Addition: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:18-04-2016
durchgeführt von Philipp (2016-04-22 12:45:27)
Gestartet von C:\Users\Philipp\Desktop
Windows 7 Professional Service Pack 1 (X64) (2011-06-16 16:09:23)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-216120847-285665025-4248588561-500 - Administrator - Enabled) => C:\Users\Administrator
Gast (S-1-5-21-216120847-285665025-4248588561-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-216120847-285665025-4248588561-1002 - Limited - Enabled)
Philipp (S-1-5-21-216120847-285665025-4248588561-1000 - Administrator - Enabled) => C:\Users\Philipp
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Microsoft Security Essentials (Enabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
AS: Microsoft Security Essentials (Enabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
4Musics WMA to WAV Converter 4.2 (HKLM-x32\...\4Musics WMA to WAV Converter 4.2_is1) (Version: - NeSoft)
AC3Filter 1.63b (HKLM-x32\...\AC3Filter_is1) (Version: 1.63b - Alexander Vigovsky)
Adobe Acrobat 8 Professional - English, Français, Deutsch (HKLM-x32\...\Adobe Acrobat 8 Professional - English, Français, Deutsch) (Version: 8.0.0 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 2.0.3.13070 - Adobe Systems Inc.)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe GoLive CS2 Deutsch (HKLM-x32\...\Adobe GoLive CS2 Deutsch) (Version: 8.0 - Ihr Firmenname)
Adobe Illustrator CS2 (HKLM-x32\...\Adobe Illustrator CS2) (Version: 12.000.000 - Adobe Systems Inc.)
Adobe InCopy CS2 (HKLM-x32\...\Adobe InCopy CS2 - {C35B3785-531C-4D00-9EFA-44A130BFF73F}) (Version: 004.000.000 - Adobe Systems Incorporated)
Adobe InDesign CS2 (HKLM-x32\...\Adobe InDesign CS2 - {7F4C8163-F259-49A0-A018-2857A90578BC}) (Version: 004.000.000 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
Adobe Photoshop Lightroom 3.6 64-bit (HKLM\...\{D4F66BBA-D79E-4F11-9B06-70C3D75A2958}) (Version: 3.6.1 - Adobe)
Adobe Reader 9.5.2 - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-A95000000001}) (Version: 9.5.2 - Adobe Systems Incorporated)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version: 3.0 - Adobe Systems, Inc.)
Amazon Music (HKU\S-1-5-21-216120847-285665025-4248588561-1000\...\Amazon Amazon Music) (Version: 4.1.0.1229 - Amazon Services LLC)
Any Video Converter 3.2.7 (HKLM-x32\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
AP Tuner 3.08 (HKLM-x32\...\AP Tuner 3.08) (Version: - )
Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 1.0.0.26 - Atheros Communications Inc.)
ATI Catalyst Install Manager (HKLM\...\{61D4B846-49F8-2639-A4EB-977875265F37}) (Version: 3.0.769.0 - ATI Technologies, Inc.)
Audacity 1.2.6 (HKLM-x32\...\Audacity_is1) (Version: - )
Avanquest update (HKLM-x32\...\{76E41F43-59D2-4F30-BA42-9A762EE1E8DE}) (Version: 1.32 - Avanquest Software)
Avi2Dvd 0.6.4 (HKLM-x32\...\Avi2Dvd) (Version: 0.6.4 - TrustFm)
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
Bluetooth Stack for Windows by Toshiba (HKLM\...\{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}) (Version: v7.10.16(T) - TOSHIBA CORPORATION)
Boilsoft AVI to DVD Converter 4.58 (HKLM-x32\...\{3E983DED-9577-4B02-AA79-E55814AE9835}_is1) (Version: - Boilsoft, Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.60.48.35 - Broadcom Corporation)
Calme Version 2012 (HKLM-x32\...\{297ACAAE-FAAC-4817-A3BE-336F63399DA3}_is1) (Version: 2012 - Metin Elma)
ccc-core-static (x32 Version: 2010.0426.2136.36953 - Ihr Firmenname) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 4.08 - Piriform)
CloneDVD2 (HKLM-x32\...\CloneDVD2) (Version: 2.9.3.0 - Elaborate Bytes)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Conexant Audio Driver For AMD HDMI Codec (HKLM\...\CNXT_AUDIO_HDA_HDMI) (Version: 4.98.26.0 - Conexant)
Conexant HD Audio (HKLM\...\CNXT_AUDIO_HDA) (Version: 4.119.0.61 - Conexant)
CoreAAC Audio Decoder (remove only) (HKLM-x32\...\CoreAAC Audio Decoder) (Version: - )
Corel Graphics - Windows Shell Extension (HKLM\...\_{B16BB34E-B7BF-47DF-8658-BEABCF40CD6A}) (Version: 16.1.0.843 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 16.1.843 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 16.1.843 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Capture (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Common (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Connect (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Custom Data (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - DE (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Draw (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Filters (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - FontNav (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Photozoom Plugin (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Redist (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Setup Files (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VBA (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VSTA (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Writing Tools (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 (64-Bit) (HKLM\...\_{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.1.0.843 - Corel Corporation)
CorelDRAW Graphics Suite X6 (x64) (Version: 16.1 - Corel Corporation) Hidden
Creative Pack Volume 1 (HKLM\...\{3D1688AB-3440-4C7A-8CBB-5D77CD3C02D7}) (Version: 3.2.0 - Corel Corporation)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dazzle Video Capture DVC100 X64 Driver 1.07 (HKLM-x32\...\{631D71FD-237F-4D74-B090-88E66FBC5A10}) (Version: 1.07.0000 - Pinnacle)
DHTML Editing Component (HKLM-x32\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation)
Dropbox (HKU\S-1-5-21-216120847-285665025-4248588561-1000\...\Dropbox) (Version: 3.18.1 - Dropbox, Inc.)
Easy Poster Printer (HKLM-x32\...\{1B5979B5-FE79-405A-A023-592DCE48C522}) (Version: 6.0.0 - GD Software)
EMDB 1.95 (HKLM-x32\...\EMDB_is1) (Version: - Wicked & Wild Inc.)
Facebook Video Calling 3.1.0.521 (HKLM-x32\...\{2091F234-EB58-4B80-8C96-8EB78C808CF7}) (Version: 3.1.521 - Skype Limited)
Flatcast Viewer Plugin 5.3.0.784 (HKLM-x32\...\Flatcast Viewer 5.3_is1) (Version: - 1 mal 1 Software GmbH)
FLV Player 2.0 (build 25) (HKLM-x32\...\FLV Player) (Version: 2.0 (build 25) - Martijn de Visser)
FormatFactory 3.2.0.1 (HKLM-x32\...\FormatFactory) (Version: 3.2.0.1 - Free Time)
Fotor 2.0.3 (HKLM-x32\...\Fotor) (Version: 2.0.3 - Everimaging Co., Ltd.)
Fotosizer 2.09 (HKLM-x32\...\Fotosizer) (Version: 2.09.0.548 - Fotosizer.com)
Free Studio version 6.5.1.415 (HKLM-x32\...\Free Studio_is1) (Version: 6.5.1.415 - DVDVideoSoft Ltd.)
Free Video to MP3 Converter version 5.0.31.1125 (HKLM-x32\...\Free Video to MP3 Converter_is1) (Version: 5.0.31.1125 - DVDVideoSoft Ltd.)
Free YouTube Download version 3.2.51.1215 (HKLM-x32\...\Free YouTube Download_is1) (Version: 3.2.51.1215 - DVDVideoSoft Ltd.)
Free YouTube to MP3 Converter version 3.12.17.1127 (HKLM-x32\...\Free YouTube to MP3 Converter_is1) (Version: 3.12.17.1127 - DVDVideoSoft Ltd.)
