Addition.txt vom 12.6.
Leider schon ein paar Tage alt, weil ich da schon angefangen hatte mit den Vorbereitungen für die Posts hier:
[CODE]Additional
FRST Logfile: Code:
scan result of Farbar Recovery Scan Tool (x64) Version:08-06-2015
Ran by Kristina at 2015-06-12 15:57:01
Running from C:\Users\Kristina\Downloads
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-1452072108-4067596569-1899591798-500 - Administrator - Disabled)
Florian (S-1-5-21-1452072108-4067596569-1899591798-1004 - Limited - Enabled) => C:\Users\Florian
Gast (S-1-5-21-1452072108-4067596569-1899591798-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1452072108-4067596569-1899591798-1002 - Limited - Enabled)
Kristina (S-1-5-21-1452072108-4067596569-1899591798-1000 - Administrator - Enabled) => C:\Users\Kristina
UpdatusUser (S-1-5-21-1452072108-4067596569-1899591798-1003 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avira Antivirus (Disabled - Up to date) {4D041356-F94D-285F-8768-AAE50FA36859}
AS: Avira Antivirus (Disabled - Up to date) {F665F2B2-DF77-27D1-BDD8-9197742422E4}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installed Programs ======================
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-PDF Split & Merge Version 2.1.0 (Build 128) (HKLM-x32\...\7-PDF Split & Merge_is1) (Version: 7-PDF Split & Merge - Version 2.1.0 (Build 128) - 7-PDF, Germany - Thorsten Hodes)
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Acer Crystal Eye Webcam (HKLM-x32\...\{7760D94E-B1B5-40A0-9AA0-ABF942108755}) (Version: 5.2.5.3 - Suyin Optronics Corp)
Acer Crystal Eye Webcam (HKLM-x32\...\InstallShield_{A0382E3C-7384-429A-9BFA-AF5888E5A193}) (Version: 1.5.3018.00 - CyberLink Corp.)
Acer Crystal Eye Webcam (x32 Version: 1.5.3018.00 - CyberLink Corp.) Hidden
Adobe Acrobat 7.1.0 Professional - English, Français, Deutsch (HKLM-x32\...\Adobe Acrobat 7.0 Professional - English, Français, Deutsch - V) (Version: 7.1.0 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 17.0.0.172 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 17.0.0.188 - Adobe Systems Incorporated)
Adobe Illustrator CS2 (HKLM-x32\...\Adobe Illustrator CS2) (Version: 12.000.000 - Adobe Systems Inc.)
Adobe Reader XI (11.0.11) - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.0 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.0.7.148 - Adobe Systems, Inc.)
Adobe SVG Viewer 3.0 (HKLM-x32\...\Adobe SVG Viewer) (Version: 3.0 - Adobe Systems, Inc.)
Amazon Kindle (HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\Amazon Kindle) (Version: - Amazon)
Amazon Kindle (HKU\S-1-5-21-1452072108-4067596569-1899591798-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Amazon Kindle) (Version: - Amazon)
ANT Drivers Installer x64 (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
AquaSoft PhotoKalender (HKLM-x32\...\AquaSoft PhotoKalender) (Version: - AquaSoft)
AquaSoft PhotoKalender (x32 Version: 1.2.11 - AquaSoft) Hidden
Ashampoo Burning Studio 2013 v.11.0.6 (HKLM-x32\...\{91B33C97-0FBA-74AE-E802-D782F5C8AA89}_is1) (Version: 11.0.6 - Ashampoo GmbH & Co. KG)
Atheros Driver Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
Audible Download Manager (HKLM-x32\...\AudibleDownloadManager) (Version: 6.6.0.15 - Audible, Inc.)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.11.574 - Avira Operations GmbH & Co. KG)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 5.100.235.19 - Broadcom Corporation)
Broadcom Card Reader Driver Installer (HKLM\...\{4710662C-8204-4334-A977-B1AC9E547819}) (Version: 15.0.6.2 - Broadcom Corporation)
Broadcom NetLink Controller (HKLM\...\{D1D7ED66-5C08-40A0-AEC0-B6DF977697BB}) (Version: 16.0.2.1 - Broadcom Corporation)
Brother MFL-Pro Suite MFC-235C (HKLM-x32\...\{A3FEC306-FBFF-4B0D-95B9-F9C67C65079E}) (Version: 1.0.2.0 - Brother Industries, Ltd.)
