Hallo.

Mein Google Chrome Browser wurde infiziert: Es öffnen sich neue Tabs und neue Fenster wie von selbst mit unerwünschten Seiten. Könnt ihr mir bitte helfen, meinen Browser davon zu befreien?

Liebe Grüße

Ich habe dein Thema in Arbeit und melde mich so schnell als möglich mit weiteren Anweisungen.

Bitte beachte, dass alle meine Antworten zuerst von einem Ausbilder freigegeben werden müssen, bevor ich diese hier posten darf. Dies garantiert, dass Du Hilfe von einem ausgebildeten Helfer bekommst.

Ich bedanke mich für deine Geduld


Wir fangen aber mal so an:

Schritt 1:

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit
(Wenn du nicht sicher bist: Lade beide Versionen oder unter Start > Computer (Rechtsklick) > Eigenschaften nachschauen)

• Starte jetzt FRST.
• Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
• Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
• Poste mir die FRST.txt und nach dem ersten Scan auch die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)

Code: Alles auswählenAufklappen

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 08-05-2017
durchgeführt von schweigelicht (Administrator) auf SCHWEIGELICHTPC (12-05-2017 19:39:27)
Gestartet von C:\Users\schweigelicht\Desktop
Geladene Profile: schweigelicht (Verfügbare Profile: schweigelicht)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 10 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\WTabletServicePro.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Windows\SysWOW64\rundll32.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ArcSoft) C:\Program Files (x86)\ArcSoft\SimHD IM Plug-In\ArcSoft SimHD IM Plug-In.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe
() C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
() C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Acrobat DC\Acrobat\acrotray.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Symantec Corporation) C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Rosetta Stone Ltd.) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
(Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.3.1.204\WsAppService.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TabletUser.exe
(Wacom Technology) C:\Program Files\Tablet\Wacom\WacomHost.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_TouchUser.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Wacom Technology, Corp.) C:\Program Files\Tablet\Wacom\Wacom_Tablet.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Symantec) C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\WINWORD.EXE
(Samsung Electronics.) C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe Premiere Pro CC 2017\LogTransport2.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\CCLibrary.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\libs\node.exe
(Huawei) C:\Users\schweigelicht\AppData\Local\Hisuite\userdata\hwtools\hdbtransport.exe
(Spotify Ltd) C:\Users\schweigelicht\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe Premiere Pro CC 2017\Adobe Premiere Pro.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe Premiere Pro CC 2017\32\dynamiclinkmanager.exe
(Adobe Systems Incorporated) C:\Program Files\Adobe Premiere Pro CC 2017\32\Adobe QT32 Server.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [Cm106Sound] => C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cm106.dll,CMICtrlWnd
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13657304 2013-10-18] (Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-07-01] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ArcSimHDHook] => C:\Program Files (x86)\ArcSoft\SimHD IM Plug-In\ArcSoft SimHD IM Plug-In.exe [110592 2009-05-27] (ArcSoft)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe [36864 2007-03-21] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [33648 2007-08-24] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-15] (AVAST Software)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2404952 2017-03-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Norton Ghost 15.0] => C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe [2596712 2009-10-01] (Symantec Corporation)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [75776 2016-08-30] ()
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-04] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [596640 2016-08-22] (Razer Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
HKLM-x32\...\Run: [DelaypluginInstall] => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Acrobat DC\Acrobat\Acrotray.exe [1870928 2017-04-05] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Acrobat DC\Acrobat\AdobeCollabSync.exe [886352 2017-04-05] (Adobe Systems Incorporated)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Run: [Steam] => D:\Steam\steam.exe [3019552 2017-04-26] (Valve Corporation)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Run: [Spotify Web Helper] => C:\Users\schweigelicht\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1449584 2017-05-11] (Spotify Ltd)
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\RunOnce: [Uninstall C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918\amd64"
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\RunOnce: [Uninstall C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\schweigelicht\AppData\Local\Microsoft\SkyDrive\17.3.1229.0918"
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\RunOnce: [Uninstall C:\Users\schweigelicht\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\schweigelicht\AppData\Local\Microsoft\OneDrive\17.3.4604.0120\amd64"
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\RunOnce: [Uninstall C:\Users\schweigelicht\AppData\Local\Microsoft\OneDrive\17.3.4604.0120] => C:\Windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\schweigelicht\AppData\Local\Microsoft\OneDrive\17.3.4604.0120"
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Policies\Explorer: [NoDrives] 00000000
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Policies\Explorer: [TaskbarNoNotification] 0
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\MountPoints2: D - D:\Setup.exe
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\MountPoints2: E - E:\raf-doom3bfg.exe
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\MountPoints2: G - setup.exe
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\MountPoints2: {147222b8-f417-11e4-a67e-001c4af21cd7} - D:\pushinst.exe
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\MountPoints2: {5d33e5b3-35ed-11e7-abff-382c4a64dce3} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\MountPoints2: {8008a20d-3ed0-11e6-b1c0-b46de653f613} - G:\pushinst.exe
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\MountPoints2: {80dfe748-faaf-11e6-b9e3-382c4a64dce3} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\MountPoints2: {80dfed34-faaf-11e6-b9e3-382c4a64dce3} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\MountPoints2: {b11f9e9a-0fe5-11e7-a3e3-382c4a64dce3} - G:\HiSuiteDownLoader.exe
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\MountPoints2: {f05d96f0-c372-11e4-b6ca-e4bf61d89a2e} - E:\pushinst.exe
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-26] (AVAST Software)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{077DADE3-A57A-465F-84FC-95F6F9C10695}: [DhcpNameServer] 192.168.127.127
Tcpip\..\Interfaces\{30C98EFE-6397-4A2E-B442-2338F03735F4}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{8B789CAC-3197-466E-B951-9F124FA44CE2}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = 
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Local Page = 
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000 -> DefaultScope {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-10-24] (AVAST Software)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-01] (Adobe Systems Incorporated)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2017-03-06] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-01] (Adobe Systems Incorporated)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-03-06] (Microsoft Corporation)
BHO-x32: Citavi Picker -> {609D670F-B735-4da7-AC6D-F3BD358E325E} -> C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-24] (AVAST Software)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-01] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-03-06] (Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-01] (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-01] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-10-01] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-10-01] (Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-03-06] (Microsoft Corporation)
Handler: WSWSVCUchrome - Kein CLSID Wert

FireFox:
========
FF DefaultProfile: m1u54h1p.default
FF DefaultProfile: b32c0sam.default
FF ProfilePath: C:\Users\schweigelicht\AppData\Roaming\Mozilla\Firefox\Profiles\1qefuc4s.default [2016-08-10]
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\1qefuc4s.default -> Google
FF Homepage: Mozilla\Firefox\Profiles\1qefuc4s.default -> about:home
FF Session Restore: Mozilla\Firefox\Profiles\1qefuc4s.default -> ist aktiviert.
FF Extension: (Adblock Plus) - C:\Users\schweigelicht\AppData\Roaming\Mozilla\Firefox\Profiles\1qefuc4s.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-05-05]
FF Extension: (Kein Name) - C:\ProgramData\Wondershare\Video Converter Ultimate\WSVCU@Wondershare.com_xpi\ [nicht gefunden]
FF ProfilePath: C:\Users\schweigelicht\AppData\Roaming\Profiles\m1u54h1p.default [2016-09-04]
FF Extension: (Adblock Plus) - C:\Users\schweigelicht\AppData\Roaming\Profiles\m1u54h1p.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-05-05]
FF SearchPlugin: C:\Users\schweigelicht\AppData\Roaming\Profiles\m1u54h1p.default\searchplugins\zub7psmg.xml [2016-07-29]
FF ProfilePath: C:\Users\schweigelicht\AppData\Roaming\CLIQZ\Profiles\b32c0sam.default [2017-05-11]
FF Extension: (Cliqz) - C:\Users\schweigelicht\AppData\Roaming\CLIQZ\Profiles\b32c0sam.default\features\{fe612096-3c64-49d7-a4ed-515cbba5e0c1}\cliqz@cliqz.com.xpi [2017-04-26] [ist nicht signiert]
FF Extension: (HTTPS Everywhere) - C:\Users\schweigelicht\AppData\Roaming\CLIQZ\Profiles\b32c0sam.default\features\{fe612096-3c64-49d7-a4ed-515cbba5e0c1}\https-everywhere@cliqz.com.xpi [2017-04-26] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-26]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-26]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.15@web2pdf.adobedotcom] - C:\Program Files (x86)\Acrobat DC\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat DC - Create PDF) - C:\Program Files (x86)\Acrobat DC\Acrobat\Browser\WCFirefoxExtn [2017-04-15]
FF Plugin: @videolan.org/vlc,version=2.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-16] (VideoLAN)
FF Plugin: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2017-03-27] (Adobe Systems)
FF Plugin: wacom.com/WacomTabletPlugin -> C:\Program Files\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-03-06] (Microsoft Corporation)
FF Plugin-x32: @Nero.com/KM -> C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-08-28] (Nero AG)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @wacom.com/wtPlugin,version=2.1.0.7 -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Acrobat DC\Acrobat\Air\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2017-03-27] (Adobe Systems)
FF Plugin-x32: wacom.com/WacomTabletPlugin -> C:\Program Files (x86)\TabletPlugins\npWacomTabletPlugin.dll [2014-03-25] (Wacom)
FF Plugin HKU\S-1-5-21-1641480961-1619121124-1950988501-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\schweigelicht\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2017-01-25] (Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: ghifackarapulyfinck
CHR HomePage: ghifackarapulyfinck -> hxxps://moodle.hu-berlin.de/login/index.php
CHR StartupUrls: ghifackarapulyfinck -> "hxxp://www.google.com/","hxxp://www.trotux.com/?z=c89a3274c3b8d7b65ee9b4eg0zaq6t8b6e3wdm3mdb&from=epf1&uid=SamsungXSSDX840XEVOX120GB_S1D5NSDF447963A&type=hp"
CHR Session Restore: ghifackarapulyfinck -> ist aktiviert.
CHR Profile: C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default [2016-12-17]
CHR Extension: (Adobe Acrobat) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2016-12-17]
CHR Extension: (Avast SafePrice) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-12-17]
CHR Extension: (Avast Online Security) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-12-17]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-12-17]
CHR Extension: (Chrome Media Router) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-17]
CHR Profile: C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck [2017-05-12] <==== ACHTUNG
CHR Extension: (Web Developer) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\bfbameneiokkgbdmiekhjnmfkcnldhhm [2017-02-16]
CHR Extension: (Skype-Anrufe) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\blakpkgjpemejpbmfiglncklihnhjkij [2017-01-13]
CHR Extension: (YouTube) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-26]
CHR Extension: (Adblock Plus) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-03-21]
CHR Extension: (Adblock für Youtube™) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2017-05-09]
CHR Extension: (Google-Suche) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-30]
CHR Extension: (Video Downloader professional) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2016-07-18]
CHR Extension: (Avast SafePrice) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-03-17]
CHR Extension: (XML Tree) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\gbammbheopgpmaagmckhpjbfgdfkpadb [2016-12-23]
CHR Extension: (Facebook™ Chat Privacy) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\gfpgaanechfneiboempkfjghninbibjn [2016-07-18]
CHR Extension: (Google Docs Offline) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-04]
CHR Extension: (AdBlock) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-04-14]
CHR Extension: (Avast Online Security) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-04-05]
CHR Extension: (anonymoX) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\icpklikeghomkemdellmmkoifgfbakio [2016-09-09]
CHR Extension: (Unseen) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\iicapmagmhahddefgokbabbgieiogjop [2017-03-19]
CHR Extension: (Black and Red Theme for YouTube™) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\ldgblendkekanjhdamohllnfpcdbgmbj [2017-04-20]
CHR Extension: (Facebook AdBlock) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\lfpacabphcagfehdgnigmfnbjdampbaa [2016-05-12]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-09]
CHR Extension: (Smart URL Shortener) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\oachdcjmgdmholeacnbjkadmekggfcfk [2016-12-24]
CHR Extension: (Mute Tab Shortcuts) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\opcjanmpjbdbdpnjfjbboacibokblbhl [2016-08-27]
CHR Extension: (Google Mail) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-10-26]
CHR Extension: (Chrome Media Router) - C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\ghifackarapulyfinck\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-03-31]
CHR Profile: C:\Users\schweigelicht\AppData\Local\Google\Chrome\User Data\System Profile [2016-08-10]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <nicht gefunden>

Opera: 
=======
OPR Extension: (YouTube™ Flash-HTML5) - C:\Users\schweigelicht\AppData\Roaming\Opera Software\Opera Stable\Extensions\abpeogmjbjonedcakbihofgpoelmfbgj [2016-09-04]
OPR Extension: (Adblock Plus) - C:\Users\schweigelicht\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2016-09-04]

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [771672 2017-03-14] (Adobe Systems Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2227312 2017-02-27] (Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2016-09-22] (Apple Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-26] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [223600 2016-09-26] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3737792 2017-03-26] (Microsoft Corporation)
R2 DigitalWave.Update.Service; C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe [440808 2017-04-03] (Digital Wave Ltd.)
S3 GenericMount Helper Service; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [1571336 2009-09-21] (Symantec)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [192200 2016-11-25] () [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
S2 MBAMService; C:\Program Files (x86)\ Malwarebytes Anti-Malware \mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Norton Ghost; C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe [4584288 2009-10-01] (Symantec Corporation)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [187824 2016-07-20] ()
R3 SymSnapService; C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2963960 2009-09-21] (Symantec)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.3.1.204\WsAppService.exe [437392 2016-11-16] (Wondershare)
R2 WTabletServicePro; C:\Program Files\Tablet\Wacom\WTabletServicePro.exe [671512 2014-12-22] (Wacom Technology, Corp.)
S4 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [X]
S4 HPSLPSVC; C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL [X]
S3 Symantec SymSnap VSS Provider; C:\Windows\system32\dllhost.exe /Processid:{81F18BB3-F438-4480-AE4C-9F432E31B2E0}