Fritz8 (HKLM-x32\...\{0870656D-9E36-49D2-8167-777E79C46D9E}) (Version: 1 - )
Ghostscript GPL 8.64 (Msi Setup) (HKLM-x32\...\_{06CD45E6-FF5E-4D8E-BC01-B276A90DADF2}) (Version: 8.64 - Corel Corporation)
Ghostscript GPL 8.64 (Msi Setup) (x32 Version: 8.64 - Corel Corporation) Hidden
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Hanvon Soft 3.0 (HKLM-x32\...\{73BD1CE5-F278-4540-B667-7F7D86488236}) (Version: 3.00.2100 - Hanwang Technology Co.,Ltd )
Hattrick Control 3.30 (HKLM-x32\...\Hattrick Control_is1) (Version: - gardier)
Hattrick Organizer (remove only) (HKLM-x32\...\Hattrick Organizer) (Version: - )
Hollywood FX Volumes 1-3 (HKLM\...\{94F26E3B-100E-4C7B-B1F1-2F395128E848}) (Version: 2.1 - Corel Corporation)
Hotfix für Microsoft Visual Studio 2007 Tools for Applications - ENU (KB947789) (HKLM-x32\...\{8E87B944-4815-3C5E-947F-5035C9F64362}.KB947789) (Version: 1 - Microsoft Corporation)
ICQ7.6 (HKLM-x32\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
ID3-TagIT 3 (HKLM-x32\...\ID3-TagIT 3_is1) (Version: 3 - Michael Pluemper)
InfoRapid Suchen & Ersetzen (HKLM-x32\...\InfoRapid Suchen & Ersetzen) (Version: 3.1f - Ingo Straub Softwareentwicklung)
Inkscape 0.48.1 (HKLM-x32\...\Inkscape) (Version: 0.48.1 - )
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.7.1002 - Intel Corporation)
Intel(R) Turbo Boost Technology Driver (HKLM-x32\...\{D6C630BF-8DBB-4042-8562-DC9A52CB6E7E}) (Version: 01.01.01.1007 - Intel Corporation)
I-Port.de (HKLM-x32\...\I-Port.de) (Version: 2.3.0.93 - Imaxel Lab S.L)
iZotope Music & Speech Cleaner (HKLM-x32\...\iZotope Music & Speech Cleaner_is1) (Version: 1.00 - iZotope, Inc.)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
K-Lite Codec Pack 9.7.5 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.7.5 - )
LADSPA_plugins-win-0.4.15 (HKLM-x32\...\LADSPA_plugins-win_is1) (Version: - Audacity Team)
Last.fm Scrobbler 2.1.30 (HKLM-x32\...\LastFM_is1) (Version: - Last.fm)
MAGIX Web Designer MX Premium (HKLM-x32\...\MAGIX_{4D5A1C12-2F7B-4A67-B186-ECAE22EF4FCB}) (Version: 8.0.2.21761 - MAGIX AG)
MAGIX Web Designer MX Premium (Version: 8.0.2.21761 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.5.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Primary Interoperability Assemblies 2005 (HKLM-x32\...\{2C303EE0-A595-3543-A71A-931C7AC40EDE}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 (HKLM\...\{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Language Pack - DEU (HKLM-x32\...\{8E87B944-4815-3C5E-947F-5035C9F64362}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime Language Pack - DEU (HKLM-x32\...\{76DAEC83-AF7B-333C-8A53-83D7C7D39199}) (Version: 9.0.30729 - Microsoft Corporation)
MotoGP™14 (HKLM-x32\...\{CCCF5DFF-A92F-401B-BCA0-40DAC862F5BD}) (Version: 1.00.0000 - Milestone S.r.l.)
MotoGP™14 (x32 Version: 1.00.0000 - Milestone S.r.l.) Hidden
Mozilla Firefox 45.0.2 (x86 de) (HKLM-x32\...\Mozilla Firefox 45.0.2 (x86 de)) (Version: 45.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2.5941 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero BackItUp 10 (HKLM-x32\...\{68AB6930-5BFF-4FF6-923B-516A91984FE6}) (Version: 5.4.24700.31.100 - Nero AG)
Nero BurnRights 10 (HKLM-x32\...\{943CFD7D-5336-47AF-9418-E02473A5A517}) (Version: 4.0.11300.14.100 - Nero AG)
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.0.12100.22.100 - Nero AG)
Nero InfoTool 10 (HKLM-x32\...\{F412B4AF-388C-4FF5-9B2F-33DB1C536953}) (Version: 7.0.11400.15.100 - Nero AG)
Nero MediaHub 10 (HKLM-x32\...\{1F7FB68F-52F6-46A3-B42F-38CE46295AE5}) (Version: 1.0.14800.28.100 - Nero AG)
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{0FF68F26-416C-4954-ACA5-6AD5F9DE99C1}) (Version: 10.0.15000 - Nero AG)
Nero RescueAgent 10 (HKLM-x32\...\{E337E787-CF61-4B7B-B84F-509202A54023}) (Version: 3.0.11800.26.100 - Nero AG)
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.0.12300.27.100 - Nero AG)
Nero Update (HKLM-x32\...\{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}) (Version: 1.0.0018 - Nero AG)
NetObjects Fusion 11.0 (HKLM-x32\...\{587930AE-448F-411C-BB7D-72FBF6B0882D}) (Version: 11 German - )
NewBlue Effects (HKLM\...\{C0C7CFFB-C0EF-4CB5-A83D-33626D67BAA7}) (Version: 1.0.1 - Corel Corporation)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.6.9 - Notepad++ Team)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Orbit Downloader (HKLM-x32\...\Orbit_is1) (Version: - www.orbitdownloader.com)
PDF24 Creator 6.9.2 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
Pinnacle Instant DVD Recorder (HKLM-x32\...\{C1212AE3-DBB9-4365-8473-F8ABC7B06BBB}) (Version: 2.6.0.118 - Pinnacle Systems)
Pinnacle MyDVD (HKLM-x32\...\{3F75C691-AC75-47C3-AD02-82CE9AE30FE3}) (Version: 1.0 - Pinnacle)
Pinnacle MyDVD (x32 Version: 1.0.056 - Ihr Firmenname) Hidden
Pinnacle Studio 12 (HKLM-x32\...\{D041EB9E-890A-4098-8F94-51DA194AC72A}) (Version: 12.1.3.6605 - Pinnacle Systems)
Pinnacle Studio 18 - Install Manager (HKLM\...\{39B53CC2-EE72-44E6-800D-C61A6465BF1A}) (Version: 18.0.225 - Corel Corporation)
Pinnacle Studio 18 - Standard Content Pack (HKLM\...\{DDBFA6BC-5756-465F-902A-5659F4EFBC6F}) (Version: 18.0 - Corel Corporation)
Pinnacle Studio 18 (HKLM\...\{11FB47FB-B341-4FD8-A505-E4C0CC0536C1}) (Version: 18.6.0.865 - Corel Corporation)
Pinnacle USB device drivers (HKLM-x32\...\{9C0ADF96-20E7-4671-88D2-39B5A307E2A2}) (Version: 2.0.19 - )
Pinnacle Video Treiber (HKLM\...\{6DE721A5-5E89-4D74-994C-652BB3C0672E}) (Version: 12.1.0.029 - Pinnacle Systems)
PixelfotoDesigner (HKLM-x32\...\PixelfotoDesigner) (Version: - )
PlayChess (HKLM-x32\...\PlayChess) (Version: - ChessBase GmbH)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PokerStars (HKLM-x32\...\PokerStars) (Version: - PokerStars)
Premium Pack Volumes 1-2 (HKLM\...\{4BB25E0F-7689-48CF-B240-D8567FBDACFD}) (Version: 2.1 - Corel Corporation)
PxMergeModule (x32 Version: 1.00.0000 - Your Company Name) Hidden
QuickTime (HKLM-x32\...\{8DC42D05-680B-41B0-8878-6C14D24602DB}) (Version: 7.55.90.70 - Apple Inc.)
