Trojaner-Board
Seite 2 von 3 1 2 3
100 Beiträge dieses Themas auf einer Seite anzeigen

Trojaner-Board (https://www.trojaner-board.de/)
-   Log-Analyse und Auswertung (https://www.trojaner-board.de/log-analyse-auswertung/)
-   -   Windows 7 Werbung bei Systemstart, Popups während Benutzung, Werbung im Internet (https://www.trojaner-board.de/178788-windows-7-werbung-systemstart-popups-waehrend-benutzung-werbung-internet.html)

Terrenay 20.05.2016 12:08
FRST File ist 800'000 Zeichen lang, kann es nicht mal annähernd posten.
Hier die Addition:

Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:16-05-2016
durchgeführt von Sven (2011-01-02 16:11:00)
Gestartet von C:\Users\Sven\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-11-07 09:27:53)
Start-Modus: Safe Mode (minimal)
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1536315646-4119356758-1407283469-500 - Administrator - Disabled)
Gast (S-1-5-21-1536315646-4119356758-1407283469-501 - Limited - Disabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-1536315646-4119356758-1407283469-1009 - Limited - Enabled)
Mirjam Zanetti (S-1-5-21-1536315646-4119356758-1407283469-1000 - Administrator - Enabled) => C:\Users\Mirjam Zanetti
Sven (S-1-5-21-1536315646-4119356758-1407283469-1001 - Administrator - Enabled) => C:\Users\Sven
Tim (S-1-5-21-1536315646-4119356758-1407283469-1010 - Administrator - Enabled) => C:\Users\Tim.MirjamZanetti

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)


==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4Story (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Kalydo App 4Story) (Version: 4.02.02.6 - )
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
Acer eDisplay Management (HKLM-x32\...\{A586DC50-B18D-48FB-B7CC-A598200457C2}) (Version: 1.37.007 - Portrait Displays, Inc.)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3507 - Acer Incorporated)
Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.2.5 - WildTangent)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3506 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0609.2011 - Acer Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.16) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.1.171 - Adobe Systems, Inc.)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.5 - Sereby Corporation)
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AncientMagic_New (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\785aa0fbe9abac3c) (Version: 0.0.0.2 - AncientMagic_New)
Anki (HKLM-x32\...\Anki) (Version:  - )
Any Video Converter 5.5.5 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.4272 - DsNET Corp)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Avidemux 2.6 (32-bit) (HKLM-x32\...\Avidemux 2.6) (Version: 2.6.7.8981 - )
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.4.0.895 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
Benutzerhandbuch - Grundlagen EPSON XP-402 403 405 406 Series (HKLM-x32\...\EPSON XP-402 403 405 406 Series Bog) (Version:  - )
Benutzerhandbuch EPSON XP-402 403 405 406 Series (HKLM-x32\...\EPSON XP-402 403 405 406 Series Useg) (Version:  - )
Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
BitComet 1.36 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.36 - CometNetwork)
Blend for Visual Studio 2012 (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio 2012 DEU resources (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio 2012 ENU resources (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio Add-in for Adobe FXG Import (x32 Version: 1.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blender (HKLM\...\Blender) (Version: 2.70a - Blender Foundation)
Blender (HKLM-x32\...\{1115EF75-E8C1-4BA1-829F-1B8460D47701}) (Version: 2.76.2 - Blender Foundation)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.7.17.916 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{7E6316CA-5ED0-4EF9-9920-A92115E286B7}) (Version: 0.7.17.916 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Camtasia Studio 8 (HKLM-x32\...\{F6EC4C4E-C87B-4F50-851B-1C86E0C94F00}) (Version: 8.6.0.2055 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Chat Mapper (HKLM-x32\...\{498F0DC0-3B5E-4DC7-B571-578F61306058}) (Version: 1.7.0.0 - Urban Brain Studios, Inc.)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Cinema 4D version R12 (HKLM-x32\...\{7D9D8134-9FA3-4FFF-ADA1-BF609F29997A}_is1) (Version: R12 - Salat Production)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.00.3004 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.00.3004 - Acer Incorporated)
clear.fi SDK - MVP 2 (x32 Version: 2.0.1505 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.0.1502 - CyberLink Corp.) Hidden
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Devenv-Ressourcen für Microsoft Visual Studio 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
DirectX for Managed Code (HKLM\...\{FDF7187F-3960-4BEC-916D-98C9A83E3A68}_is1) (Version: 1.0.0.0 - Sereby Corporation)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition Language Pack (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Download Navigator (HKLM-x32\...\{E728441A-7820-4B1C-87C9-DE7BE37B2953}) (Version: 1.1.0 - SEIKO EPSON CORPORATION)
Druckerdeinstallation für EPSON XP-402 403 405 406 Series (HKLM\...\EPSON XP-402 403 405 406 Series) (Version:  - SEIKO EPSON Corporation)
Dxtory version 2.0.127 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.127 - ExKode Co. Ltd.)
eBay Worldwide (HKLM-x32\...\{D3E5A972-9A15-427D-AE78-8181A5FD943C}) (Version: 2.2.0409 - OEM)
Entity Framework Designer für Visual Studio 2012 - DEU (HKLM-x32\...\{B2BDC072-BE01-432D-B281-30891D597FBB}) (Version: 11.1.30729.00 - Microsoft Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{30E01116-5666-4807-8EF1-D80E9FF16717}) (Version: 2.3.2.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Event Manager (HKLM-x32\...\{BECE9CCD-83F6-4BAA-9B26-227DF7D2E932}) (Version: 3.01.0000 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
FileZilla Client 3.8.1 (HKLM-x32\...\FileZilla Client) (Version: 3.8.1 - Tim Kosse)
Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
Finale 2014d DEMO (HKLM-x32\...\Finale 2014) (Version: 2014.4.5030.0 - MakeMusic)
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleri (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleriet (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Freemake Video Converter Version 4.1.7 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.7 - Ellora Assets Corporation)
Galeria de Fotografias (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotogràfica (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
GLBasic SDK (HKLM-x32\...\GLBasic_SDK) (Version: 12.096 - Dream Design Entertainment)
GnuWin32: CoreUtils version 5.3.0 (HKLM-x32\...\CoreUtils-5.3.0_is1) (Version: 5.3.0 - GnuWin32)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - )
hohosearch - Uninstall (HKLM-x32\...\{7DBBEBEE-C964-422D-B6BE-1866506CFC72}) (Version:  - )
Hotfix für Microsoft Visual C# 2010 Express - DEU (KB2635973) (HKLM-x32\...\{D81641E8-ABF1-3D07-803B-60E8FC619368}.KB2635973) (Version: 1 - Microsoft Corporation)
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 2.05.3510 - Acer Incorporated)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.12412 - HP)
HP Photosmart 7520 series - Grundlegende Software für das Gerät (HKLM\...\{62883BA5-32F6-44D0-AF9D-9CBED778F36F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HyperCam 3 (HKLM-x32\...\HyperCam 3 3.5.1211.29) (Version: 3.5.1211.29 - Solveig Multimedia)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Insaniquarium Deluxe (x32 Version: 2.2.0.97 - WildTangent) Hidden
InstallForge (HKLM-x32\...\InstallForge) (Version: 1.2.9.1 - solicus)
Interdiscount Fotoservice (HKLM-x32\...\Interdiscount Fotoservice) (Version: 4.8.6 - CEWE COLOR AG u Co. OHG)
iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
JavaScript Tooling (Version: 11.0.60315 - Microsoft Corporation) Hidden
JetBrains ReSharper 7.0.1 (HKLM-x32\...\{1322DAC7-A713-4015-8F36-035F07A06ECA}) (Version: 7.0.1098 - JetBrains Inc)
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Kalydo Player 6.00.00 (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\KalydoPlayer) (Version: 6.00.00 - Eximion B.V.)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
Last.fm Scrobbler 2.1.36 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 12.6.0.0 - Lightworks)
LocalESPC (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
LocalESPCui for de-de (x32 Version: 8.59.25584 - Microsoft) Hidden
LocalESPCui for en-us (x32 Version: 8.59.25584 - Microsoft) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.428 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.232 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (x32 Version: 2.2.0.428 - LogMeIn, Inc.) Hidden
LoiLo Game Recorder (HKLM\...\{89E4163C-BD19-45A9-BCEB-980741786799}_is1) (Version: 1.1.0.1 - LoiLo inc.)
LoiLoScope 2 (HKLM-x32\...\{CAB75FFC-2377-4B95-A8FA-C9234B812A92}_is1) (Version: 2.5.4.2 - LoiLo inc)
MAESTIA Version 201207 (HKLM-x32\...\{8F50EC3D-C482-4445-9E4B-991A766047D5}_is1) (Version: 201207 - RocWorks)
Magicka - Demo (HKLM-x32\...\Steam App 73050) (Version:  - Arrowhead Game Studios)
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2656370) (HKLM-x32\...\M2656370) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version:  - )
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{98B45D1C-6EB1-460D-A87D-2B60678DC105}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{1948E039-EC79-4591-951D-9867A8C14C90}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 - DEU (HKLM-x32\...\{07AC2D83-E795-4AD5-970D-B9BD14A1E411}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages - DEU (HKLM-x32\...\{93EEC4E9-EEFE-4027-ACD3-6E8C1D085975}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 Language Pack - DEU (HKLM-x32\...\Microsoft Help Viewer 2.0 Language Pack - DEU) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0401-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0402-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0403-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0404-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0405-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0406-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0407-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0408-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040B-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040C-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040D-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040E-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0410-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0413-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0414-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0415-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0416-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0418-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0419-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041A-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041B-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041D-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041E-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041F-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0424-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0816-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0C0A-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK - Deutsch (HKLM-x32\...\{8EA792A5-38AA-4F0E-8DFE-D1BAF1145431}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{A106D33E-6B43-42C0-9BFC-D03303261FA7}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{13D558FE-A863-402C-B115-160007277033}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service  (HKLM\...\{BEB0F91E-F2EA-48A1-B938-7857ABF2A93D}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{6D6D43E5-218C-4B05-92D3-2240810F4760}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU  (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (11.1.20828.01) (HKLM-x32\...\{E511AE89-54BB-481D-BC4A-1B1F1E1B7693}) (Version: 11.1.20828.01 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (11.1.20828.01) (HKLM-x32\...\{00C84D22-DB8F-4159-BF70-682B8EA56A1E}) (Version: 11.1.20828.01 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{C668416A-9213-4058-B7F2-01A42D85559D}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{1E6ED082-E32D-4B2B-8B6A-70B094815135}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C# 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{aec97477-921a-4289-985a-9e29506625b6}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{616C6F39-4CE1-3434-A665-2F6A04C09A7F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Express 2012 für Windows Desktop - DEU (HKLM-x32\...\{69ec32be-d994-44de-9eae-6d86ced6f352}) (Version: 11.0.50727.42 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2012 (HKLM-x32\...\{ae17ae9b-af38-40d2-a194-6102c56ed502}) (Version: 11.0.50727.26 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{3674F088-9B90-473A-AAC3-20A00D8D810C}) (Version: 3.1237.1762 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - DEU (HKLM-x32\...\{86756584-C41A-4CA3-B42D-4768C7720F56}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - enu (HKLM-x32\...\{E4C33F5B-1B2F-466E-957E-B274F08151A0}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft XNA Game Studio Platform Tools (HKLM-x32\...\{89690B51-2E21-4E93-914E-F9CAC5B24A84}) (Version: 1.4.0.0 - Microsoft Corporation)
Minecraft Editor 64 bits (HKLM\...\{042CC934-54B5-4BEB-948D-F3780B2CE4D7}) (Version: 1.6.6 - Axialmedia)
MixPad Multitrack Recording Software (HKLM-x32\...\MixPad) (Version: 4.00 - NCH Software)
MonoGame (HKLM-x32\...\MonoGame) (Version: 3.0 - MonoGame)
MorphVOX Pro (HKLM-x32\...\{53AB1F25-D607-4B4D-8FD5-74E03F2F9414}) (Version: 4.4.7 - Screaming Bee)
Movavi Screen Capture Studio 7 (HKLM-x32\...\Movavi Screen Capture Studio 7) (Version: 7.1.0 - Movavi)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 46.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 de)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla)
MP4 To MP3 Converter V3.0.5 (HKLM-x32\...\MP4 To MP3 Converter_is1) (Version:  - hxxp://www.MP4ToMP3Converter.net)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
MpcStar 5.4 (HKLM-x32\...\MpcStar) (Version: 5.4 - www.mpcstar.com)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.18 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.18 - Egis Technology Inc.) Hidden
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.4.10500.1.100 - Nero AG)
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.6.10700.5.100 - Nero AG)
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{62BF4BD3-B1F6-4FA2-8388-CC0647ACBF86}) (Version: 10.6.10300 - Nero AG)
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.6.10600.4.100 - Nero AG)
Netzwerkhandbuch EPSON XP-402 403 405 406 Series (HKLM-x32\...\EPSON XP-402 403 405 406 Series Netg) (Version:  - )
No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.94.107.0 - Overwolf Ltd.)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pivot Pro Plugin (x32 Version: 9.50.110 - Portrait Displays, Inc.) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poczta usługi Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pokemon Online 2.0.1 (HKLM-x32\...\{2C08D7E7-9EE1-4A08-AFE0-745F02DCD6A4}_is1) (Version:  - Dreambelievers)
POKéMON Simulator 4.5 (HKLM-x32\...\POKéGAME32) (Version: 4.5 - Birdiesoft)
Pokémon Trading Card Game Online (HKLM-x32\...\{F323157A-218F-4613-9673-F975AB9397CF}) (Version: 2.23.1 - The Pokémon Company International)
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Pošta Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PreEmptive Analytics Client German Language Pack (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{9169C939-ED01-446A-BD0C-29873BAF4E48}) (Version: 11.0.2100.60 - Microsoft Corporation)
Raccolta foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 6.4.6.10930 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6392 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version:  - )
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.) Hidden
SDK (x32 Version: 2.32.010 - Portrait Displays, Inc.) Hidden
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Sizer 3.34 (HKLM-x32\...\{DE43AA92-E8C0-4620-AFE2-FBD623C71643}) (Version: 3.3.4.0 - Brian Apps)
Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.)
Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Software Updater (HKLM-x32\...\{7B3A525D-9D3D-4618-AE52-A31DE98C8AC3}) (Version: 4.1.4 - SEIKO EPSON CORPORATION)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Steuer 2012 13.0.3 (HKLM-x32\...\1382-8438-0790-3872) (Version: 13.0.3 - Information Factory AG)
Steuer 2013 14.0.1 (HKLM-x32\...\0166-6433-7072-1489) (Version: 14.0.1 - Information Factory AG)
Steuer 2014 15.0.4 (HKLM-x32\...\0557-1095-3602-3415) (Version: 15.0.4 - Information Factory AG)
Steuer St.Gallen 2015 nP 1.12.0 (HKLM-x32\...\2081-5105-2470-6923) (Version: 1.12.0 - Information Factory AG)
Studie zur Verbesserung von HP Photosmart 7520 series Produkten (HKLM\...\{D662A279-973A-42A0-8D4B-8747C56C0501}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISER_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISER_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISER_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISER_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
UpdateStar (HKLM-x32\...\{4B75C1B1-D0C7-4E70-9EE4-09CE7F734B0C}) (Version: 10.0.1265 - UpdateStar GmbH)
Valokuvavalikoima (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Vegas Movie Studio HD 11.0 (HKLM-x32\...\{6E3FD14F-858B-11E1-BC4A-F04DA23A5C58}) (Version: 11.0.75 - Sony)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 4.31 - NCH Software)
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.97 - WildTangent) Hidden
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{CFCB8616-A5D1-4281-80E8-389F685BFAE2}) (Version: 4.0.8080.0 - Microsoft Corporation)
Visual Studio 2012 Update 4 (KB2707250) (HKLM-x32\...\{312d9252-c71c-4c84-b171-f4ad46e22098}) (Version: 11.0.61030 - Microsoft Corporation)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 6.33 - NCH Software)
WCF Data Services 5.0 (for OData v3) DEU Language Pack (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services 5.0 (for OData v3) Primary Components (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2012 (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Visual Studio 11 DEU Language Pack (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{3A523AF9-D32F-4C85-8388-0335731F3405}) (Version: 4.1.61829.0 - Microsoft Corporation)
weblica - 3.6.3 (HKLM-x32\...\weblica) (Version: 3.6.3 - empros gmbh)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3507 - Acer Incorporated)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.10 Beta 4 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
WinTuneUp 1.0 (HKLM-x32\...\WinTuneUp) (Version: 1.0 - WinTuneUp Apps. )
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
Wondershare Video Editor(Build 3.5.0) (HKLM-x32\...\Wondershare Video Editor_is1) (Version:  - Wondershare Software)
X-Mouse Button Control 2.12.1 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.12.1 - Highresolution Enterprises)
yessearches Uninstall (HKLM-x32\...\Uninstall cos) (Version:  - ) <==== ACHTUNG
Zerius Vocoder (remove only) (HKLM-x32\...\VocoderGUI) (Version:  - )
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Συλλογή φωτογραφιών (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 16.4.3528.0331 - Корпорация Майкрософт) Hidden
Фотоальбом (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотографии (общедоступная версия) (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
גלריית התמונות (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
بريد Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
معرض الصور (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
影像中心 (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1536315646-4119356758-1407283469-1001_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-1536315646-4119356758-1407283469-1001_Classes\CLSID\{F7D4B6AD-AB5F-4fe8-9469-3A4697E41129}\InprocServer32 -> C:\Users\Sven\AppData\Roaming\Kalydo\KalydoPlayer\bin2\kalydoplayer64.dll (Eximion B.V.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0CCD72B3-24D9-4735-913B-6C29A494423B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {0E4EE11D-8CC4-49C1-AFF6-69AEEBF6D71E} - \ttwifi -> Keine Datei <==== ACHTUNG
Task: {1B396549-A773-464C-B9B3-B4C49CF28A10} - System32\Tasks\GPU Grid Computing => C:\Windows\SysWOW64\dfrg\runner.exe <==== ACHTUNG
Task: {2BE9495A-0536-4095-919C-3BAFBE453A32} - \UCBrowserUpdater -> Keine Datei <==== ACHTUNG
Task: {3CE40923-AC1D-4F0A-B3EC-9D65989E0DB4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-16] (Google Inc.)
Task: {518F9709-9D6E-4D35-A47D-D168B434E37B} - \rde3028 -> Keine Datei <==== ACHTUNG
Task: {85F8BC69-CE46-4016-B752-7A19AA8B795D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {87E712A9-9E69-4B7C-9F54-5A79A168AF42} - System32\Tasks\HPCustParticipation HP Photosmart 7520 series => C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {B48AFB8A-3786-4F8E-BDEB-E4F05F70409E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {CA415D1F-7A72-4B84-8880-31511E6E3DB6} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-05-08] (Overwolf LTD)
Task: {CFC139DF-686C-45F9-A5F4-DCF738E94779} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-12] (Adobe Systems Incorporated)
Task: {E14BE1A6-9A64-40D3-940C-A52A49596E45} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2014-01-23] ()
Task: {E45F4C4B-41F0-4A5B-983B-DB6815BF7334} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1536315646-4119356758-1407283469-1002Core => C:\Users\Tim\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-26] (Google Inc.)
Task: {E4794289-C070-4F37-B566-94013D77DA74} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-16] (Google Inc.)
Task: {E6A77144-B34A-441D-91C8-6EB1F41677AB} - \Muftion System -> Keine Datei <==== ACHTUNG
Task: {E87E1163-69D4-48D1-9F28-74D7FD0D0C23} - \osTip -> Keine Datei <==== ACHTUNG
Task: {EAE46E20-611D-4E3F-A2E8-1BC4EBE690C2} - System32\Tasks\{C04C0424-B84F-4869-9FF1-4EB72C75A6E7} => Chrome.exe hxxp://ui.skype.com/ui/0/7.13.0.101/de/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {F6E1D6E5-BA7F-4CF8-A9B3-E0570555F2CA} - System32\Tasks\{60145FA2-7B40-4FA2-9378-E17461215D59} => Chrome.exe hxxp://ui.skype.com/ui/0/7.18.0.109/de/abandoninstall?page=tsProgressBar

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1536315646-4119356758-1407283469-1002Core.job => C:\Users\Tim\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-05-01 20:29 - 2014-05-01 20:29 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2009-01-22 00:45 - 2009-01-22 00:45 - 01401856 _____ () C:\Program Files (x86)\EgisTec MyWinLocker\x64\LIBEAY32.dll
2012-06-18 16:24 - 2012-06-18 16:24 - 00222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Temp:373E1720 [118]
AlternateDataStreams: C:\ProgramData\Temp:AD022376 [296]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2016-05-16 17:33 - 00000509 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1      localhost
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1 activation.cloud.techsmith.com
127.0.0.1 oscount.techsmith.com
127.0.0.1      down.baidu2016.com
127.0.0.1      123.sogou.com
127.0.0.1      www.czzsyzgm.com
127.0.0.1      www.czzsyzxl.com
127.0.0.1      union.baidu2019.com

