Danke für deine Hilfe cosinus.
Hier ist die FRST.txt: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 29-06-2017
durchgeführt von Internet (Administrator) auf Fridolin (29-06-2017 16:33:23)
Gestartet von C:\Users\Internet\Desktop
Geladene Profile: UpdatusUser & Internet (Verfügbare Profile: UpdatusUser & Fridolin & Internet)
Platform: Windows 8.1 (Update) (X64) Sprache: German (Germany)
Internet Explorer Version 11 (Standard-Browser: IE)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(Sony Corporation) C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRYSVC.EXE
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Broadcom Corporation) C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\BCMWLTRY.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\SUSSoundProxy.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Cisco Systems, Inc.) C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\EXCEL.EXE
(Bruker Daltonik GmbH) C:\Program Files\Bruker Daltonik\DataAnalysis\4.4\DataAnalysis.exe
(Bruker Daltonik GmbH) C:\Program Files (x86)\Common Files\Bruker Daltonik\NTDS\bin\ErrorManager.exe
(Bruker Daltonik GmbH) C:\Program Files (x86)\Common Files\Bruker Daltonik\Reporting\ReportEngine.exe
(Bruker Daltonik GmbH) C:\Program Files (x86)\Common Files\Bruker Daltonik\IsotopePattern\IsotopePattern.exe
(Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1381744 2014-02-11] (Realtek Semiconductor)
HKLM\...\Run: [Broadcom Wireless Manager UI] => C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\WLTRAY.exe [10590208 2013-03-14] (Broadcom Corporation)
HKLM\...\Run: [Bluetooth] => C:\Program Files\WIDCOMM\Bluetooth Software\bttray.exe [526704 2012-12-14] (Broadcom Corporation.)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3928264 2015-05-27] (Synaptics Incorporated)
HKLM-x32\...\Run: [mcui_exe] => "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
HKLM-x32\...\Run: [PMBVolumeWatcher] => C:\Program Files (x86)\Sony\PlayMemories Home\PMBVolumeWatcher.exe [740376 2013-02-06] (Sony Corporation)
HKLM-x32\...\Run: [Intel AppUp(R) center] => C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe [156000 2013-02-19] (Intel Corporation)
HKLM-x32\...\Run: [mcpltui_exe] => C:\Program Files\Common Files\mcafee\Platform\McUICnt.exe [644656 2013-08-17] (McAfee, Inc.)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [97512 2017-06-08] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [avgnt] => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [918008 2017-06-15] (Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Cisco AnyConnect Secure Mobility Agent for Windows] => C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe [1207808 2016-12-09] (Cisco Systems, Inc.)
HKLM-x32\...\RunOnce: [{14d00649-a178-473f-bf48-eec016dc4bfa}] => C:\ProgramData\Package Cache\{14d00649-a178-473f-bf48-eec016dc4bfa}\Avira.OE.Setup.Bundle.exe [978248 2017-06-28] (Avira Operations GmbH & Co. KG)
HKU\S-1-5-21-1112274420-4084008991-2802509019-1001\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [799368 2017-04-12] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-1112274420-4084008991-2802509019-1001\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [516608 2014-11-21] (Microsoft Corporation)
HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [799368 2017-04-12] (Sandboxie Holdings, LLC)
HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27774944 2017-03-21] (Skype Technologies S.A.)
HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\...\MountPoints2: {87354052-1944-11e7-8148-78843c3528c1} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\...\MountPoints2: {87354149-1944-11e7-8148-78843c3528c1} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\...\MountPoints2: {e91dbdfa-0666-11e7-8141-78843c3528c1} - "E:\HiSuiteDownLoader.exe"
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [168616 2013-09-05] (NVIDIA Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Parental Controls.lnk [2014-03-28]
ShortcutTarget: McAfee Parental Controls.lnk -> C:\Program Files\McAfeeEx\MOCP\core\OcpTray.exe (McAfee, Inc.)
