Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
VBS/Autorun. AG - scheinbar missglückte Entfernung

VBS/Autorun. AG - scheinbar missglückte Entfernung


Log-Analyse und Auswertung: VBS/Autorun. AG - scheinbar missglückte Entfernung

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 13.02.2017, 15:36   #3
Simulacrum
 
VBS/Autorun. AG - scheinbar missglückte Entfernung - Standard

VBS/Autorun. AG - scheinbar missglückte Entfernung


Addition
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 05-02-2017
durchgeführt von Dane (07-02-2017 20:19:23)
Gestartet von C:\Users\Dane\Downloads
Windows 7 Home Premium Service Pack 1 (X64) (2013-10-10 10:59:08)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1657567744-246073522-3636546880-500 - Administrator - Disabled)
Dane (S-1-5-21-1657567744-246073522-3636546880-1001 - Administrator - Enabled) => C:\Users\Dane
Gast (S-1-5-21-1657567744-246073522-3636546880-501 - Limited - Disabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-1657567744-246073522-3636546880-1003 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.023.20056 - Adobe Systems Incorporated)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.0.272 - Adobe Systems Incorporated)
Adobe Creative Suite 6 Master Collection (HKLM-x32\...\{E8AD3069-9EB7-4BA8-8BFE-83F4E69355C0}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2015 (HKLM-x32\...\{0FAC7130-BEC5-47A5-8813-1D339B8326ED}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.3 64-bit (HKLM\...\{2DD71ACB-552D-402C-9529-7906ACB95C30}) (Version: 5.3.1 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Age of Empires II: HD Edition (HKLM-x32\...\Steam App 221380) (Version:  - Hidden Path Entertainment, Ensemble Studios)
Agisoft PhotoScan Professional (HKLM\...\{0E53CD84-10DC-4499-965F-8117BA09CA74}) (Version: 1.2.6 - Agisoft)
AIO_CDB_Software (x32 Version: 130.0.365.000 - Hewlett-Packard) Hidden
AIO_Scan (x32 Version: 130.0.421.000 - Hewlett-Packard) Hidden
Akamai NetSession Interface (HKU\S-1-5-21-1657567744-246073522-3636546880-1001\...\Akamai) (Version:  - Akamai Technologies, Inc)
Akamai NetSession Interface (HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Akamai) (Version:  - Akamai Technologies, Inc)
Amazon Music (HKU\S-1-5-21-1657567744-246073522-3636546880-1001\...\Amazon Amazon Music) (Version: 5.3.5.1704 - Amazon Services LLC)
Amazon Music (HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Amazon Amazon Music) (Version: 5.3.5.1704 - Amazon Services LLC)
Ansel (Version: 375.86 - NVIDIA Corporation) Hidden
Assassin's Creed IV Black Flag (HKLM-x32\...\Uplay Install 273) (Version:  - Ubisoft)
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.0.14.15 - Atheros Communications Inc.)
Autodesk Download Manager (HKLM-x32\...\{EC92633C-8F08-470A-BCDF-3FE5FD778C8D}) (Version: 4.0.14.0 - Autodesk, Inc.)
Autodesk License Service (x64) - 3.1 (HKLM\...\{EB6FE58F-8576-4272-BB9C-6B47D9EDFA4D}) (Version: 3.1.26.0 - Autodesk)
Autodesk ReMake (HKLM\...\Autodesk ReMake) (Version: 17.25.0.16 - Autodesk)
Autodesk ReMake (Version: 17.25.0.16 - Autodesk) Hidden
AVerMedia H339 Hybrid TV Tuner 2.2.64.73 (HKLM-x32\...\AVerMedia H339 Hybrid TV Tuner) (Version: 2.2.64.73 - AVerMedia TECHNOLOGIES, Inc.)
Batman Arkham Anthology Edition 1.0 (HKLM-x32\...\Batman Arkham Anthology Edition 1.0) (Version:  - )
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Benutzerhandbuch (x32 Version: 1.0.0.6 - Lenovo) Hidden
Besiege (HKLM\...\Steam App 346010) (Version:  - Spiderling Studios)
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blender (HKLM\...\{EA3C8A99-1565-44FF-89FC-926CEEB623B5}) (Version: 2.75.1 - Blender Foundation)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version:  - Gearbox Software)
Borderlands: The Pre-Sequel (HKLM\...\Steam App 261640) (Version:  - 2K Australia)
BufferChm (x32 Version: 130.0.331.000 - Hewlett-Packard) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.5306 - CDBurnerXP)
chip 1-click download service (HKLM-x32\...\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}) (Version: 3.6.9.0 - Chip Digital GmbH)
CodeBlocks (HKU\S-1-5-21-1657567744-246073522-3636546880-1001\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team)
CodeBlocks (HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\CodeBlocks) (Version: 13.12 - The Code::Blocks Team)
Commander: Conquest of the Americas Gold (HKLM-x32\...\Steam App 254020) (Version:  - )
Core Temp 1.1 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.1 - Alcpu)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version:  - Valve)
CPUID CPU-Z 1.74 (HKLM\...\CPUID CPU-Z_is1) (Version:  - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
DaVinci Resolve (HKLM\...\{692A497A-26B5-4A00-A8FB-675BD88F32B2}) (Version: 12.3.2008 - Blackmagic Design)
DiRT 3 Complete Edition (HKLM-x32\...\Steam App 321040) (Version:  - Codemasters Racing Studio)
DivX-Setup (HKLM-x32\...\DivX Setup) (Version: 2.7.0.70 - DivX, LLC)
DJI Transcoding Tool 1.0.0 (HKLM-x32\...\DJI Transcoding Tool) (Version: 1.0.0 - DJI)
Dokan Library 0.5.3 (HKLM-x32\...\DokanLibrary) (Version:  - )
DScaler 4 Test Version (HKLM-x32\...\DScaler 4 Test Version_is1) (Version:  - )
East India Company Gold (HKLM-x32\...\Steam App 254000) (Version:  - )
Energy Management (HKLM-x32\...\InstallShield_{D0956C11-0F60-43FE-99AD-524E833471BB}) (Version: 7.0.4.1 - Lenovo)
Energy Management (x32 Version: 7.0.4.1 - Lenovo) Hidden
Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Fallout 3 (HKLM\...\Steam App 22300) (Version:  - Bethesda Game Studios)
ForHonorBETA (HKLM-x32\...\Uplay Install 2184) (Version:  - Ubisoft)
Gerätetreiber für Intel(R) Wireless Music (HKLM\...\{4169B8AC-D144-4E38-A9CA-637EA44129ED}) (Version: 1.5.5323.0 - Intel Corporation)
Grand Theft Auto V (HKLM-x32\...\{E01FA564-2094-4833-8F2F-1FFEC6AFCC46}) (Version: "1.00.0000" - Rockstar Games)
Half-Life 2: Lost Coast (HKLM-x32\...\Steam App 340) (Version:  - Valve)
Half-Life(R) 2 (HKLM-x32\...\{D45EC259-4A19-4656-B588-C2C360DD18EA}) (Version: 1.0.0.0 - Valve)
HFSExplorer 0.23 (HKLM-x32\...\HFSExplorer) (Version: 0.23 - Catacombae Software)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
Hitman: Absolution (HKLM\...\Steam App 203140) (Version:  - IO Interactive)
HP Photosmart Officejet and Deskjet All-In-One Driver Software 13.0 Rel. B (HKLM\...\{B61ED343-0B14-4241-999C-490CB1A20DA4}) (Version: 13.0 - HP)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 130.0.282.000 - Hewlett-Packard) Hidden
Intel AppUp(SM) center (HKLM-x32\...\Intel AppUp(SM) center 38645) (Version: 03.05.11 - Intel)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version:  - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) PROSet/Wireless for Bluetooth(R) 3.0 + High Speed (HKLM\...\{2C0E6BD4-65B1-4E82-B2AC-43EFFC8F100C}) (Version: 15.0.0.0059 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.0.0.1032 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.5.235 - Intel Corporation)
Intel(R) WiDi (HKLM-x32\...\{7FCB8D5D-9396-4D17-8CFA-349D6D49CD32}) (Version: 3.0.13.0 - Intel Corporation)
Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version:  - )
Intel® PROSet/Wireless WiFi-Software (HKLM\...\{DF7756DD-656A-45C3-BA71-74673E8259A9}) (Version: 15.00.0000.0642 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
Intelligent Touchpad (HKLM-x32\...\{FDB0A81A-1173-4B15-BEA4-89FEA0474F17}) (Version: 1.00.0108 - Lenovo)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 7 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86417051FF}) (Version: 7.0.510 - Oracle)
Java 8 Update 112 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180112F0}) (Version: 8.0.1120.15 - Oracle Corporation)
JDiskReport 1.4.1 (HKLM-x32\...\JDiskReport 1.4.1) (Version: 1.4.1 (2014-02-26 11:50:44) - JGoodies Karsten Lentzsch)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
JMicron Flash Media Controller Driver (HKLM-x32\...\{26604C7E-A313-4D12-867F-7C6E7820BE4C}) (Version: 1.0.64.1 - JMicron Technology Corp.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{E27B1D7B-3B34-43A2-9FC0-9828D5DF46E2}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{1CF84962-50F8-48CA-9082-B70F3A02C686}) (Version: 17.0.0.611 - Kaspersky Lab)
Kaspersky Secure Connection (x32 Version: 17.0.0.611 - Kaspersky Lab) Hidden
KnightShift (HKLM-x32\...\Steam App 254060) (Version:  - )
L.A. Noire (HKLM-x32\...\Steam App 110800) (Version:  - Team Bondi)
Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LAV Filters 0.61.2 (HKLM-x32\...\lavfilters_is1) (Version: 0.61.2 - Hendrik Leppkes)
Lenovo Bluetooth with Enhanced Data Rate Software (HKLM\...\{A1439D4F-FD46-47F2-A1D3-FEE097C29A09}) (Version: 6.5.1.2300 - Broadcom Corporation)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.1.7600.117 - Realtek Semiconductor Corp.)
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 7.0.1509 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 7.0.1509 - CyberLink Corp.) Hidden
Lenovo PowerDVD10 (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.3712.52 - CyberLink Corp.)
Lenovo PowerDVD10 (x32 Version: 10.0.3712.52 - CyberLink Corp.) Hidden
Lenovo Registration (HKLM-x32\...\{6707C034-ED6B-4B6A-B21F-969B3606FBDE}) (Version: 1.0.4 - Lenovo Inc.)
Lenovo YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.3728 - CyberLink Corp.)
Lenovo YouCam (x32 Version: 3.1.3728 - CyberLink Corp.) Hidden
Life Is Strange™ (HKLM\...\Steam App 319630) (Version:  - DONTNOD Entertainment)
LockKey (HKLM-x32\...\InstallShield_{AF192694-4B15-4AC1-92F3-1B02E98C08BD}) (Version: 1.38.1.2 - Lenovo)
LockKey (x32 Version: 1.38.1.2 - Lenovo) Hidden
Logitech Gaming Software 8.74 (HKLM\...\Logitech Gaming Software) (Version: 8.74.80 - Logitech Inc.)
Mafia II Director's Cut 1.0 (HKLM-x32\...\Mafia II Director's Cut 1.0) (Version:  - )
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mass Effect 2 (HKLM-x32\...\Steam App 24980) (Version:  - BioWare)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
MeshLab_64b 1.3.3 (HKLM-x32\...\MeshLab_64b) (Version: 1.3.3 - Paolo Cignoni - Guido Ranzuglia VCG - ISTI - CNR)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{929CE49F-1CA7-4CF3-A9A1-6D757443C63F}) (Version: 1.2.0241 - Microsoft Corporation)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.7668.2066 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1657567744-246073522-3636546880-1001\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\OneDriveSetup.exe) (Version: 17.3.6390.0509 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Middle-earth: Shadow of Mordor (HKLM\...\Steam App 241930) (Version:  - Monolith Productions, Inc.)
Mozilla Firefox 51.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 51.0.1 (x86 de)) (Version: 51.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 51.0.1.6234 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Network64 (Version: 130.0.572.000 - Hewlett-Packard) Hidden
Nsd (HKLM-x32\...\{4677B88C-CE16-4CBB-A2CB-B76E9D456C7F}) (Version: 1.0.1.7 - Lenovo)
NVIDIA GeForce Experience 3.1.2.31 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.1.2.31 - NVIDIA Corporation)
NVIDIA Grafiktreiber 375.86 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 375.86 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
NvNodejs (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
NvTelemetry (Version: 1.2.0.0 - NVIDIA Corporation) Hidden
Office 16 Click-to-Run Extensibility Component (Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.7668.2066 - Microsoft Corporation) Hidden
Onekey Theater (HKLM-x32\...\InstallShield_{D4B060B9-AD4A-4152-9D99-28B93C615AFE}) (Version: 2.0.2.9 - Lenovo)
Onekey Theater (x32 Version: 2.0.2.9 - Lenovo) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.3 (HKLM-x32\...\{8D5FCC56-BB9F-4122-923C-71753F50F6F5}) (Version: 4.13.9783 - Apache Software Foundation)
Ori and the Blind Forest: Definitive Edition (HKLM\...\Steam App 387290) (Version:  - Moon Studios GmbH)
Origin (HKLM-x32\...\Origin) (Version: 9.5.2.2829 - Electronic Arts, Inc.)
Paladins (HKLM\...\Steam App 444090) (Version:  - Hi-Rez Studios)
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PDF24 Creator 7.9.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version:  - PDF24.org)
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9.141.259 - Google, Inc.)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
Power2Go (HKLM-x32\...\{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 5.6.0.7303 - CyberLink Corp.)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.990 - Even Balance, Inc.)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Rapture3D 2.4.8 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version:  - Blue Ripple Sound)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6543 - Realtek Semiconductor Corp.)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.1.0 - Rockstar Games)
Saints Row IV (HKLM-x32\...\Steam App 206420) (Version:  - Deep Silver Volition)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.3.15075.2 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.3.15075.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.)
Scan (x32 Version: 13.0.0.0 - Hewlett-Packard) Hidden
SHIELD Streaming (Version: 7.1.0340 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 3.1.2.31 - NVIDIA Corporation) Hidden
Skype™ 7.30 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.30.105 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15113.12 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.0.15113.12 - Samsung Electronics Co., Ltd.) Hidden
Steam (HKLM-x32\...\Steam) (Version:  - Valve Corporation)
SugarSync Manager (HKLM-x32\...\SugarSync) (Version: 1.9.49.86082 - SugarSync, Inc.)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.3.38.0 - Synaptics Incorporated)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
The Elder Scrolls V Skyrim - Legendary Edition (Game of the Year) Deutsche Version 1.9.32.0.8 (HKLM-x32\...\The Elder Scrolls V Skyrim - Legendary Edition (Game of the Year) Deutsche Version 1.9.32.0.8) (Version: 1.9.32.0.8 - .x.X.RIDDICK.X.x.)
This War of Mine (HKLM\...\Steam App 282070) (Version:  - 11 bit studios)
