und add:FRST Additions Logfile: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 21.01.2018
durchgeführt von Siggi (25-01-2018 15:40:20)
Gestartet von C:\Users\Siggi\Desktop
Windows 10 Pro Version 1709 16299.125 (X64) (2018-01-03 21:26:28)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2441953047-3725558795-4123501198-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-2441953047-3725558795-4123501198-503 - Limited - Disabled)
Gast (S-1-5-21-2441953047-3725558795-4123501198-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2441953047-3725558795-4123501198-1002 - Limited - Enabled)
Siggi (S-1-5-21-2441953047-3725558795-4123501198-1001 - Administrator - Enabled) => C:\Users\Siggi
WDAGUtilityAccount (S-1-5-21-2441953047-3725558795-4123501198-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: G DATA INTERNET SECURITY (Enabled - Up to date) {A9C56A9B-ECCD-57EA-78F6-92511DA1C885}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G*DATA Personal Firewall (Enabled) {91FEEBBE-A6A2-56B2-53A9-3B64E3728FFE}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
8GadgetPack (HKLM-x32\...\{F60DAD2D-8625-4467-AE01-EA0382187621}) (Version: 19.0.0 - Helmut Buhler)
ACDSee 19 (HKLM\...\{F36C6194-6306-43D8-8775-8267BC77FF65}) (Version: 19.3.0.506 - ACD Systems International Inc.)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 22.0.0.153 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.5.23 - Adobe Systems Incorporated.)
Adobe Flash Player 27 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 27.0.0.130 - Adobe Systems Incorporated)
Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.137 - Adobe Systems Incorporated)
Adobe Photoshop Elements 12 (HKLM-x32\...\Adobe Photoshop Elements 12) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.3 64-bit (HKLM\...\{2DD71ACB-552D-402C-9529-7906ACB95C30}) (Version: 5.3.1 - Adobe Systems Incorporated)
Adobe Premiere Elements 12 (HKLM\...\{4016464A-0C3E-4070-8293-5D7F0D8EAE3A}) (Version: 12.0 - Adobe Systems Incorporated) Hidden
Adobe Premiere Elements 12 (HKLM\...\PremElem120) (Version: 12.0 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.23) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.23 - Adobe Systems Incorporated)
Ahnenforschung DeLuxe (HKLM-x32\...\Ahnenforschung DeLuxe) (Version: - )
Andy OS (HKLM\...\Andy OS) (Version: 46.16 - Andy OS, Inc)
Apple Software Update (HKLM-x32\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.)
Ashampoo Burning Studio FREE v.1.14.5 (HKLM-x32\...\{91B33C97-91F8-FFB3-581B-BC952C901685}_is1) (Version: 1.14.5 - Ashampoo GmbH & Co. KG)
Ashampoo Photo Commander 10 v.10.2.1 (HKLM-x32\...\{C92AB6F1-4B66-808A-D77C-25EF81C0176A}_is1) (Version: 10.2.1 - Ashampoo GmbH & Co. KG)
Audials (HKLM-x32\...\{942EDCE4-79EE-409E-9E7C-6EC236C037AC}) (Version: 10.3.34300.0 - Audials AG)
Audials (HKLM-x32\...\{97DDF4B1-4BA6-40B3-AFBE-6080F08D540A}) (Version: 17.0.30797.9700 - Audials AG)
AVG (HKLM\...\AvgZen) (Version: 1.116.3.1052 - AVG Technologies)
AVG PC TuneUp (HKLM-x32\...\{82B9AF2D-4254-428A-9D1E-7714BA91A4B0}) (Version: 16.76.2 - AVG Technologies) Hidden
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.76.3.18604 - AVG Technologies)
AVG Zen (HKLM\...\{219E7C4A-0902-4CD4-82B8-EF908BF3198E}) (Version: 1.116.2 - AVG Technologies) Hidden
AVS Audio Converter 8.0 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 8.0.1.540 - Online Media Technologies Ltd.)
AVS Audio Editor 7.2 (HKLM-x32\...\AVS Audio Editor_is1) (Version: 7.2.2.488 - Online Media Technologies Ltd.)
AVS Audio Recorder 4.0 (HKLM-x32\...\AVS Audio Recorder_is1) (Version: 4.0.2.22 - Online Media Technologies Ltd.)
AVS Disc Creator 5.2.7 (HKLM-x32\...\AVS Disc Creator_is1) (Version: 5.2.7.541 - Online Media Technologies Ltd.)
AVS DVD Authoring (HKLM-x32\...\AVS DVD Authoring_is1) (Version: - Online Media Technologies Ltd.)
AVS DVD Player version 2.4 (HKLM-x32\...\AVS DVD Player_is1) (Version: - Online Media Technologies Ltd.)
AVS Update Manager 1.0 (HKLM-x32\...\AVS Update Manager_is1) (Version: - Online Media Technologies Ltd.)
AVS Video Converter 9.1 (HKLM-x32\...\AVS4YOU Video Converter 7_is1) (Version: 9.1.2.571 - Online Media Technologies Ltd.)
AVS Video Editor 6.5 (HKLM-x32\...\AVS Video Editor_is1) (Version: 6.5.1.246 - Online Media Technologies Ltd.)
AVS Video Recorder 2.4 (HKLM-x32\...\AVS Video Recorder_is1) (Version: - Online Media Technologies Ltd.)
AVS4YOU Software Navigator 1.2 (HKLM-x32\...\AVS4YOU Software Navigator_is1) (Version: - Online Media Technologies Ltd.)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Camera Support Core Library (HKLM-x32\...\{A1D0D14A-B776-4907-BC00-5149F2298086}) (Version: 7.3.0.4 - Canon) Hidden
Camera Window DVC (HKLM-x32\...\{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F}) (Version: 5.4.4 - Canon) Hidden
Camera Window MC (HKLM-x32\...\{36C65B50-37BA-4467-AAD5-0523EFDF6F62}) (Version: 5.4.3 - Canon) Hidden
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
Canon Camera Support Core Library (HKLM-x32\...\InstallShield_{A1D0D14A-B776-4907-BC00-5149F2298086}) (Version: 7.3.0.4 - Canon)
Canon Camera WIA Driver (HKLM-x32\...\{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}) (Version: 5.6 - Canon) Hidden
Canon Camera Window DC_DV 5 for ZoomBrowser EX (HKLM-x32\...\InstallShield_{A2EB8F2E-6D9B-4F8B-96EB-F976D33F416F}) (Version: 5.4.4 - Canon)
Canon Camera Window MC 5 for ZoomBrowser EX (HKLM-x32\...\InstallShield_{36C65B50-37BA-4467-AAD5-0523EFDF6F62}) (Version: 5.4.3 - Canon)
Canon EOS Kiss_N REBEL_XT 350D WIA Driver (HKLM-x32\...\InstallShield_{33CF7CDF-9805-4500-9CC7-D19D52AD63C4}) (Version: 5.6 - Canon)
CANON iMAGE GATEWAY Task (HKLM-x32\...\{33711828-7194-4446-8C05-0DC0E59A0C1B}) (Version: 1.0.0.23 - Canon) Hidden
CANON iMAGE GATEWAY Task for ZoomBrowser EX (HKLM-x32\...\InstallShield_{33711828-7194-4446-8C05-0DC0E59A0C1B}) (Version: 1.0.0.23 - Canon)
Canon Internet Library for ZoomBrowser EX (HKLM-x32\...\InstallShield_{D0E8C34D-19D2-49FD-A900-88DEB788FF86}) (Version: 1.4.0 - Canon Inc.)