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S1 acedrv07; C:\Windows\system32\drivers\acedrv07.sys [125440 2013-08-21] () [Datei ist nicht signiert]
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-26] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-26] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-26] (AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [28312 2016-09-26] (AVAST Software)
R1 aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [453192 2016-09-26] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-26] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-26] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-26] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-09-26] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-26] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software)
R2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [314016 2014-03-08] ()
S3 avmeject; C:\Windows\System32\drivers\avmeject.sys [14120 2014-11-21] (AVM Berlin)
R3 ew_usbccgpfilter; C:\Windows\System32\DRIVERS\ew_usbccgpfilter.sys [18816 2016-11-25] (Huawei Technologies Co., Ltd.)
S3 FWLANUSB; C:\Windows\System32\DRIVERS\fwlanusb.sys [460800 2010-10-22] (AVM GmbH) [Datei ist nicht signiert]
S3 fwlanusb5; C:\Windows\System32\DRIVERS\fwlanusb5.sys [982784 2012-08-21] (AVM GmbH)
S3 fwlanusb5_nv2; C:\Windows\System32\DRIVERS\fwlanusb5_nv2.sys [1322824 2014-11-21] (AVM GmbH)
R3 GenericMount; C:\Windows\System32\DRIVERS\GenericMount.sys [54320 2009-09-21] (Symantec Corporation)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2016-11-25] (Huawei Technologies Co., Ltd.)
S3 L6TPortA; C:\Windows\System32\Drivers\L6TPortA64.sys [894336 2010-03-10] (Line 6)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [43680 2014-03-08] ()
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-06-18] (Malwarebytes Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
S3 RDID1102; C:\Windows\System32\Drivers\rdwm1102.sys [81920 2009-09-18] (Roland Corporation)
R3 rzjstk; C:\Windows\System32\DRIVERS\rzjstk.sys [36568 2015-08-13] (Razer Inc)
R3 rzkeypadendpt; C:\Windows\System32\DRIVERS\rzkeypadendpt.sys [44760 2015-08-13] (Razer Inc)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [44144 2016-05-07] (Razer, Inc.)
S2 rzpnk; C:\Windows\system32\drivers\rzpnk.sys [136312 2016-06-27] (Razer, Inc.)
R0 symsnap; C:\Windows\System32\DRIVERS\symsnap.sys [170032 2009-09-21] (StorageCraft)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-06-21] (Anchorfree Inc.)
S3 USBMULCD; C:\Windows\System32\drivers\CM10664.sys [1306624 2009-05-14] (C-Media Electronics Inc)
S3 VProEventMonitor; C:\Windows\System32\DRIVERS\vproeventmonitor.sys [20528 2009-09-21] (Symantec Corporation)
S3 ysusb64; C:\Windows\System32\drivers\ysusb64.sys [123904 2015-06-11] (Yamaha Corporation)
S3 athr; system32\DRIVERS\athrx.sys [X]
S3 gdrv; \??\C:\Windows\gdrv.sys [X]
U2 V2iMount; kein ImagePath
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-05-12 19:39 - 2017-05-12 19:39 - 02429440 _____ (Farbar) C:\Users\schweigelicht\Desktop\FRST64.exe
2017-05-12 19:39 - 2017-05-12 19:39 - 00038968 _____ C:\Users\schweigelicht\Desktop\FRST.txt
2017-05-12 19:25 - 2017-05-12 19:25 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\reconquest
2017-05-12 19:25 - 2017-05-12 19:25 - 00000000 ____D C:\Users\schweigelicht\AppData\LocalLow\StormCube Games
2017-05-12 19:05 - 2017-05-12 19:05 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign5fc2225dc1bb1e2e
2017-05-12 19:05 - 2017-05-12 19:05 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign20baec6bec89bca0
2017-05-11 16:14 - 2017-05-11 16:14 - 00000000 ____D C:\Users\schweigelicht\Desktop\Verkaufe Facebook
2017-05-11 12:11 - 2017-05-11 12:11 - 00000000 ____D C:\Program Files\RdDrv001
2017-05-11 12:11 - 2009-09-18 22:49 - 00056832 _____ C:\Windows\system32\RDCP1102.CPL
2017-05-11 12:11 - 2009-09-18 19:39 - 00410624 _____ (Roland Corporation) C:\Windows\system32\RDDP1102.DAT
2017-05-11 12:11 - 2009-09-18 18:39 - 00081920 _____ (Roland Corporation) C:\Windows\system32\Drivers\Rdwm1102.sys
2017-05-11 12:11 - 2009-09-18 18:28 - 00009216 _____ C:\Windows\system32\RdCi1102.dll
2017-05-10 21:16 - 2017-05-10 21:16 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign95bb63fa01120ae5
2017-05-10 21:16 - 2017-05-10 21:16 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign808e475cbd72d68d
2017-05-10 21:06 - 2017-05-10 21:06 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignb6f9ad92d62b4006
2017-05-10 21:00 - 2017-05-10 21:00 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignde0b3a73aea6ed94
2017-05-10 21:00 - 2017-05-10 21:00 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign9286e4bed2e30a19
2017-05-09 20:45 - 2017-05-09 20:45 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignf1f9c0d8aba1b166
2017-05-09 20:41 - 2017-05-09 20:41 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign5d316dc5fe3cfd5c
2017-05-09 20:41 - 2017-05-09 20:41 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign2f8b615508af5a71
2017-05-09 09:43 - 2017-05-09 09:43 - 00000000 ___HD C:\Program Files\Common Files\EAInstaller
2017-05-08 12:46 - 2017-05-08 12:46 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Music Recognition
2017-05-08 12:46 - 2017-05-08 12:46 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\assistant
2017-05-08 12:45 - 2017-05-08 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AmazingMIDI
2017-05-04 22:32 - 2017-05-04 22:32 - 00000894 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2017.lnk
2017-05-02 22:13 - 2017-05-02 22:13 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Halo Wars
2017-05-02 20:26 - 2017-05-02 20:26 - 00000000 ____D C:\Users\schweigelicht\Documents\Petroglyph
2017-05-01 19:21 - 2017-05-01 19:21 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign8f40c927227789ce
2017-05-01 19:21 - 2017-05-01 19:21 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign31afecd7f09239ee
2017-05-01 19:21 - 2017-05-01 19:21 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign180d135478f5ac57
2017-05-01 14:29 - 2017-05-01 14:29 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignf074deea97a5f738
2017-05-01 14:29 - 2017-05-01 14:29 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignd96df1bc389430de
2017-05-01 14:29 - 2017-05-01 14:29 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign9f3e4d2af1d3402e
2017-04-29 21:12 - 2017-04-29 21:13 - 00000000 ____D C:\Users\schweigelicht\Documents\PCSX2
2017-04-29 15:34 - 2017-04-29 15:34 - 00000000 ____D C:\Users\Public\Documents\Steam
2017-04-28 11:54 - 2017-04-28 11:54 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign61849e1df25ee461
2017-04-28 11:50 - 2017-04-28 11:50 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigne3b855059d7af2fb
2017-04-28 11:50 - 2017-04-28 11:50 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign83186c741e126536
2017-04-27 17:34 - 2017-04-27 17:34 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign4042834bd50ea66a
2017-04-27 17:34 - 2017-04-27 17:34 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign3cb35b159deec0cf
2017-04-27 13:28 - 2017-04-27 13:28 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignf12185b7f79f45f4
2017-04-27 12:45 - 2017-04-27 12:45 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign7bd42e3141216c20
2017-04-27 12:45 - 2017-04-27 12:45 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign6228a861f9aaf3ef
2017-04-27 12:45 - 2017-04-27 12:45 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign0bcc5049b1166c21
2017-04-26 20:28 - 2017-04-26 20:28 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign58d8db12e0023ad0
2017-04-26 20:28 - 2017-04-26 20:28 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign52f0ecc6b0af3d45
2017-04-26 20:28 - 2017-04-26 20:28 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign1986bb2fc7c54dcc
2017-04-26 19:52 - 2017-04-26 19:52 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignea8f60f2d13b6f34
2017-04-26 19:52 - 2017-04-26 19:52 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigna6eb7b7ad967880f
2017-04-26 19:52 - 2017-04-26 19:52 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign318aefdfd2eab3d2
2017-04-25 21:42 - 2017-05-09 22:11 - 00046772 ____H C:\Users\schweigelicht\Desktop\~WRL2778.tmp
2017-04-25 18:09 - 2017-04-25 18:09 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign62548f6f3915fefd
2017-04-25 18:09 - 2017-04-25 18:09 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign1191aa730ee9443f
2017-04-25 18:09 - 2017-04-25 18:09 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign0a40addaf9a8e21b
2017-04-25 17:29 - 2017-04-25 17:29 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignd4e8a4442c849d17
2017-04-25 17:29 - 2017-04-25 17:29 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign29ef211c27f8a738
2017-04-25 00:43 - 2017-04-25 00:43 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignbd4694f809087777
2017-04-25 00:43 - 2017-04-25 00:43 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignafe90d87ec78a4ca
2017-04-24 22:55 - 2017-04-24 22:55 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignd5356f73f6224082
2017-04-24 22:55 - 2017-04-24 22:55 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign447c35ed00875be5
2017-04-24 20:05 - 2017-04-24 20:05 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignb21e2e6cccfcaf9a
2017-04-24 20:05 - 2017-04-24 20:05 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign8e8275e31b3dfdd7
2017-04-24 20:03 - 2017-04-24 20:03 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignbdc661ba7288f1c7
2017-04-24 20:03 - 2017-04-24 20:03 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign9ea30450f18c98b7
2017-04-24 20:03 - 2017-04-24 20:03 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign19a98fd604d90839
2017-04-24 18:13 - 2017-04-24 18:13 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignf2fd7c226a861e6c
2017-04-24 18:11 - 2017-04-24 18:11 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigna9ecb68e6bba89f3
2017-04-24 18:11 - 2017-04-24 18:11 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign2e0eda0dc7a969e3
2017-04-24 01:19 - 2017-04-24 01:19 - 00000000 ____D C:\Users\schweigelicht\Documents\EA Games
2017-04-24 01:16 - 2017-04-24 01:16 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\EA Games
2017-04-24 01:04 - 2017-04-24 01:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dead Space 2
2017-04-23 22:56 - 2017-04-23 22:56 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigneef65bee47bbd27b
2017-04-23 22:56 - 2017-04-23 22:56 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigne9f6e7edb7f393ad
2017-04-23 22:56 - 2017-04-23 22:56 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign6867baf1db8a8a12
2017-04-23 20:55 - 2017-04-23 20:55 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigncf0686176384603d
2017-04-23 20:52 - 2017-04-23 20:52 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign646ef66f1215d8eb
2017-04-23 20:52 - 2017-04-23 20:52 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign1c88f7e5d61b09f6
2017-04-23 20:19 - 2017-04-23 20:19 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignc74a0512437c9a2f
2017-04-23 20:19 - 2017-04-23 20:19 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigna8f5c26a0b88d24d
2017-04-23 20:19 - 2017-04-23 20:19 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign023037ef598d0f90
2017-04-23 17:05 - 2017-04-23 17:09 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\My Games
2017-04-23 17:04 - 2017-04-23 17:04 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\My Games
2017-04-23 11:59 - 2017-04-23 17:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GOG.com
2017-04-23 11:05 - 2017-04-23 11:05 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignc86a1584522ac651
2017-04-23 11:05 - 2017-04-23 11:05 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign0b925f868cc4b0fb
2017-04-22 20:02 - 2017-04-22 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Star Citizen Launcher
2017-04-22 19:33 - 2017-04-22 19:33 - 00000972 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC 2017.lnk
2017-04-22 19:32 - 2017-04-22 19:32 - 00000000 ____D C:\Program Files\Adobe Media Encoder CC 2017
2017-04-22 19:29 - 2017-04-22 19:29 - 00000927 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Audition CC 2017.lnk
2017-04-22 19:29 - 2017-04-22 19:29 - 00000000 ____D C:\Program Files\Adobe Audition CC 2017
2017-04-22 19:28 - 2017-04-22 19:28 - 00001076 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2017.lnk
2017-04-22 19:20 - 2017-04-22 19:20 - 00001182 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Character Animator CC (Beta).lnk
2017-04-22 19:20 - 2017-04-22 19:20 - 00000000 ____D C:\Program Files\Adobe Character Animator CC (Beta)
2017-04-22 19:18 - 2017-04-22 19:18 - 00000960 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC 2017.lnk
2017-04-22 19:16 - 2017-04-22 19:17 - 00000000 ____D C:\Program Files\Adobe Premiere Pro CC 2017
2017-04-22 19:15 - 2017-04-22 19:15 - 00000000 ____D C:\Users\schweigelicht\Documents\UnrealTournament
2017-04-22 19:14 - 2017-04-22 19:14 - 00000000 ____D C:\Users\Public\Documents\AdobeInstalledCodecs
2017-04-22 17:30 - 2017-04-22 17:30 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\SKIDROW
2017-04-22 11:11 - 2017-04-22 19:12 - 00000000 ____D C:\Users\schweigelicht\Documents\Heroes of the Storm
2017-04-22 01:34 - 2017-04-22 01:34 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign3f48785404e3b082
2017-04-22 01:33 - 2017-04-22 01:33 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignd9f8912253f269e5
2017-04-22 01:33 - 2017-04-22 01:33 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign190349db578bae34
2017-04-22 00:37 - 2017-04-22 00:37 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigndd08fb508a0641a9
2017-04-22 00:37 - 2017-04-22 00:37 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign39c96da9f6d1f2c0
2017-04-22 00:31 - 2017-04-22 00:31 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignf602c396aadde00d
2017-04-22 00:31 - 2017-04-22 00:31 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign01584d33592652e7
2017-04-21 17:53 - 2017-04-21 17:53 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigndb7fd8cb6e279a76
2017-04-21 17:53 - 2017-04-21 17:53 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignb599ddd0c50af7ae
2017-04-21 17:53 - 2017-04-21 17:53 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign5657345653427832
2017-04-17 23:33 - 2017-04-17 23:33 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigncd68cc93c52d5fdd
2017-04-17 23:33 - 2017-04-17 23:33 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign991d58ebf4e4ac15
2017-04-17 23:33 - 2017-04-17 23:33 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign236aac21cb747beb
2017-04-17 02:14 - 2017-04-17 02:14 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignb7257f637bfa7acf
2017-04-17 02:13 - 2017-04-17 02:13 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigncf65da74590c69bb
2017-04-17 02:13 - 2017-04-17 02:13 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign7ce7c344a4b83bc5
2017-04-16 22:56 - 2017-04-16 22:56 - 00000000 ____D C:\Users\schweigelicht\Documents\Red Alert 3 Uprising
2017-04-14 23:24 - 2017-04-14 23:24 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigned86b663febadb2b
2017-04-14 23:24 - 2017-04-14 23:24 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigna94c3d7a72842fa5
2017-04-14 23:24 - 2017-04-14 23:24 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign49bb4d6ea08431a2
2017-04-14 21:44 - 2017-04-14 21:44 - 00003212 _____ C:\Windows\System32\Tasks\{DFFF7107-A637-4CAD-B507-EB1201EF2DD7}
2017-04-13 19:34 - 2017-04-13 19:34 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign618fc4fc9522c5bf
2017-04-13 19:34 - 2017-04-13 19:34 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign3e0f40f0bdedc96a
2017-04-13 19:34 - 2017-04-13 19:34 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign17ca5592d41047df
2017-04-13 11:44 - 2017-04-13 11:44 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign665fface24cdbefb
2017-04-13 11:41 - 2017-04-13 11:41 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign9c5fe32117b43855
2017-04-13 11:41 - 2017-04-13 11:41 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign4e75721f6afc5b04
2017-04-13 11:26 - 2017-04-13 11:26 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign70abd00ce5708e5a
2017-04-13 11:24 - 2017-04-13 11:24 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignc03b6f76639ff881
2017-04-13 11:24 - 2017-04-13 11:24 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign27855acfd983c1b7
2017-04-13 11:02 - 2017-04-13 11:02 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigna3d5b4257ad9d00b
2017-04-13 11:02 - 2017-04-13 11:02 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign4e9a48de4045350e
2017-04-13 10:55 - 2017-04-13 10:55 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigne3d5abd297a016da
2017-04-13 10:55 - 2017-04-13 10:55 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigna3493df0e2d07f38
2017-04-13 00:03 - 2017-04-13 00:03 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign8fc905fd6b13ef92
2017-04-13 00:00 - 2017-04-13 00:00 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign74d2267ce0195374
2017-04-13 00:00 - 2017-04-13 00:00 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign45225b533a9215d5
2017-04-12 23:41 - 2017-04-12 23:41 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigne813f78349d17ddf
2017-04-12 23:41 - 2017-04-12 23:41 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign59b4c12c805fb9b2
2017-04-12 23:41 - 2017-04-12 23:41 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign05fe40e5e66b1eee
2017-04-12 23:32 - 2017-04-12 23:32 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign4cc3c8a080e28ec1
2017-04-12 23:32 - 2017-04-12 23:32 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign4139024035006bda
2017-04-12 23:32 - 2017-04-12 23:32 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign144cb3b2b4575101
2017-04-12 21:58 - 2017-04-12 21:58 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign1d9faeb5fed8c567
2017-04-12 21:52 - 2017-04-12 21:52 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign9beadfe5eaa22959
2017-04-12 21:52 - 2017-04-12 21:52 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign837a5a780be736fa
2017-04-12 21:21 - 2017-04-12 21:21 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigna778cc3a0604422c
2017-04-12 21:21 - 2017-04-12 21:21 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign58a7d858e2920c82
2017-04-12 21:21 - 2017-04-12 21:21 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign2b49f26928d56339
2017-04-12 21:20 - 2017-04-12 21:20 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign9c46c03a33e0ee8a
2017-04-12 21:20 - 2017-04-12 21:20 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign2c7082430f0c9afd
2017-04-12 21:20 - 2017-04-12 21:20 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign2c4001e8511f8cbe
2017-04-12 21:14 - 2017-04-12 21:14 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsignb2f2ed1d8d47bd19
2017-04-12 21:14 - 2017-04-12 21:14 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign5591e713b6786a96
2017-04-12 21:14 - 2017-04-12 21:14 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign080a8c742645d558
2017-04-12 20:45 - 2017-04-12 20:45 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsigndf7d6af4951bd894
2017-04-12 20:45 - 2017-04-12 20:45 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign365c39c78b3930de
2017-04-12 20:45 - 2017-04-12 20:45 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Tempzxpsign1713402986a4cb6f

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-05-12 19:39 - 2015-08-16 13:02 - 00000000 ____D C:\FRST
2017-05-12 19:17 - 2013-08-22 16:52 - 01214007 _____ C:\Users\schweigelicht\Documents\MuseLog.txt
2017-05-12 19:03 - 2016-02-09 14:23 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Azureus
2017-05-12 15:19 - 2013-08-20 19:52 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Adobe
2017-05-12 10:05 - 2009-07-14 06:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-05-12 10:05 - 2009-07-14 06:45 - 00021072 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-05-12 10:04 - 2013-08-21 07:51 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\vlc
2017-05-12 10:00 - 2016-09-13 01:31 - 00000000 ____D C:\ProgramData\KMSAutoS
2017-05-12 05:45 - 2016-11-03 01:09 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Spotify
2017-05-12 03:25 - 2016-11-03 01:09 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Spotify
2017-05-11 20:11 - 2015-06-05 18:46 - 00004180 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2017-05-11 12:11 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-05-11 10:14 - 2017-04-08 22:45 - 00000000 ____D C:\Users\schweigelicht\AppData\LocalLow\Mozilla
2017-05-10 21:17 - 2014-05-09 15:33 - 00001456 _____ C:\Users\schweigelicht\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2017-05-10 20:58 - 2014-08-10 06:53 - 00000033 _____ C:\Users\schweigelicht\AppData\Roaming\AdobeWLCMCache.dat
2017-05-10 17:06 - 2015-08-09 18:21 - 00000000 ___RD C:\Users\schweigelicht\Creative Cloud Files
2017-05-10 17:06 - 2015-05-02 03:31 - 00000000 ____D C:\ProgramData\boost_interprocess
2017-05-10 16:21 - 2011-04-12 09:43 - 00700986 _____ C:\Windows\system32\perfh007.dat
2017-05-10 16:21 - 2011-04-12 09:43 - 00149886 _____ C:\Windows\system32\perfc007.dat
2017-05-10 16:21 - 2009-07-14 07:13 - 01619284 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-10 16:15 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-05-09 20:12 - 2017-01-21 21:11 - 00004876 _____ C:\Users\schweigelicht\Desktop\sc3.tmp
2017-05-09 09:48 - 2016-07-28 22:55 - 00000000 ____D C:\Users\schweigelicht\Documents\BioWare
2017-05-09 09:43 - 2014-04-24 15:52 - 00000000 ____D C:\ProgramData\Package Cache
2017-05-09 09:33 - 2016-08-05 23:43 - 00000000 ____D C:\ProgramData\Origin
2017-05-08 13:03 - 2014-04-30 19:09 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\CrashDumps
2017-05-08 13:01 - 2013-09-04 23:20 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Celemony Software GmbH
2017-05-08 04:33 - 2013-08-20 22:29 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\ElevatedDiagnostics
2017-05-04 22:32 - 2016-12-14 22:47 - 00000000 ____D C:\Program Files\Adobe Photoshop CC 2017
2017-05-04 22:32 - 2013-08-22 14:41 - 00000000 ____D C:\Users\schweigelicht\Documents\Adobe
2017-05-03 14:50 - 2015-11-03 22:17 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-05-02 20:26 - 2017-01-11 23:17 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Petroglyph
2017-04-30 14:54 - 2017-04-09 19:53 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\Battle.net
2017-04-29 21:42 - 2014-10-23 11:33 - 00000000 ___RD C:\Users\schweigelicht\Virtual Machines
2017-04-29 21:11 - 2013-08-22 14:09 - 00000000 ____D C:\Windows\SysWOW64\directx
2017-04-29 18:03 - 2013-08-20 18:28 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-04-29 15:34 - 2016-12-27 19:36 - 00000000 ____D C:\Users\schweigelicht\Documents\My Games
2017-04-28 10:55 - 2016-07-31 19:54 - 00003542 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2017-04-28 10:55 - 2016-07-31 19:54 - 00003414 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2017-04-26 19:06 - 2013-08-21 07:43 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-04-26 10:40 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2017-04-25 02:00 - 2017-01-26 15:40 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Audacity
2017-04-24 17:48 - 2017-04-10 11:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA Games
2017-04-24 14:15 - 2016-08-27 17:08 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\obs-studio
2017-04-23 18:51 - 2016-02-09 15:09 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-04-23 18:03 - 2009-07-14 07:32 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-04-22 19:28 - 2017-01-31 18:02 - 00000000 ____D C:\Program Files\Adobe After Effects CC 2017
2017-04-22 19:27 - 2013-08-20 19:56 - 00000000 ____D C:\ProgramData\Adobe
2017-04-22 19:18 - 2013-08-22 15:00 - 00000000 ____D C:\Users\Public\Documents\Adobe
2017-04-22 19:15 - 2017-01-16 19:43 - 00000000 ____D C:\Users\schweigelicht\AppData\Local\UnrealEngine
2017-04-22 19:12 - 2016-08-02 18:34 - 00000000 ____D C:\ProgramData\Blizzard Entertainment
2017-04-21 21:18 - 2013-10-18 11:22 - 00000000 ____D C:\Program Files\Vuze
2017-04-20 10:07 - 2014-10-03 03:05 - 00008150 _____ C:\Users\schweigelicht\Desktop\DesktopOK.ini
2017-04-16 23:20 - 2017-03-29 09:04 - 00000000 ____D C:\Users\schweigelicht\Documents\The Witcher 3
2017-04-15 21:05 - 2017-04-08 22:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DVDVideoSoft
2017-04-15 06:44 - 2016-12-14 18:21 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-04-15 06:44 - 2016-12-14 18:21 - 00002453 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat DC.lnk
2017-04-15 06:44 - 2016-12-14 18:21 - 00001943 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller DC.lnk
2017-04-15 06:43 - 2016-12-14 18:18 - 00000000 ____D C:\Program Files (x86)\Acrobat DC
2017-04-14 21:44 - 2017-04-08 22:17 - 00000000 ____D C:\Program Files (x86)\DVDVideoSoft
2017-04-13 18:35 - 2017-04-08 22:17 - 00000000 ____D C:\Users\schweigelicht\AppData\Roaming\DVDVideoSoft
2017-04-12 14:20 - 2017-04-11 13:09 - 30785536 _____ C:\Users\schweigelicht\Desktop\#3 Inhalt Sonderausgabe.indd