Cisco EAP-FAST Module (x32 Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (x32 Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (x32 Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Dialang V1 Beta (HKLM-x32\...\{97DF4674-AB43-11D5-91C9-005004F84FA1}) (Version: - )
Elevated Installer (x32 Version: 4.0.11.0 - Garmin Ltd or its subsidiaries) Hidden
Evernote v. 5.8.4 (HKLM-x32\...\{C15841A6-C20A-11E4-977D-00163E98E7D6}) (Version: 5.8.4.6870 - Evernote Corp.)
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.5.116.602 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.0.6.1126 - Foxit Software Inc.)
Garmin Express (HKLM-x32\...\{217450b3-8c73-413b-a058-cf271291d683}) (Version: 4.0.11.0 - Garmin Ltd or its subsidiaries)
Garmin Express (x32 Version: 4.0.11.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express Tray (x32 Version: 4.0.11.0 - Garmin Ltd or its subsidiaries) Hidden
GLS eBank Software (HKLM-x32\...\{2713774C-CC3F-472B-8BA5-FC397B104188}) (Version: 08.08.0000 - windata GmbH & Co.KG)
GLS eBank Software (HKLM-x32\...\{272E9F61-9B6B-48CB-A62E-7A1207EFA299}) (Version: 08.08.0000 - windata GmbH & Co.KG)
Google Earth Plug-in (HKLM-x32\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
HandBrake 0.9.9.1 (HKLM-x32\...\HandBrake) (Version: 0.9.9.1 - )
HP ENVY 5530 series - Grundlegende Software für das Gerät (HKLM\...\{0DF42574-E3A9-48FE-A2A4-79201BF1C60E}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
HP ENVY 5530 series Hilfe (HKLM-x32\...\{272E06A0-7B74-481F-BD50-C632D9CA81A3}) (Version: 30.0.0 - Hewlett Packard)
HP FWUpdateEDO2 (HKLM-x32\...\{415FA9AD-DA10-4ABE-97B6-5051D4795C90}) (Version: 1.2.0.0 - Hewlett-Packard)
HP Photo Creations (HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\HP Photo Creations) (Version: 1.0.0.18142 - HP)
HP Photo Creations (HKU\S-1-5-21-1452072108-4067596569-1899591798-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\HP Photo Creations) (Version: 1.0.0.18142 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPDiagnosticAlert (x32 Version: 1.00.0001 - Microsoft) Hidden
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.10.1550 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 45 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418045F0}) (Version: 8.0.450 - Oracle Corporation)
Konz 2013 (HKLM-x32\...\InstallShield_{76651FD7-2B71-4B61-9F3A-E82F52F08D92}) (Version: 1.00.0000 - USM)
Konz 2013 (x32 Version: 1.00.0000 - USM) Hidden
LEGO MINDSTORMS EV3 (HKLM-x32\...\LEGO_SW.{5B0CB826-E499-4E6B-94F0-75B6327ED934}) (Version: 1.0.0 - The LEGO Group)
LEGO MINDSTORMS EV3 Home Content (x32 Version: 1.1.50 - The LEGO Group) Hidden
LEGO MINDSTORMS EV3 Home deutscher Support (x32 Version: 1.1.50 - The LEGO Group) Hidden
LEGO MINDSTORMS EV3 Home Edition (x32 Version: 1.1.50 - The LEGO Group) Hidden
LEGO MINDSTORMS EV3 Uninstaller (x32 Version: 1.0.11 - The LEGO Group) Hidden
LEGO MINDSTORMS NXT x64 Driver (HKLM\...\{A0831C28-A6FA-49A3-86AE-B5AE3C9EE19C}) (Version: 1.20.115.0 - LEGO)
MAGIX Slideshow Maker 2 (HKLM-x32\...\MAGIX_MSI_Slideshow_Maker_2) (Version: 2.0.0.8 - MAGIX AG)
MAGIX Slideshow Maker 2 (x32 Version: 2.0.0.8 - MAGIX AG) Hidden
Malwarebytes Anti-Malware Version 2.1.6.1022 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{02BAAFC5-4E16-42E6-A9F6-8DDE0B7ED3B8}) (Version: 1.0.0.0 - Mojang)
Mobile Partner Manager (HKLM-x32\...\{A9E5EDA7-2E6C-49E7-924B-A32B89C24A04}) (Version: 1.0.0.1 - ZTE Corporation)