Startup: C:\Users\Caterina\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2016-07-23]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{2836A1C9-F7FA-4CF3-A432-B30921933211}: [DhcpNameServer] 146.107.8.88 146.107.1.88
Tcpip\..\Interfaces\{8DBC43F1-DA9D-474F-8C17-F549B3655E31}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\S-1-5-21-1112274420-4084008991-2802509019-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com
HKU\S-1-5-21-1112274420-4084008991-2802509019-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-1112274420-4084008991-2802509019-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://sony13.msn.com/
HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://sony13.msn.com
HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://vaioportal.sony.eu
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1112274420-4084008991-2802509019-1001 -> {6DF86BCA-261F-4365-837E-52CEC9139C85} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-&_nkw={searchTerms}
SearchScopes: HKU\S-1-5-21-1112274420-4084008991-2802509019-1003 -> {5330CCCC-C87E-4372-BB8A-BA0E7B821244} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-&_nkw={searchTerms}
SearchScopes: HKU\S-1-5-21-1112274420-4084008991-2802509019-1003 -> {6DF86BCA-261F-4365-837E-52CEC9139C85} URL = hxxp://rover.ebay.com/rover/1/707-37276-16609-27/4?mpre=hxxp://shop.ebay.de/?oemInLn=ieSrch-&_nkw={searchTerms}
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2017-05-06] (Microsoft Corporation)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\GROOVEEX.DLL [2017-05-06] (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2017-05-05] (Microsoft Corporation)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\GROOVEEX.DLL [2017-05-05] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll => Keine Datei
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-05] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-05] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-05] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2017-05-05] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-02-22] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Internet\AppData\Roaming\Mozilla\Firefox\Profiles\86kni7jp.default [2017-06-29]
FF NetworkProxy: Mozilla\Firefox\Profiles\86kni7jp.default -> autoconfig_url", "hxxp://pac.lrz.de/"
FF NetworkProxy: Mozilla\Firefox\Profiles\86kni7jp.default -> type", 2
FF Extension: (DSL Soforthilfe) - C:\Users\Internet\AppData\Roaming\Mozilla\Firefox\Profiles\86kni7jp.default\Extensions\{} [2017-01-30] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_26_0_0_131.dll [2017-06-20] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_26_0_0_131.dll [2017-06-20] ()
FF Plugin-x32: @cambridgesoft.com/Chem3D,version=15.0 -> C:\Program Files (x86)\CambridgeSoft\ChemOffice2015\Chem3D\npChem3DPlugin.dll [2015-03-14] (PerkinElmer)
FF Plugin-x32: @cambridgesoft.com/ChemDraw,version=12.0 -> C:\Program Files (x86)\CambridgeSoft\ChemOffice2010\ChemDraw\npcdp32.dll [2010-01-12] (CambridgeSoft Corp.)
FF Plugin-x32: @cambridgesoft.com/ChemDraw,version=15.0 -> C:\Program Files (x86)\CambridgeSoft\ChemOffice2015\ChemDraw\npcdp32.dll [2015-03-14] (PerkinElmer)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-01-23] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2017-05-05] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2017-05-05] (Microsoft Corporation)
FF Plugin-x32: @nullsoft.com/winampDetector;version=1 -> C:\Program Files (x86)\Winamp Detect\npwachk.dll [2013-07-24] (Nullsoft, Inc.)
FF Plugin-x32: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\ProgramData\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-21] (RocketLife, LLP)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll [2013-10-11] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1128432 2017-06-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [490968 2017-06-15] (Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [490968 2017-06-15] (Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1524216 2017-06-15] (Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [356256 2017-06-08] (Avira Operations GmbH & Co. KG)
S2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [2252504 2013-09-04] (Broadcom Corporation.)
S2 BDal LibrarySearch; C:\Program Files\Common Files\Bruker Daltonik\LibraryServer\DCOMLibraryService.exe [406528 2015-08-25] (Bruker Daltonik GmbH) [Datei ist nicht signiert]
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [3294912 2017-05-05] (Microsoft Corporation)
S4 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [240736 2013-10-07] (WildTangent)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129824 2013-01-23] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166688 2013-01-23] (Intel Corporation)
S4 McOobeSv2; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mcpltsvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 McSchedulerSvc; C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe [328928 2013-07-30] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [219272 2013-11-15] (McAfee, Inc.)
