Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1

Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1


Log-Analyse und Auswertung: Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

Thema geschlossen
Alt 11.10.2022, 15:19   #1
KlarerFall
 
Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1 - Standard

Addition.txt Teil 3


Code:
ATTFilter
4-2369679256-1001_Classes\CLSID\{D874FD9B-7010-3080-9CFD-89B546113E38}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{D8B61974-7BF7-3AFD-9405-C23CBDC2B790}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{D91889C4-53E0-3BBF-AB25-F16C619C1EEE}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{D9E6D60A-6723-3374-B038-D44A62821C0C}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{D9E73365-92C6-3CF7-A09B-1466058DC1CB}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{D9F5881E-7197-3B47-A78D-62AD9E475120}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{DA02177E-2ED2-3BF4-9A5F-EC43E24283F1}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{DB5808E8-4623-38C3-AC50-97DBC5B214DF}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{DBBC64CC-F291-3F71-8635-BAA6E9AA9CEF}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{DC749D96-C2DA-365B-B351-4293B643425C}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{DD7C2652-3670-37EA-B7B7-230DACE81957}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{DE0C912B-7901-3959-969F-66721DBC9549}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{DF59A60B-6F34-370F-BBB8-D2C83D344952}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{DFABAD55-1173-3CDA-95EA-32B74B2A94C8}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E00BCDDB-5AF8-3118-944E-3205E64F07FF}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E014DF78-D675-33B2-A507-119A8DF0DB22}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E02A19FD-075B-3234-87CB-CEDD98F593E2}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E06AC0C5-3052-3A4E-81BD-F8CD2B8FF5FE}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E0748E14-20FF-35FA-B76D-CFA176BA9FD5}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E07AF224-44B1-3A59-A564-A209198CB20F}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E0870065-4F53-3C3C-8822-BC4489C9138D}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E1195695-13CF-3A5F-AE43-1B60F7E9D6F9}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E13BF175-31AB-3C0D-91EC-B1AF58DF5489}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E199CA37-0370-363F-B1A4-01F5CA94BE7E}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E1D30491-87BD-39B9-B1B4-D5A3B53D06B5}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E1E4217E-9284-38D9-BCA0-9E56B574FED9}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E2191A4F-AD56-3955-A712-E95FC0774B80}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E2381DBF-EC55-36C9-90EC-E878EC0ABACF}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E2807947-C7E6-399F-8315-7AA8AB92D074}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E2BEA052-EFC8-3963-96B5-34E8D6AAB069}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E47D8FBE-8E77-313B-998D-403C10FD5486}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E528D915-7AFE-350B-A992-570C8A2C3FE8}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E542DC3D-E13C-3AE2-9D21-81B7EB21FA47}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E58A65F5-3649-3BF5-873A-712E8EE061AB}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E5A53A5C-75E5-36E9-A649-C06FA04AD2E6}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E677909A-1A29-3A7D-B2D1-8B17A30F9E18}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E67CE197-D7E6-32F6-A106-E0B05D16C366}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E6AB314C-9A66-3F2A-89F4-DE45F865274C}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E7174C4B-9E80-36A3-9DB4-5ACA24CCF510}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E75B7C6F-4152-3BBE-83EA-BF7002A490CC}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E7BB2460-E92D-3F11-8901-19CDD54950EB}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E7BB2A61-63C2-3C2A-AA39-AE59DCBD33CB}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E90783DC-9319-3605-B2CD-6668DF604FE4}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E941508B-B8AE-39AD-BD29-21462AA314D0}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{E94F3539-C29F-30B6-9514-2431A0AB2F81}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EA5AD393-3011-3C1F-AE5E-F480A027FA79}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EA783377-BDC9-323A-9664-348948D68163}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EB164C7D-D68A-39F2-BEEF-62E96ABEBAF4}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EBB5B7F8-DFAA-3637-BD4B-C5E0BBDA77CF}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EBC4C97F-38DE-3F2A-B46D-3961F0849F6C}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EC06E1DA-48D3-3571-9048-8B87FFC7AD1F}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EC1C5A1E-6216-3A43-834D-8376ED41EF6C}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{ECFDDD44-8D0B-3A4B-850B-9651F74242DD}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{ED3EE1BD-860C-3147-8296-7E8FBD59986D}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{ED45C661-2E32-3CF1-97C0-D3FB77A64D8C}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EDC71151-5955-3DE0-96C6-5284B3FC7322}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EE37F60C-CAE0-32B6-836D-BAB796D724AD}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EE7B0258-34A5-3E3C-821F-0FED54F177AC}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EE953480-DABB-3781-93E4-1D88300ECE1D}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EF4236FD-67F5-3438-9C0A-4782DFFB1D36}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EF9FBBB0-7DCF-3B1B-BE16-BD52E684A038}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{EFC70A2E-BF5E-3216-A4E3-C7C2DD55486A}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F0573FF2-B7F4-32E3-B450-8FA977EA91CC}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F066B3C2-0662-3F2A-B751-596A2D6EEAAC}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F11CA3BE-C363-3237-9958-23DB0F9EF556}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F2732267-EFCC-3731-9236-1A4ED49D5661}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F3BEECBC-D13E-3A5B-A8C8-DA2159D777B8}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F44D2A95-ED65-32C7-8D46-FD05887D5241}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F4C4F153-7382-336E-90A0-B4FB991C8C67}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F5025295-033A-3E4D-BDA7-DA68804E6D3E}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F5A47833-9317-3D59-AA66-BAEEF574B668}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F5C35A84-C893-348C-985D-CC5E3EA902D7}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F5F2C0FA-7DFA-3052-A4F8-D15DC7496629}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F5F91DAA-6AA2-3CFC-8149-BA16576DF42F}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F6BF992D-70BB-3199-AE86-EAE0A994944A}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F6FC9BBA-2A35-3134-96A0-ED61E4DEC0DA}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F7027409-EBB5-32F5-93F3-C598C6C06858}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F7091CE5-7F25-3965-A53E-F93405CB0F78}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F7BA916D-3EE5-3B49-9864-5C88ABC47592}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F7D56214-CBA7-3910-8DF3-7FFAD3FBB815}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F80245C0-1902-30E5-B267-B6EFE3DD27C6}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F81BB26B-395B-3A3F-94FE-80B41F9FD7D9}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F83C9960-88D4-3854-9A1D-C7BF4C045392}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F8D0AD9A-E332-3BB7-98CE-677B67D1F80D}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F90C1351-583A-3E15-A812-83887AD6B6DF}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F9191FA6-3932-344C-8C90-4680C3393481}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F92C6A05-75A4-314A-B093-7247908016B6}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{F9EEC788-96DC-3C71-A9F4-AD6322A7FF86}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FA487013-4F0E-3DCC-899E-3A9A902B0C3C}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FA4A1040-DC01-3E06-A1AD-CABD67C881C9}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FA8677EB-E76B-3C9E-AD4A-8F44045EDF12}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FAB58741-B1A8-31B7-AB26-0D6C256398C7}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FACF139B-C047-37FC-90D1-FBDC70BC718C}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FAFD0EB1-DC42-32F0-A551-B9AFD4FACB53}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FB2FA247-939C-32BB-81D6-7C6A94B004B5}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FBF9A5D4-BF01-3BD5-8FCB-6BE8625B7560}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FC34B854-72AC-386D-B201-D26321BC7866}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FC9655C4-FDAD-3F43-ADBC-3F090C9D9F04}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FCFF8954-55B9-32E0-9966-4AD9E111B9B8}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FD07E05E-F321-3218-A6D5-231BE023A8B3}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FD2B100B-DF4D-37E6-9C4D-5D8FFDCE0C9E}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FD3DAB7E-11FA-3EAD-AB7E-8CADCE816E4C}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FD9485AD-6CB2-37D7-8E7B-302CD69C6567}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FE5E8C28-06EF-391A-A1F3-9E67C2028756}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FE937708-50E5-3B7D-AB17-67A8E4BFE30E}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FEF170DB-EBE0-3C04-BED7-8BBD186D6328}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FF1CC8B9-FF32-3D9E-8B59-F39604827038}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FF6A78AF-D983-30B9-B23F-EBC238B8A58D}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FF8E8FCA-2213-3E54-A7EE-549604A87C8D}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FF971275-F59E-331D-8D43-DB4C7E3E089B}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FF982383-95C4-30BB-91AE-8781DCC0D50B}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FFDBA828-D1F7-3293-AAEC-6E8405779679}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{FFE2CF59-646E-3123-AACE-310DD0C53885}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2022-03-14] (Notepad++ -> )
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2013-11-28] (Qualcomm Atheros -> Qualcomm®Atheros®) [Datei ist nicht signiert]
ContextMenuHandlers1: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-10-24] (CyberLink -> Cyberlink)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2012-08-14] (Sony Corporation -> Sony Corporation)
ContextMenuHandlers2: [CLVDShellExt] -> {3E2A0A32-6E14-4BAD-AA87-BBB6A75EBFF2} => C:\Program Files (x86)\Common Files\CyberLink\ShellExtComponent\CLVDShellExt.dll [2012-10-24] (CyberLink -> Cyberlink)
ContextMenuHandlers2: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL -> Keine Datei
ContextMenuHandlers3: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2012-08-14] (Sony Corporation -> Sony Corporation)
ContextMenuHandlers3: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL -> Keine Datei
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2013-11-28] (Qualcomm Atheros -> Qualcomm®Atheros®) [Datei ist nicht signiert]
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-03-17] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2014-07-04] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
ContextMenuHandlers6-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2019-02-21] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [AddtoVAIOGate] -> {6988D6F2-F24F-4732-8855-A39DB1AA1346} => C:\Program Files\Sony\VAIO Gate\VAIOGateShellExt.dll [2012-08-14] (Sony Corporation -> Sony Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-03-17] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Drivers32: [msacm.l3codec] => C:\Windows\SysWOW64\l3codecp.acm [186368 2014-10-29] (Microsoft Windows -> Fraunhofer Institut Integrierte Schaltungen IIS)