Tom Clancy's Splinter Cell Chaos Theory (HKLM-x32\...\{888DD888-82BE-4D85-BCB2-2E042CD3E844}) (Version: 1.05.157 - Ubisoft)
Toolbox (x32 Version: 130.0.648.000 - Hewlett-Packard) Hidden
Two Worlds: Epic Edition (HKLM-x32\...\Steam App 1930) (Version:  - Reality Pump Studios)
Ubisoft Game Launcher (HKLM-x32\...\{888F1505-C2B3-4FDE-835D-36353EBD4754}) (Version: 1.0.0.0 - UBISOFT)
UnloadSupport (x32 Version: 11.0.0 - Hewlett-Packard) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft)
UserGuide (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 1.0.0.6 - Lenovo)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VeriFace (HKLM-x32\...\VeriFace) (Version: 4.0.1.1230 - Lenovo)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
WebReg (x32 Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows-Treiberpaket - Lenovo (ACPIVPC) System  (12/15/2011 7.1.0.1) (HKLM\...\99841829BE839365AA67B2AD0E50D371F59F8A1E) (Version: 12/15/2011 7.1.0.1 - Lenovo)
Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
WinRAR 5.00 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.00.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Dane\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001_Classes\CLSID\{00020420-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001_Classes\CLSID\{00020421-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001_Classes\CLSID\{00020422-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001_Classes\CLSID\{00020423-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001_Classes\CLSID\{00020424-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001_Classes\CLSID\{00020425-0000-0000-C000-000000000046}\InprocServer32 -> C:\Windows\system32\oleaut32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Dane\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\Windows\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1657567744-246073522-3636546880-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0069F6DF-ECC5-4D59-8FFB-4B41DDB9EF55} - System32\Tasks\MirageAgent => C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe [2011-01-28] (CyberLink)
Task: {0717CCD3-2DDB-4A2D-ABE7-87E2FE98CD6D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-01-21] (Microsoft Corporation)
Task: {094B37E8-C022-40FE-9909-5B9D57E02135} - System32\Tasks\{82E27836-C3AE-4A18-ADE1-1471FD3E65FD} => pcalua.exe -a "C:\Program Files (x86)\Origin Games\Dragon Age Redesigned -686\Dragon Age Redesigned Version 7.3d\Dragon Age Origins\Companion NPCs for Origins\Leliana\Dragon Age Redesigned- Leliana.exe" -d "C:\Program Files (x86)\Origin Games\Dragon Age Redesigned -686\Dragon Age Redesigned Version 7.3d\Dragon (Der Dateneintrag hat 48 mehr Zeichen).
Task: {0CCF1EAB-21DA-4D80-9610-2AF9F26A6DED} - System32\Tasks\{8D992195-3F2E-4C85-85A6-97C7BF94C164} => pcalua.exe -a "C:\Program Files (x86)\Origin Games\Dragon Age Redesigned -686\Dragon Age Redesigned Version 7.3d\Dragon Age Origins\Non-companion NPCs (contains Dracomies True Textures)\Dragon Age Redesigned Version 7.3c.exe" -d "C:\Program Files (x86)\Origin Games\Dragon Age Redesigned -686\Dragon Age Redesig (Der Dateneintrag hat 90 mehr Zeichen).
Task: {27C845DC-8FBF-4317-AE23-1EB5DA276001} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {2C8EA275-F102-44EE-8C62-A435DD4791E7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2016-11-17] (NVIDIA Corporation)
Task: {3370CA84-87CD-4D25-A639-35DBFFF14789} - System32\Tasks\{754C1092-73AF-4316-895A-CE1095651826} => pcalua.exe -a "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\Creative Cloud Uninstaller.exe"
Task: {3478C2F1-2444-4FB1-878F-552B5729B10C} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2017-01-21] (Microsoft Corporation)
Task: {3AF322B5-7CD3-4569-B9B4-25FA1B3C3174} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-01-21] (Microsoft Corporation)
Task: {3B587695-D24F-4BD6-B76B-3C7F3F7A95BD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {6484E3FE-EC53-4D32-9D4A-B2F4D6B1B242} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)
Task: {6C9AE995-D050-46D2-B89D-DF38226C2320} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {708CC86F-B356-4169-9D7E-694C41BF6C33} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-01-21] (Microsoft Corporation)
Task: {8CF81C79-C891-4D12-9CED-88583F612FA9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2016-11-17] (NVIDIA Corporation)
Task: {9B5996AA-7191-41AF-B132-D7C13F557C0B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2016-11-17] (NVIDIA Corporation)
Task: {B3211276-4373-4FCE-96FD-E5E330D17600} - System32\Tasks\AdobeAAMUpdater-1.0-Dane-PC-Dane => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-05-05] (Adobe Systems Incorporated)
Task: {CFF7575D-84AA-43F4-B111-84A1F69285B3} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2016-11-17] (NVIDIA Corporation)
Task: {D50E402C-A9DE-4962-9D7A-09513D565766} - System32\Tasks\{64562452-2B30-4A9E-8C90-DAA9A2E85912} => pcalua.exe -a C:\Users\Dane\Downloads\3d\3DAnalyze.exe -d C:\Users\Dane\Downloads\3d
Task: {D590356E-862C-4BD8-9A57-D8E70EEB280B} - System32\Tasks\Games\UpdateCheck_S-1-5-21-1657567744-246073522-3636546880-1001
Task: {E3E2CF87-0D2B-4DF1-A41F-D0F87B60410F} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-01-21] (Microsoft Corporation)
Task: {ED2535C1-7D7C-4505-9819-B666EABDF13D} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2012-05-19 01:03 - 2012-05-19 01:03 - 00011776 _____ () C:\Program Files (x86)\Dokan\DokanLibrary\mounter.exe
2013-10-13 00:22 - 2013-10-13 00:22 - 00075136 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2011-06-02 12:58 - 2011-06-02 12:58 - 00201568 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect64.dll
2011-06-02 12:59 - 2011-06-02 12:59 - 00156000 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll64.dll
2016-11-16 14:20 - 2016-11-11 00:48 - 00020536 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2016-04-01 22:18 - 2016-04-01 22:18 - 00426160 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-12-01 14:37 - 2016-12-01 14:37 - 00959168 _____ () C:\Users\Dane\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2012-09-21 08:39 - 2012-09-21 08:39 - 00628064 _____ () C:\Windows\system32\SimpleExt.dll
2008-12-20 02:20 - 2012-09-21 08:41 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\HookLib.dll
2012-04-19 15:22 - 2012-09-21 08:41 - 01516592 _____ () C:\Program Files (x86)\Lenovo\Energy Management\EMWpfUI.dll
2012-03-10 15:31 - 2012-09-21 08:41 - 00012336 _____ () C:\Program Files (x86)\Lenovo\Energy Management\de-DE\EMWpfUI.resources.dll
2008-12-20 02:20 - 2012-09-21 08:41 - 00054088 _____ () C:\Program Files (x86)\Lenovo\Energy Management\kbdhook.dll
2012-09-21 08:37 - 2012-09-21 08:37 - 00099680 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
2012-09-21 08:37 - 2011-12-08 10:12 - 00291272 _____ () C:\Program Files\Lenovo\Intelligent Touchpad\TouchZone.exe
2012-09-21 08:13 - 2016-11-10 23:38 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-11-16 14:23 - 2016-11-17 14:45 - 01147328 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-16 14:23 - 2016-11-17 14:45 - 04489152 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-16 14:24 - 2016-11-17 14:45 - 00418752 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\_nvspserviceplugin64.dll