Canon MP Navigator EX 2.1 (HKLM-x32\...\MP Navigator EX 2.1) (Version: - )
Canon MX320 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX320_series) (Version: - Canon Inc.)
Canon PhotoRecord (HKLM-x32\...\{BBBC2B89-E193-4348-A83C-C8DD8210A4AC}) (Version: 02.02.03002 - Cisra)
Canon RAW Image Task for ZoomBrowser EX (HKLM-x32\...\InstallShield_{BAA43DA2-B6C5-46EC-B163-0E8EEAF975A4}) (Version: 2.2 - Canon)
Canon Utilities Digital Photo Professional (HKLM-x32\...\Digital Photo Professional) (Version: 3.14.47.0 - Canon Inc.)
Canon Utilities Digital Photo Professional 2.0 (HKLM-x32\...\{17BF3045-AB1D-4048-8356-6C584B83565E}) (Version: 2.0 - Canon) Hidden
Canon Utilities Digital Photo Professional 2.0 (HKLM-x32\...\InstallShield_{17BF3045-AB1D-4048-8356-6C584B83565E}) (Version: 2.0 - Canon)
Canon Utilities EOS Capture 1.5 (HKLM-x32\...\InstallShield_{589D17BB-C997-48C0-BCD2-CC8DC3375FE8}) (Version: 1.5 - Canon)
Canon Utilities EOS Lens Registration Tool (HKLM-x32\...\EOS Lens Registration Tool) (Version: 1.3.0.1 - Canon Inc.)
Canon Utilities EOS Utility 2 (HKLM-x32\...\EOS Utility 2) (Version: 2.14.20.0 - Canon Inc.)
Canon Utilities EOS Web Service Registration Tool (HKLM-x32\...\EOS Web Service Registration Tool) (Version: 1.2.10.0 - Canon Inc.)
Canon Utilities PhotoStitch 3.1 (HKLM-x32\...\InstallShield_{874E44F3-B9A7-4AA1-B4BA-83E5684ED9C6}) (Version: 3.1.16 - Canon)
Canon ZoomBrowser EX (E) (HKLM-x32\...\{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}) (Version: 5.05.0000 - Canon)
CBH-2012 (HKLM-x32\...\{E7E877BE-A17B-4E5A-B8E4-3B893C03BB1B}) (Version: 4.1.SP1 - LN-Systems)
CCleaner (HKLM\...\CCleaner) (Version: 5.38 - Piriform)
CLIQZ (HKLM-x32\...\{5A0C0737-6AFE-4DC6-A8B4-6DFE509ACD75}_is1) (Version: 1.0.44 - CLIQZ.com)
COLOR projects 4 elements (64-Bit) (HKLM\...\COLOR_PROJECTS_4_2_C935FDA1_is1) (Version: 4.41 - Franzis Verlag GmbH)
COLOR projects premium (64-Bit) (HKLM\...\COLOR_PROJECTS_1_2_C935FDA1_is1) (Version: 1.14 - Franzis Verlag GmbH)
ComproFM 2 (HKLM-x32\...\{9EA404D2-5A5E-4A44-94E3-B8B148F7BCBC}) (Version: 2.20.500 - )
Corel Paint Shop Pro Photo X2 (HKLM-x32\...\{64E72FB1-2343-4977-B4A8-262CD53D0BD3}) (Version: 12.50.0001 - Corel Corporation)
CubicSDR (HKLM-x32\...\CubicSDR 0.2.0) (Version: 0.2.0 - cubicsdr.com)
Cut Out 3.0 pro (64bits) (HKLM\...\Cut Out pro(64bits)_is1) (Version: - Franzis.de)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DENOISE projects standard (64-Bit) (HKLM\...\DENOISE_PROJECTS_1_2_FBC348A0_is1) (Version: 1.21 - Franzis Verlag GmbH)
DHTML Editing Component (HKLM-x32\...\{2EA870FA-585F-4187-903D-CB9FFD21E2E0}) (Version: 6.02.0001 - Microsoft Corporation)
Dream Aquarium (HKLM-x32\...\DreamAqua) (Version: - )
DVBViewer Pro (HKLM-x32\...\DVBViewer Pro_is1) (Version: 5.3.2 - CM&V)
DVBViewer TE2 (HKLM-x32\...\DVBViewer TE2_is1) (Version: - CM&V)
DVD Shrink 3.2 deutsch (DeCSS-frei) (HKLM-x32\...\DVD Shrink DE_is1) (Version: - DVD Shrink)
DxO OpticsPro 11 (HKLM\...\{8256C2B1-D9F2-45F9-B7DA-BB0799D70A80}) (Version: 11.4.2 - DxO)
DxO OpticsPro 11 Plug-in für Adobe Lightroom (HKLM-x32\...\{13E8E1D4-CA2E-4A5C-BBD4-EB4F7CA66014}) (Version: 1.0.36 - DxO Labs)
Dynamic-Photo HDR 4.7 (HKLM-x32\...\Dynamic-Photo HDR 4_is1) (Version: - Mediachance)
EasyWeather (HKLM-x32\...\{CE1B03BC-3C99-4580-A2AC-A41DB9B83378}) (Version: - 1.0)
Elements 10 Organizer (HKLM-x32\...\{22D3A614-482C-444A-932C-9DA1B8ECDFD2}) (Version: 10.0 - Ihr Firmenname) Hidden
Elements 12 Organizer (HKLM-x32\...\{9D80A7B7-DC01-485D-AE93-710D559B5C56}) (Version: 12.0 - Ihr Firmenname) Hidden
EOS Capture 1.5 (HKLM-x32\...\{589D17BB-C997-48C0-BCD2-CC8DC3375FE8}) (Version: 1.5 - Canon) Hidden
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
FastStone Image Viewer 5.7 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.7 - FastStone Soft)
FlexRadio Systems PowerSDR v2.6.4 (HKLM-x32\...\{F700F67B-8F6F-48EF-98EE-CF5CF62ABEA2}_is1) (Version: 2.6.4 - FlexRadio Systems)
FMW 1 (HKLM\...\{DC2A8E3D-D5E1-4837-A2E0-C308100AC412}) (Version: 1.143.3 - AVG Technologies) Hidden
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FUJIFILM MyFinePix Studio 1.1 (HKLM-x32\...\FinePix Genie_is1) (Version: - )
G DATA Firewall Helper (HKLM\...\{97a7185d-397f-4652-a72c-d3a08820d734}.sdb) (Version: - )
G DATA INTERNET SECURITY (HKLM-x32\...\G DATA INTERNET SECURITY) (Version: 25.4.0.2 - G DATA Software AG)
GeoSetter 3.4.16 (HKLM-x32\...\GeoSetter_is1) (Version: - Friedemann Schmidt)
GIMP 2.8.10 (HKLM\...\GIMP-2_is1) (Version: 2.8.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 61.0.3163.100 - Google Inc.)
Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Ham Radio Deluxe (HKLM-x32\...\{4DF979D5-464C-4926-AF73-54C1C219F06A}) (Version: 5.24.0.36 - HRD Software, LLC)
Harrys Filters 4.0 (Plugin) (HKLM\...\Harrys Filters 4.0 (Plugin)_is1) (Version: - The Plugin Site)
Hauppauge WinTV 7 (HKLM-x32\...\Hauppauge WinTV 7) (Version: v7.0.30237 (CD 2.6) - Hauppauge Computer Works)
HDR projects darkroom (64-Bit) (HKLM\...\HDR_PROJECTS_2_0_3BF7CE82_is1) (Version: 2.26 - Franzis Verlag GmbH)
HDR Projects platin (64-Bit) (HKLM\...\HDR Projects platin_is1) (Version: 1.23 - Franzis Verlag GmbH)
Internet Library (HKLM-x32\...\{D0E8C34D-19D2-49FD-A900-88DEB788FF86}) (Version: 1.4.0 - Canon Inc.) Hidden
Java 8 Update 131 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180131F0}) (Version: 8.0.1310.11 - Oracle Corporation)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java 8 Update 161 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180161F0}) (Version: 8.0.1610.12 - Oracle Corporation)
JVComm32 (HKLM-x32\...\{5090D628-C12F-4EB0-830D-819EFD52D950}) (Version: 2.0.1 - JVSoft Products - Eberhard Backeshoff)
Kaspersky Secure Connection (HKLM-x32\...\{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab) Hidden
Kaspersky Secure Connection (HKLM-x32\...\InstallWIX_{F33C0717-8E04-4EB5-90C8-47221287DB4F}) (Version: 18.0.0.405 - Kaspersky Lab)
LAV Filters 0.69 (HKLM-x32\...\lavfilters_is1) (Version: 0.69 - Hendrik Leppkes)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
Luminance HDR 2.4.0 (HKLM-x32\...\{7020FC34-6E04-4858-924D-354B28CB2402}_is1) (Version: - Luminance HDR Dev Team)
MainConcept DTV Decoder Pro (HKLM-x32\...\{793FCE60-DE5E-4977-A942-A7B69A45B17D}) (Version: 1.5.0.2 - MainConcept GmbH)
Malwarebytes Version 3.0.6.1469 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.0.6.1469 - Malwarebytes)
MergeModule_x64 (HKLM\...\{12DCC5A7-0100-4433-B4FF-217A3C5DC83B}) (Version: 9.3.00 - Sony Corporation) Hidden
MergeModule_x86 (HKLM-x32\...\{DD7721BB-CF1C-4DC9-AD87-8D5FB75413B7}) (Version: 9.3.00 - Sony Corporation) Hidden
MHEG-5/HbbTV for DVBViewer Pro (HKLM-x32\...\DVBViewer Pro MHEG-HBBTV Engine_is1) (Version: 2.0.0.5 - CM&V)
MicroCapture Pro 2.2 (HKLM-x32\...\MicroCapture Pro) (Version: 2.2 - winmax)
Microsoft Camera Codec Pack (HKLM-x32\...\{968AE11C-EDF7-4D18-B416-848DA26EADFA}) (Version: 6.3.9723.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM-x32\...\HOMESTUDENTR) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\...\OneDriveSetup.exe) (Version: 17.3.7131.1115 - Microsoft Corporation)
Microsoft Rechner-Plus (HKLM-x32\...\{437C19B3-7E20-4E39-B868-CA6BAA820E1C}) (Version: 1.0.0 - Microsoft)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23026 (HKLM-x32\...\{e46eca4f-393b-40df-9f49-076faf788d83}) (Version: 14.0.23026.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 59.0 (x64 en-US) (HKLM\...\Mozilla Firefox 59.0 (x64 en-US)) (Version: 59.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0 - Mozilla)
Mozilla Thunderbird 56.0 (x86 en-US) (HKLM-x32\...\Mozilla Thunderbird 56.0 (x86 en-US)) (Version: 56.0 - Mozilla)
Mozilla Thunderbird 58.0 (x86 en-US) (HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\...\Mozilla Thunderbird 58.0 (x86 en-US)) (Version: 58.0 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Neat Image v7.4.0 Demo Standalone (32-bit) (HKLM-x32\...\Neat Image Standalone (32-bit)_is1) (Version: - Neat Image team, ABSoft)
NEAT projects professional (64-Bit) (HKLM\...\NEAT_PROJECTS_1_3_Df337A2C_is1) (Version: 1.12 - Franzis Verlag GmbH)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
NVIDIA 3D Vision Treiber 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Grafiktreiber 342.01 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 342.01 - NVIDIA Corporation)
NVIDIA Update 10.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 10.4.0 - NVIDIA Corporation)
Online-Banking+ (HKLM-x32\...\{B1B03833-939A-43D3-ADA5-E4088E6AFD5D}) (Version: 15.2.1.18 - Buhl Data Service GmbH) Hidden
Online-Banking+ (HKLM-x32\...\Online-Banking+) (Version: - Buhl Data Service GmbH)
PC Camer@N (HKLM-x32\...\{68AD7668-834F-49BC-94AB-28F94A5D93D5}) (Version: 0.1.3.8 - Teconet) Hidden
PC Camer@N (HKLM-x32\...\InstallShield_{68AD7668-834F-49BC-94AB-28F94A5D93D5}) (Version: 0.1.3.8 - Teconet)
Pcr1k Mini (HKLM-x32\...\ST6UNST #1) (Version: - )
PC-WELT-Fix-it-Pack 2.0 (HKLM\...\{CD349D32-0976-4AB5-9616-82717033D2C8}_is1) (Version: - IDG Magazine Media GmbH)
Phase 5 HTML-Editor (HKLM-x32\...\{20B1B020-DEAE-48D1-9960-D4C3185D758B}) (Version: 5.6.2.3 - Systemberatung Schommer)
PhotoPad Foto-Editor (HKLM-x32\...\PhotoPad) (Version: 2.41 - NCH Software)
PhotoStitch (HKLM-x32\...\{874E44F3-B9A7-4AA1-B4BA-83E5684ED9C6}) (Version: 3.1.16 - Canon) Hidden
PlayMemories Home (HKLM-x32\...\{94F4815B-755A-4FFA-AFDC-EE8FE776981E}) (Version: 5.1.00.12260 - Sony Corporation)
PlayReady PC Runtime amd64 (HKLM\...\{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}) (Version: 1.3.0 - Microsoft Corporation)
PMB_ModeEditor (HKLM-x32\...\{D5318740-B088-4B1A-B6A8-1F90A172CCD1}) (Version: 9.3.00 - Sony Corporation) Hidden
PMB_ServiceUploader (HKLM-x32\...\{E7FDF11C-12BB-4D6F-9B6D-F8E488C776DC}) (Version: 10.1.00 - Sony Corporation) Hidden
ProgDVB (HKLM\...\ProgDVB) (Version: - )
PSE12 STI Installer (HKLM-x32\...\{11F9A376-342F-4297-82DA-1F6EA8ED4B6B}) (Version: 12.0 - Adobe Systems Incorporated) Hidden
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
RAF (HKLM-x32\...\{E6B43401-E818-4961-AFED-118DD8E87642}) (Version: 1.00.0001 - FUJIFILM Corporation)
RAW Image Task 2.2 (HKLM-x32\...\{BAA43DA2-B6C5-46EC-B163-0E8EEAF975A4}) (Version: 2.2 - Canon) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
Revo Uninstaller 2.0.3 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.3 - VS Revo Group, Ltd.)