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

Shortcut: C:\Users\Juergen\Desktop\parametric_30_M040.bat - Verknüpfung.lnk -> C:\W_O_E_R_N_E_R\- J - PTC\Creo\creo_work\parametric_30_M040.bat ()
Shortcut: C:\Users\Juergen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windchill CounterPart\CounterPart.lnk -> C:\W_O_E_R_N_E_R\Programme_mit_Installation\PTC\CounterPart M50\bin\counterpart.bat (Keine Datei)
Shortcut: C:\Users\Juergen\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
Shortcut: C:\Users\Public\Desktop\Firefox Developer Edition.lnk -> C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation)
ShortcutWithArgument: C:\Users\Juergen\Desktop\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Juergen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\YouTube.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) ->  --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2021-01-10 20:49 - 2021-01-10 20:49 - 000215040 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Notepad++\plugins\ComparePlugin\ComparePlugin.dll
2014-07-04 21:30 - 2014-07-04 21:30 - 000897024 _____ (Advanced Micro Devices, Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll
2014-07-04 21:30 - 2014-07-04 21:30 - 000004608 _____ (Advanced Micro Devices, Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamdeu.dll
2013-11-28 23:38 - 2013-11-28 23:38 - 000107648 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [Datei ist nicht signiert] C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll
2013-11-28 23:38 - 2013-11-28 23:38 - 000033408 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [Datei ist nicht signiert] C:\Program Files (x86)\Bluetooth Suite\CommApi.dll
2013-11-28 23:39 - 2013-11-28 23:39 - 000203392 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [Datei ist nicht signiert] C:\Program Files (x86)\Bluetooth Suite\FolderViewImpl.dll
2013-11-28 23:39 - 2013-11-28 23:39 - 000034432 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [Datei ist nicht signiert] C:\Program Files (x86)\Bluetooth Suite\ipc.dll
2013-11-28 23:39 - 2013-11-28 23:39 - 001067648 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [Datei ist nicht signiert] C:\Program Files (x86)\Bluetooth Suite\OutLookLib.dll
2013-11-28 23:39 - 2013-11-28 23:39 - 000291456 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [Datei ist nicht signiert] C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll
2013-11-28 23:39 - 2013-11-28 23:39 - 000027264 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [Datei ist nicht signiert] C:\Program Files (x86)\Bluetooth Suite\TCPConnection.dll
2013-11-28 23:39 - 2013-11-28 23:39 - 000115328 _____ (Qualcomm Atheros -> Qualcomm®Atheros®) [Datei ist nicht signiert] C:\Program Files (x86)\Bluetooth Suite\utils.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Temp:373E1720 [121]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
SearchScopes: HKLM -> DefaultScope {554DFEBF-3DC8-4E27-A860-7B615A3CC48E} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {9bb2c1cc-4a7d-4cd5-bce9-0ca5f9ff8391} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {9bb2c1cc-4a7d-4cd5-bce9-0ca5f9ff8391} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {9bb2c1cc-4a7d-4cd5-bce9-0ca5f9ff8391} URL = 
SearchScopes: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001 -> {554DFEBF-3DC8-4E27-A860-7B615A3CC48E} URL = 
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2021-03-17] (Microsoft Corporation -> Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2022-06-10] (Microsoft Corporation -> Microsoft Corporation)
BHO: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus64.dll [2014-08-12] (Eyeo GmbH -> Adblock Plus) [Datei ist nicht signiert]
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\ssv.dll [2019-02-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-02-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adblock Plus for IE Browser Helper Object -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files\Adblock Plus for IE\AdblockPlus32.dll [2014-08-12] (Eyeo GmbH -> Adblock Plus) [Datei ist nicht signiert]
Toolbar: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001 -> Kein Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} -  Keine Datei
Toolbar: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001 -> Kein Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  Keine Datei
Handler-x32: http - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-12-02] (Microsoft Corporation) [Datei ist nicht signiert]
Handler-x32: http - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-12-02] (Microsoft Corporation) [Datei ist nicht signiert]
Handler-x32: https - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-12-02] (Microsoft Corporation) [Datei ist nicht signiert]
Handler-x32: https - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-12-02] (Microsoft Corporation) [Datei ist nicht signiert]
Handler-x32: ipp - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-12-02] (Microsoft Corporation) [Datei ist nicht signiert]
Handler-x32: msdaipp - {E1D2BF42-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-12-02] (Microsoft Corporation) [Datei ist nicht signiert]
Handler-x32: msdaipp - {E1D2BF40-A96B-11D1-9C6B-0000F875AC61} - C:\PROGRA~2\COMMON~1\System\OLEDB~1\MSDAIPP.DLL [1999-12-02] (Microsoft Corporation) [Datei ist nicht signiert]
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation -> Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE restricted site: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\...\infolinks.com -> hxxp://www.infolinks.com