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Sven\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: Datenträger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\Services: ArcService => 3
MSCONFIG\Services: BITCOMET_HELPER_SERVICE => 3
MSCONFIG\Services: dowidoly => 2
MSCONFIG\Services: DTSRVC => 2
MSCONFIG\Services: EgisTec Ticket Service => 3
MSCONFIG\Services: Hamachi2Svc => 2
MSCONFIG\Services: hekipemezbt => 2
MSCONFIG\Services: LMIGuardianSvc => 2
MSCONFIG\Services: muftionSysSrv => 2
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: NoIPDUCService4 => 2
MSCONFIG\Services: PdiService => 2
MSCONFIG\Services: rijufoze => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: WdiSystemHost => 3
MSCONFIG\Services: WebClient => 3
MSCONFIG\Services: Wecsvc => 3
MSCONFIG\Services: wercplsupport => 3
MSCONFIG\Services: WerSvc => 3
MSCONFIG\Services: WinDefend => 3
MSCONFIG\Services: WinHttpAutoProxySvc => 3
MSCONFIG\Services: Winmgmt => 2
MSCONFIG\Services: WinRM => 3
MSCONFIG\Services: Wlansvc => 3
MSCONFIG\Services: wlidsvc => 2
MSCONFIG\Services: wmiApSrv => 3
MSCONFIG\Services: WMPNetworkSvc => 3
MSCONFIG\Services: WPCSvc => 3
MSCONFIG\Services: WPDBusEnum => 3
MSCONFIG\Services: wscsvc => 2
MSCONFIG\Services: WSearch => 2
MSCONFIG\Services: wuauserv => 2
MSCONFIG\Services: wudfsvc => 3
MSCONFIG\Services: WwanSvc => 3
MSCONFIG\Services: zdengine => 2
MSCONFIG\startupreg: 4StoryPrePatch => C:\Program Files (x86)\Gameforge4D\4Story\PrePatch.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DT ACR => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe -ACR
MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: EgisTecPMMUpdate => "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
MSCONFIG\startupreg: EgisUpdate => "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: Hotkey Utility => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: MSC => "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: Norton Online Backup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
MSCONFIG\startupreg: NUSB3MON => "C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: Pando Media Booster => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
MSCONFIG\startupreg: PivotSoftware => "C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe" -delay=10
MSCONFIG\startupreg: ProductUpdater => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SuiteTray => "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: UpdateStar => "C:\Users\Sven\AppData\Roaming\UpdateStar\UpdateStar.exe" -A
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{9462B2D3-A17E-4CC8-9F50-078AAC69E435}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{580618D5-E9DB-4E3B-B25E-A59EF5B51494}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{82D2F429-74BB-4C32-922E-1E7A892D765C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{AC1B5820-04E9-456F-8B76-AE66AB0F4CB6}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{7D24A664-1155-4C1C-B241-94D252E17CB8}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{5B815E70-F584-4277-9742-4389D1AF5CFC}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{148B2BE4-1FCC-4212-AE2C-74E2225A0A88}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{DC978FB0-C1DF-4D0C-A2C7-AEE4FEBF032E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{0CF50B5A-0F19-46E4-9419-C1F5126EAA4C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{78A4AA6C-A139-4088-A14D-FC7D70BE525C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{C0592437-A85B-4FB8-9CAB-32B397731B9B}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{0EF361D3-FEE7-4075-8CEC-675F48FAE460}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK20\MVP\VideoPlayer.exe
FirewallRules: [{2D67AC77-B7F6-4588-A540-3D265A4CA75C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK20\MVP\MusicPlayer.exe
FirewallRules: [TCP Query User{1F3FD1FD-BD9C-4D4F-B3C2-97BE8F91A91A}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{93864273-E271-41A8-8094-9140C2870233}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{726EAD03-473D-4442-8554-6ED54D57CD2E}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{2552CF72-F890-4F19-A4F7-75EA026A3C43}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{DE7791AC-4518-4C0D-B5E6-F45D69B8D6B2}] => (Allow) LPort=20475
FirewallRules: [{5F33F7DE-A149-482A-AE9D-D5C6D2B1C222}] => (Allow) LPort=20475
FirewallRules: [{0463379A-5979-497D-84B2-8420FEFFA404}] => (Allow) LPort=9091
FirewallRules: [{E566F44D-7C25-44BD-907B-3365562953F0}] => (Allow) C:\Users\Tim\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{9C70EB12-27FB-405A-B9BE-1E349D01E4E5}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\WDExpress.exe
FirewallRules: [{238943EF-0A5C-4705-8C4B-F3F134AE9564}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\FaxApplications.exe
FirewallRules: [{4B590E3A-3070-44A9-8599-7043D13FDB68}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\DigitalWizards.exe
FirewallRules: [{8049C2E0-DEF7-4907-8D02-B31D3F3E5010}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\SendAFax.exe
FirewallRules: [{818EC397-B395-4005-93DE-4ED04A396B80}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\DeviceSetup.exe
FirewallRules: [{8910907D-DB90-47F2-AFE6-902C841D3ED7}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{552C363C-A18C-47B5-8A72-BBCB79454CC3}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{707B4CA6-D4CA-4044-9693-A22EE2EE7626}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{A0FFA398-E6FC-4B47-953E-D2ADCC428CF5}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{B09BCB3E-BDEE-4D80-A800-1AA517621E65}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{34B2E825-442D-4088-9A8A-280FF08582D4}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{62F14F56-43C5-4430-A95F-D7145AD172FD}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{C21B1F76-0F02-4F0D-A909-3A5268E2EAFE}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{05930C5E-594E-44D8-81FA-8B55EA1B9A8C}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{07D73A5B-2525-4995-9E8B-A2509473A5C4}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{C315DD86-D029-494D-B1E0-D86849A50A44}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{AB7EECAB-E63E-48C4-AF91-A2FAEEC890C7}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{5E5AC77A-5FDD-4EF4-B7AF-2F0A9602786F}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{A3ED048D-448A-46B3-A06E-9F369587FF85}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{C6AF2A33-45F6-4AEC-9BFF-8157D80726D1}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{E29C1C7D-8E35-44D2-85DC-76F859A055C2}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{954C7ADB-9796-4012-978D-70DAF07A310A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{37E6984D-15E1-4912-BEFF-6EA27C2ACC35}] => (Allow) LPort=2869
FirewallRules: [{72A7AA2D-7F88-40DE-8E26-93771149922A}] => (Allow) LPort=1900
FirewallRules: [{431410E7-1283-4A12-ABDB-9E798F0559D0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DEE2A875-CF6A-42D7-842F-0BA46756A5CA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A3473D84-BE66-4C04-B45C-DA9F26AB2BC9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka demo\Magicka.exe
FirewallRules: [{A08355AC-BB6F-4962-B4B9-883AC93E05AC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka demo\Magicka.exe
FirewallRules: [TCP Query User{A51E5F08-F63E-447A-A0ED-1537C6D26B71}C:\users\tim\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tim\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{73A0DD47-C10F-43EF-9560-BA70B97B720A}C:\users\tim\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tim\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{71698641-3411-4752-A070-C273C8ECF826}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{2A621AB4-F2A0-405A-91A4-E508877800FC}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{C7B2EE33-A7A5-4874-BD04-AACD119FD624}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{5C4D119C-6BD1-4087-9E04-399E0066AAA4}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{A9BF5DA8-4DD5-48EF-BE51-9F339055AA94}] => (Allow) C:\Program Files (x86)\weblica\weblica.exe
FirewallRules: [TCP Query User{1C32A07E-0764-4714-849E-9127709524D5}C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe] => (Allow) C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe
FirewallRules: [UDP Query User{A489BEDA-7D2D-4369-8750-0A7F0BA8D533}C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe] => (Allow) C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe
FirewallRules: [TCP Query User{4B0BC44D-C4D3-415F-9D50-0320D1CF63DF}C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [UDP Query User{2A2B5DBE-4290-4371-8657-27BCFF96AA27}C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{76E0C5DA-76AD-4ACA-BA05-09AFF3F5BA57}] => (Block) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{D9F8508B-8AB8-43A0-86B7-3BBE11C811D6}] => (Block) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [TCP Query User{B6B13C98-98E8-45C1-97F1-ADB83E155563}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{26930909-FD48-45D1-9DCD-583EA2D3F7D6}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{D062F345-F169-4C2D-97C7-68C50DDE0F2F}] => (Allow) C:\Users\Tim.MirjamZanetti\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [TCP Query User{42937A0C-11C4-4C5F-8C88-E917E8C9133E}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{CADEF76C-18F7-4242-A333-D9F9A290EF40}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{6214BF3E-DEA2-4DA1-8BC0-B0450231A7BD}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{C5AACCD9-20B2-40EC-8907-7C5E0A45DC02}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{D7661791-1AC4-4DEB-8D8E-747E3195D95D}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{99C8B889-1A19-4391-B5FC-032A0263B386}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{575B3235-CE38-47F7-AABC-A954E3804BFE}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{BF8913AD-6D75-4819-A928-A0C2DFB85261}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{0D79849A-87CB-4292-BAB5-DD031FE3ADBA}C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{C9B0DB83-7A59-40F9-9693-B3812AA6AB1D}C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{A01ECB6A-3DD0-4822-B2B4-D32916434CF0}] => (Block) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{799AEF50-1F7B-4E0B-92A9-9BB78EA9AF4B}] => (Block) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{644F6E26-BA68-4728-931A-E7B4ECD54177}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{D35CAF44-07ED-464F-A21A-416CB261E0E5}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{79DF9FA1-0C13-44DA-8305-A04023294881}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{2CFA280C-184A-4C0A-BF0B-62C111A5B551}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{09A80C48-34DF-4804-8C3C-73D9BEB23A80}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{58DE412E-BE98-46DA-A836-E64118BA42AA}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{D44C6DFF-000A-415B-ADE9-05A8AD145221}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{D76097E7-7B6E-4903-9F1A-0BBE012ED859}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [TCP Query User{D7A99EB7-7181-43DE-ADF9-B4CE249EB75B}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{F9E55F25-029D-42C0-9C0D-23A5BD2A5D89}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{139F0E93-4023-4244-BBCE-94D02D2EAFE5}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{CBFA3DAE-BAEC-4A32-9D41-B9877D141C68}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [TCP Query User{723CC834-E0CF-4C52-9AF4-A9307DF1A7BA}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{1D73E402-DDC8-48B4-9E96-6D677ED9B7A9}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{B55CE91E-6821-45ED-9AAA-7D4D8155187F}] => (Block) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{3529908A-203B-4B0E-9CE5-AEFECAA110EC}] => (Block) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{89EF4555-2A4F-485B-9336-0A04ED4B4DDB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{14CAF6E5-9CEA-440C-A2C0-126B55897457}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{146C773A-1C44-4674-87F8-409A43FBCA35}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{29991097-16C7-4AFF-8EF1-7F76C7C9790C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{42C2C346-A081-4CCC-9410-FE689B82C1BF}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{BE590231-FF49-4DF1-B27E-3990810CACEF}C:\program files\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [UDP Query User{43E8356B-D4E7-4022-AD7A-559157F3FCAC}C:\program files\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{9DABADB6-6476-48DC-8619-876C4608E43D}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{9CAE6AE7-2E60-4CBB-9F86-60B64D025163}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [TCP Query User{81525426-587F-4C46-B49A-7E84B9331B15}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [UDP Query User{0BC50DC2-B972-4B2E-9F7C-80955877D179}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{99C531F6-4C59-4F85-B7DD-3FAF8DBAA57A}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{386833E1-0094-4E22-841F-5D98A5C38D9F}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [TCP Query User{2C69B31C-8296-41E4-ACFA-B54C332C3F70}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{90AC6A06-A386-46A7-84C5-8FA5A8F95579}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{D492CA87-3F7F-4A89-970A-F196C0D3A958}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{A27BF2F7-A806-48DD-906C-7B41EAA73DD3}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{3D762C8F-843D-4E18-8827-81B66F1B72C6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{50C50E55-44A6-468B-B084-8C684BA0EF37}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{CFD82FE1-E14C-45AE-B064-5EF9B4E38F9E}C:\program files (x86)\anki\anki.exe] => (Allow) C:\program files (x86)\anki\anki.exe
FirewallRules: [UDP Query User{FA06B19A-77E5-4269-9C68-CD15B9667446}C:\program files (x86)\anki\anki.exe] => (Allow) C:\program files (x86)\anki\anki.exe
FirewallRules: [{5967758D-5A30-4A57-9CEC-49944729B37F}] => (Block) C:\program files (x86)\anki\anki.exe
FirewallRules: [{DBB61106-9103-4EB5-B142-6BAAD9F2E8B1}] => (Block) C:\program files (x86)\anki\anki.exe
FirewallRules: [{E4EBAD19-D98D-4A68-8928-17179F2B2B84}] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{A3BA9110-A287-4142-A675-8F6429A2F441}] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{1F7A58EC-C141-4522-81E2-78A3D7CAAF99}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{C84053CC-6143-428A-8235-DE6A6EFBA175}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{532D0AD1-C154-4E02-A95A-E493BDC61F28}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{6062F188-855C-470E-87B1-B76BD2302474}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{155EAD8C-C20C-47BD-A3BE-CD5037099636}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{67DCC890-4FCB-407D-B753-DF3F09DC3D55}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{75421F0A-C574-464A-8B34-9CFA8A5E9B4F}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{19E0F77A-BE06-4EA2-BD71-8222A3F00762}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{94347B14-8E17-4310-99FC-B96A0F398C7F}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{4CA02776-654A-477A-8040-9A73CF1D26AF}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{4A235AF6-81F2-4638-85EC-1BA6EC1A70E2}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{81E6C42E-5F7F-4191-AD34-F803F0679D92}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{8A4DFF82-4453-4102-8C30-EFE83DE909E0}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{362B98DE-B0F2-4CF7-BC58-D843B8E38EC6}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{D2B6E33A-5AD0-4FB6-A3CB-D500346B366F}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{AC9CAB53-F1DE-417B-BE92-F76CDD58C9B2}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{3D3169C4-8DDD-463D-945B-C4AEC78FB6DA}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{3C4A2C3D-4B58-480F-B13F-6152F7EC4BFB}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{22F4AE47-6DF2-4514-8230-66B3D5F8BA0A}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{FAD529B9-CE0D-440D-B384-1B7126CB2C5C}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{B72EF3FA-1679-4197-AAC3-3CDAC2CF7F90}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [UDP Query User{3C3B4DD1-7BFD-41B1-BE44-BEE8FE7EAE72}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [{1A92D334-CA0C-437A-A9DA-2E2F22714831}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [{BC06FD6D-B17F-4571-88F4-DEF21F3EE978}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [TCP Query User{A41D731E-F85F-42E7-B7C6-DD7874DE4E3E}C:\program files\lightworks\ntcardvt.exe] => (Allow) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [UDP Query User{DB044B71-F7BC-4E14-8B8C-EFBA02FE55A8}C:\program files\lightworks\ntcardvt.exe] => (Allow) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [{C938815B-C129-4F41-BDBB-0C77B507E310}] => (Block) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [{0D01FE75-2F3E-4117-8068-1663DA564E10}] => (Block) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [TCP Query User{7502DF01-5692-4142-AB62-58EFA3061381}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [UDP Query User{8481F0AA-84EE-4D8E-B5E6-7982D762E0E3}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{061CC91F-2D86-4EA1-9653-7B27D5F57831}] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{FDFA7AB4-FD42-4BA1-9F40-E5FF1F6754DF}] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{C1A739D2-C0E9-4FEC-A7BB-0B9108A2CB88}] => (Allow) LPort=8317
FirewallRules: [{1BE42650-067A-4837-A76B-870D73A2934A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{A5AFFC60-B30F-44F8-9069-58D992CB449D}] => (Allow) C:\ProgramData\download\MiniThunderPlatform.exe
FirewallRules: [{79168D0F-D48B-4C6E-8A2C-57F3C501CC82}] => (Allow) C:\ProgramData\download\MiniThunderPlatform.exe
FirewallRules: [{C442D9FB-A4C1-40A8-B16D-FB28E20DD5C8}] => (Allow) C:\Windows\Temp\download\MiniThunderPlatform.exe
FirewallRules: [{88BE814F-1F0E-4F4D-A035-91EEEC2AAF4C}] => (Allow) C:\Windows\Temp\download\MiniThunderPlatform.exe
FirewallRules: [{927E9E4D-8506-4BBC-BAB6-5E78BBE95149}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
FirewallRules: [{ECBF61AE-E74B-4CD6-BFD6-39D74CD46572}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\Downloader\download\MiniThunderPlatform.exe

==================== Wiederherstellungspunkte =========================

Wiederherstellungspunkte konnten nicht aufgelistet werden
Überprüfen Sie den "winmgmt" Dienst oder reparieren Sie den WMI.


==================== Fehlerhafte Geräte im Gerätemanager =============

Konnte Geräte nicht auflisten. Überprüfen Sie den "winmgmt" Dienst oder reparieren Sie den WMI.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (01/02/2011 03:55:19 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (01/02/2011 03:55:12 PM) (Source: MSMQ) (EventID: 2199) (User: )
Description: Der Message Queuing-Dienst konnte weder das IPv4- noch das IPv6-Protokoll abhören. Über TCP/IP-Protokolle aus dem Netzwerk gesendete Nachrichten werden nicht akzeptiert. Mit TCP/IP-Protokollen an diesen Computer gesendete Nachrichten werden nicht zugestellt, aber in den ausgehenden Warteschlangen des Absenders gesammelt. Beheben Sie das Problem mit den TCP/IP-Protokollen, und starten Sie den Computer neu.

Error: (01/02/2011 03:55:04 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (01/02/2011 02:03:06 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (01/02/2011 02:02:56 PM) (Source: MSMQ) (EventID: 2199) (User: )
Description: Der Message Queuing-Dienst konnte weder das IPv4- noch das IPv6-Protokoll abhören. Über TCP/IP-Protokolle aus dem Netzwerk gesendete Nachrichten werden nicht akzeptiert. Mit TCP/IP-Protokollen an diesen Computer gesendete Nachrichten werden nicht zugestellt, aber in den ausgehenden Warteschlangen des Absenders gesammelt. Beheben Sie das Problem mit den TCP/IP-Protokollen, und starten Sie den Computer neu.

Error: (01/02/2011 02:02:48 PM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (01/02/2011 05:50:28 AM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (01/02/2011 05:50:20 AM) (Source: MSMQ) (EventID: 2199) (User: )
Description: Der Message Queuing-Dienst konnte weder das IPv4- noch das IPv6-Protokoll abhören. Über TCP/IP-Protokolle aus dem Netzwerk gesendete Nachrichten werden nicht akzeptiert. Mit TCP/IP-Protokollen an diesen Computer gesendete Nachrichten werden nicht zugestellt, aber in den ausgehenden Warteschlangen des Absenders gesammelt. Beheben Sie das Problem mit den TCP/IP-Protokollen, und starten Sie den Computer neu.

Error: (01/02/2011 05:50:05 AM) (Source: Schedule) (EventID: 0) (User: )
Description: Schedule error: 10106Initialize call failed, bailing out

Error: (01/01/2011 02:40:56 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


Systemfehler:
=============
Error: (01/02/2011 04:06:33 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "PnP-X-IP-Busenumerator" ist vom Dienst "Funktionssuchanbieter-Host" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068

Error: (01/02/2011 04:04:54 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068

Error: (01/02/2011 04:04:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068

Error: (01/02/2011 04:04:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068

Error: (01/02/2011 04:04:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068

Error: (01/02/2011 04:04:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068

Error: (01/02/2011 04:04:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068

Error: (01/02/2011 04:04:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068

Error: (01/02/2011 04:04:52 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Netzwerklistendienst" ist vom Dienst "NLA (Network Location Awareness)" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
%%1068

Error: (01/02/2011 04:04:52 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1068netprofm{A47979D2-C419-11D9-A5B4-001185AD2B89}


==================== Speicherinformationen ===========================

Prozessor: AMD E2-3200 APU with Radeon(tm) HD Graphics
Prozentuale Nutzung des RAM: 25%
Installierter physikalischer RAM: 3540.71 MB
Verfügbarer physikalischer RAM: 2636.87 MB
Summe virtueller Speicher: 7079.6 MB
Verfügbarer virtueller Speicher: 6297.47 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:456.45 GB) (Free:129.59 GB) NTFS
Drive d: (DATA) (Fixed) (Total:456.96 GB) (Free:456.71 GB) NTFS
Drive h: () (Removable) (Total:7.47 GB) (Free:7.47 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6CE78890)
Partition 1: (Not Active) - (Size=18 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=456.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=457 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows XP) (Size: 7.5 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=7.5 GB) - (Type=0C)

==================== Ende von Addition.txt ============================

M-K-D-B 20.05.2016 22:22
Zitat:
Zitat von Terrenay (Beitrag 1586480)
FRST File ist 800'000 Zeichen lang, kann es nicht mal annähernd posten.
Packe die FRST.txt in ein .zip Archiv (Rechtsklick > Senden an > Zip-komprimierter Ordner)

Füge die FRST.zip als Anhang mit deiner nächsten Antwort bei. :)

Terrenay 21.05.2016 07:57
Hallo,
Alles klar, mach im am Montag :)
Die anderen Files auch noch mal als Archiv oder sind die so brauchbar? :o

M-K-D-B 21.05.2016 21:28
Zitat:
Zitat von Terrenay (Beitrag 1586668)
Die anderen Files auch noch mal als Archiv oder sind die so brauchbar? :o
Die sind so brauchbar. :)

Terrenay 23.05.2016 12:13
Moin Matthis,
entschuldige die Warterei :)

M-K-D-B 23.05.2016 13:51
Servus,



Schritt 1 im abgesicherten Modus ausführen.

Schritt 2 im abgesicherten Modus mit Netzwerkunterstützung ausführen, sollte das nicht klappen, dann im abgesicherten Modus.

Bitte auch berichten, ob das Internet danach wieder funktioniert.







Schritt 1
Drücke bitte die Windowstaste + R Taste und schreibe notepad in das Ausführen Fenster.

Kopiere nun folgenden Text aus der Code-Box in das leere Textdokument


Code:
start
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ QQPCTray] => "C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\QQPCTray.exe"  /regrun
Unlock: C:\Program Files (x86)\Tencent
C:\Program Files (x86)\Tencent
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Run: [taskhost] => rundll32.exe C:\ProgramData\WindowsMsg\675D131108D4FD145B0BFBC68A3E018A.dll Start /AUTORUN
Unlock: C:\ProgramData\WindowsMsg
C:\ProgramData\WindowsMsg
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Policies\Explorer: [NoCommonGroups] 0
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\QMGCShellExt64.dll Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
Winsock: Catalog9 01 C:\Windows\system32\zdengine.dll Keine Datei
Winsock: Catalog9 02 C:\Windows\system32\zdengine.dll Keine Datei
Winsock: Catalog9 03 C:\Windows\system32\zdengine.dll Keine Datei
Winsock: Catalog9 04 C:\Windows\system32\zdengine.dll Keine Datei
Winsock: Catalog9 15 C:\Windows\system32\zdengine.dll Keine Datei
Winsock: Catalog9-x64 01 C:\Windows\system32\zdengine64.dll Keine Datei
Winsock: Catalog9-x64 02 C:\Windows\system32\zdengine64.dll Keine Datei
Winsock: Catalog9-x64 03 C:\Windows\system32\zdengine64.dll Keine Datei
Winsock: Catalog9-x64 04 C:\Windows\system32\zdengine64.dll Keine Datei
Winsock: Catalog9-x64 15 C:\Windows\system32\zdengine64.dll Keine Datei
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
BHO: 电脑管家网页防火墙 -> {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} -> C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\TSWebMon64.dat => Keine Datei
Toolbar: HKU\S-1-5-21-1536315646-4119356758-1407283469-1001 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
FF Extension: Rikaisama - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\extensions\{697F6AFE-5321-4DE1-BFE6-4471C3721BD4} [2016-05-12]
CHR Extension: (rikaikun) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp [2015-06-22]
CHR HKLM-x32\...\Chrome\Extension: [fgdfbnnnceningmmfememmedbfgmcpcp] - <kein Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [jmnjdacpgoffbagiiehfohoiadgabenc] - <kein Path/update_url>
S2 GoogleChromeUpSvc; C:\ProgramData\Windows Update\svrupg.exe [2783744 2016-05-17] (TODO:  ) [Datei ist nicht signiert]
Unlock: C:\ProgramData\Windows Update
C:\ProgramData\Windows Update
S4 muftionSysSrv; "C:\Program Files (x86)\Muftion\muftionSysSrv.exe" {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} [X]
Unlock: C:\Program Files (x86)\Muftion
C:\Program Files (x86)\Muftion
C:\ProgramData\msiql.exe.lnk
C:\ProgramData\cookies
Unlock: C:\Users\Sven\AppData\Roaming\svrupg.exe
C:\Users\Sven\AppData\Roaming\svrupg.exe
C:\Users\Tim.MirjamZanetti\AppData\Local\UCBrowser
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器
S1 UCGuard; C:\Windows\System32\DRIVERS\ucguard.sys [80768 2016-04-25] (Huorong Borui (Beijing) Technology Co., Ltd.)
Unlock: C:\Windows\System32\DRIVERS\ucguard.sys
C:\Windows\System32\DRIVERS\ucguard.sys
C:\Users\Tim.MirjamZanetti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
C:\Users\Tim.MirjamZanetti\AppData\Roaming\Tencent
C:\ProgramData\hp.exe
C:\ProgramData\webad.xml
C:\Program Files (x86)\badu
C:\Users\Tim.MirjamZanetti\AppData\Roaming\UPUpdata
C:\Users\Tim.MirjamZanetti\AppData\Local\Could not connect. Error code = 0x-1463489703---
C:\ProgramData\download
C:\Program Files (x86)\Preghpluaph
C:\Program Files (x86)\Atapacult
C:\Program Files\6252fcdab494a399247c79cfd21d523e
C:\ProgramData\oqztiqep.adk
ACHTUNG: ==> Auf den BCD konnte nicht zugegriffen werden.
Task: {0E4EE11D-8CC4-49C1-AFF6-69AEEBF6D71E} - \ttwifi -> Keine Datei <==== ACHTUNG
Task: {1B396549-A773-464C-B9B3-B4C49CF28A10} - System32\Tasks\GPU Grid Computing => C:\Windows\SysWOW64\dfrg\runner.exe <==== ACHTUNG
Task: {2BE9495A-0536-4095-919C-3BAFBE453A32} - \UCBrowserUpdater -> Keine Datei <==== ACHTUNG
C:\Windows\SysWOW64\dfrg\runner.exe
Task: {518F9709-9D6E-4D35-A47D-D168B434E37B} - \rde3028 -> Keine Datei <==== ACHTUNG
Task: {E6A77144-B34A-441D-91C8-6EB1F41677AB} - \Muftion System -> Keine Datei <==== ACHTUNG
Task: {E87E1163-69D4-48D1-9F28-74D7FD0D0C23} - \osTip -> Keine Datei <==== ACHTUNG
AlternateDataStreams: C:\ProgramData\Temp:373E1720 [118]
AlternateDataStreams: C:\ProgramData\Temp:AD022376 [296]
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
Unlock: C:\Windows\system32\Drivers\etc\hosts
C:\Windows\system32\Drivers\etc\hosts
Hosts:
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end

Speichere diese bitte als Fixlist.txt auf deinem Desktop (oder dem Verzeichnis in dem sich FRST befindet).
  • Starte nun FRST erneut und klicke den Entfernen Button.
  • Das Tool erstellt eine Fixlog.txt.
  • Poste mir deren Inhalt.








Schritt 2
Scan mit Combofix
WARNUNG an die MITLESER:
Combofix sollte ausschließlich ausgeführt werden, wenn dies von einem Teammitglied angewiesen wurde!

Downloade dir bitte Combofix vom folgenden Downloadspiegel: Link
  • WICHTIG: Speichere Combofix auf deinem Desktop.
  • Deaktiviere bitte alle deine Antivirensoftware sowie Malware/Spyware Scanner. Diese können Combofix bei der Arbeit stören. Combofix meckert auch manchmal trotzdem noch, das kannst du dann ignorieren, mir aber bitte mitteilen.
  • Starte die Combofix.exe und folge den Anweisungen auf dem Bildschirm.
  • Während Combofix läuft bitte nicht am Computer arbeiten, die Maus bewegen oder ins Combofixfenster klicken!
  • Wenn Combofix fertig ist, wird es ein Logfile erstellen.
  • Bitte poste die C:\Combofix.txt in deiner nächsten Antwort (möglichst in CODE-Tags).
Hinweis: Solltest du nach dem Neustart folgende Fehlermeldung erhalten
Es wurde versucht, einen Registrierungsschlüssel einem ungültigen Vorgang zu unterziehen, der zum Löschen markiert wurde.
starte den Rechner einfach neu. Dies sollte das Problem beheben.









Bitte poste mit deiner nächsten Antwort
  • die Logdatei des FRST-Fix,
  • die Logdatei von ComboFix.

Terrenay 23.05.2016 15:09
Hallo, hab (nach kurzer Absprache mit einem Informatiker der Schule) versucht, auf dem Schulcomputer ComboFix auf den Stick runterzuladen. Die Seite wurde aber wiederholt blockiert.
Downloads von Filepony funktionieren, hab ComboFix dort aber nicht gefunden.
Werde heute Abend zumindest mal den Fix von FRST ausführen, vielleicht geht das Internet dann ja schon wieder (man kann ja mal optimistisch sein :D)

Liebe Grüsse

M-K-D-B 23.05.2016 15:25
Servus,


normalerweise sollte das Internet nach dem FRST-Fix schon wieder funktionieren.

Egal von welchem Rechner du ComboFix herunterlädst, ggf. muss man das Antivirenprogramm deaktivieren, da ComboFix oft fälcherweise als schädlich eingestuft wird.

Terrenay 23.05.2016 18:52
Ich dachte nicht, dass ich das jemals wieder sagen könnte, aber das Internet geht wieder :D
Danke schonmal, du bist der beste :)

ComboFix kommt gleich^^


Code:
Entferungsergebnis von Farbar Recovery Scan Tool (x64) Version:16-05-2016
durchgeführt von Sven (2011-01-03 14:33:20) Run:1
Gestartet von C:\Users\Sven\Desktop
Geladene Profile: Sven (Verfügbare Profile: Mirjam Zanetti & Sven & Tim & Gast)
Start-Modus: Safe Mode (minimal)
==============================================

fixlist Inhalt:
*****************
start
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [ QQPCTray] => "C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\QQPCTray.exe"  /regrun
Unlock: C:\Program Files (x86)\Tencent
C:\Program Files (x86)\Tencent
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Run: [taskhost] => rundll32.exe C:\ProgramData\WindowsMsg\675D131108D4FD145B0BFBC68A3E018A.dll Start /AUTORUN
Unlock: C:\ProgramData\WindowsMsg
C:\ProgramData\WindowsMsg
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Policies\system: [DisableClock] 0
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Policies\Explorer: [NoNetworkConnections] 0
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Policies\Explorer: [NoChangeStartMenu] 0
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Policies\Explorer: [NoCommonGroups] 0
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
ShellIconOverlayIdentifiers: [.QMDeskTopGCIcon] -> {B7667919-3765-4815-A66D-98A09BE662D6} => C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\QMGCShellExt64.dll Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} =>  Keine Datei
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} =>  Keine Datei
Winsock: Catalog9 01 C:\Windows\system32\zdengine.dll Keine Datei
Winsock: Catalog9 02 C:\Windows\system32\zdengine.dll Keine Datei
Winsock: Catalog9 03 C:\Windows\system32\zdengine.dll Keine Datei
Winsock: Catalog9 04 C:\Windows\system32\zdengine.dll Keine Datei
Winsock: Catalog9 15 C:\Windows\system32\zdengine.dll Keine Datei
Winsock: Catalog9-x64 01 C:\Windows\system32\zdengine64.dll Keine Datei
Winsock: Catalog9-x64 02 C:\Windows\system32\zdengine64.dll Keine Datei
Winsock: Catalog9-x64 03 C:\Windows\system32\zdengine64.dll Keine Datei
Winsock: Catalog9-x64 04 C:\Windows\system32\zdengine64.dll Keine Datei
Winsock: Catalog9-x64 15 C:\Windows\system32\zdengine64.dll Keine Datei
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
BHO: 电脑管家网页防火墙 -> {7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B} -> C:\Program Files (x86)\Tencent\QQPCMgr\11.5.17490.219\TSWebMon64.dat => Keine Datei
Toolbar: HKU\S-1-5-21-1536315646-4119356758-1407283469-1001 -> Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} -  Keine Datei
FF Extension: Rikaisama - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\extensions\{697F6AFE-5321-4DE1-BFE6-4471C3721BD4} [2016-05-12]
CHR Extension: (rikaikun) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp [2015-06-22]
CHR HKLM-x32\...\Chrome\Extension: [fgdfbnnnceningmmfememmedbfgmcpcp] - <kein Path/update_url>
CHR HKLM-x32\...\Chrome\Extension: [jmnjdacpgoffbagiiehfohoiadgabenc] - <kein Path/update_url>
S2 GoogleChromeUpSvc; C:\ProgramData\Windows Update\svrupg.exe [2783744 2016-05-17] (TODO:  ) [Datei ist nicht signiert]
Unlock: C:\ProgramData\Windows Update
C:\ProgramData\Windows Update
S4 muftionSysSrv; "C:\Program Files (x86)\Muftion\muftionSysSrv.exe" {79740E79-A383-47A7-B513-3DF6563D007F} {A16B1AF7-982D-40C3-B5C1-633E1A6A6678} [X]
Unlock: C:\Program Files (x86)\Muftion
C:\Program Files (x86)\Muftion
C:\ProgramData\msiql.exe.lnk
C:\ProgramData\cookies
Unlock: C:\Users\Sven\AppData\Roaming\svrupg.exe
C:\Users\Sven\AppData\Roaming\svrupg.exe
C:\Users\Tim.MirjamZanetti\AppData\Local\UCBrowser
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器
S1 UCGuard; C:\Windows\System32\DRIVERS\ucguard.sys [80768 2016-04-25] (Huorong Borui (Beijing) Technology Co., Ltd.)
Unlock: C:\Windows\System32\DRIVERS\ucguard.sys
C:\Windows\System32\DRIVERS\ucguard.sys
C:\Users\Tim.MirjamZanetti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件
C:\Users\Tim.MirjamZanetti\AppData\Roaming\Tencent
C:\ProgramData\hp.exe
C:\ProgramData\webad.xml
C:\Program Files (x86)\badu
C:\Users\Tim.MirjamZanetti\AppData\Roaming\UPUpdata
C:\Users\Tim.MirjamZanetti\AppData\Local\Could not connect. Error code = 0x-1463489703---
C:\ProgramData\download
C:\Program Files (x86)\Preghpluaph
C:\Program Files (x86)\Atapacult
C:\Program Files\6252fcdab494a399247c79cfd21d523e
C:\ProgramData\oqztiqep.adk
ACHTUNG: ==> Auf den BCD konnte nicht zugegriffen werden.
Task: {0E4EE11D-8CC4-49C1-AFF6-69AEEBF6D71E} - \ttwifi -> Keine Datei <==== ACHTUNG
Task: {1B396549-A773-464C-B9B3-B4C49CF28A10} - System32\Tasks\GPU Grid Computing => C:\Windows\SysWOW64\dfrg\runner.exe <==== ACHTUNG
Task: {2BE9495A-0536-4095-919C-3BAFBE453A32} - \UCBrowserUpdater -> Keine Datei <==== ACHTUNG
C:\Windows\SysWOW64\dfrg\runner.exe
Task: {518F9709-9D6E-4D35-A47D-D168B434E37B} - \rde3028 -> Keine Datei <==== ACHTUNG
Task: {E6A77144-B34A-441D-91C8-6EB1F41677AB} - \Muftion System -> Keine Datei <==== ACHTUNG
Task: {E87E1163-69D4-48D1-9F28-74D7FD0D0C23} - \osTip -> Keine Datei <==== ACHTUNG
AlternateDataStreams: C:\ProgramData\Temp:373E1720 [118]
AlternateDataStreams: C:\ProgramData\Temp:AD022376 [296]
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"
Unlock: C:\Windows\system32\Drivers\etc\hosts
C:\Windows\system32\Drivers\etc\hosts
Hosts:
RemoveProxy:
CMD: ipconfig /flushdns
CMD: netsh winsock reset
EmptyTemp:
end
       