Rapture3D 2.4.4 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30111 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
ScoreFitter Volumes 1-2 (HKLM\...\{DAD8BCAC-30E7-4D1A-91F2-F3712F0E2555}) (Version: 2.1 - Corel Corporation)
Settings Manager (HKU\S-1-5-21-216120847-285665025-4248588561-1000\...\Settings Manager) (Version: 24.4.0.6 - Spigot, Inc.) <==== ACHTUNG
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM-x32\...\SLABCOMM&10C4&EA60) (Version: - )
Silicon Laboratories CP210x VCP Drivers for Windows 7 (HKLM-x32\...\{D015680E-9AE6-46E7-B07A-3B6D573B4A57}) (Version: 5.40.24 - Silicon Laboratories, Inc.)
Skype™ 7.21 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.)
SmartSound Common Data (HKLM-x32\...\InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}) (Version: 1.1.0 - SmartSound Software Inc.)
SmartSound Common Data (x32 Version: 1.1.0 - SmartSound Software Inc.) Hidden
SmartSound Quicktracks 5 (HKLM-x32\...\InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}) (Version: 5.1.6 - SmartSound Software Inc.)
SmartSound Quicktracks 5 (x32 Version: 5.1.6 - SmartSound Software Inc.) Hidden
Snapfish Fotobuch (HKLM-x32\...\Snapfish Fotobuch) (Version: - )
SportTracks 2.1 (HKLM-x32\...\{E6FA148F-1E7D-4A42-A9A2-7DFABC2C6A2B}) (Version: 2.1.3478 - Zone Five Software)
StreamTransport version: 1.0.2.2171 (HKLM-x32\...\{FA0BBB87-91A1-4BFD-9005-EB058BBA0E14}_is1) (Version: - )
streamWriter (HKLM-x32\...\streamWriter_is1) (Version: - )
SUPER © v2013.build.57+Recorder (2013/07/13) Version v2013.buil (HKLM-x32\...\{8E2A1F92-9B4F-4DF9-8459-B736B0831C69}_is1) (Version: v2013.build.57+Recorder - eRightSoft)
SureThing Express Labeler (HKLM-x32\...\stax-Pinnacle_is1) (Version: - MicroVision Development, Inc.)
SurfMusik 3.1 (HKLM-x32\...\SurfMusik 3.1_is1) (Version: 3.1 - Marcus Schmitt)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.8.1 - Synaptics Incorporated)
Tablet Driver (HKLM-x32\...\{ACD21A44-4EF9-4461-B1F3-45786E395032}) (Version: 2.05.0000 - Hanwang technolgy)
Title Extreme (HKLM\...\{C202FA8F-552B-4F7A-AB57-0B5B888E6BB5}) (Version: 2.1 - Corel Corporation)
Toshiba Assist (HKLM-x32\...\{1B87C40B-A60B-4EF3-9A68-706CF4B69978}) (Version: 3.00.10 - TOSHIBA)
TOSHIBA Bulletin Board (HKLM-x32\...\InstallShield_{C14518AF-1A0F-4D39-8011-69BAA01CD380}) (Version: 1.6.08.64 - TOSHIBA Corporation)
TOSHIBA ConfigFree (HKLM-x32\...\{E0FAA369-B0E3-48B8-9447-4873103B0012}) (Version: 8.0.34 - TOSHIBA CORPORATION)
TOSHIBA Disc Creator (HKLM\...\{5DA0E02F-970B-424B-BF41-513A5018E4C0}) (Version: 2.1.0.2 for x64 - TOSHIBA Corporation)
TOSHIBA eco Utility (HKLM-x32\...\InstallShield_{B3FF1CD9-B2F0-4D71-BB55-5F580401C48E}) (Version: 1.2.10.64 - TOSHIBA Corporation)
TOSHIBA Face Recognition (HKLM-x32\...\InstallShield_{F67FA545-D8E5-4209-86B1-AEE045D1003F}) (Version: 3.1.3.64 - TOSHIBA Corporation)
TOSHIBA Hardware Setup (HKLM-x32\...\{8E9CEA3B-EBD1-439C-A01D-830CB39613C6}) (Version: 2.00.06 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (HKLM-x32\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.64.6 - TOSHIBA Corporation)
Toshiba Manuals (HKLM-x32\...\{90FF4432-21B7-4AF6-BA6E-FB8C1FED9173}) (Version: 10.02 - TOSHIBA)
TOSHIBA Media Controller (HKLM-x32\...\{983CD6FE-8320-4B80-A8F6-0D0366E0AA22}) (Version: 1.0.80.8.64 - TOSHIBA CORPORATION)
TOSHIBA Media Controller Plug-in (HKLM-x32\...\{F26FDF57-483E-42C8-A9C9-EEE1EDB256E0}) (Version: 1.0.5.12 - TOSHIBA CORPORATION)
TOSHIBA Online Product Information (HKLM-x32\...\{2290A680-4083-410A-ADCC-7092C67FC052}) (Version: 2.09.0001 - TOSHIBA)
TOSHIBA PC Health Monitor (HKLM\...\{9DECD0F9-D3E8-48B0-A390-1CF09F54E3A4}) (Version: 1.6.0.64 - TOSHIBA Corporation)
TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 2.1.0.5 x64 - TOSHIBA Corporation)
TOSHIBA Recovery Media Creator Reminder (HKLM-x32\...\InstallShield_{773970F1-5EBA-4474-ADEE-1EA3B0A59492}) (Version: 1.00.0019 - TOSHIBA)
TOSHIBA ReelTime (HKLM-x32\...\InstallShield_{24811C12-F4A9-4D0F-8494-A7B8FE46123C}) (Version: 1.7.16.64 - TOSHIBA Corporation)
TOSHIBA Service Station (HKLM-x32\...\{AC6569FA-6919-442A-8552-073BE69E247A}) (Version: 2.1.40 - TOSHIBA)
TOSHIBA Supervisor Password (HKLM-x32\...\{073B89C3-BA88-41B5-965F-B35A88EAE838}) (Version: 2.00.03 - TOSHIBA Corporation)
Toshiba TEMPRO (HKLM-x32\...\{DBB7021A-3437-446F-ACE5-7261644A972C}) (Version: 3.33 - Toshiba Europe GmbH)
TOSHIBA Value Added Package (HKLM-x32\...\InstallShield_{066CFFF8-12BF-4390-A673-75F95EFF188E}) (Version: 1.3.19.64 - TOSHIBA Corporation)
TOSHIBA Web Camera Application (HKLM-x32\...\{5E6F6CF3-BACC-4144-868C-E14622C658F3}) (Version: 1.1.1.15 - TOSHIBA Corporation)
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
TRORMCLauncher (HKLM-x32\...\InstallShield_{E65C7D8E-186D-484B-BEA8-DEF0331CE600}) (Version: - )
TRORMCLauncher (Version: 1.0.0.10 - TOSHIBA) Hidden
TubeBox (HKLM-x32\...\{36cce162-d1f4-4693-bef6-6946de1d3ed3}) (Version: 4.2.0 - Freetec)
TubeBox (x32 Version: 4.2.0 - Freetec) Hidden
TubeBox! (HKLM-x32\...\{CE39C8A5-C98D-4702-807F-265FCF9F54FD}) (Version: 3.4.8 - Jens Lorek)
UltraISO Premium V9.53 (HKLM-x32\...\UltraISO_is1) (Version: - )
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.8.0 - Elaborate Bytes)
virtualPhotographer 1.5.6 (HKLM-x32\...\virtualPhotographer_is1) (Version: - optikVerve Labs)
VLC media player 2.0.7 (HKLM-x32\...\VLC media player) (Version: 2.0.7 - VideoLAN)
Web Designer Premium MX Update (Version: 8.1.4.24749 - MAGIX AG) Hidden
Web Designer Premium MX Update (Version: 8.1.4.30831 - MAGIX AG) Hidden
Web Designer Premium MX Update (Version: 8.1.4.30846 - MAGIX AG) Hidden
Web Designer Premium MX Update (Version: 8.1.5.31094 - MAGIX AG) Hidden
Winamp (HKLM-x32\...\Winamp) (Version: 5.621 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-216120847-285665025-4248588561-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Encoder 9 Series (HKLM-x32\...\Windows Media Encoder 9) (Version: - )
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.01 (32-Bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
XnView 2.05 (HKLM-x32\...\XnView_is1) (Version: 2.05 - Gougelet Pierre-e)
Xvid 1.2.2 final uninstall (HKLM-x32\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
XviD MPEG-4 Codec (HKLM-x32\...\XviD) (Version: - )
Youtube Downloader HD v. 2.9.9.20 (HKLM-x32\...\Youtube Downloader HD_is1) (Version: - YoutubeDownloaderHD.com)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{45C6AFA5-2C13-402f-BC5D-45CC8172EF6B}\InprocServer32 -> C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\sys\x64\TosBtExt.dll (TOSHIBA)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.30.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.30.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.30.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.30.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.30.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.30.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.30.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.30.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.30.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-216120847-285665025-4248588561-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Philipp\AppData\Roaming\Dropbox\bin\DropboxExt64.30.dll (Dropbox, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {248126E5-F0B8-4E4E-BD14-332028079D99} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {3DFBBF01-D555-45F9-9092-29D6973F8148} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-11-22] (Piriform Ltd)
Task: {5BBD6507-45BD-40F3-9FAB-757D41381355} - System32\Tasks\{D67D6496-1A39-42D5-B71B-0BD9326BF257} => Firefox.exe hxxp://ui.skype.com/ui/0/6.3.73.105.457/de/abandoninstall?page=tsMain
Task: {68798A5E-BC33-4F5F-8F8E-C483B0ED2D9E} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-216120847-285665025-4248588561-1000UA => C:\Users\Philipp\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-02-19] (Facebook Inc.)