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2013-12-26 15:33 - 2014-06-10 22:27 - 0000132 _____ () C:\Users\schweigelicht\AppData\Roaming\Adobe PNG-Format CC - Voreinstellungen
2014-08-10 06:53 - 2017-05-10 20:58 - 0000033 _____ () C:\Users\schweigelicht\AppData\Roaming\AdobeWLCMCache.dat
2016-08-27 19:50 - 2017-01-25 18:10 - 0001470 _____ () C:\Users\schweigelicht\AppData\Roaming\Coolorus 2
2015-04-26 05:44 - 2016-08-27 19:28 - 0000028 _____ () C:\Users\schweigelicht\AppData\Roaming\kulerdata.json
2014-08-17 01:56 - 2014-08-17 01:56 - 0551424 ____T (MultiMedia Soft) C:\Users\schweigelicht\AppData\Roaming\Microsoft\engine_ag.dll
2014-05-09 15:33 - 2017-05-10 21:17 - 0001456 _____ () C:\Users\schweigelicht\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-01-28 23:19 - 2016-01-28 23:43 - 0001456 _____ () C:\Users\schweigelicht\AppData\Local\Adobe Save for Web 13.0 Prefs
2015-10-23 20:45 - 2015-10-23 20:45 - 0003584 _____ () C:\Users\schweigelicht\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-07-29 18:31 - 2014-07-29 18:31 - 0001497 _____ () C:\Users\schweigelicht\AppData\Local\RecConfig.xml
2015-05-07 15:51 - 2015-09-18 20:16 - 0007602 _____ () C:\Users\schweigelicht\AppData\Local\resmon.resmoncfg
2015-03-05 22:06 - 2015-03-05 22:06 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-08-20 20:34 - 2016-02-07 15:45 - 0021124 _____ () C:\ProgramData\hpzinstall.log
2016-08-18 13:53 - 2016-08-18 13:53 - 0001534 _____ () C:\ProgramData\ss.ini

Einige Dateien in TEMP:
====================
2017-05-08 16:47 - 2017-05-10 20:00 - 0035224 _____ () C:\Users\schweigelicht\AppData\Local\Temp\i4jdel0.exe
2017-05-10 01:52 - 2012-11-30 06:53 - 1114112 _____ (Microsoft Corporation) C:\Users\schweigelicht\AppData\Local\Temp\kernel32.dll

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-05-03 11:56

==================== Ende von FRST.txt ============================
         

Code: Alles auswählenAufklappen

ATTFilter

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 08-05-2017
durchgeführt von schweigelicht (12-05-2017 19:39:53)
Gestartet von C:\Users\schweigelicht\Desktop
Windows 7 Ultimate Service Pack 1 (X64) (2013-08-20 15:48:41)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1641480961-1619121124-1950988501-500 - Administrator - Disabled)
Gast (S-1-5-21-1641480961-1619121124-1950988501-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1641480961-1619121124-1950988501-1043 - Limited - Enabled)
schweigelicht (S-1-5-21-1641480961-1619121124-1950988501-1000 - Administrator - Enabled) => C:\Users\schweigelicht

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: Avast Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

