23:12 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ======= 2010-01-06 11:53 - 2010-12-29 22:04 - 0000030 _____ () C:\Program Files (x86)\Exiferupdate.ini 2011-11-09 20:47 - 2011-11-09 20:48 - 0000288 _____ () C:\Users\Home\AppData\Roaming\.backup.dm 2012-01-08 21:35 - 2012-01-15 21:40 - 0000598 _____ () C:\Users\Home\AppData\Roaming\AutoGK.ini 2012-11-29 19:33 - 2014-12-14 12:35 - 0000307 _____ () C:\Users\Home\AppData\Roaming\burnaware.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000096 _____ () C:\Users\Home\AppData\Roaming\Camdata.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamLayout.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0000408 _____ () C:\Users\Home\AppData\Roaming\CamShapes.ini 2012-05-28 20:15 - 2015-02-06 17:45 - 0004534 _____ () C:\Users\Home\AppData\Roaming\CamStudio.cfg 2012-05-28 20:08 - 2012-05-28 20:08 - 0000000 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.Data.ini 2012-05-28 20:08 - 2012-05-28 20:08 - 0001206 _____ () C:\Users\Home\AppData\Roaming\CamStudio.Producer.ini 2011-09-13 21:13 - 2011-09-13 21:13 - 0099384 _____ () C:\Users\Home\AppData\Roaming\inst.exe 2010-01-14 00:44 - 2010-01-14 00:44 - 0031793 _____ () C:\Users\Home\AppData\Roaming\mdbu.bin 2010-02-20 00:34 - 2010-03-28 22:30 - 0038276 _____ () C:\Users\Home\AppData\Roaming\Microsoft Excel.ADR 2011-09-13 21:13 - 2011-09-13 21:13 - 0007859 _____ () C:\Users\Home\AppData\Roaming\pcouffin.cat 2011-09-13 21:13 - 2011-09-13 21:13 - 0001167 _____ () C:\Users\Home\AppData\Roaming\pcouffin.inf 2011-09-13 21:14 - 2011-09-13 21:14 - 0000034 _____ () C:\Users\Home\AppData\Roaming\pcouffin.log 2015-09-11 20:01 - 2015-09-11 20:01 - 0001181 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt 2015-09-11 20:01 - 2015-09-11 20:01 - 0000000 _____ () C:\Users\Home\AppData\Roaming\trace_FilterInstaller.txt-CRT.txt 2015-02-06 17:44 - 2015-02-06 17:44 - 0000096 _____ () C:\Users\Home\AppData\Roaming\version2.xml 2013-02-03 23:24 - 2015-10-10 10:14 - 0080896 _____ () C:\Users\Home\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-12-11 22:27 - 2015-12-11 22:27 - 0000092 _____ () C:\Users\Home\AppData\Local\fusioncache.dat 2015-10-22 20:31 - 2015-12-28 20:22 - 0000026 _____ () C:\Users\Home\AppData\Local\isoworkshop.ini 2014-12-07 13:33 - 2014-12-07 13:33 - 0007931 _____ () C:\Users\Home\AppData\Local\recently-used.xbel 2013-04-02 13:55 - 2015-06-09 22:58 - 0007663 _____ () C:\Users\Home\AppData\Local\Resmon.ResmonCfg 2014-03-22 10:49 - 2014-03-22 10:49 - 0617204 _____ () C:\ProgramData\1395480845.bdinstall.bin 2014-04-27 16:55 - 2014-04-27 16:55 - 0240135 _____ () C:\ProgramData\1398614049.bdinstall.bin 2014-04-27 16:59 - 2014-04-27 17:01 - 0001545 _____ () C:\ProgramData\1398614324.1288.bin 2014-04-27 17:02 - 2014-04-27 17:02 - 0002247 _____ () C:\ProgramData\1398614324.1620.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0017887 _____ () C:\ProgramData\1398614324.2428.bin 2014-04-27 17:14 - 2014-04-27 17:14 - 0081185 _____ () C:\ProgramData\1398614324.3016.bin 2014-04-27 16:59 - 2014-04-27 17:02 - 0017801 _____ () C:\ProgramData\1398614324.3400.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0010224 _____ () C:\ProgramData\1398614324.3536.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0001090 _____ () C:\ProgramData\1398614324.3736.bin 2014-04-27 16:59 - 2014-04-27 17:14 - 0109821 _____ () C:\ProgramData\1398614324.4176.bin 2014-04-27 16:59 - 2014-04-27 16:59 - 0002736 _____ () C:\ProgramData\1398614324.4392.bin 2014-04-27 16:59 - 2014-04-27 17:02 - 0001090 _____ () C:\ProgramData\1398614324.4412.bin 2014-04-27 16:58 - 2014-04-27 17:14 - 0125567 _____ () C:\ProgramData\1398614324.5048.bin 2014-04-27 16:58 - 2014-04-27 17:01 - 0009868 _____ () C:\ProgramData\1398614324.5076.bin 2014-04-27 16:58 - 2014-04-27 17:14 - 0134906 _____ () C:\ProgramData\1398614324.5080.bin 2014-04-27 17:16 - 2014-04-27 17:16 - 0062879 _____ () C:\ProgramData\1398615359.bdinstall.bin 2014-04-27 17:47 - 2014-04-27 17:47 - 0670431 _____ () C:\ProgramData\1398615493.bdinstall.bin 2009-12-23 23:54 - 2012-01-26 19:18 - 0000190 _____ () C:\ProgramData\HPWALog.txt 2015-06-09 23:00 - 2015-06-12 17:59 - 0000193 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.64.bc 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{051B9612-4D82-42AC-8C63-CD2DCEDC1CB3}.log 2009-08-20 10:08 - 2009-08-20 10:08 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{23F3DA62-2D9E-4A69-B8D5-BE8E9E148092}.log 2009-08-20 10:03 - 2009-08-20 10:04 - 0000105 _____ () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log 2009-12-23 13:06 - 2009-12-23 13:06 - 0000032 _____ () C:\ProgramData\{4FC670EB-5F02-4B07-90DB-022B86BFEFD0}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000032 _____ () C:\ProgramData\{9867824A-C86D-4A83-8F3C-E7A86BE0AFD3}.log 2009-08-20 10:02 - 2009-08-20 10:03 - 0000107 _____ () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log 2009-08-20 10:04 - 2009-08-20 10:08 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log 2009-12-23 13:07 - 2009-12-23 13:07 - 0000105 _____ () C:\ProgramData\{d36dd326-7280-11d8-97c8-000129760cbe}.log Einige Dateien in TEMP: ==================== C:\Users\Home\AppData\Local\Temp\DseShExt-x64.dll C:\Users\Home\AppData\Local\Temp\DseShExt-x86.dll C:\Users\Home\AppData\Local\Temp\SDShelEx-win32.dll C:\Users\Home\AppData\Local\Temp\SDShelEx-x64.dll ==================== Bamital & volsnap ================= (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) C:\Windows\system32\winlogon.exe => Datei ist digital signiert C:\Windows\system32\wininit.exe => Datei ist digital signiert C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert C:\Windows\explorer.exe => Datei ist digital signiert C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert C:\Windows\system32\svchost.exe => Datei ist digital signiert C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert C:\Windows\system32\services.exe => Datei ist digital signiert C:\Windows\system32\User32.dll => Datei ist digital signiert C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert C:\Windows\system32\userinit.exe => Datei ist digital signiert C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert C:\Windows\system32\rpcss.dll => Datei ist digital signiert C:\Windows\system32\dnsapi.dll => Datei ist digital signiert C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert LastRegBack: 2015-12-31 02:48 ==================== Ende von FRST.txt ============================ |
02.01.2016, 17:34 | #45 |
| Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter und die Addition.txt Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:29-12-2015 durchgeführt von Home (2016-01-02 17:32:09) Gestartet von C:\Users\Home\Downloads\Hilfe 100 % CPU Windows 7 Home Premium Service Pack 1 (X64) (2009-12-23 22:38:53) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-2055331987-1518689308-177053510-500 - Administrator - Disabled) ASPNET (S-1-5-21-2055331987-1518689308-177053510-1012 - Limited - Enabled) Gast (S-1-5-21-2055331987-1518689308-177053510-501 - Limited - Disabled) Home (S-1-5-21-2055331987-1518689308-177053510-1000 - Administrator - Enabled) => C:\Users\Home HomeGroupUser$ (S-1-5-21-2055331987-1518689308-177053510-1002 - Limited - Enabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Bitdefender Antivirus (Enabled - Up to date) {9A0813D8-CED6-F86B-072E-28D2AF25A83D} AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280} AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) [verify-U]_AVS_IE_Add-on (HKLM-x32\...\[verify-U]_AVS_IE_Add-on) (Version: 1.0.0.3 - cybits AG) 7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - ) ABBYY FineReader 9.0 Professional Edition (HKLM-x32\...\{F9000000-0001-0000-0000-074957833700}) (Version: 9.00.453.55019 - ABBYY) ABBYY PDF Transformer 2.0 (HKLM-x32\...\{FA200000-0001-0000-0000-074957833700}) (Version: 2.0.1147.49010 - ABBYY Software Ltd.) Acronis True Image 2014 (HKLM-x32\...\{3ECDD663-5AF8-489B-9E3C-561F33A271BD}Visible) (Version: 17.0.6673 - Acronis) Acronis True Image 2014 (x32 Version: 17.0.6673 - Acronis) Hidden Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated) Adobe Flash Player 20 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Flash Player 20 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 20.0.0.267 - Adobe Systems Incorporated) Adobe Shockwave Player 11.6 (HKLM-x32\...\Adobe Shockwave Player) (Version: 11.6.8.638 - Adobe Systems, Inc.) AMD Catalyst Install Manager (HKLM\...\{ACF4E7FE-650D-9BD7-BAE5-1AD061F40F69}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.) Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.) AVCutty 3.5 (HKLM-x32\...\AVCutty) (Version: 3.5 - ) AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies) AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden AVM FRITZ!Box Dokumentation (HKLM-x32\...\AVMFBox) (Version: - AVM Berlin) Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 17.27.0.1146 - Bitdefender) Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.) Broadcom Bluetooth Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.5300 - Broadcom Corporation) CCleaner (HKLM\...\CCleaner) (Version: 5.12 - Piriform) CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.3.8.2631 - CDBurnerXP) CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP) CDDRV_Installer (x32 Version: 4.20 - Logitech) Hidden CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.79.0.2015 - Georgy Berdyshev) Choice Guard (x32 Version: 1.2.87.0 - Microsoft Corporation) Hidden Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation) Content Pack (HKLM\...\{832191A7-9336-4DCD-94EF-F29955DEA165}) (Version: 1.0.0.0 - MAGIX Software GmbH) CPUID HWMonitor 1.27 (HKLM\...\CPUID HWMonitor_is1) (Version: - ) Debut Video Capture Software (HKLM-x32\...\Debut) (Version: 2.05 - NCH Software) Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform) DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.6.1.84 - DivX, LLC) dm-Fotowelt (HKLM-x32\...\dm-Fotowelt) (Version: 6.0.5 - CEWE Stiftung u Co. KGaA) Dropbox (HKLM-x32\...\Dropbox) (Version: 3.12.5 - Dropbox, Inc.) Dropbox Update Helper (x32 Version: 1.3.27.35 - Dropbox, Inc.) Hidden eMedia Piano Einstieg Für Dummies (HKLM-x32\...\{D0D24351-FF92-450e-8143-6D848C6EFAC6}) (Version: - eMedia Piano Einstieg Für Dummies) ENE CIR Receiver Driver (HKLM\...\FFE7D41DF3C645075BB149E21988B63996C34187) (Version: 2.7.4.0 - ENE) Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{39AB2E37-1A55-4292-A5D3-971E9F70D0F8}) (Version: 2.1.32.0 - MAGIX AG) FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden FormatFactory 3.7.5.0 (HKLM-x32\...\FormatFactory) (Version: 3.7.5.0 - Free Time) FOTOParadies (HKLM-x32\...\{A606BBD1-0BC4-45C1-8C26-C1471D85DAE4}}_is1) (Version: 3.1.10.105 - Foto Online Service GmbH) Garmin BaseCamp (HKLM-x32\...\{81EF7DBD-909A-455B-8B32-24B8CDC75039}) (Version: 4.3.3 - Garmin Ltd or its subsidiaries) Garmin Communicator Plugin (HKLM-x32\...\{B1EE1CC5-6CED-4801-BFFF-8454F21A245A}) (Version: 2.9.3 - Garmin Ltd or its subsidiaries) Garmin TOPO Deutschland 2010 (HKLM-x32\...\{C7C82ED1-E5AD-48CF-8B92-38DD9B49610C}) (Version: 4.0.0.0 - Garmin Ltd or its subsidiaries) Garmin Trip and Waypoint Manager v5 (HKLM-x32\...\{414A373B-59DF-4102-94CA-9FE9A74CBDDA}) (Version: 5.0.0.0 - Garmin Ltd or its subsidiaries) Garmin USB Drivers (HKLM-x32\...\{3D5D6CFC-3097-425A-8D8F-7EAF5D57641D}) (Version: 2.3.1.0 - Garmin Ltd or its subsidiaries) Garmin WebUpdater (HKLM-x32\...\{00FE2935-FB56-4410-AB5F-D6E70C1771D2}) (Version: 2.5.6 - Garmin Ltd or its subsidiaries) GIMP 2.8.6 (HKLM\...\GIMP-2_is1) (Version: 2.8.6 - The GIMP Team) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 47.0.2526.106 - Google Inc.) Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.) Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google) Google Talk Plugin (HKLM-x32\...\{36A52BCF-AC3D-32F1-AD5F-A09769EB8887}) (Version: 4.1.3.13728 - Google) Google Talk Plugin (HKLM-x32\...\{F9B579C2-D854-300A-BE62-A09EB9D722E4}) (Version: 5.41.3.0 - Google) Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden Google Update Helper (x32 Version: 1.3.29.1 - Google Inc.) Hidden Google+ Auto Backup (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\Google+ Auto Backup) (Version: 1.0.27.161 - Google, Inc.) GPL Ghostscript (HKLM-x32\...\GPL Ghostscript 9.05) (Version: 9.05 - Artifex Software Inc.) Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2 (HKLM-x32\...\Grundschule Lernspass mit Hexe Lilli Mathematik Klasse 1+2) (Version: - ) Haufe iDesk-Service (HKLM-x32\...\{27F10580-E040-11DF-8C28-005056B12123}) (Version: 10.10.25.7810 - Haufe) Hewlett-Packard ACLM.NET v1.2.1.1 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden HP 3D DriveGuard (HKLM\...\{7FD7F421-39B2-4CAC-BC41-7D83DDBAB329}) (Version: 4.0.3.1 - Hewlett-Packard) HP Advisor (HKLM-x32\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard) HP MediaSmart DVD (HKLM-x32\...\InstallShield_{DCCAD079-F92C-44DA-B258-624FC6517A5A}) (Version: 3.0.3123 - Hewlett-Packard) HP MediaSmart Internet TV (HKLM-x32\...\InstallShield_{E553760D-D7F7-48BF-BD8B-C7E23BA04CB5}) (Version: 3.0.1916 - Hewlett-Packard) HP MediaSmart Live TV (HKLM-x32\...\InstallShield_{67626E09-5366-4480-8F1E-93FADF50CA15}) (Version: 3.0.1924 - Hewlett-Packard) HP MediaSmart Movie Themes (HKLM-x32\...\InstallShield_{3023EBDA-BF1B-4831-B347-E5018555F26E}) (Version: 3.0.3102 - Hewlett-Packard) HP MediaSmart Music/Photo/Video (HKLM-x32\...\InstallShield_{B2EE25B9-5B00-4ACF-94F0-92433C28C39E}) (Version: 3.0.3123 - Hewlett-Packard) HP MediaSmart SmartMenu (HKLM\...\{88E60521-1E4E-4785-B9F1-1798A4BD0C30}) (Version: 3.0.30.1 - Hewlett-Packard) HP MediaSmart Webcam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 2.1.1208 - Hewlett-Packard) HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.16.1 - Hewlett-Packard Company) HP Setup (HKLM-x32\...\{F3B912F5-EB57-45AA-B3D1-EB532BCF6EF8}) (Version: 1.2.3220.3079 - Hewlett-Packard) HP Support Assistant (HKLM-x32\...\{79C54A05-F146-4EA0-8A70-D4EFE6181E52}) (Version: 8.1.40.3 - Hewlett-Packard Company) HP Support Solutions Framework (HKLM-x32\...\{B1AD4FFB-DD17-43EC-8C30-B9E71EAD9132}) (Version: 12.0.30.219 - Hewlett-Packard Company) HP Update (HKLM-x32\...\{D46D081B-F60E-467E-A7C4-117B70D76731}) (Version: 5.001.000.014 - Hewlett-Packard) HP User Guides 0153 (HKLM-x32\...\{2EBA8202-FBD5-4004-81EA-BDC38C054CE2}) (Version: 1.01.0000 - Hewlett-Packard) HP Wireless Assistant (HKLM-x32\...\{F9A43C0C-F274-4EC0-B02E-202C15C09C00}) (Version: 3.50.12.1 - Hewlett-Packard) IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6324.0 - IDT) ImagXpress (x32 Version: 7.0.74.0 - Nero AG) Hidden ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!) Indeo® software (HKLM-x32\...\Indeo® software) (Version: - ) Intel(R) PROSet/Wireless WiFi-Software (HKLM\...\{D75AEB5B-FA18-4BD4-9EED-54CA46DB5AE8}) (Version: 13.04.0000 - Intel Corporation) Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.0.1008 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.0.22 - Intel(R) Corporation) Hidden Internet-TV für Windows Media Center (HKLM-x32\...