S3 mfeicfcoreocp; C:\Program Files\McAfeeEx\MOCP\core\mfeicfcore.exe [2782392 2013-12-31] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [182752 2013-11-15] (McAfee, Inc.)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [629336 2013-09-28] (Sony Corporation)
R2 PMBDeviceInfoProvider; C:\Program Files (x86)\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe [483864 2013-02-06] (Sony Corporation)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [197768 2017-04-12] (Sandboxie Holdings, LLC)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7032080 2016-05-12] (TeamViewer GmbH)
S3 VCFw; C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [972000 2013-01-06] (Sony Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1656600 2016-03-31] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 wltrysvc; C:\Program Files\Broadcom\Broadcom 802.11 Network Adapter\bcmwltry.exe [6070272 2013-03-14] (Broadcom Corporation) [Datei ist nicht signiert]
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [60920 2017-06-15] (Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [167504 2017-06-15] (Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [164824 2017-06-15] (Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [44488 2017-03-03] (Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [88488 2017-03-03] (Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [38048 2017-06-15] (Avira Operations GmbH & Co. KG)
R3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [170712 2013-09-04] (Broadcom Corporation.)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [8469680 2014-03-12] (Broadcom Corporation)
R1 CLVirtualDrive; C:\WINDOWS\system32\DRIVERS\CLVirtualDrive.sys [92536 2012-06-25] (CyberLink)
R2 inpoutx64; C:\WINDOWS\System32\Drivers\inpoutx64.sys [15008 2016-02-29] (Highresolution Enterprises [www.highrez.co.uk])
S3 mfeapfk; C:\WINDOWS\System32\drivers\mfeapfk.sys [179792 2013-11-15] (McAfee, Inc.)
R3 mfeavfk; C:\WINDOWS\System32\drivers\mfeavfk.sys [311120 2013-11-15] (McAfee, Inc.)
R3 mfefirek; C:\WINDOWS\System32\drivers\mfefirek.sys [519576 2013-11-15] (McAfee, Inc.)
R0 mfehidk; C:\WINDOWS\System32\drivers\mfehidk.sys [782360 2013-11-15] (McAfee, Inc.)
R0 mfewfpk; C:\WINDOWS\System32\drivers\mfewfpk.sys [343696 2013-11-15] (McAfee, Inc.)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [206984 2017-04-12] (Sandboxie Holdings, LLC)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-05-27] (Synaptics Incorporated)
S3 vpnva; C:\WINDOWS\system32\DRIVERS\vpnva64-6.sys [52592 2015-09-23] (Cisco Systems, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-06-29 16:33 - 2017-06-29 16:37 - 00022588 _____ C:\Users\Internet\Desktop\FRST.txt
2017-06-29 16:32 - 2017-06-29 16:32 - 00000000 ____D C:\Users\Internet\Desktop\FRST-OlderVersion
2017-06-29 11:17 - 2017-06-29 11:17 - 00000165 ____H C:\Users\Internet\Desktop\~$RTI nur average again .xlsx
2017-06-28 23:42 - 2017-06-28 23:42 - 00001152 _____ C:\Users\Public\Desktop\Avira Connect.lnk
2017-06-28 22:18 - 2017-06-28 22:18 - 04879880 _____ (Microsoft Corporation) C:\Users\Internet\Downloads\vcredist_x64.exe
2017-06-28 22:05 - 2017-06-28 22:05 - 02690840 _____ (Microsoft Corporation) C:\Users\Internet\Downloads\vcredist_x86.exe
2017-06-25 09:48 - 2017-06-25 09:48 - 00000000 ____D C:\Users\regvers\AppData\Local\Packages
2017-06-25 09:48 - 2017-06-25 09:48 - 00000000 ____D C:\Users\regvers