2007 Microsoft Office Suite Service Pack 1 (SP1) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}) (Version:  - Microsoft)
2007 Microsoft Office Suite Service Pack 1 (SP1) (x32 Version:  - Microsoft) Hidden
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
Ableton Live 9 Suite (HKLM\...\{629C521E-5C03-4A17-9851-F8313A41BB20}) (Version: 9.0.0.0 - Ableton)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe After Effects CC 2017 (HKLM-x32\...\AEFT_14_2_0) (Version: 14.2.0 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.5.1.17730 - Adobe Systems Inc.)
Adobe Audition CC 2017 (HKLM-x32\...\AUDT_10_1_0) (Version: 10.1.0 - Adobe Systems Incorporated)
Adobe Character Animator CC (Beta) (HKLM-x32\...\ANMLBETA_1_0_6) (Version: 1.0.6 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.0.1.188 - Adobe Systems Incorporated)
Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_1_0) (Version: 21.1.0 - Adobe Systems Incorporated)
Adobe InDesign CC 2017 (HKLM-x32\...\IDSN_12_1_0) (Version: 12.1.0 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2017 (HKLM-x32\...\AME_11_1_0) (Version: 11.1.0 - Adobe Systems Incorporated)
Adobe Muse CC 2017 (HKLM-x32\...\MUSE_2017_0_2) (Version: 2017.0.2.60 - Adobe Systems Incorporated)
Adobe Photoshop CC 2017 (HKLM-x32\...\PHSP_18_1_1) (Version: 18.1.1 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2017 (HKLM-x32\...\PPRO_11_1_0) (Version: 11.1.0 - Adobe Systems Incorporated)
Age of Mythology: Extended Edition Tale of the Dragon (HKLM\...\YWdlb2ZteXRob2xvZ3lleHRlbmRlZGVkaXRpb24_is1) (Version: 1 - )
AIMP (HKLM-x32\...\AIMP) (Version: v4.10.1827, 08.08.2016 - AIMP DevTeam)
AMD Catalyst Install Manager (HKLM\...\{7E5DC2C5-115A-322B-976C-219237FAED66}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Antares Autotune Evo VST RTAS v6.0.9 (HKLM-x32\...\Antares Autotune Evo VST RTAS_is1) (Version:  - )
Antares Autotune VST RTAS TDM v5.08 (HKLM-x32\...\Antares Autotune VST RTAS TDM_is1) (Version:  - Team AiR 2007)
Antares Filter VST DX v1.01 (HKLM-x32\...\Antares Filter VST DX v1.01) (Version:  - )
Apple Application Support (32-Bit) (HKLM-x32\...\{D079CAAD-0C31-47A2-9AF5-A82F9CD9B221}) (Version: 5.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{64E6007B-1DA9-42CD-BBE4-D5FA67A7C71D}) (Version: 5.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{55BB2110-FB43-49B3-93F4-945A0CFB0A6C}) (Version: 10.0.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
A-PRO-Treiber (HKLM\...\RolandRDID0102) (Version:  - Roland Corporation)
Aquanox Deep Descent (HKLM\...\Steam App 254370) (Version:  - Digital Arrow)
ArcSoft SimHD IM Plug-In (HKLM-x32\...\{95E86EDF-A28E-469A-9E2E-87CAE5A5B069}) (Version: 1.2.1.4 - ArcSoft)
ASIO4ALL (HKLM-x32\...\ASIO4ALL) (Version: 2.10 - Michael Tippach)
ATI AVIVO64 Codecs (Version: 11.1.0.50406 - ATI Technologies Inc.) Hidden
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
Avast Internet Security (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: 06.20.00 - AVM Berlin)
B209a-m (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
bl (x32 Version: 1.0.0 - Your Company Name) Hidden
Blizzard App (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
BufferChm (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)
Canon MX920 series Benutzerregistrierung (HKLM-x32\...\Canon MX920 series Benutzerregistrierung) (Version:  - *Canon Inc.)
Canon MX920 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX920_series) (Version: 1.00 - Canon Inc.)
CDex - Open Source Digital Audio CD Extractor (HKLM-x32\...\CDex) (Version: 1.72.1.2014 - Georgy Berdyshev)
Citavi 4 (HKLM-x32\...\{CC0A85B2-734A-45B3-B678-05F6A6499AC7}) (Version: 4.0.0.12 - Swiss Academic Software)
Command & Conquer Generals (HKLM-x32\...\InstallShield_{06F80017-8F98-4C94-B868-52358569FC32}) (Version: 0.50.0000 - Electronic Arts)
Command & Conquer Generals (x32 Version: 0.50.0000 - Electronic Arts) Hidden
CorelDRAW Graphics Suite X5 - Windows Shell Extension 64 Bit (Version: 15.1.588 - Corel Corporation) Hidden
Discord (HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Discord) (Version: 0.0.297 - Hammer & Chisel, Inc.)
Dragon Age™: Inquisition (HKLM-x32\...\{DC4C36DC-4E5B-4262-B0C7-157DF534B969}) (Version: 1.0.0.11 - Electronic Arts)
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version:  - EaseUS)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.8.5.1160 - Steinberg Media Technologies GmbH)
Epic Games Launcher Prerequisites (x64) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FeedForAll v2.0 (HKLM-x32\...\FeedForAll v2.0) (Version:  - )
FileZilla Client 3.23.0.2 (HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\FileZilla Client) (Version: 3.23.0.2 - Tim Kosse)
foobar2000 v1.3.9 (HKLM-x32\...\foobar2000) (Version: 1.3.9 - Peter Pawlowski)
Free YouTube Download (HKLM-x32\...\Free YouTube Download_is1) (Version: 4.1.40.331 - Digital Wave Ltd)
Freemake Video Converter Version 4.1.9 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.9 - Ellora Assets Corporation)
Gigabyte Raid Configurer (HKLM-x32\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - Gigabyte Technology Corp.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 57.0.2987.133 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.33.5 - Google Inc.) Hidden
Guitar Pro 6 (HKLM-x32\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version:  - Arobas Music)
HandBrake 1.0.3 (HKLM-x32\...\HandBrake) (Version: 1.0.3 - )
HiSuite (HKLM-x32\...\Hi Suite) (Version: 1.0 - Huawei Technologies Co.,Ltd)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.211.000 - Hewlett-Packard) Hidden
IHMC CmapTools v5.03 (HKLM-x32\...\IHMC CmapTools v5.03) (Version: 5.0.0.3 - Institute for Human & Machine Cognition)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
iTunes (HKLM\...\{81C96689-EA5B-4B7D-A04F-16326EC51BC2}) (Version: 12.5.4.42 - Apple Inc.)
iZotope RX 2 (HKLM-x32\...\iZotope RX 2_is1) (Version: 2.02 - iZotope, Inc.)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Launcher Prerequisites (x64) (x32 Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 4.3.0.4 (HKLM-x32\...\{5C005E2A-AEAE-4DF7-B7CA-1E6DCDD2AEA4}) (Version: 4.3.0.4 - The Document Foundation)
Line 6 Uninstaller (HKLM-x32\...\Line 6 Uninstaller) (Version:  - Line 6)
MAGIX Audio Cleaning Lab 2013 (HKLM-x32\...\MAGIX_{97E2116F-CC11-4EDA-B179-78CB6A89D836}) (Version: 19.0.0.10 - MAGIX AG)
MAGIX Audio Cleaning Lab 2013 (Version: 19.0.0.10 - MAGIX AG) Hidden
Magix Audio Cleaning Lab 2013 Update (Version: 19.0.1.12 - MAGIX AG) Hidden
MAGIX Burn routines (64-Bit) (HKLM\...\{49146694-5F5F-4B1F-AD15-6587F47A0FD7}) (Version: 9.0.0.212 - MAGIX AG)
MAGIX Content und Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX Low Latency Driver (64-Bit) (HKLM\...\{42976FDB-5756-4077-A491-095F228E99E2}) (Version: 2.10.2011.0 - MAGIX AG)
MAGIX Music Maker 2013 Premium Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2013 Soundpools (Version: 1.0.0.0 - MAGIX AG) Hidden
MAGIX Music Maker 2016 Trial Soundpools (Version: 1.0.0.0 - MAGIX Software GmbH) Hidden
MAGIX Screenshare (HKLM-x32\...\MAGIX_{92852E20-128F-44C3-92EB-3A7506F9DB2C}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare (Version: 4.3.6.1987 - MAGIX AG) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{7F5993EB-11C1-4CC9-8774-24C908337ABF}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Speed burnR (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
Malwarebytes Anti-Malware Version 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
MeldaProduction Audio Plugins 9 (HKLM-x32\...\MeldaProduction Audio Plugins 9) (Version:  - MeldaProduction)
Melodyne Runtime 4.1 (x64) (HKLM\...\{53EE2829-E9DB-4913-B3EA-96F10F84E98B}) (Version: 1.0.1 - Celemony Software GmbH)
Microsoft – Speichern als PDF oder XPS – Add-In für 2007 Microsoft Office-Programme (HKLM-x32\...\{90120000-00B2-0407-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft .NET Framework 4.6.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01590 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6215.1000 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 16.0.7870.2031 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{13C9CD03-A5FE-4F50-AC8A-17B77C38CC52}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MP3 To Wave Converter PLUS (HKLM-x32\...\MP3 To Wave Converter PLUS) (Version: 2.33 - Acoustica, Inc.)
Mp3tag v2.65 (HKLM-x32\...\Mp3tag) (Version: v2.65 - Florian Heidenreich)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
Native Instruments Abbey Road 60s Drummer (HKLM-x32\...\Native Instruments Abbey Road 60s Drummer) (Version:  - Native Instruments)
Native Instruments Abbey Road 70s Drummer (HKLM-x32\...\Native Instruments Abbey Road 70s Drummer) (Version:  - Native Instruments)
Native Instruments Abbey Road 80s Drummer (HKLM-x32\...\Native Instruments Abbey Road 80s Drummer) (Version:  - Native Instruments)
Native Instruments Abbey Road Modern Drummer (HKLM-x32\...\Native Instruments Abbey Road Modern Drummer) (Version:  - Native Instruments)
Native Instruments Abbey Road Vintage Drummer (HKLM-x32\...\Native Instruments Abbey Road Vintage Drummer) (Version:  - Native Instruments)
Native Instruments Absynth 5 (HKLM-x32\...\Native Instruments Absynth 5) (Version:  - Native Instruments)
Native Instruments Action Strings (HKLM-x32\...\Native Instruments Action Strings) (Version:  - Native Instruments)
Native Instruments Alicias Keys (HKLM-x32\...\Native Instruments Alicias Keys) (Version:  - Native Instruments)
Native Instruments Balinese Gamelan (HKLM-x32\...\Native Instruments Balinese Gamelan) (Version:  - Native Instruments)
Native Instruments Battery 4 (HKLM-x32\...\Native Instruments Battery 4) (Version: 4.0.0.1981 - Native Instruments)
Native Instruments Battery 4 Factory Library (HKLM-x32\...\Native Instruments Battery 4 Factory Library) (Version: 1.0.0.002 - Native Instruments)
Native Instruments Berlin Concert Grand (HKLM-x32\...\Native Instruments Berlin Concert Grand) (Version:  - Native Instruments)
Native Instruments Damage (HKLM-x32\...\Native Instruments Damage) (Version:  - Native Instruments)
Native Instruments Driver (HKLM-x32\...\Native Instruments Driver) (Version: 1.0.1.288 - Native Instruments)
Native Instruments Enhanced EQ (HKLM-x32\...\Native Instruments Enhanced EQ) (Version:  - Native Instruments)
Native Instruments Evolve Mutations (HKLM-x32\...\Native Instruments Evolve Mutations) (Version:  - Native Instruments)
Native Instruments Evolve Mutations 2 (HKLM-x32\...\Native Instruments Evolve Mutations 2) (Version:  - Native Instruments)
Native Instruments Evolve R2 (HKLM-x32\...\Native Instruments Evolve R2) (Version:  - Native Instruments)
Native Instruments FM8 (HKLM-x32\...\Native Instruments FM8) (Version:  - Native Instruments)
Native Instruments George Duke Soul Treasures (HKLM-x32\...\Native Instruments George Duke Soul Treasures) (Version:  - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version:  - Native Instruments)
Native Instruments Guitar Rig Pro Library for Maschine (HKLM-x32\...\Native Instruments Guitar Rig Pro Library for Maschine) (Version:  - Native Instruments)
Native Instruments Kinetic Metal (HKLM-x32\...\Native Instruments Kinetic Metal) (Version: 1.0.0.12 - Native Instruments)
Native Instruments Komplete 9 Ultimate (HKLM-x32\...\Native Instruments Komplete 9 Ultimate) (Version:  - Native Instruments)
Native Instruments Kontakt 5 (HKLM-x32\...\Native Instruments Kontakt 5) (Version: 5.5.2.880 - Native Instruments)
Native Instruments Kontakt Factory Library (HKLM-x32\...\Native Instruments Kontakt Factory Library) (Version:  - Native Instruments)
Native Instruments Maschine Drum Selection (HKLM-x32\...\Native Instruments Maschine Drum Selection) (Version:  - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version:  - Native Instruments)
Native Instruments Monark (HKLM-x32\...\Native Instruments Monark) (Version:  - Native Instruments)
Native Instruments New York Concert Grand (HKLM-x32\...\Native Instruments New York Concert Grand) (Version:  - Native Instruments)
Native Instruments Passive EQ (HKLM-x32\...\Native Instruments Passive EQ) (Version:  - Native Instruments)
Native Instruments Rammfire (HKLM-x32\...\Native Instruments Rammfire) (Version:  - Native Instruments)
Native Instruments Rammfire for Maschine (HKLM-x32\...\Native Instruments Rammfire for Maschine) (Version:  - Native Instruments)
Native Instruments Razor (HKLM-x32\...\Native Instruments Razor) (Version:  - Native Instruments)
Native Instruments Reaktor 5 (HKLM-x32\...\Native Instruments Reaktor 5) (Version:  - Native Instruments)
Native Instruments Reaktor Prism (HKLM-x32\...\Native Instruments Reaktor Prism) (Version:  - Native Instruments)
Native Instruments Reaktor Spark R2 (HKLM-x32\...\Native Instruments Reaktor Spark R2) (Version:  - Native Instruments)
Native Instruments Reflektor (HKLM-x32\...\Native Instruments Reflektor) (Version:  - Native Instruments)
Native Instruments Reflektor for Maschine (HKLM-x32\...\Native Instruments Reflektor for Maschine) (Version:  - Native Instruments)
Native Instruments Retro Machines Mk2 (HKLM-x32\...\Native Instruments Retro Machines Mk2) (Version:  - Native Instruments)
Native Instruments Scarbee Funk Guitarist (HKLM-x32\...\Native Instruments Scarbee Funk Guitarist) (Version:  - Native Instruments)
Native Instruments Scarbee Jay-Bass (HKLM-x32\...\Native Instruments Scarbee Jay-Bass) (Version:  - Native Instruments)
Native Instruments Scarbee MM-Bass (HKLM-x32\...\Native Instruments Scarbee MM-Bass) (Version:  - Native Instruments)
Native Instruments Scarbee MM-Bass Amped (HKLM-x32\...\Native Instruments Scarbee MM-Bass Amped) (Version:  - Native Instruments)
Native Instruments Scarbee Pre-Bass (HKLM-x32\...\Native Instruments Scarbee Pre-Bass) (Version:  - Native Instruments)
Native Instruments Scarbee Pre-Bass Amped (HKLM-x32\...\Native Instruments Scarbee Pre-Bass Amped) (Version:  - Native Instruments)
Native Instruments Scarbee Rickenbacker Bass (HKLM-x32\...\Native Instruments Scarbee Rickenbacker Bass) (Version:  - Native Instruments)
Native Instruments Scarbee Vintage Keys (HKLM-x32\...\Native Instruments Scarbee Vintage Keys) (Version:  - Native Instruments)
Native Instruments Service Center (HKLM-x32\...\Native Instruments Service Center) (Version: 2.4.0.1093 - Native Instruments)
Native Instruments Session Horns (HKLM-x32\...\Native Instruments Session Horns) (Version:  - Native Instruments)
Native Instruments Session Strings Pro (HKLM-x32\...\Native Instruments Session Strings Pro) (Version:  - Native Instruments)
Native Instruments Skanner XT (HKLM-x32\...\Native Instruments Skanner XT) (Version:  - Native Instruments)
Native Instruments Solid Bus Comp FX (HKLM-x32\...\Native Instruments Solid Bus Comp FX) (Version: 1.0.0.276 - Native Instruments)
Native Instruments Solid Dynamics FX (HKLM-x32\...\Native Instruments Solid Dynamics FX) (Version: 1.0.0.276 - Native Instruments)
Native Instruments Solid EQ FX (HKLM-x32\...\Native Instruments Solid EQ FX) (Version: 1.0.0.276 - Native Instruments)
Native Instruments Studio Drummer (HKLM-x32\...\Native Instruments Studio Drummer) (Version:  - Native Instruments)
Native Instruments The Finger R2 (HKLM-x32\...\Native Instruments The Finger R2) (Version:  - Native Instruments)
Native Instruments The Giant (HKLM-x32\...\Native Instruments The Giant) (Version:  - Native Instruments)
Native Instruments The Mouth (HKLM-x32\...\Native Instruments The Mouth) (Version:  - Native Instruments)
Native Instruments Traktors 12 (HKLM-x32\...\Native Instruments Traktors 12) (Version:  - Native Instruments)
Native Instruments Traktors 12 for Maschine (HKLM-x32\...\Native Instruments Traktors 12 for Maschine) (Version:  - Native Instruments)
Native Instruments Transient Master FX (HKLM-x32\...\Native Instruments Transient Master FX) (Version:  - Native Instruments)
Native Instruments Upright Piano (HKLM-x32\...\Native Instruments Upright Piano) (Version:  - Native Instruments)
Native Instruments Vari Comp (HKLM-x32\...\Native Instruments Vari Comp) (Version:  - Native Instruments)
Native Instruments VC 160 FX (HKLM-x32\...\Native Instruments VC 160 FX) (Version:  - Native Instruments)
Native Instruments VC 2A FX (HKLM-x32\...\Native Instruments VC 2A FX) (Version:  - Native Instruments)
Native Instruments VC 76 FX (HKLM-x32\...\Native Instruments VC 76 FX) (Version:  - Native Instruments)
Native Instruments Vienna Concert Grand (HKLM-x32\...\Native Instruments Vienna Concert Grand) (Version:  - Native Instruments)
Native Instruments Vintage Organs (HKLM-x32\...\Native Instruments Vintage Organs) (Version:  - Native Instruments)
Native Instruments West Africa (HKLM-x32\...\Native Instruments West Africa) (Version:  - Native Instruments)
Nero 2016 (HKLM-x32\...\{4297E807-5633-466A-8AC0-5AC48D310471}) (Version: 17.0.02000 - Nero AG)
Nero Info (HKLM-x32\...\{F030BFE8-8476-4C08-A553-233DE80A2BE1}) (Version: 16.0.2000 - Nero AG)
Network64 (Version: 140.0.215.000 - Hewlett-Packard) Hidden
Norton Ghost (HKLM-x32\...\{B0255743-165B-4BD5-8DA8-37DFB9930015}) (Version: 15.0.0.35659 - Symantec Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.3 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}) (Version: 9.12.1031 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 0.15.4 - OBS Project)
Office 16 Click-to-Run Extensibility Component (x32 Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.7870.2024 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (x32 Version: 16.0.7668.2074 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
PCSX2 - Playstation 2 Emulator (HKLM-x32\...\pcsx2-r4600) (Version:  - )
ph (x32 Version: 1.0.0 - Your Company Name) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version:  - )
PITCHMAP AAX-x64 1.6.1 (HKLM\...\{8ADD7B21-5CB9-4c79-A1A7-2B050F736A23}) (Version: 1.6.1 - Zynaptiq)
PITCHMAP VST 1.6.1 (HKLM-x32\...\{9B24435E-CD77-4fc1-AC03-AD4555783205}) (Version: 1.6.1 - Zynaptiq)
PITCHMAP VST-x64 1.6.1 (HKLM\...\{F9754DD6-985B-4e93-A96B-837EE5415F61}) (Version: 1.6.1 - Zynaptiq)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.6 - Power Software Ltd)
Prerequisite installer (x32 Version: 17.0.0002 - Nero AG) Hidden
PreSonus Studio One 2 x64 (HKLM\...\PreSonus Studio One 2) (Version: 2.6.0.24200 - PreSonus Audio Electronics)
PriMus Free 1.1 (Build 10843) (HKLM-x32\...\PriMus Free_is1) (Version: 1.1.0.10843 - Columbus Soft)
PS_AIO_06_B209a-m_SW_Min (x32 Version: 140.0.690.000 - Hewlett-Packard) Hidden
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
RAD Video Tools (HKLM-x32\...\RADVideo) (Version:  - )
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.20.15.822 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7071 - Realtek Semiconductor Corp.)
reconquest (HKLM\...\Steam App 530040) (Version:  - StormCube Games)
Rosetta Stone Ltd Services (HKLM-x32\...\{7BB2EF8A-5376-4BAE-96D0-38BE49501F40}) (Version: 3.2.17 - Rosetta Stone Ltd.)
Rosetta Stone TOTALe (HKLM-x32\...\com.rosettastone.rosettastonetotale) (Version: 4.1.15.1 - Rosetta Stone, Ltd)
Rosetta Stone TOTALe (x32 Version: 4.1.1 - Rosetta Stone, Ltd) Hidden
Rosetta Stone TOTALe (x32 Version: 4.1.15.1 - Rosetta Stone, Ltd) Hidden
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Samplitude Pro X3 Suite (HKLM\...\MX.{1D543577-693D-4A85-8706-8D4EF63EC7B0}) (Version: 14.0.0.16 - MAGIX Software GmbH)
Samplitude Pro X3 Suite (Version: 14.0.0.16 - MAGIX Software GmbH) Hidden
Samplitude Pro X3 Suite Update (Version: 14.0.1.35 - MAGIX Software GmbH) Hidden
Samsung Data Migration (HKLM-x32\...\{D4DE3DB4-7734-47E5-8D92-B80146311406}) (Version: 2.7 - Samsung)
Samsung Magician (HKLM-x32\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 4.5.1 - Samsung Electronics)
Samsung_MonSetup (HKLM-x32\...\{8EA79DBF-D637-448A-89D6-410A087A4493}) (Version: 1.00.0000 - Samsung)
Scan (x32 Version: 140.0.80.000 - Hewlett-Packard) Hidden
Softube Tonelux Tilt VST RTAS v1.0 (HKLM-x32\...\Softube Tonelux Tilt_is1) (Version:  - )
Sonnox Oxford Inflator Native VST v1.5.1 (HKLM-x32\...\Sonnox Oxford Inflator Native VST_is1) (Version:  - Team AiR 2007)
Sonnox Oxford Inflator PowerCore VST v1.5.1 (HKLM-x32\...\Sonnox Oxford Inflator PowerCore VST_is1) (Version:  - Team AiR 2007)
Sonnox Oxford Limiter Native VST v1.1.1 (HKLM-x32\...\Sonnox Oxford Limiter Native VST_is1) (Version:  - Team AiR 2007)
Sonnox Oxford R3 Dynamics Native VST v1.3.1 (HKLM-x32\...\Sonnox Oxford R3 Dynamics Native VST_is1) (Version:  - Team AiR 2007)
Sonnox Oxford R3 Dynamics PowerCore VST v1.3.1 (HKLM-x32\...\Sonnox Oxford R3 Dynamics PowerCore VST_is1) (Version:  - Team AiR 2007)
Sonnox Oxford R3 EQ Native VST v1.6.1 (HKLM-x32\...\Sonnox Oxford R3 EQ Native VST_is1) (Version:  - Team AiR 2007)
Sonnox Oxford R3 EQ PowerCore VST v1.6.1 (HKLM-x32\...\Sonnox Oxford R3 EQ PowerCore VST_is1) (Version:  - Team AiR 2007)
Sonnox Oxford Reverb Native VST v1.0 (HKLM-x32\...\Sonnox Oxford Reverb Native VST_is1) (Version:  - Team AiR 2007)
Sonnox Oxford TransMod Native VST v1.3.1 (HKLM-x32\...\Sonnox Oxford TransMod Native VST_is1) (Version:  - Team AiR 2007)
Sonnox Oxford TransMod PowerCore VST v1.3.1 (HKLM-x32\...\Sonnox Oxford TransMod PowerCore VST_is1) (Version:  - Team AiR 2007)
Spotify (HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\Spotify) (Version: 1.0.54.1079.g3809528e - Spotify AB)
Stashimi Stub Installer (x32 Version: 18.001.1 - Nero AG) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steinberg Cubase 5 (HKLM-x32\...\{4A19D6AC-ADE0-4A07-80FF-9C9812C45557}) (Version: 5.1.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg HALionOne (HKLM-x32\...\{E70E7159-93B1-470D-9FBD-D8E9EF34B538}) (Version: 1.1.0.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Additional Content Set 01 (HKLM-x32\...\{F3AFD063-8BAD-485E-B641-E7F5A2C5AE71}) (Version: 1.0.0.001 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Expression Set (HKLM-x32\...\{E22AD5D3-EB60-4A8F-835C-6C10E369DCE2}) (Version: 1.0.1.0 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Drum Set (HKLM-x32\...\{AC997F93-0757-4ED4-A701-F40C2D654D09}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne GM Set (HKLM-x32\...\{F057965A-D974-4C64-ADB1-4381CD4B8956}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Pro Set (HKLM-x32\...\{D82CDA0D-C182-42C8-8FF2-5649C98D6003}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Drum Set (HKLM-x32\...\{865D9ED1-EAC2-436D-AFA7-0B750EB5AAAB}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg HALionOne Studio Set (HKLM-x32\...\{D23CBFDA-C46B-4920-BA70-FC7878A3F05A}) (Version: 1.0.1.457 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 1.0.0.005 - Steinberg Media Technologies GmbH)
System Shock Demo (HKLM-x32\...\2116300560_is1) (Version: 2.2.0.4 - GOG.com)
Text-To-Speech-Runtime (HKLM-x32\...\{7B3F0113-E63C-4D6D-AF19-111A3165CCA2}) (Version: 1.0.0.0 - Magix Development GmbH)
Toolbox (x32 Version: 140.0.428.000 - Hewlett-Packard) Hidden
Trust USB Audio (HKLM\...\C-Media CM106 Like Sound Driver) (Version:  - )
UNFILTER VST 1.2.1 (HKLM-x32\...\{C3111879-D904-42A9-B3A9-A16511FCF949}) (Version: 1.2.1 - Zynaptiq)
video2brain Desktop App (HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\bfe81a058ff573be) (Version: 1.3.2.86 - Lynda.com)
VirtualDJ 8 (HKLM-x32\...\{8C066069-C573-4F2E-A01C-D3156CF28DDC}) (Version: 8.0.2206.0 - Atomix Productions)
Vita 2 (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita 2 Zusatzcontent (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Bass Machine (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita Rock Drums (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita String Ensemble (Version: 1.0.0.0 - MAGIX AG) Hidden
Vita World Percussion (Version: 1.0.0.0 - MAGIX AG) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.1.0.0 - Azureus Software, Inc.)
Wacom Tablett (HKLM\...\Wacom Tablet Driver) (Version: 6.3.11w3 - Wacom Technology Corp.)
WAHRIG.digital 2.1 (HKLM-x32\...\WAHRIGdigital2006_is1) (Version: 2.1 - Wissen Media Verlag GmbH, Gütersloh / München)
WarCraft III Version 1.26a (HKLM-x32\...\WarCraft III_is1) (Version: 1.26a - Blizzard Entertainment)
Waves Complete v8.0.11 (HKLM-x32\...\Waves Complete V8_is1) (Version:  - )
WebReg (x32 Version: 140.0.212.017 - Hewlett-Packard) Hidden
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
Windows-Treiberpaket - Leaf Imaging Ltd. Image  (12/03/2014 1.2.0.0) (HKLM\...\B758007C752D28F7C3542875CEEBDADCAE5941AE) (Version: 12/03/2014 1.2.0.0 - Leaf Imaging Ltd.)
Windows-Treiberpaket - Phase One / Mamiya V-Grip USB Driver (12/03/2014 1.2.0.0) (HKLM\...\3F504CC0B024052107934E093CC26DA720256A7A) (Version: 12/03/2014 1.2.0.0 - Phase One / Mamiya)
Windows-Treiberpaket - Phase One A/S (WinUSB) USBDevice  (12/03/2014 1.13.0.0) (HKLM\...\7C6570ABBEB2F08EFBC23ED7925AE72DA6167BD8) (Version: 12/03/2014 1.13.0.0 - Phase One A/S)
WinHTTrack Website Copier 3.47-21 (HKLM-x32\...\WinHTTrack Website Copier_is1) (Version: 3.47.21 - HTTrack)
WinRAR 5.01 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
WinSnap (HKLM-x32\...\WinSnap) (Version: 3.5.3 - NTWind Software)
XAMPP (HKLM-x32\...\xampp) (Version: 1.8.3-5 - Bitnami)
Yamaha Steinberg USB Driver (HKLM-x32\...\InstallShield_{5355C6A0-C19D-4AD3-8295-7B9A49BAAF7B}) (Version: 1.9.4 - Yamaha Corporation)
Yamaha Steinberg USB Driver (Version: 1.9.4 - Yamaha Corporation) Hidden
Zoom (HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\ZoomUMX) (Version: 4.0 - Zoom Video Communications, Inc.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {06B671DA-1E96-4FEF-A943-70A36ABCAE96} - System32\Tasks\{21FFD0E8-7D98-46FA-BD9C-99237285C387} => H:\SETUP\GERMAN\SETUP.EXE 
Task: {07B59918-54BB-4E95-B6A7-1E3F3A20F7DA} - System32\Tasks\SafeZone scheduled Autoupdate 1454789598 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {0F191120-A3F9-4B16-ABAB-61958C65CC1F} - System32\Tasks\{CBE7CF75-B054-49D7-ADAE-8AEB91CC3430} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe 
Task: {14AAC377-09CD-4F14-8809-4D3DC8ABAB62} - System32\Tasks\{AE9E01BE-E84E-448E-9BAA-74A615613DF0} => F:\DATEN (NUR EXTERN)\GAMES\1997 – Theme Hospital\SETUP.EXE 
Task: {1B2BB5C2-B2D6-4B77-B8FC-D228B482B289} - System32\Tasks\{40148166-0072-4416-AF9C-D30040B50AAE} => pcalua.exe -a F:\09DATA~1\UNTERH~1\GAMESU~1.FIL\UNINST~1\UNWISE.EXE -c F:\09DATA~1\UNTERH~1\GAMESU~1.FIL\UNINST~1\INSTALL.LOG
Task: {2451B019-2774-4F5A-9BBD-DF1013AB9667} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-04-13] (AVAST Software)
Task: {26046EB5-53B7-41C3-8730-9DBC29708D80} - System32\Tasks\{6EA54632-81EC-4BC5-8F06-2D6F82A62C67} => H:\SETUP\GERMAN\SETUP.EXE 
Task: {27B34B33-B044-4EBC-8786-8E99FDA97BC1} - System32\Tasks\AdobeAAMUpdater-1.0-schweigelichtPC-schweigelicht => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {2A525869-365E-46F0-A843-6D1321A77EBD} - System32\Tasks\{F48E1893-853F-4740-A8A0-D1E968F6D457} => pcalua.exe -a "H:\ANNO 2205\ANNO 2205\Uninstall.exe"
Task: {2B7D6A86-D918-41D6-88DE-AC3D5C492258} - System32\Tasks\{3C3B3609-2226-4EE6-B3FF-3992984842B6} => G:\RAY2.exe 
Task: {30C1157D-DB31-433E-8370-3DD345315B02} - System32\Tasks\{1DCDD6A9-E4BA-4EAA-9B49-37E166058254} => G:\RAY2.exe 
Task: {31B1EC76-9C7E-4C05-87DE-D6AFFCEA3037} - System32\Tasks\{D7FFA778-CAA7-4A07-9108-2452D3E54295} => pcalua.exe -a "f:\bethesda.net launcher\bethesdanetlauncher.exe" -c bethesdanet://uninstall/8
Task: {331C7C4B-BB37-4F27-A1D4-8D7903B2F22E} - System32\Tasks\{2F572957-DC53-44F3-8871-9600C19539C7} => C:\Users\schweigelicht\Desktop\Internet ORDNER\StarCraft-II-Setup-deDE.exe 
Task: {374A89A9-F313-43C0-B646-34EE50AED3E7} - System32\Tasks\{D4B27500-911C-443D-A46E-83C15E6851F5} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\SETUP\GERMAN\SETUP.EXE 
Task: {3B979CDD-0DAD-4049-94D0-B433F6B33F55} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-31] (Google Inc.)
Task: {407EA313-6EA4-4765-99A0-44C66632CCE2} - System32\Tasks\{AA997D7E-62D0-4E61-9007-C7EA49D9A003} => C:\Program Files (x86)\EA Games\Command and Conquer Generals\generals.exe 
Task: {4081F390-2884-48DF-BF57-046C46058E5D} - System32\Tasks\{EACBDA8F-E493-403E-96E1-89DCA0E202D8} => F:\DATEN (NUR EXTERN)\GAMES\1995 – Rayman\SETUP.EXE 
Task: {41235610-00DA-4854-9775-147213DEDB8F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-07-31] (Google Inc.)
Task: {4B4EF42C-4D75-4336-8078-44D23C9C88C8} - System32\Tasks\{05D92468-A6EA-4C94-9FB6-84CFA03641F1} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe 
Task: {5496E36F-9037-4179-BABE-5348878C731F} - System32\Tasks\{107851F0-6D61-431D-A447-B9F354F77FFB} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe 
Task: {5533B9FB-51DC-4D4F-8CE8-A997727A8616} - System32\Tasks\{9478B4EF-4E7F-4E26-8071-6DD7049AF502} => pcalua.exe -a "I:\ANNO 2205\Uninstall.exe"
Task: {67041ED0-A37D-4BB0-9DFB-5DE1D7E57C42} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-03-26] (Microsoft Corporation)
Task: {696250E7-60CE-44FE-B038-D24F55BA9FDD} - System32\Tasks\{B3CA8F19-E841-4583-A895-08349923D305} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN.EXE 
Task: {70C5F5AE-7AF0-4E2D-84BE-B443E2E1A1FD} - System32\Tasks\KMSAutoNet => C:\ProgramData\KMSAutoS\KMSAuto Net.exe [2015-08-10] (MSFree Inc.)
Task: {78B2172C-EC3E-47BD-BB78-D3D90A4DF3DE} - System32\Tasks\{EBF0B383-9564-4B03-A4CD-C56A863D30B1} => C:\Program Files (x86)\Tomb Raider Collection - Volume 1\Tomb Raider 3\tomb3.exe 
Task: {79476D79-0885-4E98-B062-3A6216A7942F} - System32\Tasks\{B4FF8479-CF1F-449F-B71B-B052B926B927} => C:\Program Files (x86)\QfG\Sleeping Dogs\HKShip.exe 
Task: {7DB8E8BC-1974-4B2E-A08E-8B1C764C7F97} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\Samsung Magician.exe [2014-09-28] (Samsung Electronics.)
Task: {7F4C0C07-6AA3-454D-BD70-9D103541F575} - System32\Tasks\{F1CB8254-8F3E-40A9-890D-0ED632428FF5} => C:\MAGIX\MusicStudio2007deluxe\MusicStudio.exe 
Task: {8291F01C-2E1C-4AC4-8A7F-8CD080880D5E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-26] (AVAST Software)
Task: {86EE9715-BA4B-4819-9AE6-8CA6748F2AA9} - System32\Tasks\{AF2BF1A6-86A3-4D66-BA9E-9E429ACEE189} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\FCOPLAPD\FCOPLAPD.EXE 
Task: {921673E9-260E-4920-A580-9C89CF6D3F2E} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-03-26] (Microsoft Corporation)
Task: {929EF4BC-48E6-42EC-8D36-85791EF986D9} - System32\Tasks\{FC666524-C691-4593-8B77-FCEA5EF95EFC} => pcalua.exe -a C:\AudioSuite\AudioRecorder\UninstalAR.exe
Task: {939AC728-5575-42BE-9755-3E8ABC2B674D} - System32\Tasks\{9BEA152B-7D77-4BB0-B1B3-FA8702DFC810} => C:\Program Files (x86)\EA Games\Command & Conquer Generäle Stunde Null\generals.exe 
Task: {93C6FADA-E3A2-4DEA-87CC-04D1C0131AE7} - System32\Tasks\{13B24290-0D75-489F-A348-4B29180B732E} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN.EXE 
Task: {98506311-66CE-4E72-8AB3-A0F86E273FB0} - System32\Tasks\{AA7E714C-07A0-4E30-B4CF-A2E5CBE23038} => Chrome.exe hxxp://ui.skype.com/ui/0/6.10.0.104/de/abandoninstall?page=tsProgressBar
Task: {99015297-96BB-4662-A9F7-0FF5894E28A6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation)
Task: {9F8CD049-A0FD-4F53-AE0B-1BE8699639DB} - System32\Tasks\{656C4DA3-7889-49CF-8108-F5EFD8022C1C} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN.EXE 
Task: {A0DA0F74-E206-4120-BFB2-34A5675128D3} - System32\Tasks\{E359A738-C430-4346-B193-A6BC04ECEA47} => G:\RUNSETUP.EXE 
Task: {A1BA65FC-2434-4184-8083-FD0703953198} - System32\Tasks\{7ABE90FA-B89C-4A29-A4A2-F795DFAC42C9} => F:\SETUP\GERMAN\SETUP.EXE 
Task: {A3C9EF44-8E18-4D08-83EC-27EEE3FB9D87} - System32\Tasks\{69BE9EE6-A495-4DA7-A4F9-329733B7C26D} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\WINMAIN.EXE 
Task: {A73E4FEC-9B67-477D-8AA6-DEE30D54E8EA} - System32\Tasks\Update Manager => C:\Users\schweigelicht\AppData\Roaming\Shadow.Warrior.2.Deluxe.Edition.[v.1.1.3.0]-ALI213\Upgrade.exe 
Task: {A89E1040-1F77-4B34-97E3-9F5C46095E63} - System32\Tasks\{CD3F0F1E-6475-458E-9112-1BE9B8DE723D} => C:\Program Files (x86)\Tomb Raider Collection - Volume 1\Tomb Raider 3\tomb3.exe 
Task: {AFEB05A0-8949-4557-9C70-AEC00FA82ED8} - System32\Tasks\Adobe-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-02-02] (Adobe Systems Incorporated)
Task: {B1B8FE39-F217-40A1-B7A8-29891336A091} - System32\Tasks\{56BD0CDC-681F-464D-80A1-691B244605FA} => C:\Program Files (x86)\Activision\Star Trek Armada II\Armada2.exe 
Task: {B217BA0D-150C-4A81-B3E1-9BE4759006CA} - System32\Tasks\{18D07478-1F47-4912-8FD2-8F2D9F64943B} => G:\RUNSETUP.EXE 
Task: {B2C23F03-CDFF-4E2A-A558-8C15B7214B2F} - System32\Tasks\{C106FEF3-5CE3-4511-B0F1-8B942C099749} => C:\Program Files (x86)\GOG.com\Dark Reign\Dark Reign - Original Game.exe 
Task: {C6E56E9A-2A82-4D92-B77D-6CD4E2767413} - System32\Tasks\{47542D3E-0643-45A7-9D18-9483015321F5} => pcalua.exe -a "C:\Users\schweigelicht\Desktop\Internet ORDNER\Grafiken usw\install.exe" -d "C:\Users\schweigelicht\Desktop\Internet ORDNER\Grafiken usw"
Task: {C93270B9-B8EB-455C-A73B-52EC22EF3AB1} - System32\Tasks\{B4D5465B-288D-41DA-98CA-C50FD5FEF459} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\AUTORUN\IP.EXE 
Task: {DCFC5C6B-0731-4716-A207-5598AF1B7946} - System32\Tasks\{07231851-9595-451D-8828-82F50C86676D} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\DOS4GW.EXE 
Task: {E20D28A3-4582-4073-8DBE-4DD531D1CBA9} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-02-02] (Adobe Systems Incorporated)
Task: {E2CBDA61-BC94-49A0-ADB8-95A2553B93D9} - System32\Tasks\{8A993AD3-0A81-4907-A095-D36D785824CF} => F:\DATEN (NUR EXTERN)\GAMES\1998 – Future Cop\FCOPLAPD\FCOPLAPD.EXE 
Task: {EF8DD41D-FEDE-4E1E-BAAB-7E36FFC7965B} - System32\Tasks\{74B076E3-4857-4DC6-A27E-1AF2C33D1CB7} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\DOS4GW.EXE 
Task: {F10ED477-098F-4CB8-AB36-DFF03850821E} - System32\Tasks\{41530A16-8497-40E4-B87B-BB4F6EF27F6C} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{D4DE3DB4-7734-47E5-8D92-B80146311406}\setup.exe" -c -runfromtemp -l0x0007 -removeonly
Task: {FA62ED44-7259-4645-99A5-DBBC620C500E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-03-26] (Microsoft Corporation)
Task: {FC2B761D-0ABD-4B5A-AAE8-EC2075F311CE} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [2015-06-04] (Nero AG)
Task: {FE5B4ECC-5E26-423B-84C2-49D1EDEB3ED0} - System32\Tasks\{DFFF7107-A637-4CAD-B507-EB1201EF2DD7} => pcalua.exe -a "C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\Uninstall.exe" -c /app FreeYTVDownloader
Task: {FFEC1312-7FDD-43EF-A378-CB2FCA92286C} - System32\Tasks\{5E660AA8-9BBC-4E86-A6AA-CF5F342C0B2C} => C:\Program Files (x86)\Bullfrog Productions\Theme Hospital\DOS4GW.EXE 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