Mozilla Firefox 38.0.5 (x86 de) (HKLM-x32\...\Mozilla Firefox 38.0.5 (x86 de)) (Version: 38.0.5 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 29.0.1 - Mozilla)
Mozilla Thunderbird 31.7.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 31.7.0 (x86 de)) (Version: 31.7.0 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
MySQL Connector C++ 1.1.3 (HKLM\...\{5C7A1ED6-DC5F-4017-B363-3E80644B4BD0}) (Version: 1.1.3 - Oracle and/or its affiliates)
MySQL Connector J (HKLM-x32\...\{9EC952A0-A070-4309-A371-35D9A5B8AFB5}) (Version: 5.1.27 - Oracle Corporation)
MySQL Connector Net 6.7.4 (HKLM-x32\...\{D6952EDA-6AC4-4480-A060-BD6025B15BAD}) (Version: 6.7.4 - Oracle)
MySQL Connector/C 6.1 (HKLM\...\{BB309579-ABEC-4F5B-A785-4FA16DD1277B}) (Version: 6.1.2 - Oracle Corporation)
MySQL Connector/ODBC 5.2 (HKLM\...\{6F4E90AC-3B32-4631-A9E5-5CC0186CA97B}) (Version: 5.2.6 - Oracle Corporation)
MySQL Documents 5.6 (HKLM-x32\...\{C518E05A-E718-4761-BDE0-F1FDB6DEC71E}) (Version: 5.6.15 - Oracle Corporation)
MySQL Examples and Samples 5.6 (HKLM-x32\...\{3431B8BE-318E-4FB8-8397-1DD0CEC1B790}) (Version: 5.6.15 - Oracle Corporation)
MySQL Installer (HKLM-x32\...\{88359D24-F64F-477E-B080-50FB024BA6F7}) (Version: 1.3.3.0 - Oracle Corporation)
MySQL Server 5.6 (HKLM\...\{9732D1BA-9F35-4378-B713-151BD360A390}) (Version: 5.6.15 - Oracle Corporation)
MySQL Utilities (HKLM-x32\...\{09B13753-CEB1-49FE-9933-9CDB664CB6EC}) (Version: 1.3.5 - Oracle)
MySQL Workbench 6.0 CE (HKLM-x32\...\{654A0779-F661-4D7C-B0EB-0DDF3CEDE963}) (Version: 6.0.8 - Oracle Corporation)
Next Starter + A1 (HKLM-x32\...\de.hueber.NextA1Starter.A0C2A48213B65DD98C4EE2A6FFB8BD5B9EC3BAE9.1) (Version: 1.0 - Hueber Verlag GmbH & Co KG)
Next Starter + A1 (x32 Version: 1.0 - Hueber Verlag GmbH & Co KG) Hidden
NI .NET Framework 4 (x32 Version: 4.00.49152 - National Instruments) Hidden
NI EulaDepot (x32 Version: 3.20.363 - National Instruments) Hidden
NI MDF Support (x32 Version: 3.20.363 - National Instruments) Hidden
NI Security Update (KB 67L8LCQW) (64-bit) (Version: 1.0.29.0 - National Instruments) Hidden
NI Security Update (KB 67L8LCQW) (x32 Version: 1.0.29.0 - National Instruments) Hidden
NI Uninstaller (x32 Version: 3.20.363 - National Instruments) Hidden
NI VC2008MSMs x64 (Version: 9.0.401 - National Instruments) Hidden
NI VC2008MSMs x86 (x32 Version: 9.0.401 - National Instruments) Hidden
NVIDIA Grafiktreiber 327.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 327.02 - NVIDIA Corporation)
NVIDIA PhysX (HKLM-x32\...\{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}) (Version: 9.10.0514 - NVIDIA Corporation)
NVIDIA Update 1.14.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 1.14.17 - NVIDIA Corporation)
PDF24 Creator 5.7.0 (HKLM-x32\...\{81A6F461-0DBA-4F12-B56F-0E977EC10576}_is1) (Version: - PDF24.org)
phase-6 2.3.4 (HKLM-x32\...\phase-6) (Version: 2.3.4 - phase-6)
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Pro Evolution Soccer 2013 (HKLM-x32\...\{C2523AE6-F335-4D0B-BC15-1C07E4ACE629}) (Version: 1.00.0000 - KONAMI)
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 (HKLM-x32\...\{59F6A514-9813-47A3-948C-8A155460CC2A}) (Version: 3.51.01 - )
Secunia PSI (3.0.0.8013) (HKLM-x32\...\Secunia PSI) (Version: 3.0.0.8013 - Secunia)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype™ 7.4 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.4.102 - Skype Technologies S.A.)