2012-09-21 08:22 - 2010-10-26 06:40 - 00049056 _____ () C:\Program Files\Realtek\Audio\HDA\FMAPP.exe
2015-03-07 01:07 - 2015-03-07 01:07 - 00908568 _____ () C:\Program Files\Logitech Gaming Software\libGLESv2.dll
2015-09-19 22:20 - 2015-09-19 22:20 - 01095448 _____ () C:\Program Files\Logitech Gaming Software\platforms\qwindows.dll
2015-03-07 01:07 - 2015-03-07 01:07 - 00060184 _____ () C:\Program Files\Logitech Gaming Software\libEGL.dll
2015-09-19 22:20 - 2015-09-19 22:20 - 00240408 _____ () C:\Program Files\Logitech Gaming Software\imageformats\qjpeg.dll
2016-04-01 22:17 - 2016-04-01 22:17 - 31679664 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2016-11-16 14:20 - 2016-11-11 00:48 - 00018880 _____ () C:\Program Files (x86)\NVIDIA Corporation\CoProcManager\detoured.dll
2016-11-16 14:23 - 2016-11-17 11:20 - 00506424 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvSpCapsAPINode.node
2011-06-02 12:57 - 2011-06-02 12:57 - 00161120 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\ActiveDetect32.dll
2011-06-02 12:58 - 2011-06-02 12:58 - 00132448 _____ () C:\Program Files (x86)\Lenovo\Onekey Theater\WindowsApiHookDll32.dll
2016-11-16 14:23 - 2016-11-17 11:20 - 00252352 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\DriverInstall.node
2016-11-16 14:23 - 2016-11-17 11:20 - 02809912 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\Downloader.node
2016-11-16 14:23 - 2016-11-17 14:45 - 00900032 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
2016-11-16 14:23 - 2016-11-17 14:45 - 03774400 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\Poco.dll
2016-11-16 14:23 - 2016-11-17 11:20 - 00245184 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGameShareAPINode.node
2016-11-16 14:23 - 2016-11-17 11:20 - 00436792 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvGalleryAPINode.node
2016-11-16 14:23 - 2016-11-17 11:20 - 00338488 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVAccountAPINode.node
2016-11-16 14:23 - 2016-11-17 11:20 - 00968248 _____ () \\?\C:\Program Files (x86)\NVIDIA Corporation\NvNode\NvCameraAPINode.node
2012-09-21 08:35 - 2012-06-25 14:45 - 00891392 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtNetwork4.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 02281984 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtCore4.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 00322048 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\log4cplus.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 00339456 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\QtXml4.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 00400384 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\sqlite3.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 00015872 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\featureController.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 00062976 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\osEvents.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 00195584 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\libgsoap.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 00062464 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\zlib1.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 00443904 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\deviceProfile.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 00019456 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\eventsSender.dll
2012-09-21 08:35 - 2012-06-25 14:45 - 00060928 _____ () C:\Program Files (x86)\Intel\IntelAppStore\bin\serviceManagerStarter.dll
2012-09-21 08:38 - 2012-09-21 08:38 - 00013664 _____ () C:\Program Files (x86)\Lenovo\VeriFace\ChooseLang.dll
2016-06-28 00:19 - 2016-06-28 00:19 - 00865232 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\kpcengine.2.3.dll
2015-09-24 16:41 - 2015-09-24 16:41 - 00019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Locale\de_DE\Acrotray.deu
2016-06-03 02:36 - 2016-06-03 02:36 - 40523456 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-03-29 16:19 - 2016-03-29 16:19 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-03-29 16:19 - 2016-03-29 16:19 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-03-29 16:19 - 2016-03-29 16:19 - 00121856 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-03-29 16:19 - 2016-03-29 16:19 - 00126464 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-04-07 10:35 - 2016-04-07 10:35 - 00100544 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-03-29 16:19 - 2016-03-29 16:19 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-08-04 11:22 - 2016-08-04 11:22 - 00172032 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\5a8eeeddc97028a9f94d0518c22f4c2c\IsdiInterop.ni.dll
2012-09-21 08:17 - 2011-11-29 19:00 - 00059392 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2012-09-21 08:18 - 2012-02-21 05:09 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-12-01 14:37 - 2016-12-01 14:37 - 00679624 _____ () C:\Users\Dane\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\Dane\AppData\Local\Temporary Internet Files:6oLdnURSIlswGJhBQRZ9b7 [2318]
AlternateDataStreams: C:\Users\Dane\AppData\Local\Temporary Internet Files:JRiKyCEW7JrQh2qr1Y16DrW [2480]
AlternateDataStreams: C:\Users\Dane\Documents\aok_a.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\Dane\Documents\aok_a.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Dane\Documents\aok_b.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\Dane\Documents\aok_b.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Dane\Documents\Bafoeg1.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\Dane\Documents\Bafoeg1.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Dane\Documents\Bafoeg2.jpeg:3or4kl4x13tuuug3Byamue2s4b [83]
AlternateDataStreams: C:\Users\Dane\Documents\Bafoeg2.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\McMPFSvc => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2014-03-23 19:52 - 00000946 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1657567744-246073522-3636546880-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dane\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-1657567744-246073522-3636546880-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Dane\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-1657567744-246073522-3636546880-501-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Gast\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: ) (ConsentPromptBehaviorUser: ) (EnableLUA: )
MpsSvc => Firewall Dienst läuft nicht.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: KiesAirMessage => C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup
MSCONFIG\startupreg: KiesPreload => C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: RemoteControl10 => "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
MSCONFIG\startupreg: YouCam Tray => "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /s