2017-06-23 23:16 - 2017-06-23 23:16 - 00300168 _____ C:\WINDOWS\Minidump\062317-48218-01.dmp
2017-06-21 17:41 - 2017-06-21 17:41 - 00294888 _____ C:\WINDOWS\Minidump\062117-42265-01.dmp
2017-06-20 08:12 - 2017-06-20 08:13 - 00292912 _____ C:\WINDOWS\Minidump\062017-68281-01.dmp
2017-06-15 15:42 - 2017-06-15 15:40 - 00060920 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys
2017-06-13 07:53 - 2017-06-13 07:53 - 00010136 _____ C:\Users\Internet\Desktop\Tryptophan.xlsx
2017-06-13 07:46 - 2017-06-13 07:46 - 00010136 _____ C:\Users\Internet\Documents\Tryptophan.xlsx
2017-06-10 22:55 - 2017-06-10 22:55 - 40633689 _____ C:\Users\Internet\Desktop\doc02397620170610173940.pdf
2017-06-10 11:27 - 2017-06-12 04:43 - 00122447 _____ C:\Users\Internet\Desktop\Apendix.xlsx
2017-06-10 00:19 - 2017-06-11 14:28 - 00097564 _____ C:\Users\Internet\Desktop\boxplots.xlsx
2017-06-05 10:26 - 2017-06-05 10:26 - 00300360 _____ C:\WINDOWS\Minidump\060517-41921-01.dmp
2017-06-01 17:40 - 2017-06-12 22:32 - 00574041 _____ C:\Users\Internet\Desktop\RTI nur average again .xlsx
2017-06-01 10:37 - 2017-06-11 12:31 - 00586210 _____ C:\Users\Internet\Desktop\RTI nur nach Platte again .xlsx
2017-06-01 00:30 - 2017-06-01 00:32 - 00300176 _____ C:\WINDOWS\Minidump\060117-42015-01.dmp
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-06-29 16:33 - 2015-11-15 10:47 - 00000000 ____D C:\FRST
2017-06-29 16:32 - 2016-12-03 23:31 - 02440704 _____ (Farbar) C:\Users\Internet\Desktop\FRST64.exe
2017-06-29 16:32 - 2016-11-16 16:19 - 00000000 ____D C:\Users\Internet\AppData\LocalLow\Mozilla
2017-06-29 08:54 - 2016-01-07 21:51 - 00000000 ____D C:\AdwCleaner
2017-06-29 00:58 - 2014-07-30 23:18 - 00003600 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1112274420-4084008991-2802509019-1003
2017-06-29 00:57 - 2012-07-26 09:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-28 23:42 - 2016-10-08 11:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2017-06-28 23:40 - 2013-08-16 05:16 - 00000000 ____D C:\ProgramData\Package Cache
2017-06-28 23:05 - 2016-09-21 09:37 - 00000000 ____D C:\Users\Internet\AppData\Roaming\vlc
2017-06-27 19:21 - 2013-08-16 05:53 - 00000000 ____D C:\ProgramData\MOCP
2017-06-27 17:34 - 2017-04-04 09:50 - 00000000 ____D C:\Users\Internet\Desktop\Kindergarten
2017-06-27 17:26 - 2015-11-15 10:35 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-27 17:25 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2017-06-27 17:04 - 2015-07-31 21:47 - 00000000 ____D C:\Users\UpdatusUser
2017-06-24 16:32 - 2016-07-24 18:52 - 00000000 ____D C:\Users\Internet\AppData\Local\ElevatedDiagnostics
2017-06-24 16:31 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-06-24 16:24 - 2013-11-28 20:23 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-06-24 16:12 - 2014-11-21 05:35 - 01776918 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-24 16:12 - 2014-11-21 04:45 - 00769864 _____ C:\WINDOWS\system32\perfh007.dat
2017-06-24 16:12 - 2014-11-21 04:45 - 00163456 _____ C:\WINDOWS\system32\perfc007.dat
2017-06-24 16:12 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2017-06-23 23:24 - 2015-07-31 21:47 - 00000000 ____D C:\Users\Internet
2017-06-23 23:16 - 2015-11-09 10:49 - 00000000 ____D C:\WINDOWS\Minidump
2017-06-23 23:15 - 2015-06-12 13:06 - 425061030 _____ C:\WINDOWS\MEMORY.DMP
2017-06-21 17:57 - 2016-07-26 13:38 - 00000000 ____D C:\Users\Internet\AppData\Roaming\Skype