Saal Design Software (HKLM-x32\...\{0C52FDB3-C8A1-E686-5A87-85F3EC2259D4}) (Version: 4.0 - Saal Digital Fotoservice GmbH) Hidden
Saal Design Software (HKLM-x32\...\SaalDesignSoftware) (Version: 4.0 - Saal Digital Fotoservice GmbH)
Serif PhotoPlus X5 (HKLM-x32\...\{617E7009-0C50-4178-B0E2-F9D66DC8A582}) (Version: 15.0.1.011 - Serif (Europe) Ltd)
Silicon Laboratories CP210x VCP Drivers for Windows 2000/XP/2003 Server/Vista (HKLM-x32\...\{E4EE41CD-85AD-41DC-A93D-CA73A3BE981B}) (Version: 4.40 - Silicon Laboratories, Inc.)
SILVER projects premium (64-Bit) (HKLM\...\SILVER_PROJECTS_1_2_28B15F1D_is1) (Version: 1.14 - Franzis Verlag GmbH)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.151 - Skype Technologies S.A.)
stunnel installed for AllUsers (HKLM-x32\...\stunnel) (Version: 5.35 - Michal Trojnara)
TeamSpeak 2 RC2 (HKLM-x32\...\Teamspeak 2 RC2_is1) (Version: 2.0.32.60 - Dominating Bytes Design)
TeamViewer 12 (HKLM-x32\...\TeamViewer) (Version: 12.0.75813 - TeamViewer)
TechniSat DVB-PC TV Star (HKLM-x32\...\{D032A7F0-8B5C-4603-8B46-235025D5F9C1}) (Version: 4.3.3 - TechniSat)
Technisat DVB-VC80 Redistributable Modules (HKLM-x32\...\{134007CC-7026-46C2-B46F-40D9FD2AF385}) (Version: 1.0.0 - Technisat)
Telekom Hosting Manager (HKLM\...\Telekom Hosting Manager) (Version: 1.1.6.0 - Telekom)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.50 - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_HOMESTUDENTR_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_HOMESTUDENTR_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_HOMESTUDENTR_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
USB2.0 PC Camera (HKLM-x32\...\{417D86A0-89FE-4308-B172-45B74DCE6F8F}) (Version: 2.2.0.0 - aveotek)
Videoload (HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\...\3923177984.wcps.t-online.de) (Version: - wcps.t-online.de)
VideoMate DVB-T / DAB / ISDBT USB Driver (HKLM-x32\...\{9B56D73E-CBC7-4499-ACED-9ECCA72AE52C}) (Version: 86.1.1012.2010 - )
VisionGS PE (HKLM-x32\...\VisionGS PE_is1) (Version: - bluepath GmbH)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.8 - VideoLAN)
VMware Player (HKLM\...\{6D211A09-EB2A-4B83-ACCB-13B1BC12AF4E}) (Version: 12.5.2 - VMware, Inc.)
VMware VIX (HKLM-x32\...\{F99FC179-EA67-4BBC-8955-BDDA0CB94B88}) (Version: 1.15.6.00000 - VMware, Inc.)
Wacom (HKLM\...\Pen Tablet Driver) (Version: 5.3.5-3 - Wacom Technology Corp.)
WeatherLink 6.0.3 (HKLM-x32\...\{E344C807-7DE0-4CC2-81BB-1F895CF8CBDF}) (Version: 6.0.3 - Davis Instruments Corp.)
WebTablet FB Plugin 32 bit (HKLM-x32\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
WebTablet FB Plugin 64 bit (HKLM\...\Wacom WebTabletPlugin for Internet Explorer and Netscape) (Version: 2.1.0.7 - Wacom Technology Corp.)