SpywareBlaster 5.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 5.0.0 - BrightFort LLC)
SRWare Iron Version SRWare Iron 32.0.1750.1 (HKLM-x32\...\{C59CF2CE-B302-4833-AA35-E0E07D8EBC52}_is1) (Version: SRWare Iron 32.0.1750.1 - SRWare)
Steuer 2012 (HKLM-x32\...\{01159E8A-44F7-4885-A7F9-872CE4D74063}) (Version: 20.00.8137 - Buhl Data Service GmbH)
Studie zur Verbesserung von HP ENVY 5530 series (HKLM\...\{EAA408C4-EF57-4175-BCD8-2C9B1C501584}) (Version: 32.2.188.47710 - Hewlett-Packard Co.)
SuperMailer 8.01 (HKLM-x32\...\Newsletter Software SuperMailer_is1) (Version: 8.01 - Mirko Boeer Softwareentwicklungen)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 16.3.12.37 - Synaptics Incorporated)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.38475 - TeamViewer)
Unity Web Player (HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Unity Web Player (HKU\S-1-5-21-1452072108-4067596569-1899591798-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
VC_CRT_x64 (Version: 1.02.0000 - Intel Corporation) Hidden
Viber (HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\Viber) (Version: 3.0.0.134193 - Viber Media Inc)
Viber (HKU\S-1-5-21-1452072108-4067596569-1899591798-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\...\Viber) (Version: 3.0.0.134193 - Viber Media Inc)
WebEx Event-Manager für Firefox oder Chrome (HKLM-x32\...\{3104A47C-6D0F-4221-971E-4723BEB13750}) (Version: 28.12.6.17378 - Cisco WebEx LLC)
windata 8 (HKLM-x32\...\{E827B53E-9289-4ACB-8AE2-D291712AD06B}) (Version: 08.08.0000 - windata GmbH & Co.KG)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
WinPatrol (HKLM\...\{6A206A04-6BC1-411B-AA04-4E52EDEEADF2}) (Version: 32.0.2014.5 - Ruiware)
WISO Steuer-Sparbuch 2014 (HKLM-x32\...\{41C615EC-DA82-4761-8D07-FA2F48273F2F}) (Version: 21.00.8480 - Buhl Data Service GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Kristina\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Kristina\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Kristina\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Kristina\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Kristina\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll No File
CustomCLSID: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Kristina\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll (Google Inc.)
==================== Restore Points =========================
27-05-2015 16:28:18 Windows Update
02-06-2015 10:42:20 Windows Update
09-06-2015 15:55:23 Windows Update
11-06-2015 05:44:57 Windows Update
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0535AC86-C747-437B-90CD-C5B9E520841C} - System32\Tasks\{377FF33A-55A7-4D46-A327-4D0434653B1E} => pcalua.exe -a C:\Users\Kristina\Downloads\Acer_Camera_Suyin_v.5.2.5.3_Win7x86x64\Acer_Camera_Suyin_v.5.2.5.3_Win7x86x64\Setup.exe -d C:\Users\Kristina\Downloads\Acer_Camera_Suyin_v.5.2.5.3_Win7x86x64\Acer_Camera_Suyin_v.5.2.5.3_Win7x86x64 -c -s -f2"C:\Webcam.log"
Task: {10F83A73-F9F0-487B-ABF7-DABB8636C916} - System32\Tasks\Microsoft\Windows\Setup\gwx\refreshgwxconfig => C:\Windows\system32\GWX\GWXConfigManager.exe [2015-05-07] (Microsoft Corporation)
Task: {2148FF38-7DD0-4E5F-9C93-C60BC18A3FD7} - System32\Tasks\{3EBE55AB-F2CA-4558-98FA-4C583EC2127C} => Firefox.exe hxxp://ui.skype.com/ui/0/7.2.0.103/de/abandoninstall?page=tsProgressBar
Task: {26302D36-7AF2-435C-B7C1-43F4C4E3652A} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19] (Adobe Systems Incorporated)
Task: {2D8D8B10-5CAA-43EC-B26B-7FF21B210FC3} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\Logon => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {52BAF761-9EF9-4836-B068-AB7A01AF18B8} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1452072108-4067596569-1899591798-1000UA => C:\Users\Kristina\AppData\Local\Google\Update\GoogleUpdate.exe [2014-07-02] (Google Inc.)