Task: {6A709A8A-2E2D-4815-AECC-1A5CEAB17D4C} - System32\Tasks\AdobeAAMUpdater-1.0-FLIP-TOSH-Philipp => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06] (Adobe Systems Incorporated)
Task: {74712B99-2D98-4F86-8806-411FC9C2DFBC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {81DD809C-BE47-41F3-A182-9FDE78DEF57A} - System32\Tasks\{64C93672-6503-4553-8492-C966CB1064A5} => pcalua.exe -a C:\Users\Philipp\Downloads\APRO23_Win_ESD1_WWEFG.exe -d C:\Users\Philipp\Downloads
Task: {8CA4DBFC-5283-4021-8621-011748076DFB} - System32\Tasks\Software Updater => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Bootstrapper.exe <==== ACHTUNG
Task: {9178A5D8-47F6-4A43-91E7-2AEA36745CED} - System32\Tasks\ConfigFree Startup Programs => C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe [2010-06-03] (TOSHIBA CORPORATION)
Task: {9DB123E1-EE90-46FF-9196-DFB293C5890C} - System32\Tasks\{3FBB8122-B742-4D81-B4D4-618DFD612B66} => pcalua.exe -a E:\Setup.exe -d E:\
Task: {ADE309B8-385C-49A9-81A7-D175BE63A03B} - System32\Tasks\{DDDF79FF-80D0-4893-A764-09C444B31DE2} => pcalua.exe -a C:\Users\Philipp\Downloads\Second_Life_Setup.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {C1BDD0A6-BC0B-4FC8-B7CA-A4E3F451422E} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-216120847-285665025-4248588561-1000Core => C:\Users\Philipp\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-21] (Dropbox, Inc.)
Task: {C3CA4F4B-6AAC-41DF-A466-A33F96DDA455} - System32\Tasks\FacebookUpdateTaskUserS-1-5-21-216120847-285665025-4248588561-1000Core => C:\Users\Philipp\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-02-19] (Facebook Inc.)
Task: {CF38EAF8-7D1C-4504-BA19-107D1206C98F} - System32\Tasks\{24700AFC-02FE-4650-890D-54BB0AC783C7} => Firefox.exe hxxp://ui.skype.com/ui/0/7.4.85.102/de/abandoninstall?page=tsProgressBar
Task: {D9CBE3C9-7F5D-4D94-BE90-8E808A7E8599} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-216120847-285665025-4248588561-1000UA => C:\Users\Philipp\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-21] (Dropbox, Inc.)
Task: {E4B5884F-8896-4817-BAAF-85F0356F8C8C} - System32\Tasks\Software Updater Ui => C:\Program Files (x86)\SoftwareUpdater\SoftwareUpdater.Ui.exe <==== ACHTUNG
Task: {E97CC233-4259-41CF-948B-98F533B0E143} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {EBFE8866-8E90-4943-811E-652C963F66FC} - System32\Tasks\{3B7170B3-1E6A-4C39-90BF-C5FC76E0880C} => pcalua.exe -a H:\dotnet35\dotnetfx35.exe -d H:\dotnet35
Task: {F1A1D56F-6893-4271-874E-1911E9CF1396} - System32\Tasks\{FB817678-1977-46E5-BB8D-8CBE14102F88} => pcalua.exe -a E:\Data\DEU\setup.exe -d E:\Data\DEU
Task: {FFF44541-5514-475B-AD81-16E895D8F023} - System32\Tasks\{3DA8B021-8129-44DD-BA7F-72FD96F90BB7} => pcalua.exe -a C:\Users\Philipp\Downloads\PCLEUSB.exe -d "C:\Program Files (x86)\Mozilla Firefox"
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-216120847-285665025-4248588561-1000Core.job => C:\Users\Philipp\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-216120847-285665025-4248588561-1000UA.job => C:\Users\Philipp\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-216120847-285665025-4248588561-1000Core.job => C:\Users\Philipp\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-216120847-285665025-4248588561-1000UA.job => C:\Users\Philipp\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\Philipp\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NetSpot Device Installer\NetSpot Device Installer deinstallieren.lnk -> C:\Users\Philipp\AppData\Local\canon.jp\nsdi\rmnsdi.bat ()
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2014-07-31 22:50 - 2014-07-31 22:50 - 00034304 _____ () C:\Windows\System32\sst7clm.dll
2012-09-12 13:54 - 2008-06-03 16:18 - 00066560 _____ () C:\Windows\jwpen.exe
2012-09-12 13:54 - 2008-06-03 16:18 - 00066560 _____ () C:\Windows\Jwpen.exe
2011-06-21 19:44 - 2011-05-28 22:05 - 00164864 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2010-03-17 17:01 - 2010-03-17 17:01 - 00578936 _____ () C:\Program Files\TOSHIBA\TECO\TecoPower.dll
2010-04-07 17:07 - 2010-04-07 17:07 - 09468728 _____ () C:\Program Files\TOSHIBA\FlashCards\BlackPng.dll
2009-11-03 14:26 - 2009-11-03 14:26 - 00053560 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnZ.dll
2010-03-03 15:15 - 2010-03-03 15:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF10.dll
2010-03-03 15:15 - 2010-03-03 15:15 - 00019256 _____ () C:\Program Files\TOSHIBA\FlashCards\Hotkey\FnF11.dll
2010-11-16 19:31 - 2009-06-22 15:40 - 00022328 _____ () C:\Program Files\TOSHIBA\Toshiba Assist\NotifyX.dll
2009-03-12 20:08 - 2009-03-12 20:08 - 00048640 _____ () C:\Program Files (x86)\Toshiba\PCDiag\NotifyPCD.dll
2009-07-25 17:38 - 2009-07-25 17:38 - 00017800 _____ () C:\Program Files\TOSHIBA\TOSHIBA Disc Creator\NotifyTDC.dll
2014-07-24 22:43 - 2016-02-02 00:47 - 05895968 _____ () C:\Users\Philipp\AppData\Local\Amazon Music\Amazon Music Helper.exe
2015-11-10 21:14 - 2016-02-25 20:16 - 00475496 _____ () C:\Users\Philipp\AppData\Roaming\Update Manager\UM.EXE
2012-09-12 13:54 - 2008-06-03 16:16 - 00053248 ____N () C:\Windows\SysWOW64\HWKeyPlus.exe
2012-09-12 13:54 - 2009-03-05 14:54 - 00184320 ____N () C:\Windows\SysWOW64\HWTabTray.exe
2009-10-13 11:00 - 2009-10-13 11:00 - 00016384 ____R () C:\Program Files (x86)\ATI Technologies\ATI.ACE\Branding\Branding.dll
2010-12-28 15:46 - 2010-12-28 15:46 - 00270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2016-04-17 21:39 - 2016-03-21 23:50 - 00034768 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\_multiprocessing.pyd
2016-04-18 17:15 - 2016-03-21 23:51 - 00019408 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\faulthandler.pyd
2016-04-18 17:15 - 2016-03-21 23:50 - 00116688 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\pywintypes27.dll
2016-03-19 16:43 - 2016-03-21 23:50 - 00093640 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\_ctypes.pyd
2016-03-19 16:43 - 2016-03-21 23:50 - 00018376 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\select.pyd
2016-03-19 16:43 - 2016-04-08 20:20 - 00019760 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\tornado.speedups.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00105928 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32api.pyd
2016-04-18 17:15 - 2016-03-21 23:50 - 00392144 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\pythoncom27.dll
2016-03-19 16:43 - 2016-04-08 20:20 - 00381752 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32com.shell.shell.pyd
2016-03-19 16:43 - 2016-03-21 23:50 - 00692688 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\unicodedata.pyd
2016-04-18 17:15 - 2016-04-08 20:19 - 00020816 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._constant_time.pyd
2016-03-19 16:43 - 2016-03-21 23:51 - 00112592 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\_cffi_backend.pyd
2016-04-18 17:15 - 2016-04-08 20:19 - 01682760 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._openssl.pyd
2016-04-18 17:15 - 2016-04-08 20:19 - 00020808 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\cryptography.hazmat.bindings._padding.pyd
2016-03-19 16:43 - 2016-04-08 20:20 - 00021840 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\_cffi_unicode_environ_win32_x8bf8e68bx9968e850.pyd