Windows 10 Update Assistant (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22334 - Microsoft Corporation)
Windows Desktop Gadgets (HKLM\...\Windows Desktop Gadgets_is1) (Version: 2.0 - hxxp://gadgetsrevived.com)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
Windows-Treiberpaket - ZC-700W Webcam Driver (01/01/2007 6.0.0.1) (HKLM\...\10222FE57D88FE4CF0DE52CB1422B3E85424F890) (Version: 01/01/2007 6.0.0.1 - )
Windows-Treiberpaket - Silicon Laboratories (silabenm) Ports (10/18/2013 6.6.1.0) (HKLM\...\F92C2D6CB4EA0EE558BDF5F8BDD69083DFC62179) (Version: 10/18/2013 6.6.1.0 - Silicon Laboratories)
WinRAR 5.40 beta 2 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.40.2 - win.rar GmbH)
WinSCP 5.7.7 (HKLM-x32\...\winscp3_is1) (Version: 5.7.7 - Martin Prikryl)
WISO Konto Online Plus 365 (HKLM-x32\...\{FF192B78-55F6-4B80-860F-33E428FA16E3}) (Version: 22.0.0.0 - Buhl Data Service GmbH) Hidden
WISO Konto Online Plus 365 (HKLM-x32\...\WISO Konto Online Plus 365) (Version: - Buhl Data Service GmbH)
WsWin V2.98.0 - 2015-08-31 (HKLM-x32\...\PC-Wetterstation_is1) (Version: 2.98.0 - Werner Krenn)
WXtoImg (HKLM-x32\...\WXtoImg) (Version: - )
Z Cinema (HKLM\...\{6E166235-49F3-4DFA-A102-1E86675ABD11}) (Version: 1.0.0 - Logitech)
ZC-700W Webcam (HKLM-x32\...\{E398E7CC-30B8-4D63-B07B-741163A12565}) (Version: 100.000.070814 - ZC-700W)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2441953047-3725558795-4123501198-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2441953047-3725558795-4123501198-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\Siggi\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler)
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs5] -> {1B916AD7-FB63-41F5-B564-5931F0D120E6} => C:\WINDOWS\system32\cbfsMntNtf5.dll [2014-01-23] (EldoS Corporation)
ShellIconOverlayIdentifiers: [HGE Overlay 0 (Upload)] -> {6AE3859C-AB0D-49EC-A7C2-3631D96C6EE5} => C:\WINDOWS\system32\HGE.ShellExtension.dll [2013-03-18] (Deutsche Telekom AG)
ShellIconOverlayIdentifiers: [HGE Overlay 1 (Transfer)] -> {E4E8FAD2-90BC-41fe-8851-F70EB11E6875} => C:\WINDOWS\system32\HGE.ShellExtension.dll [2013-03-18] (Deutsche Telekom AG)
ShellIconOverlayIdentifiers: [HGE Overlay 2 (Finished)] -> {B9C00A72-09B3-4f53-B8B9-7349D04D65F7} => C:\WINDOWS\system32\HGE.ShellExtension.dll [2013-03-18] (Deutsche Telekom AG)
ShellIconOverlayIdentifiers: [HGE Overlay 3 (Selected)] -> {8F153B5F-6763-4d81-9A78-26CC7750EF2A} => C:\WINDOWS\system32\HGE.ShellExtension.dll [2013-03-18] (Deutsche Telekom AG)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs5] -> {1B916AD7-FB63-41F5-B564-5931F0D120E6} => C:\WINDOWS\system32\cbfsMntNtf5.dll [2014-01-23] (EldoS Corporation)
ContextMenuHandlers1: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2017-11-15] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers1: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\InternetSecurity\AVK\ShellExt64.dll [2017-06-08] (G DATA Software AG)
ContextMenuHandlers1: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers1: [HgeContextMenu] -> {62C509D3-D882-4A21-8358-E75DEFF6CB25} => C:\WINDOWS\system32\HGE.ShellExtension.dll [2013-03-18] (Deutsche Telekom AG)
ContextMenuHandlers1: [PicaViewCtxMenuShlExt] -> {F3CBBA61-EE3F-4D6D-B1C6-B3474E579936} => C:\Program Files\Common Files\ACD Systems\PicaView\ACDSeePV.dll [2015-10-08] (ACD Systems International Inc.)
ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2015-04-06] (Online Media Technologies Ltd.)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers2-x32: [VMDiskMenuHandler] -> {271DC252-6FE1-4D59-9053-E4CF50AB99DE} => C:\Program Files (x86)\VMware\VMware Player\vmdkShellExt.dll [2016-11-11] (VMware, Inc.)
ContextMenuHandlers2-x32: [VMDiskMenuHandler64] -> {E4D28EDC-8C0B-43EE-9E7D-C8A8682334DC} => C:\Program Files (x86)\VMware\VMware Player\x64\vmdkShellExt64.dll [2016-11-11] (VMware, Inc.)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-01-20] (Malwarebytes)
ContextMenuHandlers3: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\InternetSecurity\Shredder\Reisswlf64.dll [2017-06-08] (G DATA Software AG)
ContextMenuHandlers4: [AVG Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\AVG\AVG PC TuneUp\DseShExt-x64.dll [2017-11-15] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [AVG Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\AVG\AVG PC TuneUp\SDShelEx-x64.dll [2017-11-15] (AVG Technologies CZ, s.r.o.)
ContextMenuHandlers4: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\ShellExt.dll [2017-09-29] (Microsoft Corporation)
ContextMenuHandlers4: [HgeContextMenu] -> {62C509D3-D882-4A21-8358-E75DEFF6CB25} => C:\WINDOWS\system32\HGE.ShellExtension.dll [2013-03-18] (Deutsche Telekom AG)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2016-11-14] (NVIDIA Corporation)
ContextMenuHandlers6: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\InternetSecurity\AVK\ShellExt64.dll [2017-06-08] (G DATA Software AG)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-01-20] (Malwarebytes)
ContextMenuHandlers6: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\InternetSecurity\Shredder\Reisswlf64.dll [2017-06-08] (G DATA Software AG)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {07137DCC-EA44-4003-A6FD-1C47E356D455} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
Task: {07458051-D8AB-43BD-ACF2-D44E84A67815} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {09392749-0A12-4DCF-ABD4-5D6F5F2AADC6} - System32\Tasks\{0B247F87-A701-4440-9339-F1875EE95FCD} => C:\Windows\system32\pcalua.exe -a D:\CEP_2.0_Complete_Win_DE.exe -d D:\
Task: {0A0AD880-9540-47F7-91AD-76FF1026E894} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {0A0DDAB3-802E-4F77-8371-476DABB16F4A} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0A2A53DA-24DA-460A-91AC-AF521E86EF60} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {11DAABBF-5D98-470B-ADB7-F51F117032FB} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {15F6C957-E06F-4550-A456-686F4F28C4AC} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe [2017-11-15] (AVG Technologies CZ, s.r.o.)
Task: {1C6BF7D0-4B35-4FD7-993D-F665DF4E3960} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {400CA01C-1EEA-46AE-BE53-2E7A986C8F90} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {41174F5C-DB56-441D-83CA-CF51200087AD} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {411B0972-E529-4F89-A24B-103E41E1BBC5} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {465CD3B6-42A0-44FF-B7E8-2F823CD014B1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-11] (Microsoft Corporation)
Task: {4A1EE791-9499-4969-B4EF-60F39984A9D6} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {4AF8A682-BEC1-4A52-A250-61D78829CFF0} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4F0A61A4-655B-47E3-8AD6-74E41B74C724} - System32\Tasks\{E0A07D66-864F-44B4-8DEF-5754405773DE} => C:\Windows\system32\pcalua.exe -a C:\Users\Siggi\Downloads\MDVS51LE_SR1(1).exe -d C:\Users\Siggi\Downloads
Task: {535711B1-155A-44BE-AE61-C9EF7FD7B7E0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-11] (Microsoft Corporation)
Task: {58407670-E10E-43E6-BAFE-D8287E6AC0CA} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5ABD9620-FE0E-4F0F-A46B-0C2A9B642C8C} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-12-19] (Oracle Corporation)
Task: {6892721B-BF1A-451A-AFDF-6EBF13A566C2} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2017-12-13] (Piriform Ltd)
Task: {6968DAEA-E639-4D3B-A1C7-1ED4C05E2971} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6A245795-611F-4EA0-B3FA-715A0FC9ED0D} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {71BDCFF0-8A63-4C94-BCB7-B7439D012E74} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7927F907-FDEA-4513-A758-49F1F3730B1C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2008-07-30] (Apple Inc.)