*****************

Prozess erfolgreich geschlossen.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => Wert erfolgreich entfernt
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ QQPCTray => Wert erfolgreich entfernt
"C:\Program Files (x86)\Tencent" => nicht gefunden.
"C:\Program Files (x86)\Tencent" => nicht gefunden.
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Software\Microsoft\Windows\CurrentVersion\Run\\taskhost => Wert erfolgreich entfernt
"C:\ProgramData\WindowsMsg" => nicht gefunden.
"C:\ProgramData\WindowsMsg" => nicht gefunden.
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Software\Microsoft\Windows\CurrentVersion\Policies\system\\DisableClock => Wert erfolgreich entfernt
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoNetworkConnections => Wert erfolgreich entfernt
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoChangeStartMenu => Wert erfolgreich entfernt
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoCommonGroups => Wert erfolgreich entfernt
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Schlüssel nicht gefunden.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Schlüssel nicht gefunden.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => Schlüssel nicht gefunden.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Schlüssel nicht gefunden.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => Schlüssel nicht gefunden.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSyncing" => Schlüssel erfolgreich entfernt
HKCR\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => Schlüssel nicht gefunden.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\.QMDeskTopGCIcon" => Schlüssel erfolgreich entfernt
"HKCR\CLSID\{B7667919-3765-4815-A66D-98A09BE662D6}" => Schlüssel erfolgreich entfernt
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive1" => Schlüssel erfolgreich entfernt
HKCR\Wow6432Node\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => Schlüssel nicht gefunden.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive2" => Schlüssel erfolgreich entfernt
HKCR\Wow6432Node\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => Schlüssel nicht gefunden.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrive3" => Schlüssel erfolgreich entfernt
HKCR\Wow6432Node\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => Schlüssel nicht gefunden.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending" => Schlüssel erfolgreich entfernt
HKCR\Wow6432Node\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => Schlüssel nicht gefunden.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced" => Schlüssel erfolgreich entfernt
HKCR\Wow6432Node\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => Schlüssel nicht gefunden.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSyncing" => Schlüssel erfolgreich entfernt
HKCR\Wow6432Node\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => Schlüssel nicht gefunden.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001" => Schlüssel erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002" => Schlüssel erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000003" => Schlüssel erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000004" => Schlüssel erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000015" => Schlüssel erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000001" => Schlüssel erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000002" => Schlüssel erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000003" => Schlüssel erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000004" => Schlüssel erfolgreich entfernt
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries64\000000000015" => Schlüssel erfolgreich entfernt
"HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}" => Schlüssel erfolgreich entfernt
"HKCR\CLSID\{7C260B4B-F7A0-40B5-B403-BEFCDC6A4C3B}" => Schlüssel erfolgreich entfernt
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Wert erfolgreich entfernt
HKCR\CLSID\{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} => Schlüssel nicht gefunden.
C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\extensions\{697F6AFE-5321-4DE1-BFE6-4471C3721BD4} => erfolgreich verschoben
C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\jipdnfibhldikgcjhfnomkfpcebammhp => erfolgreich verschoben
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\fgdfbnnnceningmmfememmedbfgmcpcp" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jmnjdacpgoffbagiiehfohoiadgabenc" => Schlüssel erfolgreich entfernt
GoogleChromeUpSvc => Dienst erfolgreich entfernt
"C:\ProgramData\Windows Update" => wurde entsperrt
C:\ProgramData\Windows Update => erfolgreich verschoben
muftionSysSrv => Dienst erfolgreich entfernt
"C:\Program Files (x86)\Muftion" => nicht gefunden.
"C:\Program Files (x86)\Muftion" => nicht gefunden.
C:\ProgramData\msiql.exe.lnk => erfolgreich verschoben
C:\ProgramData\cookies => erfolgreich verschoben
"C:\Users\Sven\AppData\Roaming\svrupg.exe" => wurde entsperrt
C:\Users\Sven\AppData\Roaming\svrupg.exe => erfolgreich verschoben
C:\Users\Tim.MirjamZanetti\AppData\Local\UCBrowser => erfolgreich verschoben
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UC浏览器 => erfolgreich verschoben
UCGuard => Dienst erfolgreich entfernt
"C:\Windows\System32\DRIVERS\ucguard.sys" => wurde entsperrt
C:\Windows\System32\DRIVERS\ucguard.sys => erfolgreich verschoben
C:\Users\Tim.MirjamZanetti\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\腾讯软件 => erfolgreich verschoben
C:\Users\Tim.MirjamZanetti\AppData\Roaming\Tencent => erfolgreich verschoben
C:\ProgramData\hp.exe => erfolgreich verschoben
C:\ProgramData\webad.xml => erfolgreich verschoben
C:\Program Files (x86)\badu => erfolgreich verschoben
C:\Users\Tim.MirjamZanetti\AppData\Roaming\UPUpdata => erfolgreich verschoben
C:\Users\Tim.MirjamZanetti\AppData\Local\Could not connect. Error code = 0x-1463489703--- => erfolgreich verschoben
C:\ProgramData\download => erfolgreich verschoben
C:\Program Files (x86)\Preghpluaph => erfolgreich verschoben
C:\Program Files (x86)\Atapacult => erfolgreich verschoben
C:\Program Files\6252fcdab494a399247c79cfd21d523e => erfolgreich verschoben
C:\ProgramData\oqztiqep.adk => erfolgreich verschoben
ACHTUNG: ==> Auf den BCD konnte nicht zugegriffen werden. => Fehler: Kein automatisierter Fix für diesen Eintrag gefunden.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0E4EE11D-8CC4-49C1-AFF6-69AEEBF6D71E}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0E4EE11D-8CC4-49C1-AFF6-69AEEBF6D71E}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\ttwifi" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1B396549-A773-464C-B9B3-B4C49CF28A10}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1B396549-A773-464C-B9B3-B4C49CF28A10}" => Schlüssel erfolgreich entfernt
C:\Windows\System32\Tasks\GPU Grid Computing => erfolgreich verschoben
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GPU Grid Computing" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2BE9495A-0536-4095-919C-3BAFBE453A32}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2BE9495A-0536-4095-919C-3BAFBE453A32}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\UCBrowserUpdater" => Schlüssel erfolgreich entfernt
"C:\Windows\SysWOW64\dfrg\runner.exe" => nicht gefunden.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{518F9709-9D6E-4D35-A47D-D168B434E37B}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{518F9709-9D6E-4D35-A47D-D168B434E37B}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\rde3028" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E6A77144-B34A-441D-91C8-6EB1F41677AB}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6A77144-B34A-441D-91C8-6EB1F41677AB}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Muftion System" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E87E1163-69D4-48D1-9F28-74D7FD0D0C23}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E87E1163-69D4-48D1-9F28-74D7FD0D0C23}" => Schlüssel erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\osTip" => Schlüssel erfolgreich entfernt
C:\ProgramData\Temp => ":373E1720" ADS erfolgreich entfernt.
C:\ProgramData\Temp => ":AD022376" ADS erfolgreich entfernt.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc" => Schlüssel erfolgreich entfernt
"C:\Windows\system32\Drivers\etc\hosts" => wurde entsperrt
C:\Windows\system32\Drivers\etc\hosts => erfolgreich verschoben
Hosts erfolgreich wiederhergestellt.

========= RemoveProxy: =========

HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings => Wert erfolgreich entfernt
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings => Wert erfolgreich entfernt


========= Ende von RemoveProxy: =========


=========  ipconfig /flushdns =========

Der Befehl "ipconfig" ist entweder falsch geschrieben oder
konnte nicht gefunden werden.

========= Ende von CMD: =========


=========  netsh winsock reset =========

Der Befehl "netsh" ist entweder falsch geschrieben oder
konnte nicht gefunden werden.

========= Ende von CMD: =========

EmptyTemp: => 20.7 GB temporäre Dateien entfernt.


Das System musste neu gestartet werden.

==== Ende von Fixlog 14:38:11 ====
So, hier noch die Combofix:

Code:
ComboFix 16-05-18.01 - Sven 23.05.2016  19:19:06.1.2 - x64 NETWORK
Microsoft Windows 7 Home Premium  6.1.7601.1.1252.41.1031.18.3541.2127 [GMT 2:00]
ausgeführt von:: c:\users\Sven\Desktop\ComboFix.exe
 * Neuer Wiederherstellungspunkt wurde erstellt
.
.
((((((((((((((((((((((((((((((((((((  Weitere Löschungen  ))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Sven\Documents\~WRL2131.tmp
c:\users\Tim.MirjamZanetti\AppData\Roaming\993219139f5a6214ac82f006aa238ea12
c:\users\Tim.MirjamZanetti\AppData\Roaming\svrupg.exe
c:\windows\8178baefb0fa9dc188cf02763d3585cd.exe
.
.
(((((((((((((((((((((((  Dateien erstellt von 2016-04-23 bis 2016-05-23  ))))))))))))))))))))))))))))))
.
.
2016-05-23 17:37 . 2016-05-23 17:37        --------        d-----w-        c:\users\Tim\AppData\Local\temp
2016-05-23 17:37 . 2016-05-23 17:37        --------        d-----w-        c:\users\Tim.MirjamZanetti\AppData\Local\temp
2016-05-23 17:37 . 2016-05-23 17:37        --------        d-----w-        c:\users\Public\AppData\Local\temp
2016-05-23 17:11 . 2016-05-23 17:11        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.840.dll
2016-05-17 20:30 . 2016-05-17 20:30        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.948.dll
2016-05-17 20:17 . 2016-05-17 20:17        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1172.dll
2016-05-17 20:04 . 2016-05-17 20:04        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1192.dll
2016-05-17 19:57 . 2016-05-17 19:57        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1256.dll
2016-05-17 19:03 . 2016-05-17 19:03        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1212.dll
2016-05-17 18:49 . 2016-05-17 18:49        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1228.dll
2016-05-17 13:47 . 2016-05-17 13:47        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1204.dll
2016-05-17 13:20 . 2016-05-17 13:20        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1260.dll
2016-05-17 13:08 . 2016-05-17 13:08        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1224.dll
2016-05-17 13:00 . 2016-05-17 13:00        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1080.dll
2016-05-17 12:22 . 2016-05-17 12:22        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1236.dll
2016-05-17 12:10 . 2016-05-17 12:10        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1164.dll
2016-05-17 11:50 . 2016-05-17 11:50        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1104.dll
2016-05-17 11:36 . 2016-05-17 19:28        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1180.dll
2016-05-17 11:02 . 2016-05-17 13:21        --------        d-----w-        c:\program files (x86)\osTip
2016-05-17 10:38 . 2016-05-17 10:38        75888        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\offreg.1012.dll
2016-05-17 10:35 . 2016-04-20 01:13        11695896        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{88FB62E2-26DE-47D6-B979-CB52A23D6CC0}\mpengine.dll
2016-05-16 17:25 . 2011-01-03 13:39        --------        d-----w-        C:\FRST
2016-05-16 17:19 . 2016-05-17 20:22        --------        d-----w-        c:\users\Sven\AppData\Local\app
2016-05-16 17:05 . 2016-05-16 17:05        --------        d-----w-        C:\found.002
2016-05-16 16:52 . 2016-05-17 10:38        --------        d-----w-        c:\users\Tim.MirjamZanetti\AppData\Local\app
2016-05-16 16:48 . 2016-05-16 16:48        --------        d-----w-        c:\users\Public\Thunder Network
2016-05-16 16:48 . 2016-05-16 16:48        --------        d-----w-        c:\programdata\Thunder Network
2016-05-16 16:46 . 2016-05-16 16:46        --------        d-----w-        c:\users\Tim.MirjamZanetti\AppData\Local\Profiles
2016-05-16 16:41 . 2016-05-16 16:42        --------        d-----w-        c:\users\Tim.MirjamZanetti\AppData\Roaming\Profiles
2016-05-16 10:25 . 2016-04-20 01:13        11695896        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2016-05-13 13:47 . 2016-05-13 13:47        --------        d-----w-        c:\program files (x86)\Sizer
2016-05-13 13:46 . 2016-05-13 13:45        715038        ----a-w-        c:\windows\unins003.exe
2016-05-13 13:46 . 2011-12-07 17:37        148992        ----a-w-        c:\windows\system32\lagarith.dll
2016-05-13 13:46 . 2011-12-07 17:32        216064        ----a-w-        c:\windows\SysWow64\lagarith.dll
2016-05-13 10:46 . 2016-05-13 10:46        --------        d-----w-        c:\users\Tim.MirjamZanetti\AppData\Local\Dxtory Software
2016-05-13 10:46 . 2014-06-08 20:14        2610736        ----a-w-        c:\windows\system32\DxtoryCodec.dll
2016-05-13 10:46 . 2014-06-08 20:14        2508336        ----a-w-        c:\windows\SysWow64\DxtoryCodec.dll
2016-05-13 10:46 . 2016-05-13 10:46        --------        d-----w-        c:\program files (x86)\ExKode
2016-05-12 17:34 . 2016-05-12 17:34        5995712        ----a-w-        c:\windows\SysWow64\FlashPlayerInstaller.exe
2016-05-11 13:37 . 2016-05-11 13:36        1167568        ----a-w-        c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9ECA1DC1-BAE7-49FC-8E7C-0673F4600C11}\gapaengine.dll
2016-05-11 10:20 . 2016-04-09 05:49        3217408        ----a-w-        c:\windows\system32\win32k.sys
2016-05-11 10:20 . 2016-04-09 06:58        2048        ----a-w-        c:\windows\system32\tzres.dll
2016-05-11 10:20 . 2016-04-09 06:54        2048        ----a-w-        c:\windows\SysWow64\tzres.dll
2016-05-11 10:12 . 2016-04-09 07:01        5546216        ----a-w-        c:\windows\system32\ntoskrnl.exe
2016-05-10 14:14 . 2016-05-10 14:14        --------        d-----w-        c:\users\Mirjam Zanetti\AppData\Roaming\Highresolution Enterprises
2016-05-09 10:24 . 2016-05-09 10:24        --------        d-----w-        c:\programdata\regid.1995-08.com.techsmith
2016-05-09 10:24 . 2016-05-09 10:24        --------        d-----w-        c:\program files (x86)\QuickTime
2016-05-09 10:24 . 2016-05-09 10:24        --------        d-----w-        c:\program files (x86)\Common Files\TechSmith Shared
2016-05-09 10:24 . 2016-05-09 10:24        --------        d-----w-        c:\program files (x86)\TechSmith
2016-05-07 16:36 . 2016-05-07 16:36        --------        d-----w-        c:\programdata\Riot Games
2016-05-07 16:14 . 2016-05-07 16:18        --------        d-----w-        c:\users\Tim.MirjamZanetti\AppData\Roaming\Riot Games
2016-05-06 18:56 . 2016-05-06 18:56        --------        d-----w-        c:\users\Tim.MirjamZanetti\AppData\Roaming\Highresolution Enterprises
2016-05-06 12:55 . 2016-05-06 12:55        --------        d-----w-        c:\users\Sven\AppData\Roaming\Highresolution Enterprises
2016-05-06 12:55 . 2016-05-06 12:55        --------        d-----w-        c:\program files\Highresolution Enterprises
2016-04-27 11:58 . 2016-05-07 16:14        --------        d-----w-        c:\users\Tim.MirjamZanetti\AppData\Roaming\Audacity
2016-04-26 20:02 . 2016-04-26 20:02        --------        d-----w-        c:\program files (x86)\Common Files\Java
.
.
.
((((((((((((((((((((((((((((((((((((  Find3M Bericht  ))))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-05-23 17:10 . 2016-03-23 11:19        196608        ----a-w-        c:\windows\ServiceProfiles\NetworkService\msmqlog.bin
2016-05-12 17:34 . 2012-03-23 00:24        797376        ----a-w-        c:\windows\SysWow64\FlashPlayerApp.exe
2016-05-12 17:34 . 2012-03-23 00:24        142528        ----a-w-        c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2016-05-11 12:02 . 2012-11-07 12:34        139319312        ----a-w-        c:\windows\system32\MRT.exe
2016-05-06 14:29 . 2013-02-28 21:36        34720        ---ha-w-        c:\windows\system32\hamachi.sys
2016-04-26 20:01 . 2016-04-03 09:13        110144        ----a-w-        c:\windows\system32\WindowsAccessBridge-64.dll
2016-04-22 07:57 . 2010-11-21 03:27        453288        ------w-        c:\windows\system32\MpSigStub.exe
2016-04-09 06:54 . 2016-05-11 10:12        44032        ----a-w-        c:\windows\apppatch\acwow64.dll
2016-04-04 18:14 . 2016-04-15 17:42        38120        ----a-w-        c:\windows\system32\CompatTelRunner.exe
2016-04-04 18:02 . 2016-04-15 17:42        1169408        ----a-w-        c:\windows\system32\aeinv.dll
2016-04-02 13:08 . 2016-04-15 17:42        1386496        ----a-w-        c:\windows\system32\appraiser.dll
2016-03-23 14:02 . 2016-04-15 17:42        215040        ----a-w-        c:\windows\system32\aepic.dll
2016-03-17 22:56 . 2016-04-15 17:47        2084864        ----a-w-        c:\windows\system32\ole32.dll
2016-03-17 22:28 . 2016-04-15 17:47        1414144        ----a-w-        c:\windows\SysWow64\ole32.dll
2016-03-17 18:04 . 2016-04-15 17:42        698368        ----a-w-        c:\windows\system32\generaltel.dll
2016-03-17 18:04 . 2016-04-15 17:42        499200        ----a-w-        c:\windows\system32\devinv.dll
2016-03-17 18:04 . 2016-04-15 17:42        279040        ----a-w-        c:\windows\system32\invagent.dll
2016-03-17 18:04 . 2016-04-15 17:42        76800        ----a-w-        c:\windows\system32\acmigration.dll
2016-03-16 18:50 . 2016-04-15 17:49        156672        ----a-w-        c:\windows\system32\mtxoci.dll
2016-03-16 18:28 . 2016-04-15 17:49        111616        ----a-w-        c:\windows\SysWow64\mtxoci.dll
2016-03-16 18:28 . 2016-04-15 17:49        176128        ----a-w-        c:\windows\SysWow64\msorcl32.dll
2016-03-16 00:16 . 2016-04-15 17:41        760320        ----a-w-        c:\windows\system32\samsrv.dll
2016-03-16 00:16 . 2016-04-15 17:41        106496        ----a-w-        c:\windows\system32\samlib.dll
2016-03-15 23:53 . 2016-04-15 17:41        60416        ----a-w-        c:\windows\SysWow64\samlib.dll
2016-03-06 18:53 . 2016-04-15 17:49        2048        ----a-w-        c:\windows\system32\msxml3r.dll
2016-03-06 18:53 . 2016-04-15 17:49        1885696        ----a-w-        c:\windows\system32\msxml3.dll
2016-03-06 18:38 . 2016-04-15 17:49        2048        ----a-w-        c:\windows\SysWow64\msxml3r.dll
2016-03-06 18:38 . 2016-04-15 17:49        1240576        ----a-w-        c:\windows\SysWow64\msxml3.dll
2016-03-01 08:50 . 2016-03-01 08:50        1058        ----a-w-        c:\windows\run.vbs
.
.
((((((((((((((((((((((((((((  Autostartpunkte der Registrierung  ))))))))))))))))))))))))))))))))))))))))
.
.
*Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2016-05-06 5565960]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2016-04-01 596504]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe" [2015-06-15 73216]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableSecureUIAPath"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R1 MpKslb3491254;MpKslb3491254;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{58D6DEB4-DD46-4141-AC8F-5EF5CD5D6FA6}\MpKslb3491254.sys;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{58D6DEB4-DD46-4141-AC8F-5EF5CD5D6FA6}\MpKslb3491254.sys [x]
R1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
R1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
R1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
R2 Apple Mobile Device Service;Apple Mobile Device Service;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]
R2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.exe [x]
R2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
R2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
R2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R2 EPSON_PM_RPCV4_04;EPSON V3 Service4(04);c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE;c:\program files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [x]
R2 EpsonScanSvc;Epson Scanner Service;c:\windows\system32\EscSvc64.exe;c:\windows\SYSNATIVE\EscSvc64.exe [x]
R2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]
R2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
R2 Razer Game Scanner Service;Razer Game Scanner;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x]
R2 RzKLService;RzKLService;c:\program files (x86)\Razer\Razer Cortex\RzKLService.exe;c:\program files (x86)\Razer\Razer Cortex\RzKLService.exe [x]
R2 rzpmgrk;rzpmgrk;c:\windows\system32\drivers\rzpmgrk.sys;c:\windows\SYSNATIVE\drivers\rzpmgrk.sys [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.3.132.0\SeaPort.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 GamesAppIntegrationService;GamesAppIntegrationService;c:\program files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft-Netzwerkinspektion;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]
R3 OverwolfUpdater;Overwolf Updater Windows SCM;c:\program files (x86)\Overwolf\OverwolfUpdater.exe;c:\program files (x86)\Overwolf\OverwolfUpdater.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ScreamBAudioSvc;ScreamBee Audio;c:\windows\system32\drivers\ScreamingBAudio64.sys;c:\windows\SYSNATIVE\drivers\ScreamingBAudio64.sys [x]
R3 taphss6;Anchorfree HSS VPN Adapter;c:\windows\system32\DRIVERS\taphss6.sys;c:\windows\SYSNATIVE\DRIVERS\taphss6.sys [x]
R3 Te.Service;Te.Service;c:\program files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe;c:\program files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 WatAdminSvc;Windows-Aktivierungstechnologieservice;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WSDScan;WSD-Scanunterstützung durch UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]
R4 ArcService;Arc Service;c:\program files (x86)\Perfect World Entertainment\Arc\ArcService.exe;c:\program files (x86)\Perfect World Entertainment\Arc\ArcService.exe [x]
R4 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files\BitComet\tools\BitCometService.exe;c:\program files\BitComet\tools\BitCometService.exe [x]
R4 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]
R4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
R4 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe;c:\program files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [x]
R4 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
R4 NoIPDUCService4;NO-IP DUC v4.1.1;c:\program files (x86)\No-IP\ducservice.exe;c:\program files (x86)\No-IP\ducservice.exe [x]
R4 PdiService;Portrait Displays SDK Service;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe;c:\program files (x86)\Common Files\Portrait Displays\Drivers\pdisrvc.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys;c:\windows\SYSNATIVE\DRIVERS\amdhub30.sys [x]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys;c:\windows\SYSNATIVE\DRIVERS\amdxhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation        REG_MULTI_SZ          SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2016-05-13 11:14        1186968        ----a-w-        c:\program files (x86)\Google\Chrome\Application\50.0.2661.102\Installer\chrmstp.exe
.
Inhalt des "geplante Tasks" Ordners
.
2016-05-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-23 17:34]
.
2011-01-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2016-02-16 21:00]
.
2016-05-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2016-02-16 21:00]
.
2016-05-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1536315646-4119356758-1407283469-1002Core.job
- c:\users\Tim\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-26 16:18]
.
2016-05-23 c:\windows\Tasks\HP Photo Creations Communicator.job
- c:\programdata\HP Photo Creations\Communicator.exe [2014-01-23 11:39]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"XMouseButtonControl"="c:\program files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe" [2015-10-18 1127408]
.
------- Zusätzlicher Suchlauf -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
IE: &Alles mit BitComet herunterladen - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Mit BitComet herunter&laden - c:\program files\BitComet\BitComet.exe/AddLink.htm
IE: Nach Microsoft E&xel exportieren - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{CAFC688E-6314-427C-8B2E-F1D3D855A2BF}: NameServer = 8.8.8.8,8.8.4.4
FF - ProfilePath - c:\users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\
FF - prefs.js: browser.startup.homepage - google.ch
.
- - - - Entfernte verwaiste Registrierungseinträge - - - -
.
HKLM_Wow6432Node-ActiveSetup-{65122CB0-EA0F-47DF-A953-017170ED12F9} - c:\program files (x86)\UCBrowser\Application\5.6.12150.8\Installer\chrmstp.exe
AddRemove-Uninstall cos - c:\program files (x86)\SearchesToYesbnd\unIns.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- Gesperrte Registrierungsschluessel ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_LOCAL_MACHINE\software\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_21_0_0_242_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_21_0_0_242_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_21_0_0_242_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_21_0_0_242_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_21_0_0_242.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.21"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_21_0_0_242.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_21_0_0_242.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_21_0_0_242.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
  00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Zeit der Fertigstellung: 2016-05-23  19:42:22
ComboFix-quarantined-files.txt  2016-05-23 17:42
.
Vor Suchlauf: 30 Verzeichnis(se), 161'355'415'552 Bytes frei
Nach Suchlauf: 33 Verzeichnis(se), 160'334'995'456 Bytes frei
.
- - End Of File - - 3BD7C27F5C4388BE7C0FC48F4F1D9638
A36C5E4F47E84449FF07ED3517B43A31

M-K-D-B 23.05.2016 21:06
Servus,


gut gemacht. :daumenhoc


Und jetzt nochmal im normalen Modus AdwCleaner und MBAM (beide in den neusten Versionen mit den aktuellsten Datenbanken).