2017-06-21 17:41 - 2013-10-11 18:53 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-06-20 20:33 - 2014-07-31 11:17 - 00000000 ____D C:\Users\Internet\AppData\Local\Adobe
2017-06-20 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-06-20 20:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-06-20 08:27 - 2016-06-28 19:00 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-06-19 23:03 - 2014-04-12 19:09 - 00000000 ____D C:\Users\Internet\AppData\Local\Packages
2017-06-18 15:51 - 2016-09-01 11:22 - 00001680 _____ C:\WINDOWS\Sandboxie.ini
2017-06-17 23:56 - 2016-08-03 09:17 - 00000000 ____D C:\Users\Internet\Desktop\TUM
2017-06-16 07:14 - 2014-08-18 23:57 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2017-06-15 15:40 - 2016-10-08 11:17 - 00038048 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2017-06-15 15:40 - 2016-10-08 11:15 - 00167504 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2017-06-15 15:40 - 2016-10-08 11:15 - 00164824 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2017-06-15 15:06 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-12 04:14 - 2017-03-15 12:24 - 00000000 ____D C:\Users\Internet\Desktop\New folder
2017-06-10 00:19 - 2017-05-24 15:31 - 00812309 _____ C:\Users\Internet\Desktop\RTI nur vor Platte again .xlsx
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2016-07-26 11:31 - 2017-06-29 10:52 - 0190517 _____ () C:\Users\Internet\AppData\Local\CDXLExtendedShim.log
2017-05-14 10:03 - 2017-05-14 10:03 - 0001519 _____ () C:\Users\Internet\AppData\Local\recently-used.xbel
2014-01-13 23:25 - 2014-01-13 23:25 - 0000057 _____ () C:\ProgramData\Ament.ini
2015-07-31 21:32 - 2015-07-31 21:32 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
Einige Dateien in TEMP:
====================
2016-07-24 18:38 - 2016-07-25 00:30 - 0000000 ____D () C:\Users\Internet\AppData\Local\Temp\avgnt.exe
2016-11-20 01:06 - 2017-04-15 09:13 - 8977544 _____ (Sandboxie Holdings, LLC) C:\Users\Internet\AppData\Local\Temp\SandboxieInstall.exe
2016-08-04 14:41 - 2016-08-04 14:42 - 42013312 _____ (Skype Technologies S.A.) C:\Users\Internet\AppData\Local\Temp\SkypeSetup.exe
2013-11-28 02:09 - 2013-11-28 02:09 - 0000000 ____D () C:\Users\TEMP\AppData\Local\Temp\avgnt.exe
2015-11-13 11:20 - 2015-11-13 11:20 - 0000000 ____D () C:\Users\TEMP.Fridolin.000\AppData\Local\Temp\avgnt.exe
2016-07-24 20:10 - 2016-07-25 00:30 - 0000000 ____D () C:\Users\TEMP.Fridolin.002\AppData\Local\Temp\avgnt.exe
2016-07-24 21:27 - 2016-07-25 00:30 - 0000000 ____D () C:\Users\TEMP.Fridolin.003\AppData\Local\Temp\avgnt.exe
2016-07-24 23:33 - 2016-07-25 00:30 - 0000000 ____D () C:\Users\TEMP.Fridolin.005\AppData\Local\Temp\avgnt.exe
2016-07-25 09:50 - 2016-07-25 09:50 - 0000000 ____D () C:\Users\TEMP.Fridolin.006\AppData\Local\Temp\avgnt.exe
2016-07-25 09:58 - 2016-07-25 09:58 - 0000000 ____D () C:\Users\TEMP.Fridolin.007\AppData\Local\Temp\avgnt.exe
2016-07-25 14:38 - 2016-07-25 14:38 - 0000000 ____D () C:\Users\TEMP.Fridolin.013\AppData\Local\Temp\avgnt.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-06-27 18:04
==================== Ende von FRST.txt ============================
Und die Addition.txt: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-06-2017
durchgeführt von Internet (29-06-2017 16:38:47)
Gestartet von C:\Users\Internet\Desktop
Windows 8.1 (Update) (X64) (2015-07-31 20:36:09)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1112274420-4084008991-2802509019-500 - Administrator - Disabled)