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{C969A4FB-AA9F-4D68-968A-CF2EE1CBF2EF}] => C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{869B7271-AC58-4D89-873E-0DE74B4F2DB6}] => C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{2AFB5131-6C84-40F1-9A29-81F6D74DC289}] => C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{86C68BE5-1A51-4BEE-96FA-988167C384B2}] => LPort=2869
FirewallRules: [{A73F951F-ED9E-4AD2-ACE5-6FAA4C4137EE}] => LPort=1900
FirewallRules: [{1522780F-2182-4980-8339-00E040764965}] => C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{668FB986-183A-4EA1-B22A-B560476FD4D0}] => C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{7EEE1078-7B57-4796-93E4-463B648B31AC}] => C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{5D78F334-FAB1-45D4-99FC-24FCC05DC472}] => C:\Program Files (x86)\Lenovo\PowerDVD10\PowerDVD10.EXE
FirewallRules: [{360B921A-2945-4823-A7B6-0DB463B2394A}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{F76B3900-4EB7-48BA-ADF8-E5DCF409729B}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe
FirewallRules: [{D012D74A-9C74-4E41-899B-303BE1723D3A}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{4AC061EC-0913-42F4-9193-097935E683F8}] => C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{1254D3FA-336C-4514-8ABA-B91E5D49633F}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{77585490-A472-4A70-9377-257E6524EEFC}] => C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{F98A35C4-61E5-4FB3-9994-0202588787C3}] => C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{357AC81D-7D17-4CF9-963E-BAB8B60D37B1}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{9E6E22AC-580C-4D98-AEAD-307D8675707A}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CDFB8A97-0CFD-48A1-8374-679E704ACEB4}] => C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{7716F9F8-A281-4875-98D9-5843B39F8B14}] => C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Source\hl2.exe
FirewallRules: [{A4FF2F39-63F7-4FDF-9A9C-26D6DD1956F0}] => C:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{695609C3-19B7-498F-92C0-73DA74718FD8}] => C:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{730802DB-194E-4F8A-B1F3-C48B03A9E9C7}] => C:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{A2F81B82-E36A-496E-82C0-2AEC51B2206F}] => C:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2\hl2.exe
FirewallRules: [{D25B0E43-3657-4892-B210-22125A1E065C}] => C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{9B012FB2-34D9-415B-8112-44B1A0701067}] => C:\Program Files (x86)\Adobe\Adobe Flash Builder 4.6\FlashBuilder.exe
FirewallRules: [{544C5DD0-3DB3-4152-B786-8CB9E0A3A7D8}] => LPort=7935
FirewallRules: [TCP Query User{E33841F0-A7EB-46A6-86BB-CD3B0E1A4AAC}C:\program files (x86)\batman arkham anthology edition\batman arkham asylum game of the year edition\binaries\shippingpc-bmgame.exe] => C:\program files (x86)\batman arkham anthology edition\batman arkham asylum game of the year edition\binaries\shippingpc-bmgame.exe
FirewallRules: [UDP Query User{B49130F4-E0BE-43C6-B3BE-F14D6752A1D4}C:\program files (x86)\batman arkham anthology edition\batman arkham asylum game of the year edition\binaries\shippingpc-bmgame.exe] => C:\program files (x86)\batman arkham anthology edition\batman arkham asylum game of the year edition\binaries\shippingpc-bmgame.exe
FirewallRules: [{FF920F95-4D42-479B-8771-002ECA742E30}] => C:\program files (x86)\batman arkham anthology edition\batman arkham asylum game of the year edition\binaries\shippingpc-bmgame.exe
FirewallRules: [{7F540554-0FD9-47B7-9D44-2F976A94BB05}] => C:\program files (x86)\batman arkham anthology edition\batman arkham asylum game of the year edition\binaries\shippingpc-bmgame.exe
FirewallRules: [{B20E405D-3364-4421-A5D6-D2A762172734}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{58469AEA-BD4B-485A-A94C-3B974D7302DA}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{A3D52473-BAAB-4FA1-B445-711EAEDC7310}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{A26AF8A4-A043-498C-B7BE-3292350D7B2F}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{1A079DB6-9884-49D1-953F-4CA9FD6D4FB0}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpqnrs08.exe
FirewallRules: [{3B890C92-84FA-4264-8B08-1D275CD76C21}] => C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{9D40ACD1-013C-4E4B-9B46-150F97B1B893}] => C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{715961CB-58A7-4C9C-A56E-97ACD682D6EF}] => C:\Program Files (x86)\Steam\SteamApps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{4EFC4EFC-C297-468B-B307-80DD97B0341B}] => C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{7661CF6B-2DDC-4759-AEF2-60397F770E51}] => C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{0672185C-11AC-4E50-9A1F-F8AB9DA1FBFB}] => C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{02369F44-860F-4394-98CD-FE81E37A8F90}] => C:\Program Files (x86)\Steam\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{B594E3D1-105E-48EB-A21D-08A1AE714E5D}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{16E46D85-B08B-4421-82A9-083020A44859}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFSP.exe
FirewallRules: [{993EAADD-F1E1-4175-81EE-6D7C3A0D1323}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [{A503D68A-49A5-49A5-B53B-952919A3DBB3}] => C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\Assassin's Creed IV Black Flag\AC4BFMP.exe
FirewallRules: [TCP Query User{E5220BE5-2863-4CCA-9FB7-D05B86E25827}C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe] => C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe
FirewallRules: [UDP Query User{3C723307-EE22-4D8D-A37B-6BB100CEBB52}C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe] => C:\program files (x86)\ubisoft\ubisoft game launcher\games\assassin's creed iv black flag\ac4bfsp.exe
FirewallRules: [{89FD04C1-59DA-4664-BB65-038F01D3087E}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{87A23E87-30BB-4140-877F-D2EE7353C1A8}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{92F386D4-2772-418D-B130-90A058BD428B}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{C8D23DE2-5E4C-4FA9-B0F9-8C30BE3EC7CC}C:\program files (x86)\mozilla firefox\firefox.exe] => C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{748DA7BD-F53A-4AF1-8C41-67D6042BF796}] => C:\Program Files (x86)\Steam\SteamApps\common\KnightShift\KnightShift.exe
FirewallRules: [{98389E15-41F4-4828-84B5-B93A85A5D85A}] => C:\Program Files (x86)\Steam\SteamApps\common\KnightShift\KnightShift.exe
FirewallRules: [{FB558E9C-B683-4A5C-AFA1-E76819AFF146}] => C:\Program Files (x86)\Steam\SteamApps\common\Two Worlds - Epic Edition\TwoWorlds.exe
FirewallRules: [{59AC68D0-F759-47E1-B34A-E102C686620C}] => C:\Program Files (x86)\Steam\SteamApps\common\Two Worlds - Epic Edition\TwoWorlds.exe
FirewallRules: [{13205497-7C14-4798-A9D0-56B99FB56A42}] => C:\Program Files (x86)\Steam\SteamApps\common\Two Worlds - Epic Edition\TwoWorlds_RADEON.exe
FirewallRules: [{D752C035-D441-426F-92DC-0D871226B7E5}] => C:\Program Files (x86)\Steam\SteamApps\common\Two Worlds - Epic Edition\TwoWorlds_RADEON.exe
FirewallRules: [{C7FA2141-5FAE-4846-8410-000F97F0E9FD}] => C:\Program Files (x86)\Steam\SteamApps\common\L.A.Noire\LANLauncher.exe
FirewallRules: [{3A2B86E8-E896-4F8F-9D1B-DFFBE130B123}] => C:\Program Files (x86)\Steam\SteamApps\common\L.A.Noire\LANLauncher.exe
FirewallRules: [{BF04D013-8646-46E3-9522-A6A43C51AD95}] => C:\Program Files (x86)\Steam\SteamApps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{8DB2BFD0-878F-473B-98AB-0CDAD9ACBD07}] => C:\Program Files (x86)\Steam\SteamApps\common\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{56146D15-2C7B-4C3A-BD47-5BF586545A08}] => C:\Program Files (x86)\Steam\SteamApps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{1317CD0B-6393-4536-9014-42A9AA547395}] => C:\Program Files (x86)\Steam\SteamApps\common\Mass Effect 2\MassEffect2Launcher.exe
FirewallRules: [{D7DD0F3C-AE85-420B-B6E6-AB43997F23B0}] => C:\Program Files (x86)\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{82769AD6-74E8-42E2-B4BF-C2DEF8686C05}] => C:\Program Files (x86)\Steam\SteamApps\common\Saints Row IV\SaintsRowIV.exe
FirewallRules: [{15D4ADFC-D4D0-4738-9A8B-CE804F8C4FD7}] => C:\Program Files (x86)\Steam\SteamApps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [{6D237AB7-4D4C-4729-AF28-EF2C98D9DEDF}] => C:\Program Files (x86)\Steam\SteamApps\common\DiRT 3 Complete Edition\dirt3_game.exe
FirewallRules: [TCP Query User{358D67B9-6643-4530-A9C9-7EE12FA16EFF}C:\program files\logitech gaming software\lcore.exe] => C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{F6AE487F-1969-4EFC-8C27-764E6E09B0DF}C:\program files\logitech gaming software\lcore.exe] => C:\program files\logitech gaming software\lcore.exe
FirewallRules: [TCP Query User{6CAD9D18-A289-446A-81E0-8EF2CC18DD21}C:\program files\logitech gaming software\lcore.exe] => C:\program files\logitech gaming software\lcore.exe