\{9D318C86-AF4C-409F-A6AC-7183FF4CF424}) (Version: 4.2.2.0 - Microsoft Corporation) ISO Workshop 6.0 (HKLM-x32\...\ISO Workshop_is1) (Version: - Glorylogic) iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.) Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation) JMicron 1394 Filter Driver (HKLM-x32\...\{13C96625-28E4-4c58-ADE0-CDAFC64752EB}) (Version: 1.00.25.03 - JMicron Technology Corp.) JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.50.2 - JMicron Technology Corp.) Junk Mail filter update (x32 Version: 14.0.8064.206 - Microsoft Corporation) Hidden KacoViso (HKLM-x32\...\{9D874610-1444-412E-B379-FD8107FE768B}) (Version: 2.3.0.0 - KACO new energy GmbH ) KacoViso (HKLM-x32\...\{B34110B2-FA4C-40DA-B546-C85B0E2CD114}) (Version: 2.1.5 - Kaco) KeePass Password Safe 2.30 (HKLM-x32\...\KeePassPasswordSafe2_is1) (Version: 2.30 - Dominik Reichl) KhalInstallWrapper (Version: 4.20.131 - Logitech) Hidden Logitech SetPoint (HKLM-x32\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 4.20 - Logitech) Logitech Webcam Software (HKLM\...\{987FE247-4E69-4A2E-A961-D14F901FDBF6}) (Version: 12.10.1113 - Logitech Inc.) Logitech Webcam Software-Treiberpaket (HKLM\...\lvdrivers_12.10) (Version: 12.10.1110 - Logitech Inc.) MAGIX Page & Layout Designer 11 (HKLM-x32\...\MX.{72EF1C8F-D57A-493D-A8FF-8C966DD46613}) (Version: 11.2.2.40388 - MAGIX Software GmbH) MAGIX Page & Layout Designer 11 (Version: 11.2.2.40388 - MAGIX Software GmbH) Hidden MAGIX Retten Sie Ihre Videokassetten! Version 5 (HKLM-x32\...\MAGIX_MSI_Video_easy_4_RYVT) (Version: 3.0.1.28 - MAGIX AG) MAGIX Retten Sie Ihre Videokassetten! Version 5 (x32 Version: 3.0.1.28 - MAGIX AG) Hidden MAGIX Screenshare (HKLM-x32\...\{31D888B7-9DA0-4219-9371-9A0037A097C6}) (Version: 4.3.6.1987 - MAGIX AG) MAGIX Screenshare (HKLM-x32\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG) MAGIX Speed burnR (HKLM-x32\...\MAGIX Speed burnR D) (Version: 6.0.1.4 - MAGIX AG) MAGIX Speed burnR (MSI) (HKLM-x32\...\MX.{49209082-E4F9-410D-B74D-E6506977F30B}) (Version: 7.0.2.6 - MAGIX AG) MAGIX Speed burnR (MSI) (Version: 7.0.2.6 - MAGIX AG) Hidden MAGIX USB-Videowandler 2 (HKLM-x32\...\{8D85149E-D7A0-4920-BEBF-B6CEDFED8D1E}) (Version: 1.02.0000 - Ihr Firmenname) MAGIX USB-Videowandler 2 (HKLM-x32\...\InstallShield_{91065458-A5CF-474C-9160-B44B974B3C25}) (Version: 1.00.0000 - MAGIX) MAGIX USB-Videowandler 2 (x32 Version: 1.00.0000 - MAGIX) Hidden MAGIX Video deluxe 16 Premium 9.0.0.54 (D) (HKLM-x32\...\MAGIX Video deluxe 16 Premium D) (Version: 9.0.0.54 - MAGIX AG) MAGIX Video deluxe 2014 Plus (HKLM-x32\...\MX.{85061988-E889-4A37-9CB7-4F695AC35544}) (Version: 13.0.2.8 - MAGIX AG) MAGIX Video deluxe 2014 Plus (Version: 13.0.2.8 - MAGIX AG) Hidden MAGIX Web Designer MX Premium (HKLM-x32\...\MAGIX_{739FE2DC-0C7E-4A1C-AC6E-46348169E27E}) (Version: 8.0.2.21761 - MAGIX AG) MAGIX Web Designer MX Premium (Version: 8.0.2.21761 - MAGIX AG) Hidden MAGIX Xtreme Foto Designer 6 (HKLM-x32\...\MAGIX Xtreme Foto Designer 6 D) (Version: 6.0.29.0 - MAGIX AG) Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes) Media Go Video Playback Engine 1.88.103.12040 (HKLM-x32\...\{7FA1DAFD-AF55-E915-FD92-F269443A2ADF}) (Version: 1.88.103.12040 - Sony) Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation) Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation) Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation) Microsoft Office Home and Business 2010 (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation) Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053 (HKLM\...\{B6E3757B-5E77-3915-866A-CCFC4B8D194C}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable - KB2467175 (HKLM-x32\...\{a0fe116e-9a8a-466f-aee0-625cb7c207e3}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) - KB2467175 (HKLM\...\{aac9fcc4-dd9e-4add-901c-b5496a07ab2e}) (Version: 8.0.51011 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148 (HKLM\...\{EE936C7A-EA40-31D5-9B65-8E3E089C3828}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM-x32\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.30319 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 43.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 43.0.2 (x86 de)) (Version: 43.0.2 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 43.0.2.5833 - Mozilla) MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation) MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation) MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation) MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger) NVIDIA PhysX v8.10.29 (HKLM-x32\...\{D56B0E27-4A3E-46C9-B5C1-D93D580C099C}) (Version: 8.10.29 - NVIDIA Corporation) OpenOffice 4.1.1 (HKLM-x32\...\{ACD0FFF9-6B35-43C1-82DB-9FF6990E8602}) (Version: 4.11.9775 - Apache Software Foundation) Page & Layout Designer Update (Version: 11.2.3.40790 - MAGIX Software GmbH) Hidden Paragon Partition Manager™ 11 Professional (HKLM-x32\...\{A35001F0-F1E4-11DD-A38B-005056C00008}) (Version: 90.00.0003 - Paragon Software) Parrot Software Update Tool (HKLM-x32\...\Parrot Flash Update Wizard) (Version: - ) PhotoScape (HKLM-x32\...\PhotoScape) (Version: - ) Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.) PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation) PowerRecover (x32 Version: 5.5.1923 - CyberLink Corp.) Hidden PriMus Free 1.1 (Build 10843) (HKLM-x32\...\PriMus Free_is1) (Version: 1.1.0.10843 - Columbus Soft) proDAD Mercalli 1.0 (HKLM-x32\...\proDAD-Mercalli-1.0) (Version: - ) QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden Rainmeter (HKLM-x32\...\Rainmeter) (Version: 3.2.1 r2386 - ) Ravensburger tiptoi (HKLM-x32\...\Ravensburger tiptoi) (Version: - ) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.37.1229.2010 - Realtek) Recuva (HKLM\...\Recuva) (Version: 1.43 - Piriform) RedMon - Redirection Port Monitor (HKLM\...\Redirection Port Monitor) (Version: - ) RemoteComms External Disk Access (HKLM-x32\...\{04FCD5DE-1662-4F99-BDA9-C57212113EF2}) (Version: 1.25.0003 - PLX Technology) Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group) SanDiskSecureAccess_Manager.exe (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\@@__UNKNOWN__@@SanDiskSecureAccess_Manager.exe) (Version: 1.0.0 - DMAILER) Scribus 1.4.4 (64bit) (HKLM\...\Scribus 1.4.4) (Version: 1.4.4 - The Scribus Team) Secunia PSI (3.0.0.9016) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.9016 - Secunia) Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft) Skype Click to Call (HKLM-x32\...\{6D1221A9-17BF-4EC0-81F2-27D30EC30701}) (Version: 7.5.0.9082 - Microsoft Corporation) Skype™ 7.17 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.17.106 - Skype Technologies S.A.) Steuer 2012 (HKLM-x32\...\{01159E8A-44F7-4885-A7F9-872CE4D74063}) (Version: 20.00.8137 - Buhl Data Service GmbH) Steuer 2013 (HKLM-x32\...\{05AEF487-8926-48A9-B5BA-9BED72BC6B1C}) (Version: 21.00.8480 - Buhl Data Service GmbH) Steuer 2014 (HKLM-x32\...\{2EE860C7-4551-479F-AF01-328B8AA46051}) (Version: 22.00.8811 - Buhl Data Service GmbH) StreamTransport version: 1.1.6.1 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version: - ) swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden Synaptics Gesture Suite featuring SYNAPTICS | Scrybe (HKLM-x32\...\{147DFAD8-34C3-4DE1-9FCA-ACEFDE9EF810}) (Version: 1.6.5.17120 - Synaptics Inc.) Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.29.0 - Synaptics Incorporated) TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.53254 - TeamViewer) TELL ME MORE (HKLM-x32\...