2016-04-18 17:15 - 2016-04-08 20:19 - 00038696 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\fastpath.pyd
2016-04-18 17:15 - 2016-03-21 23:52 - 00020936 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\mmapfile.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00024528 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32event.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00114640 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32security.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00124880 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32file.pyd
2016-03-19 16:43 - 2016-04-08 20:20 - 00021832 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\_cffi_pywin_kernel32_x64d8f881xc8c369be.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00024016 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32clipboard.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00175560 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32gui.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00030160 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32pipe.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00043472 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32process.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00028616 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32ts.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00048592 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32service.pyd
2016-04-18 17:15 - 2016-04-08 20:19 - 00026456 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\dropbox.infinite.win.compiled._driverinstallation.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00057808 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32evtlog.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00024016 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\win32profile.pyd
2016-04-18 17:15 - 2016-04-08 20:19 - 00117056 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\breakpad.client.windows.handler.pyd
2016-03-19 16:43 - 2016-04-08 20:20 - 00023376 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\winscreenshot.compiled._CaptureScreenshot.pyd
2016-04-17 21:39 - 2016-03-21 23:50 - 00134608 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\_elementtree.pyd
2016-04-18 17:15 - 2016-03-21 23:50 - 00134088 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\pyexpat.pyd
2016-04-18 17:15 - 2016-03-21 23:51 - 00240584 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\jpegtran.pyd
2016-04-18 17:15 - 2016-04-08 20:19 - 00024392 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\librsyncffi.compiled._librsyncffi.pyd
2016-04-18 17:15 - 2016-03-21 23:52 - 00036296 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\librsync.dll
2016-04-18 17:15 - 2016-04-08 20:19 - 00052024 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\psutil._psutil_windows.pyd
2016-03-19 16:43 - 2016-04-08 20:20 - 00020800 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\winffi.iphlpapi._winffi_iphlpapi.pyd
2016-03-19 16:43 - 2016-04-08 20:20 - 00021824 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\winffi.kernel32._winffi_kernel32.pyd
2016-03-19 16:43 - 2016-04-08 20:20 - 00019776 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\winffi.winerror._winffi_winerror.pyd
2016-03-19 16:43 - 2016-04-08 20:20 - 00020800 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\winffi.wininet._winffi_wininet.pyd
2016-04-18 17:15 - 2016-04-08 20:19 - 00020280 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\cpuid.compiled._cpuid.pyd
2016-03-19 16:43 - 2016-03-21 23:52 - 00350152 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\winxpgui.pyd
2016-03-19 16:43 - 2016-04-08 20:20 - 00022352 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\winverifysignature.compiled._VerifySignature.pyd
2016-04-18 17:15 - 2016-04-08 20:19 - 00084280 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\dropbox_sqlite_ext.DLL
2016-04-18 17:15 - 2016-04-08 20:20 - 01826096 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\PyQt5.QtCore.pyd
2016-03-19 16:43 - 2016-03-21 23:51 - 00083912 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\sip.pyd
2016-04-18 17:15 - 2016-04-08 20:20 - 03928880 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\PyQt5.QtWidgets.pyd
2016-04-18 17:15 - 2016-04-08 20:20 - 01971504 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\PyQt5.QtGui.pyd
2016-04-18 17:15 - 2016-04-08 20:20 - 00531248 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\PyQt5.QtNetwork.pyd
2016-04-18 17:15 - 2016-04-08 20:20 - 00132912 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKit.pyd
2016-04-18 17:15 - 2016-04-08 20:20 - 00223544 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\PyQt5.QtWebKitWidgets.pyd
2016-04-18 17:15 - 2016-04-08 20:20 - 00207672 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\PyQt5.QtPrintSupport.pyd
2016-04-18 17:15 - 2016-04-08 20:20 - 00158008 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\PyQt5.QtWebEngineWidgets.pyd
2016-04-18 17:15 - 2016-04-08 20:20 - 00042808 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\PyQt5.QtWebChannel.pyd
2012-09-12 13:54 - 2009-03-17 14:29 - 00091648 _____ () C:\Windows\system32\wintab32.dll
2016-04-18 17:15 - 2016-03-21 23:54 - 00017864 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\libEGL.dll
2016-04-18 17:15 - 2016-03-21 23:54 - 01631184 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2016-03-19 16:43 - 2016-04-08 20:20 - 00024904 _____ () C:\Users\Philipp\AppData\Roaming\Dropbox\bin\_cffi_wpad_proxy_win_x752e3d61xdcfdcc84.pyd
2012-09-12 13:54 - 2009-02-26 15:22 - 00073728 ____N () C:\Windows\SysWOW64\JWkey.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Philipp\AppData\Local\Temporary Internet Files:Xg3esOM7y6BiVKsjkyL [2362]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2012-08-13 17:12 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-216120847-285665025-4248588561-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Philipp\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\Services: Fax => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk => C:\Windows\pss\Adobe Gamma Loader.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk => C:\Windows\pss\Adobe Reader Synchronizer.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth Manager.lnk => C:\Windows\pss\Bluetooth Manager.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Hanvon Soft.lnk => C:\Windows\pss\Hanvon Soft.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Philipp^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^de_cleaner_kaspersky.lnk => C:\Windows\pss\de_cleaner_kaspersky.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Philipp^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Dropbox.lnk => C:\Windows\pss\Dropbox.lnk.Startup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Amazon Music => "C:\Users\Philipp\AppData\Local\Amazon Music\Amazon Music Helper.exe"
MSCONFIG\startupreg: ApnUpdater => "C:\Program Files (x86)\Ask.com\Updater\Updater.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: Facebook Update => "C:\Users\Philipp\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