Schritt 1
Downloade Dir bitte AdwCleaner auf deinen Desktop.
  • Schließe alle offenen Programme und Browser.
  • Starte die adwcleaner.exe mit einem Doppelklick.
  • Stimme den Nutzungsbedingungen zu.
  • Klicke auf Optionen und vergewissere dich, dass die folgenden Punkte ausgewählt sind:
    • "Tracing" Schlüssel löschen
    • "Prefetch" Dateien löschen
  • Klicke auf Suchlauf und warte bis dieser abgeschlossen ist.
  • Klicke nun auf Löschen und bestätige auftretende Hinweise mit Ok.
  • Dein Rechner wird automatisch neu gestartet. Nach dem Neustart öffnet sich eine Textdatei. Poste mir deren Inhalt mit deiner nächsten Antwort.
  • Die Logdatei findest du auch unter C:\AdwCleaner\AdwCleaner[Cx].txt. (x = fortlaufende Nummer).





Schritt 2
Downloade Dir bitte Malwarebytes Anti-Malware
  • Installiere das Programm in den vorgegebenen Pfad. (Bebilderte Anleitung zu MBAM)
  • Starte Malwarebytes' Anti-Malware (MBAM).
  • Klicke im Anschluss auf Scannen, wähle den Bedrohungssuchlauf aus und klicke auf Suchlauf starten.
  • Lass am Ende des Suchlaufs alle Funde (falls vorhanden) in die Quarantäne verschieben. Klicke dazu auf Auswahl entfernen.
  • Lass deinen Rechner ggf. neu starten, um die Bereinigung abzuschließen.
  • Starte MBAM, klicke auf Verlauf und dann auf Anwendungsprotokolle.
  • Wähle das neueste Scan-Protokoll aus und klicke auf Export. Wähle Textdatei (.txt) aus und speichere die Datei als mbam.txt auf dem Desktop ab. Das Logfile von MBAM findest du hier.
  • Füge den Inhalt der mbam.txt mit deiner nächsten Antwort hinzu.







Schritt 3
  • Starte die FRST.exe erneut. Setze einen Haken vor Addition.txt und drücke auf Scan.
  • FRST erstellt nun zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.






Bitte poste mit deiner nächsten Antwort
  • die Logdatei von AdwCleaner,
  • die Logdatei von MBAM,
  • die beiden neuen Logdateien von FRST.

Terrenay 23.05.2016 21:43
Salve, hier erst mal der AdwCleaner Log (keine Funde diesmal :D)
MBAM lasse ich morgen laufen.

Code:
# AdwCleaner v5.117 - Bericht erstellt am 23/05/2016 um 22:37:50
# Aktualisiert am 15/05/2016 von Xplode
# Datenbank : 2016-05-23.3 [Server]
# Betriebssystem : Windows 7 Home Premium Service Pack 1 (X64)
# Benutzername : Sven - MirjamZanetti
# Gestartet von : C:\Users\Sven\Desktop\AdwCleaner_5.117.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum

***** [ Dienste ] *****


***** [ Ordner ] *****


***** [ Dateien ] *****


***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Verknüpfungen ] *****


***** [ Aufgabenplanung ] *****


***** [ Registrierungsdatenbank ] *****


***** [ Internetbrowser ] *****


*************************

:: "Tracing" Schlüssel gelöscht
:: "Prefetch" Dateien gelöscht

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [147198 Bytes] - [14/02/2016 00:27:09]
C:\AdwCleaner\AdwCleaner[C2].txt - [3384 Bytes] - [16/02/2016 19:51:17]
C:\AdwCleaner\AdwCleaner[C3].txt - [1666 Bytes] - [02/01/2011 15:01:59]
C:\AdwCleaner\AdwCleaner[C4].txt - [1019 Bytes] - [23/05/2016 22:37:50]
C:\AdwCleaner\AdwCleaner[S1].txt - [138144 Bytes] - [14/02/2016 00:20:21]
C:\AdwCleaner\AdwCleaner[S2].txt - [118757 Bytes] - [14/02/2016 00:25:11]
C:\AdwCleaner\AdwCleaner[S3].txt - [2883 Bytes] - [16/02/2016 19:49:25]
C:\AdwCleaner\AdwCleaner[S4].txt - [1294 Bytes] - [23/05/2016 22:35:28]

########## EOF - C:\AdwCleaner\AdwCleaner[C4].txt - [1388 Bytes] ##########
Danke und gute Nacht :)

M-K-D-B 23.05.2016 22:25
Servus,


gut gemacht.

Dann bis morgen. :daumenhoc

Terrenay 24.05.2016 16:41
Hallo ;)

FRST:
Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version:16-05-2016
durchgeführt von Sven (Administrator) auf MirjamZanetti (24-05-2016 17:35:21)
Gestartet von C:\Users\Sven\Desktop
Geladene Profile: Sven (Verfügbare Profile: Mirjam Zanetti & Sven & Tim & Gast)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BBSvc.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(Acer Incorporated) C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Symantec Corporation) C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Malwarebytes) C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Highresolution Enterprises) C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [XMouseButtonControl] => C:\Program Files\Highresolution Enterprises\X-Mouse Button Control\XMouseButtonControl.exe [1127408 2015-10-19] (Highresolution Enterprises)
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-05-06] (LogMeIn Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Acer.scr [456224 2010-07-29] ()
HKU\S-1-5-18\...\RunOnce: [IsMyWinLockerReboot] => msiexec.exe /qn /x{voidguid}
Startup: C:\Users\Tim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk [2014-01-14]
ShortcutTarget: OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\..\Interfaces\{CAFC688E-6314-427C-8B2E-F1D3D855A2BF}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{CAFC688E-6314-427C-8B2E-F1D3D855A2BF}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <======= ACHTUNG
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617911&ResetID=130985414249645890&GUID=7F8C3B90-5CC0-4E52-AEC6-D920222F3C58
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope Wert fehlt
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1536315646-4119356758-1407283469-1001 -> DefaultScope {FBC74BB4-EFB2-4CD0-A19E-91D3FCDB1C71} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\S-1-5-21-1536315646-4119356758-1407283469-1001 -> {FBC74BB4-EFB2-4CD0-A19E-91D3FCDB1C71} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-04-26] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11] (Microsoft Corporation.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-26] (Oracle Corporation)
BHO-x32: BitComet Helper -> {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} -> C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll [2011-04-11] (BitComet)
BHO-x32: SteadyVideoBHO Class -> {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} -> C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2012-02-14] (Advanced Micro Devices)
BHO-x32: ArcPluginIEBHO Class -> {84BFE29A-8139-402a-B2A4-C23AE9E1A75F} -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\ArcPluginIE.dll [2014-10-21] (Perfect World Entertainment Inc)
BHO-x32: Microsoft Web Test Recorder 10.0 Helper -> {876d9f09-c6d6-4324-a2cc-04dd9a4de12f} -> C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.QualityTools.RecorderBarBHO100.dll [2013-10-30] (Microsoft Corporation)
BHO-x32: Microsoft-Konto-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17] (Microsoft Corp.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.)
Toolbar: HKLM - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\amd64\BingExt.dll [2014-03-11] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.3.132.0\BingExt.dll [2014-03-11] (Microsoft Corporation.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2016-02-01] (Skype Technologies)
Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)
Filter-x32: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll [2011-06-08] (Advanced Micro Devices)

FireFox:
========
FF ProfilePath: C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169
FF Homepage: google.ch
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-12] ()
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-26] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-12] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1221171.dll [2015-10-19] (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2015-10-14] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll [2012-03-29] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [Keine Datei]
FF Plugin-x32: @perfectworld.com/npArcPlayNowPlugin -> C:\Program Files (x86)\Perfect World Entertainment\Arc\Plugins\npArcPluginFF.dll [2014-10-21] (Perfect World Entertainment Inc)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2013-10-08] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-04-23] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1536315646-4119356758-1407283469-1001: @eximion.com/KalydoPlayer -> C:\Users\Sven\AppData\Roaming\Kalydo\KalydoPlayer\bin2\npkalydo.dll [2013-01-17] (Eximion B.V.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npBitCometAgent.dll [2012-01-12] (BitComet)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppdf32.dll [2016-04-23] (Adobe Systems Inc.)
FF Extension: Rikaichan Japanese-German Dictionary File - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\extensions\rikaichan-jpde@polarcloud.com [2016-02-27]
FF Extension: Rikaichan Japanese-English Dictionary File - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\extensions\rikaichan-jpen@polarcloud.com [2016-02-27]
FF Extension: Rikaichan Japanese Names Dictionary File - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\extensions\rikaichan-jpnames@polarcloud.com [2016-03-16]
FF Extension: DownThemAll! - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}.xpi [2016-04-15]
FF Extension: Greasemonkey - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}.xpi [2016-05-16]
FF Extension: AdBlocker Ultimate - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\Extensions\adblockultimate@adblockultimate.net.xpi [2016-05-15]
FF Extension: NoScript - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}.xpi [2016-05-12]
FF Extension: Adblock Plus - C:\Users\Sven\AppData\Roaming\Mozilla\Firefox\Profiles\dk8rovbg.default-1456592647169\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-05-01]

Chrome:
=======
CHR Profile: C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-11]
CHR Extension: (Google Docs) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-11]
CHR Extension: (Google Drive) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-02-11]
CHR Extension: (YouTube) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-02-11]
CHR Extension: (Google Search) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2011-01-01]
CHR Extension: (Google Sheets) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-11]
CHR Extension: (Bookmark Manager) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmlllbghnfkpflemihljekbapjopfjik [2015-06-01]
CHR Extension: (Chrome Hotword Shared Module) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\lccekmodgklaepjeofjdjpbminllajkg [2015-05-21]
CHR Extension: (Google Wallet) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-14]
CHR Extension: (Gmail) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2011-01-01]
CHR Profile: C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Sven\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77104 2015-10-07] (Apple Inc.)
S4 ArcService; C:\Program Files (x86)\Perfect World Entertainment\Arc\ArcService.exe [88400 2014-10-21] (Perfect World Entertainment Inc)
S4 BITCOMET_HELPER_SERVICE; C:\Program Files\BitComet\tools\BitCometService.exe [1296728 2010-12-28] (www.BitComet.com)
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [393032 2013-08-07] (BlueStack Systems, Inc.)
R2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384840 2013-08-07] (BlueStack Systems, Inc.)
S4 DTSRVC; C:\Program Files (x86)\Common Files\Portrait Displays\Shared\dtsrvc.exe [138032 2012-04-13] (Portrait Displays, Inc.)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [135824 2011-12-12] (Seiko Epson Corporation)
S3 fussvc; C:\Program Files (x86)\Windows Kits\8.0\App Certification Kit\fussvc.exe [139776 2012-07-25] (Microsoft Corporation) [Datei ist nicht signiert]
S3 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [240736 2013-10-07] (WildTangent)
S4 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\LMIGuardianSvc.exe [419248 2016-05-06] (LogMeIn, Inc.)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
R2 MsMpSvc; C:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2016-01-29] (Microsoft Corporation)
R3 NisSrv; C:\Program Files\Microsoft Security Client\NisSrv.exe [374344 2016-01-29] (Microsoft Corporation)
R2 NOBU; C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe [2804568 2010-06-02] (Symantec Corporation)
S4 NoIPDUCService4; C:\Program Files (x86)\No-IP\ducservice.exe [12288 2015-07-20] () [Datei ist nicht signiert]
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [5206008 2013-08-25] (INCA Internet Co., Ltd.) [Datei ist nicht signiert]
S3 OverwolfUpdater; C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [1286896 2016-05-19] (Overwolf LTD)
R2 Razer Game Scanner Service; C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [188072 2015-09-23] ()
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [129168 2015-11-13] (Razer Inc.)
S3 Te.Service; C:\Program Files (x86)\Windows Kits\8.0\Testing\Runtimes\TAEF\Wex.Services.exe [126976 2012-07-25] (Microsoft Corporation) [Datei ist nicht signiert]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 BstHdDrv; C:\Program Files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [70984 2013-08-07] (BlueStack Systems)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [27008 2016-03-10] (Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [192216 2016-05-24] (Malwarebytes)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64896 2016-03-10] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [289120 2015-11-13] (Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [133816 2015-11-13] (Microsoft Corporation)
R3 PdiPorts; C:\Windows\System32\DRIVERS\PdiPorts.sys [20784 2012-04-13] (Portrait Displays, Inc.)
R2 rzpmgrk; C:\Windows\system32\drivers\rzpmgrk.sys [37184 2015-09-23] (Razer, Inc.)
S3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42184 2013-10-16] (Anchorfree Inc.)
S3 VSPerfDrv110; C:\Program Files (x86)\Microsoft Visual Studio 11.0\Team Tools\Performance Tools\x64\VSPerfDrv110.sys [70264 2012-07-13] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 EagleX64; \??\C:\Windows\system32\drivers\EagleX64.sys [X]
S1 MpKslb3491254; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{58D6DEB4-DD46-4141-AC8F-5EF5CD5D6FA6}\MpKslb3491254.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-24 17:35 - 2016-05-24 17:36 - 00021166 _____ C:\Users\Sven\Desktop\FRST.txt
2016-05-24 13:42 - 2016-05-24 13:42 - 00001110 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-05-24 12:33 - 2016-05-24 12:33 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Local\Gameforge4d
2016-05-24 12:32 - 2016-05-24 12:32 - 00001075 _____ C:\Users\Public\Desktop\Gameforge Live.lnk
2016-05-24 12:25 - 2016-05-24 12:31 - 20267568 _____ (Gameforge ) C:\Users\Tim.MirjamZanetti\Downloads\4Story_GameforgeLiveSetup.exe
2016-05-23 22:33 - 2016-05-23 22:33 - 03651136 _____ C:\Users\Sven\Desktop\AdwCleaner_5.117.exe
2016-05-23 19:42 - 2016-05-23 19:42 - 00029363 _____ C:\ComboFix.txt
2016-05-23 19:13 - 2016-05-23 19:42 - 00000000 ____D C:\Qoobox
2016-05-23 19:13 - 2016-05-23 19:42 - 00000000 ____D C:\ComboFix
2016-05-23 19:13 - 2011-06-26 08:45 - 00256000 _____ C:\Windows\PEV.exe
2016-05-23 19:13 - 2010-11-07 19:20 - 00208896 _____ C:\Windows\MBR.exe
2016-05-23 19:13 - 2009-04-20 06:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2016-05-23 19:13 - 2000-08-31 02:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2016-05-23 19:13 - 2000-08-31 02:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2016-05-23 19:13 - 2000-08-31 02:00 - 00098816 _____ C:\Windows\sed.exe
2016-05-23 19:13 - 2000-08-31 02:00 - 00080412 _____ C:\Windows\grep.exe
2016-05-23 19:13 - 2000-08-31 02:00 - 00068096 _____ C:\Windows\zip.exe
2016-05-23 19:07 - 2016-05-23 19:08 - 05659526 ____R (Swearware) C:\Users\Sven\Desktop\ComboFix.exe
2016-05-17 22:37 - 2016-05-23 19:47 - 00000008 __RSH C:\ProgramData\ntuser.pol
2016-05-17 22:26 - 2016-05-17 22:26 - 01610816 _____ (Malwarebytes) C:\Users\Sven\Desktop\JRT.exe
2016-05-17 21:19 - 2016-05-23 19:42 - 00976682 _____ C:\Windows\ntbtlog.txt
2016-05-16 19:29 - 2016-05-16 19:31 - 00089955 _____ C:\Users\Sven\Downloads\Addition.txt
2016-05-16 19:25 - 2016-05-24 17:35 - 00000000 ____D C:\FRST
2016-05-16 19:25 - 2016-05-16 19:31 - 00080128 _____ C:\Users\Sven\Downloads\FRST.txt
2016-05-16 19:24 - 2016-05-16 19:24 - 02382336 _____ (Farbar) C:\Users\Sven\Desktop\FRST64.exe
2016-05-16 19:19 - 2016-05-17 22:22 - 00000000 ____D C:\Users\Sven\AppData\Local\app
2016-05-16 19:05 - 2016-05-16 19:05 - 00000000 ____D C:\found.002
2016-05-16 18:52 - 2016-05-17 12:38 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Local\app
2016-05-16 18:48 - 2016-05-16 18:48 - 00000000 ____D C:\Users\Public\Thunder Network
2016-05-16 18:48 - 2016-05-16 18:48 - 00000000 ____D C:\ProgramData\Thunder Network
2016-05-16 18:36 - 2016-05-16 18:33 - 00000509 _____ C:\Windows\system32\Drivers\etc\hp.bak
2016-05-13 15:47 - 2016-05-13 15:47 - 00000000 ____D C:\Program Files (x86)\Sizer
2016-05-13 15:46 - 2016-05-13 15:46 - 00001993 _____ C:\Windows\unins003.dat
2016-05-13 15:46 - 2016-05-13 15:45 - 00715038 _____ C:\Windows\unins003.exe
2016-05-13 15:46 - 2011-12-07 19:37 - 00148992 _____ ( ) C:\Windows\system32\lagarith.dll
2016-05-13 15:46 - 2011-12-07 19:32 - 00216064 _____ ( ) C:\Windows\SysWOW64\lagarith.dll
2016-05-13 15:45 - 2016-05-13 15:45 - 00443445 _____ ( ) C:\Users\Tim.MirjamZanetti\Downloads\LagarithSetup_1327.exe
2016-05-13 12:53 - 2016-05-13 12:58 - 00000000 _____ C:\Users\Tim.MirjamZanetti\Downloads\checkOS.txt
2016-05-13 12:53 - 2016-05-13 12:53 - 00207114 _____ C:\Users\Tim.MirjamZanetti\Downloads\Lagarith_1327.zip
2016-05-13 12:46 - 2016-05-13 12:46 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Local\Dxtory Software
2016-05-13 12:46 - 2016-05-13 12:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0
2016-05-13 12:46 - 2016-05-13 12:46 - 00000000 ____D C:\Program Files (x86)\ExKode
2016-05-13 12:46 - 2014-06-08 22:14 - 02610736 _____ (ExKode Co. Ltd.) C:\Windows\system32\DxtoryCodec.dll
2016-05-13 12:46 - 2014-06-08 22:14 - 02508336 _____ (ExKode Co. Ltd.) C:\Windows\SysWOW64\DxtoryCodec.dll
2016-05-12 19:34 - 2016-05-12 19:34 - 05995712 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2016-05-11 12:29 - 2016-04-23 19:08 - 00394960 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-05-11 12:29 - 2016-04-23 18:24 - 00346312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-05-11 12:29 - 2016-04-23 07:25 - 25816064 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-05-11 12:29 - 2016-04-23 07:16 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-05-11 12:29 - 2016-04-23 07:16 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-05-11 12:29 - 2016-04-23 07:01 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-05-11 12:29 - 2016-04-23 07:00 - 02893312 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-05-11 12:29 - 2016-04-23 07:00 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-05-11 12:29 - 2016-04-23 07:00 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-05-11 12:29 - 2016-04-23 07:00 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-05-11 12:29 - 2016-04-23 07:00 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-05-11 12:29 - 2016-04-23 06:52 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-05-11 12:29 - 2016-04-23 06:51 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-05-11 12:29 - 2016-04-23 06:48 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-05-11 12:29 - 2016-04-23 06:47 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-05-11 12:29 - 2016-04-23 06:47 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-05-11 12:29 - 2016-04-23 06:47 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-05-11 12:29 - 2016-04-23 06:47 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-05-11 12:29 - 2016-04-23 06:46 - 06052352 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-05-11 12:29 - 2016-04-23 06:40 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-05-11 12:29 - 2016-04-23 06:36 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-05-11 12:29 - 2016-04-23 06:29 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-05-11 12:29 - 2016-04-23 06:27 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-05-11 12:29 - 2016-04-23 06:25 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-05-11 12:29 - 2016-04-23 06:24 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-05-11 12:29 - 2016-04-23 06:21 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-05-11 12:29 - 2016-04-23 06:20 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-05-11 12:29 - 2016-04-23 06:20 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-05-11 12:29 - 2016-04-23 06:11 - 20350464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-05-11 12:29 - 2016-04-23 06:09 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-05-11 12:29 - 2016-04-23 06:08 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-05-11 12:29 - 2016-04-23 06:08 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-05-11 12:29 - 2016-04-23 06:08 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-05-11 12:29 - 2016-04-23 06:07 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-05-11 12:29 - 2016-04-23 06:07 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-05-11 12:29 - 2016-04-23 06:07 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-05-11 12:29 - 2016-04-23 06:06 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-05-11 12:29 - 2016-04-23 06:06 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-05-11 12:29 - 2016-04-23 06:05 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-05-11 12:29 - 2016-04-23 06:04 - 02285568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-05-11 12:29 - 2016-04-23 06:02 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-05-11 12:29 - 2016-04-23 06:01 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-05-11 12:29 - 2016-04-23 06:00 - 15415808 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-05-11 12:29 - 2016-04-23 05:59 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-05-11 12:29 - 2016-04-23 05:58 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-05-11 12:29 - 2016-04-23 05:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-05-11 12:29 - 2016-04-23 05:58 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-05-11 12:29 - 2016-04-23 05:51 - 02596864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-05-11 12:29 - 2016-04-23 05:50 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-05-11 12:29 - 2016-04-23 05:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-05-11 12:29 - 2016-04-23 05:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-05-11 12:29 - 2016-04-23 05:43 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-05-11 12:29 - 2016-04-23 05:41 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-05-11 12:29 - 2016-04-23 05:40 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-05-11 12:29 - 2016-04-23 05:39 - 01547776 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-05-11 12:29 - 2016-04-23 05:39 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-05-11 12:29 - 2016-04-23 05:36 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-05-11 12:29 - 2016-04-23 05:33 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-05-11 12:29 - 2016-04-23 05:31 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-05-11 12:29 - 2016-04-23 05:30 - 02056192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-05-11 12:29 - 2016-04-23 05:30 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-05-11 12:29 - 2016-04-23 05:28 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-05-11 12:29 - 2016-04-23 05:26 - 13811200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-05-11 12:29 - 2016-04-23 05:12 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-05-11 12:29 - 2016-04-23 05:09 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-05-11 12:29 - 2016-04-23 05:07 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-05-11 12:20 - 2016-04-09 08:58 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-05-11 12:20 - 2016-04-09 08:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-05-11 12:20 - 2016-04-09 07:49 - 03217408 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-05-11 12:19 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-05-11 12:19 - 2016-04-14 15:21 - 00647680 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-05-11 12:19 - 2016-04-09 09:01 - 00986344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-05-11 12:19 - 2016-04-09 09:01 - 00264936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-05-11 12:19 - 2016-04-09 08:57 - 00405504 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-05-11 12:19 - 2016-04-09 08:57 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-05-11 12:19 - 2016-04-09 08:54 - 00312832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-05-11 12:19 - 2016-04-06 17:27 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2016-05-11 12:19 - 2016-03-09 20:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2016-05-11 12:19 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2016-05-11 12:12 - 2016-04-09 09:02 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-05-11 12:12 - 2016-04-09 09:01 - 05546216 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-05-11 12:12 - 2016-04-09 09:01 - 00706280 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-05-11 12:12 - 2016-04-09 09:01 - 00154344 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-05-11 12:12 - 2016-04-09 09:01 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-05-11 12:12 - 2016-04-09 08:59 - 03998952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-05-11 12:12 - 2016-04-09 08:59 - 03943144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-05-11 12:12 - 2016-04-09 08:59 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-05-11 12:12 - 2016-04-09 08:58 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 01464320 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00316416 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:57 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00260608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 08:54 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 07:52 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-05-11 12:12 - 2016-04-09 07:52 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-05-11 12:12 - 2016-04-09 07:52 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-05-11 12:12 - 2016-04-09 07:51 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-05-11 12:12 - 2016-04-09 07:48 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-05-11 12:12 - 2016-04-09 07:47 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-05-11 12:12 - 2016-04-09 07:44 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-05-11 12:12 - 2016-04-09 07:44 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-05-11 12:12 - 2016-04-09 07:44 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-05-11 12:12 - 2016-04-09 07:43 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-05-11 12:12 - 2016-04-09 07:43 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-05-11 12:12 - 2016-04-09 07:42 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-05-11 12:12 - 2016-04-09 07:38 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-05-11 12:12 - 2016-04-09 07:38 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-05-11 12:12 - 2016-04-09 07:38 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-05-11 12:12 - 2016-04-09 07:38 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-05-11 12:12 - 2016-04-09 07:37 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-05-11 12:12 - 2016-04-09 07:37 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 07:37 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 07:37 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 07:37 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-05-11 12:12 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-05-11 12:12 - 2016-04-09 05:52 - 01424896 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-05-10 16:14 - 2016-05-10 16:14 - 00000000 ____D C:\Users\Mirjam Zanetti\AppData\Roaming\Highresolution Enterprises
2016-05-10 12:47 - 2016-05-11 12:25 - 00000000 ____D C:\Users\Tim.MirjamZanetti\Documents\Videos zum Hochladen
2016-05-10 12:32 - 2016-05-10 12:36 - 33024937 _____ C:\Users\Tim.MirjamZanetti\Downloads\macx-video-converter-pro.dmg
2016-05-09 12:26 - 2016-05-09 12:26 - 00000000 ____D C:\Users\Tim.MirjamZanetti\Documents\Camtasia Studio
2016-05-09 12:24 - 2016-05-09 12:24 - 00001172 _____ C:\Users\Public\Desktop\Camtasia Studio 8.lnk
2016-05-09 12:24 - 2016-05-09 12:24 - 00000000 ____D C:\ProgramData\regid.1995-08.com.techsmith
2016-05-09 12:24 - 2016-05-09 12:24 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2016-05-09 12:24 - 2016-05-09 12:24 - 00000000 ____D C:\Program Files (x86)\TechSmith
2016-05-09 12:24 - 2016-05-09 12:24 - 00000000 ____D C:\Program Files (x86)\QuickTime
2016-05-07 19:47 - 2016-05-07 19:47 - 00000000 ____D C:\Users\Tim.MirjamZanetti\Desktop\Skinn animationen
2016-05-07 19:45 - 2014-12-02 13:06 - 00343552 _____ C:\Users\Tim.MirjamZanetti\Desktop\Minecraft Skin Viewer.exe
2016-05-07 18:36 - 2016-05-07 18:36 - 00000000 ____D C:\ProgramData\Riot Games
2016-05-07 18:16 - 2016-05-07 18:16 - 00001613 _____ C:\Users\Public\Desktop\League of Legends.lnk
2016-05-07 18:16 - 2016-05-07 18:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2016-05-07 18:14 - 2016-05-09 17:07 - 00002096 _____ C:\Users\Tim.MirjamZanetti\Desktop\Lightworks x64 (12.6).lnk
2016-05-07 18:14 - 2016-05-07 18:18 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Roaming\Riot Games
2016-05-07 18:09 - 2016-05-07 18:14 - 30668968 _____ (Riot Games) C:\Users\Tim.MirjamZanetti\Downloads\LeagueofLegends_EUW_Installer_9_15_2014.exe
2016-05-06 21:45 - 2016-05-09 13:01 - 00000000 ____D C:\Users\Tim.MirjamZanetti\Desktop\1.8 mods
2016-05-06 21:45 - 2016-05-09 13:00 - 00000000 ____D C:\Users\Tim.MirjamZanetti\Desktop\1.7 mods
2016-05-06 21:01 - 2016-05-06 21:02 - 00377138 _____ C:\Users\Tim.MirjamZanetti\Downloads\14154167906_13998673914_OptiFine-HD-D5-Ultra-1.5.2.zip
2016-05-06 20:56 - 2016-05-06 20:56 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Roaming\Highresolution Enterprises
2016-05-06 15:19 - 2016-05-07 15:12 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-05-06 15:06 - 2016-05-06 15:06 - 01497654 _____ C:\Users\Sven\Documents\gekq89qg.bmp
2016-05-06 14:55 - 2016-05-06 14:55 - 00000000 ____D C:\Users\Sven\AppData\Roaming\Highresolution Enterprises
2016-05-06 14:55 - 2016-05-06 14:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Highresolution Enterprises
2016-05-06 14:55 - 2016-05-06 14:55 - 00000000 ____D C:\Program Files\Highresolution Enterprises
2016-05-06 14:54 - 2016-05-06 14:55 - 04324944 _____ C:\Users\Sven\Downloads\XMouseButtonControlSetup.2.12.1.exe
2016-05-05 22:37 - 2016-05-05 22:37 - 01175328 _____ C:\Users\Tim.MirjamZanetti\Downloads\Nevermine Mod Installer 1.7.10.exe
2016-05-05 20:57 - 2016-05-05 21:10 - 00002082 _____ C:\Users\Tim.MirjamZanetti\Desktop\Blender.lnk
2016-05-03 20:02 - 2016-05-03 20:02 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2016-05-02 12:43 - 2016-05-02 12:43 - 00000193 _____ C:\Windows\WORDPAD.INI
2016-05-02 12:27 - 2016-05-02 12:35 - 68321446 _____ C:\Users\Tim.MirjamZanetti\Downloads\Combat Pack-1.2.3.zip
2016-05-02 12:24 - 2016-05-02 12:41 - 14097286 _____ C:\Users\Tim.MirjamZanetti\Downloads\StegPack.zip
2016-04-29 12:26 - 2016-04-29 12:26 - 00090119 _____ C:\Users\Tim.MirjamZanetti\Downloads\BloodNBones-1.1.5-1.6.4.zip.part
2016-04-27 13:58 - 2016-05-07 18:14 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Roaming\Audacity
2016-04-27 13:53 - 2016-04-27 13:57 - 26496761 _____ (Audacity Team ) C:\Users\Tim.MirjamZanetti\Downloads\audacity-win-2.1.2.exe