\TMM90) (Version: - ) TuneUp Utilities 2014 (de-DE) (x32 Version: 14.0.1000.340 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 10.0.4200.97 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 12.0.2160.11 - TuneUp Software) Hidden TuneUp Utilities Language Pack (de-DE) (x32 Version: 13.0.3020.2 - TuneUp Software) Hidden Unity Web Player (HKU\S-1-5-21-2055331987-1518689308-177053510-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Visual C++ 2008 x86 Runtime - v9.0.30729.01 (HKLM-x32\...\{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01) (Version: 9.0.30729.01 - Microsoft Corporation) Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player 2.0.4 (HKLM-x32\...\VLC media player) (Version: 2.0.4 - VideoLAN) WD Drive Utilities (HKLM-x32\...\{C093AD5D-29E9-4777-AAAC-28C02FCC2A51}) (Version: 1.0.4.11 - Western Digital Technologies, Inc.) WD Quick View (HKLM-x32\...\{507B1304-194A-4204-A9D9-9BAAF51EF760}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) WD Security (HKLM-x32\...\{8A7B24E8-864E-4794-95C4-17644D0991AA}) (Version: 1.0.6.3 - Western Digital Technologies, Inc.) WD SmartWare (HKLM\...\{A7C403DA-B8D9-4CA0-93D9-6C7F00772240}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) WD SmartWare Installer (HKLM-x32\...\{ba99df5b-3e46-419e-81e2-544352772fda}) (Version: 2.2.1.6 - Western Digital Technologies, Inc.) Web Designer Premium MX Update (Version: 8.1.4.24749 - MAGIX AG) Hidden Web Designer Premium MX Update (Version: 8.1.5.31094 - MAGIX AG) Hidden Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom) Windows Driver Package - Cambridge Silicon Radio Ltd. (CSRBC) USB (04/21/2011 01.0.0.0) (HKLM\...\BEA7B05370C19B9C86893BB484FD6B9CC52B0CD8) (Version: 04/21/2011 01.0.0.0 - Cambridge Silicon Radio Ltd.) Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin) Windows Live Anmelde-Assistent (HKLM-x32\...\{52B97218-98CB-4B8B-9283-D213C85E1AA4}) (Version: 5.000.818.5 - Microsoft Corporation) Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8064.0206 - Microsoft Corporation) Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation) Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp) WinRAR 4.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH) XviD MPEG4 Video Codec (remove only) (HKLM-x32\...\XviD MPEG4 Video Codec) (Version: - ) Youku Downloader (xmlbar) (nur entfernen) (HKLM-x32\...\Xmlbar YoukuDownloader) (Version: - ) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{CC182BE1-84CE-4A57-B85C-FD4BBDF78CB2}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.) CustomCLSID: HKU\S-1-5-21-2055331987-1518689308-177053510-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Home\AppData\Local\Google\Update\1.3.29.1\psuser_64.dll (Google Inc.) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {00559A20-2685-42CE-9C55-8A1D25415098} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company) Task: {0754560E-352E-4440-828F-5C0DD743751A} - System32\Tasks\CapUninst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapUninst.exe [2009-07-24] (CL) Task: {0A5DE71C-6CC7-4132-8642-DE8FDF084929} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-11-09] (Oracle Corporation) Task: {15C68361-092B-4091-A2D6-F1CEB9B8731F} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard) Task: {26E5C788-0C67-4826-A062-97DED9F10166} - System32\Tasks\CapSchedInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSchedInst.exe [2009-07-24] (CL) Task: {2D56EEEE-26A0-46DF-B413-1D3CE199C7C3} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender\bdproductdata.exe [2015-07-29] (Bitdefender) Task: {31CF6315-5D02-47EF-96EA-B64999B55273} - System32\Tasks\CLMLSvc => c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe [2009-07-23] (CyberLink) Task: {34316C50-305D-41F4-BA48-B585821B76C8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {3D7E7FE8-CD48-4E47-831B-B1FB839665EE} - System32\Tasks\Ad-Aware Update (Weekly) => C:\Program Files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe Task: {41001F0E-CE0D-42DC-A287-0139252339EA} - System32\Tasks\{752DFCA0-ED28-44AD-87EE-69C977B3D27A} => pcalua.exe -a C:\Users\Home\Downloads\im3stp03.exe -d "C:\Program Files (x86)\Mozilla Firefox" Task: {5169FC5F-F639-4B35-8619-8F930B314AD3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {5496EA6A-D5B0-4B53-AC15-10FE00BDB8E9} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.) Task: {5A40E926-9E86-4B89-9CFD-B12311724371} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto Task: {6A0E2448-B98A-4236-BB75-E849ABAEF03A} - System32\Tasks\CapSvcInst => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\Kernel\TV\CapSvcInst.exe [2009-07-24] (CL) Task: {6AAEBE99-1291-41B9-9759-48E5F0643A00} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard) Task: {6E3E742C-E8A4-4A3C-97C9-7218152143A1} - System32\Tasks\{217E48E3-275F-49B5-A2E9-74B488C70DCF} => pcalua.exe -a "C:\Program Files (x86)\MAGIX\Video_deluxe_16_Premium\unwise.exe" Task: {76BC6246-6003-4080-8B9E-A373848B4A9E} - System32\Tasks\DVDAgent => c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe [2009-07-23] (CyberLink Corp.) Task: {7BE49612-645C-480D-8D36-B0BD22891A5A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HPW10UpgradeReminder => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPW10UpgradeReminder.exe [2015-08-11] (Hewlett-Packard) Task: {85D7737D-3F15-4558-B2D3-908BDF7DED1F} - System32\Tasks\Adobe Reader and Acrobat Manager => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated) Task: {92463B00-1FE5-417F-B89A-393662C1FDAF} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Lexware\Update Manager\LxUpdateManager.exe Task: {9CDC2E3E-0C0C-446F-AE9D-6EDD35609373} - System32\Tasks\{070A97D9-16E9-488C-B625-9FEBA1B5A458} => pcalua.exe -a "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -d "C:\Program Files (x86)\Mozilla Firefox" Task: {AF500A5F-980F-4647-9C09-8D857E32B009} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2015-09-28] (Hewlett-Packard Company) Task: {B5853716-DB33-4173-8A5B-B47086BA3F42} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2015-11-04] (Hewlett-Packard) Task: {C0C404B2-08F6-4EA9-B6DA-80531A854F44} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {C873030E-708B-4409-BD74-68A7A27634D9} - System32\Tasks\Google Update => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {CFD66453-3FDF-4F51-A0B9-C34317E22FC4} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {D04B8C5C-C79F-4AA1-A96B-B8F51DCC4CD6} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-25] (Dropbox, Inc.) Task: {D1198108-4694-4BAC-B4C0-320192E98CA1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-11-16] (Piriform Ltd) Task: {DD9F510C-95F4-499A-90C8-BAC5BC372FF4} - System32\Tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask => start sppsvc Task: {E1CE8085-686D-42F0-A130-A4C45C50F1D6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-04] (Google Inc.) Task: {E93C1EAA-06BF-400C-AF15-52EC1815AF14} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2015-09-27] (Hewlett-Packard) Task: {EE990A70-EF3E-483F-8B79-397011620C5E} - System32\Tasks\TVAgent => c:\Program Files (x86)\Hewlett-Packard\Media\Live TV\TVAgent.exe [2009-07-24] (CyberLink Corp.) Task: {F32EF2A0-7535-4703-88F8-27871EA02D08} - System32\Tasks\MUI StartMenu Application => C:\Program Files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe [2008-11-14] (CyberLink Corp.) Task: {F6254647-B40C-457B-B576-4CFE3DC30071} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-28] (Adobe Systems Incorporated) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000Core.