MSCONFIG\startupreg: GameXN => "C:\ProgramData\GameXN\GameXNGO.exe" /silent
MSCONFIG\startupreg: GameXN (news) => "C:\ProgramData\GameXN\GameXNGO.exe" /n
MSCONFIG\startupreg: GameXN (update) => "C:\ProgramData\GameXN\GameXNGO.exe" /u
MSCONFIG\startupreg: ICQ => "C:\Program Files (x86)\ICQ7.5\ICQ.exe" silent loginmode=4
MSCONFIG\startupreg: msnmsgr => "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
MSCONFIG\startupreg: NBAgent => "c:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
MSCONFIG\startupreg: PDFPrint => C:\Program Files (x86)\PDF24\pdf24.exe
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: ToshibaServiceStation => "C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe" /hide:60
MSCONFIG\startupreg: TWebCamera => "C:\Program Files (x86)\TOSHIBA\TOSHIBA Web Camera Application\TWebCamera.exe" autorun
MSCONFIG\startupreg: UUSeeMediaCenter => "C:\Program Files (x86)\Common Files\uusee\UUSeeMediaCenter.exe"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{40C167BE-9B8F-4F30-913A-D51B575B10D1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{47711787-FFAC-4010-9A88-698462CEFD47}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{B522D283-605A-4294-AFB5-C3DE29C4E23B}] => (Allow) LPort=2869
FirewallRules: [{DF0C3BB9-B21F-4145-8188-3717706AC737}] => (Allow) LPort=1900
FirewallRules: [{D39E684A-3048-475A-B7CC-455B107A27E3}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{3A3B6265-8D5B-4D05-BAC2-EBBDD4A0C216}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{C2C9C0B8-FBFD-42BD-8274-CF7C3ED79EA3}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe
FirewallRules: [{13FA7766-35F0-49C6-A3FF-30763D5CAC0A}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\RM.exe
FirewallRules: [{CC8E03F4-9230-4D60-A11E-46930F618DC4}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
FirewallRules: [{736F898A-2283-4BA3-A2E3-8E976F8EEB65}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\Studio.exe
FirewallRules: [{CACB24F7-9032-4009-87F0-E306F2CC66AD}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe
FirewallRules: [{DC55663D-BF99-42BD-A244-3104A7988EF5}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 12\Programs\umi.exe
FirewallRules: [TCP Query User{7B6CA200-7380-49A5-8574-BF9A2152895E}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{63E85207-DF97-4B63-9710-B600252B9564}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe
FirewallRules: [TCP Query User{9893B26B-05E6-46C6-8DF3-743DD0EF61F9}C:\program files (x86)\ea sports\nhl 09\nhl2009.exe] => (Block) C:\program files (x86)\ea sports\nhl 09\nhl2009.exe
FirewallRules: [UDP Query User{35464AB9-A7D3-4AE4-8950-32FF35BB6F8E}C:\program files (x86)\ea sports\nhl 09\nhl2009.exe] => (Block) C:\program files (x86)\ea sports\nhl 09\nhl2009.exe
FirewallRules: [TCP Query User{457F0E90-8CA9-4CBE-A16D-F5A3E39A5279}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [UDP Query User{1E41E7B4-43BB-420A-AF02-4CFDAC720FE0}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [TCP Query User{CED26A6C-94E2-4C7C-BF55-495BF29E4651}C:\program files (x86)\sopcast\adv\sopadver.exe] => (Allow) C:\program files (x86)\sopcast\adv\sopadver.exe
FirewallRules: [UDP Query User{53DFD7A4-9CBD-4FC9-88D1-F63ECBD14D88}C:\program files (x86)\sopcast\adv\sopadver.exe] => (Allow) C:\program files (x86)\sopcast\adv\sopadver.exe
FirewallRules: [TCP Query User{33582434-88CD-44EC-9119-86C3973D8B00}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{AD085AD6-D7A4-4D4E-8988-AE9CA91D4CCC}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Allow) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{FD15FA88-9BA0-4D23-AA0F-72DD78289A29}C:\program files (x86)\surfmusik 3.1\surfmusik.exe] => (Allow) C:\program files (x86)\surfmusik 3.1\surfmusik.exe
FirewallRules: [UDP Query User{6CAFEE95-FC85-427B-B9E1-549C4284049F}C:\program files (x86)\surfmusik 3.1\surfmusik.exe] => (Allow) C:\program files (x86)\surfmusik 3.1\surfmusik.exe
FirewallRules: [{F78679B4-EFF5-417B-B4E2-0690DF9EBE10}] => (Allow) C:\Program Files (x86)\NetSpot Device Installer\nsdi.exe
FirewallRules: [{4E88ABBA-8D99-41DB-9279-E4E9E15B9B72}] => (Allow) C:\Program Files (x86)\NetSpot Device Installer\nsdi.exe
FirewallRules: [{47CE8023-ACE9-406E-A5C8-1843E034FE48}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{D641FB6D-556E-438A-836C-7F88FF32E60A}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{60C6F925-6AA1-4BA2-B7D5-85867459405A}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [{2F1AC905-A3BD-4ECF-8C65-4A23339B49A0}] => (Allow) C:\Program Files (x86)\ICQ7.6\ICQ.exe
FirewallRules: [TCP Query User{E34860B4-5E01-456C-9CE8-A61914E662A2}C:\program files (x86)\orbitdownloader\orbitnet.exe] => (Block) C:\program files (x86)\orbitdownloader\orbitnet.exe
FirewallRules: [UDP Query User{105F5672-EC0F-48F0-A5E2-40CECBCB6ECF}C:\program files (x86)\orbitdownloader\orbitnet.exe] => (Block) C:\program files (x86)\orbitdownloader\orbitnet.exe
FirewallRules: [TCP Query User{2C6C3821-5A2F-471F-9112-0053DFD1FA78}C:\program files (x86)\icq7.6\icq.exe] => (Allow) C:\program files (x86)\icq7.6\icq.exe
FirewallRules: [UDP Query User{EB0D7565-31FC-4718-B156-4F083C78D86D}C:\program files (x86)\icq7.6\icq.exe] => (Allow) C:\program files (x86)\icq7.6\icq.exe
FirewallRules: [TCP Query User{52883E88-B3C4-46E6-9A88-C303A7081D74}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [UDP Query User{065A4C35-3E0E-422A-8B75-5FE028BD288E}C:\program files (x86)\winamp\winamp.exe] => (Block) C:\program files (x86)\winamp\winamp.exe
FirewallRules: [TCP Query User{B5F44E10-B550-49CA-BD3B-25F070D683EC}C:\program files (x86)\ea sports\fussball manager 11\manager11.exe] => (Allow) C:\program files (x86)\ea sports\fussball manager 11\manager11.exe
FirewallRules: [UDP Query User{D3CC1193-6BB6-4CE1-9256-5616619C2CCF}C:\program files (x86)\ea sports\fussball manager 11\manager11.exe] => (Allow) C:\program files (x86)\ea sports\fussball manager 11\manager11.exe
FirewallRules: [TCP Query User{3B15D6EB-2057-48DA-B926-20A079ABEF1A}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{4329817B-DBE8-4B5A-A470-226445F9CD7A}C:\program files (x86)\tmnationsforever\tmforever.exe] => (Allow) C:\program files (x86)\tmnationsforever\tmforever.exe
FirewallRules: [TCP Query User{E39FC708-B2A2-463E-AAA2-F7A2BD6C94B2}D:\games\grid\grid.exe] => (Block) D:\games\grid\grid.exe
FirewallRules: [UDP Query User{301FD092-D5B3-4166-91CE-6717CBD0ABB9}D:\games\grid\grid.exe] => (Block) D:\games\grid\grid.exe
FirewallRules: [TCP Query User{F66A7DBF-11E0-4E43-B055-6A4EDEED7399}C:\program files (x86)\sopcast\sopcast.exe] => (Block) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [UDP Query User{6B137AF0-DA19-4DDB-AA10-B514150803AC}C:\program files (x86)\sopcast\sopcast.exe] => (Block) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [TCP Query User{0AE8298D-7FBF-46F0-A530-28FD0899F69E}C:\program files (x86)\sopcast\adv\sopadver.exe] => (Block) C:\program files (x86)\sopcast\adv\sopadver.exe
FirewallRules: [UDP Query User{E85A6BD5-CB4F-4983-80C5-86FF1FCE83C0}C:\program files (x86)\sopcast\adv\sopadver.exe] => (Block) C:\program files (x86)\sopcast\adv\sopadver.exe
FirewallRules: [{CE508DFC-8E1D-48F9-A21B-49AFA4F154B6}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe
FirewallRules: [{360987B0-B0EE-41EF-9D46-18A1E3008EFE}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\RM.exe
FirewallRules: [{B8079174-EE1F-4C54-AB71-158E73A861C7}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe
FirewallRules: [{F0BC220A-3295-434E-82C2-D5A19A78C976}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\Studio.exe
FirewallRules: [{6DA5D42F-3CFE-4D89-A9B0-74E6F8A088F4}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe
FirewallRules: [{48F3FC65-EDB7-4BCF-9BC4-74D5F81F0199}] => (Allow) C:\Program Files (x86)\Pinnacle\Studio 15\Programs\umi.exe
FirewallRules: [{53140644-F8DA-4704-BCC6-4A8D60FA996A}] => (Allow) C:\Program Files (x86)\MAGIX\Web Designer MX Premium\WebDesigner.exe
FirewallRules: [{13D20F65-A79E-4AEF-80A7-D664B0349A4E}] => (Allow) C:\Program Files (x86)\MAGIX\Web Designer MX Premium\WebDesigner.exe
FirewallRules: [{380D87FB-10B1-45E9-8268-21885A0DBD46}] => (Allow) C:\Program Files (x86)\MAGIX\Web Designer MX Premium\WebDesigner.exe
FirewallRules: [{CDDFFE2E-D206-4147-A7FF-3E26488C2A5E}] => (Allow) C:\Program Files (x86)\MAGIX\Web Designer MX Premium\WebDesigner.exe
FirewallRules: [{96BDED9C-E958-4D6C-A001-5F86CC316F9A}] => (Allow) C:\Program Files (x86)\Common Files\MAGIX Services\Uninstall\{4D5A1C12-2F7B-4A67-B186-ECAE22EF4FCB}\Web_Designer_MX_Premium_de-DE_setup.exe
FirewallRules: [{5D8F1297-05CF-4ED9-B910-AFD2AC056AE5}] => (Allow) C:\Program Files (x86)\Common Files\MAGIX Services\Uninstall\{4D5A1C12-2F7B-4A67-B186-ECAE22EF4FCB}\Web_Designer_MX_Premium_de-DE_setup.exe
FirewallRules: [{BAB69C3B-E187-4761-88B1-6C07FEC8E2D6}] => (Allow) C:\Program Files (x86)\Common Files\MAGIX Services\Uninstall\{4D5A1C12-2F7B-4A67-B186-ECAE22EF4FCB}\Web_Designer_MX_Premium_de-DE_setup.exe
FirewallRules: [{4C9578DA-CCCE-4D4F-9D37-4E71A96FE850}] => (Allow) C:\Program Files (x86)\Common Files\MAGIX Services\Uninstall\{4D5A1C12-2F7B-4A67-B186-ECAE22EF4FCB}\Web_Designer_MX_Premium_de-DE_setup.exe
FirewallRules: [{E293285A-6388-49F5-B77D-789E5AAB3A4F}] => (Allow) LPort=587
FirewallRules: [TCP Query User{EF23F4CA-060E-4315-BA8F-CE29E3FB0F49}C:\program files (x86)\webeditor5\bin\webeditor.exe] => (Allow) C:\program files (x86)\webeditor5\bin\webeditor.exe
FirewallRules: [UDP Query User{DF188539-38D3-4641-B967-525414B0DC20}C:\program files (x86)\webeditor5\bin\webeditor.exe] => (Allow) C:\program files (x86)\webeditor5\bin\webeditor.exe
FirewallRules: [TCP Query User{EBD7B4E0-42E3-46A8-A878-225BC80AF064}C:\program files (x86)\webeditor5\bin\webeditor.exe] => (Allow) C:\program files (x86)\webeditor5\bin\webeditor.exe
FirewallRules: [UDP Query User{FEF34443-B117-484E-AA8F-2F2F8B7F5647}C:\program files (x86)\webeditor5\bin\webeditor.exe] => (Allow) C:\program files (x86)\webeditor5\bin\webeditor.exe
FirewallRules: [TCP Query User{77298C32-15B4-435A-AFA1-E00104E36DA5}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{02843F14-2B83-42EC-B609-D499799E18EA}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe
FirewallRules: [{32E66DC7-5E01-44D5-963A-2DAD236F1ED1}] => (Allow) C:\Users\Philipp\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{7CF500BB-7B47-4D5E-B492-FDAC2ABCCF4C}] => (Allow) C:\Users\Philipp\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{89B34F44-1629-4F55-B141-78AFDEEE678C}C:\users\philipp\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\philipp\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{ACAA1CD7-C061-4EE2-BD16-B61288A78984}C:\users\philipp\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\philipp\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{8C29A1A1-0709-415B-8C3B-6E28B90AC2FF}] => (Allow) C:\Users\Philipp\AppData\Local\Facebook\Video\Skype\FacebookVideoCalling.exe
FirewallRules: [TCP Query User{651FDFB3-E8FE-4F0B-ACFC-D3FE5F163DE7}C:\users\philipp\desktop\desktop\webeditor5\bin\webeditor.exe] => (Block) C:\users\philipp\desktop\desktop\webeditor5\bin\webeditor.exe
FirewallRules: [UDP Query User{700BFABC-2ECC-4FF6-B508-7E4BEDC1CD9C}C:\users\philipp\desktop\desktop\webeditor5\bin\webeditor.exe] => (Block) C:\users\philipp\desktop\desktop\webeditor5\bin\webeditor.exe
FirewallRules: [{2EED5CCD-D2F3-4022-850F-71358DAFDB72}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{699B8810-F2A1-48B7-9094-68AED5EF0C14}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{EA2F3924-7074-48CA-8C0C-B1C70225D3F3}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{AC9DD49F-9ECB-446F-84AF-6D04506E43B3}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{98B7E4E0-5C6E-4E9D-AB61-CD11CA4DE9B9}C:\users\philipp\desktop\webeditor5\bin\webeditor.exe] => (Allow) C:\users\philipp\desktop\webeditor5\bin\webeditor.exe
FirewallRules: [UDP Query User{954A42B2-92D5-48E5-A951-C28C623B7DFA}C:\users\philipp\desktop\webeditor5\bin\webeditor.exe] => (Allow) C:\users\philipp\desktop\webeditor5\bin\webeditor.exe
FirewallRules: [{48ABF814-FE58-4EF3-BD63-AF19046444DE}] => (Allow) C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
FirewallRules: [{41487F5E-E26A-4323-BE76-A7BBF76EBFEE}] => (Allow) C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
FirewallRules: [{E757B943-87C7-4B77-9C0D-C68644D6470B}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\RM.exe
FirewallRules: [{DE14507C-12A0-4A0B-8DAB-8601168FEF7A}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\RM.exe
FirewallRules: [{B3A4E4D0-8A4B-413E-87B9-7157410C25DD}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\NGStudio.exe
FirewallRules: [{7CED754B-02BB-4366-A2D2-C2C12335638F}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\NGStudio.exe
FirewallRules: [{5F169F79-2B2F-4C69-BC32-21213C2280AB}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\UMI.exe
FirewallRules: [{9023F610-996D-4AAD-8B37-4DF36D9A3DD1}] => (Allow) C:\Program Files\Pinnacle\Studio 18\programs\UMI.exe
FirewallRules: [TCP Query User{ADD00C37-4F86-445D-91CC-12215BE6CADA}C:\program files (x86)\milestone\motogp14\motogp14x64.exe] => (Allow) C:\program files (x86)\milestone\motogp14\motogp14x64.exe
FirewallRules: [UDP Query User{BF5A3C2B-5C2A-4CD3-B1FB-87DEC323B78C}C:\program files (x86)\milestone\motogp14\motogp14x64.exe] => (Allow) C:\program files (x86)\milestone\motogp14\motogp14x64.exe
FirewallRules: [{CF46E137-C606-4D8A-866C-4A274E9D7120}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{4BC977FC-30CE-4D55-A11A-F12FE2222782}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C130660D-A867-47C7-8694-D769FF531420}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Orbitdownloader\orbitdm.exe] => Enabled:Orbit
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Orbitdownloader\orbitnet.exe] => Enabled:Orbit
==================== Wiederherstellungspunkte =========================
11-04-2016 18:46:20 Windows Update
18-04-2016 21:26:24 Windows Update
21-04-2016 19:42:33 Removed Microsoft Games for Windows Marketplace
21-04-2016 19:54:24 Removed Microsoft Games for Windows - LIVE Redistributable
21-04-2016 20:00:32 Removed Microsoft Games for Windows Marketplace
21-04-2016 20:06:28 Removed Skype Click to Call
21-04-2016 21:36:53 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (04/21/2016 11:30:23 AM) (Source: Microsoft Office 11) (EventID: 2000) (User: )
Description: Accepted Safe Mode action : Microsoft Office Word.