FirewallRules: [UDP Query User{4347B400-CCA9-4A37-97F0-9D8C37B60ECD}C:\program files\logitech gaming software\lcore.exe] => C:\program files\logitech gaming software\lcore.exe
FirewallRules: [{DA120AD4-F1E7-4DFF-9714-6512B7A641C6}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A50BDA62-1863-41C9-A462-4787237DC3A2}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{596720E9-AFD9-4BDB-AF80-C6299930FF18}] => C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{E8DEA0D4-D22B-491C-958A-EB3FB0404C10}] => C:\Program Files (x86)\Steam\SteamApps\common\Age2HD\Launcher.exe
FirewallRules: [{A79CC1CF-CE62-4A78-A4AE-859D06DEB6A0}] => C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{1F64FE20-519D-4E25-904F-534566E12392}] => C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{6538EC2B-E2FB-4318-AEB6-567E5B7C9479}] => C:\Program Files (x86)\Steam\SteamApps\common\Two Worlds - Epic Edition\2WSG.exe
FirewallRules: [{67E45497-B193-4F78-9274-27F40609A39D}] => C:\Program Files (x86)\Steam\SteamApps\common\Two Worlds - Epic Edition\2WSG.exe
FirewallRules: [{21B075C4-0FC3-4E51-BE3A-7791B8BD10E4}] => C:\Program Files (x86)\Steam\SteamApps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{24F6E36F-9E37-4C43-83DF-D6B468EB24E3}] => C:\Program Files (x86)\Steam\SteamApps\common\ShadowOfMordor\x64\ShadowOfMordor.exe
FirewallRules: [{F02485CA-ACB2-4733-A916-7163E1C49660}] => C:\Program Files (x86)\Steam\SteamApps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [{08CA0743-46ED-4ECB-A34F-59903E1A9E8C}] => C:\Program Files (x86)\Steam\SteamApps\common\BorderlandsPreSequel\Binaries\Win32\Launcher.exe
FirewallRules: [TCP Query User{EA7A6A78-CA19-414E-BF2E-45323A80C22A}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [UDP Query User{38294920-AE85-4DD4-82A8-01B3B1550F0A}C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe] => C:\program files (x86)\steam\steamapps\common\borderlandspresequel\binaries\win32\borderlandspresequel.exe
FirewallRules: [{79CB2100-D255-48B2-858B-5D32FCFAF989}] => C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe
FirewallRules: [{0DCF6E55-69EA-42F1-8FA6-FD88D121D833}] => C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe
FirewallRules: [{D752FF94-AFDF-4D6A-9872-36A2D33D8501}] => C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe
FirewallRules: [{55FD1669-627A-4EF3-BE3D-CF1FBB4C85D6}] => C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe
FirewallRules: [{18475E01-08FF-4F8C-B94A-CDE565304410}] => C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe
FirewallRules: [{FC469F1B-FD31-4085-AEA0-8E854039F324}] => C:\Program Files\Blackmagic Design\DaVinci Resolve\ElementsPanelDaemon.exe
FirewallRules: [{2FEBD70E-576F-4897-A87A-FC468B8AC162}] => C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe
FirewallRules: [{F2063721-A274-4944-96EF-91EDC4CA24C2}] => C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe
FirewallRules: [TCP Query User{A12CB910-1DFB-4DA4-9401-2E81BA993BC1}C:\users\dane\desktop\progs\processing-3.1.1-windows64\processing-3.1.1\java\bin\java.exe] => C:\users\dane\desktop\progs\processing-3.1.1-windows64\processing-3.1.1\java\bin\java.exe
FirewallRules: [UDP Query User{B1F05FCF-75D9-4828-B609-ACF1BAFF368C}C:\users\dane\desktop\progs\processing-3.1.1-windows64\processing-3.1.1\java\bin\java.exe] => C:\users\dane\desktop\progs\processing-3.1.1-windows64\processing-3.1.1\java\bin\java.exe
FirewallRules: [TCP Query User{093FC006-A4AD-466E-B64C-792FBBDDE17B}C:\users\dane\desktop\progs\processing-3.1.1-windows64\processing-3.1.1\java\bin\java.exe] => C:\users\dane\desktop\progs\processing-3.1.1-windows64\processing-3.1.1\java\bin\java.exe
FirewallRules: [UDP Query User{2A3B99A3-5479-4B0D-BB5D-4ADDFF611667}C:\users\dane\desktop\progs\processing-3.1.1-windows64\processing-3.1.1\java\bin\java.exe] => C:\users\dane\desktop\progs\processing-3.1.1-windows64\processing-3.1.1\java\bin\java.exe
FirewallRules: [{F88E6474-C60C-43F9-9A7E-61D600C5505B}] => C:\Program Files (x86)\Steam\SteamApps\common\Hitman Absolution\HMA.exe
FirewallRules: [{412E634E-B5B7-4263-810E-DDA87FDDAA8B}] => C:\Program Files (x86)\Steam\SteamApps\common\Hitman Absolution\HMA.exe
FirewallRules: [{897E3F9A-6534-41A4-AF1E-D3F9159917F7}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{683EF4AA-B113-4FAE-91CE-D61F33F90DA2}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{3E6110A1-B4B4-4684-AA32-B733AECD46C9}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{2FBA44CA-DE7E-4BEB-9BA8-1AF462196C92}] => C:\Program Files\NVIDIA Corporation\NvContainer\NvContainer.exe
FirewallRules: [{BF74D0F7-E4D3-406E-8791-E05C4B2F63F8}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{76D9D1A4-6662-4EA6-A796-FC90A7046A1D}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CF2D7075-8580-4527-BB2B-7DA963288819}] => C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{31C782FB-26FC-43C5-B3B4-04DB82B8466D}] => C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{592E2308-F81A-4BCE-9CA4-A6FC50FF6910}] => C:\Program Files (x86)\Steam\SteamApps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe
FirewallRules: [{3699425B-12B8-4BAC-9FBF-2EA7F3C7F340}] => C:\Program Files (x86)\Steam\SteamApps\common\Fallout 3\FalloutLauncher.exe
FirewallRules: [{37106DFD-01E8-48EF-9D0A-6710F5DEC5C8}] => C:\Program Files (x86)\Steam\SteamApps\common\Fallout 3\FalloutLauncher.exe
FirewallRules: [{D5C47D06-33CA-4E42-BD8C-6F02F4BBDEF5}] => C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{EFC785F6-D518-4878-8D0D-341770D7490D}] => C:\Program Files\Rockstar Games\Grand Theft Auto V\GTA5.exe
FirewallRules: [{2A6D0A5E-0D97-45F9-8A3D-8624F2E019C3}] => C:\Program Files (x86)\Steam\SteamApps\common\Ori DE\oriDE.exe
FirewallRules: [{8B561949-4373-4A88-BFCB-8DA6DF6E9A3D}] => C:\Program Files (x86)\Steam\SteamApps\common\Ori DE\oriDE.exe
FirewallRules: [{1DB4A7EF-0E6A-4788-88B9-66DD2F9FD160}] => C:\Program Files (x86)\Steam\SteamApps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{E5F0BE0A-A5A5-4E30-A835-3A7164D2D0BB}] => C:\Program Files (x86)\Steam\SteamApps\common\This War of Mine\This War of Mine.exe
FirewallRules: [{98E8D27D-5C00-456E-BBA7-4D81497147D1}] => C:\Program Files (x86)\Steam\SteamApps\common\This War of Mine\Storyteller.exe
FirewallRules: [{1EF66A59-52A3-4C39-9AFA-A287BB32C877}] => C:\Program Files (x86)\Steam\SteamApps\common\This War of Mine\Storyteller.exe
FirewallRules: [{BF31CBEB-82B0-433A-B3CF-D9EE4ED2AFAC}] => C:\Program Files (x86)\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{102E37AD-754F-48ED-AEE8-EE59B9E27378}] => C:\Program Files (x86)\Steam\SteamApps\common\Besiege\Besiege.exe
FirewallRules: [{B3F75830-526A-41A0-81FE-32AF3FB56614}] => C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{F4B72C37-A580-41A8-9490-1D5A63027884}] => C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{2F863DFE-9BB0-4CE7-88B8-C70C91836447}] => C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [TCP Query User{63B4E520-C5B9-47CB-B32C-554A018EF5C7}C:\users\dane\appdata\local\amazon music\amazon music helper.exe] => C:\users\dane\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [UDP Query User{71F1AE44-D8BF-4FF5-8AB8-DDAB84F507BE}C:\users\dane\appdata\local\amazon music\amazon music helper.exe] => C:\users\dane\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [{944CCD9C-85D9-4E02-900E-7AB427F331FF}] => C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{602712E5-1449-4EC6-BC91-E2A07DA75B98}] => C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{5B01D220-6A9E-4827-96B2-BAE481DC8610}] => C:\Program Files (x86)\Steam\SteamApps\common\East India Company Gold\eastindia.exe
FirewallRules: [{7368B893-F80C-4FD9-B009-E25EB8F25C72}] => C:\Program Files (x86)\Steam\SteamApps\common\East India Company Gold\eastindia.exe
FirewallRules: [{FD26183B-7077-4D51-B7A5-579B485A748D}] => C:\Program Files (x86)\Steam\SteamApps\common\East India Company Gold\piratebay.exe
FirewallRules: [{3DD71DC9-91F6-4371-884A-9178EA8863DD}] => C:\Program Files (x86)\Steam\SteamApps\common\East India Company Gold\piratebay.exe
FirewallRules: [{27105DDC-76B5-46F2-9909-47D8F123C6C6}] => C:\Program Files (x86)\Steam\SteamApps\common\East India Company Gold\privateer.exe
FirewallRules: [{251FC8D6-AB39-4851-887C-50C1BEE92EEC}] => C:\Program Files (x86)\Steam\SteamApps\common\East India Company Gold\privateer.exe
FirewallRules: [{0BFD3A8A-3B82-438F-9F26-D34E6B29CF0F}] => C:\Program Files (x86)\Steam\SteamApps\common\East India Company Gold\trafalgar.exe
FirewallRules: [{C8E4D45C-DAA4-4EC5-BC90-941BE702EF87}] => C:\Program Files (x86)\Steam\SteamApps\common\East India Company Gold\trafalgar.exe
FirewallRules: [{C1AD617D-D7B0-4091-8180-2323285693DF}] => C:\Program Files (x86)\Steam\SteamApps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{421CCB00-F006-4D6E-B557-7F13DFE039F3}] => C:\Program Files (x86)\Steam\SteamApps\common\Paladins\Binaries\Win32\HirezBridge.exe