Fridolin (S-1-5-21-1112274420-4084008991-2802509019-1002 - Administrator - Enabled) => C:\Users\Fridolin
Gast (S-1-5-21-1112274420-4084008991-2802509019-501 - Limited - Disabled)
Internet (S-1-5-21-1112274420-4084008991-2802509019-1003 - Administrator - Enabled) => C:\Users\Internet
regvers (S-1-5-21-1112274420-4084008991-2802509019-1006 - Administrator - Enabled)
UpdatusUser (S-1-5-21-1112274420-4084008991-2802509019-1001 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Avira Antivirus (Enabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
ABET II (HKLM-x32\...\{173F186E-4D57-4A31-A9DD-093714B8DDD4}) (Version: 2.14.3833 - Lafayette Instrument Company) Hidden
ABET II (HKLM-x32\...\InstallShield_{173F186E-4D57-4A31-A9DD-093714B8DDD4}) (Version: 2.14.3833 - Lafayette Instrument Company)
ACD/Labs Freeware in C:\ACD2015FREE\ (HKLM-x32\...\ACDLabs in C__ACD2015FREE_) (Version: v14.00, FREE - ACD/Labs)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 17.009.20044 - Adobe Systems Incorporated)
Adobe Flash Player 26 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 26.0.0.131 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (HKLM-x32\...\WTA-db237cee-155c-4058-81fa-6d2bceac3a58) (Version: 2.2.0.98 - WildTangent) Hidden
Aloha TriPeaks (HKLM-x32\...\WTA-9fc0c88b-e3a5-4b8a-a56e-5240715801f5) (Version: 2.2.0.98 - WildTangent) Hidden
ANY-maze (HKLM-x32\...\ANY-maze) (Version: - Stoelting Co.)
Audacity 2.0.5 (HKLM-x32\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.27.34 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{14d00649-a178-473f-bf48-eec016dc4bfa}) (Version: 1.2.89.29905 - Avira Operations GmbH & Co. KG)
Avira Connect (HKLM-x32\...\{271D5399-34AF-4611-BCD9-B09185B2BBE0}) (Version: 1.2.89.29905 - Avira Operations GmbH & Co. KG) Hidden
Avira Connect (HKLM-x32\...\{b9b31169-be62-4b82-9e65-d47c99299ba1}) (Version: 1.2.88.24864 - Avira Operations GmbH & Co. KG)
Avogadro (HKLM-x32\...\Avogadro) (Version: 1.1.1 - Humanity)
Azteca (HKLM-x32\...\WTA-a3618980-673d-47a1-b3ad-141604021042) (Version: 2.2.0.97 - WildTangent) Hidden
Behind The Reflection 2: Witch's Revenge (HKLM-x32\...\WTA-094d5935-005c-4832-91c3-82ce5d5fe773) (Version: 3.0.2.32 - WildTangent) Hidden
Bejeweled 3 (HKLM-x32\...\WTA-f052ba80-5b23-43b7-bf5e-b0e7c3e80efa) (Version: 2.2.0.98 - WildTangent) Hidden
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.223.181 - Broadcom Corporation)
Broadcom Wireless Utility (HKLM\...\{4CDA59B9-7AD3-4283-9F5C-BC469FF975B6}) (Version: 6.30.59.125 - Broadcom Corporation)
Bruker Compass DataAnalysis 4.4 (x64) (HKLM\...\{BD64DA44-0001-1000-8123-00E081205B98}) (Version: 4.4.1 - Bruker Corporation)
Build-a-lot: On Vacation (HKLM-x32\...\WTA-e197021d-0593-4937-bb75-9a16b5e5cfa7) (Version: 2.2.0.110 - WildTangent) Hidden
Chuzzle Deluxe (HKLM-x32\...\WTA-813f2743-30a5-4568-8a98-e51a21e183e6) (Version: 2.2.0.95 - WildTangent) Hidden
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.3.05017 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{0BEF117F-BEBD-4948-AF22-210D14736BEC}) (Version: 4.3.05017 - Cisco Systems, Inc.) Hidden
Cut the Rope (HKLM-x32\...\WTA-3ca43a28-b880-4282-915c-8141ac036baa) (Version: 3.0.2.38 - WildTangent) Hidden
CyberLink Power2Go 8 (HKLM-x32\...\InstallShield_{2A87D48D-3FDF-41fd-97CD-A1E370EFFFE2}) (Version: 8.0.0.2529 - CyberLink Corp.)