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2013-08-22 15:25 - 2019-01-04 18:32 - 000000847 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\AMD APP\bin\x86;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;\;C:\Program Files (x86)\Sony\VAIO Startup Setting Tool;c:\Program Files (x86)\Microsoft SQL Server\100\Tools\Binn\;c:\Program Files\Microsoft SQL Server\100\Tools\Binn\;c:\Program Files\Microsoft SQL Server\100\DTS\Binn\;C:\Program Files\Java\jdk1.7.0_71\bin\;C:\Program Files\Microsoft SQL Server\130\Tools\Binn\;C:\Program Files\Microsoft\Web Platform Installer\;C:\Program Files\dotnet\;C:\Program Files\Git\cmd;C:\Program Files (x86)\Brackets\command;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\Bin;C:\Program Files\nodejs\;C:\Program Files\PuTTY\;C:\Program Files (x86)\leJOS NXJ\bin;C:\Program Files\Microsoft VS Code\bin
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Juergen\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\pict0285.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
 ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AGSService => 2
MSCONFIG\Services: Apple Mobile Device Service => 2
MSCONFIG\Services: Avira.ServiceHost => 2
MSCONFIG\Services: AviraOptimizerHost => 2
MSCONFIG\Services: AviraPhantomVPN => 2
MSCONFIG\Services: AviraSecurity => 2
MSCONFIG\Services: AviraUpdaterService => 2
MSCONFIG\Services: Creative Audio Engine Licensing Service => 3
MSCONFIG\Services: GamesAppService => 3
MSCONFIG\Services: Garmin Device Interaction Service => 2
MSCONFIG\Services: GoogleChromeElevationService => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: SOHCImp => 3
MSCONFIG\Services: SOHDms => 3
MSCONFIG\Services: SOHDs => 3
MSCONFIG\Services: SpfService => 3
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: VAIO Event Service => 2
MSCONFIG\Services: VAIO Power Management => 3
MSCONFIG\Services: VCFw => 3
HKLM\...\StartupApproved\StartupFolder: => "Audible Download Manager.lnk"
HKLM\...\StartupApproved\StartupFolder: => "Microsoft Office.lnk"
HKLM\...\StartupApproved\Run: => "RtHDVBg"
HKLM\...\StartupApproved\Run: => "SynTPEnh"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "PMBVolumeWatcher"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "EaseUS EPM tray"
HKLM\...\StartupApproved\Run32: => "PowerDVD14Agent"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\...\StartupApproved\Run: => "GarminExpressTrayApp"
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\...\StartupApproved\Run: => "VLC Plus Player Updater"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [UDP Query User{5543C364-0BF6-47BC-8B4D-902B222C81F9}C:\program files (x86)\the royal club\skat gold edition\skat.exe] => (Block) C:\program files (x86)\the royal club\skat gold edition\skat.exe (rokapublish GmbH) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{333E1261-9D48-4F2C-8727-38C12CF00D95}C:\program files (x86)\the royal club\skat gold edition\skat.exe] => (Block) C:\program files (x86)\the royal club\skat gold edition\skat.exe (rokapublish GmbH) [Datei ist nicht signiert]
FirewallRules: [{0EC89206-559F-4B34-819E-6BBD9734F8C9}] => (Allow) LPort=3306
FirewallRules: [{70DC83C5-7BA2-4AA7-AEAE-97C4E9AD798E}] => (Allow) LPort=3306
FirewallRules: [{5EFE79C8-B126-4E95-87F4-F7D2973936C7}] => (Allow) LPort=3306
FirewallRules: [{16E2DC0F-92E8-406C-9C93-2FC116423DB6}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{8353F52B-EED2-4D91-837F-179F3C0C99E1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2753\Agent.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{785436C2-D32F-4DD8-96A8-AF85D537CAAC}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{10F9BEDE-DF67-4A04-A1E9-76FA7EEDFAC7}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{B3A02F87-F33F-4F14-BF0D-CC916E20FF34}] => (Allow) C:\Users\Juergen\Desktop\Diablo III\Diablo III.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{CD825518-8C08-4BD0-8E86-26CDBEB90B8A}] => (Allow) C:\Users\Juergen\Desktop\Diablo III\Diablo III.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{715F125B-11A8-457B-A167-51DFB861B3C1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7FF2606B-5B17-473C-8733-D15E176E215E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{4C0B22B6-3387-4272-8544-980351FA7C55}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{27F2AE22-4003-46B8-A01C-E5DFB1BC3A38}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{30346FD4-F914-4E09-BECE-00568E21F317}] => (Allow) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe (Intel® Services Manager -> Intel Corporation)
FirewallRules: [{46C8B818-48FE-4F84-BE62-1D6463E4273B}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE (CyberLink -> CyberLink Corp.)
FirewallRules: [{5AD5ED99-7334-4DA2-B411-5F9A832FC314}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [{9B99D053-FE93-4308-B0E4-2D9CCB4F6F0C}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe (McAfee, Inc. -> McAfee, Inc.)
FirewallRules: [TCP Query User{16385DDE-CEEC-4863-9BAB-11EBAB48370F}C:\users\juergen\desktop\diablo iii\diablo iii.exe] => (Block) C:\users\juergen\desktop\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{43DD1FF7-75E5-4CE7-B8C1-C82D07F9047C}C:\users\juergen\desktop\diablo iii\diablo iii.exe] => (Block) C:\users\juergen\desktop\diablo iii\diablo iii.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{5FCCD244-3D8D-4A62-8998-E22EC9F1D112}C:\program files (x86)\the royal club\skat gold edition\skat.exe] => (Block) C:\program files (x86)\the royal club\skat gold edition\skat.exe (rokapublish GmbH) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{DB8157E8-3EC0-4133-A3BF-34AE55422AC1}C:\program files (x86)\the royal club\skat gold edition\skat.exe] => (Block) C:\program files (x86)\the royal club\skat gold edition\skat.exe (rokapublish GmbH) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{3004A20A-63AE-4E62-A478-2939D995B4CB}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{2326AD2A-3FFF-4769-91F4-4FCBFDB865A0}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{956DAC03-C55C-41DF-A0DA-874C7E767EBC}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe (FileZilla Project) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{72F1B472-0387-4CA2-85E3-EF52FFB5A17D}C:\xampp\filezillaftp\filezillaserver.exe] => (Allow) C:\xampp\filezillaftp\filezillaserver.exe (FileZilla Project) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{1A222BB8-7ABF-48E2-96C9-6F8AE6A6AD90}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{553CCFC2-2E7E-4AA1-9EFE-BA495F3023A3}C:\program files (x86)\java\jre7\bin\java.exe] => (Allow) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{6E0FAF86-8399-4A17-9141-532273B065CF}C:\xampp\apache\bin\httpd.exe] => (Block) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{8EA79130-943A-4AAC-ADE2-F4D65CF99F73}C:\xampp\apache\bin\httpd.exe] => (Block) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{6BD97B3A-ADD4-4850-A94C-C5562B887BA9}C:\program files\java\jdk1.7.0_71\bin\jmc.exe] => (Block) C:\program files\java\jdk1.7.0_71\bin\jmc.exe (Oracle America, Inc. -> )
FirewallRules: [UDP Query User{0970B464-6ACE-46D4-A5D4-A213F391D18C}C:\program files\java\jdk1.7.0_71\bin\jmc.exe] => (Block) C:\program files\java\jdk1.7.0_71\bin\jmc.exe (Oracle America, Inc. -> )
FirewallRules: [TCP Query User{C8CF2281-0AC7-4FEE-A75B-2317F40B5626}C:\xampp\mercurymail\mercury.exe] => (Block) C:\xampp\mercurymail\mercury.exe (David Harris) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{EF234FEB-E40E-4A3C-A938-69616F9A33F4}C:\xampp\mercurymail\mercury.exe] => (Block) C:\xampp\mercurymail\mercury.exe (David Harris) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{CEA96C9A-A44E-468B-97D7-B73D3DF1664F}C:\windows\system32\settingsynchost.exe] => (Block) C:\windows\system32\settingsynchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{A29142E3-9FA9-42E9-BEDD-E26EE2E959B7}C:\windows\system32\settingsynchost.exe] => (Block) C:\windows\system32\settingsynchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{F39A56E9-E58D-4E4B-8654-3DC7A0A5CCF6}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\cma\bin\intelmpi\smpd-intel-4.0.3.009-x64.exe] => (Allow) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\cma\bin\intelmpi\smpd-intel-4.0.3.009-x64.exe (Intel(R) Software Products -> Intel Corporation)
FirewallRules: [UDP Query User{4914B45F-939E-42C8-807B-46C5D505EE35}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\cma\bin\intelmpi\smpd-intel-4.0.3.009-x64.exe] => (Allow) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\cma\bin\intelmpi\smpd-intel-4.0.3.009-x64.exe (Intel(R) Software Products -> Intel Corporation)