Task: {7D35FDE0-0A71-4D47-B255-F4396AA2B062} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {812B89ED-7B35-4A10-8AFA-5A6C4F3D8532} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8C4B46AE-DDD7-4E04-8E1D-BBBCE394B84B} - System32\Tasks\Zeitschaltung => /C [Argument = exit]
Task: {8EF2BC47-6A7B-4D41-BF41-E4830B00800F} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {92ADAB95-CA69-4BFF-9CFB-779A442B291F} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-01-12] (Adobe Systems Incorporated)
Task: {931AA313-0CB9-47E4-AB4D-BA55394CBB99} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {9624B254-4386-4A7A-A8FE-EE2961A19647} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {99910F72-80D4-42BE-A0C3-58C67718029A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {9D71E7E4-4BFC-4F4F-9205-FBD50E471BF5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {A237C3FE-C1FE-4F33-8681-662ABB0B583E} - System32\Tasks\{1A1FA7F6-1890-4D31-8874-9602DACB72B0} => D:\CEP_2.0_Complete_Win_DE.exe
Task: {A29B961A-C7B5-42F8-B13F-AE49A4BD9DBA} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AEA72503-E0CA-4153-B295-ACF3D1B7123D} - System32\Tasks\{3F9514FB-C8A3-49B9-8A8F-02E9AF1A6DBE} => C:\Windows\system32\pcalua.exe -a G:\unetbootin-windows-608\unetbootin-windows-608.exe -d G:\unetbootin-windows-608
Task: {B4B4AB71-2A43-4550-8807-3F79D36FBFFD} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B59A805C-7BC4-48CE-A905-81BD3A6E6A5C} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {BC32F5C5-572A-4A21-8C37-B1837E79C55B} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {C4B9A9D6-1D56-4A0D-89DD-E327BA7DC51B} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe [2013-10-02] (Microsoft Corporation)
Task: {D1297AB4-965E-4CE1-8AF9-0E3EAE78C4BE} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-11] (Microsoft Corporation)
Task: {DBC6E009-CDE7-4E3E-A9F9-7B6ADC3C59DA} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {DF0A1BEF-73AE-4422-836B-FE872E6126B7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.12.17007.18011-0\MpCmdRun.exe [2018-01-11] (Microsoft Corporation)
Task: {E44F740D-679D-42A1-AA32-FDE297A2A779} - System32\Tasks\AdobeAAMUpdater-1.0-Siggi-PC-Siggi => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-06-03] (Adobe Systems Incorporated)
Task: {E510889C-EC05-4A83-987A-BCFAF6994150} - System32\Tasks\{C3EE8CFC-80D2-4565-BF7E-C332DE34E4F2} => D:\CEP_2.0_Complete_Win_DE.exe
Task: {E6B2E88C-6B9F-42CD-B1DE-584AE4243094} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EB5EDA2A-6003-46DE-8489-8E22A06BF3DD} - System32\Tasks\{89F4780C-152F-4B56-871F-DA7F8D01A46F} => C:\Windows\system32\pcalua.exe -a H:\SetupOnlineBankingPlus(1).exe -d H:\
Task: {F8A75EC6-71B0-4756-8834-97A95DDB4518} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_27_0_0_130_pepper.exe [2017-09-25] (Adobe Systems Incorporated)
Task: {FBEF287F-54B7-4D6A-97F7-F17A2FF2D88E} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2017-12-13] (Piriform Ltd)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\Siggi\Favorites\Downloadseite von NCH Software.lnk -> hxxp://www.nchsoftware.com/de/index.htm
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2017-09-29 14:41 - 2017-09-29 14:41 - 000184432 _____ () C:\WINDOWS\SYSTEM32\inputhost.dll
2017-08-16 19:22 - 2016-11-14 12:15 - 000135224 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2017-08-03 04:49 - 2017-08-03 04:49 - 000562664 _____ () C:\Program Files (x86)\Common Files\G Data\AVKProxy\PktIcpt2x64.dll
2018-01-03 18:17 - 2018-01-03 18:17 - 011044864 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2018-01-03 18:17 - 2018-01-03 18:17 - 001804288 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2018-01-18 08:38 - 2018-01-18 08:39 - 000086528 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2018-01-18 08:38 - 2018-01-18 08:39 - 000195072 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_12.13.274.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2013-11-30 19:54 - 2013-11-30 19:54 - 000067072 _____ () C:\Program Files (x86)\stunnel\bin\ZLIB1.dll
2016-05-03 18:26 - 2016-05-03 18:26 - 000024064 _____ () C:\Program Files (x86)\stunnel\engines\capi.dll
2016-12-02 18:27 - 2016-12-02 18:26 - 048920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Windows:nlsPreferences [0]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-10-30 08:24 - 2016-10-29 16:59 - 000000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\Control Panel\Desktop\\Wallpaper -> c:\windows\web\wallpaper\theme1\img13.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\Services: AdobeActiveFileMonitor10.0 => 2
MSCONFIG\Services: AdobeActiveFileMonitor12.0 => 2
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: ehRecvr => 2
MSCONFIG\Services: ehSched => 2
MSCONFIG\Services: Fax => 3
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: HauppaugeTVServer => 2
MSCONFIG\Services: MpsSvc => 2
MSCONFIG\Services: TeamViewer9 => 2
MSCONFIG\Services: WinDefend => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ComproRemote.lnk => C:\Windows\pss\ComproRemote.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ComproSchedulerDTV.lnk => C:\Windows\pss\ComproSchedulerDTV.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Server4PC.lnk => C:\Windows\pss\Server4PC.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Siggi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EOS Utility.lnk => C:\Windows\pss\EOS Utility.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Siggi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^simplicheck.lnk => C:\Windows\pss\simplicheck.lnk.Startup
MSCONFIG\startupfolder: C:^Users^Siggi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^WeatherLink 6.0.3.exe.lnk => C:\Windows\pss\WeatherLink 6.0.3.exe.lnk.Startup
MSCONFIG\startupreg: ACDSeeCommander19 => C:\Program Files (x86)\ACD Systems\ACDSee\19.0\ACDSeeCommander19.exe
MSCONFIG\startupreg: ACSW17DE => "G:\Program Files (x86)\ACDSee\17.0\acdIDInTouch2.exe"
MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: CAHeadless => F:\Program Files (x86)\Adobe\Elements 12 Organizer\CAHeadless\ElementsAutoAnalyzer.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Corel File Shell Monitor => G:\Program Files (x86)\Corel\Corel Paint Shop Pro Photo X2\CorelIOMonitor.exe
MSCONFIG\startupreg: Corel Photo Downloader => "C:\Program Files (x86)\Common Files\Corel\Corel PhotoDownloader\Corel Photo Downloader.exe" -startup
MSCONFIG\startupreg: LWS => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe -hide
MSCONFIG\startupreg: NvBackend => "C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: PMBVolumeWatcher => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe /SysAutoRun
MSCONFIG\startupreg: ProgLauncher => G:\Program Files\ProgDVB\ProgLauncher.exe
HKLM\...\StartupApproved\StartupFolder: => "HandyAndy.lnk"
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "ACPW07DE"
HKLM\...\StartupApproved\Run: => "AvgUi"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\...\StartupApproved\StartupFolder: => "Z Cinema.lnk"
HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\...\StartupApproved\StartupFolder: => "Sidebar520.lnk"
HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\...\StartupApproved\StartupFolder: => "OneNote 2007 Bildschirmausschnitt- und Startprogramm.lnk"
HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\...\StartupApproved\StartupFolder: => "EOS Utility.lnk"
HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\...\StartupApproved\StartupFolder: => "Sidebar265.lnk"
HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2441953047-3725558795-4123501198-1001\...\StartupApproved\Run: => "ACDSeeCommander19"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{6E3AE108-4BFE-4BB0-8C1E-6A60F51F90C4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{9DB5A2AE-65BA-46EA-AAFE-2B36CA253250}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{D936DF2B-A340-4E29-ABE4-D563920BCF9E}] => (Allow) C:\Program Files (x86)\VMware\VMware Player\vmware-authd.exe
FirewallRules: [{5F46F12E-7B2C-4F88-8740-4A8B1F322EB7}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{D095B45F-A4B3-476B-BD71-E770A181A304}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{6C1F8806-4413-4CFB-95CF-321B61886F9D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{AF7FA91A-3EEA-4E76-B455-EA00C9461FBE}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{1C1A2A28-E790-47EF-A06A-52454E83BE34}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{06CA905F-97C9-4C23-8437-034F1F94BDE6}] => (Allow) C:\Program Files\Andy\SetupFiles\AndyDoctor.exe
FirewallRules: [{618812C6-AF8B-467C-B9DB-B56E6CB3F195}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{6B65A281-5AB0-4E7F-B045-97DCBF8CC9C8}] => (Allow) C:\Program Files\Andy\SetupFiles\VMwareCheck.exe
FirewallRules: [{4A264FFE-0BD2-4B35-96FD-597E47752795}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{9F069A1B-EC19-47D0-BBF3-A37D46C7DB2E}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{42DE8113-714A-40D4-BE8A-42FC814A9076}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{6899F8F8-2276-4492-94C4-48CE8F0D4B05}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{858F7769-42D6-4D73-9CEC-683F8F0417D3}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{6A77E89C-4A75-4FF5-99D7-B758E3A1BB10}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{D4B56024-2682-4A87-A38C-794FD2D01283}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{3CCBDD72-700C-4B93-9FAF-2119F2C1400B}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{A25CBC86-965E-43CD-BFF1-857E2EDC6C11}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C35471EF-00D1-4793-B648-0DF6CFFCEBFD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3A30E356-37D5-4FCD-B7E9-937897D579CB}] => (Allow) G:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{0D5D93A8-DC21-4642-8F2A-5131835A1419}] => (Allow) G:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{323568BB-4FC9-498D-A020-4EDD2D2E7BC0}] => (Allow) G:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{7F2C76AA-475E-4BE4-97E4-74EDEAA8E24B}] => (Allow) G:\Program Files (x86)\WinTV\WinTV7\WinTV7.exe
FirewallRules: [{06E7D0CC-172C-48C8-94A7-472EC1C6AFEC}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{34E2A8D4-9B0D-4C1A-B945-7E15AE933436}] => (Allow) G:\Program Files (x86)\Audials\Audials 10\Audials.exe
FirewallRules: [{EEE8F83A-2431-4D90-B303-2C86114D8FE5}] => (Allow) LPort=12972
FirewallRules: [{28C2F037-B922-487F-99C4-3182B8E32641}] => (Allow) LPort=14714
FirewallRules: [{00697237-A114-44B6-BBD0-FE6E2603E836}] => (Allow) LPort=31931
FirewallRules: [{C1C4D3F1-D8A3-442C-8DFE-0C85ABA4C129}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{988CE59E-9A1E-4E8B-BD06-5B8A6FB06DFF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{3243F948-64DE-4B1F-8FC5-DFD155D37CED}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{81F4CEE6-D3C5-402D-9315-7307B09AB7B0}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0ED700D8-6ECE-4A06-9DA6-DD066C6BBA7D}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{320EA1FD-8BB0-48DC-A1E4-D74E6155A4E9}] => (Allow) LPort=2869
FirewallRules: [{731AE74B-DC32-47D9-B782-6E8E6EE210D8}] => (Allow) LPort=1900
==================== Wiederherstellungspunkte =========================
21-01-2018 17:41:56 ACDSee Pro 7 (64-bit) wurde entfernt.
21-01-2018 19:00:11 Windows-Sicherung
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (01/24/2018 09:20:49 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: ShellExperienceHost.exe, Version: 10.0.16299.15, Zeitstempel: 0x59cda974
Name des fehlerhaften Moduls: ntdll.dll, Version: 10.0.16299.64, Zeitstempel: 0x493793ea
Ausnahmecode: 0xc0000409
Fehleroffset: 0x0000000000090d5f
ID des fehlerhaften Prozesses: 0x1f04
Startzeit der fehlerhaften Anwendung: 0x01d39526e7527d72
Pfad der fehlerhaften Anwendung: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichtskennung: cf5e2caa-4f1c-4701-8183-319d6b38cb6e
Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.ShellExperienceHost_10.0.16299.15_neutral_neutral_cw5n1h2txyewy
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App
Error: (01/24/2018 09:20:47 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: dwm.exe, Version: 10.0.16299.15, Zeitstempel: 0x7f22d77c
Name des fehlerhaften Moduls: dwmcore.dll, Version: 10.0.16299.125, Zeitstempel: 0x5eb910be
Ausnahmecode: 0xc00001ad
Fehleroffset: 0x000000000019503a
ID des fehlerhaften Prozesses: 0x348
Startzeit der fehlerhaften Anwendung: 0x01d39526beb1cea4
Pfad der fehlerhaften Anwendung: C:\WINDOWS\system32\dwm.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\system32\dwmcore.dll
Berichtskennung: b4e354b4-240e-4743-a860-492131a52583
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (01/22/2018 05:13:16 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SoftwareUpdate.exe, Version: 2.1.1.116, Zeitstempel: 0x488a4f1f
Name des fehlerhaften Moduls: ScriptingObjectModel.dll, Version: 2.1.1.116, Zeitstempel: 0x488a4efe
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00002f91
ID des fehlerhaften Prozesses: 0x1154
Startzeit der fehlerhaften Anwendung: 0x01d3939be0b75c7c
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe
Pfad des fehlerhaften Moduls: C:\Program Files (x86)\Apple Software Update\ScriptingObjectModel.dll
Berichtskennung: dd3cc219-aae1-4fcd-92c3-92825f4ad569
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (01/18/2018 08:30:06 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm ShellExperienceHost.exe, Version 10.0.16299.15 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 1cd0
Startzeit: 01d3902dc1591e72
Beendigungszeit: 4294967295
Anwendungspfad: C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
Berichts-ID: 26052494-e452-4315-8b2a-dc59fa76bd95
Vollständiger Name des fehlerhaften Pakets: Microsoft.Windows.ShellExperienceHost_10.0.16299.15_neutral_neutral_cw5n1h2txyewy
Auf das fehlerhafte Paket bezogene Anwendungs-ID: App
Error: (01/18/2018 08:30:01 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: Siggi-PC)
Description: Das Paket „Microsoft.Windows.ShellExperienceHost_10.0.16299.15_neutral_neutral_cw5n1h2txyewy+App“ wurde beendet, da das Anhalten zu lange dauerte.