Shortcut: C:\Users\schweigelicht\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\schweigelicht\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com

ShortcutWithArgument: C:\Users\schweigelicht\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\8e5c0db72600a899\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=ghifackarapulyfinck

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2016-10-25 09:57 - 2016-10-25 09:57 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-12-06 18:17 - 2016-12-06 18:17 - 00052400 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2016-11-25 18:43 - 2015-02-27 15:38 - 00721263 _____ () C:\Windows\SysWOW64\WSCM64.dll
2016-11-17 02:28 - 2016-11-17 02:28 - 00092472 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2016-11-17 02:28 - 2016-11-17 02:28 - 01353528 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2016-06-05 01:49 - 2016-08-30 09:57 - 00075776 _____ () C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
2016-11-25 08:16 - 2016-11-25 08:16 - 00192200 _____ () C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
2016-07-20 02:10 - 2016-07-20 02:11 - 00187824 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2014-05-05 14:34 - 2014-12-22 22:42 - 01356568 _____ () C:\Program Files\Tablet\Wacom\libxml2.dll
2016-10-25 09:57 - 2016-10-25 09:57 - 31723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2017-04-11 05:33 - 2017-04-11 05:33 - 02032256 _____ () C:\Program Files\Adobe Premiere Pro CC 2017\ZXPSignLib-minimal.dll
2017-04-10 20:56 - 2017-04-10 20:56 - 03777536 _____ () C:\Program Files\Adobe Premiere Pro CC 2017\Plug-ins\Common\OpenEXR.prm
2017-04-10 20:55 - 2017-04-10 20:55 - 04044800 _____ () C:\Program Files\Adobe Premiere Pro CC 2017\Plug-ins\Common\Wraptor.prm
2017-04-10 20:54 - 2017-04-10 20:54 - 00303616 _____ () C:\Program Files\Adobe Premiere Pro CC 2017\MOG_Framework_2.2.17_vc10.dll
2017-04-10 20:54 - 2017-04-10 20:54 - 00079872 _____ () C:\Program Files\Adobe Premiere Pro CC 2017\MXF_SDK_GenericContainer_MPEG_XAVC_1.4.22_vs10.dll
2017-04-10 20:54 - 2017-04-10 20:54 - 00019968 _____ () C:\Program Files\Adobe Premiere Pro CC 2017\MXF_SDK_Metadata_AS11_1.4.22_vs10.dll
2017-04-10 20:54 - 2017-04-10 20:54 - 00295936 _____ () C:\Program Files\Adobe Premiere Pro CC 2017\MXF_SDK_MXFIO_AS11_1.4.22_vs10.dll
2017-04-10 20:54 - 2017-04-10 20:54 - 03562496 _____ () C:\Program Files\Adobe Premiere Pro CC 2017\mog_xqilla23.dll
2017-04-10 20:54 - 2017-04-10 20:54 - 00090112 _____ () C:\Program Files\Adobe Premiere Pro CC 2017\MXF_SDK_GenericContainer_MPEG_AVCUltra_1.4.22_vs10.dll
2017-04-10 20:56 - 2017-04-10 20:56 - 00048128 _____ () C:\Program Files\Adobe Premiere Pro CC 2017\pthreadVC.dll
2017-03-31 06:16 - 2017-03-29 10:47 - 02885464 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libglesv2.dll
2017-03-31 06:16 - 2017-03-29 10:47 - 00099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\libegl.dll
2016-09-26 20:09 - 2016-09-26 20:09 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-09-26 20:09 - 2016-09-26 20:09 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-05-11 15:14 - 2017-05-11 15:14 - 06032680 _____ () C:\Program Files\AVAST Software\Avast\defs\17051100\algo.dll
2017-05-12 15:19 - 2017-05-12 15:19 - 06032680 _____ () C:\Program Files\AVAST Software\Avast\defs\17051200\algo.dll
2017-04-08 22:17 - 2017-03-28 19:12 - 00114664 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2017-04-08 22:17 - 2017-03-22 10:31 - 00108008 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2017-04-08 22:17 - 2017-03-22 10:31 - 00024040 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2017-04-08 22:17 - 2017-03-22 10:31 - 00048104 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2016-09-26 20:09 - 2016-09-26 20:09 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-03-14 08:31 - 2017-03-14 08:31 - 52051544 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2016-08-29 10:09 - 2016-08-29 10:09 - 00143824 _____ () C:\ProgramData\Razer\Synapse\CrashReporter\CrashRpt1402.dll
2015-03-17 02:34 - 2015-03-17 02:34 - 00010240 _____ () C:\Program Files (x86)\Acrobat DC\Acrobat\locale\de_de\acrotray.deu
2016-12-06 18:17 - 2016-12-06 18:17 - 00048304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext.dll
2017-01-25 20:07 - 2017-01-25 20:07 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2017-01-25 20:07 - 2017-01-25 20:07 - 00214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2017-01-25 20:06 - 2017-01-25 20:06 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2017-01-25 20:07 - 2017-01-25 20:07 - 00125952 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2017-03-14 08:35 - 2017-03-14 08:35 - 00110680 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2017-01-25 20:07 - 2017-01-25 20:07 - 00086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2015-03-17 02:34 - 2015-03-17 02:34 - 00152064 _____ () C:\Program Files (x86)\Acrobat DC\Acrobat\Locale\de_de\PDFMaker\PDFMOfficeAddin.DEU
2013-09-17 19:36 - 2007-03-04 14:32 - 00036600 _____ () C:\Program Files (x86)\Bertelsmann\WAHRIG.digital\WAHRIGdigitalAddIn.dll
2014-10-29 17:37 - 2014-09-28 18:59 - 00019872 _____ () C:\Program Files (x86)\Samsung\Samsung Magician\SAMSUNG_SSD.dll
2017-02-23 18:13 - 2017-02-23 18:13 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\fs-ext\build\Release\fs-ext.node
2017-02-23 18:13 - 2017-02-23 18:13 - 00117760 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ref\build\Release\binding.node
2017-02-23 18:13 - 2017-02-23 18:13 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\ffi\build\Release\ffi_bindings.node
2017-02-23 18:13 - 2017-02-23 18:13 - 00214528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2017-03-14 08:29 - 2017-03-14 08:29 - 00110680 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2017-02-23 18:13 - 2017-02-23 18:13 - 00098816 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\bufferutil\build\Release\bufferutil.node
2017-02-23 18:13 - 2017-02-23 18:13 - 00086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCLibrary\js\node_modules\idle-gc\build\Release\idle-gc.node

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\schweigelicht\AppData\Local\Temporary Internet Files:5bT4tsfXGJpFn4anilZuYxFtTM [2318]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\...\line6.net -> line6.net