Task: {5892906C-DEA9-46A1-BFBC-136206DA5C02} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-02] (Google Inc.)
Task: {6D274377-097E-4C8C-ACE1-333FF4D353F3} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1452072108-4067596569-1899591798-1000Core => C:\Users\Kristina\AppData\Local\Google\Update\GoogleUpdate.exe [2014-07-02] (Google Inc.)
Task: {70C2B380-CB47-4B35-83A6-2C7A817B8240} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express Self Updater\ExpressSelfUpdater.exe
Task: {8C9A028C-E5E6-40F9-B541-40DEF4B56F0C} - System32\Tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask => C:\Windows\system32\Wat\WatAdminSvc.exe [2014-06-27] (Microsoft Corporation)
Task: {90F58645-41A2-49A1-BC22-66F592ACD91D} - System32\Tasks\{1B1F616C-54EC-4B18-BBCE-98307856839D} => pcalua.exe -a "C:\GLS eBank Software\Profi\windata8.exe" -d "C:\GLS eBank Software\Profi\"
Task: {99F81803-A10E-476C-A7DF-3100555EE63F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-10-02] (Google Inc.)
Task: {A428F740-E6A5-4FFB-BBFD-DD20C9BEF05C} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {CB108521-F61E-42B7-84C4-3A576BE596AF} - System32\Tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser => C:\Windows\system32\compattel\DiagTrackRunner.exe [2015-03-16] (Microsoft Corporation)
Task: {CDFA953D-56B0-4AE4-B4A1-5DCFFDDE0231} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-06-08] (Adobe Systems Incorporated)
Task: {F4FCF7E9-C3E2-4A95-B535-CBFC6A3D8E23} - System32\Tasks\Microsoft\Windows\Setup\gwx\launchtrayprocess => C:\Windows\system32\GWX\GWX.exe [2015-05-07] (Microsoft Corporation)
Task: {F51AD772-7100-44A1-8B20-50CB17118C90} - System32\Tasks\HPCustParticipation HP ENVY 5530 series => C:\Program Files\HP\HP ENVY 5530 series\Bin\HPCustPartic.exe [2014-03-06] (Hewlett-Packard Co.)
Task: {FD41564A-4B34-471C-8CD7-4D5118909280} - System32\Tasks\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => schtasks
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1452072108-4067596569-1899591798-1000Core.job => C:\Users\Kristina\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1452072108-4067596569-1899591798-1000UA.job => C:\Users\Kristina\AppData\Local\Google\Update\GoogleUpdate.exe
==================== Loaded Modules (Whitelisted) ==============
2015-02-13 05:20 - 2015-02-13 05:20 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-02-13 05:20 - 2015-02-13 05:20 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-11-29 17:23 - 2010-01-13 20:14 - 00247296 _____ () C:\Program Files (x86)\Mobile Partner Manager\AssistantServices.exe
2014-12-15 22:06 - 2013-08-30 00:43 - 00097568 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2014-02-13 16:09 - 2008-07-29 20:29 - 00200704 _____ () C:\Windows\PLFSetI.exe
2012-12-14 02:42 - 2012-12-14 02:42 - 00094208 _____ () C:\Windows\System32\IccLibDll_x64.dll
2013-11-29 17:23 - 2010-01-13 20:13 - 00133120 _____ () C:\Program Files (x86)\Mobile Partner Manager\UIExec.exe
2013-12-20 18:39 - 2013-05-31 14:30 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2015-05-04 18:45 - 2005-11-27 21:06 - 00360448 _____ () C:\Windows\SysWow64\CoolXPLabel.ocx
2015-05-04 18:45 - 2005-11-27 21:07 - 00491520 _____ () C:\Windows\SysWow64\CoolXPButton.ocx
2015-05-04 18:45 - 2005-11-27 21:07 - 00417792 _____ () C:\Windows\SysWow64\CoolXPCombo.ocx
2014-02-03 17:38 - 2014-01-30 00:38 - 00902144 _____ () C:\Program Files (x86)\SRWare Iron\libglesv2.dll
2014-02-03 17:38 - 2014-01-30 00:38 - 00102912 _____ () C:\Program Files (x86)\SRWare Iron\libegl.dll
2014-02-03 17:38 - 2014-01-30 00:52 - 00883200 _____ () C:\Program Files (x86)\SRWare Iron\ffmpegsumo.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2015-04-07 06:46 - 2015-05-20 22:23 - 03350640 _____ () C:\Program Files (x86)\Mozilla Thunderbird\mozjs.dll
2015-04-07 06:46 - 2015-05-20 22:23 - 00158832 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAP32V60.dll
2015-04-07 06:46 - 2015-05-20 22:23 - 00023152 _____ () C:\Program Files (x86)\Mozilla Thunderbird\NSLDAPPR32V60.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\ProgramData\Temp:5C321E34
AlternateDataStreams: C:\Users\Kristina\Desktop\8b789e33-1642-4118-8d8c-95a1bd32c200%40mtasv.net.wdseml:OECustomProperty
==================== Safe Mode (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\...\1001movie.com -> 1001movie.com
There are 6091 more restricted sites.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1452072108-4067596569-1899591798-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Kristina\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
HKU\S-1-5-21-1452072108-4067596569-1899591798-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Kristina\AppData\Roaming\Mozilla\Firefox\Desktop-Hintergrund.bmp