CyberLink PowerDVD (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.6201.52 - CyberLink Corp.)
dm-Fotowelt (HKLM-x32\...\dm-Fotowelt) (Version: 5.1.6 - CEWE Stiftung u Co. KGaA)
Einstellungen für VAIO Media Server (HKLM\...\{62A172B2-550E-499D-9A82-5190D18390AA}) (Version: 1.1.0.02220 - Sony Corporation)
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 17.6.20762 - Landesfinanzdirektion Thüringen)
Enchanted Cavern 2 (HKLM-x32\...\WTA-ffb0d050-0e95-4e85-be55-39f6cd272902) (Version: 2.2.0.110 - WildTangent) Hidden
ESDL (HKLM-x32\...\{9A2CA016-1C4C-4D44-BF70-C2C8639C34A4}) (Version: 1.0.0 - Sony Corporation) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FATE (HKLM-x32\...\WTA-43513c6f-4b39-4412-8d0a-4449a9d1bba3) (Version: 2.2.0.97 - WildTangent) Hidden
FDUx86 (HKLM-x32\...\{3490653F-2789-46A1-B1BF-6BD4CF4131AB}) (Version: 1.0.0 - Sony Corporation) Hidden
FinePrint (HKLM\...\FinePrint) (Version: 8.16 - FinePrint Software, LLC)
Fishdom 3: Collector's Edition (HKLM-x32\...\WTA-05befb34-4061-4cfa-a373-e21500a461d5) (Version: 3.0.2.38 - WildTangent) Hidden
FOTOParadies (HKLM-x32\...\{FD838798-E2CB-45FA-AF79-6011519031E2}}_is1) (Version: 3.5.7.5 - Foto Online Service GmbH)
Heroes of Hellas 3: Athens (HKLM-x32\...\WTA-aa02a829-9164-4c5a-9764-f6f2287cf8a7) (Version: 3.0.2.32 - WildTangent) Hidden
HP ENVY 4500 series Basic Device Software (HKLM\...\{2369F346-79DE-4D08-8999-AACFF6F41A6F}) (Version: 32.0.1180.44630 - Hewlett-Packard Co.)
HP ENVY 4500 series Help (HKLM-x32\...\{95BECC50-22B4-4FCA-8A2E-BF77713E6D3A}) (Version: 30.0.0 - Hewlett Packard)
HP Photo Creations (HKLM-x32\...\HP Photo Creations) (Version: 1.0.0.16432 - HP)
HP Photo Creations (HKU\S-1-5-21-1112274420-4084008991-2802509019-1001\...\HP Photo Creations) (Version: 1.0.0.18702 - HP)
HP Photo Creations (HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\...\HP Photo Creations) (Version: 1.0.0.18702 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
Intel AppUp(R) center (HKLM-x32\...\Intel AppUp(R) center 41800) (Version: 3.8.0.41800.66 - Intel)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1281 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3958 - Intel Corporation)
Intel(R) PROSet/Wireless NFC-Software (HKLM\...\Intel(R) PROSet/Wireless NFC-Software) (Version: 1.0.1.003 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
KODAK Create@Home Software (für dm) (HKLM-x32\...\{43B8BDF6-13EC-44BE-9EDA-F284C4CA19A6}) (Version: 7.8.1392 - Eastman Kodak Company)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
LibreOffice 4.1.2.3 (HKLM-x32\...\{DD3CB916-F91A-41B9-B276-CAC090E91021}) (Version: 4.1.2.3 - The Document Foundation)
Luxor HD (HKLM-x32\...\WTA-a8c403d8-4350-441a-8aa1-c2fcbb5ce4f2) (Version: 2.2.0.110 - WildTangent) Hidden
Mahjongg Artifacts (HKLM-x32\...\WTA-3e52aefd-c45e-4f2d-911f-76dc373c69d7) (Version: 2.2.0.110 - WildTangent) Hidden
Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
McAfee Parental Controls (HKLM-x32\...\MOCP) (Version: 3.2.226.1 - McAfee, Inc.)