==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2016-07-29 17:23 - 2016-07-29 17:23 - 00000182 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1       down.baidu2016.com
127.0.0.1       123.sogou.com
127.0.0.1       www.czzsyzgm.com
127.0.0.1       www.czzsyzxl.com
127.0.0.1       union.baidu2019.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1641480961-1619121124-1950988501-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\schweigelicht\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: FirebirdServerMAGIXInstance => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: hpqcxs08 => 3
MSCONFIG\Services: hpqddsvc => 2
MSCONFIG\Services: HPSLPSVC => 2
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: LiveUpdate => 3
MSCONFIG\Services: Norton Ghost => 2
MSCONFIG\Services: PSI_SVC_2 => 2
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: SymSnapService => 3
MSCONFIG\Services: WTabletServicePro => 2
MSCONFIG\startupfolder: C:^Users^schweigelicht^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Adobe Acrobat Synchronizer => "C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AVMWlanClient => C:\Program Files (x86)\avmwlanstick\FRITZWLANMini.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Norton Ghost 15.0 => "C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe"
MSCONFIG\startupreg: Spotify => "C:\Users\schweigelicht\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
MSCONFIG\startupreg: Spotify Web Helper => "C:\Users\schweigelicht\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
MSCONFIG\startupreg: Steam => "F:\Steam\steam.exe" -silent
MSCONFIG\startupreg: wahrig.digital => C:\Program Files (x86)\wahrig.digital\WAHRIG.exe
MSCONFIG\startupreg: WAHRIG.digital Launcher => C:\Program Files (x86)\Bertelsmann\WAHRIG.digital\wahrig.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [TCP Query User{1BB4D55A-BFB2-454A-B233-95D89D309908}C:\program files (x86)\hp\common\hpdevicedetection3.exe] => (Allow) C:\program files (x86)\hp\common\hpdevicedetection3.exe
FirewallRules: [UDP Query User{4F865A52-E42B-4528-A98B-D2A8309835B5}C:\program files (x86)\hp\common\hpdevicedetection3.exe] => (Allow) C:\program files (x86)\hp\common\hpdevicedetection3.exe
FirewallRules: [{BEC57857-92EA-48DC-B40A-F7696CF9F877}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe
FirewallRules: [{FDDD2B1D-1128-4ADE-9386-66A8EB9EF751}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe
FirewallRules: [{740141FA-7235-4C17-BE41-0251CCB9A980}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe
FirewallRules: [{635EEDA6-79BC-4BAA-90B5-4DD3674DCDF3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{C062DD18-1551-48B7-A262-B417030728B3}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{17948A12-55C6-4497-A34E-BB69FE45AC48}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe
FirewallRules: [{29AFB502-0348-4B45-B747-BA81125330D8}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{D9D75E66-7905-4C69-AA37-BD59245CD358}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{FB6E87DF-9F4A-4D39-B8CA-788F5A35CF68}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{277AC4D9-C22D-4436-A6C2-0E84A4792EEA}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe
FirewallRules: [{FDFE403C-653B-4DB6-9A24-A5F223B0DB5C}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe
FirewallRules: [{CB272906-704C-4EA1-8B9D-3B66A9B37A56}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe
FirewallRules: [{E2A64F31-A906-454B-8C8E-4ED830EFAAA9}] => (Allow) C:\Program Files (x86)\HP\digital imaging\smart web printing\smartwebprintexe.exe
FirewallRules: [TCP Query User{30F0C03E-99B7-42F5-AF8A-0DB6F7A9ADFD}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [UDP Query User{C58FFFA8-1C4E-4826-B2CC-49E4073FF8B6}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [TCP Query User{A43A2F36-CAB9-41D4-AEF3-29AC9259BEFE}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [UDP Query User{5F8758B3-9870-41BC-9D19-20BD2B814BE1}C:\program files (x86)\adobe\adobe muse\adobe muse.exe] => (Allow) C:\program files (x86)\adobe\adobe muse\adobe muse.exe
FirewallRules: [TCP Query User{7191624A-BF5A-43E1-A2E6-C73FF6424D21}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [UDP Query User{48A7FC01-1798-4FCF-B0B2-CE87A33AC172}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [{DFD561FF-8AEA-4A4A-9732-F3705A63253F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [{328CFD13-3C57-491F-A765-2C42507B43CA}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.1675\Agent.exe
FirewallRules: [{9C756F7F-0A4C-4EBB-ABBD-38AE16E79109}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [{ED50B2EF-558F-43A3-B1AC-8653E804E33F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2045\Agent.exe
FirewallRules: [TCP Query User{E4BD120F-5E5E-483E-983B-91977A2BE7C7}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [UDP Query User{1426C66D-5DD0-452B-A4E3-614B19DBB5E0}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Allow) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [{9918AFCB-13DA-43EC-9272-B15CF4B95859}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{15746E10-6246-40A4-994C-4712EE2AA064}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [TCP Query User{EBF04171-FF2C-49C3-BFB7-2A4103B47616}C:\program files (x86)\jack\jackd.exe] => (Allow) C:\program files (x86)\jack\jackd.exe
FirewallRules: [UDP Query User{D638A3D4-C7EC-4DB7-884F-37526C55F532}C:\program files (x86)\jack\jackd.exe] => (Allow) C:\program files (x86)\jack\jackd.exe
FirewallRules: [TCP Query User{09BD45CC-D026-431E-B290-975DF3138F40}C:\program files\vuze\azureus.exe] => (Block) C:\program files\vuze\azureus.exe
FirewallRules: [UDP Query User{C5A03731-BD5B-498D-A1F7-389DAD59D0CD}C:\program files\vuze\azureus.exe] => (Block) C:\program files\vuze\azureus.exe
FirewallRules: [TCP Query User{4FCE6697-EA13-4E28-BD47-D7CDA6294F30}C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{F80D6154-4438-4C35-BF08-E2B5F6E0BBF3}C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\schweigelicht\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{768B62FA-2E4C-4884-9868-C8EB2B8EE6AB}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{AB9E3DD7-22A1-4412-A7CD-ECD1C32BDF88}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{91E71C0C-2C16-46A5-85CB-252A3CEBA28A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [{92F238E4-1B71-4881-A58E-024D53B680DF}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2328\Agent.exe
FirewallRules: [TCP Query User{375B0469-B93D-4441-8F84-2F8D964C71CA}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [UDP Query User{B4CCD6DF-CC75-4820-9050-6016969469BC}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe
FirewallRules: [TCP Query User{4A80C927-DB05-4C4F-8DE5-6CC500B5042D}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [UDP Query User{587BCA1F-ECC1-40DB-91C7-6A250C5576DA}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [TCP Query User{B97B9BB4-E387-4C4D-AC0D-D5842B5FBD2D}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [UDP Query User{3D5A60D0-88AD-447E-972E-C3EEB2A6DCEC}C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe] => (Block) C:\program files\adobe\adobe photoshop cc (64 bit)\photoshop-node.exe
FirewallRules: [{32B34A85-C612-4495-9D75-61B230DF2836}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{DA07BD13-0029-4276-83F5-B09369086DF5}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{5BAB4D96-2162-43FF-A9D0-8A7E19210224}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{826EFE4F-36F1-4716-A962-07AA7B3E8D11}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2380\Agent.exe
FirewallRules: [{C75000DE-3881-4BB5-9ACA-E4DDBF3B89F8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D3866B73-2853-41C6-89BB-99CF822020DB}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{46818340-EBEF-47D2-8D97-335EFA93E53A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{AB54303E-0D2C-42D5-81B1-15E7341C5E19}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2638\Agent.exe
FirewallRules: [{1E63492D-A01A-4099-A735-9E12F763F2E8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{BA7D87FE-1CEA-40DB-BC2B-FA4FD4A68DC8}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [VirtualPC-In-UDP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-UDP-2] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [VirtualPC-In-TCP-1] => (Allow) %SystemRoot%\System32\vpc.exe
FirewallRules: [{D8CAF2F4-F0C9-45B8-9418-15D9EAF7C889}] => (Allow) C:\Program Files (x86)\Dll-Files.com Fixer\DLLFixer.exe
FirewallRules: [{FF2A1A4B-4B6E-4F0B-8336-8FA62FEFC40B}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{57307718-82A5-4E77-AAAE-317B427831BE}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2680\Agent.exe
FirewallRules: [{DC7CA990-AE35-4923-B6C0-042E5344160F}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{43B06BD2-E66A-4655-B052-E767C55D4F28}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{CF7D3787-7517-4C51-9030-2FBC0DF763D1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [{262237E0-F404-4AC5-891F-3386197AD7D6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2689\Agent.exe
FirewallRules: [TCP Query User{C40E3046-9FAB-4972-9244-5F94BE8F125D}C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{4932B5C6-BFCA-4B04-A131-3BF1548F3929}C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\users\schweigelicht\desktop\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [TCP Query User{550BB99C-80DE-4A71-9CF0-AF225E691771}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe] => (Block) C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe
FirewallRules: [UDP Query User{3E7F42FE-E6F5-4EB6-A226-551131F4632D}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe] => (Block) C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe
FirewallRules: [{25E5FB68-C7C5-4569-BD08-B77A02DC9F4A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{F776F7A3-754D-4A4D-A4D5-FF1505E6358C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{F1BAD74F-7488-45A5-ADA6-F9AAE3BE05B8}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II.exe
FirewallRules: [{47CA0949-B59D-4C44-86AC-27A174052400}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II.exe
FirewallRules: [{D0543F91-E79A-4BD1-A6B1-98F136C45E1A}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{B8FE49B7-C46F-40EB-9369-B1FA222E8ACA}] => (Allow) C:\Users\schweigelicht\Desktop\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{D66A1C39-1072-4D4B-814D-EB9277CC5B4A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{BC7E624E-8EFF-4F1B-9138-8103305862DD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2717\Agent.exe
FirewallRules: [{F1FA7BD4-20A5-4D6F-AAC0-904EEDE35AC2}] => (Allow) D:\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{76B7707B-40F3-4A87-BE49-C0AC7CE52503}] => (Allow) D:\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [TCP Query User{C105AB74-54E4-47FB-ADF4-5BEA7A3BA917}D:\starcraft ii\versions\base28667\sc2.exe] => (Block) D:\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{E4D24DDB-852F-4220-8C22-CBC493EE987B}D:\starcraft ii\versions\base28667\sc2.exe] => (Block) D:\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{656C4AC5-B305-406C-B026-A1B1C25CA881}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{A2B57426-7B53-4204-976F-FDA1113AFAC7}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [TCP Query User{0F304C81-2A19-4FA5-BBC9-5D4ACD0B5E20}C:\gog games\descent 3\main.exe] => (Block) C:\gog games\descent 3\main.exe
FirewallRules: [UDP Query User{851E3FBE-8F22-46E4-9C55-A9EAD028EDC7}C:\gog games\descent 3\main.exe] => (Block) C:\gog games\descent 3\main.exe
FirewallRules: [TCP Query User{256511FE-6F98-4FBD-BAA3-0AEA2B16AD96}C:\program files (x86)\wolfenstein - enemy territory\et.exe] => (Block) C:\program files (x86)\wolfenstein - enemy territory\et.exe
FirewallRules: [UDP Query User{BE319A2B-3063-4AB2-9F90-ABB74E3C0305}C:\program files (x86)\wolfenstein - enemy territory\et.exe] => (Block) C:\program files (x86)\wolfenstein - enemy territory\et.exe
FirewallRules: [{A5C62ACC-2861-4229-9E80-071DBADCAE1A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{A45FB9BB-DD5B-4FD1-9030-5A28FEA17907}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2787\Agent.exe
FirewallRules: [{BE3569CC-0503-417D-B157-81D5A6F31352}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{061C3759-68B0-4F62-9D39-2919FD9DB5DD}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{BD1C44C8-691B-43ED-BC1C-B87F1A40DD46}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{A1976B92-FC52-476D-BEE8-3769F7CF6327}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{BFCF1CE7-CA84-4FEE-9AEC-1DFED43E0DAE}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [{B1B2B986-3AD6-4937-AE66-3C7A3686CB91}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II Public Test.exe
FirewallRules: [TCP Query User{E030B2FA-C95E-4412-A496-066DC02A8ADE}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{7BCBE076-9B33-4386-BDA3-F715B26A958B}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{08FA2EA8-3579-4656-A6A9-A3A20C797D32}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{38AF9E43-39F1-4586-8243-689DC5D95C03}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.2880\Agent.exe
FirewallRules: [{226FCEE8-2364-4642-B49F-080C10A31758}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\{B2DAB009-8236-48A0-AD7F-E940F5AB1578}\setup\hpznui40.exe
FirewallRules: [TCP Query User{0DFA2D61-1653-4E15-B06C-9F113227EA96}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Block) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [UDP Query User{856B87BA-D5EB-4AC1-A2B8-33E528CAAED0}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Block) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [TCP Query User{DE54C664-D581-4DD8-9BFA-9EDDFF68D979}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [UDP Query User{B1A311C7-D518-4F05-A278-FA30BB51A78F}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [TCP Query User{DC523A09-08D9-4B6F-A535-E9F42D1881C0}C:\program files (x86)\dark oberon\dark-oberon.exe] => (Block) C:\program files (x86)\dark oberon\dark-oberon.exe
FirewallRules: [UDP Query User{77AC8987-75EF-4883-8386-261657BB4DFC}C:\program files (x86)\dark oberon\dark-oberon.exe] => (Block) C:\program files (x86)\dark oberon\dark-oberon.exe
FirewallRules: [TCP Query User{31CB6C47-CE5D-4E86-B25C-772C9B6D01C2}C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe] => (Allow) C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe
FirewallRules: [UDP Query User{02652F79-8549-4F88-B254-F2D5970142EB}C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe] => (Allow) C:\users\schweigelicht\desktop\internet ordner\brutal_20doom\brutal_20doom\zandronum.exe
FirewallRules: [{367CC153-2EA0-4B0A-9E95-05E757E8C33F}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{E656D592-2C6F-4AEB-AD2A-F3EAA8B86261}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{FB92278F-97EB-4719-9294-E68C6247150B}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [{65824B33-96A7-4F89-960F-584BEF9FE903}] => (Allow) C:\Program Files (x86)\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{8969B109-8F4C-44F4-8C6C-FC2B650F2806}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [UDP Query User{29FAB9A7-B68B-4373-A4FC-C0E7535E57C5}C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe] => (Block) C:\program files (x86)\starcraft ii\versions\base28667\sc2.exe
FirewallRules: [{52A35D67-3811-4E04-A83F-4F037823CE62}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [{952F44CA-DF41-421C-B063-9C1A1BF9A401}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3286\Agent.exe
FirewallRules: [TCP Query User{272CF44B-59D4-45EA-8A50-265954123C30}C:\program files (x86)\adobe\adobe edge code cc\node.exe] => (Block) C:\program files (x86)\adobe\adobe edge code cc\node.exe
FirewallRules: [UDP Query User{190205C7-9D29-42BB-9BE4-12CFB35F2E67}C:\program files (x86)\adobe\adobe edge code cc\node.exe] => (Block) C:\program files (x86)\adobe\adobe edge code cc\node.exe
FirewallRules: [TCP Query User{298A7237-DDCE-471B-B389-4DF93528C9D5}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [UDP Query User{EC7B998E-B59D-4B90-8832-4AA7D10E9FED}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Block) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [TCP Query User{756052E1-4B30-411A-8B87-EC176AB949BE}C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe] => (Allow) C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe
FirewallRules: [UDP Query User{8FF2A407-94AE-4C1F-AB2C-68406F9018AB}C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe] => (Allow) C:\program files (x86)\adobe\adobe edge animate cc 2014\edgeanimate.exe
FirewallRules: [TCP Query User{26184E04-40C0-4075-B0EF-2D74C1421009}D:\xampp\apache\bin\httpd.exe] => (Allow) D:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{C5DB2EEB-8EBB-4C7F-AACB-8D7531D09990}D:\xampp\apache\bin\httpd.exe] => (Allow) D:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{19605462-7DF9-407D-9998-F90D47AEC1C1}D:\xampp\mysql\bin\mysqld.exe] => (Allow) D:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{EAE485BA-9719-429A-B743-4A2C22AE9988}D:\xampp\mysql\bin\mysqld.exe] => (Allow) D:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{622E4FEB-2EEF-4028-B364-CEEA8D07FA16}D:\xampp\filezillaftp\filezillaserver.exe] => (Block) D:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [UDP Query User{6F00077D-0337-4F5E-81F3-9AE74B506982}D:\xampp\filezillaftp\filezillaserver.exe] => (Block) D:\xampp\filezillaftp\filezillaserver.exe
FirewallRules: [TCP Query User{62CBAA70-61E4-47A2-BBE9-5D607E810E4E}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe
FirewallRules: [UDP Query User{0ADDB720-0F07-4226-ACF9-A677EACB8A5A}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe
FirewallRules: [TCP Query User{3A606F21-B762-4A50-AC91-4EC8058095DD}C:\program files (x86)\synology data replicator  3\backup.exe] => (Allow) C:\program files (x86)\synology data replicator  3\backup.exe
FirewallRules: [UDP Query User{8A4AD45D-D966-4421-BD1F-0B54D5268949}C:\program files (x86)\synology data replicator  3\backup.exe] => (Allow) C:\program files (x86)\synology data replicator  3\backup.exe
FirewallRules: [TCP Query User{944934E2-CC12-4BF5-A6B3-9ED05773893B}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Allow) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [UDP Query User{CA9AF812-352E-4866-B503-B4245C65122B}C:\program files\adobe\adobe muse cc 2014\muse.exe] => (Allow) C:\program files\adobe\adobe muse cc 2014\muse.exe
FirewallRules: [TCP Query User{26FAA2E2-95B6-4100-9960-A69459257F30}D:\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{A30777D5-540B-423C-A41E-5F164F24D1F7}D:\starcraft ii\versions\base32283\sc2.exe] => (Allow) D:\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{3B9DD2CF-724F-48F9-BE71-87C3CC19BE80}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{45E9E28C-2607-46E4-9FB1-C83F0B3C3B65}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3526\Agent.exe
FirewallRules: [{E19A5B84-59D7-4447-8D92-DCD97D99DC6B}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{FE8839BB-0C8F-4C0E-9297-5063D8690292}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{FB431FAA-4F4D-428A-B22A-EC4502489532}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{EF00AFB9-16B2-40FA-B2B0-55B3DEB6FCB6}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{5D7D21B0-B499-47FD-8D31-839EFFBBA768}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [UDP Query User{BC107B44-8E0F-4354-8B8F-39B7C3CD9F87}C:\program files (x86)\openra\openra.game.exe] => (Block) C:\program files (x86)\openra\openra.game.exe
FirewallRules: [{32B02F4A-8B67-4BB4-95C2-9D9839318710}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{43217828-C063-41CD-8575-D3D58EAAEC39}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{37DF0398-5F9D-4493-82DB-892D558A0334}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{BF580CB7-B4DF-445E-B9A6-2C28BE7291FF}] => (Allow) D:\Battle.net\Battle.net.exe
FirewallRules: [{482B8ED6-02FB-4B18-9540-595873CAC173}] => (Allow) D:\StarCraft II\StarCraft II.exe
FirewallRules: [{BE87B2EF-DAD4-4AC3-9822-0D52A264BDC3}] => (Allow) D:\StarCraft II\StarCraft II.exe
FirewallRules: [{E22CC9B9-F927-45EF-BFF8-1A18066ED58A}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [{6400ECDA-10F6-449D-8787-F453DAD984F4}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.3634\Agent.exe
FirewallRules: [TCP Query User{7AF9244B-737B-490E-9471-83DAD73EB7D2}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [UDP Query User{E3EA9CA0-CEF1-46BD-AD50-A2FBE1B3FF0E}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [TCP Query User{B8B716B2-2D44-401F-B7D9-9272FBDD7170}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [UDP Query User{5D0B028B-0349-4258-AB48-BBBC2B3DF78C}D:\alien isolation\ai.exe] => (Block) D:\alien isolation\ai.exe
FirewallRules: [TCP Query User{F1CD984D-5012-4E02-8A47-500800AB6DEF}C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe] => (Block) C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe
FirewallRules: [UDP Query User{DB9933AD-D5C2-48C3-BE69-2DAB56AE75DB}C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe] => (Block) C:\program files (x86)\mind path to thalamus\binaries\win32\mind.exe
FirewallRules: [TCP Query User{68780A7D-EABF-49ED-9D0E-DDCF6298398C}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{D5A8AA17-77E6-415A-AE2E-18B068EA3F36}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [TCP Query User{52C4BCA2-2B06-413C-AFBA-A1ACDC2D547E}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [UDP Query User{7C992DB2-DA12-4887-B579-C801B6958661}C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe] => (Block) C:\program files (x86)\the vanishing of ethan carter\binaries\win64\astronautsgame-win64-shipping.exe
FirewallRules: [TCP Query User{846DBD85-E86F-4758-A665-EF48FB9EA64B}D:\ut3\unreal tournament 3\binaries\ut3.exe] => (Block) D:\ut3\unreal tournament 3\binaries\ut3.exe
FirewallRules: [UDP Query User{5E76E689-5CAB-4B59-AC6F-7D48AFAE11C2}D:\ut3\unreal tournament 3\binaries\ut3.exe] => (Block) D:\ut3\unreal tournament 3\binaries\ut3.exe
FirewallRules: [TCP Query User{9DAC37C9-E95B-4445-AC50-F291B6BBD434}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [UDP Query User{C40231DE-0631-4609-941F-B25CC26C2F18}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [TCP Query User{F8AEC02B-1002-41B3-BA18-CCE693498A45}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [UDP Query User{8DF3A797-D408-450A-8D2A-4E89B8FFF2C6}C:\games\blur nosteam\blur.exe] => (Block) C:\games\blur nosteam\blur.exe
FirewallRules: [TCP Query User{102064CF-B501-46AB-BEBA-8389FDE06647}G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [UDP Query User{919F587D-C059-49D4-B863-666516D87C17}G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe] => (Block) G:\unterhaltung\games\2014 – stronghold crusader 2\bin\win32_release\crusader2.exe
FirewallRules: [TCP Query User{B63DB95B-3CE7-453A-BB0D-AA9C9C042567}D:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) D:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [UDP Query User{8F515771-9826-4526-A513-117AE3F925C8}D:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) D:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [TCP Query User{812A4D90-BB02-4D1B-9550-494A3A2F017C}D:\steam\steamapps\common\greygoo\goog.exe] => (Block) D:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [UDP Query User{BB3FCB1A-99E9-482E-8972-CA0EF7618824}D:\steam\steamapps\common\greygoo\goog.exe] => (Block) D:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [TCP Query User{6E5AB903-6C0F-4B5F-9AE1-9FB805A84DA6}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [UDP Query User{F3701F6A-4F8B-4FFC-9575-328FB3A501FB}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [TCP Query User{FF6E720D-5E2B-4192-81CB-D3EEE7E2516D}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [UDP Query User{D2BC247C-D874-428E-B783-FA01F15E2E08}D:\borderlands 2\binaries\win32\borderlands2.exe] => (Block) D:\borderlands 2\binaries\win32\borderlands2.exe
FirewallRules: [{39D14A8F-3D2C-48B8-8999-D5D4680B111C}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{BD439C61-8AA9-4E21-9A4B-B6980978476B}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{DF352A1E-6172-4F17-BE3B-88DD4A4F26C4}] => (Allow) D:\Dead Space\Dead Space\Dead Space.exe