HKU\S-1-5-21-1452072108-4067596569-1899591798-1004\Control Panel\Desktop\\Wallpaper -> C:\Users\Florian\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
HKU\S-1-5-21-1452072108-4067596569-1899591798-1004-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\Control Panel\Desktop\\Wallpaper -> C:\Users\Florian\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 208.67.222.222 - 208.67.220.220
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{2CCE599F-0BDA-43A6-987B-57FB06CD48A8}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{A5CE8D5A-72AD-4971-A572-5F4743D12539}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{EE1B3DBB-0695-4986-B288-ED1F58B0CD86}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{A925E1A8-4B25-4D7E-BC35-2B7ECB8B9F68}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{A52E1A60-32E6-4E17-BE5B-E9C246840002}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{CF1EEF04-4BDA-4D4F-A1D3-DE15EFE8657B}] => (Allow) C:\ProgramData\eSafe\eGdpSvc.exe
FirewallRules: [TCP Query User{40B0239C-E1F2-469F-B66A-AA246A234AA3}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [UDP Query User{2955D5E3-CA61-4F6A-A162-DB8495070F72}C:\windows\syswow64\javaw.exe] => (Allow) C:\windows\syswow64\javaw.exe
FirewallRules: [TCP Query User{B58B63A3-A038-4E42-BCB5-355508C83FC5}C:\users\kristina\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kristina\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{6CF8CAEE-6DF5-4F21-B0A2-CFE65CDE3F9A}C:\users\kristina\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\kristina\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{EE09AE70-5486-448E-8317-0B859B39D004}C:\users\kristina\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\kristina\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{ACEF772A-ECA5-4B99-99F4-E56198AB1CD1}C:\users\kristina\appdata\roaming\spotify\spotify.exe] => (Block) C:\users\kristina\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{8B113932-FD3C-4AB5-80F8-4F79231D210A}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [UDP Query User{D4481E70-59AC-40BA-9B78-393B7606A15A}C:\program files (x86)\mozilla firefox\plugin-container.exe] => (Block) C:\program files (x86)\mozilla firefox\plugin-container.exe
FirewallRules: [TCP Query User{D945EAA8-FB59-4095-8C43-4D7DD27B9041}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [UDP Query User{D8096ABF-0A4E-446D-A2A0-AD8272C63983}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [{C26D960B-9303-4EE7-A597-6E9D43D41024}] => (Allow) C:\Users\Kristina\AppData\Local\Viber\Viber.exe
FirewallRules: [TCP Query User{043D954E-C232-4342-A47F-4D3AFD578400}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [UDP Query User{6F280B4A-ACA5-4A45-9D0A-66582BD16501}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [UDP Query User{68E46633-8DC3-499C-A590-8A85F5FE92AD}C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS EV3 Home Edition\MindstormsEV3.exe] => (Allow) C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS EV3 Home Edition\MindstormsEV3.exe
FirewallRules: [TCP Query User{F468232A-782C-4386-AF14-03CFA72EB0FB}C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS EV3 Home Edition\MindstormsEV3.exe] => (Allow) C:\Program Files (x86)\LEGO Software\LEGO MINDSTORMS EV3 Home Edition\MindstormsEV3.exe
FirewallRules: [{750C75D6-378B-4F8A-A0B7-0CA3FE40A579}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{7E6A2278-777B-47FD-8B45-B8A0375F29A7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [TCP Query User{87451818-3C11-41F7-B927-8CAA1F2BB075}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{DBD0F597-7CA8-40A3-BD4B-0D5285365AFB}C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => (Block) C:\program files (x86)\minecraft\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{105AD61F-F78E-43E0-A6A4-EA63C4E10E61}C:\program files (x86)\konami\pro evolution soccer 2013\pes2013.exe] => (Block) C:\program files (x86)\konami\pro evolution soccer 2013\pes2013.exe
FirewallRules: [UDP Query User{DB90516B-59D2-40DB-A4C2-8FDB4EA50E9A}C:\program files (x86)\konami\pro evolution soccer 2013\pes2013.exe] => (Block) C:\program files (x86)\konami\pro evolution soccer 2013\pes2013.exe
FirewallRules: [{338A9545-5D66-4617-84E5-1C35C09C5C4B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{9DF3AE78-E013-4F5A-8FE4-54869E85EAD8}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{FB842F10-4EA4-4525-9076-E2A7A43DAA84}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{B271E387-EEAB-4FB8-9381-6DD86A77FD72}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{CC426A63-8A4C-4852-8F66-4F10AD9AB91B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5977721E-7328-4AB1-9E89-80E72FC2C100}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{D1898E3C-A188-4794-8AFF-C44AB85562C0}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{5F89C100-E287-4922-BF1A-1059FE2B5D5A}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{74A3FE67-A0CE-438A-8219-DE122B307C5B}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\DeviceSetup.exe