FirewallRules: [TCP Query User{E73C082D-5BD7-4D9E-A078-52683EA3771C}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\nms\nmsd.exe] => (Allow) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\nms\nmsd.exe (PTC Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{AFC3F061-5624-4C9F-8AA3-F12138DA2AB5}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\nms\nmsd.exe] => (Allow) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\nms\nmsd.exe (PTC Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{E50A78A5-D439-43D3-936B-003EAA396947}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\xtop.exe] => (Allow) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\xtop.exe (PTC Inc. -> PTC Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{0598732A-29E8-4A20-AD50-C7C0FAA196C2}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\xtop.exe] => (Allow) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\xtop.exe (PTC Inc. -> PTC Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{0A50A314-1C6B-448F-886B-23605CAFA69A}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\pro_comm_msg.exe] => (Allow) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\pro_comm_msg.exe (PTC Inc. -> PTC Inc.)
FirewallRules: [UDP Query User{F6F74EAC-9A3B-4A83-B9C7-289F9C4B0479}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\pro_comm_msg.exe] => (Allow) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\pro_comm_msg.exe (PTC Inc. -> PTC Inc.)
FirewallRules: [{7A587AE2-3256-4676-B8BA-DF9FD3B212AB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B891D10D-DB8D-4602-BFC4-C056FEE63DDA}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{D979BC04-CDF7-4AC9-9D30-673BB7256B22}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [UDP Query User{80463DAF-46FD-4F5D-99BE-AA915B5A5041}C:\program files\nodejs\node.exe] => (Allow) C:\program files\nodejs\node.exe (Node.js Foundation -> Node.js)
FirewallRules: [TCP Query User{C83F2120-A1C0-4AF3-BDD6-C6B4EBDE9937}C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe] => (Allow) C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe
FirewallRules: [UDP Query User{761B44D2-3B12-47DA-814E-6CF097820865}C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe] => (Allow) C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe
FirewallRules: [TCP Query User{D71B6A29-4917-40CF-BED2-6113FCF14049}C:\windows\system32\settingsynchost.exe] => (Block) C:\windows\system32\settingsynchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [UDP Query User{ED458854-9214-4EB9-83AF-108A6488C92C}C:\windows\system32\settingsynchost.exe] => (Block) C:\windows\system32\settingsynchost.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{0D1DC222-923E-45B2-A6B5-ABE782AAC8F3}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\mcp_applet_async.exe] => (Block) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\mcp_applet_async.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{00F0AF47-1AF9-485F-AB67-3C6F8FB39E39}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\mcp_applet_async.exe] => (Block) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\mcp_applet_async.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{E1CEC02B-F550-44E8-8D63-E35BF5D370BD}C:\users\juergen\desktop\diablo iii\x64\diablo iii64.exe] => (Block) C:\users\juergen\desktop\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{8FDBBAFB-5949-44AA-A64B-D92672DA740B}C:\users\juergen\desktop\diablo iii\x64\diablo iii64.exe] => (Block) C:\users\juergen\desktop\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{46B107AE-623C-4046-8A8C-7FEE3733BAB3}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [UDP Query User{3CC587D6-7C23-4D4F-BB07-2E08743CB742}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [TCP Query User{303CD9A0-DB18-4880-98BC-E467425257FB}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [UDP Query User{9BDAA3A9-6261-49DD-A30E-3DC365E1FA45}C:\program files (x86)\brackets\node.exe] => (Allow) C:\program files (x86)\brackets\node.exe (Adobe Systems Incorporated -> Node.js)
FirewallRules: [TCP Query User{4926A7CF-9F03-49E4-9C4A-CCE5BF47CFCE}C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe] => (Block) C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe
FirewallRules: [UDP Query User{BD7C6852-0B3D-4207-B0B9-05A54B7CBC3F}C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe] => (Block) C:\program files\netbeans 8.1\bin\jre\bin\javaw.exe
FirewallRules: [TCP Query User{696915B9-AD47-4DB0-9C50-FFA857092755}C:\users\juergen\desktop\diablo iii\x64\diablo iii64.exe] => (Allow) C:\users\juergen\desktop\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{9757E27D-2844-4C65-84DA-E65E718A7D1F}C:\users\juergen\desktop\diablo iii\x64\diablo iii64.exe] => (Allow) C:\users\juergen\desktop\diablo iii\x64\diablo iii64.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{5B16AD93-B0D4-45ED-B2C6-5DCD47591313}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\nms\nmsd.exe] => (Block) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\nms\nmsd.exe (PTC Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{A1A5490D-3AF0-44B9-9C82-E07C76E753B3}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\nms\nmsd.exe] => (Block) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\nms\nmsd.exe (PTC Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{2ED64260-19D1-4EDA-A7B2-CB8917B78ED6}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\xtop.exe] => (Block) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\xtop.exe (PTC Inc. -> PTC Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{A6A0F24E-DCAA-4EF9-A24F-EA7470509C35}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\xtop.exe] => (Block) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\xtop.exe (PTC Inc. -> PTC Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{FFDD7E9B-36E0-48A1-A919-49AF787E8A89}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\pro_comm_msg.exe] => (Block) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\pro_comm_msg.exe (PTC Inc. -> PTC Inc.)
FirewallRules: [UDP Query User{FEBD6D51-4227-4D01-A4F5-0A6B9943EBFA}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\pro_comm_msg.exe] => (Block) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\pro_comm_msg.exe (PTC Inc. -> PTC Inc.)
FirewallRules: [TCP Query User{3214E9D1-470C-454A-9DDF-6252CD3C9557}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\mcp_applet_async.exe] => (Block) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\mcp_applet_async.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{D935DFC2-69D9-437D-9059-D76715081F08}C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\mcp_applet_async.exe] => (Block) C:\program files\ptc\creo 3.0\m040\common files\x86e_win64\obj\mcp_applet_async.exe () [Datei ist nicht signiert]
FirewallRules: [{75EEF644-415F-4F9D-A811-38665A3324D9}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{DADCC86D-71EE-4518-9642-E620C2C4A8C5}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{3B585A23-8609-490C-A71F-204A8D181997}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{94378F2A-CA43-4E72-AFA9-495E0D49DCC5}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{90FF313C-F5A1-444E-8A52-27A24C0CD1FA}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{9A09D529-DC9E-4E89-B410-DC9691AA2794}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{62B82664-1564-4442-AA16-2EDB1755185B}] => (Allow) C:\Program Files\Firefox Developer Edition\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{FD0C6148-E7CC-4784-A7F9-952FBE904A2F}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{E73867AD-ED44-4815-8F7C-9FA2F0004E5D}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{D265F23F-DBB6-40D5-89DA-AA2CAFF1F3CD}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{2863FF54-4E05-40FF-BA30-AB8138057443}] => (Allow) C:\Program Files (x86)\Apowersoft\Video Converter Studio\Video Converter Studio.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{6657187F-54DE-4936-A19B-757B8DF31DB3}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{085807BE-BA2E-4421-8C28-721C7BFC1ACE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{A0CB12A2-E7B0-4C03-9B80-3EA35F18481C}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{6FAFCCED-DF5C-46D5-A271-2E115DAC65D3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{43FF6603-855E-4016-8380-5AA964C48313}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deponia\deponia.exe (Daedalic Entertainment GmbH) [Datei ist nicht signiert]
FirewallRules: [{973006DB-3127-4401-B31A-209FCA4DF4DB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Deponia\deponia.exe (Daedalic Entertainment GmbH) [Datei ist nicht signiert]