==================== Wiederherstellungspunkte =========================

28-01-2017 12:10:20 Windows Update
05-02-2017 11:30:27 Windows Update
05-02-2017 18:43:29 Windows Update
07-02-2017 18:53:03 Wiederherstellungsvorgang
Überprüfen Sie den "winmgmt" Dienst oder reparieren Sie den WMI.


==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (02/07/2017 07:15:57 PM) (Source: chip 1-click download service) (EventID: 0) (User: )
Description: |ERORRS=;(380) error at getOrdersForVersion:The remote name could not be resolved: 'service.chip-secured-download.de'
;(180) error at GetHttpWebRequest: 1The remote name could not be resolved: 'api.chip-secured-download.de'
;(480) Could not load new Downlaoder

Error: (02/07/2017 07:09:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (02/07/2017 07:09:00 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: startup.exe, Version: 1.0.1.4, Zeitstempel: 0x4ef66fb3
Name des fehlerhaften Moduls: kl_service.dll, Version: 1.10.0.0, Zeitstempel: 0x576196fd
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00000000000513c8
ID des fehlerhaften Prozesses: 0xf8c
Startzeit der fehlerhaften Anwendung: 0x01d2816d16580b28
Pfad der fehlerhaften Anwendung: C:\Program Files\Lenovo\Nsd\startup.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 17.0.0\x64\kl_service.dll
Berichtskennung: 7f53ad6e-ed60-11e6-a207-9c4e36671cd4

Error: (02/07/2017 07:08:35 PM) (Source: NSDSvc) (EventID: 256) (User: )
Description: An error has occurred (---clr_optimization_v4.0.30319_64 failed with 0, The Code is:0x710.).

Error: (02/07/2017 07:08:35 PM) (Source: NSDSvc) (EventID: 256) (User: )
Description: An error has occurred (---HiPatchService failed with 0, The Code is:0x710.).

Error: (02/07/2017 07:08:29 PM) (Source: NSDSvc) (EventID: 256) (User: )
Description: An error has occurred (---WsAppService failed with 0, The Code is:0x710.).

Error: (02/07/2017 07:08:16 PM) (Source: NSDSvc) (EventID: 256) (User: )
Description: An error has occurred (---query POLICYVT key success failed with 0, The Code is:0x424.).

Error: (02/07/2017 07:08:16 PM) (Source: NSDSvc) (EventID: 256) (User: )
Description: An error has occurred (---Get Poicy Open key suc failed with 0, The Code is:0x422.).