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2055331987-1518689308-177053510-1000UA.job => C:\Users\Home\AppData\Local\Google\Update\GoogleUpdate.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2014-11-13 23:11 - 2014-11-13 23:11 - 00265080 _____ () C:\Program Files\Bitdefender\Bitdefender\txmlutil.dll 2014-11-13 23:11 - 2014-11-13 23:11 - 00003072 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\accessl.ui 2014-11-13 23:11 - 2014-11-13 23:11 - 00005120 _____ () C:\Program Files\Bitdefender\Bitdefender\UI\IMSecurityAL.ui 2015-12-03 21:05 - 2015-12-03 21:05 - 00876888 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpbr.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 00742976 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpdsp.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 02803536 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttpph.mdl 2015-12-03 21:05 - 2015-12-03 21:05 - 01415584 _____ () C:\Program Files\Bitdefender\Bitdefender\otengines_01250_017\ashttprbl.mdl 2010-10-19 12:39 - 2010-10-19 12:39 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll 2011-09-04 19:41 - 2011-05-28 21:05 - 00164864 _____ () C:\Program Files\WinRAR\rarext.dll 2011-06-28 00:47 - 2013-10-01 10:32 - 02818216 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll 2015-03-20 17:12 - 2015-03-20 17:12 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll 2009-09-28 10:00 - 2009-01-12 07:15 - 00071096 _____ () C:\Windows\SysWOW64\NMSAccess32.exe 2010-06-24 16:04 - 2010-06-24 16:04 - 00394544 ____R () C:\Program Files\Iomega\QuikProtect\QpMonitor.exe 2015-03-24 14:28 - 2015-03-24 14:28 - 00036544 _____ () C:\Program Files\Rainmeter\Rainmeter.exe 2015-03-24 14:28 - 2015-03-24 14:28 - 00775872 _____ () C:\Program Files\Rainmeter\Rainmeter.dll 2015-03-24 14:27 - 2015-03-24 14:27 - 00058368 _____ () C:\Program Files\Rainmeter\Plugins\WebParser.DLL 2009-07-23 11:37 - 2009-07-23 11:37 - 00931112 ____N () c:\Program Files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMediaLibrary.dll 2014-04-27 17:32 - 2014-11-13 23:09 - 00204280 _____ () C:\Program Files\Bitdefender\Bitdefender\antispam32\txmlutil.dll 2015-09-04 10:41 - 2015-09-04 10:40 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll 2013-10-10 12:02 - 2013-10-10 12:02 - 00013120 _____ () C:\Program Files (x86)\Common Files\Acronis\TibMounter\icudt38.dll 2014-02-04 18:25 - 2014-02-04 18:25 - 00036672 _____ () C:\Program Files (x86)\Acronis\TrueImageHome\qt_icontray_ex.dll 2014-02-04 18:25 - 2014-02-04 18:25 - 00028992 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\thread_pool.dll 2015-12-11 21:01 - 2015-10-31 01:59 - 00034768 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\faulthandler.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00022848 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Random.OSRNG.winrandom.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00023352 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util._counter.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00042296 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Cipher._AES.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll 2015-12-11 21:01 - 2015-10-31 01:59 - 00093640 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00018376 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00019760 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00392144 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll 2015-12-11 21:01 - 2015-12-08 22:36 - 00381752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00692688 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020816 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00109520 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 01737032 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020808 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020800 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_python_x66cf7a7cx17a72769.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021840 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00038696 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00114640 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021320 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_pywin_kernel32_xde9e4433x360333f0.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00024392 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll 2015-12-11 21:01 - 2015-10-31 02:00 - 00024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00117056 _____ () C:\Program Files (x86)\Dropbox\Client\breakpad.client.windows.handler.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00023376 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00134608 _____ () C:\Program Files (x86)\Dropbox\Client\_elementtree.pyd 2015-12-11 21:01 - 2015-10-31 01:59 - 00134088 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00240584 _____ () C:\Program Files (x86)\Dropbox\Client\jpegtran.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00020280 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00052024 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00021304 _____ () C:\Program Files (x86)\Dropbox\Client\Crypto.Util.strxor.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00350152 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00084792 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL 2015-12-11 21:01 - 2015-12-08 22:36 - 01826608 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd 2015-12-11 21:01 - 2015-10-31 02:00 - 00083912 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 03891504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 01950000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00519984 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00133936 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00225080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00207672 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00024904 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00486704 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd 2015-12-11 21:01 - 2015-12-08 22:36 - 00357680 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd 2015-10-03 11:33 - 2015-10-31 02:01 - 00019920 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick.2\qtquick2plugin.dll 2015-08-15 08:55 - 2015-10-31 02:00 - 00786904 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Controls\qtquickcontrolsplugin.dll 2015-10-03 11:33 - 2015-10-31 02:00 - 00063448 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Layouts\qquicklayoutsplugin.dll 2015-10-03 11:33 - 2015-10-31 02:00 - 00019408 _____ () C:\Program Files (x86)\Dropbox\Client\QtQuick\Window.2\windowplugin.dll 2014-10-17 04:08 - 2014-10-17 04:08 - 00169472 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\098e8bf088c2956ba306dfd643107a7e\IsdiInterop.ni.dll 2011-08-31 23:38 - 2010-11-05 22:50 - 00058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll 2014-02-04 18:28 - 2014-02-04 18:28 - 00420160 _____ () C:\Program Files (x86)\Common Files\Acronis\Home\ulxmlrpcpp.dll 2013-02-14 01:00 - 2013-02-14 01:00 - 01131520 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\GCodec.dll 2015-05-28 16:42 - 2015-05-28 16:42 - 05100544 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\v8.dll 2015-05-28 16:42 - 2015-05-28 16:42 - 01607680 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\icui18n.dll 2015-05-28 16:42 - 2015-05-28 16:42 - 01154048 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\icuuc.dll 2014-10-24 