FirewallRules: [{DF39EED0-8A5C-4A42-ADDD-2D5F2A586D5F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Chaos on Deponia\deponia2.exe (Daedalic Entertainment GmbH) [Datei ist nicht signiert]
FirewallRules: [{78421FE4-4A00-4BFD-9827-08492EC7EAC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Chaos on Deponia\deponia2.exe (Daedalic Entertainment GmbH) [Datei ist nicht signiert]
FirewallRules: [{F5A912C3-0972-439A-A74A-A02356AF4281}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Chaos on Deponia\VisionaireConfigurationTool.exe (Daedalic Entertainment) [Datei ist nicht signiert]
FirewallRules: [{3676A716-504E-4F70-8D31-6ED27C57BE31}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Chaos on Deponia\VisionaireConfigurationTool.exe (Daedalic Entertainment) [Datei ist nicht signiert]
FirewallRules: [{FF8DC39B-7D4A-45B7-9C05-9FF97E9EB5FE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [Datei ist nicht signiert]
FirewallRules: [{5ED36E52-744E-4BA1-AAB3-13A7554AEACB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Life Is Strange\Binaries\Win32\LifeIsStrange.exe (DONTNOD Entertainment) [Datei ist nicht signiert]
FirewallRules: [{E9F49080-52E5-4085-B855-30368A88E3D4}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{9272E365-F003-46A9-A070-56F36E0122E7}C:\eclispe_neon\eclipse\eclipse.exe] => (Allow) C:\eclispe_neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{5FC0410E-6355-4CCC-AD48-8CE8D90D70DD}C:\eclispe_neon\eclipse\eclipse.exe] => (Allow) C:\eclispe_neon\eclipse\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{DB17224E-3E1B-4540-8F60-F2099B47D29E}D:\dcmview\teamview.exe] => (Block) D:\dcmview\teamview.exe => Keine Datei
FirewallRules: [UDP Query User{9358CF60-47A7-4A66-AE1F-46DE548010B8}D:\dcmview\teamview.exe] => (Block) D:\dcmview\teamview.exe => Keine Datei
FirewallRules: [{A66C47FB-8B3E-460D-8EBD-A09EF364DCBC}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\DeviceSetup.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{4217E8CE-471C-4E26-85AA-9542E077B448}] => (Allow) LPort=5357
FirewallRules: [{8E73A632-04C1-4A77-AEFD-2514BE142E89}] => (Allow) C:\Program Files\HP\HP Deskjet 2540 series\Bin\HPNetworkCommunicatorCom.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [TCP Query User{D83A9C17-4906-4CA4-AD27-0AA17000C85F}C:\ac6\systemworkbench\eclipse.exe] => (Allow) C:\ac6\systemworkbench\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{2470F559-485D-4E58-B229-C84642FA0EA3}C:\ac6\systemworkbench\eclipse.exe] => (Allow) C:\ac6\systemworkbench\eclipse.exe () [Datei ist nicht signiert]
FirewallRules: [{D73D0897-DDCB-4B70-839D-27CD44A8D696}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAgent.exe (Sony Corporation -> Sony Corporation)
FirewallRules: [{D5A7F084-038D-4635-8548-B7339DDEF767}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAdmin.exe (Sony Corporation -> Sony Corporation)
FirewallRules: [{C6FA8D85-7F87-4E19-9413-DAD05A3B717A}] => (Allow) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe (Sony Corporation -> Sony Corporation)
FirewallRules: [{584CFF17-AC6A-4FB4-95E5-FDB12E635A81}] => (Allow) C:\Program Files\Sony\VAIO Care\VAIOShell.exe (Sony Corporation -> Sony Corporation)
FirewallRules: [{B8983684-C659-47E8-9CBB-51212E348480}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FAR Lone Sails\Game\FarLoneSails.exe () [Datei ist nicht signiert]
FirewallRules: [{97ED7A6D-F0E7-40D4-BE8D-5D69E3A03FDA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\FAR Lone Sails\Game\FarLoneSails.exe () [Datei ist nicht signiert]
FirewallRules: [{D286607E-FFFA-49F4-8E7B-1D7857DFA4E6}] => (Allow) LPort=12972
FirewallRules: [{B8ACF4DF-5D50-4321-9C21-3ECA03E30D97}] => (Allow) LPort=14714
FirewallRules: [{2EB07863-38FE-40E3-B7D9-6BBEBA95D454}] => (Allow) LPort=31931
FirewallRules: [{95F070D1-BE4A-4140-BFCC-A136412362E7}] => (Allow) C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe (Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{BB8A2F29-5C2A-4F27-86FC-ED8D23EE0F68}] => (Allow) C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Civilization4.exe (Firaxis Games) [Datei ist nicht signiert]
FirewallRules: [{451D6FE5-1D67-45D4-A077-0609C2916071}] => (Allow) C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword.exe (Take-Two Interactive Software, Inc. -> Firaxis Games)
FirewallRules: [{BC6AE665-98A6-481B-B376-A55861A5108F}] => (Allow) C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword.exe (Take-Two Interactive Software, Inc. -> Firaxis Games)
FirewallRules: [{11302CFA-98FC-4EFC-B724-58B5AF846168}] => (Allow) C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword_PitBoss.exe (Take-Two Interactive Software, Inc. -> Firaxis Games)
FirewallRules: [{E21CD0F1-868A-4895-98D1-355AF9A61680}] => (Allow) C:\Program Files (x86)\Firaxis Games\Sid Meier's Civilization 4\Beyond the Sword\Civ4BeyondSword_PitBoss.exe (Take-Two Interactive Software, Inc. -> Firaxis Games)
FirewallRules: [TCP Query User{8A26C298-8E35-4275-A4BB-7CF8CB1A38E3}C:\users\juergen\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\juergen\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{B5FF40E4-C991-4076-A37F-6C52E8AA4E65}C:\users\juergen\appdata\local\programs\opera\opera.exe] => (Allow) C:\users\juergen\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [TCP Query User{77C6914E-7CA7-48A4-A2F3-B4889E367A54}C:\users\juergen\appdata\local\programs\opera\opera.exe] => (Block) C:\users\juergen\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [UDP Query User{78A6AB87-8668-45C5-A478-14C729E5D4B2}C:\users\juergen\appdata\local\programs\opera\opera.exe] => (Block) C:\users\juergen\appdata\local\programs\opera\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{99A19C7D-0F90-4280-A201-6A46DBC604A3}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe => Keine Datei
FirewallRules: [{02AA098C-F585-4888-99D9-151D76B8D369}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe => Keine Datei
FirewallRules: [{2736A0B9-E173-4EFD-96F1-31C54CDC9CF5}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe => Keine Datei
FirewallRules: [TCP Query User{6B758A36-6A54-4CCA-8F53-91EC99740FB7}C:\program files\arduino ide\resources\app\node_modules\arduino-ide-extension\build\arduino-cli.exe] => (Allow) C:\program files\arduino ide\resources\app\node_modules\arduino-ide-extension\build\arduino-cli.exe (Arduino SA -> )
FirewallRules: [UDP Query User{02645570-BCF7-4006-BE3E-D602A620297E}C:\program files\arduino ide\resources\app\node_modules\arduino-ide-extension\build\arduino-cli.exe] => (Allow) C:\program files\arduino ide\resources\app\node_modules\arduino-ide-extension\build\arduino-cli.exe (Arduino SA -> )
FirewallRules: [TCP Query User{032617B8-775E-4006-B180-5DAAD16A8653}C:\program files\arduino ide\arduino ide.exe] => (Allow) C:\program files\arduino ide\arduino ide.exe (Arduino SA -> Arduino SA)
FirewallRules: [UDP Query User{CF613A39-6C8F-4154-ABA1-13F54285A7C5}C:\program files\arduino ide\arduino ide.exe] => (Allow) C:\program files\arduino ide\arduino ide.exe (Arduino SA -> Arduino SA)
FirewallRules: [TCP Query User{B38B5CBF-8002-454F-8B95-255C856FBE89}C:\users\juergen\appdata\local\arduino15\packages\builtin\tools\mdns-discovery\1.0.2\mdns-discovery.exe] => (Block) C:\users\juergen\appdata\local\arduino15\packages\builtin\tools\mdns-discovery\1.0.2\mdns-discovery.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{06155072-D498-4CDA-900C-35CFD7D4E49A}C:\users\juergen\appdata\local\arduino15\packages\builtin\tools\mdns-discovery\1.0.2\mdns-discovery.exe] => (Block) C:\users\juergen\appdata\local\arduino15\packages\builtin\tools\mdns-discovery\1.0.2\mdns-discovery.exe () [Datei ist nicht signiert]
FirewallRules: [{2E8839BF-E94A-449A-9C0C-9AD65B70806E}] => (Allow) C:\Users\Juergen\AppData\Local\Programs\Opera\90.0.4480.84\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{60014D37-C215-4B3D-80F5-3FF0A03FD203}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{B215D211-D6DE-4244-9EAE-F90ED14BDA8A}] => (Allow) C:\Users\Juergen\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{8E7544F2-B2DB-4DE4-B1F2-158606A50CFF}] => (Allow) C:\Users\Juergen\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{7F811FED-CD59-4703-8CB7-4BCA302D1D08}] => (Allow) C:\Users\Juergen\AppData\Roaming\Zoom\bin\airhost.exe => Keine Datei
FirewallRules: [{BB497937-3619-4CB0-95D1-560D3C2BA620}] => (Allow) C:\Users\Juergen\AppData\Local\Programs\Opera\91.0.4516.65\opera.exe (Opera Norway AS -> Opera Software)
FirewallRules: [{13BA1080-A89C-40E6-8849-373A39867399}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\106.0.1370.37\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)