FirewallRules: [{7513F1B3-78DC-404E-B24B-E9D089B32523}] => (Allow) D:\Dead Space\Dead Space\Dead Space.exe
FirewallRules: [TCP Query User{A8249795-10A5-45A2-9197-C386A4FFF37A}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [UDP Query User{AAF2634A-10B2-4255-ABA5-36D77BE05F56}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [TCP Query User{E6B52932-535A-4560-B947-4F4C13169811}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [UDP Query User{7B12B00F-2FFA-4612-ADAC-0BF3CAAD52D6}C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe] => (Block) C:\program files (x86)\bethesda softworks\doom 3 bfg edition\doom3bfg.exe
FirewallRules: [{B96CDA09-1C8E-453A-A09F-DEC8179EDDD7}] => (Allow) C:3\Steam\Steam.exe
FirewallRules: [{9E63E708-325F-4492-AD55-EA67DF3FB748}] => (Allow) C:3\Steam\Steam.exe
FirewallRules: [{2654A3CC-1CF8-43A1-8D7F-6BCEF62110FA}] => (Allow) C:3\Battle.net\Battle.net.exe
FirewallRules: [{C8E0D3A4-A9AE-4574-9833-01BB5BC12A1E}] => (Allow) C:3\Battle.net\Battle.net.exe
FirewallRules: [{0DA228A8-0B24-49A5-9927-A9120E560E20}] => (Allow) C:3\StarCraft II\StarCraft II.exe
FirewallRules: [{F70E8DA0-C254-4FD9-BD6C-D689CD0BFCED}] => (Allow) C:3\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{A5359AFD-2195-4E8F-B5B0-0985245C17A0}C:3\starcraft ii\versions\base32283\sc2.exe] => (Block) C:3\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{F0C2BB1D-8C24-426B-916A-5CEA8A63668C}C:3\starcraft ii\versions\base32283\sc2.exe] => (Block) C:3\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{926978A2-8100-4E68-862A-E35AEDB98884}] => (Allow) C:3\Mass Effect 2\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [{4A458FC6-1C54-4D81-97EC-AD154D52686B}] => (Allow) C:3\Mass Effect 2\Mass Effect 2\Binaries\MassEffect2.exe
FirewallRules: [TCP Query User{37C76A95-908B-47DA-BA22-DD72E43E7089}C:3\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) C:3\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [UDP Query User{A7A5A2D5-8A6E-4969-93E4-89530B62C093}C:3\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) C:3\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [{451E2E64-297C-4637-B9A0-AF71967FB81E}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [{F5743744-4431-4651-B101-DB3AA6ABCDE1}] => (Allow) F:\Steam\Steam.exe
FirewallRules: [TCP Query User{F45237A0-DB8E-4A2C-9D77-ADC20D8A9C06}F:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [UDP Query User{4D2289E6-1919-44B2-9926-2555B0F08EDC}F:\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [TCP Query User{C435CD70-92A0-4B93-9C15-7CC9682CB6C5}F:\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [UDP Query User{6A7A941E-341C-49A9-8EA4-6365A1912677}F:\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [{2C39DCDD-BA42-42B8-BD67-5554809A9571}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe
FirewallRules: [{BA9F51A2-94C4-4344-B316-9909C501DB0B}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Free Audio Recorder\Apowersoft Free Audio Recorder.exe
FirewallRules: [TCP Query User{E9704C8D-EA19-48D3-9898-383F79EA595C}F:\games\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) F:\games\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [UDP Query User{FBFD840D-C170-46B8-827A-49A75CC1B589}F:\games\mass effect 2\mass effect 2\binaries\me2game.exe] => (Block) F:\games\mass effect 2\mass effect 2\binaries\me2game.exe
FirewallRules: [{0138196B-CC4A-4363-B7A3-51B4857B0C36}] => (Allow) C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{B9ED9CF8-16FC-406C-9125-700A683F9075}] => (Allow) C:\Users\schweigelicht\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{8C70CA4E-4F12-47B3-94F1-310285237D6E}C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{42B1152E-1779-4628-8A80-796837DFEE9C}C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\schweigelicht\appdata\roaming\spotify\spotify.exe
FirewallRules: [{6E931ECA-0C41-4C16-9633-98DC055221BC}] => (Allow) F:\GAMES\Steam\Steam.exe
FirewallRules: [{462E90E4-9334-45C2-970B-581506C599DC}] => (Allow) F:\GAMES\Steam\Steam.exe
FirewallRules: [TCP Query User{AFE0603B-0F15-4E26-B834-E27840458C5B}F:\games\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\games\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [UDP Query User{F0C0D182-E15A-43B4-8DFD-15BBC07EFFDA}F:\games\steam\steamapps\common\greygoo\instanceserverg.exe] => (Block) F:\games\steam\steamapps\common\greygoo\instanceserverg.exe
FirewallRules: [TCP Query User{274B6D60-8225-4F1D-BB4B-7F9935CDF8A6}F:\games\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\games\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [UDP Query User{E0A7F892-D212-4273-A06E-5A61A954763C}F:\games\steam\steamapps\common\greygoo\goog.exe] => (Block) F:\games\steam\steamapps\common\greygoo\goog.exe
FirewallRules: [TCP Query User{B9E4CD0E-3E3F-480D-BADF-720CD740123C}F:\games\diablo iii\diablo iii.exe] => (Block) F:\games\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{4F8D74F6-4C27-4289-A9ED-299C5494AD82}F:\games\diablo iii\diablo iii.exe] => (Block) F:\games\diablo iii\diablo iii.exe
FirewallRules: [TCP Query User{F352AD6E-1933-46FE-BD80-EFED64013C3E}F:\games\starcraft ii\versions\base32283\sc2.exe] => (Block) F:\games\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [UDP Query User{15ADF763-AAB2-43EC-87D2-CE1E5AE24D54}F:\games\starcraft ii\versions\base32283\sc2.exe] => (Block) F:\games\starcraft ii\versions\base32283\sc2.exe
FirewallRules: [{48542226-8281-446E-A758-AC92CAF5D3F5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9A91C4D8-C3F6-4C63-9255-08D1B7B20091}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{FAC27E42-AC50-4A24-BDAD-C0989FB29A6C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A242B665-655C-4C96-82F4-0110ABABAFC3}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{E05F5F64-14D3-4EF4-8ED8-3CA89BDF205A}F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe] => (Block) F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe
FirewallRules: [UDP Query User{7BD88A1F-C840-4F98-A805-74631FD8546E}F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe] => (Block) F:\games\starcraft ii - legacy of the void beta\versions\base36442\sc2_x64.exe
FirewallRules: [TCP Query User{6A67339D-3419-4B08-9E18-DB67C5373ADC}F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Block) F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{D81FE59A-EA30-47FC-9185-A0BFF1AE36E9}F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe] => (Block) F:\games\heroes of the storm\versions\base36144\heroesofthestorm_x64.exe
FirewallRules: [{3667AA46-FE01-4364-A7FA-B09BFE85E8B7}] => (Allow) F:\GAMES\Battle.net\Battle.net.exe
FirewallRules: [{9BFB3B92-D639-4D88-9939-34E842D852AB}] => (Allow) F:\GAMES\Battle.net\Battle.net.exe
FirewallRules: [{682D1EDA-B4F5-449D-97F2-5BAACD82A7CB}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{7A01975D-45FB-4609-A98A-721A4ECB84D9}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{45521029-3DB4-4D54-9A86-16119ED802C7}] => (Allow) F:\PSX\GAMES\Steam\Steam.exe
FirewallRules: [{F3F1B60F-8D5E-41DB-9471-71E101D161C7}] => (Allow) F:\PSX\GAMES\Steam\Steam.exe
FirewallRules: [TCP Query User{B0BB6178-1C36-4856-9339-EF9433D3891D}F:\psx\games\cloud imperium games\patcher\cigpatcher.exe] => (Block) F:\psx\games\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [UDP Query User{5BF7D41F-C75E-4F0A-A426-745715C3B6EF}F:\psx\games\cloud imperium games\patcher\cigpatcher.exe] => (Block) F:\psx\games\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [TCP Query User{A92F6AF3-EA0F-4CFA-92E2-D85931A3C4A8}F:\psx\games\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Block) F:\psx\games\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [UDP Query User{30829369-6653-40B3-87B0-4D0E74063EEB}F:\psx\games\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Block) F:\psx\games\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [TCP Query User{5E9337A8-C1F3-48E0-8F7C-CDEBA5F41B76}C:\program files\adobe\adobe muse cc 2015\muse.exe] => (Block) C:\program files\adobe\adobe muse cc 2015\muse.exe
FirewallRules: [UDP Query User{9123AC0F-91A3-4541-A6C3-18F2403A772D}C:\program files\adobe\adobe muse cc 2015\muse.exe] => (Block) C:\program files\adobe\adobe muse cc 2015\muse.exe
FirewallRules: [TCP Query User{7DC191B0-FA67-4704-A2F5-13F51724D0A6}C:\program files\adobe\adobe muse cc 2015\muse.exe] => (Block) C:\program files\adobe\adobe muse cc 2015\muse.exe
FirewallRules: [UDP Query User{3E3509E5-4457-4FA9-A876-A42773788032}C:\program files\adobe\adobe muse cc 2015\muse.exe] => (Block) C:\program files\adobe\adobe muse cc 2015\muse.exe
FirewallRules: [TCP Query User{64D4D884-DB36-4F55-B8D5-B1892857BB5F}C:\program files\epic games\unrealtournamentdev\engine\binaries\win64\ue4-win64-test.exe] => (Block) C:\program files\epic games\unrealtournamentdev\engine\binaries\win64\ue4-win64-test.exe
FirewallRules: [UDP Query User{EB34E13F-5EA0-4897-824B-23D4E3E2A584}C:\program files\epic games\unrealtournamentdev\engine\binaries\win64\ue4-win64-test.exe] => (Block) C:\program files\epic games\unrealtournamentdev\engine\binaries\win64\ue4-win64-test.exe
FirewallRules: [{645F6115-A5E4-4529-8044-3EFD534F8DDB}] => (Allow) F:\GAMES\StarCraft II\StarCraft II.exe
FirewallRules: [{4DE7319B-A433-4133-8263-EFEB3DC76C94}] => (Allow) F:\GAMES\StarCraft II\StarCraft II.exe
FirewallRules: [TCP Query User{0D43F09C-2271-45A1-A61E-59211D51BB03}H:\starcraft ii\versions\base38749\sc2_x64.exe] => (Block) H:\starcraft ii\versions\base38749\sc2_x64.exe
FirewallRules: [UDP Query User{8E0412FA-0979-4659-989A-466F4559A410}H:\starcraft ii\versions\base38749\sc2_x64.exe] => (Block) H:\starcraft ii\versions\base38749\sc2_x64.exe
FirewallRules: [TCP Query User{6DDD2E75-E664-4D65-AF06-A6B680F60B8C}H:\starcraft ii\versions\base38996\sc2_x64.exe] => (Block) H:\starcraft ii\versions\base38996\sc2_x64.exe
FirewallRules: [UDP Query User{6E1B96E2-9959-4440-A727-0999ABAB833A}H:\starcraft ii\versions\base38996\sc2_x64.exe] => (Block) H:\starcraft ii\versions\base38996\sc2_x64.exe
FirewallRules: [{6AB00BEC-ECF9-48EF-B77E-4D42650FEA54}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{7713E203-31D2-4289-B108-3F8DDCD19EDB}] => (Allow) E:\Steam\Steam.exe
FirewallRules: [{52A24BE8-3275-473A-836D-D10B11C24405}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [{4B7D96A5-DE7A-45B0-9ADB-C9B7EAFBAD84}] => (Allow) E:\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{B879EEBA-81B6-4317-A360-7174748BD93D}I:\starcraft ii\versions\base39576\sc2_x64.exe] => (Block) I:\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [UDP Query User{81A63ABF-31C9-41F8-AE94-20ADFC63A3CF}I:\starcraft ii\versions\base39576\sc2_x64.exe] => (Block) I:\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [{B9117F84-5184-4A0B-9160-71819200C7E3}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\StartNBR.exe
FirewallRules: [{529F18AD-E259-40C1-B104-25C52DF245F9}] => (Allow) C:\Program Files (x86)\Nero\KM\NMDllHost.exe
FirewallRules: [{1CD63BBD-1611-4D8C-84E5-69E88A49A3E3}] => (Allow) C:\Program Files (x86)\Nero\Nero 2016\Nero Burning ROM\nero.exe
FirewallRules: [TCP Query User{65B61354-0650-4118-A167-40A6923DFF6E}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [UDP Query User{0C1A1333-39F5-4399-AD8B-40D454275FF9}C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe] => (Allow) C:\program files (x86)\ihmc cmaptools\jre\bin\javaw.exe
FirewallRules: [{5652ABA0-8595-48FA-88DE-7252AB127B33}] => (Allow) F:\Steam\bin\steamwebhelper.exe
FirewallRules: [{C4EA444A-362A-4A74-A336-9D5C9BA9E791}] => (Allow) F:\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{00CC9FDD-24B0-4A86-A2E7-36BEE78B79C4}F:\müll\diablo iii\diablo iii.exe] => (Block) F:\müll\diablo iii\diablo iii.exe
FirewallRules: [UDP Query User{1A2FC7FC-41F2-4B49-A6C4-477DE7BDC326}F:\müll\diablo iii\diablo iii.exe] => (Block) F:\müll\diablo iii\diablo iii.exe
FirewallRules: [{C249FD5C-FC6A-4D5C-900E-2C4C9251F74F}] => (Allow) F:\Games\Steam.exe
FirewallRules: [{E66EC6C3-ED8F-47D9-BCF6-F1D55C05BDD1}] => (Allow) F:\Games\Steam.exe
FirewallRules: [{2AE3A1A0-C12E-4488-A390-7446D3CF42E9}] => (Allow) F:\Games\bin\steamwebhelper.exe
FirewallRules: [{667CBAD6-277A-40FF-AD8E-13860B0562E8}] => (Allow) F:\Games\bin\steamwebhelper.exe
FirewallRules: [{3A9361F0-6D4E-407D-BB33-9390625B4029}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{01674874-841E-4753-B931-4EA7F44F6215}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneLtdServices.exe
FirewallRules: [{0CE1DAB5-BA46-468D-8847-823D7556C352}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [{2B9B47D8-5FA1-481C-A8CE-2208D54B31EC}] => (Allow) C:\Program Files (x86)\RosettaStoneLtdServices\RosettaStoneDaemon.exe
FirewallRules: [TCP Query User{D53C2A0C-E92E-4E17-9C2E-B4057C2CFB98}F:\st2\starcraft ii\versions\base39576\sc2_x64.exe] => (Block) F:\st2\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [UDP Query User{29D0A952-564D-44F2-892F-0AF459C63088}F:\st2\starcraft ii\versions\base39576\sc2_x64.exe] => (Block) F:\st2\starcraft ii\versions\base39576\sc2_x64.exe
FirewallRules: [TCP Query User{2D482AA2-7DFB-4BE7-9EA0-7D3DCB19F5AB}F:\overwatch\overwatch.exe] => (Allow) F:\overwatch\overwatch.exe
FirewallRules: [UDP Query User{B74DB959-A2AB-4D89-9E56-68D8F677C152}F:\overwatch\overwatch.exe] => (Allow) F:\overwatch\overwatch.exe
FirewallRules: [TCP Query User{93F7E59F-A172-4B70-8D1B-E54A75EA3152}C:\users\schweigelicht\appdata\local\temp\_istmp1.dir\_ins5576._mp] => (Block) C:\users\schweigelicht\appdata\local\temp\_istmp1.dir\_ins5576._mp
FirewallRules: [UDP Query User{7AC6C135-3443-4C10-B891-A410A6012169}C:\users\schweigelicht\appdata\local\temp\_istmp1.dir\_ins5576._mp] => (Block) C:\users\schweigelicht\appdata\local\temp\_istmp1.dir\_ins5576._mp
FirewallRules: [TCP Query User{FE244B32-69F9-4423-8BF3-8271B405FEBD}F:\cloud imperium games\patcher\cigpatcher.exe] => (Allow) F:\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [UDP Query User{CE135F9F-AA25-46C7-B25F-25BB00BF5B81}F:\cloud imperium games\patcher\cigpatcher.exe] => (Allow) F:\cloud imperium games\patcher\cigpatcher.exe
FirewallRules: [TCP Query User{E2827F8F-F3B8-4760-B47E-F666939758CC}F:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) F:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [UDP Query User{9ECDB41C-CEAA-4D10-A311-85A9F865D463}F:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe] => (Allow) F:\cloud imperium games\starcitizen\public\bin64\starcitizen.exe
FirewallRules: [{09BF364E-9839-476D-B395-DA877DB9DF3A}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{0BA951B0-E572-4785-9C74-572025B0CB54}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{380BC508-8B16-4D75-AEE5-EEADFFAEE920}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{4F51D30F-EE96-4135-AAAF-AD9E89510AB2}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{00B115F5-D3D3-4F24-8850-7B9B9ED9AE6A}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{98E24B2D-0716-40A5-839F-AC56B0221920}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [TCP Query User{B82F4199-BCC7-4325-AD88-233271896804}F:\war2combat\warcraft ii bne.exe] => (Block) F:\war2combat\warcraft ii bne.exe
FirewallRules: [UDP Query User{8A94A713-5B87-4F32-8052-CF0BD69508DA}F:\war2combat\warcraft ii bne.exe] => (Block) F:\war2combat\warcraft ii bne.exe
FirewallRules: [TCP Query User{2692E274-D2BD-4A12-A5DA-692E633ED735}F:\10 creative cloud\adobe muse cc 2015.2\muse.exe] => (Block) F:\10 creative cloud\adobe muse cc 2015.2\muse.exe
FirewallRules: [UDP Query User{94CA13BE-E4CB-436A-97AE-FF27DD5A3820}F:\10 creative cloud\adobe muse cc 2015.2\muse.exe] => (Block) F:\10 creative cloud\adobe muse cc 2015.2\muse.exe
FirewallRules: [TCP Query User{3EADAE9D-C9DA-49C8-81C1-0DC341481738}F:\10 creative cloud\adobe muse cc 2015.2\muse.exe] => (Allow) F:\10 creative cloud\adobe muse cc 2015.2\muse.exe
FirewallRules: [UDP Query User{5734390F-04B2-4986-AEBE-BD90C545096C}F:\10 creative cloud\adobe muse cc 2015.2\muse.exe] => (Allow) F:\10 creative cloud\adobe muse cc 2015.2\muse.exe
FirewallRules: [{4E8B6A65-F30E-4D0F-927A-AA4E3972F0DA}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe
FirewallRules: [{FB5A5650-0C86-4B8B-8F59-624EE149DB19}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\Apowersoft Phone Manager.exe
FirewallRules: [{17B33450-F08F-4136-8965-990EC1607B9B}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe
FirewallRules: [{1ADBFAE8-CFB7-4828-ACB7-3AB331EB4698}] => (Allow) C:\Program Files (x86)\Apowersoft\Apowersoft Phone Manager\ApowersoftAndroidDaemon.exe
FirewallRules: [TCP Query User{F341BA23-61C7-4C59-9ADF-5D3BF3635D65}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [UDP Query User{ED6C59DA-701D-4EF4-B3AC-6BDBE708A593}C:\program files (x86)\libreoffice 4\program\soffice.bin] => (Allow) C:\program files (x86)\libreoffice 4\program\soffice.bin
FirewallRules: [TCP Query User{C1C23DD8-515C-4AE6-A933-CFF297A46742}F:\games\starcraft ii\versions\base44401\sc2_x64.exe] => (Allow) F:\games\starcraft ii\versions\base44401\sc2_x64.exe
FirewallRules: [UDP Query User{BFFCF455-B7EB-47EE-AD6E-9015AFCC002C}F:\games\starcraft ii\versions\base44401\sc2_x64.exe] => (Allow) F:\games\starcraft ii\versions\base44401\sc2_x64.exe
FirewallRules: [TCP Query User{3468C385-1A8A-45E4-968D-EDE82DB1095F}F:\program files (x86)\origin games\mass effect 2\binaries\me2game.exe] => (Block) F:\program files (x86)\origin games\mass effect 2\binaries\me2game.exe
FirewallRules: [UDP Query User{55638A24-EB00-450D-B533-9180A9E2099D}F:\program files (x86)\origin games\mass effect 2\binaries\me2game.exe] => (Block) F:\program files (x86)\origin games\mass effect 2\binaries\me2game.exe
FirewallRules: [TCP Query User{04B19401-6C98-4F07-8DEE-18FE434EB26A}F:\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe] => (Block) F:\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe
FirewallRules: [UDP Query User{B262E55B-E3D1-4218-8C1B-EE3480AB96E9}F:\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe] => (Block) F:\steam\steamapps\common\abzu\abzugame\binaries\win64\abzugame-win64-shipping.exe
FirewallRules: [TCP Query User{AB18924C-F791-4AD6-82DC-85C0B7068159}F:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe] => (Allow) F:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe
FirewallRules: [UDP Query User{3BABB1D8-1F21-436D-B872-6689482173A7}F:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe] => (Allow) F:\program files (x86)\starcraft ii\versions\base44983\sc2_x64.exe
FirewallRules: [{19C9D089-BB1D-4056-9AAA-430258354184}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
FirewallRules: [{A3907E06-7750-41D1-BF67-E827B76F46F9}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\Streaming Audio Recorder.exe
FirewallRules: [{EDA6D6F9-E15B-4DAC-99CA-8F2DADF0BB46}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll
FirewallRules: [{66FFA224-7216-4B38-B3D3-06B014EAB869}] => (Allow) C:\Program Files (x86)\Apowersoft\Streaming Audio Recorder\ApowersoftVideoHelper.dll
FirewallRules: [{33B8ED83-9B2A-476F-B2CA-1C84A3F570A1}] => (Allow) F:\09 DATA\UNTERHALTUNG\GAMES u. FILME\Steam\Steam.exe
FirewallRules: [{75DD1558-3140-4B67-9432-B6E4AD82445A}] => (Allow) F:\09 DATA\UNTERHALTUNG\GAMES u. FILME\Steam\Steam.exe
FirewallRules: [{DAE73061-8922-4ED5-8159-5BE808AF16D7}] => (Allow) F:\09 DATA\UNTERHALTUNG\GAMES u. FILME\Steam\bin\steamwebhelper.exe
FirewallRules: [{4F9DB287-13CB-43E4-BE71-0A1DB41C7E5A}] => (Allow) F:\09 DATA\UNTERHALTUNG\GAMES u. FILME\Steam\bin\steamwebhelper.exe
FirewallRules: [TCP Query User{2BAB7F33-3D8B-4751-9B21-0905B8955054}F:\09 data\unterhaltung\games u. filme\sof2mp.exe] => (Block) F:\09 data\unterhaltung\games u. filme\sof2mp.exe
FirewallRules: [UDP Query User{934E0DB2-A50C-43E2-99A8-39AE39116AEE}F:\09 data\unterhaltung\games u. filme\sof2mp.exe] => (Block) F:\09 data\unterhaltung\games u. filme\sof2mp.exe
FirewallRules: [{44A66207-33A1-4ED3-9C0E-290D7E9907C9}] => (Allow) C:\Program Files (x86)\Electronic Arts\Die Schlacht um Mittelerde II\game.dat
FirewallRules: [{5F731893-56F5-42BD-9D72-0E1760A50DEC}] => (Allow) C:\Program Files (x86)\Electronic Arts\Die Schlacht um Mittelerde II\game.dat
FirewallRules: [{1C25526F-960B-4E92-A0FE-815BBF09AFF5}] => (Allow) C:\Program Files (x86)\Electronic Arts\Aufstieg des Hexenkönigs\game.dat
FirewallRules: [{E7FE3AC5-FC99-457F-B4FD-6DBB83301F6F}] => (Allow) C:\Program Files (x86)\Electronic Arts\Aufstieg des Hexenkönigs\game.dat
FirewallRules: [TCP Query User{A8AC3E1C-5AE1-410E-896C-5362A8D96FD9}F:\wolfenstein the new order\wolfneworder_x64.exe] => (Allow) F:\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [UDP Query User{359758D9-CF06-403A-BD41-E5D8602F271F}F:\wolfenstein the new order\wolfneworder_x64.exe] => (Allow) F:\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [TCP Query User{CC3F88B8-7BDB-4600-BB4B-090DEA880DC4}F:\wolfenstein the new order\wolfneworder_x64.exe] => (Block) F:\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [UDP Query User{977F251C-574E-493A-A9B8-F6D434DD7080}F:\wolfenstein the new order\wolfneworder_x64.exe] => (Block) F:\wolfenstein the new order\wolfneworder_x64.exe
FirewallRules: [{A7E75782-3376-4183-89DB-5C20B20D5DBB}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{2984C1B6-4523-4D0B-8FF5-85AB304A28A1}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{D1BC2C10-DC5C-4D14-9203-C76B67005B7A}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{83FF08B8-92CA-4364-B962-749730DA5D81}] => (Allow) F:\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{43BDD9EF-E853-4E32-B79A-7B92E005534B}] => (Allow) F:\Steam\steamapps\common\The Witcher 3\bin\x64\witcher3.exe
FirewallRules: [{E99F644F-FA8A-41F4-BE0E-8F5592A5D592}] => (Allow) C:\Program Files\MAGIX\Samplitude Pro X3 Suite\Sam.exe
FirewallRules: [{DC612BB8-B389-4A38-84E9-9E174CBD9FFF}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6CC35D7A-5E5A-4F56-9694-7E380B923C48}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4CCB852D-B0DB-47F7-B669-7B859EA7BDA5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{BC428603-D58B-496A-BE77-835537CED5F5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{DE328F2E-77D2-4E1F-8BAD-4E09A19304A8}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [{648FE359-2CD2-4C13-AF0F-37610D04F66E}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{C195DBD7-0B46-4C32-BFEE-4A0EA2D9F07C}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{3D7646BC-48EB-432B-822C-9C9402771761}] => (Allow) F:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{41293252-6BE2-4E96-8280-5B6789DAF291}] => (Allow) F:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{876ED3E1-D7F9-40F8-86D5-E7D855FD693A}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{FD20590A-98D5-4471-8382-B13C7CC4DB05}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{14E9626D-9FE8-4BCA-AA94-3BF235B16B40}] => (Allow) D:\Assassin's Creed Rogue\ACC.exe
FirewallRules: [{C8513854-CEFD-49C6-B326-C58ACB9D7B84}] => (Allow) D:\Assassin's Creed Rogue\ACC.exe
FirewallRules: [{2F8FF608-481C-42C8-BDFF-C1377B5D0B35}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{D8166D80-0184-417B-9254-9FB799ADECA0}] => (Allow) D:\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{4D8ABED3-6D37-434B-B07B-BA8F28075562}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{D423CED9-DB6D-4377-8A09-573A49290386}] => (Allow) D:\Steam\steamapps\common\Aquanox Deep Descent\ANX.exe
FirewallRules: [{AAF0CF9D-2610-46C4-A49B-A2992A4708A2}] => (Allow) D:\Steam\steamapps\common\Aquanox Deep Descent\ANX.exe
FirewallRules: [{71691B80-5CF6-4877-80AA-17C5CF14425D}] => (Allow) D:\Mass Effect Andromeda 1.05 Install\MassEffectAndromedaTrial.exe
FirewallRules: [{6E68C255-41A8-439B-B751-539374A87AA1}] => (Allow) D:\Mass Effect Andromeda 1.05 Install\MassEffectAndromedaTrial.exe
FirewallRules: [{CB8596CB-DF85-424E-BBF4-5F2DA6896A18}] => (Allow) D:\Mass Effect Andromeda 1.05 Install\MassEffectAndromeda.exe
FirewallRules: [{9A096AA3-85D4-4AFE-B80B-0464D4842233}] => (Allow) D:\Mass Effect Andromeda 1.05 Install\MassEffectAndromeda.exe
FirewallRules: [{9B223F20-92EA-4247-AECE-167911E7BBA0}] => (Allow) D:\Steam\steamapps\common\reconquest\reconquest.exe
FirewallRules: [{3D116C0D-E819-4D8A-B396-26C59C516298}] => (Allow) D:\Steam\steamapps\common\reconquest\reconquest.exe