Error: (01/18/2018 08:28:49 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: svchost.exe_WpnUserService, Version: 10.0.16299.15, Zeitstempel: 0x9c786b9a
Name des fehlerhaften Moduls: NotificationController.dll, Version: 10.0.16299.15, Zeitstempel: 0x24cfcd08
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000017f90
ID des fehlerhaften Prozesses: 0xc50
Startzeit der fehlerhaften Anwendung: 0x01d3902db4e58965
Pfad der fehlerhaften Anwendung: c:\windows\system32\svchost.exe
Pfad des fehlerhaften Moduls: C:\Windows\System32\NotificationController.dll
Berichtskennung: e052ad57-a418-45c8-b2b9-0039b84a8f95
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (01/17/2018 06:08:28 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: Siggi-PC)
Description: microsoft.windows.authhost.a_8wekyb3d8bbwe-2147024893
Error: (01/17/2018 06:08:28 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: Siggi-PC)
Description: Microsoft.VCLibs.120.00_8wekyb3d8bbwe-2147024893
Error: (01/17/2018 06:08:28 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: Siggi-PC)
Description: Microsoft.VCLibs.120.00.Universal_8wekyb3d8bbwe-2147024893
Error: (01/17/2018 06:08:28 PM) (Source: Microsoft-Windows-AppModel-State) (EventID: 10) (User: Siggi-PC)
Description: Microsoft.Services.Store.Engagement_8wekyb3d8bbwe-2147024893
Systemfehler:
=============
Error: (01/25/2018 01:12:20 PM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Der Computer wurde nach einem schwerwiegenden Fehler neu gestartet. Der Fehlercode war: 0x000000c8 (0x0000000000020000, 0x0000000000000000, 0x0000000000000000, 0x0000000000000000). Ein volles Abbild wurde gespeichert in: C:\WINDOWS\MEMORY.DMP. Berichts-ID: ad079b4d-af1d-4ef8-9e39-e8b52d61a493.
Error: (01/25/2018 12:58:50 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Dieser Computer ist als Mitglied einer Arbeitsgruppe konfiguriert, nicht als
Mitglied einer Domäne. Der Anmeldedienst braucht bei dieser
Konfiguration nicht gestartet zu sein.
Error: (01/25/2018 12:58:39 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "CscService" wurde mit folgendem Fehler beendet:
Das System kann den angegebenen Pfad nicht finden.
Error: (01/25/2018 12:58:39 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 25.01.2018 um 09:53:19 unerwartet heruntergefahren.
Error: (01/25/2018 12:57:56 PM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 29) (User: NT-AUTORITÄT)
Description: 3221225473Bei der Verarbeitung der Wiederherstellungsdaten ist ein schwerwiegender Fehler aufgetreten.
Error: (01/25/2018 10:13:59 AM) (Source: DCOM) (EventID: 10016) (User: Siggi-PC)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "Siggi-PC\Siggi" (SID: S-1-5-21-2441953047-3725558795-4123501198-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{9E175B6D-F52A-11D8-B9A5-505054503030}
und der APPID
{9E175B9C-F52A-11D8-B9A5-505054503030}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/25/2018 10:13:59 AM) (Source: DCOM) (EventID: 10016) (User: Siggi-PC)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "Siggi-PC\Siggi" (SID: S-1-5-21-2441953047-3725558795-4123501198-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{9E175B6D-F52A-11D8-B9A5-505054503030}
und der APPID
{9E175B9C-F52A-11D8-B9A5-505054503030}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/25/2018 10:13:59 AM) (Source: DCOM) (EventID: 10016) (User: Siggi-PC)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "Siggi-PC\Siggi" (SID: S-1-5-21-2441953047-3725558795-4123501198-1001) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{9E175B6D-F52A-11D8-B9A5-505054503030}
und der APPID
{9E175B9C-F52A-11D8-B9A5-505054503030}
im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.
Error: (01/25/2018 08:06:24 AM) (Source: BugCheck) (EventID: 1001) (User: )
Description: Der Computer wurde nach einem schwerwiegenden Fehler neu gestartet. Der Fehlercode war: 0x000000c8 (0x0000000000020000, 0x0000000000000000, 0x0000000000000000, 0x0000000000000000). Ein volles Abbild wurde gespeichert in: C:\WINDOWS\MEMORY.DMP. Berichts-ID: c052e924-42d2-405c-8983-b861586cc2a1.
Error: (01/25/2018 07:53:18 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "CscService" wurde mit folgendem Fehler beendet:
Das System kann den angegebenen Pfad nicht finden.
CodeIntegrity:
===================================
Date: 2018-01-25 15:34:28.812
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 15:34:28.810
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 15:19:26.941
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 15:19:26.939
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 15:19:26.790
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 15:19:26.788
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 15:04:25.058
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 15:04:25.056
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 15:04:25.016
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
Date: 2018-01-25 15:04:25.014
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: AMD Athlon(tm) 64 X2 Dual Core Processor 5200+
Prozentuale Nutzung des RAM: 75%
Installierter physikalischer RAM: 4095.3 MB
Verfügbarer physikalischer RAM: 1012.58 MB
Summe virtueller Speicher: 8191.3 MB
Verfügbarer virtueller Speicher: 3342.41 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:930.56 GB) (Free:795.95 GB) NTFS
Drive e: (123456789) (Fixed) (Total:465.76 GB) (Free:407.54 GB) NTFS
Drive g: (DATA) (Fixed) (Total:298.02 GB) (Free:32.54 GB) FAT32
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 0BE5E7CA)
Partition 1: (Active) - (Size=102 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=930.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=868 MB) - (Type=27)
========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 298.1 GB) (Disk ID: 2AA4DA24)
Partition 1: (Not Active) - (Size=298.1 GB) - (Type=0C)
========================================================
Disk: 2 (Size: 465.8 GB) (Disk ID: 34D36C1B)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================
--- --- --- |