==================== Wiederherstellungspunkte =========================

07-10-2022 19:37:15 Wiederherstellungsvorgang
10-10-2022 07:32:54 Removed Avira Software Updater
10-10-2022 07:35:48 Wiederherstellungsvorgang
10-10-2022 13:02:41 vor avira download

==================== Fehlerhafte Geräte im Gerätemanager ============


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (10/11/2022 11:20:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1110

Error: (10/11/2022 11:20:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1110

Error: (10/11/2022 11:20:04 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/11/2022 08:09:03 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 1078

Error: (10/11/2022 08:09:03 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 1078

Error: (10/11/2022 08:09:03 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (10/11/2022 07:46:25 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: YOGI_SONY)
Description: Bei der Aktivierung der App „microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1“ ist folgender Fehler aufgetreten: -2144927142. Weitere Informationen finden Sie im Protokoll „Microsoft-Windows-TWinUI/Betriebsbereit“.

Error: (10/11/2022 07:46:25 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm LiveComm.exe, Version 17.5.9600.22013 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: 11cc

Startzeit: 01d8dd34c7e420b9

Endzeit: 4294967295

Anwendungspfad: C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.22013_x64__8wekyb3d8bbwe\LiveComm.exe

Berichts-ID: 05ae88ca-4928-11ed-8075-5453ed3b9661

Vollständiger Name des fehlerhaften Pakets: microsoft.windowscommunicationsapps_17.5.9600.22013_x64__8wekyb3d8bbwe

Anwendungs-ID, die relativ zum fehlerhaften Paket ist: ppleae38af2e007f4358a809ac99a64a67c1


Systemfehler:
=============
Error: (10/11/2022 11:46:12 AM) (Source: DCOM) (EventID: 10010) (User: YOGI_SONY)
Description: Der Server "{BB6DF56B-CACE-11DC-9992-0019B93A3A84}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/11/2022 11:44:12 AM) (Source: DCOM) (EventID: 10010) (User: YOGI_SONY)
Description: Der Server "{1ECCA34C-E88A-44E3-8D6A-8921BDE9E452}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (10/11/2022 11:27:58 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "VCService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/11/2022 11:27:58 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) ME Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/11/2022 11:27:58 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Management and Security Application User Notification Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/11/2022 11:27:58 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "WD Drive Manager" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/11/2022 11:27:58 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Adobe Acrobat Update Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (10/11/2022 11:27:54 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Creative Audio Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.


Windows Defender:
================
Date: 2021-03-03 18:17:33.029
Description: 
Die Windows Defender-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {49436365-DB15-438E-969A-8F4CC752386E}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: Yogi_Sony\Juergen
Event[0]:

Date: 2022-10-10 21:32:05.849
Description: 
Fehler von Windows Defender beim Aktualisieren von Signaturen.
Neue Signaturversion: 
Vorherige Signaturversion: 1.375.1628.0
Updatequelle: Microsoft Center zum Schutz vor Schadsoftware
Signaturtyp: AntiSpyware
Updatetyp: Voll
Benutzer: Yogi_Sony\Juergen
Aktuelle Modulversion: 
Vorherige Modulversion: 1.1.19600.3
Fehlercode: 0x800705b4
Fehlerbeschreibung: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. 

Date: 2022-10-10 21:32:05.849
Description: 
Fehler von Windows Defender beim Aktualisieren von Signaturen.
Neue Signaturversion: 
Vorherige Signaturversion: 1.375.1628.0
Updatequelle: Microsoft Center zum Schutz vor Schadsoftware
Signaturtyp: AntiVirus
Updatetyp: Voll
Benutzer: Yogi_Sony\Juergen
Aktuelle Modulversion: 
Vorherige Modulversion: 1.1.19600.3
Fehlercode: 0x800705b4
Fehlerbeschreibung: Dieser Vorgang wurde wegen Zeitüberschreitung zurückgegeben. 

Date: 2020-04-20 22:10:48.919
Description: 
Fehler von Windows Defender beim Aktualisieren von Signaturen.
Neue Signaturversion: 
Vorherige Signaturversion: 1.311.532.0
Updatequelle: Microsoft Update-Server
Signaturtyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: 
Vorherige Modulversion: 1.1.16800.2
Fehlercode: 0x80070643
Fehlerbeschreibung: Schwerwiegender Fehler bei der Installation. 

Date: 2020-04-20 22:10:48.705
Description: 
Fehler von Windows Defender beim Aktualisieren von Signaturen.
Neue Signaturversion: 
Vorherige Signaturversion: 
Updatequelle: Benutzer
Signaturtyp: 
Updatetyp: 
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: 
Vorherige Modulversion: 
Fehlercode: 0x80070652
Fehlerbeschreibung: Es wird bereits anderweitig eine Installation ausgeführt. Beenden Sie den anderen Installationsvorgang, bevor Sie diese Installation fortsetzen. 

Date: 2017-12-27 17:45:20.431
Description: 
Fehler des Windows Defender-Echtzeitschutz-Features.
Feature: Bei Zugriff
Fehlercode: 0x80070057
Fehlerbeschreibung: Falscher Parameter. 
Ursache: Die Antischadsoftware wurde aus unbekanntem Grund beendet. Möglicherweise kann das Problem durch einen Neustart des Diensts behoben werden.

==================== Speicherinformationen =========================== 

BIOS: Insyde Corp. R0170D6 03/13/2012
Hauptplatine: Sony Corporation VAIO
Prozessor: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 38%
Installierter physikalischer RAM: 8139.28 MB
Verfügbarer physikalischer RAM: 5039.62 MB
Summe virtueller Speicher: 12491.28 MB
Verfügbarer virtueller Speicher: 8301.48 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:895.56 GB) (Free:316.13 GB) (Model: ST1000LM024 HN-M101MBB) NTFS

\\?\Volume{f4731265-9211-4593-b9c2-2dd4a97e2687}\ (Windows RE tools) (Fixed) (Total:1.44 GB) (Free:0.74 GB) NTFS
\\?\Volume{7e5eb1af-2f18-4e76-ba27-ef813093a59e}\ () (Fixed) (Total:0.44 GB) (Free:0.11 GB) NTFS
\\?\Volume{f1deca0d-0268-4fc2-bd14-58cf7c82e2f7}\ (Recovery) (Fixed) (Total:33.44 GB) (Free:3.11 GB) NTFS

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 91340CC0)

Partition: GPT.

==================== Ende von Addition.txt =======================

Alt 11.10.2022, 17:06   #2
M-K-D-B
/// TB-Ausbilder
 
Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1 - Standard

Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1


Servus,


da wurde schon einiges gelöscht.


Wir machen weiter mit einem FRST-Fix und einer anschließenden Kontrolle mit FRST.
Der Fix wird etwas dauern (>>10 min), da wir auch gleich noch alle Systemdateien überprüfen und ggf. reparieren (soweit möglich).