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2016-05-24 17:34 - 2009-07-14 06:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-05-24 17:34 - 2009-07-14 06:45 - 00024608 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-05-24 17:33 - 2014-07-23 09:45 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-05-24 17:33 - 2014-04-16 22:09 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-05-24 17:29 - 2013-03-03 20:30 - 00000000 ____D C:\Users\Sven\AppData\Local\LogMeIn Hamachi
2016-05-24 17:29 - 2012-06-24 20:13 - 00742794 _____ C:\Windows\system32\perfh010.dat
2016-05-24 17:29 - 2012-06-24 20:13 - 00152352 _____ C:\Windows\system32\perfc010.dat
2016-05-24 17:29 - 2012-06-24 20:06 - 00748104 _____ C:\Windows\system32\perfh00C.dat
2016-05-24 17:29 - 2012-06-24 20:06 - 00154994 _____ C:\Windows\system32\perfc00C.dat
2016-05-24 17:29 - 2012-06-24 19:58 - 00710502 _____ C:\Windows\system32\perfh007.dat
2016-05-24 17:29 - 2012-06-24 19:58 - 00154832 _____ C:\Windows\system32\perfc007.dat
2016-05-24 17:29 - 2009-07-14 07:13 - 03450454 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-24 17:29 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2016-05-24 17:25 - 2016-02-16 23:00 - 00001106 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-24 17:24 - 2012-03-23 02:16 - 00000000 ____D C:\Windows\OEMTemp
2016-05-24 17:24 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-24 17:14 - 2016-02-16 23:00 - 00001110 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-24 17:09 - 2014-01-23 13:44 - 00000320 _____ C:\Windows\Tasks\HP Photo Creations Communicator.job
2016-05-24 16:30 - 2014-01-01 16:21 - 00000000 ____D C:\Program Files (x86)\Overwolf
2016-05-24 13:42 - 2014-04-16 22:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-05-24 13:42 - 2014-04-16 22:09 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-05-24 13:00 - 2016-01-31 15:05 - 00001149 _____ C:\Users\Tim.MirjamZanetti\Desktop\nativelog.txt
2016-05-24 12:52 - 2016-01-31 15:12 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Roaming\.minecraft
2016-05-24 12:33 - 2014-10-30 13:12 - 00000000 ____D C:\Users\Tim.MirjamZanetti\Downloads\Gameforge Live
2016-05-24 12:32 - 2013-02-03 17:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gameforge Live
2016-05-24 12:32 - 2013-02-03 17:47 - 00000000 ____D C:\Program Files (x86)\GameforgeLive
2016-05-24 12:31 - 2014-01-26 18:18 - 00001060 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1536315646-4119356758-1407283469-1002Core.job
2016-05-24 12:25 - 2016-02-15 18:31 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Local\LogMeIn Hamachi
2016-05-24 12:21 - 2009-07-14 07:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-05-23 22:37 - 2016-02-14 00:17 - 00000000 ____D C:\AdwCleaner
2016-05-23 20:27 - 2012-12-02 19:53 - 00133168 _____ C:\Users\Sven\AppData\Local\GDIPFONTCACHEV1.DAT
2016-05-23 19:47 - 2012-12-01 11:20 - 00000008 __RSH C:\Users\Sven\ntuser.pol
2016-05-23 19:47 - 2012-12-01 11:20 - 00000000 ____D C:\Users\Sven
2016-05-23 19:37 - 2009-07-14 04:34 - 00000215 _____ C:\Windows\system.ini
2016-05-23 19:13 - 2014-07-09 14:09 - 00000000 ____D C:\Windows\erdnt
2016-05-18 12:21 - 2014-10-28 19:04 - 00133168 _____ C:\Users\Tim.MirjamZanetti\AppData\Local\GDIPFONTCACHEV1.DAT
2016-05-18 12:03 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\system32\NDF
2016-05-17 14:42 - 2014-01-26 20:12 - 00002302 _____ C:\Users\Tim\Desktop\Google Chrome.lnk
2016-05-17 14:33 - 2016-02-16 23:06 - 00002356 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-17 14:33 - 2016-02-16 23:06 - 00002338 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-05-17 14:33 - 2013-06-11 21:56 - 00002289 _____ C:\Users\Gast\Desktop\Google Chrome.lnk
2016-05-17 13:35 - 2009-07-14 06:45 - 00466424 _____ C:\Windows\system32\FNTCACHE.DAT
2016-05-17 13:19 - 2014-10-28 19:03 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Local\VirtualStore
2016-05-16 18:53 - 2016-03-02 13:14 - 00000000 ____D C:\Users\Tim.MirjamZanetti\Desktop\selbst gemacht Texturen
2016-05-16 18:43 - 2016-02-27 19:03 - 00002095 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-05-15 20:49 - 2016-03-14 20:13 - 00010721 _____ C:\Users\Sven\Desktop\Kanji Plan neu.xlsx
2016-05-14 06:23 - 2013-02-28 23:35 - 00000000 ____D C:\Users\Mirjam Zanetti\AppData\Local\LogMeIn Hamachi
2016-05-13 17:30 - 2015-10-29 16:40 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Roaming\Skype
2016-05-13 16:17 - 2016-02-22 10:33 - 00000000 ____D C:\Users\Tim.MirjamZanetti\Desktop\OBS Aufnahmen
2016-05-13 16:17 - 2016-02-22 09:04 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Roaming\OBS
2016-05-12 23:25 - 2012-12-06 14:07 - 03383434 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-05-12 23:20 - 2014-12-11 15:51 - 00000000 ____D C:\Windows\system32\appraiser
2016-05-12 19:34 - 2014-07-23 09:45 - 00003822 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2016-05-12 19:34 - 2012-03-23 02:24 - 00797376 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-05-12 19:34 - 2012-03-23 02:24 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-12 18:29 - 2014-09-06 12:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-05-12 18:29 - 2014-09-06 12:00 - 00000000 ____D C:\Program Files (x86)\LogMeIn Hamachi
2016-05-11 20:09 - 2016-02-05 11:57 - 05914582 _____ C:\Users\Tim.MirjamZanetti\Desktop\faithfuleditMesucha.zip
2016-05-11 20:07 - 2014-12-21 18:02 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Local\paint.net
2016-05-11 19:17 - 2016-02-18 21:37 - 00000000 ____D C:\ftb
2016-05-11 15:15 - 2016-04-03 09:13 - 00000739 _____ C:\Users\Tim.MirjamZanetti\Desktop\Script codes.txt
2016-05-11 15:08 - 2010-11-21 09:17 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-11 14:39 - 2013-12-19 21:04 - 00000000 ____D C:\Windows\system32\MRT
2016-05-11 14:02 - 2012-11-07 14:34 - 139319312 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-05-11 12:30 - 2016-03-16 20:22 - 00000000 ____D C:\Users\Tim.MirjamZanetti\Documents\bäh
2016-05-11 12:25 - 2015-11-08 12:58 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Roaming\HandBrake
2016-05-11 12:18 - 2015-11-08 12:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Handbrake
2016-05-11 10:28 - 2015-03-25 22:04 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2016-05-11 10:09 - 2014-07-29 18:35 - 00004106 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-05-11 10:09 - 2014-07-29 18:35 - 00003854 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-05-10 16:26 - 2015-10-24 16:33 - 00003886 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-05-09 12:24 - 2016-03-03 19:10 - 00000000 ____D C:\ProgramData\TechSmith
2016-05-07 19:43 - 2016-03-23 18:03 - 00555342 _____ C:\Users\Tim.MirjamZanetti\Downloads\SkinEdit_Alpha_3_pre_7.zip
2016-05-07 18:27 - 2014-01-09 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Related Programs
2016-05-07 15:12 - 2016-02-27 19:03 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-06 19:29 - 2014-03-02 17:33 - 00000000 ____D C:\Users\Sven\AppData\Local\Paint.NET
2016-05-06 18:50 - 2014-07-29 14:22 - 00000968 _____ C:\Windows\wininit.ini
2016-05-06 16:29 - 2013-02-28 23:36 - 00034720 ____H (LogMeIn, Inc.) C:\Windows\system32\hamachi.sys
2016-05-06 14:01 - 2015-04-04 14:03 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-05-06 14:01 - 2015-04-04 14:03 - 00000000 ___SD C:\Windows\system32\GWX
2016-05-05 20:58 - 2016-03-08 13:57 - 00000000 ____D C:\Users\Tim.MirjamZanetti\Desktop\Neuer Ordner
2016-05-04 20:33 - 2016-03-18 18:53 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Roaming\TS3Client
2016-05-04 11:41 - 2016-03-18 18:53 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Local\TeamSpeak 3 Client
2016-05-03 20:16 - 2016-03-25 16:08 - 00000000 ____D C:\Users\Tim.MirjamZanetti\.gimp-2.8
2016-05-03 20:02 - 2015-11-27 19:45 - 00040446 _____ (Beepa Pty Ltd) C:\Users\Tim\Desktop\uninstall.exe
2016-05-03 19:34 - 2015-11-12 18:58 - 00000000 ____D C:\tmp
2016-04-29 12:54 - 2015-10-30 16:52 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Roaming\.technic
2016-04-29 12:54 - 2015-10-30 16:51 - 04734664 _____ () C:\Users\Tim.MirjamZanetti\Desktop\TechnicLauncher.exe
2016-04-27 14:01 - 2016-01-28 19:13 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-04-27 14:01 - 2012-03-23 01:43 - 00000000 ____D C:\ProgramData\Skype
2016-04-27 13:18 - 2015-10-02 20:27 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Local\ftblauncher
2016-04-27 12:22 - 2016-02-18 21:24 - 00000000 ____D C:\Users\Tim.MirjamZanetti\AppData\Roaming\ftblauncher
2016-04-27 12:22 - 2016-02-01 17:50 - 07650529 _____ C:\Users\Tim.MirjamZanetti\Desktop\FTB_Launcher.exe
2016-04-26 22:03 - 2016-04-03 11:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-26 22:03 - 2015-10-03 12:29 - 00000000 ____D C:\Program Files\Java
2016-04-26 22:02 - 2015-10-03 12:30 - 00000000 ____D C:\Users\Tim.MirjamZanetti\.oracle_jre_usage
2016-04-26 22:01 - 2016-04-03 11:13 - 00110144 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2014-02-16 10:13 - 2014-04-16 19:50 - 0000015 _____ () C:\Users\Sven\AppData\Roaming\Box1.txt
2014-02-16 10:13 - 2014-02-16 10:13 - 0000000 _____ () C:\Users\Sven\AppData\Roaming\Box2.txt
2014-02-16 10:13 - 2014-02-16 10:13 - 0000000 _____ () C:\Users\Sven\AppData\Roaming\Box3.txt
2014-02-16 10:13 - 2014-02-16 10:13 - 0000000 _____ () C:\Users\Sven\AppData\Roaming\Box4.txt
2014-02-16 10:13 - 2014-02-16 10:13 - 0000000 _____ () C:\Users\Sven\AppData\Roaming\Box5.txt
2014-02-16 10:13 - 2014-02-16 10:13 - 0000000 _____ () C:\Users\Sven\AppData\Roaming\Box6.txt
2015-01-18 14:51 - 2015-09-27 17:40 - 0000137 _____ () C:\Users\Sven\AppData\Roaming\Charaktere.xml
2014-02-17 22:11 - 2014-04-16 19:48 - 0000656 _____ () C:\Users\Sven\AppData\Roaming\Karteikarten v2.xml
2014-02-14 19:23 - 2015-03-26 20:51 - 0000309 _____ () C:\Users\Sven\AppData\Roaming\Karteikarten.xml
2014-02-16 21:15 - 2015-12-19 17:12 - 0000001 _____ () C:\Users\Sven\AppData\Roaming\NexusHighscore.txt
2015-10-01 16:52 - 2016-03-06 20:37 - 0004052 _____ () C:\Users\Sven\AppData\Roaming\RubiksTimes.xml
2015-03-26 20:51 - 2015-03-26 20:51 - 0000007 _____ () C:\Users\Sven\AppData\Roaming\WKcmb.txt
2013-03-06 16:03 - 2013-06-12 12:59 - 0004608 _____ () C:\Users\Sven\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-01-31 23:09 - 2014-01-31 23:09 - 0000092 _____ () C:\Users\Sven\AppData\Local\fusioncache.dat
2015-11-14 13:29 - 2015-11-14 13:29 - 0000845 _____ () C:\Users\Sven\AppData\Local\recently-used.xbel
2013-12-14 17:35 - 2015-02-12 20:07 - 0007598 _____ () C:\Users\Sven\AppData\Local\Resmon.ResmonCfg
2014-01-19 20:06 - 2014-01-19 20:06 - 0000057 _____ () C:\ProgramData\Ament.ini
2012-06-29 12:55 - 2012-06-29 12:57 - 0002472 _____ () C:\ProgramData\clear.fiSDK20.log
2012-06-29 12:56 - 2012-06-29 12:56 - 0000032 _____ () C:\ProgramData\PS.log

Einige Dateien in TEMP:
====================
C:\Users\Sven\AppData\Local\Temp\libeay32.dll
C:\Users\Sven\AppData\Local\Temp\msvcr120.dll
C:\Users\Sven\AppData\Local\Temp\sqlite3.dll


==================== Bamital & volsnap =================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert


LastRegBack: 2013-03-25 09:03

==================== Ende von FRST.txt ============================

Terrenay 24.05.2016 16:42
Addition:

Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:16-05-2016
durchgeführt von Sven (2016-05-24 17:37:38)
Gestartet von C:\Users\Sven\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-11-07 09:27:53)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1536315646-4119356758-1407283469-500 - Administrator - Disabled)
Gast (S-1-5-21-1536315646-4119356758-1407283469-501 - Limited - Disabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-1536315646-4119356758-1407283469-1009 - Limited - Enabled)
Mirjam Zanetti (S-1-5-21-1536315646-4119356758-1407283469-1000 - Administrator - Enabled) => C:\Users\Mirjam Zanetti
Sven (S-1-5-21-1536315646-4119356758-1407283469-1001 - Administrator - Enabled) => C:\Users\Sven
Tim (S-1-5-21-1536315646-4119356758-1407283469-1010 - Administrator - Enabled) => C:\Users\Tim.MirjamZanetti

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Microsoft Security Essentials (Enabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
AS: Microsoft Security Essentials (Enabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4Story (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Kalydo App 4Story) (Version: 4.02.02.6 - )
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
Acer eDisplay Management (HKLM-x32\...\{A586DC50-B18D-48FB-B7CC-A598200457C2}) (Version: 1.37.007 - Portrait Displays, Inc.)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3507 - Acer Incorporated)
Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.2.5 - WildTangent)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3506 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0609.2011 - Acer Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.16) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.1.171 - Adobe Systems, Inc.)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.5 - Sereby Corporation)
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AncientMagic_New (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\785aa0fbe9abac3c) (Version: 0.0.0.2 - AncientMagic_New)
Anki (HKLM-x32\...\Anki) (Version:  - )
Any Video Converter 5.5.5 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.4272 - DsNET Corp)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Avidemux 2.6 (32-bit) (HKLM-x32\...\Avidemux 2.6) (Version: 2.6.7.8981 - )
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.4.0.895 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
Benutzerhandbuch - Grundlagen EPSON XP-402 403 405 406 Series (HKLM-x32\...\EPSON XP-402 403 405 406 Series Bog) (Version:  - )
Benutzerhandbuch EPSON XP-402 403 405 406 Series (HKLM-x32\...\EPSON XP-402 403 405 406 Series Useg) (Version:  - )
Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
BitComet 1.36 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.36 - CometNetwork)
Blend for Visual Studio 2012 (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio 2012 DEU resources (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio 2012 ENU resources (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio Add-in for Adobe FXG Import (x32 Version: 1.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blender (HKLM\...\Blender) (Version: 2.70a - Blender Foundation)
Blender (HKLM-x32\...\{1115EF75-E8C1-4BA1-829F-1B8460D47701}) (Version: 2.76.2 - Blender Foundation)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.7.17.916 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{7E6316CA-5ED0-4EF9-9920-A92115E286B7}) (Version: 0.7.17.916 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Camtasia Studio 8 (HKLM-x32\...\{F6EC4C4E-C87B-4F50-851B-1C86E0C94F00}) (Version: 8.6.0.2055 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Chat Mapper (HKLM-x32\...\{498F0DC0-3B5E-4DC7-B571-578F61306058}) (Version: 1.7.0.0 - Urban Brain Studios, Inc.)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Cinema 4D version R12 (HKLM-x32\...\{7D9D8134-9FA3-4FFF-ADA1-BF609F29997A}_is1) (Version: R12 - Salat Production)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.00.3004 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.00.3004 - Acer Incorporated)
clear.fi SDK - MVP 2 (x32 Version: 2.0.1505 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.0.1502 - CyberLink Corp.) Hidden
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Devenv-Ressourcen für Microsoft Visual Studio 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
DirectX for Managed Code (HKLM\...\{FDF7187F-3960-4BEC-916D-98C9A83E3A68}_is1) (Version: 1.0.0.0 - Sereby Corporation)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition Language Pack (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Download Navigator (HKLM-x32\...\{E728441A-7820-4B1C-87C9-DE7BE37B2953}) (Version: 1.1.0 - SEIKO EPSON CORPORATION)
Druckerdeinstallation für EPSON XP-402 403 405 406 Series (HKLM\...\EPSON XP-402 403 405 406 Series) (Version:  - SEIKO EPSON Corporation)
Dxtory version 2.0.127 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.127 - ExKode Co. Ltd.)
eBay Worldwide (HKLM-x32\...\{D3E5A972-9A15-427D-AE78-8181A5FD943C}) (Version: 2.2.0409 - OEM)
Entity Framework Designer für Visual Studio 2012 - DEU (HKLM-x32\...\{B2BDC072-BE01-432D-B281-30891D597FBB}) (Version: 11.1.30729.00 - Microsoft Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{30E01116-5666-4807-8EF1-D80E9FF16717}) (Version: 2.3.2.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Event Manager (HKLM-x32\...\{BECE9CCD-83F6-4BAA-9B26-227DF7D2E932}) (Version: 3.01.0000 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
FileZilla Client 3.8.1 (HKLM-x32\...\FileZilla Client) (Version: 3.8.1 - Tim Kosse)
Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
Finale 2014d DEMO (HKLM-x32\...\Finale 2014) (Version: 2014.4.5030.0 - MakeMusic)
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleri (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleriet (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Freemake Video Converter Version 4.1.7 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.7 - Ellora Assets Corporation)
Galeria de Fotografias (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotogràfica (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Gameforge Live 2.0.11 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.11 - Gameforge)
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
GLBasic SDK (HKLM-x32\...\GLBasic_SDK) (Version: 12.096 - Dream Design Entertainment)
GnuWin32: CoreUtils version 5.3.0 (HKLM-x32\...\CoreUtils-5.3.0_is1) (Version: 5.3.0 - GnuWin32)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - )
hohosearch - Uninstall (HKLM-x32\...\{7DBBEBEE-C964-422D-B6BE-1866506CFC72}) (Version:  - )
Hotfix für Microsoft Visual C# 2010 Express - DEU (KB2635973) (HKLM-x32\...\{D81641E8-ABF1-3D07-803B-60E8FC619368}.KB2635973) (Version: 1 - Microsoft Corporation)
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 2.05.3510 - Acer Incorporated)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.12412 - HP)
HP Photosmart 7520 series - Grundlegende Software für das Gerät (HKLM\...\{62883BA5-32F6-44D0-AF9D-9CBED778F36F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HyperCam 3 (HKLM-x32\...\HyperCam 3 3.5.1211.29) (Version: 3.5.1211.29 - Solveig Multimedia)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Insaniquarium Deluxe (x32 Version: 2.2.0.97 - WildTangent) Hidden
InstallForge (HKLM-x32\...\InstallForge) (Version: 1.2.9.1 - solicus)
Interdiscount Fotoservice (HKLM-x32\...\Interdiscount Fotoservice) (Version: 4.8.6 - CEWE COLOR AG u Co. OHG)
iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
JavaScript Tooling (Version: 11.0.60315 - Microsoft Corporation) Hidden
JetBrains ReSharper 7.0.1 (HKLM-x32\...\{1322DAC7-A713-4015-8F36-035F07A06ECA}) (Version: 7.0.1098 - JetBrains Inc)
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Kalydo Player 6.00.00 (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\KalydoPlayer) (Version: 6.00.00 - Eximion B.V.)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
Last.fm Scrobbler 2.1.36 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 12.6.0.0 - Lightworks)
LocalESPC (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
LocalESPCui for de-de (x32 Version: 8.59.25584 - Microsoft) Hidden
LocalESPCui for en-us (x32 Version: 8.59.25584 - Microsoft) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.428 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.232 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (x32 Version: 2.2.0.428 - LogMeIn, Inc.) Hidden
LoiLo Game Recorder (HKLM\...\{89E4163C-BD19-45A9-BCEB-980741786799}_is1) (Version: 1.1.0.1 - LoiLo inc.)
LoiLoScope 2 (HKLM-x32\...\{CAB75FFC-2377-4B95-A8FA-C9234B812A92}_is1) (Version: 2.5.4.2 - LoiLo inc)
MAESTIA Version 201207 (HKLM-x32\...\{8F50EC3D-C482-4445-9E4B-991A766047D5}_is1) (Version: 201207 - RocWorks)
Magicka - Demo (HKLM-x32\...\Steam App 73050) (Version:  - Arrowhead Game Studios)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2656370) (HKLM-x32\...\M2656370) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version:  - )
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{98B45D1C-6EB1-460D-A87D-2B60678DC105}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{1948E039-EC79-4591-951D-9867A8C14C90}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 - DEU (HKLM-x32\...\{07AC2D83-E795-4AD5-970D-B9BD14A1E411}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages - DEU (HKLM-x32\...\{93EEC4E9-EEFE-4027-ACD3-6E8C1D085975}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 Language Pack - DEU (HKLM-x32\...\Microsoft Help Viewer 2.0 Language Pack - DEU) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0401-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0402-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0403-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0404-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0405-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0406-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0407-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0408-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040B-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040C-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040D-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040E-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0410-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0413-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0414-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0415-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0416-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0418-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0419-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041A-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041B-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041D-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041E-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041F-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0424-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0816-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0C0A-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK - Deutsch (HKLM-x32\...\{8EA792A5-38AA-4F0E-8DFE-D1BAF1145431}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{A106D33E-6B43-42C0-9BFC-D03303261FA7}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{13D558FE-A863-402C-B115-160007277033}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service  (HKLM\...\{BEB0F91E-F2EA-48A1-B938-7857ABF2A93D}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{6D6D43E5-218C-4B05-92D3-2240810F4760}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU  (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (11.1.20828.01) (HKLM-x32\...\{E511AE89-54BB-481D-BC4A-1B1F1E1B7693}) (Version: 11.1.20828.01 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (11.1.20828.01) (HKLM-x32\...\{00C84D22-DB8F-4159-BF70-682B8EA56A1E}) (Version: 11.1.20828.01 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{C668416A-9213-4058-B7F2-01A42D85559D}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{1E6ED082-E32D-4B2B-8B6A-70B094815135}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C# 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{aec97477-921a-4289-985a-9e29506625b6}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{616C6F39-4CE1-3434-A665-2F6A04C09A7F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Express 2012 für Windows Desktop - DEU (HKLM-x32\...\{69ec32be-d994-44de-9eae-6d86ced6f352}) (Version: 11.0.50727.42 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2012 (HKLM-x32\...\{ae17ae9b-af38-40d2-a194-6102c56ed502}) (Version: 11.0.50727.26 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{3674F088-9B90-473A-AAC3-20A00D8D810C}) (Version: 3.1237.1762 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - DEU (HKLM-x32\...\{86756584-C41A-4CA3-B42D-4768C7720F56}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - enu (HKLM-x32\...\{E4C33F5B-1B2F-466E-957E-B274F08151A0}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft XNA Game Studio Platform Tools (HKLM-x32\...\{89690B51-2E21-4E93-914E-F9CAC5B24A84}) (Version: 1.4.0.0 - Microsoft Corporation)
Minecraft Editor 64 bits (HKLM\...\{042CC934-54B5-4BEB-948D-F3780B2CE4D7}) (Version: 1.6.6 - Axialmedia)
MixPad Multitrack Recording Software (HKLM-x32\...\MixPad) (Version: 4.00 - NCH Software)
MonoGame (HKLM-x32\...\MonoGame) (Version: 3.0 - MonoGame)
MorphVOX Pro (HKLM-x32\...\{53AB1F25-D607-4B4D-8FD5-74E03F2F9414}) (Version: 4.4.7 - Screaming Bee)
Movavi Screen Capture Studio 7 (HKLM-x32\...\Movavi Screen Capture Studio 7) (Version: 7.1.0 - Movavi)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 46.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 de)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla)
MP4 To MP3 Converter V3.0.5 (HKLM-x32\...\MP4 To MP3 Converter_is1) (Version:  - hxxp://www.MP4ToMP3Converter.net)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
MpcStar 5.4 (HKLM-x32\...\MpcStar) (Version: 5.4 - www.mpcstar.com)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.18 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.18 - Egis Technology Inc.) Hidden
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.4.10500.1.100 - Nero AG)
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.6.10700.5.100 - Nero AG)
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{62BF4BD3-B1F6-4FA2-8388-CC0647ACBF86}) (Version: 10.6.10300 - Nero AG)
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.6.10600.4.100 - Nero AG)
Netzwerkhandbuch EPSON XP-402 403 405 406 Series (HKLM-x32\...\EPSON XP-402 403 405 406 Series Netg) (Version:  - )
No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.94.111.0 - Overwolf Ltd.)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pivot Pro Plugin (x32 Version: 9.50.110 - Portrait Displays, Inc.) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poczta usługi Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pokemon Online 2.0.1 (HKLM-x32\...\{2C08D7E7-9EE1-4A08-AFE0-745F02DCD6A4}_is1) (Version:  - Dreambelievers)
POKéMON Simulator 4.5 (HKLM-x32\...\POKéGAME32) (Version: 4.5 - Birdiesoft)
Pokémon Trading Card Game Online (HKLM-x32\...\{F323157A-218F-4613-9673-F975AB9397CF}) (Version: 2.23.1 - The Pokémon Company International)
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Pošta Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PreEmptive Analytics Client German Language Pack (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{9169C939-ED01-446A-BD0C-29873BAF4E48}) (Version: 11.0.2100.60 - Microsoft Corporation)
Raccolta foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 6.4.6.10930 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6392 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version:  - )
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.) Hidden
SDK (x32 Version: 2.32.010 - Portrait Displays, Inc.) Hidden
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Sizer 3.34 (HKLM-x32\...\{DE43AA92-E8C0-4620-AFE2-FBD623C71643}) (Version: 3.3.4.0 - Brian Apps)
Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.)
Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Software Updater (HKLM-x32\...\{7B3A525D-9D3D-4618-AE52-A31DE98C8AC3}) (Version: 4.1.4 - SEIKO EPSON CORPORATION)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Steuer 2012 13.0.3 (HKLM-x32\...\1382-8438-0790-3872) (Version: 13.0.3 - Information Factory AG)
Steuer 2013 14.0.1 (HKLM-x32\...\0166-6433-7072-1489) (Version: 14.0.1 - Information Factory AG)
Steuer 2014 15.0.4 (HKLM-x32\...\0557-1095-3602-3415) (Version: 15.0.4 - Information Factory AG)
Steuer St.Gallen 2015 nP 1.12.0 (HKLM-x32\...\2081-5105-2470-6923) (Version: 1.12.0 - Information Factory AG)
Studie zur Verbesserung von HP Photosmart 7520 series Produkten (HKLM\...\{D662A279-973A-42A0-8D4B-8747C56C0501}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISER_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISER_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISER_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISER_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
UpdateStar (HKLM-x32\...\{4B75C1B1-D0C7-4E70-9EE4-09CE7F734B0C}) (Version: 10.0.1265 - UpdateStar GmbH)
Valokuvavalikoima (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Vegas Movie Studio HD 11.0 (HKLM-x32\...\{6E3FD14F-858B-11E1-BC4A-F04DA23A5C58}) (Version: 11.0.75 - Sony)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 4.31 - NCH Software)
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.97 - WildTangent) Hidden
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{CFCB8616-A5D1-4281-80E8-389F685BFAE2}) (Version: 4.0.8080.0 - Microsoft Corporation)
Visual Studio 2012 Update 4 (KB2707250) (HKLM-x32\...\{312d9252-c71c-4c84-b171-f4ad46e22098}) (Version: 11.0.61030 - Microsoft Corporation)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 6.33 - NCH Software)
WCF Data Services 5.0 (for OData v3) DEU Language Pack (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services 5.0 (for OData v3) Primary Components (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2012 (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Visual Studio 11 DEU Language Pack (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{3A523AF9-D32F-4C85-8388-0335731F3405}) (Version: 4.1.61829.0 - Microsoft Corporation)
weblica - 3.6.3 (HKLM-x32\...\weblica) (Version: 3.6.3 - empros gmbh)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3507 - Acer Incorporated)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.10 Beta 4 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
WinTuneUp 1.0 (HKLM-x32\...\WinTuneUp) (Version: 1.0 - WinTuneUp Apps. )
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
Wondershare Video Editor(Build 3.5.0) (HKLM-x32\...\Wondershare Video Editor_is1) (Version:  - Wondershare Software)
X-Mouse Button Control 2.12.1 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.12.1 - Highresolution Enterprises)
Zerius Vocoder (remove only) (HKLM-x32\...\VocoderGUI) (Version:  - )
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Συλλογή φωτογραφιών (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 16.4.3528.0331 - Корпорация Майкрософт) Hidden
Фотоальбом (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотографии (общедоступная версия) (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
גלריית התמונות (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
بريد Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
معرض الصور (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
影像中心 (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1536315646-4119356758-1407283469-1001_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-1536315646-4119356758-1407283469-1001_Classes\CLSID\{F7D4B6AD-AB5F-4fe8-9469-3A4697E41129}\InprocServer32 -> C:\Users\Sven\AppData\Roaming\Kalydo\KalydoPlayer\bin2\kalydoplayer64.dll (Eximion B.V.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0CCD72B3-24D9-4735-913B-6C29A494423B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {3CE40923-AC1D-4F0A-B3EC-9D65989E0DB4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-16] (Google Inc.)
Task: {85F8BC69-CE46-4016-B752-7A19AA8B795D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {87E712A9-9E69-4B7C-9F54-5A79A168AF42} - System32\Tasks\HPCustParticipation HP Photosmart 7520 series => C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {B48AFB8A-3786-4F8E-BDEB-E4F05F70409E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {CA415D1F-7A72-4B84-8880-31511E6E3DB6} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-05-19] (Overwolf LTD)
Task: {CFC139DF-686C-45F9-A5F4-DCF738E94779} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-12] (Adobe Systems Incorporated)
Task: {E14BE1A6-9A64-40D3-940C-A52A49596E45} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2014-01-23] ()
Task: {E45F4C4B-41F0-4A5B-983B-DB6815BF7334} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1536315646-4119356758-1407283469-1002Core => C:\Users\Tim\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-26] (Google Inc.)
Task: {E4794289-C070-4F37-B566-94013D77DA74} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-16] (Google Inc.)
Task: {EAE46E20-611D-4E3F-A2E8-1BC4EBE690C2} - System32\Tasks\{C04C0424-B84F-4869-9FF1-4EB72C75A6E7} => Chrome.exe hxxp://ui.skype.com/ui/0/7.13.0.101/de/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {F6E1D6E5-BA7F-4CF8-A9B3-E0570555F2CA} - System32\Tasks\{60145FA2-7B40-4FA2-9378-E17461215D59} => Chrome.exe hxxp://ui.skype.com/ui/0/7.18.0.109/de/abandoninstall?page=tsProgressBar