Error: (02/07/2017 07:08:16 PM) (Source: NSDSvc) (EventID: 256) (User: )
Description: An error has occurred (---query POLICYVT key success failed with 0, The Code is:0x424.).

Error: (02/07/2017 07:08:16 PM) (Source: NSDSvc) (EventID: 256) (User: )
Description: An error has occurred (---Get Poicy Open key suc failed with 0, The Code is:0x422.).


Systemfehler:
=============
Error: (02/07/2017 07:11:19 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Heimnetzgruppen-Listener" wurde mit folgendem dienstspezifischem Fehler beendet: %%-2147023143 = In der Endpunktzuordnung sind keine weiteren Endpunkte verfügbar..

Error: (02/07/2017 07:09:15 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Intel(R) PROSet/Wireless Zero Configuration Service" wurde mit folgendem Fehler beendet: 
%%-2147196306

Error: (02/07/2017 07:08:38 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "Start" aufgrund folgenden Fehlers fehlgeschlagen: 
Zugriff verweigert

Error: (02/07/2017 07:08:34 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (02/07/2017 07:08:34 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (02/07/2017 07:07:30 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: Der Dienst "Windows-Firewall" wurde mit folgendem dienstspezifischem Fehler beendet: Zugriff verweigert
.

Error: (02/07/2017 06:36:36 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler: 
Es wird bereits eine Instanz des Dienstes ausgeführt.

Error: (02/07/2017 06:36:36 PM) (Source: Service Control Manager) (EventID: 7006) (User: )
Description: Der Aufruf "ScRegSetValueExW" ist für "Start" aufgrund folgenden Fehlers fehlgeschlagen: 
Zugriff verweigert

Error: (02/07/2017 06:36:32 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0

Error: (02/07/2017 06:36:32 PM) (Source: Service Control Manager) (EventID: 7016) (User: )
Description: Der Dienst "chip 1-click download service" hat einen ungültigen aktuellen Status gemeldet: 0


CodeIntegrity:
===================================
  Date: 2017-01-07 16:32:28.214
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2017-01-07 16:32:28.041
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-12-28 22:29:41.514
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-12-28 22:29:41.275
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\dsound.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-11-16 13:55:03.541
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-11-16 13:55:03.401
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-11-16 13:24:29.441
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-11-16 13:24:29.145
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-11-16 13:06:11.769
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-11-16 13:06:11.550
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\nvlddmkm.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i7-3610QM CPU @ 2.30GHz
Prozentuale Nutzung des RAM: 40%
Installierter physikalischer RAM: 12190.36 MB
Verfügbarer physikalischer RAM: 7312.23 MB
Summe virtueller Speicher: 24878.89 MB
Verfügbarer virtueller Speicher: 19840.14 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:917.19 GB) (Free:114.02 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (LENOVO) (Fixed) (Total:24.41 GB) (Free:8.49 GB) NTFS
Drive g: () (Removable) (Total:3.75 GB) (Free:3.6 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 961.3 GB) (Disk ID: 1BE167A0)
Partition 1: (Active) - (Size=200 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=917.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=24.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=19.5 GB) - (Type=12)
Attempted reading MBR returned 0 bytes.
 Could not read MBR for disk 1.

========================================================
Disk: 2 (Size: 3.8 GB) (Disk ID: 0DFF7265)
No partition Table on disk 2.

==================== Ende von Addition.txt ============================
[/SPOILER]

Eine Frage meinerseits noch: Ist jemandem bekannt ob sich der Wurm im Netzwerk verbreitet?


Grüße
Simulacrum
__________________
 

Themen zu VBS/Autorun. AG - scheinbar missglückte Entfernung
abgesicherten, administratorrechte, angeblich, benachrichtigung, ccsetup, dateien, entfernt, entfernung, fehlen, firefox, gen, hallo zusammen, hinweis, infizierte, kaspersky, lange, langsam, log, modus, namens, neustart, problem, rechner, sämtliche, taskmanager, vbs/autorun, wrapper, zusammen


« Win7 home bootbar, aber nicht nutzbar nach PUP.Optional | Heute Mittag den Anhang von einer GiroPay24 entpackt und geöffnet »


Ähnliche Themen: VBS/Autorun. AG - scheinbar missglückte Entfernung


  1. Rechner versendet scheinbar Spammails
    Überwachung, Datenschutz und Spam - 10.05.2016 (7)
  2. CPU-Auslastung scheinbar grundlos hoch
    Alles rund um Windows - 09.08.2014 (8)
  3. Scheinbar PC infiziert...
    Plagegeister aller Art und deren Bekämpfung - 29.01.2014 (7)
  4. 100 Euro Sperre scheinbar Trojaner
    Plagegeister aller Art und deren Bekämpfung - 22.01.2013 (11)
  5. Log nach scheinbar erfolgreicher(?)Entfernung von ,,System Progressive Protection''
    Log-Analyse und Auswertung - 14.10.2012 (21)
  6. Verschlüsselungs-Trojaner: das hat bei mir scheinbar geholfen:
    Plagegeister aller Art und deren Bekämpfung - 01.05.2012 (11)
  7. autorun.inf auf USB-Stick; Flash Disinfector funktioniert scheinbar nicht!
    Plagegeister aller Art und deren Bekämpfung - 09.11.2011 (8)
  8. Autorun blockiert C:\autorun.inf frisches System
    Plagegeister aller Art und deren Bekämpfung - 30.08.2010 (6)
  9. Probleme mit BV:AutoRun-G[Wrm] in autorun.inf
    Plagegeister aller Art und deren Bekämpfung - 06.06.2010 (16)
  10. "autorun.inf ist der Trojaner: TR/Autorun.TE" Meldung beim Anschluss eines USB Sticks
    Plagegeister aller Art und deren Bekämpfung - 21.03.2010 (19)
  11. autorun.inf - TR/Autorun.SJ.1 Windows Vista
    Plagegeister aller Art und deren Bekämpfung - 05.01.2010 (1)
  12. TROJANER Flut! W32/Delf.EKEH, INI/AutoRun.CYI, WSCommCntr1.exe, BAT/Autorun.IZJ
    Plagegeister aller Art und deren Bekämpfung - 06.11.2009 (3)
  13. Scheinbar Malware Packer - PC langsam
    Log-Analyse und Auswertung - 14.08.2009 (3)
  14. Scheinbar schwerwiegender Virus/Wurm
    Plagegeister aller Art und deren Bekämpfung - 29.05.2009 (17)
  15. autorun.inf: Trojan.Autorun-271 FOUND - USB-Stick
    Log-Analyse und Auswertung - 11.03.2009 (1)
  16. Scheinbar grundlose Cpu auslastung und laggs...
    Alles rund um Windows - 08.06.2007 (2)
  17. Log-File checken (scheinbar Bootsectorvirus)
    Log-Analyse und Auswertung - 23.08.2005 (2)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema VBS/Autorun. AG - scheinbar missglückte Entfernung - Addition Code: Alles auswählen Aufklappen ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 05-02-2017 durchgeführt von Dane (07-02-2017 20:19:23) Gestartet von C:\Users\Dane\Downloads Windows 7 Home Premium Service Pack - VBS/Autorun. AG - scheinbar missglückte Entfernung...
Archiv
Du betrachtest: VBS/Autorun. AG - scheinbar missglückte Entfernung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19