Schritt 1
WARNUNG AN ALLE MITLESER !!!
Dieses FRST-Script ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System verwendet werden!
  • Speichere deine Arbeiten und schließe alle offenen Programme, damit keine Daten verloren gehen.
  • Kopiere den gesamten Inhalt der folgenden Code-Box:
    Code:
    ATTFilter
    Start::
SystemRestore: On 
CreateRestorePoint:
CloseProcesses:
HKLM\...\Run: [] => [X]
HKLM\...\Run: [WindowsDefender] => "%ProgramFiles%\Windows Defender\MSASCuiL.exe" (Keine Datei)
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\...\Run: [VLC Plus Player Updater] => C:\Users\Juergen\AppData\Local\VLC Plus Player Updater\Updater.exe [202056 2022-01-23] (Aller Media e.K. -> ) <==== ACHTUNG
c:\Users\Juergen\AppData\Local\VLC Plus Player Updater
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\...\Run: [] => [X]
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\...\MountPoints2: {48a07732-32e9-11e4-be9e-5453ed3b9661} - "G:\launcher.exe" 
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\...\MountPoints2: {ab02f377-672b-11e6-bf40-5453ed3b9661} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-18\...\RunOnce: [{90140000-001C-0000-1000-0000000FF1CE}] => C:\WINDOWS\system32\cmd.exe /C del "C:\ProgramData\Microsoft Help\Rgstrtn.lck" /Q /A:H (Keine Datei)
Folder: C:\ProgramData\Microsoft Help
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
Task: {094CD275-5C71-4753-B57E-5566CA859498} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0AA0D8DC-B687-40A3-8E45-27ADD1D9E67D} - \Microsoft_Hardware_Launch_rundll32_exe -> Keine Datei <==== ACHTUNG
Task: {0CE6A45C-874F-40BF-9084-74F9E1228310} - System32\Tasks\{85B9C296-77C4-4AE6-B883-8CB1BE430945} => C:\WINDOWS\system32\pcalua.exe -a C:\Users\Juergen\AppData\Roaming\istartsurf\UninstallManager.exe -c -ptid=smt
Task: {0F6DBBD1-1FA5-490B-A482-1F43FCC689E6} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {12219B30-FA6B-4682-A893-F6B14A984E6A} - kein Dateipfad
Task: {251B68B5-4450-4EE2-B884-823F47FD49BD} - System32\Tasks\{87CB7A52-DB6D-4BE7-8FF7-0B4C0B311A49} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\Wajam\uninstall.exe"
Task: {2FFACF0F-AD2C-41F5-A105-D42026728035} - \ASVCI -> Keine Datei <==== ACHTUNG
Task: {6F1CA3AD-5528-4243-A9D6-EB2D954B25B8} - System32\Tasks\{2ABB38EA-2992-4993-ACC7-1101A1D5FE9F} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Juergen\Downloads\AudibleDM_iTunesSetup (2).exe" -d C:\Users\Juergen\Downloads
Task: {744182D8-D005-4D10-B0BA-A66AB855E40D} - System32\Tasks\Health-Check-deep => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe -deepscan (Keine Datei)
C:\Program Files (x86)\Innovative Solutions
Task: {87AF006E-39F4-4D18-A6A9-0ED623046A0F} - System32\Tasks\AupAvUpdate => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\updAvTask.exe -UPDATE (Keine Datei)
Task: {8B6759EE-1C08-4B8F-955C-774AB5A6544E} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {91B6BB43-F064-481D-B5FA-0C8A3C1AD937} - System32\Tasks\UninstallMonitor => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\uninstaller.exe -AUSCAN (Keine Datei)
Task: {A63F9836-FF21-4B4E-9587-EB935C3EEFD5} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-04-14] (Adobe Inc. -> Adobe)
Task: {B29661EA-B963-4C05-AE19-9DB27EC346FB} - System32\Tasks\{9333F64A-06B8-4C00-BAF8-AF626E5E3587} => C:\WINDOWS\system32\pcalua.exe -a "C:\Users\Juergen\Downloads\AudibleDM_iTunesSetup (1).exe" -d C:\Users\Juergen\Downloads
Task: {C6CD4539-F5C3-4F88-89F9-05DB003DE0C3} - System32\Tasks\{E585DAC8-AAE3-4263-8069-0BE66C3A331A} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.10.60.104/de/abandoninstall?page=tsMain
Task: {C9DCF59E-6B97-4C0C-8641-B8261089C8CA} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {D4802B20-3500-4646-9B26-B7DE78AA6E85} - System32\Tasks\Sony Corporation\VAIO Care\UpdateContacts => C:\ProgramData\Sony Corporation\VAIO Care\UpdateContacts.exe taskschedule (Keine Datei)
Task: {DB21EF32-6BA9-4118-BBC1-BC4FF48961E5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {EBD4BF5D-7D44-44D8-9393-4C045FC9334E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_363_Plugin.exe [1458232 2020-04-14] (Adobe Inc. -> Adobe)
Task: {F68CA106-ED3C-43FC-90BF-2BA23C597572} - System32\Tasks\Health-Check => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe -scan (Keine Datei)
Task: C:\WINDOWS\Tasks\ARHFCC.job => C:\Users\Juergen\AppData\Roaming\ARHFCC.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\ASVCI.job => C:\Users\Juergen\AppData\Roaming\ASVCI.exe <==== ACHTUNG
Task: C:\WINDOWS\Tasks\Health-Check-deep.job => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
Task: C:\WINDOWS\Tasks\Health-Check.job => C:\Program Files (x86)\Innovative Solutions\Advanced Uninstaller PRO\healthcheck.exe
C:\Users\Juergen\AppData\Roaming\ARHFCC.exe
C:\Users\Juergen\AppData\Roaming\ASVCI.exe
HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\3: <==== ACHTUNG (Beschränkung - Zones)
ProxyEnable: [.DEFAULT] => Proxy ist aktiviert.
ProxyServer: [.DEFAULT] => http=127.0.0.1:52681;https=127.0.0.1:52681
FF Extension: (Avast SafePrice | Vergleich, Angebote, Gutscheine) - C:\Users\Juergen\AppData\Roaming\Mozilla\Firefox\Profiles\d46imrcb.dev-edition-default\Extensions\sp@avast.com.xpi [2021-04-27]
FF Extension: (Avast Online Security) - C:\Users\Juergen\AppData\Roaming\Mozilla\Firefox\Profiles\d46imrcb.dev-edition-default\Extensions\wrc@avast.com.xpi [2021-04-27]
CHR HomePage: Default -> hxxps://de.search.yahoo.com/?type=715483&fr=yo-yhp-ch
CHR StartupUrls: Default -> "hxxp://google.de/"
CHR DefaultSearchKeyword: Default -> google.de_
OPR Notifications: Opera Stable -> hxxps://www.flirt4fuck.com; hxxps://www.manomano.de; hxxps://www.youtube.com; hxxps://www80.hattrick.org; hxxps://www83.hattrick.org; hxxps://www84.hattrick.org
S2 InstallerService; C:\Program Files\TrueKey\Mcafee.TrueKey.InstallerService.exe [X]
S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X]
S3 semav6thermal64ro; \??\C:\WINDOWS\system32\drivers\semav6thermal64ro.sys [X]
S3 SWDUMon; \SystemRoot\system32\DRIVERS\SWDUMon.sys [X]
2022-10-04 18:59 - 2022-10-04 18:59 - 005960536 _____ (Avira Operations GmbH & Co. KG) C:\Users\Juergen\Downloads\avira_de_sptl1_728604575-1664902718__phpws-spotlight-release.exe
2022-10-10 08:04 - 2020-04-20 22:27 - 000000000 ____D C:\Program Files (x86)\Avira
2014-09-01 10:18 - 2014-09-01 10:18 - 000002086 _____ () C:\Users\Juergen\AppData\Roaming\ARHFCC
2014-09-01 10:18 - 2014-09-01 10:18 - 000001248 _____ () C:\Users\Juergen\AppData\Roaming\ASVCI
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ContextMenuHandlers2: [ContextMenu] -> {ee10d625-cc60-30a4-b3df-4b349785be6b} => C:\Program Files (x86)\Avira\Security\Antivirus.ContextMenu\Antivirus.ContextMenu.DLL -> Keine Datei
AlternateDataStreams: C:\ProgramData\Temp:373E1720 [121]
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.com/?bcutc=sp-006
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = 
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = 
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
HKU\S-1-5-21-1111762605-3097862284-2369679256-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
SearchScopes: HKLM -> DefaultScope {554DFEBF-3DC8-4E27-A860-7B615A3CC48E} URL = 
SearchScopes: HKU\.DEFAULT -> DefaultScope {9bb2c1cc-4a7d-4cd5-bce9-0ca5f9ff8391} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {9bb2c1cc-4a7d-4cd5-bce9-0ca5f9ff8391} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {9bb2c1cc-4a7d-4cd5-bce9-0ca5f9ff8391} URL = 
SearchScopes: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001 -> {554DFEBF-3DC8-4E27-A860-7B615A3CC48E} URL = 
Toolbar: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001 -> Kein Name - {8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} -  Keine Datei
Toolbar: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001 -> Kein Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} -  Keine Datei

startpowershell:
Set-Service -Name "BITS" -StartupType Manual -Verbose
Set-Service -Name "Dhcp" -StartupType Automatic -Verbose
Set-Service -Name "EventLog" -StartupType Automatic -Verbose
Set-Service -Name "EventSystem" -StartupType Automatic -Verbose
Set-Service -Name "nsi" -StartupType Automatic -Verbose
Set-Service -Name "RasMan" -StartupType Manual -Verbose
Set-Service -Name "SDRSVC" -StartupType Manual -Verbose
Set-Service -Name "SstpSvc" -StartupType Manual -Verbose
Set-Service -Name "TrustedInstaller" -StartupType Manual -Verbose
Set-Service -Name "VSS" -StartupType Manual -Verbose
Set-Service -Name "Winmgmt" -StartupType Automatic -Verbose
Set-Service -Name "wuauserv" -StartupType Manual -Verbose

Set-MpPreference -DisableAutoExclusions $true -Force
set-mppreference -mapsreporting basic -Force
set-mppreference -DisableRealtimeMonitoring $false -Force
set-mppreference -DisablePrivacyMode $true -Force
set-mppreference -DisableIOAVProtection $false -Force
set-mppreference -CheckForSignaturesBeforeRunningScan $true -Force
set-mppreference -PUAProtection enabled -Force
Set-MpPreference -DisableBehaviorMonitoring $false -Force
Set-MpPreference -SignatureScheduleDay Everyday -force
set-mppreference -RealTimeProtectionEnabled $true -force
set-mppreference -OnAccessProtectionEnabled $true -force