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1536315646-4119356758-1407283469-1002Core.job => C:\Users\Tim\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-12-17 19:38 - 2015-12-17 19:38 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-01 21:29 - 2014-05-01 21:29 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2015-09-23 23:41 - 2015-09-23 23:41 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2016-05-23 19:37 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1      localhost

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Sven\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\Services: ArcService => 3
MSCONFIG\Services: BITCOMET_HELPER_SERVICE => 3
MSCONFIG\Services: dowidoly => 2
MSCONFIG\Services: DTSRVC => 2
MSCONFIG\Services: EgisTec Ticket Service => 3
MSCONFIG\Services: Hamachi2Svc => 2
MSCONFIG\Services: hekipemezbt => 2
MSCONFIG\Services: LMIGuardianSvc => 2
MSCONFIG\Services: muftionSysSrv => 2
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: NoIPDUCService4 => 2
MSCONFIG\Services: PdiService => 2
MSCONFIG\Services: rijufoze => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: WdiSystemHost => 3
MSCONFIG\Services: WebClient => 3
MSCONFIG\Services: Wecsvc => 3
MSCONFIG\Services: wercplsupport => 3
MSCONFIG\Services: WerSvc => 3
MSCONFIG\Services: WinDefend => 3
MSCONFIG\Services: WinHttpAutoProxySvc => 3
MSCONFIG\Services: Winmgmt => 2
MSCONFIG\Services: WinRM => 3
MSCONFIG\Services: Wlansvc => 3
MSCONFIG\Services: wlidsvc => 2
MSCONFIG\Services: wmiApSrv => 3
MSCONFIG\Services: WMPNetworkSvc => 3
MSCONFIG\Services: WPCSvc => 3
MSCONFIG\Services: WPDBusEnum => 3
MSCONFIG\Services: wscsvc => 2
MSCONFIG\Services: WSearch => 2
MSCONFIG\Services: wuauserv => 2
MSCONFIG\Services: wudfsvc => 3
MSCONFIG\Services: WwanSvc => 3
MSCONFIG\Services: zdengine => 2
MSCONFIG\startupreg: 4StoryPrePatch => C:\Program Files (x86)\Gameforge4D\4Story\PrePatch.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DT ACR => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe -ACR
MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: EgisTecPMMUpdate => "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
MSCONFIG\startupreg: EgisUpdate => "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: Hotkey Utility => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: MSC => "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: Norton Online Backup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
MSCONFIG\startupreg: NUSB3MON => "C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: Pando Media Booster => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
MSCONFIG\startupreg: PivotSoftware => "C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe" -delay=10
MSCONFIG\startupreg: ProductUpdater => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SuiteTray => "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: UpdateStar => "C:\Users\Sven\AppData\Roaming\UpdateStar\UpdateStar.exe" -A
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{9462B2D3-A17E-4CC8-9F50-078AAC69E435}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{580618D5-E9DB-4E3B-B25E-A59EF5B51494}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{82D2F429-74BB-4C32-922E-1E7A892D765C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{AC1B5820-04E9-456F-8B76-AE66AB0F4CB6}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{7D24A664-1155-4C1C-B241-94D252E17CB8}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{5B815E70-F584-4277-9742-4389D1AF5CFC}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{148B2BE4-1FCC-4212-AE2C-74E2225A0A88}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{DC978FB0-C1DF-4D0C-A2C7-AEE4FEBF032E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{0CF50B5A-0F19-46E4-9419-C1F5126EAA4C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{78A4AA6C-A139-4088-A14D-FC7D70BE525C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{C0592437-A85B-4FB8-9CAB-32B397731B9B}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{0EF361D3-FEE7-4075-8CEC-675F48FAE460}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK20\MVP\VideoPlayer.exe
FirewallRules: [{2D67AC77-B7F6-4588-A540-3D265A4CA75C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK20\MVP\MusicPlayer.exe
FirewallRules: [TCP Query User{1F3FD1FD-BD9C-4D4F-B3C2-97BE8F91A91A}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{93864273-E271-41A8-8094-9140C2870233}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{726EAD03-473D-4442-8554-6ED54D57CD2E}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{2552CF72-F890-4F19-A4F7-75EA026A3C43}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{DE7791AC-4518-4C0D-B5E6-F45D69B8D6B2}] => (Allow) LPort=20475
FirewallRules: [{5F33F7DE-A149-482A-AE9D-D5C6D2B1C222}] => (Allow) LPort=20475
FirewallRules: [{0463379A-5979-497D-84B2-8420FEFFA404}] => (Allow) LPort=9091
FirewallRules: [{E566F44D-7C25-44BD-907B-3365562953F0}] => (Allow) C:\Users\Tim\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{9C70EB12-27FB-405A-B9BE-1E349D01E4E5}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\WDExpress.exe
FirewallRules: [{238943EF-0A5C-4705-8C4B-F3F134AE9564}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\FaxApplications.exe
FirewallRules: [{4B590E3A-3070-44A9-8599-7043D13FDB68}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\DigitalWizards.exe
FirewallRules: [{8049C2E0-DEF7-4907-8D02-B31D3F3E5010}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\SendAFax.exe
FirewallRules: [{818EC397-B395-4005-93DE-4ED04A396B80}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\DeviceSetup.exe
FirewallRules: [{8910907D-DB90-47F2-AFE6-902C841D3ED7}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{552C363C-A18C-47B5-8A72-BBCB79454CC3}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{707B4CA6-D4CA-4044-9693-A22EE2EE7626}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{A0FFA398-E6FC-4B47-953E-D2ADCC428CF5}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{B09BCB3E-BDEE-4D80-A800-1AA517621E65}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{34B2E825-442D-4088-9A8A-280FF08582D4}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{62F14F56-43C5-4430-A95F-D7145AD172FD}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{C21B1F76-0F02-4F0D-A909-3A5268E2EAFE}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{05930C5E-594E-44D8-81FA-8B55EA1B9A8C}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{07D73A5B-2525-4995-9E8B-A2509473A5C4}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{C315DD86-D029-494D-B1E0-D86849A50A44}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{AB7EECAB-E63E-48C4-AF91-A2FAEEC890C7}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{5E5AC77A-5FDD-4EF4-B7AF-2F0A9602786F}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{A3ED048D-448A-46B3-A06E-9F369587FF85}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{C6AF2A33-45F6-4AEC-9BFF-8157D80726D1}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{E29C1C7D-8E35-44D2-85DC-76F859A055C2}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{954C7ADB-9796-4012-978D-70DAF07A310A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{37E6984D-15E1-4912-BEFF-6EA27C2ACC35}] => (Allow) LPort=2869
FirewallRules: [{72A7AA2D-7F88-40DE-8E26-93771149922A}] => (Allow) LPort=1900
FirewallRules: [{431410E7-1283-4A12-ABDB-9E798F0559D0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DEE2A875-CF6A-42D7-842F-0BA46756A5CA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A3473D84-BE66-4C04-B45C-DA9F26AB2BC9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka demo\Magicka.exe
FirewallRules: [{A08355AC-BB6F-4962-B4B9-883AC93E05AC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka demo\Magicka.exe
FirewallRules: [TCP Query User{A51E5F08-F63E-447A-A0ED-1537C6D26B71}C:\users\tim\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tim\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{73A0DD47-C10F-43EF-9560-BA70B97B720A}C:\users\tim\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tim\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{71698641-3411-4752-A070-C273C8ECF826}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{2A621AB4-F2A0-405A-91A4-E508877800FC}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{C7B2EE33-A7A5-4874-BD04-AACD119FD624}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{5C4D119C-6BD1-4087-9E04-399E0066AAA4}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{A9BF5DA8-4DD5-48EF-BE51-9F339055AA94}] => (Allow) C:\Program Files (x86)\weblica\weblica.exe
FirewallRules: [TCP Query User{1C32A07E-0764-4714-849E-9127709524D5}C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe] => (Allow) C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe
FirewallRules: [UDP Query User{A489BEDA-7D2D-4369-8750-0A7F0BA8D533}C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe] => (Allow) C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe
FirewallRules: [TCP Query User{4B0BC44D-C4D3-415F-9D50-0320D1CF63DF}C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [UDP Query User{2A2B5DBE-4290-4371-8657-27BCFF96AA27}C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{76E0C5DA-76AD-4ACA-BA05-09AFF3F5BA57}] => (Block) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{D9F8508B-8AB8-43A0-86B7-3BBE11C811D6}] => (Block) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [TCP Query User{B6B13C98-98E8-45C1-97F1-ADB83E155563}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{26930909-FD48-45D1-9DCD-583EA2D3F7D6}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{D062F345-F169-4C2D-97C7-68C50DDE0F2F}] => (Allow) C:\Users\Tim.MirjamZanetti\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [TCP Query User{42937A0C-11C4-4C5F-8C88-E917E8C9133E}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{CADEF76C-18F7-4242-A333-D9F9A290EF40}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{6214BF3E-DEA2-4DA1-8BC0-B0450231A7BD}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{C5AACCD9-20B2-40EC-8907-7C5E0A45DC02}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{D7661791-1AC4-4DEB-8D8E-747E3195D95D}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{99C8B889-1A19-4391-B5FC-032A0263B386}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{575B3235-CE38-47F7-AABC-A954E3804BFE}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{BF8913AD-6D75-4819-A928-A0C2DFB85261}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{0D79849A-87CB-4292-BAB5-DD031FE3ADBA}C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{C9B0DB83-7A59-40F9-9693-B3812AA6AB1D}C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{A01ECB6A-3DD0-4822-B2B4-D32916434CF0}] => (Block) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{799AEF50-1F7B-4E0B-92A9-9BB78EA9AF4B}] => (Block) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{644F6E26-BA68-4728-931A-E7B4ECD54177}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{D35CAF44-07ED-464F-A21A-416CB261E0E5}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{79DF9FA1-0C13-44DA-8305-A04023294881}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{2CFA280C-184A-4C0A-BF0B-62C111A5B551}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{09A80C48-34DF-4804-8C3C-73D9BEB23A80}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{58DE412E-BE98-46DA-A836-E64118BA42AA}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{D44C6DFF-000A-415B-ADE9-05A8AD145221}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{D76097E7-7B6E-4903-9F1A-0BBE012ED859}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [TCP Query User{D7A99EB7-7181-43DE-ADF9-B4CE249EB75B}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{F9E55F25-029D-42C0-9C0D-23A5BD2A5D89}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{139F0E93-4023-4244-BBCE-94D02D2EAFE5}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{CBFA3DAE-BAEC-4A32-9D41-B9877D141C68}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [TCP Query User{723CC834-E0CF-4C52-9AF4-A9307DF1A7BA}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{1D73E402-DDC8-48B4-9E96-6D677ED9B7A9}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{B55CE91E-6821-45ED-9AAA-7D4D8155187F}] => (Block) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{3529908A-203B-4B0E-9CE5-AEFECAA110EC}] => (Block) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{89EF4555-2A4F-485B-9336-0A04ED4B4DDB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{14CAF6E5-9CEA-440C-A2C0-126B55897457}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{146C773A-1C44-4674-87F8-409A43FBCA35}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{29991097-16C7-4AFF-8EF1-7F76C7C9790C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{42C2C346-A081-4CCC-9410-FE689B82C1BF}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{BE590231-FF49-4DF1-B27E-3990810CACEF}C:\program files\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [UDP Query User{43E8356B-D4E7-4022-AD7A-559157F3FCAC}C:\program files\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{9DABADB6-6476-48DC-8619-876C4608E43D}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{9CAE6AE7-2E60-4CBB-9F86-60B64D025163}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [TCP Query User{81525426-587F-4C46-B49A-7E84B9331B15}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [UDP Query User{0BC50DC2-B972-4B2E-9F7C-80955877D179}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{99C531F6-4C59-4F85-B7DD-3FAF8DBAA57A}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{386833E1-0094-4E22-841F-5D98A5C38D9F}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [TCP Query User{2C69B31C-8296-41E4-ACFA-B54C332C3F70}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{90AC6A06-A386-46A7-84C5-8FA5A8F95579}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{D492CA87-3F7F-4A89-970A-F196C0D3A958}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{A27BF2F7-A806-48DD-906C-7B41EAA73DD3}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{3D762C8F-843D-4E18-8827-81B66F1B72C6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{50C50E55-44A6-468B-B084-8C684BA0EF37}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{CFD82FE1-E14C-45AE-B064-5EF9B4E38F9E}C:\program files (x86)\anki\anki.exe] => (Allow) C:\program files (x86)\anki\anki.exe
FirewallRules: [UDP Query User{FA06B19A-77E5-4269-9C68-CD15B9667446}C:\program files (x86)\anki\anki.exe] => (Allow) C:\program files (x86)\anki\anki.exe
FirewallRules: [{5967758D-5A30-4A57-9CEC-49944729B37F}] => (Block) C:\program files (x86)\anki\anki.exe
FirewallRules: [{DBB61106-9103-4EB5-B142-6BAAD9F2E8B1}] => (Block) C:\program files (x86)\anki\anki.exe
FirewallRules: [{E4EBAD19-D98D-4A68-8928-17179F2B2B84}] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{A3BA9110-A287-4142-A675-8F6429A2F441}] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{1F7A58EC-C141-4522-81E2-78A3D7CAAF99}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{C84053CC-6143-428A-8235-DE6A6EFBA175}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{532D0AD1-C154-4E02-A95A-E493BDC61F28}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{6062F188-855C-470E-87B1-B76BD2302474}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{155EAD8C-C20C-47BD-A3BE-CD5037099636}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{67DCC890-4FCB-407D-B753-DF3F09DC3D55}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{75421F0A-C574-464A-8B34-9CFA8A5E9B4F}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{19E0F77A-BE06-4EA2-BD71-8222A3F00762}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{94347B14-8E17-4310-99FC-B96A0F398C7F}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{4CA02776-654A-477A-8040-9A73CF1D26AF}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{4A235AF6-81F2-4638-85EC-1BA6EC1A70E2}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{81E6C42E-5F7F-4191-AD34-F803F0679D92}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{8A4DFF82-4453-4102-8C30-EFE83DE909E0}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{362B98DE-B0F2-4CF7-BC58-D843B8E38EC6}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{D2B6E33A-5AD0-4FB6-A3CB-D500346B366F}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{AC9CAB53-F1DE-417B-BE92-F76CDD58C9B2}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{3D3169C4-8DDD-463D-945B-C4AEC78FB6DA}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{3C4A2C3D-4B58-480F-B13F-6152F7EC4BFB}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{22F4AE47-6DF2-4514-8230-66B3D5F8BA0A}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{FAD529B9-CE0D-440D-B384-1B7126CB2C5C}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{B72EF3FA-1679-4197-AAC3-3CDAC2CF7F90}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [UDP Query User{3C3B4DD1-7BFD-41B1-BE44-BEE8FE7EAE72}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [{1A92D334-CA0C-437A-A9DA-2E2F22714831}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [{BC06FD6D-B17F-4571-88F4-DEF21F3EE978}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [TCP Query User{A41D731E-F85F-42E7-B7C6-DD7874DE4E3E}C:\program files\lightworks\ntcardvt.exe] => (Allow) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [UDP Query User{DB044B71-F7BC-4E14-8B8C-EFBA02FE55A8}C:\program files\lightworks\ntcardvt.exe] => (Allow) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [{C938815B-C129-4F41-BDBB-0C77B507E310}] => (Block) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [{0D01FE75-2F3E-4117-8068-1663DA564E10}] => (Block) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [TCP Query User{7502DF01-5692-4142-AB62-58EFA3061381}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [UDP Query User{8481F0AA-84EE-4D8E-B5E6-7982D762E0E3}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{061CC91F-2D86-4EA1-9653-7B27D5F57831}] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{FDFA7AB4-FD42-4BA1-9F40-E5FF1F6754DF}] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{C1A739D2-C0E9-4FEC-A7BB-0B9108A2CB88}] => (Allow) LPort=8317
FirewallRules: [{1BE42650-067A-4837-A76B-870D73A2934A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{A5AFFC60-B30F-44F8-9069-58D992CB449D}] => (Allow) C:\ProgramData\download\MiniThunderPlatform.exe
FirewallRules: [{79168D0F-D48B-4C6E-8A2C-57F3C501CC82}] => (Allow) C:\ProgramData\download\MiniThunderPlatform.exe
FirewallRules: [{C442D9FB-A4C1-40A8-B16D-FB28E20DD5C8}] => (Allow) C:\Windows\Temp\download\MiniThunderPlatform.exe
FirewallRules: [{88BE814F-1F0E-4F4D-A035-91EEEC2AAF4C}] => (Allow) C:\Windows\Temp\download\MiniThunderPlatform.exe
FirewallRules: [{927E9E4D-8506-4BBC-BAB6-5E78BBE95149}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
FirewallRules: [{ECBF61AE-E74B-4CD6-BFD6-39D74CD46572}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\Downloader\download\MiniThunderPlatform.exe
FirewallRules: [{78608174-2026-4588-B748-997D69EEE460}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe

==================== Wiederherstellungspunkte =========================

16-05-2016 14:00:13 Windows Update
16-05-2016 23:08:11 Windows Update
23-05-2016 20:10:37 Windows Update
23-05-2016 23:34:34 Windows Update
24-05-2016 14:00:20 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: MpKslb3491254
Description: MpKslb3491254
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: MpKslb3491254
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (05/24/2016 05:25:18 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (05/24/2016 02:02:32 PM) (Source: MsiInstaller) (EventID: 1023) (User: NT-AUTORITÄT)
Description: Produkt: Microsoft Silverlight - Update "Microsoft Silverlight Developer Package 5.1.41212.0" konnte nicht installiert werden. Fehlercode 1603. Weitere Informationen sind in der Protokolldatei C:\Windows\TEMP\SilverlightMSI.log enthalten.

Error: (05/24/2016 02:02:32 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Product: Microsoft Silverlight -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2705. The arguments are: Directory, ,

Error: (05/24/2016 02:02:26 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Product: Microsoft Silverlight -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2753. The arguments are: XAPAuthenticodeSIPDLL, ,

Error: (05/24/2016 12:21:17 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (05/23/2016 11:35:16 PM) (Source: MsiInstaller) (EventID: 1023) (User: NT-AUTORITÄT)
Description: Produkt: Microsoft Silverlight - Update "Microsoft Silverlight Developer Package 5.1.41212.0" konnte nicht installiert werden. Fehlercode 1603. Weitere Informationen sind in der Protokolldatei C:\Windows\TEMP\SilverlightMSI.log enthalten.