13:19 - 2014-10-24 13:19 - 00091136 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\httpd.dll 2015-05-28 16:41 - 2015-05-28 16:41 - 00636416 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\MFL_rel_u_VC9.dll 2015-02-06 16:25 - 2015-02-06 16:25 - 00638976 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\PlayRIpl.dll 2010-04-08 17:47 - 2010-04-08 17:47 - 00172032 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\XaraCMS.dll 2012-11-29 01:02 - 2012-11-29 01:02 - 00709632 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\XARADARK.cjstyles 2015-05-28 16:37 - 2015-05-28 16:37 - 02228224 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\Protein\MFL_rel_u_vc12.dll 2015-08-03 14:26 - 2015-08-03 14:26 - 01858048 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\Filters\DEU\XPSFilter.dll 2015-08-03 14:42 - 2015-08-03 14:42 - 01581568 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\Filters\DEU\ODPImport.dll 2015-08-03 14:22 - 2015-08-03 14:22 - 01653248 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\Filters\DEU\PSDFilter.dll 2015-08-03 14:37 - 2015-08-03 14:37 - 01364992 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\Filters\DEU\PPImport.dll 2015-08-03 14:47 - 2015-08-03 14:47 - 04632576 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\Filters\DEU\DocImport\DocImport.dll 2015-08-20 02:07 - 2015-08-20 02:07 - 00219136 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\Filters\DEU\PDFImport\PDFImport.dll 2015-08-03 14:24 - 2015-08-03 14:24 - 01314304 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\Filters\DEU\SVGFilter.dll 2015-08-03 14:22 - 2015-08-03 14:22 - 00637952 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\Filters\DEU\EMFFilter.dll 2015-08-03 14:25 - 2015-08-03 14:25 - 01537536 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\Filters\DEU\TIFFImport.dll 2011-05-24 05:03 - 2011-05-24 05:03 - 03883008 _____ () C:\Program Files (x86)\MAGIX\Page & Layout Designer 11\imfilters.dll 2015-10-23 22:27 - 2015-10-23 22:27 - 21344952 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.dll 2015-03-17 01:34 - 2015-03-17 01:34 - 00322208 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\sqlite.dll 2015-09-30 21:47 - 2015-09-30 21:47 - 45080248 _____ () C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\libcef.dll 2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf 2013-02-14 14:46 - 2013-02-14 14:46 - 01044048 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll 2015-10-13 12:14 - 2015-10-13 12:14 - 26904904 _____ () C:\Program Files (x86)\Google\Picasa3\Picasa3i18n.dll 2015-10-13 11:21 - 2015-10-13 11:21 - 00405504 _____ () C:\Program Files (x86)\Google\Picasa3\plugins\CDVDR\CDVDR.yti 2015-10-13 12:02 - 2015-10-13 12:02 - 00430080 _____ () C:\Program Files (x86)\Google\Picasa3\plugins\ytITivo.yti 2015-10-13 11:05 - 2015-10-13 11:05 - 02351104 _____ () C:\Program Files (x86)\Google\Picasa3\plugins\Red.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\Users\Home\Downloads\BitTorrent-Sync.exe:BDU AlternateDataStreams: C:\Users\Home\Downloads\ChromeSetup.exe:BDU AlternateDataStreams: C:\Users\Home\Downloads\dfsetup219.exe:BDU AlternateDataStreams: C:\Users\Home\Downloads\GoodSync-Setup.exe:BDU AlternateDataStreams: C:\Users\Home\Downloads\HPSupportSolutionsFramework-12.0.30.219.exe:BDU AlternateDataStreams: C:\Users\Home\Downloads\install-0.3.3.exe:BDU AlternateDataStreams: C:\Users\Home\Downloads\MediathekView - CHIP-Installer.exe:BDU ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver" HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver" ==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-2055331987-1518689308-177053510-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Home\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg DNS Servers: 192.168.178.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) Windows Firewall ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) MSCONFIG\Services: gupdatem => 3 MSCONFIG\Services: gusvc => 3 MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR MSCONFIG\startupreg: EADM => "C:\Program Files (x86)\Electronic Arts\EADM\EADMUI\EADMUI.exe" MSCONFIG\startupreg: TrayServer => C:\PROGRA~2\MAGIX\VIDEO_~1\TrayServer.exe MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{B368F941-0CB4-4EF3-A560-ECE92A7CCA92}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe FirewallRules: [{C0F1CDEB-8A20-49A1-B35F-5DAF6B0806A4}] => (Allow) c:\Program Files (x86)\Hewlett-Packard\Media\DVD\HPDVDSmart.exe FirewallRules: [{8A169D17-0EB7-49FF-931C-5C43E2073505}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{DE33A289-732E-4654-943F-7A45743D6E43}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [UDP Query User{58171B02-7028-4BF1-9160-E1F593897D8F}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [TCP Query User{A23EF6E2-8FE1-490B-B182-4B1D855313A1}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [UDP Query User{747DCA01-6FAE-4DD4-87BD-04DEE5969E99}C:\program files (x86)\azureus\azureus.exe] => (Allow) C:\program files (x86)\azureus\azureus.exe FirewallRules: [{0D44D73D-B6F6-479E-AD4A-A863E07010D2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{10E3F261-C815-4590-A29E-EC4173FB564B}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [UDP Query User{0DB76952-E1CC-4093-8D00-69A1B877A183}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe FirewallRules: [{79A45DF0-A4C0-4C5C-8D73-5633069B5AB1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{87DD92E8-3A51-4F11-A27A-D7F0E392A084}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{3F29078F-E968-4BBF-914A-C14E9E9053AB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{53F35B89-2E99-40C6-8489-81A8CFBDE47B}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [UDP Query User{6857BD51-C109-4A14-BE0E-236E4BADABAA}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Allow) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [TCP Query User{1B913C34-2DEA-465C-B4AF-F0478C3604D2}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [UDP Query User{6E9D74FC-F1A2-400E-9926-98A4F719EE31}C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe] => (Block) C:\program files (x86)\spyware terminator\spywareterminatorupdate.exe FirewallRules: [{CB1292DF-547A-4225-B447-A7CF9A1AF843}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{DAF16138-C0FB-4179-A6A8-5DF3FF390167}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe FirewallRules: [UDP Query User{82BF5BFC-EC69-4092-98FB-B299CDAD059E}C:\program files\iomega\quikprotect\quikprotect.exe] => (Allow) C:\program files\iomega\quikprotect\quikprotect.exe FirewallRules: [{73A0BC91-D30C-4791-A427-715EA9C500AA}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{86796E47-EB99-4916-BACB-2967A65E14EB}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{EFAEE846-1759-4F70-A6FF-86B7449CB4A2}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{48A53461-FCE7-4A5D-ACD6-387272CE8B2C}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{469A731D-13DA-4D3E-BB89-207BAE65F4C6}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{D88A371D-7671-42B9-87BB-F72D52A80278}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{058DE289-ACB7-491D-B16B-7F684C3A3F3D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{F125FF56-47A7-405C-8727-338099D9B436}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [TCP Query User{ED6F9988-0AD6-441A-8F5F-BCD0BFC8236B}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [UDP Query User{9E2A97ED-6B26-4F70-BE14-218E65B14490}C:\program files (x86)\internet