Function Remove-all-windefend-excludes {
$Paths=(Get-MpPreference).ExclusionPath
$Extensions=(Get-MpPreference).ExclusionExtension
$Processes=(Get-MpPreference).ExclusionProcess
foreach ($Path in $Paths) { Remove-MpPreference -ExclusionPath $Path -force}
foreach ($Extension in $Extensions) { Remove-MpPreference -ExclusionExtension $Extension -force}
foreach ($Process in $Processes) { Remove-MpPreference -ExclusionProcess $Process -force}
}
Set-MpPreference -DisableAutoExclusions $true -Force
Remove-all-windefend-excludes
endpowershell:

CMD: WMIC SERVICE WHERE Name="dcomlaunch" set startmode="auto"
CMD: WMIC SERVICE WHERE Name="nsi" set startmode="auto"
CMD: WMIC SERVICE WHERE Name="dhcp" set startmode="auto"
CMD: WMIC SERVICE WHERE Name="rpcss" set startmode="auto"
CMD: WMIC SERVICE WHERE Name="rpceptmapper" set startmode="auto"
CMD: WMIC SERVICE WHERE Name="winmgmt" set startmode="auto"
CMD: WMIC SERVICE WHERE Name="sdrsvc" set startmode="manual"
CMD: WMIC SERVICE WHERE Name="vss" set startmode="manual"
CMD: WMIC SERVICE WHERE Name="eventlog" set startmode="auto"
CMD: WMIC SERVICE WHERE Name="bfe" set startmode="auto"
CMD: WMIC SERVICE WHERE Name="eventsystem" set startmode="auto"
CMD: WMIC SERVICE WHERE Name="msiserver" set startmode="manual"
CMD: WMIC SERVICE WHERE Name="sstpsvc" set startmode="manual"
CMD: WMIC SERVICE WHERE Name="rasman" set startmode="manual"
CMD: WMIC SERVICE WHERE Name="trustedinstaller" set startmode="auto"
CMD: net start sdrsvc
CMD: net start vss
CMD: net start rpcss
CMD: net start eventsystem
CMD: net start winmgmt
CMD: net start msiserver
CMD: net start bfe
CMD: net start trustedinstaller
CMD: WMIC SERVICE WHERE Name="windefend" CALL ChangeStartMode "automatic"
CMD: WMIC SERVICE WHERE Name="windefend" CALL startservice
CMD: WMIC SERVICE WHERE Name="securityhealthservice" CALL ChangeStartMode "automatic"
CMD: WMIC SERVICE WHERE Name="securityhealthservice" CALL startservice
CMD: net start windefend
CMD: net start mpssvc
CMD: net start mpsdrv

CMD: netsh winsock reset
CMD: netsh int ip reset
CMD: ipconfig /release
CMD: ipconfig /renew
CMD: ipconfig /flushdns
CMD: ipconfig /registerdns
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh winhttp reset proxy
CMD: Bitsadmin /Reset /Allusers
CMD: Winmgmt /salvagerepository 
CMD: Winmgmt /resetrepository 
CMD: winmgmt /resyncperf
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
CMD: sfc /scannow

Hosts:
RemoveProxy:
EmptyTemp:
End::
  • Starte nun FRST und klicke direkt auf den Button Reparieren.
    Wichtig: Du brauchst den Inhalt der Code-Box nirgends einfügen, da sich FRST den Code aus der Zwischenablage holt!

  • Wichtig:
    • Bitte gedulde dich, sobald du die Reparatur gestartet hast. Je nach Art und Umfang der notwendigen Reparaturen kann dies einige Minuten dauern.
      Eventuell erhältst du während der Reparatur auch die Information "keine Rückmeldung" von FRST. Das ist normal, du musst nichts weiter tun, nur warten.
    • Mit diesem Fix werden alle temporären Dateien/Browserdaten sowie der Papierkorb gelöscht.

  • Das Tool führt die gewünschten Schritte aus und erstellt eine fixlog.txt im selben Verzeichnis, in dem sich FRST befindet.
  • Gegebenenfalls muss dein Rechner neu gestartet werden.
  • Poste mir den Inhalt der fixlog.txt mit deiner nächsten Antwort.





Schritt 2
  • Starte FRST erneut und klicke auf Untersuchen.
  • FRST erstellt nun zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.





Bitte poste mit deiner nächsten Antwort:
  • die Logdatei des FRST-Fix (fixlog.txt)
  • die beiden neuen Logdateien von FRST (FRST.txt und Addition.txt)
__________________
Thema geschlossen

Themen zu Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1
avg, avira, bonjour, defender, error, firefox, flash player, google, help, home, homepage, internet, mozilla, netzwerk, prozesse, registry, rundll, scan, services.exe, software, svchost.exe, taskmanager, updates, windows, wlan


« Windows 10 (21H2): Windowsdefender meldet: Trojan:MSIL/Bladabindi.OE!MTB | Windows 10 - Allgemeine System Überprüfung »


Ähnliche Themen: Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1


  1. Windows 10: good games, startfenster verknüpfungen auf desktop nach vlc update (C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe)
    Log-Analyse und Auswertung - 10.02.2021 (15)
  2. Windows 10 - schwarzer Bildschirm nach Anmeldung (trat nach Windows-Update auf)
    Alles rund um Windows - 15.11.2020 (15)
  3. Nach Windows Update Probleme
    Alles rund um Windows - 13.08.2018 (14)
  4. C.\Windows\system32\config\systemprofile\Desktop ist nicht verfügbar und sihost.exe - Systemwarnung: Unknown Hard Error nach Windows Update
    Alles rund um Windows - 17.05.2018 (2)
  5. SM.de nach VLC Update - Log files ADWcleaner und Malwarebytes
    Plagegeister aller Art und deren Bekämpfung - 22.02.2018 (13)
  6. probleme mit dem Starten von Steam games nach einen Windows Update vom 10.12
    Alles rund um Windows - 20.12.2017 (5)
  7. Diverse Probleme nach Windows 10 Update
    Alles rund um Windows - 15.10.2017 (2)
  8. Probleme mit NVIDEA Systemsteuerung nach Windows 10 update
    Netzwerk und Hardware - 06.08.2015 (1)
  9. Windows 7: Nach Windows-Update schwarzer Bildschirm beim Hochfahren
    Plagegeister aller Art und deren Bekämpfung - 29.05.2015 (3)
  10. Windows 8.1: Probleme nach Update
    Log-Analyse und Auswertung - 12.03.2015 (13)
  11. Windows 8.1: nach Update Adware/PUA Fund und Windows.old nicht gefunden
    Log-Analyse und Auswertung - 22.02.2015 (3)
  12. Win 8 : Probleme und Windows Verson Installer 2011-2014 nach Java Update
    Plagegeister aller Art und deren Bekämpfung - 08.06.2014 (9)
  13. Windows Vista 32Bit: Probleme nach Reparatur von Fake Java Update mit MalwareBytes
    Alles rund um Windows - 13.05.2014 (9)
  14. Probleme nach Windows Update mit Desktop, Tastatur etc. Trojaner?
    Log-Analyse und Auswertung - 30.12.2012 (31)
  15. Virus Windows Update Ukash..mich hats auch getroffen.Hier die Log Files...
    Log-Analyse und Auswertung - 14.06.2012 (30)
  16. Windows-Update Probleme Windows 7
    Alles rund um Windows - 16.06.2011 (5)
  17. Windows 7 - Mit Windows Update kann zur Zeit nicht nach ...
    Alles rund um Windows - 23.03.2011 (7)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1 - Code: Alles auswählen Aufklappen ATTFilter 4-2369679256-1001_Classes\CLSID\{D874FD9B-7010-3080-9CFD-89B546113E38}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> ) CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{D8B61974-7BF7-3AFD-9405-C23CBDC2B790}\InprocServer32 -> C:\Program Files\PTC\Creo 3.0\M040\Common Files\x86e_win64\lib\pfcscom.dll (PTC Inc. -> ) CustomCLSID: HKU\S-1-5-21-1111762605-3097862284-2369679256-1001_Classes\CLSID\{D91889C4-53E0-3BBF-AB25-F16C619C1EEE}\InprocServer32 -> C:\Program - Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1...
Archiv
Du betrachtest: Windows 8.1 Probleme nach Windows Update Log-Files zu groß - Teil 1 auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131