Error: (05/23/2016 11:35:16 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Product: Microsoft Silverlight -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2705. The arguments are: Directory, ,

Error: (05/23/2016 11:35:15 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Product: Microsoft Silverlight -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2753. The arguments are: XAPAuthenticodeSIPDLL, ,

Error: (05/23/2016 10:39:51 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (05/23/2016 07:47:51 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


Systemfehler:
=============
Error: (05/24/2016 05:26:15 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (05/24/2016 05:25:47 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/24/2016 05:25:18 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064

Error: (05/24/2016 02:05:43 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Sicherheitsupdate für Microsoft Silverlight (KB3126036)

Error: (05/24/2016 12:22:18 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/24/2016 12:22:15 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (05/24/2016 12:21:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064

Error: (05/23/2016 11:35:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Sicherheitsupdate für Microsoft Silverlight (KB3126036)

Error: (05/23/2016 10:40:49 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (05/23/2016 10:40:24 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)


CodeIntegrity:
===================================
  Date: 2016-05-23 19:37:16.334
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-05-23 19:37:16.038
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-05-23 19:37:15.741
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-05-23 19:37:15.429
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-03-11 09:46:17.345
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-03-11 09:46:17.095
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-03-11 09:46:16.830
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-03-11 09:45:34.753
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-03-11 09:45:34.483
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-03-11 09:45:34.165
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen ===========================

Prozessor: AMD E2-3200 APU with Radeon(tm) HD Graphics
Prozentuale Nutzung des RAM: 44%
Installierter physikalischer RAM: 3540.71 MB
Verfügbarer physikalischer RAM: 1976.52 MB
Summe virtueller Speicher: 7079.6 MB
Verfügbarer virtueller Speicher: 5262.44 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:456.45 GB) (Free:148.89 GB) NTFS
Drive d: (DATA) (Fixed) (Total:456.96 GB) (Free:456.71 GB) NTFS
Drive h: () (Removable) (Total:7.47 GB) (Free:7.46 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6CE78890)
Partition 1: (Not Active) - (Size=18 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=456.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=457 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 7.5 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=7.5 GB) - (Type=0C)

==================== Ende von Addition.txt ============================

Terrenay 24.05.2016 16:49
Addition:

Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:16-05-2016
durchgeführt von Sven (2016-05-24 17:37:38)
Gestartet von C:\Users\Sven\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-11-07 09:27:53)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-1536315646-4119356758-1407283469-500 - Administrator - Disabled)
Gast (S-1-5-21-1536315646-4119356758-1407283469-501 - Limited - Disabled) => C:\Users\Gast
HomeGroupUser$ (S-1-5-21-1536315646-4119356758-1407283469-1009 - Limited - Enabled)
Mirjam Zanetti (S-1-5-21-1536315646-4119356758-1407283469-1000 - Administrator - Enabled) => C:\Users\Mirjam Zanetti
Sven (S-1-5-21-1536315646-4119356758-1407283469-1001 - Administrator - Enabled) => C:\Users\Sven
Tim (S-1-5-21-1536315646-4119356758-1407283469-1010 - Administrator - Enabled) => C:\Users\Tim.MirjamZanetti

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Microsoft Security Essentials (Enabled - Up to date) {768124D7-F5F7-6D2F-DDC2-94DFA4017C95}
AS: Microsoft Security Essentials (Enabled - Up to date) {CDE0C533-D3CD-62A1-E772-AFADDF863628}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

4Story (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\Kalydo App 4Story) (Version: 4.02.02.6 - )
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
Acer eDisplay Management (HKLM-x32\...\{A586DC50-B18D-48FB-B7CC-A598200457C2}) (Version: 1.37.007 - Portrait Displays, Inc.)
Acer eRecovery Management (HKLM-x32\...\{7F811A54-5A09-4579-90E1-C93498E230D9}) (Version: 5.00.3507 - Acer Incorporated)
Acer Games (HKLM-x32\...\WildTangent acer Master Uninstall) (Version: 1.0.2.5 - WildTangent)
Acer Registration (HKLM-x32\...\Acer Registration) (Version: 1.04.3506 - Acer Incorporated)
Acer ScreenSaver (HKLM-x32\...\Acer Screensaver) (Version: 1.1.0609.2011 - Acer Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe Flash Player 21 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.16) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.16 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.1.171 - Adobe Systems, Inc.)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.98 - WildTangent) Hidden
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.3.5 - Sereby Corporation)
AMD Catalyst Install Manager (HKLM\...\{6119B3A6-3603-9695-0398-CDF2AF0A13F8}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
AncientMagic_New (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\785aa0fbe9abac3c) (Version: 0.0.0.2 - AncientMagic_New)
Anki (HKLM-x32\...\Anki) (Version:  - )
Any Video Converter 5.5.5 (HKLM-x32\...\Any Video Converter_is1) (Version:  - Any-Video-Converter.com)
Apple Application Support (32-Bit) (HKLM-x32\...\{7FA9ECCF-A2DE-4DA1-BFF3-81260DBDA68F}) (Version: 4.1.2 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{691F30EB-9009-475A-B8A9-E1BF39598FD5}) (Version: 4.1.2 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{3540181E-340A-4E7A-B409-31663472B2F7}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{56EC47AA-5813-4FF6-8E75-544026FBEA83}) (Version: 2.2.0.150 - Apple Inc.)
Arc (HKLM-x32\...\{CED8E25B-122A-4E80-B612-7F99B93284B3}) (Version: 1.0.0.9668 - Perfect World Entertainment)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 2.9.4272 - DsNET Corp)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Avidemux 2.6 (32-bit) (HKLM-x32\...\Avidemux 2.6) (Version: 2.6.7.8981 - )
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.4.0.895 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version:  - Bandisoft.com)
Benutzerhandbuch - Grundlagen EPSON XP-402 403 405 406 Series (HKLM-x32\...\EPSON XP-402 403 405 406 Series Bog) (Version:  - )
Benutzerhandbuch EPSON XP-402 403 405 406 Series (HKLM-x32\...\EPSON XP-402 403 405 406 Series Useg) (Version:  - )
Bing Bar (HKLM-x32\...\{3365E735-48A6-4194-9988-CE59AC5AE503}) (Version: 7.3.132.0 - Microsoft Corporation)
BitComet 1.36 64-bit (HKLM-x32\...\BitComet_x64) (Version: 1.36 - CometNetwork)
Blend for Visual Studio 2012 (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio 2012 DEU resources (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio 2012 ENU resources (x32 Version: 5.0.30709.0 - Microsoft Corporation) Hidden
Blend for Visual Studio Add-in for Adobe FXG Import (x32 Version: 1.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for .NET 4.5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blend for Visual Studio SDK for Silverlight 5 (x32 Version: 3.0.40218.0 - Microsoft Corporation) Hidden
Blender (HKLM\...\Blender) (Version: 2.70a - Blender Foundation)
Blender (HKLM-x32\...\{1115EF75-E8C1-4BA1-829F-1B8460D47701}) (Version: 2.76.2 - Blender Foundation)
BlueStacks App Player (HKLM-x32\...\BlueStacks App Player) (Version: 0.7.17.916 - BlueStack Systems, Inc.)
BlueStacks Notification Center (HKLM-x32\...\{7E6316CA-5ED0-4EF9-9920-A92115E286B7}) (Version: 0.7.17.916 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Camtasia Studio 8 (HKLM-x32\...\{F6EC4C4E-C87B-4F50-851B-1C86E0C94F00}) (Version: 8.6.0.2055 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.11 - Piriform)
Chat Mapper (HKLM-x32\...\{498F0DC0-3B5E-4DC7-B571-578F61306058}) (Version: 1.7.0.0 - Urban Brain Studios, Inc.)
Cheat Engine 6.4 (HKLM-x32\...\Cheat Engine 6.4_is1) (Version:  - Cheat Engine)
Cinema 4D version R12 (HKLM-x32\...\{7D9D8134-9FA3-4FFF-ADA1-BF609F29997A}_is1) (Version: R12 - Salat Production)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.00.3004 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.00.3004 - Acer Incorporated)
clear.fi SDK - MVP 2 (x32 Version: 2.0.1505 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.0.1502 - CyberLink Corp.) Hidden
CyberLink MediaEspresso (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.1720_38230 - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Devenv-Ressourcen für Microsoft Visual Studio 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
DirectX 9.0c Extra Files (x86, x64) (HKLM\...\{8729E65B-8C12-4A42-B1FE-E4DA7ED52855}_is1) (Version: 1.10.06.0 - Sereby Corporation)
DirectX for Managed Code (HKLM\...\{FDF7187F-3960-4BEC-916D-98C9A83E3A68}_is1) (Version: 1.0.0.0 - Sereby Corporation)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition Language Pack (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Download Navigator (HKLM-x32\...\{E728441A-7820-4B1C-87C9-DE7BE37B2953}) (Version: 1.1.0 - SEIKO EPSON CORPORATION)
Druckerdeinstallation für EPSON XP-402 403 405 406 Series (HKLM\...\EPSON XP-402 403 405 406 Series) (Version:  - SEIKO EPSON Corporation)
Dxtory version 2.0.127 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.127 - ExKode Co. Ltd.)
eBay Worldwide (HKLM-x32\...\{D3E5A972-9A15-427D-AE78-8181A5FD943C}) (Version: 2.2.0409 - OEM)
Entity Framework Designer für Visual Studio 2012 - DEU (HKLM-x32\...\{B2BDC072-BE01-432D-B281-30891D597FBB}) (Version: 11.1.30729.00 - Microsoft Corporation)
Epson Easy Photo Print 2 (HKLM-x32\...\{30E01116-5666-4807-8EF1-D80E9FF16717}) (Version: 2.3.2.0 - SEIKO EPSON CORPORATION)
Epson Easy Photo Print Plug-in for PMB(Picture Motion Browser) (HKLM-x32\...\{B2D55EB8-32C5-4B43-9006-9E97DECBA178}) (Version: 1.00.0000 - SEIKO EPSON CORPORATION2)
Epson Event Manager (HKLM-x32\...\{BECE9CCD-83F6-4BAA-9B26-227DF7D2E932}) (Version: 3.01.0000 - Seiko Epson Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EpsonNet Print (HKLM-x32\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.5.00 - SEIKO EPSON CORPORATION)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
FATE (x32 Version: 2.2.0.97 - WildTangent) Hidden
FileZilla Client 3.8.1 (HKLM-x32\...\FileZilla Client) (Version: 3.8.1 - Tim Kosse)
Final Drive: Nitro (x32 Version: 2.2.0.95 - WildTangent) Hidden
Finale 2014d DEMO (HKLM-x32\...\Finale 2014) (Version: 2014.4.5030.0 - MakeMusic)
Fotogaléria (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalerija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleri (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotogalleriet (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotoğraf Galerisi (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (remove only) (HKLM-x32\...\Fraps) (Version:  - )
Freemake Video Converter Version 4.1.7 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.7 - Ellora Assets Corporation)
Galeria de Fotografias (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria de Fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galería de fotos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotogràfica (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galeria fotografii (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie de photos (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerie foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Galerija fotografija (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Gameforge Live 2.0.11 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.11 - Gameforge)
GIMP 2.8.4 (HKLM\...\GIMP-2_is1) (Version: 2.8.4 - The GIMP Team)
GLBasic SDK (HKLM-x32\...\GLBasic_SDK) (Version: 12.096 - Dream Design Entertainment)
GnuWin32: CoreUtils version 5.3.0 (HKLM-x32\...\CoreUtils-5.3.0_is1) (Version: 5.3.0 - GnuWin32)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.102 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.30.3 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
HandBrake 0.10.2 (HKLM-x32\...\HandBrake) (Version: 0.10.2 - )
hohosearch - Uninstall (HKLM-x32\...\{7DBBEBEE-C964-422D-B6BE-1866506CFC72}) (Version:  - )
Hotfix für Microsoft Visual C# 2010 Express - DEU (KB2635973) (HKLM-x32\...\{D81641E8-ABF1-3D07-803B-60E8FC619368}.KB2635973) (Version: 1 - Microsoft Corporation)
Hotkey Utility (HKLM-x32\...\Hotkey Utility) (Version: 2.05.3510 - Acer Incorporated)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.12412 - HP)
HP Photosmart 7520 series - Grundlegende Software für das Gerät (HKLM\...\{62883BA5-32F6-44D0-AF9D-9CBED778F36F}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
HP Update (HKLM-x32\...\{6F1C00D2-25C2-4CBA-8126-AE9A6E2E9CD5}) (Version: 5.003.003.001 - Hewlett-Packard)
HyperCam 3 (HKLM-x32\...\HyperCam 3 3.5.1211.29) (Version: 3.5.1211.29 - Solveig Multimedia)
Identity Card (HKLM-x32\...\Identity Card) (Version: 1.00.3501 - Acer Incorporated)
IIS 8.0 Express (HKLM\...\{7BF61FA9-BDFB-4563-98AD-FCB0DA28CCC7}) (Version: 8.0.1557 - Microsoft Corporation)
IIS Express Application Compatibility Database for x64 (HKLM\...\{9f4f4a9b-eec5-4906-92fe-d1f43ccf5c8d}.sdb) (Version:  - )
IIS Express Application Compatibility Database for x86 (HKLM\...\{fdfba1f3-74ae-4255-9c10-a0f552b4610f}.sdb) (Version:  - )
Insaniquarium Deluxe (x32 Version: 2.2.0.97 - WildTangent) Hidden
InstallForge (HKLM-x32\...\InstallForge) (Version: 1.2.9.1 - solicus)
Interdiscount Fotoservice (HKLM-x32\...\Interdiscount Fotoservice) (Version: 4.8.6 - CEWE COLOR AG u Co. OHG)
iTunes (HKLM\...\{FBEB98F8-64E4-4FA3-A15E-4A9F42FF962E}) (Version: 12.3.2.35 - Apple Inc.)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
JavaScript Tooling (Version: 11.0.60315 - Microsoft Corporation) Hidden
JetBrains ReSharper 7.0.1 (HKLM-x32\...\{1322DAC7-A713-4015-8F36-035F07A06ECA}) (Version: 7.0.1098 - JetBrains Inc)
Jewel Quest Mysteries: The Seventh Gate Collector's Edition (x32 Version: 2.2.0.98 - WildTangent) Hidden
John Deere Drive Green (x32 Version: 2.2.0.95 - WildTangent) Hidden
Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Kalydo Player 6.00.00 (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\KalydoPlayer) (Version: 6.00.00 - Eximion B.V.)
Lagarith Lossless Codec (1.3.27) (HKLM-x32\...\{F59AC46C-10C3-4023-882C-4212A92283B3}_is1) (Version:  - )
Last.fm Scrobbler 2.1.36 (HKLM-x32\...\LastFM_is1) (Version:  - Last.fm)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games )
League of Legends (x32 Version: 3.0.1 - Riot Games ) Hidden
Lightworks (HKLM-x32\...\{E94DD4E4-7746-472c-AA7B-1242FED0CFC8}) (Version: 12.6.0.0 - Lightworks)
LocalESPC (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
LocalESPCui for de-de (x32 Version: 8.59.25584 - Microsoft) Hidden
LocalESPCui for en-us (x32 Version: 8.59.25584 - Microsoft) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.428 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.232 - LogMeIn, Inc.) Hidden
LogMeIn Hamachi (x32 Version: 2.2.0.428 - LogMeIn, Inc.) Hidden
LoiLo Game Recorder (HKLM\...\{89E4163C-BD19-45A9-BCEB-980741786799}_is1) (Version: 1.1.0.1 - LoiLo inc.)
LoiLoScope 2 (HKLM-x32\...\{CAB75FFC-2377-4B95-A8FA-C9234B812A92}_is1) (Version: 2.5.4.2 - LoiLo inc)
MAESTIA Version 201207 (HKLM-x32\...\{8F50EC3D-C482-4445-9E4B-991A766047D5}_is1) (Version: 201207 - RocWorks)
Magicka - Demo (HKLM-x32\...\Steam App 73050) (Version:  - Arrowhead Game Studios)
Malwarebytes Anti-Malware Version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 1.1 (HKLM-x32\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2656370) (HKLM-x32\...\M2656370) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM-x32\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM-x32\...\M979906) (Version:  - )
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{98B45D1C-6EB1-460D-A87D-2B60678DC105}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{1948E039-EC79-4591-951D-9867A8C14C90}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft ASP.NET MVC 3 - DEU (HKLM-x32\...\{07AC2D83-E795-4AD5-970D-B9BD14A1E411}) (Version: 3.0.20105.0 - Microsoft Corporation)
Microsoft ASP.NET Web Pages - DEU (HKLM-x32\...\{93EEC4E9-EEFE-4027-ACD3-6E8C1D085975}) (Version: 1.0.20105.0 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 Language Pack - DEU (HKLM\...\Microsoft Help Viewer 1.0 Language Pack - DEU) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 Language Pack - DEU (HKLM-x32\...\Microsoft Help Viewer 2.0 Language Pack - DEU) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0401-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0402-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0403-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0404-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0405-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0406-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0407-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0408-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0409-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040B-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040C-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040D-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-040E-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0410-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0413-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0414-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0415-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0416-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0418-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0419-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041A-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041B-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041D-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041E-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-041F-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0424-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0816-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-007A-0C0A-0000-0000000FF1CE}) (Version: 14.0.5118.5000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.9.218.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.10411.0 - Microsoft Corporation)
Microsoft Silverlight 4 SDK - Deutsch (HKLM-x32\...\{8EA792A5-38AA-4F0E-8DFE-D1BAF1145431}) (Version: 4.0.60310.0 - Microsoft Corporation)
Microsoft Silverlight 5 SDK (HKLM-x32\...\{E1FBB3D4-ADB0-4949-B101-855DA061C735}) (Version: 5.0.61118.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{A106D33E-6B43-42C0-9BFC-D03303261FA7}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{9D573E71-1077-4C7E-B4DB-4E22A5D2B48B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework  (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{13D558FE-A863-402C-B115-160007277033}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (HKLM-x32\...\{DA1C1761-5F4F-4332-AB9D-29EDF3F8EA0A}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects  (x64) (HKLM\...\{FA0A244E-F3C2-4589-B42A-3D522DE79A42}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{49D665A2-4C2A-476E-9AB8-FCC425F526FC}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL Compiler Service  (HKLM\...\{BEB0F91E-F2EA-48A1-B938-7857ABF2A93D}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom  (HKLM\...\{0E8670B8-3965-4930-ADA6-570348B67153}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service  (HKLM-x32\...\{6D6D43E5-218C-4B05-92D3-2240810F4760}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{0125D081-30D0-4A97-82A8-C28D444B6256}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 DEU (HKLM\...\{C3EAE456-7E7A-451F-80EF-F34C7A13C558}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU  (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 ENU (HKLM\...\{78909610-D229-459C-A936-25D92283D3FD}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server Data Tools - DEU (11.1.20828.01) (HKLM-x32\...\{E511AE89-54BB-481D-BC4A-1B1F1E1B7693}) (Version: 11.1.20828.01 - Microsoft Corporation)
Microsoft SQL Server Data Tools Build Utilities - DEU (11.1.20828.01) (HKLM-x32\...\{00C84D22-DB8F-4159-BF70-682B8EA56A1E}) (Version: 11.1.20828.01 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{C668416A-9213-4058-B7F2-01A42D85559D}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{1E6ED082-E32D-4B2B-8B6A-70B094815135}) (Version: 10.50.1750.9 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (HKLM-x32\...\{E2082604-4BA5-44BB-BBFB-AF0F3CB8C6AB}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft System CLR Types for SQL Server 2012 (x64) (HKLM\...\{F1949145-EB64-4DE7-9D81-E6D27937146C}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft Visual C# 2010 Express - DEU (HKLM-x32\...\Microsoft Visual C# 2010 Express - DEU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{aec97477-921a-4289-985a-9e29506625b6}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{616C6F39-4CE1-3434-A665-2F6A04C09A7F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - DEU (HKLM\...\{3C983A67-DFB2-3D3D-AD9E-CA1A5A09FD18}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Service Pack 1 (HKLM-x32\...\Microsoft Visual Studio 2010 Service Pack 1) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio Express 2012 für Windows Desktop - DEU (HKLM-x32\...\{69ec32be-d994-44de-9eae-6d86ced6f352}) (Version: 11.0.50727.42 - Microsoft Corporation)
Microsoft Visual Studio Ultimate 2012 (HKLM-x32\...\{ae17ae9b-af38-40d2-a194-6102c56ed502}) (Version: 11.0.50727.26 - Microsoft Corporation)
Microsoft Web Deploy 3.5 (HKLM\...\{3674F088-9B90-473A-AAC3-20A00D8D810C}) (Version: 3.1237.1762 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - DEU (HKLM-x32\...\{86756584-C41A-4CA3-B42D-4768C7720F56}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - enu (HKLM-x32\...\{E4C33F5B-1B2F-466E-957E-B274F08151A0}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 3.1 (HKLM-x32\...\{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}) (Version: 3.1.10527.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Microsoft XNA Game Studio Platform Tools (HKLM-x32\...\{89690B51-2E21-4E93-914E-F9CAC5B24A84}) (Version: 1.4.0.0 - Microsoft Corporation)
Minecraft Editor 64 bits (HKLM\...\{042CC934-54B5-4BEB-948D-F3780B2CE4D7}) (Version: 1.6.6 - Axialmedia)
MixPad Multitrack Recording Software (HKLM-x32\...\MixPad) (Version: 4.00 - NCH Software)
MonoGame (HKLM-x32\...\MonoGame) (Version: 3.0 - MonoGame)
MorphVOX Pro (HKLM-x32\...\{53AB1F25-D607-4B4D-8FD5-74E03F2F9414}) (Version: 4.4.7 - Screaming Bee)
Movavi Screen Capture Studio 7 (HKLM-x32\...\Movavi Screen Capture Studio 7) (Version: 7.1.0 - Movavi)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 46.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 de)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1.5966 - Mozilla)
MP4 To MP3 Converter V3.0.5 (HKLM-x32\...\MP4 To MP3 Converter_is1) (Version:  - hxxp://www.MP4ToMP3Converter.net)
MPC-HC 1.7.10 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.10 - MPC-HC Team)
MpcStar 5.4 (HKLM-x32\...\MpcStar) (Version: 5.4 - www.mpcstar.com)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyWinLocker (Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker 4 (x32 Version: 4.0.14.27 - Egis Technology Inc.) Hidden
MyWinLocker Suite (HKLM-x32\...\InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}) (Version: 4.0.14.18 - Egis Technology Inc.)
MyWinLocker Suite (x32 Version: 4.0.14.18 - Egis Technology Inc.) Hidden
Nero DiscSpeed 10 (HKLM-x32\...\{34490F4E-48D0-492E-8249-B48BECF0537C}) (Version: 6.4.10500.1.100 - Nero AG)
Nero Express 10 (HKLM-x32\...\{70550193-1C22-445C-8FA4-564E155DB1A7}) (Version: 10.6.10700.5.100 - Nero AG)
Nero Multimedia Suite 10 Essentials (HKLM-x32\...\{62BF4BD3-B1F6-4FA2-8388-CC0647ACBF86}) (Version: 10.6.10300 - Nero AG)
Nero StartSmart 10 (HKLM-x32\...\{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}) (Version: 10.6.10600.4.100 - Nero AG)
Netzwerkhandbuch EPSON XP-402 403 405 406 Series (HKLM-x32\...\EPSON XP-402 403 405 406 Series Netg) (Version:  - )
No-IP DUC (HKLM-x32\...\NoIPDUC) (Version: 4.1.1 - Vitalwerks Internet Solutions LLC)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.4.5 - Notepad++ Team)
NVIDIA PhysX (HKLM-x32\...\{3F5C371F-8EA2-4F25-9D3D-D0B4526E3AEA}) (Version: 9.10.0513 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.94.111.0 - Overwolf Ltd.)
Paint.NET v3.5.10 (HKLM\...\{529125EF-E3AC-4B74-97E6-F688A7C0F1C0}) (Version: 3.60.0 - dotPDN LLC)
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pivot Pro Plugin (x32 Version: 9.50.110 - Portrait Displays, Inc.) Hidden
Plants vs. Zombies - Game of the Year (x32 Version: 2.2.0.98 - WildTangent) Hidden
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PlayReady PC Runtime x86 (HKLM-x32\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
Poczta usługi Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Pokemon Online 2.0.1 (HKLM-x32\...\{2C08D7E7-9EE1-4A08-AFE0-745F02DCD6A4}_is1) (Version:  - Dreambelievers)
POKéMON Simulator 4.5 (HKLM-x32\...\POKéGAME32) (Version: 4.5 - Birdiesoft)
Pokémon Trading Card Game Online (HKLM-x32\...\{F323157A-218F-4613-9673-F975AB9397CF}) (Version: 2.23.1 - The Pokémon Company International)
Polar Bowler (x32 Version: 2.2.0.97 - WildTangent) Hidden
Pošta Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
PreEmptive Analytics Client German Language Pack (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
Prerequisites for SSDT  (HKLM-x32\...\{9169C939-ED01-446A-BD0C-29873BAF4E48}) (Version: 11.0.2100.60 - Microsoft Corporation)
Raccolta foto (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Raptr (HKLM-x32\...\Raptr) (Version:  - )
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 6.4.6.10930 - Razer Inc.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6392 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version:  - )
Samsung Kies3 (HKLM-x32\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.)
Samsung Kies3 (x32 Version: 3.2.16035.2 - Samsung Electronics Co., Ltd.) Hidden
SDK (x32 Version: 2.32.010 - Portrait Displays, Inc.) Hidden
Shredder (Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Shredder (x32 Version: 2.0.8.9 - Egis Technology Inc.) Hidden
Sizer 3.34 (HKLM-x32\...\{DE43AA92-E8C0-4620-AFE2-FBD623C71643}) (Version: 3.3.4.0 - Brian Apps)
Skype™ 7.22 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.22.109 - Skype Technologies S.A.)
Slingo Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Software Updater (HKLM-x32\...\{7B3A525D-9D3D-4618-AE52-A31DE98C8AC3}) (Version: 4.1.4 - SEIKO EPSON CORPORATION)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
Steuer 2012 13.0.3 (HKLM-x32\...\1382-8438-0790-3872) (Version: 13.0.3 - Information Factory AG)
Steuer 2013 14.0.1 (HKLM-x32\...\0166-6433-7072-1489) (Version: 14.0.1 - Information Factory AG)
Steuer 2014 15.0.4 (HKLM-x32\...\0557-1095-3602-3415) (Version: 15.0.4 - Information Factory AG)
Steuer St.Gallen 2015 nP 1.12.0 (HKLM-x32\...\2081-5105-2470-6923) (Version: 1.12.0 - Information Factory AG)
Studie zur Verbesserung von HP Photosmart 7520 series Produkten (HKLM\...\{D662A279-973A-42A0-8D4B-8747C56C0501}) (Version: 28.0.1315.0 - Hewlett-Packard Co.)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\...\TeamSpeak 3 Client) (Version: 3.0.13 - TeamSpeak Systems GmbH)
TERA (HKLM-x32\...\{A2F166A0-F031-4E27-A057-C69733219434}_is1) (Version: 28 - Gameforge Productions GmbH)
Torchlight (x32 Version: 2.2.0.98 - WildTangent) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISER_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISER_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISER_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISER_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)
Update Installer for WildTangent Games App (x32 Version:  - WildTangent) Hidden
UpdateStar (HKLM-x32\...\{4B75C1B1-D0C7-4E70-9EE4-09CE7F734B0C}) (Version: 10.0.1265 - UpdateStar GmbH)
Valokuvavalikoima (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Vegas Movie Studio HD 11.0 (HKLM-x32\...\{6E3FD14F-858B-11E1-BC4A-F04DA23A5C58}) (Version: 11.0.75 - Sony)
VideoPad Video Editor (HKLM-x32\...\VideoPad) (Version: 4.31 - NCH Software)
Virtual Villagers 4 - The Tree of Life (x32 Version: 2.2.0.97 - WildTangent) Hidden
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 DEU (HKLM-x32\...\{CFCB8616-A5D1-4281-80E8-389F685BFAE2}) (Version: 4.0.8080.0 - Microsoft Corporation)
Visual Studio 2012 Update 4 (KB2707250) (HKLM-x32\...\{312d9252-c71c-4c84-b171-f4ad46e22098}) (Version: 11.0.61030 - Microsoft Corporation)
WavePad Sound Editor (HKLM-x32\...\WavePad) (Version: 6.33 - NCH Software)
WCF Data Services 5.0 (for OData v3) DEU Language Pack (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services 5.0 (for OData v3) Primary Components (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2012 (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Visual Studio 11 DEU Language Pack (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{3A523AF9-D32F-4C85-8388-0335731F3405}) (Version: 4.1.61829.0 - Microsoft Corporation)
weblica - 3.6.3 (HKLM-x32\...\weblica) (Version: 3.6.3 - empros gmbh)
Wedding Dash (x32 Version: 2.2.0.95 - WildTangent) Hidden
Welcome Center (HKLM-x32\...\Acer Welcome Center) (Version: 1.02.3507 - Acer Incorporated)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.10 Beta 4 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
WinTuneUp 1.0 (HKLM-x32\...\WinTuneUp) (Version: 1.0 - WinTuneUp Apps. )
WinZip 18.0 (HKLM\...\{CD95F661-A5C4-44F5-A6AA-ECDD91C240DF}) (Version: 18.0.10661 - WinZip Computing, S.L. )
Wondershare Video Editor(Build 3.5.0) (HKLM-x32\...\Wondershare Video Editor_is1) (Version:  - Wondershare Software)
X-Mouse Button Control 2.12.1 (HKLM-x32\...\X-Mouse Button Control) (Version: 2.12.1 - Highresolution Enterprises)
Zerius Vocoder (remove only) (HKLM-x32\...\VocoderGUI) (Version:  - )
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Συλλογή φωτογραφιών (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Основные компоненты Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Почта Windows Live (x32 Version: 16.4.3528.0331 - Корпорация Майкрософт) Hidden
Фотоальбом (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотогалерия (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Фотографии (общедоступная версия) (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
גלריית התמונות (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
بريد Windows Live (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
معرض الصور (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
影像中心 (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-1536315646-4119356758-1407283469-1001_Classes\CLSID\{D45F043D-F17F-4e8a-8435-70971D9FA46D}\InprocServer32 -> C:\Program Files\Blender Foundation\Blender\BlendThumb64.dll ()
CustomCLSID: HKU\S-1-5-21-1536315646-4119356758-1407283469-1001_Classes\CLSID\{F7D4B6AD-AB5F-4fe8-9469-3A4697E41129}\InprocServer32 -> C:\Users\Sven\AppData\Roaming\Kalydo\KalydoPlayer\bin2\kalydoplayer64.dll (Eximion B.V.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {0CCD72B3-24D9-4735-913B-6C29A494423B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2016-02-23] (Apple Inc.)
Task: {3CE40923-AC1D-4F0A-B3EC-9D65989E0DB4} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-16] (Google Inc.)
Task: {85F8BC69-CE46-4016-B752-7A19AA8B795D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-04-22] (Adobe Systems Incorporated)
Task: {87E712A9-9E69-4B7C-9F54-5A79A168AF42} - System32\Tasks\HPCustParticipation HP Photosmart 7520 series => C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPCustPartic.exe [2012-10-17] (Hewlett-Packard Co.)
Task: {B48AFB8A-3786-4F8E-BDEB-E4F05F70409E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-10-19] (Piriform Ltd)
Task: {CA415D1F-7A72-4B84-8880-31511E6E3DB6} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2016-05-19] (Overwolf LTD)
Task: {CFC139DF-686C-45F9-A5F4-DCF738E94779} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-12] (Adobe Systems Incorporated)
Task: {E14BE1A6-9A64-40D3-940C-A52A49596E45} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2014-01-23] ()
Task: {E45F4C4B-41F0-4A5B-983B-DB6815BF7334} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1536315646-4119356758-1407283469-1002Core => C:\Users\Tim\AppData\Local\Google\Update\GoogleUpdate.exe [2014-01-26] (Google Inc.)
Task: {E4794289-C070-4F37-B566-94013D77DA74} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-16] (Google Inc.)
Task: {EAE46E20-611D-4E3F-A2E8-1BC4EBE690C2} - System32\Tasks\{C04C0424-B84F-4869-9FF1-4EB72C75A6E7} => Chrome.exe hxxp://ui.skype.com/ui/0/7.13.0.101/de/abandoninstall?source=lightinstaller&amp;page=tsInstall
Task: {F6E1D6E5-BA7F-4CF8-A9B3-E0570555F2CA} - System32\Tasks\{60145FA2-7B40-4FA2-9378-E17461215D59} => Chrome.exe hxxp://ui.skype.com/ui/0/7.18.0.109/de/abandoninstall?page=tsProgressBar