FirewallRules: [{6C1887AC-2DEA-4F5B-A797-6756024671E0}] => (Allow) LPort=5357
FirewallRules: [{3A25C9B1-2DB9-4B46-888D-DCE2D9B5AA21}] => (Allow) C:\Program Files\HP\HP ENVY 5530 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{305D9A87-5991-44F7-B176-357FC4F87739}] => (Allow) C:\Program Files\iTunes\iTunes.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (06/12/2015 03:46:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 39297
Error: (06/12/2015 03:46:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 39297
Error: (06/12/2015 03:46:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/12/2015 03:46:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 38299
Error: (06/12/2015 03:46:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 38299
Error: (06/12/2015 03:46:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/12/2015 03:45:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 37285
Error: (06/12/2015 03:45:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 37285
Error: (06/12/2015 03:45:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/12/2015 03:45:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 36286
System errors:
=============
Error: (06/12/2015 03:45:44 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "MBAMService" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (06/12/2015 03:45:19 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst AntiVirSchedulerService erreicht.
Error: (06/12/2015 03:44:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Error: (06/12/2015 03:42:57 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Error: (06/12/2015 03:41:14 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Error: (06/12/2015 03:39:40 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Error: (06/12/2015 03:38:08 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Error: (06/12/2015 03:36:36 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Error: (06/12/2015 03:34:53 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Error: (06/12/2015 03:33:18 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Windows-Fehlerberichterstattungsdienst erreicht.
Microsoft Office:
=========================
Error: (06/12/2015 03:46:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 39297
Error: (06/12/2015 03:46:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 39297
Error: (06/12/2015 03:46:01 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/12/2015 03:46:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 38299
Error: (06/12/2015 03:46:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 38299
Error: (06/12/2015 03:46:00 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/12/2015 03:45:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 37285
Error: (06/12/2015 03:45:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 37285
Error: (06/12/2015 03:45:59 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second
Error: (06/12/2015 03:45:58 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 36286
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-2410M CPU @ 2.30GHz
Percentage of memory in use: 61%
Total physical RAM: 3947.86 MB
Available physical RAM: 1502.52 MB
Total Pagefile: 7893.93 MB
Available Pagefile: 4442.04 MB
Total Virtual: 8192 MB
Available Virtual: 8191.8 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:450.66 GB) (Free:145.39 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 09E51EF0)
Partition 1: (Not Active) - (Size=15 GB) - (Type=27)
Partition 2: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450.7 GB) - (Type=07 NTFS)
==================== End of log ============================
--- --- ---
... blieb stecken, weil der Anti-Rootkit DDA-Treiber nicht geladen werden konnte. Auch nicht nach Neustart. Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Scan, 16.06.2015 03:55:33, SYSTEM, KRISTINA-PC, Context, Start: 16.06.2015 02:53:17, Dauer: 1 Stunden 2 Minuten 13 Sekunden, Bedrohungs-Suchlauf, Abgeschlossen, 0 Malwareerkennung, "0" nicht-Malwareerkennung,
Update, 16.06.2015 05:11:00, SYSTEM, KRISTINA-PC, Scheduler, Malware Database, 2015.6.15.7, 2015.6.16.1,
Protection, 16.06.2015 05:11:01, SYSTEM, KRISTINA-PC, Protection, Refresh, Starting,
Protection, 16.06.2015 05:11:01, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Stopping,
Protection, 16.06.2015 05:11:01, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Stopped,
Protection, 16.06.2015 05:12:02, SYSTEM, KRISTINA-PC, Protection, Refresh, Success,
Protection, 16.06.2015 05:12:03, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 05:12:03, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Started,