Error: (04/21/2016 11:30:17 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Name des fehlerhaften Moduls: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x008dd2e4
ID des fehlerhaften Prozesses: 0xa2c
Startzeit der fehlerhaften Anwendung: 0xWINWORD.EXE0
Pfad der fehlerhaften Anwendung: WINWORD.EXE1
Pfad des fehlerhaften Moduls: WINWORD.EXE2
Berichtskennung: WINWORD.EXE3
Error: (04/20/2016 10:51:55 PM) (Source: Microsoft Office 11) (EventID: 2000) (User: )
Description: Accepted Safe Mode action : Microsoft Office Word.
Error: (04/20/2016 10:51:45 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Name des fehlerhaften Moduls: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x008dd2e4
ID des fehlerhaften Prozesses: 0x132c
Startzeit der fehlerhaften Anwendung: 0xWINWORD.EXE0
Pfad der fehlerhaften Anwendung: WINWORD.EXE1
Pfad des fehlerhaften Moduls: WINWORD.EXE2
Berichtskennung: WINWORD.EXE3
Error: (04/20/2016 10:34:54 PM) (Source: Microsoft Office 11) (EventID: 2001) (User: )
Description: Rejected Safe Mode action : Microsoft Office Word.
Error: (04/20/2016 10:34:49 PM) (Source: Microsoft Office 11) (EventID: 2000) (User: )
Description: Accepted Safe Mode action : Microsoft Office Word.
Error: (04/19/2016 08:51:29 PM) (Source: Microsoft Office 11) (EventID: 2000) (User: )
Description: Accepted Safe Mode action : Microsoft Office Word.
Error: (04/19/2016 08:51:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Name des fehlerhaften Moduls: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x008dd2e4
ID des fehlerhaften Prozesses: 0x2054
Startzeit der fehlerhaften Anwendung: 0xWINWORD.EXE0
Pfad der fehlerhaften Anwendung: WINWORD.EXE1
Pfad des fehlerhaften Moduls: WINWORD.EXE2
Berichtskennung: WINWORD.EXE3
Error: (04/19/2016 08:51:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Name des fehlerhaften Moduls: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x008dd2e4
ID des fehlerhaften Prozesses: 0x1944
Startzeit der fehlerhaften Anwendung: 0xWINWORD.EXE0
Pfad der fehlerhaften Anwendung: WINWORD.EXE1
Pfad des fehlerhaften Moduls: WINWORD.EXE2
Berichtskennung: WINWORD.EXE3
Error: (04/19/2016 08:51:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Name des fehlerhaften Moduls: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Ausnahmecode: 0xc0000005
Fehleroffset: 0x008dd2e4
ID des fehlerhaften Prozesses: 0x1c30
Startzeit der fehlerhaften Anwendung: 0xWINWORD.EXE0
Pfad der fehlerhaften Anwendung: WINWORD.EXE1
Pfad des fehlerhaften Moduls: WINWORD.EXE2
Berichtskennung: WINWORD.EXE3
Systemfehler:
=============
Error: (04/22/2016 12:40:50 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)
Error: (04/22/2016 12:39:18 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (04/22/2016 12:37:30 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "HYRDBios" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (04/22/2016 12:36:40 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Die Dateisystemstruktur auf dem Datenträger ist beschädigt und unbrauchbar.
Führen Sie auf dem Volume "C:" den Befehl "chkdsk" aus.
Error: (04/22/2016 12:09:02 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)
Error: (04/22/2016 12:08:56 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)
Error: (04/22/2016 12:07:44 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "HYRDBios" wurde aufgrund folgenden Fehlers nicht gestartet:
%%2
Error: (04/22/2016 12:05:50 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.217.1832.0
Aktualisierungsquelle: %NT-AUTORITÄT59
Aktualisierungsphase: 4.9.0218.00
Quellpfad: 4.9.0218.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (04/22/2016 12:05:49 PM) (Source: Microsoft Antimalware) (EventID: 2001) (User: )
Description: Beim Aktualisieren der Signaturen wurde von %NT-AUTORITÄT60 ein Fehler festgestellt.
Neue Signaturversion:
Vorherige Signaturversion: 1.217.1832.0
Aktualisierungsquelle: %NT-AUTORITÄT59
Aktualisierungsphase: 4.9.0218.00
Quellpfad: 4.9.0218.01
Signaturtyp: %NT-AUTORITÄT602
Aktualisierungstyp: %NT-AUTORITÄT604
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion: %NT-AUTORITÄT605
Vorherige Modulversion: %NT-AUTORITÄT606
Fehlercode: %NT-AUTORITÄT607
Fehlerbeschreibung: %NT-AUTORITÄT608
Error: (04/22/2016 12:02:43 PM) (Source: Disk) (EventID: 11) (User: )
Description: Der Treiber hat einen Controllerfehler auf \Device\Harddisk1\DR1 gefunden.
CodeIntegrity:
===================================
Date: 2012-08-13 16:45:25.400
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
Date: 2012-08-13 16:45:25.338
Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i5 CPU M 480 @ 2.67GHz
Prozentuale Nutzung des RAM: 52%
Installierter physikalischer RAM: 3958.84 MB
Verfügbarer physikalischer RAM: 1885.71 MB
Summe virtueller Speicher: 7915.88 MB
Verfügbarer virtueller Speicher: 5779.68 MB
==================== Laufwerke ================================
Drive c: (WINDOWS) (Fixed) (Total:297.93 GB) (Free:41.84 GB) NTFS
Drive d: (Data) (Fixed) (Total:297.86 GB) (Free:31.44 GB) NTFS
Drive f: (MotoGP14) (CDROM) (Total:7.95 GB) (Free:0 GB) CDFS
Drive g: (STICK) (Removable) (Total:3.7 GB) (Free:1.43 GB) FAT32
Drive k: () (Removable) (Total:14.93 GB) (Free:14.17 GB) FAT32
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: 24EA438D)
Partition 1: (Active) - (Size=393 MB) - (Type=27)
Partition 2: (Not Active) - (Size=297.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=297.9 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (Size: 14.9 GB) (Disk ID: 00000000)
Partition: GPT.
========================================================
Disk: 2 (MBR Code: Windows XP) (Size: 3.7 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=3.7 GB) - (Type=0B)
==================== Ende von Addition.txt ============================
|
FRST 32-Bit | FRST 64-Bit
Lesestoff:
Malwarebytes Anti-Rootkit und speichere es auf deinem Desktop.
AdwCleaner auf deinen Desktop.