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1536315646-4119356758-1407283469-1002Core.job => C:\Users\Tim\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe

==================== Verknüpfungen =============================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-12-17 19:38 - 2015-12-17 19:38 - 01328912 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2014-05-01 21:29 - 2014-05-01 21:29 - 00098304 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2015-09-23 23:41 - 2015-09-23 23:41 - 00188072 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)


==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 04:34 - 2016-05-23 19:37 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1      localhost

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-1536315646-4119356758-1407283469-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Sven\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

MSCONFIG\Services: ArcService => 3
MSCONFIG\Services: BITCOMET_HELPER_SERVICE => 3
MSCONFIG\Services: dowidoly => 2
MSCONFIG\Services: DTSRVC => 2
MSCONFIG\Services: EgisTec Ticket Service => 3
MSCONFIG\Services: Hamachi2Svc => 2
MSCONFIG\Services: hekipemezbt => 2
MSCONFIG\Services: LMIGuardianSvc => 2
MSCONFIG\Services: muftionSysSrv => 2
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: NoIPDUCService4 => 2
MSCONFIG\Services: PdiService => 2
MSCONFIG\Services: rijufoze => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: WdiSystemHost => 3
MSCONFIG\Services: WebClient => 3
MSCONFIG\Services: Wecsvc => 3
MSCONFIG\Services: wercplsupport => 3
MSCONFIG\Services: WerSvc => 3
MSCONFIG\Services: WinDefend => 3
MSCONFIG\Services: WinHttpAutoProxySvc => 3
MSCONFIG\Services: Winmgmt => 2
MSCONFIG\Services: WinRM => 3
MSCONFIG\Services: Wlansvc => 3
MSCONFIG\Services: wlidsvc => 2
MSCONFIG\Services: wmiApSrv => 3
MSCONFIG\Services: WMPNetworkSvc => 3
MSCONFIG\Services: WPCSvc => 3
MSCONFIG\Services: WPDBusEnum => 3
MSCONFIG\Services: wscsvc => 2
MSCONFIG\Services: WSearch => 2
MSCONFIG\Services: wuauserv => 2
MSCONFIG\Services: wudfsvc => 3
MSCONFIG\Services: WwanSvc => 3
MSCONFIG\Services: zdengine => 2
MSCONFIG\startupreg: 4StoryPrePatch => C:\Program Files (x86)\Gameforge4D\4Story\PrePatch.exe
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: avgnt => "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DT ACR => C:\Program Files (x86)\Common Files\Portrait Displays\Shared\DT_startup.exe -ACR
MSCONFIG\startupreg: EEventManager => "C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe"
MSCONFIG\startupreg: EgisTecPMMUpdate => "C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe"
MSCONFIG\startupreg: EgisUpdate => "C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe" -d
MSCONFIG\startupreg: EPLTarget =>
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: Hotkey Utility => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogMeIn Hamachi Ui => "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
MSCONFIG\startupreg: MSC => "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
MSCONFIG\startupreg: Norton Online Backup => C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuClient.exe
MSCONFIG\startupreg: NUSB3MON => "C:\Program Files (x86)\ATI Technologies\AMDUSB3DeviceDetector\nusb3mon.exe"
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: Pando Media Booster => C:\Program Files (x86)\Pando Networks\Media Booster\PMB.exe
MSCONFIG\startupreg: PivotSoftware => "C:\Program Files (x86)\Portrait Displays\Pivot Pro Plugin\Pivot_startup.exe" -delay=10
MSCONFIG\startupreg: ProductUpdater => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
MSCONFIG\startupreg: Raptr => C:\PROGRA~2\Raptr\raptrstub.exe --startup
MSCONFIG\startupreg: RTHDVCPL => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\Steam.exe" -silent
MSCONFIG\startupreg: SuiteTray => "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe"
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: UpdateStar => "C:\Users\Sven\AppData\Roaming\UpdateStar\UpdateStar.exe" -A
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{9462B2D3-A17E-4CC8-9F50-078AAC69E435}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{580618D5-E9DB-4E3B-B25E-A59EF5B51494}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{82D2F429-74BB-4C32-922E-1E7A892D765C}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{AC1B5820-04E9-456F-8B76-AE66AB0F4CB6}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{7D24A664-1155-4C1C-B241-94D252E17CB8}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{5B815E70-F584-4277-9742-4389D1AF5CFC}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{148B2BE4-1FCC-4212-AE2C-74E2225A0A88}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{DC978FB0-C1DF-4D0C-A2C7-AEE4FEBF032E}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{0CF50B5A-0F19-46E4-9419-C1F5126EAA4C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{78A4AA6C-A139-4088-A14D-FC7D70BE525C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{C0592437-A85B-4FB8-9CAB-32B397731B9B}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{0EF361D3-FEE7-4075-8CEC-675F48FAE460}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK20\MVP\VideoPlayer.exe
FirewallRules: [{2D67AC77-B7F6-4588-A540-3D265A4CA75C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK20\MVP\MusicPlayer.exe
FirewallRules: [TCP Query User{1F3FD1FD-BD9C-4D4F-B3C2-97BE8F91A91A}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{93864273-E271-41A8-8094-9140C2870233}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [{726EAD03-473D-4442-8554-6ED54D57CD2E}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{2552CF72-F890-4F19-A4F7-75EA026A3C43}] => (Allow) C:\Program Files\BitComet\BitComet.exe
FirewallRules: [{DE7791AC-4518-4C0D-B5E6-F45D69B8D6B2}] => (Allow) LPort=20475
FirewallRules: [{5F33F7DE-A149-482A-AE9D-D5C6D2B1C222}] => (Allow) LPort=20475
FirewallRules: [{0463379A-5979-497D-84B2-8420FEFFA404}] => (Allow) LPort=9091
FirewallRules: [{E566F44D-7C25-44BD-907B-3365562953F0}] => (Allow) C:\Users\Tim\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{9C70EB12-27FB-405A-B9BE-1E349D01E4E5}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\WDExpress.exe
FirewallRules: [{238943EF-0A5C-4705-8C4B-F3F134AE9564}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\FaxApplications.exe
FirewallRules: [{4B590E3A-3070-44A9-8599-7043D13FDB68}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\DigitalWizards.exe
FirewallRules: [{8049C2E0-DEF7-4907-8D02-B31D3F3E5010}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\bin\SendAFax.exe
FirewallRules: [{818EC397-B395-4005-93DE-4ED04A396B80}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\DeviceSetup.exe
FirewallRules: [{8910907D-DB90-47F2-AFE6-902C841D3ED7}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicator.exe
FirewallRules: [{552C363C-A18C-47B5-8A72-BBCB79454CC3}] => (Allow) C:\Program Files\HP\HP Photosmart 7520 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{707B4CA6-D4CA-4044-9693-A22EE2EE7626}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{A0FFA398-E6FC-4B47-953E-D2ADCC428CF5}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{B09BCB3E-BDEE-4D80-A800-1AA517621E65}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{34B2E825-442D-4088-9A8A-280FF08582D4}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{62F14F56-43C5-4430-A95F-D7145AD172FD}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{C21B1F76-0F02-4F0D-A909-3A5268E2EAFE}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{05930C5E-594E-44D8-81FA-8B55EA1B9A8C}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{07D73A5B-2525-4995-9E8B-A2509473A5C4}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{C315DD86-D029-494D-B1E0-D86849A50A44}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{AB7EECAB-E63E-48C4-AF91-A2FAEEC890C7}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{5E5AC77A-5FDD-4EF4-B7AF-2F0A9602786F}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{A3ED048D-448A-46B3-A06E-9F369587FF85}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{C6AF2A33-45F6-4AEC-9BFF-8157D80726D1}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{E29C1C7D-8E35-44D2-85DC-76F859A055C2}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{954C7ADB-9796-4012-978D-70DAF07A310A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{37E6984D-15E1-4912-BEFF-6EA27C2ACC35}] => (Allow) LPort=2869
FirewallRules: [{72A7AA2D-7F88-40DE-8E26-93771149922A}] => (Allow) LPort=1900
FirewallRules: [{431410E7-1283-4A12-ABDB-9E798F0559D0}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{DEE2A875-CF6A-42D7-842F-0BA46756A5CA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A3473D84-BE66-4C04-B45C-DA9F26AB2BC9}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka demo\Magicka.exe
FirewallRules: [{A08355AC-BB6F-4962-B4B9-883AC93E05AC}] => (Allow) C:\Program Files (x86)\Steam\SteamApps\common\Magicka demo\Magicka.exe
FirewallRules: [TCP Query User{A51E5F08-F63E-447A-A0ED-1537C6D26B71}C:\users\tim\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tim\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{73A0DD47-C10F-43EF-9560-BA70B97B720A}C:\users\tim\appdata\roaming\utorrent\utorrent.exe] => (Block) C:\users\tim\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{71698641-3411-4752-A070-C273C8ECF826}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{2A621AB4-F2A0-405A-91A4-E508877800FC}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{C7B2EE33-A7A5-4874-BD04-AACD119FD624}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{5C4D119C-6BD1-4087-9E04-399E0066AAA4}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{A9BF5DA8-4DD5-48EF-BE51-9F339055AA94}] => (Allow) C:\Program Files (x86)\weblica\weblica.exe
FirewallRules: [TCP Query User{1C32A07E-0764-4714-849E-9127709524D5}C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe] => (Allow) C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe
FirewallRules: [UDP Query User{A489BEDA-7D2D-4369-8750-0A7F0BA8D533}C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe] => (Allow) C:\program files (x86)\weblica\plugins\ch.weblica.apache.core_1.3.7\apache\weblica_apache.exe
FirewallRules: [TCP Query User{4B0BC44D-C4D3-415F-9D50-0320D1CF63DF}C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [UDP Query User{2A2B5DBE-4290-4371-8657-27BCFF96AA27}C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe] => (Allow) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{76E0C5DA-76AD-4ACA-BA05-09AFF3F5BA57}] => (Block) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [{D9F8508B-8AB8-43A0-86B7-3BBE11C811D6}] => (Block) C:\program files (x86)\gameforgelive\games\deu_deu\tera\tera-launcher.exe
FirewallRules: [TCP Query User{B6B13C98-98E8-45C1-97F1-ADB83E155563}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{26930909-FD48-45D1-9DCD-583EA2D3F7D6}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{D062F345-F169-4C2D-97C7-68C50DDE0F2F}] => (Allow) C:\Users\Tim.MirjamZanetti\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [TCP Query User{42937A0C-11C4-4C5F-8C88-E917E8C9133E}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{CADEF76C-18F7-4242-A333-D9F9A290EF40}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{6214BF3E-DEA2-4DA1-8BC0-B0450231A7BD}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{C5AACCD9-20B2-40EC-8907-7C5E0A45DC02}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{D7661791-1AC4-4DEB-8D8E-747E3195D95D}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{99C8B889-1A19-4391-B5FC-032A0263B386}C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{575B3235-CE38-47F7-AABC-A954E3804BFE}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{BF8913AD-6D75-4819-A928-A0C2DFB85261}] => (Block) C:\users\tim.mirjamzanetti\downloads\teamspeak3-server_win32-3.0.11.4\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{0D79849A-87CB-4292-BAB5-DD031FE3ADBA}C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{C9B0DB83-7A59-40F9-9693-B3812AA6AB1D}C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{A01ECB6A-3DD0-4822-B2B4-D32916434CF0}] => (Block) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{799AEF50-1F7B-4E0B-92A9-9BB78EA9AF4B}] => (Block) C:\users\tim.mirjamzanetti\downloads\ts3server\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{644F6E26-BA68-4728-931A-E7B4ECD54177}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [UDP Query User{D35CAF44-07ED-464F-A21A-416CB261E0E5}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{79DF9FA1-0C13-44DA-8305-A04023294881}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [{2CFA280C-184A-4C0A-BF0B-62C111A5B551}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win32\ts3server_win32.exe
FirewallRules: [TCP Query User{09A80C48-34DF-4804-8C3C-73D9BEB23A80}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{58DE412E-BE98-46DA-A836-E64118BA42AA}C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{D44C6DFF-000A-415B-ADE9-05A8AD145221}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{D76097E7-7B6E-4903-9F1A-0BBE012ED859}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [TCP Query User{D7A99EB7-7181-43DE-ADF9-B4CE249EB75B}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [UDP Query User{F9E55F25-029D-42C0-9C0D-23A5BD2A5D89}C:\program files\java\jre1.8.0_66\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{139F0E93-4023-4244-BBCE-94D02D2EAFE5}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{CBFA3DAE-BAEC-4A32-9D41-B9877D141C68}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [TCP Query User{723CC834-E0CF-4C52-9AF4-A9307DF1A7BA}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{1D73E402-DDC8-48B4-9E96-6D677ED9B7A9}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{B55CE91E-6821-45ED-9AAA-7D4D8155187F}] => (Block) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{3529908A-203B-4B0E-9CE5-AEFECAA110EC}] => (Block) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{89EF4555-2A4F-485B-9336-0A04ED4B4DDB}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{14CAF6E5-9CEA-440C-A2C0-126B55897457}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{146C773A-1C44-4674-87F8-409A43FBCA35}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{29991097-16C7-4AFF-8EF1-7F76C7C9790C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{42C2C346-A081-4CCC-9410-FE689B82C1BF}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{BE590231-FF49-4DF1-B27E-3990810CACEF}C:\program files\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [UDP Query User{43E8356B-D4E7-4022-AD7A-559157F3FCAC}C:\program files\java\jre1.8.0_71\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{9DABADB6-6476-48DC-8619-876C4608E43D}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{9CAE6AE7-2E60-4CBB-9F86-60B64D025163}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [TCP Query User{81525426-587F-4C46-B49A-7E84B9331B15}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [UDP Query User{0BC50DC2-B972-4B2E-9F7C-80955877D179}C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{99C531F6-4C59-4F85-B7DD-3FAF8DBAA57A}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{386833E1-0094-4E22-841F-5D98A5C38D9F}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [TCP Query User{2C69B31C-8296-41E4-ACFA-B54C332C3F70}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{90AC6A06-A386-46A7-84C5-8FA5A8F95579}C:\program files\java\jre7\bin\javaw.exe] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{D492CA87-3F7F-4A89-970A-F196C0D3A958}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{A27BF2F7-A806-48DD-906C-7B41EAA73DD3}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{3D762C8F-843D-4E18-8827-81B66F1B72C6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{50C50E55-44A6-468B-B084-8C684BA0EF37}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{CFD82FE1-E14C-45AE-B064-5EF9B4E38F9E}C:\program files (x86)\anki\anki.exe] => (Allow) C:\program files (x86)\anki\anki.exe
FirewallRules: [UDP Query User{FA06B19A-77E5-4269-9C68-CD15B9667446}C:\program files (x86)\anki\anki.exe] => (Allow) C:\program files (x86)\anki\anki.exe
FirewallRules: [{5967758D-5A30-4A57-9CEC-49944729B37F}] => (Block) C:\program files (x86)\anki\anki.exe
FirewallRules: [{DBB61106-9103-4EB5-B142-6BAAD9F2E8B1}] => (Block) C:\program files (x86)\anki\anki.exe
FirewallRules: [{E4EBAD19-D98D-4A68-8928-17179F2B2B84}] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{A3BA9110-A287-4142-A675-8F6429A2F441}] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [{1F7A58EC-C141-4522-81E2-78A3D7CAAF99}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{C84053CC-6143-428A-8235-DE6A6EFBA175}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{532D0AD1-C154-4E02-A95A-E493BDC61F28}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{6062F188-855C-470E-87B1-B76BD2302474}] => (Allow) C:\program files (x86)\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{155EAD8C-C20C-47BD-A3BE-CD5037099636}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{67DCC890-4FCB-407D-B753-DF3F09DC3D55}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{75421F0A-C574-464A-8B34-9CFA8A5E9B4F}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{19E0F77A-BE06-4EA2-BD71-8222A3F00762}] => (Allow) C:\program files\java\jre1.8.0_66\bin\javaw.exe
FirewallRules: [{94347B14-8E17-4310-99FC-B96A0F398C7F}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{4CA02776-654A-477A-8040-9A73CF1D26AF}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{4A235AF6-81F2-4638-85EC-1BA6EC1A70E2}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{81E6C42E-5F7F-4191-AD34-F803F0679D92}] => (Allow) C:\program files\java\jre1.8.0_71\bin\javaw.exe
FirewallRules: [{8A4DFF82-4453-4102-8C30-EFE83DE909E0}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{362B98DE-B0F2-4CF7-BC58-D843B8E38EC6}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{D2B6E33A-5AD0-4FB6-A3CB-D500346B366F}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{AC9CAB53-F1DE-417B-BE92-F76CDD58C9B2}] => (Allow) C:\program files\java\jre7\bin\javaw.exe
FirewallRules: [{3D3169C4-8DDD-463D-945B-C4AEC78FB6DA}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{3C4A2C3D-4B58-480F-B13F-6152F7EC4BFB}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\java.exe
FirewallRules: [{22F4AE47-6DF2-4514-8230-66B3D5F8BA0A}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [{FAD529B9-CE0D-440D-B384-1B7126CB2C5C}] => (Allow) C:\users\tim.mirjamzanetti\desktop\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{B72EF3FA-1679-4197-AAC3-3CDAC2CF7F90}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [UDP Query User{3C3B4DD1-7BFD-41B1-BE44-BEE8FE7EAE72}C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe] => (Allow) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [{1A92D334-CA0C-437A-A9DA-2E2F22714831}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [{BC06FD6D-B17F-4571-88F4-DEF21F3EE978}] => (Block) C:\users\tim.mirjamzanetti\desktop\teamspeak3-server_win64\ts3server.exe
FirewallRules: [TCP Query User{A41D731E-F85F-42E7-B7C6-DD7874DE4E3E}C:\program files\lightworks\ntcardvt.exe] => (Allow) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [UDP Query User{DB044B71-F7BC-4E14-8B8C-EFBA02FE55A8}C:\program files\lightworks\ntcardvt.exe] => (Allow) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [{C938815B-C129-4F41-BDBB-0C77B507E310}] => (Block) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [{0D01FE75-2F3E-4117-8068-1663DA564E10}] => (Block) C:\program files\lightworks\ntcardvt.exe
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [TCP Query User{7502DF01-5692-4142-AB62-58EFA3061381}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [UDP Query User{8481F0AA-84EE-4D8E-B5E6-7982D762E0E3}C:\program files\java\jre1.8.0_91\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{061CC91F-2D86-4EA1-9653-7B27D5F57831}] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{FDFA7AB4-FD42-4BA1-9F40-E5FF1F6754DF}] => (Block) C:\program files\java\jre1.8.0_91\bin\javaw.exe
FirewallRules: [{C1A739D2-C0E9-4FEC-A7BB-0B9108A2CB88}] => (Allow) LPort=8317
FirewallRules: [{1BE42650-067A-4837-A76B-870D73A2934A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{A5AFFC60-B30F-44F8-9069-58D992CB449D}] => (Allow) C:\ProgramData\download\MiniThunderPlatform.exe
FirewallRules: [{79168D0F-D48B-4C6E-8A2C-57F3C501CC82}] => (Allow) C:\ProgramData\download\MiniThunderPlatform.exe
FirewallRules: [{C442D9FB-A4C1-40A8-B16D-FB28E20DD5C8}] => (Allow) C:\Windows\Temp\download\MiniThunderPlatform.exe
FirewallRules: [{88BE814F-1F0E-4F4D-A035-91EEEC2AAF4C}] => (Allow) C:\Windows\Temp\download\MiniThunderPlatform.exe
FirewallRules: [{927E9E4D-8506-4BBC-BAB6-5E78BBE95149}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe
FirewallRules: [{ECBF61AE-E74B-4CD6-BFD6-39D74CD46572}] => (Allow) C:\Program Files (x86)\UCBrowser\Application\Downloader\download\MiniThunderPlatform.exe
FirewallRules: [{78608174-2026-4588-B748-997D69EEE460}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe

==================== Wiederherstellungspunkte =========================

16-05-2016 14:00:13 Windows Update
16-05-2016 23:08:11 Windows Update
23-05-2016 20:10:37 Windows Update
23-05-2016 23:34:34 Windows Update
24-05-2016 14:00:20 Windows Update

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: MpKslb3491254
Description: MpKslb3491254
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: MpKslb3491254
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (05/24/2016 05:25:18 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (05/24/2016 02:02:32 PM) (Source: MsiInstaller) (EventID: 1023) (User: NT-AUTORITÄT)
Description: Produkt: Microsoft Silverlight - Update "Microsoft Silverlight Developer Package 5.1.41212.0" konnte nicht installiert werden. Fehlercode 1603. Weitere Informationen sind in der Protokolldatei C:\Windows\TEMP\SilverlightMSI.log enthalten.

Error: (05/24/2016 02:02:32 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Product: Microsoft Silverlight -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2705. The arguments are: Directory, ,

Error: (05/24/2016 02:02:26 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Product: Microsoft Silverlight -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2753. The arguments are: XAPAuthenticodeSIPDLL, ,

Error: (05/24/2016 12:21:17 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (05/23/2016 11:35:16 PM) (Source: MsiInstaller) (EventID: 1023) (User: NT-AUTORITÄT)
Description: Produkt: Microsoft Silverlight - Update "Microsoft Silverlight Developer Package 5.1.41212.0" konnte nicht installiert werden. Fehlercode 1603. Weitere Informationen sind in der Protokolldatei C:\Windows\TEMP\SilverlightMSI.log enthalten.

Error: (05/23/2016 11:35:16 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Product: Microsoft Silverlight -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2705. The arguments are: Directory, ,

Error: (05/23/2016 11:35:15 PM) (Source: MsiInstaller) (EventID: 10005) (User: NT-AUTORITÄT)
Description: Product: Microsoft Silverlight -- The installer has encountered an unexpected error installing this package. This may indicate a problem with this package. The error code is 2753. The arguments are: XAPAuthenticodeSIPDLL, ,

Error: (05/23/2016 10:39:51 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)

Error: (05/23/2016 07:47:51 PM) (Source: BstHdAndroidSvc) (EventID: 0) (User: )
Description: Der Dienst kann nicht gestartet werden. System.ApplicationException: Cannot start service.  Service did not stop gracefully the last time it was run.
  bei BlueStacks.hyperDroid.Service.Service.OnStart(String[] args)
  bei System.ServiceProcess.ServiceBase.ServiceQueuedMainCallback(Object state)


Systemfehler:
=============
Error: (05/24/2016 05:26:15 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (05/24/2016 05:25:47 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/24/2016 05:25:18 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064

Error: (05/24/2016 02:05:43 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Sicherheitsupdate für Microsoft Silverlight (KB3126036)

Error: (05/24/2016 12:22:18 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)

Error: (05/24/2016 12:22:15 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (05/24/2016 12:21:17 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "BlueStacks Android Service" wurde mit folgendem Fehler beendet:
%%1064

Error: (05/23/2016 11:35:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80070643 fehlgeschlagen: Sicherheitsupdate für Microsoft Silverlight (KB3126036)

Error: (05/23/2016 10:40:49 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTLOKALER DIENSTS-1-5-19LocalHost (unter Verwendung von LRPC)

Error: (05/23/2016 10:40:24 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: AnwendungsspezifischLokalStart{C97FCC79-E628-407D-AE68-A06AD6D8B4D1}{344ED43D-D086-4961-86A6-1106F4ACAD9B}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)


CodeIntegrity:
===================================
  Date: 2016-05-23 19:37:16.334
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-05-23 19:37:16.038
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-05-23 19:37:15.741
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-05-23 19:37:15.429
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume3\ComboFix\catchme.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2016-03-11 09:46:17.345
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-03-11 09:46:17.095
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-03-11 09:46:16.830
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-03-11 09:45:34.753
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-03-11 09:45:34.483
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

  Date: 2016-03-11 09:45:34.165
  Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Program Files (x86)\AVG\AVG PC TuneUp\avgdumpx.exe" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.


==================== Speicherinformationen ===========================

Prozessor: AMD E2-3200 APU with Radeon(tm) HD Graphics
Prozentuale Nutzung des RAM: 44%
Installierter physikalischer RAM: 3540.71 MB
Verfügbarer physikalischer RAM: 1976.52 MB
Summe virtueller Speicher: 7079.6 MB
Verfügbarer virtueller Speicher: 5262.44 MB

==================== Laufwerke ================================

Drive c: (Acer) (Fixed) (Total:456.45 GB) (Free:148.89 GB) NTFS
Drive d: (DATA) (Fixed) (Total:456.96 GB) (Free:456.71 GB) NTFS
Drive h: () (Removable) (Total:7.47 GB) (Free:7.46 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6CE78890)
Partition 1: (Not Active) - (Size=18 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=456.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=457 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 7.5 GB) (Disk ID: C3072E18)
Partition 1: (Active) - (Size=7.5 GB) - (Type=0C)

==================== Ende von Addition.txt ============================
MBAM ist irgendwie seltsam, es hat über 2000 unerwünschte Programme und 4 Malwares gefunden, aber im Log steht nichts...

Code:
Malwarebytes Anti-Malware
www.malwarebytes.org

Suchlaufdatum: 24.05.2016
Suchlaufzeit: 15:18
Protokolldatei: mbam.txt
Administrator: Ja

Version: 0.0.0.0000
Malware-Datenbank: v2016.05.24.04
Rootkit-Datenbank: v2016.05.20.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert

Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Sven

Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 604877
Abgelaufene Zeit: 1 Std., 17 Min., 39 Sek.

Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Warnen
PUM: Aktiviert

Prozesse: 0
(keine bösartigen Elemente erkannt)

Module: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)

Registrierungswerte: 0
(keine bösartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Ordner: 0
(keine bösartigen Elemente erkannt)

Dateien: 0
(keine bösartigen Elemente erkannt)

Physische Sektoren: 0
(keine bösartigen Elemente erkannt)


(end)


Alle Zeitangaben in WEZ +1. Es ist jetzt 14:48 Uhr.
Seite 2 von 3 1 2 3
100 Beiträge dieses Themas auf einer Seite anzeigen

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131