Update, 16.06.2015 07:26:28, SYSTEM, KRISTINA-PC, Scheduler, Malware Database, 2015.6.16.1, 2015.6.16.2,
Protection, 16.06.2015 07:26:29, SYSTEM, KRISTINA-PC, Protection, Refresh, Starting,
Protection, 16.06.2015 07:26:29, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Stopping,
Protection, 16.06.2015 07:26:29, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Stopped,
Protection, 16.06.2015 07:26:34, SYSTEM, KRISTINA-PC, Protection, Refresh, Success,
Protection, 16.06.2015 07:26:35, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 07:26:35, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Started,
Update, 16.06.2015 12:23:30, SYSTEM, KRISTINA-PC, Scheduler, Malware Database, 2015.6.16.2, 2015.6.16.3,
Protection, 16.06.2015 12:23:30, SYSTEM, KRISTINA-PC, Protection, Refresh, Starting,
Protection, 16.06.2015 12:23:30, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Stopping,
Protection, 16.06.2015 12:23:30, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Stopped,
Protection, 16.06.2015 12:23:56, SYSTEM, KRISTINA-PC, Protection, Refresh, Success,
Protection, 16.06.2015 12:23:56, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 12:23:56, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Started,
Update, 16.06.2015 15:24:56, SYSTEM, KRISTINA-PC, Scheduler, Malware Database, 2015.6.16.3, 2015.6.16.4,
Protection, 16.06.2015 15:24:57, SYSTEM, KRISTINA-PC, Protection, Refresh, Starting,
Protection, 16.06.2015 15:24:58, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Stopping,
Protection, 16.06.2015 15:24:58, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Stopped,
Protection, 16.06.2015 15:26:29, SYSTEM, KRISTINA-PC, Protection, Refresh, Success,
Protection, 16.06.2015 15:26:29, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 15:26:29, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 15:26:29, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 16:48:57, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 16:48:57, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 16:48:57, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 16:49:24, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 16:49:24, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 16:49:24, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 16:50:04, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 16:50:04, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 16:50:04, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 16:50:35, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 16:50:35, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 16:50:35, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 16:50:36, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 16:50:36, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 16:50:36, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 16:50:38, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 16:50:38, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 16:50:39, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 16:50:59, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 16:51:00, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 16:51:00, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 16:51:01, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 16:51:01, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 16:51:01, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 16:51:03, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 16:51:03, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 16:51:03, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Update, 16.06.2015 16:59:18, SYSTEM, KRISTINA-PC, Scheduler, Failed, Unable to access update server,
Update, 16.06.2015 17:19:02, SYSTEM, KRISTINA-PC, Scheduler, Failed, Unable to access update server,
Protection, 16.06.2015 17:20:20, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 17:20:20, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 17:20:20, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 17:53:44, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 17:53:44, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Failed,
Error, 16.06.2015 17:53:44, SYSTEM, KRISTINA-PC, Protection, MWAC::CreateList - Rules IP Block List, 3221225473,
Protection, 16.06.2015 18:06:31, SYSTEM, KRISTINA-PC, Protection, Malware Protection, Starting,
Protection, 16.06.2015 18:06:31, SYSTEM, KRISTINA-PC, Protection, Malware Protection, Started,
Protection, 16.06.2015 18:06:31, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Starting,
Protection, 16.06.2015 18:06:31, SYSTEM, KRISTINA-PC, Protection, Malicious Website Protection, Started,
(end)
|
FRST 32-Bit | FRST 64-Bit
Malwarebytes Anti-Malware 
AdwCleaner auf deinen Desktop.
SecurityCheck und:
WARNUNG an die MITLESER: 