explorer\iexplore.exe] => (Allow) C:\program files (x86)\internet explorer\iexplore.exe FirewallRules: [{D4CB0E40-90B9-489A-831E-236EA6BE6DC1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe FirewallRules: [{293F9E14-6E7E-4DC1-8FBA-CEE79D5BCBB2}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe FirewallRules: [{76CEB911-B258-459D-963A-F8B71E4A8AB6}] => (Allow) LPort=54010 FirewallRules: [{7D213076-29F2-40D4-92E9-CC4274B63F77}] => (Allow) LPort=49165 FirewallRules: [{A74E5788-619C-4AB8-B62E-DBB7CFB9B976}] => (Allow) LPort=5000 FirewallRules: [TCP Query User{C4E47B49-F94E-4559-BB5D-1C96688348B0}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe FirewallRules: [UDP Query User{FE0B45D0-DE05-474F-8531-831A5F53C150}C:\program files\ws_ftp\ws_ftp95.exe] => (Block) C:\program files\ws_ftp\ws_ftp95.exe FirewallRules: [TCP Query User{CE0F1D27-01E9-45EB-A33E-839D40D9B075}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [UDP Query User{3D17EF45-2CEF-4683-88C5-4B626DB2AC8E}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe FirewallRules: [TCP Query User{FFDC21D7-07DA-4596-96F6-2606D1EE5523}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [UDP Query User{14F53A11-7ED1-4DE0-A7D2-97B462A28FBD}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Allow) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [TCP Query User{55946F33-1BFB-4145-8AB1-5D1F22F492E7}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [UDP Query User{C090514C-6057-4356-8FF6-C331D79D3331}C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe] => (Block) C:\program files (x86)\java\jre7\launch4j-tmp\vmload.exe FirewallRules: [{970D3085-A7A4-4F79-B343-049A8BCA0A5C}] => (Allow) F:\fsetup.exe FirewallRules: [{2B7218D5-2AD3-4B90-A65B-D5408829DE19}] => (Allow) F:\fsetup.exe FirewallRules: [TCP Query User{542118CF-7A70-4724-8A79-A6EB75B4FFED}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe FirewallRules: [UDP Query User{D39C71E1-53A0-431D-AB76-ACC2297B9F8C}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe FirewallRules: [TCP Query User{10CE6C0D-E841-420D-90D5-DC3DAC394401}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe FirewallRules: [UDP Query User{04E6753E-4B85-4D1B-ABA4-A9478F312164}C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe] => (Allow) C:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe FirewallRules: [{AA815EF5-355D-4D28-A008-E21B73350E82}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{CB407730-B925-456F-AA28-CE95A904668F}] => (Allow) C:\Users\Home\AppData\Local\Google\Google Talk Plugin\googletalkplugin.exe FirewallRules: [{4BE75D74-AF9E-40FE-9152-7E9E2059F0EC}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{FC013570-8818-49C7-B0EE-3CCB7A4C0201}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe FirewallRules: [{4BD8A3E4-BF87-42FC-A8B4-76310CBF3534}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{049AC890-1243-4FE2-8EF7-84F0BA451EAD}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [TCP Query User{7E20B448-3ED1-4F81-A122-E8A94D23D474}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [UDP Query User{DCEE4AC1-9E2A-42F7-AD9E-7E1457569345}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe FirewallRules: [{317403D4-D673-41E0-9FA7-D691E575DFE6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{FD9A778E-8629-4836-8AC3-C1F8257A39E1}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe FirewallRules: [{C65A4598-15FC-4B7B-8B8E-0707C30116A1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{AA9F69DB-EB14-4AE5-B989-0FEACAB37859}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe FirewallRules: [{A756DD02-76B3-411A-A389-9540F12347CA}] => (Allow) C:\Program Files\iTunes\iTunes.exe FirewallRules: [{F04E674E-45C2-4495-A8B5-44D0C60BD685}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{9C4BF95C-CB89-4999-BB0D-61D4F7BEA3E3}] => (Allow) C:\Windows\SysWOW64\muzapp.exe FirewallRules: [{37AF3EA8-2C25-476F-BB39-27CC871F71FA}] => (Allow) C:\Program Files\Soluto\SolutoRemoteDirect.exe FirewallRules: [{E7147E98-EB39-4389-AA34-1C8F13036CEA}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PFInstOnline.exe FirewallRules: [{818B516A-0465-4991-834F-18450FBFDB0E}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe FirewallRules: [{D93A30B2-2F50-4501-9A99-8163D5CEE919}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{36F8F835-FD92-413A-8422-C8B288FDFEFE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{523F29E1-4B2C-4CFF-B172-219BBA061846}] => (Allow) C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPDeviceDetection3.exe FirewallRules: [{485D813E-61CB-4ACC-A0E5-4605B70CD791}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe FirewallRules: [{768B6FD9-DE8E-4019-94F4-317AC81ECE6C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{0EB65856-E6E3-4B5B-953C-375C0CC1F35E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe FirewallRules: [{91D760C6-8120-489B-A05B-B1EC38BC73B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{7C818C20-03B9-42CC-89EE-075253F470D7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe FirewallRules: [{F3D82C56-40A4-4AAC-8131-C68328FF9882}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe ==================== Wiederherstellungspunkte ========================= 31-12-2015 18:57:07 Revo Uninstaller's restore point - Wondershare Filmora(Build 6.8.1) 01-01-2016 20:20:24 Revo Uninstaller's restore point - Vuze 01-01-2016 20:25:01 Revo Uninstaller's restore point - VSDC Free Video Editor Version 3.3.0.394 02-01-2016 00:35:05 Revo Uninstaller's restore point - StreamTransport version: 1.1.6.2 02-01-2016 01:30:04 Revo Uninstaller's restore point - StreamTransport version: 1.1.6.2 02-01-2016 01:41:07 Revo Uninstaller's restore point - GetFLV 9.8.988.88 02-01-2016 12:46:57 Installed HP Support Solutions Framework 02-01-2016 12:51:40 Installed HP Support Assistant 02-01-2016 12:58:15 Windows Modules Installer 02-01-2016 12:59:52 Windows Modules Installer 02-01-2016 17:05:57 Revo Uninstaller's restore point - streamCapture ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Bluetooth-Peripheriegerät Description: Bluetooth-Peripheriegerät Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. Name: AT6DYR4J IDE Controller Description: AT6DYR4J IDE Controller Class Guid: {4D36E97B-E325-11CE-BFC1-08002BE10318} Manufacturer: (Standard mass storage controllers) Service: age73b4f Problem: : Windows cannot load the device driver for this hardware. The driver may be corrupted or missing. (Code 39) Resolution: Reasons for this error include a driver that is not present; a binary file that is corrupt; a file I/O problem, or a driver that references an entry point in another binary file that could not be loaded. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (01/02/2016 05:28:37 PM) (Source: SideBySide) (EventID: 80) (User: ) Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest1". Fehler in Manifest- oder Richtliniendatei "C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest2" in Zeile C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest3. Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion. In Konflikt stehende Komponenten:. Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest. Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest. Error: (01/02/2016 03:02:33 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (01/02/2016 02:43:50 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 11310 Error: (01/02/2016 02:43:50 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledEvent 11310 Error: (01/02/2016 02:43:49 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: Continuously busy for more than a second Error: (01/02/2016 01:25:31 PM) (Source: HP Active Health) (EventID: 91) (User: ) Description: Unhandled Exception. Application will terminate immediately. Sent from: Name:ActiveHealth.exe Keine Kontextrichtlinien vorhanden. Is terminating: True Exception object: System.InvalidOperationException: Indikatornamensdaten können nicht geladen werden, da ein ungültiger Index "" aus der Registrierung gelesen wurde. bei System.Diagnostics.PerformanceCounterLib.GetStringTable(Boolean isHelp) bei System.Diagnostics.PerformanceCounterLib.get_NameTable() bei System.Diagnostics.PerformanceCounterLib.get_CategoryTable() bei System.Diagnostics.PerformanceCounterLib.CounterExists(String category, String counter, Boolean& categoryExists) bei System.Diagnostics.PerformanceCounterLib.CounterExists(String machine, String category, String counter) bei System.Diagnostics.PerformanceCounter.InitializeImpl() bei System.Diagnostics.PerformanceCounter..ctor(String categoryName, String counterName, String instanceName, Boolean readOnly) bei System.Diagnostics.PerformanceCounter..ctor(String categoryName, String counterName, String instanceName) bei HP.ActiveHealth.API.Performance.ProcessPerformanceCounter.UpdateCounterObjects() bei HP.ActiveHealth.API.Performance.ProcessPerformanceCounter.ProcessFinder(Object state) bei System.Threading.ExecutionContext.RunInternal(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx) bei System.Threading.ExecutionContext.Run(ExecutionContext executionContext, ContextCallback callback, Object state, Boolean preserveSyncCtx) bei System.Threading.TimerQueueTimer.CallCallback() bei System.Threading.TimerQueueTimer.Fire() bei System.Threading.TimerQueue.FireNextTimers() Error: (01/02/2016 01:24:50 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (01/02/2016 01:24:49 PM) (Source: HP Active Health) (EventID: 2500) (User: ) Description: Agent ApplicationsInstalled threw an exception: System.Management.ManagementException: Allgemeiner Fehler bei System.Management.ManagementException.ThrowWithExtendedInfo(ManagementStatus errorCode) bei System.Management.ManagementObjectCollection.ManagementObjectEnumerator.MoveNext() bei HP.ActiveHealth.Commons.Objects.AgentDataQuery.ManagementProperties.MoveNext() bei HP.ActiveHealth.Agents.ApplicationsInstalled.ApplicationsInstalledAgent.GetNewDataClasses(FileInfo agentStateFile) bei HP.ActiveHealth.Agents.ApplicationsInstalled.ApplicationsInstalledAgent.CollectNewDataClasses(FileInfo agentStateFile, IDataClassCollector dataClassColector) bei HP.ActiveHealth.API.DataGeneration.AgentRunner.QueryAgentDelegate(Object agentObj) Error: (01/02/2016 01:18:55 PM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3002) (User: NT-AUTORITÄT) Description: Der Textzeichenfolgenwert zur Beschreibung des Leistungsindikators in der Registrierung ist falsch formatiert. Die falsch formatierte Zeichenfolge ist "". Das erste DWORD im Datenbereich enthält den Indexwert für die falsch formatierte Zeichenfolge, während das zweite und dritte DWORD im Datenbereich die letzten gültigen Indexwerte enthalten. Error: (01/02/2016 12:20:53 PM) (Source: Bonjour Service) (EventID: 100) (User: ) Description: Task Scheduling Error: m->NextScheduledSPRetry 16583 Systemfehler: ============= Error: (01/02/2016 02:45:57 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Error: (01/02/2016 02:45:44 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst afcdpsrv erreicht. Error: (01/02/2016 01:24:53 PM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Der Dienst "WMI-Leistungsadapter" wurde mit folgendem Fehler beendet: %%-2147467259 Error: (01/02/2016 01:15:56 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "PnP-X-IP-Busenumerator" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Error: (01/02/2016 01:14:24 PM) (Source: Service Control Manager) (EventID: 7001) (User: ) Description: Der Dienst "Heimnetzgruppen-Anbieter" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde: %%1058 Error: (01/02/2016 01:13:50 PM) (Source: Service Control Manager) (EventID: 7026) (User: ) Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: UimBus Uim_IM Error: (01/02/2016 01:09:13 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst vsserv erreicht. Error: (01/02/2016 01:08:43 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst vsserv erreicht. Error: (01/02/2016 01:07:25 PM) (Source: DCOM) (EventID: 10010) (User: ) Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E} Error: (01/02/2016 12:21:17 PM) (Source: Service Control Manager) (EventID: 7011) (User: ) Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst afcdpsrv erreicht. CodeIntegrity: =================================== Date: 2016-01-02 17:28:45.623 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-02 17:28:42.382 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-02 17:11:28.297 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-02 17:05:50.154 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-02 17:05:15.638 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-02 16:45:06.358 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-02 15:31:10.719 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-02 15:29:30.418 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-02 15:29:19.392 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. Date: 2016-01-02 15:24:05.861 Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\AESTAR64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM)2 Duo CPU P8700 @ 2.53GHz Prozentuale Nutzung des RAM: 78% Installierter physikalischer RAM: 4063.19 MB Verfügbarer physikalischer RAM: 875.81 MB Summe virtueller Speicher: 8124.58 MB Verfügbarer virtueller Speicher: 4228.08 MB ==================== Laufwerke ================================ Drive c: (OS) (Fixed) (Total:151.36 GB) (Free:31.99 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)] Drive d: (Büro) (Fixed) (Total:48.83 GB) (Free:6.31 GB) NTFS Drive e: (Z***) (Fixed) (Total:12.94 GB) (Free:3.74 GB) NTFS Drive g: (Fotos) (Fixed) (Total:65.51 GB) (Free:14.13 GB) NTFS Drive h: (Videoprojekte) (Fixed) (Total:41.01 GB) (Free:19.68 GB) NTFS Drive p: (Videoschnitt) (Fixed) (Total:43.01 GB) (Free:7.79 GB) NTFS Drive q: (Container) (Fixed) (Total:19.24 GB) (Free:4.3 GB) NTFS Drive x: (MAGIC) (Fixed) (Total:59.61 GB) (Free:23.61 GB) FAT32 Drive y: (Excelprojekte) (Fixed) (Total:7.81 GB) (Free:6.4 GB) NTFS Drive z: (Sonstiges) (Fixed) (Total:206.24 GB) (Free:67.82 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 298.1 GB) (Disk ID: 44854109) Partition 1: (Active) - (Size=199 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=151.4 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=133.6 GB) - (Type=05) Partition 4: (Not Active) - (Size=12.9 GB) - (Type=07 NTFS) ======================================================== Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 4BBD1113) Partition 1: (Not Active) - (Size=298.1 GB) - (Type=42) ======================================================== Disk: 2 (Size: 59.6 GB) (Disk ID: E84AB7E6) Partition 1: (Not Active) - (Size=59.6 GB) - (Type=0C) ==================== Ende von Addition.txt ============================ |
Themen zu Windows 7 64Bit - ständig 100% CPU Last mit lauten Lüfter |
bonjour, desktop, dnsapi.dll, downloader, fehler, firefox, flash player, frage, google, helper, home, homepage, iexplore.exe, mozilla, problem, proxy, prozesse, realtek, registry, rundll, scan, software, spyware, system, viren, windows |