==================== Wiederherstellungspunkte =========================
         

Code: Alles auswählenAufklappen

ATTFilter

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: USB (Universal Serial Bus)-Controller
Description: USB (Universal Serial Bus)-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: WD SES Device USB Device
Description: WD SES Device USB Device
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: PCI-Kommunikationscontroller (einfach)
Description: PCI-Kommunikationscontroller (einfach)
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: 
Description: 
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: SM-Bus-Controller
Description: SM-Bus-Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (05/12/2017 03:18:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 18720416

Error: (05/12/2017 03:18:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 18720416

Error: (05/12/2017 03:18:46 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/12/2017 10:06:48 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1997

Error: (05/12/2017 10:06:48 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1997

Error: (05/12/2017 10:06:48 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/12/2017 10:06:47 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 998

Error: (05/12/2017 10:06:47 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 998

Error: (05/12/2017 10:06:47 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (05/12/2017 07:16:26 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 5450129


Systemfehler:
=============
Error: (05/12/2017 07:16:40 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.

Error: (05/11/2017 07:12:15 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.

Error: (05/11/2017 03:16:03 PM) (Source: Virtual Disk Service) (EventID: 9) (User: )
Description: Unerwarteter Anbieterfehler. Möglicherweise kann das Problem durch erneutes Starten des Dienstes behoben werden. Fehlercode: 80004005@02000014

Error: (05/11/2017 03:15:00 PM) (Source: Virtual Disk Service) (EventID: 9) (User: )
Description: Unerwarteter Anbieterfehler. Möglicherweise kann das Problem durch erneutes Starten des Dienstes behoben werden. Fehlercode: 80004005@02000014

Error: (05/11/2017 03:14:34 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.

Error: (05/11/2017 01:47:17 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.

Error: (05/11/2017 12:05:27 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.

Error: (05/11/2017 11:26:04 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{7D1933CB-86F6-4A98-8628-01BE94C9A575}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (05/11/2017 10:16:37 AM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk3\DR3 gefunden.

Error: (05/10/2017 04:15:11 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen: 
acedrv07
cdrom


CodeIntegrity:
===================================
  Date: 2017-05-10 16:15:08.956
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\rzpnk.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2017-05-10 16:15:08.925
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\rzpnk.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2017-05-10 16:14:57.350
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2017-05-10 16:14:57.334
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2017-04-24 19:01:48.316
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\rzpnk.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2017-04-24 19:01:48.301
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\rzpnk.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2017-04-24 19:01:35.852
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2017-04-24 19:01:35.821
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\acedrv07.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2017-04-22 02:32:47.557
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\rzpnk.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2017-04-22 02:32:47.526
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume1\Windows\System32\drivers\rzpnk.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz
Prozentuale Nutzung des RAM: 46%
Installierter physikalischer RAM: 20423.12 MB
Verfügbarer physikalischer RAM: 10843.33 MB
Summe virtueller Speicher: 21733.6 MB
Verfügbarer virtueller Speicher: 11085.91 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:111.79 GB) (Free:0.99 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: (Lokaler Datenträger) (Fixed) (Total:931.51 GB) (Free:111.65 GB) NTFS
Drive e: () (Fixed) (Total:100.61 GB) (Free:13.46 GB) NTFS
Drive f: (My Passport) (Fixed) (Total:1862.98 GB) (Free:245.54 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (Size: 111.8 GB) (Disk ID: E5EC1B9F)
Partition 1: (Active) - (Size=111.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: BB8F2C62)
Partition 1: (Active) - (Size=100.6 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 1101698E)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (Size: 1863 GB) (Disk ID: 16F2A91F)

Partition: GPT.

==================== Ende von Addition.txt ============================
         

Schlechte Neuigkeiten, schmeiß mal alles runter was nicht legal erworben wurde, du hast minimal einen bekannten Crack/Keygen drauf

Hinweis:

Zitat:

Adobe Photoshop
Microsoft Office

Cracks und Keygens
Den Kopierschutz von Software zu umgehen ist nach geltendem Recht illegal. Die Logfiles deuten stark darauf hin, dass du nicht legal erworbene Software einsetzt. Zudem sind Cracks und Patches aus dubioser Quelle sehr oft mit Schädlingen versehen, womit man sich also fast vorsätzlich infiziert.

Wir haben uns hier auf dem Board darauf geeinigt, dass wir an dieser Stelle nicht weiter bereinigen, da wir ein solches Vorgehen nicht unterstützen. Hinzu kommt, dass wir dich in unserer Anleitung und auch in diesem Wichtig-Thema unmissverständlich darauf hingewiesen haben, wie wir damit umgehen werden. Saubere, gute Software hat seinen Preis und die Softwarefirmen leben von diesen Einnahmen.

Hier gibt es keine weitere Hilfe bis jegliche Art von illegaler Software vom PC entfernt wurde.

Hallo,
benötigst Du noch weiterhin Hilfe ?

Sollte ich innerhalb der nächsten 24 Stunden keine Antwort von dir erhalten, werde ich dein Thema aus meinen Abos nehmen und bekomme dadurch keine Nachricht über neue Antworten.

Das Verschwinden der Symptome bedeutet nicht, dass dein System schon sauber ist

Habe alles runtergeworfen. Problem hat sich damit gelöst. Vielen Dank.