MestReNova 11.0 (HKLM-x32\...\{2B126BAE-8423-30A5-A597-6D2BA4FF235D}) (Version: 11.0.17609 - Mestrelab Research SL)
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.7369.2130 - Microsoft Corporation)
Microsoft Office 365 ProPlus - en-us (HKLM\...\O365ProPlusRetail - en-us) (Version: 16.0.7369.2130 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50906.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
Mozilla Firefox 54.0 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 54.0 (x86 en-US)) (Version: 54.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 54.0.0.6368 - Mozilla)
My Kingdom for the Princess 3 (HKLM-x32\...\WTA-d7454480-9ea3-4723-b898-bb24fc2d8a02) (Version: 2.2.0.110 - WildTangent) Hidden
Mystery of Mortlake Mansion (HKLM-x32\...\WTA-2ed53b67-3a12-40dd-b8b8-aeb132ad8785) (Version: 2.2.0.98 - WildTangent) Hidden
Networkx64 (HKLM\...\{AD1A77F2-5E5F-4A1C-A5C5-74CE7CEC5EC6}) (Version: 1.0.0 - Sony Corporation) Hidden
NirSoft BlueScreenView (HKLM-x32\...\NirSoft BlueScreenView) (Version: - )
No23 Recorder (HKLM-x32\...\{22B0E143-2B0B-435B-9F56-136A3D16065F}) (Version: 2.1.0.3 - No23)
NVIDIA Grafiktreiber 311.46 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 311.46 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.12.1031 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.12.1031 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.7369.2130 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.7369.2130 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.7369.2130 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.7369.2130 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.7369.2130 - Microsoft Corporation) Hidden
PerkinElmer ChemDraw Professional 15.0 (HKLM-x32\...\{F24A1FB2-22FC-4A4E-AD90-9B1196AFFF7E}) (Version: 15.0 - PerkinElmer Informatics, Inc.)
PerkinElmer ChemScript 15.0 (HKLM-x32\...\{2623D946-2CA9-4E69-A6C1-DDFA46C87EFF}) (Version: 15.0 - PerkinElmer Informatics, Inc.)
Plants vs. Zombies - Game of the Year (HKLM-x32\...\WTA-132fb08d-3db2-4847-aaf5-71f8a88cfa3b) (Version: 2.2.0.98 - WildTangent) Hidden
PlayMemories Home (HKLM-x32\...\{1E5C7043-09C5-4974-A69F-A5271FD82BBC}) (Version: 7.0.02.14060 - Sony Corporation)
Polar Bowler (HKLM-x32\...\WTA-d7d87027-6c5f-4d41-b862-b6e2d8a0123d) (Version: 2.2.0.97 - WildTangent) Hidden
Product Improvement Study for HP ENVY 4500 series (HKLM\...\{7D5D56E5-5869-4D0F-8D6C-6291004F9DF2}) (Version: 32.0.1180.44630 - Hewlett-Packard Co.)
Python 2.7.2 (HKLM-x32\...\{2E295B5B-1AD4-4d36-97C2-A316084722CF}) (Version: 2.7.2150 - Python Software Foundation)
Python 3.2 pywin32-217 (HKLM-x32\...\pywin32-py3.2) (Version: - )
Python 3.2.2 (HKLM-x32\...\{4CDE3168-D060-4b7c-BC74-4D8F9BB01AFD}) (Version: 3.2.2150 - Python Software Foundation)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.10.1226.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7177 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{0D61A55C-3ADC-409F-BF5B-A1766D1F5944}) (Version: 6.2.9200.28135 - Realtek Semiconductor Corp.)
Restore (HKLM-x32\...\{ECCEB4D0-7080-4F8A-B498-E40A32A4FBED}) (Version: 1.0.0 - Sony Corporation) Hidden
Rossmann Fotowelt Software 4.13 (HKLM-x32\...\Rossmann Fotowelt Software) (Version: 4.13 - ORWO Net)
Sandboxie 5.18 (64-bit) (HKLM\...\Sandboxie) (Version: 5.18 - Sandboxie Holdings, LLC)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 7.34 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.34.102 - Skype Technologies S.A.)
SSLx64 (HKLM\...\{312395BC-7CC2-434C-A660-30250276A926}) (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (HKLM-x32\...\{63C43435-F428-42BA-8E7B-5848749D9262}) (Version: 1.0.0 - Sony Corporation ) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.5.0 - Synaptics Incorporated)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59518 - TeamViewer)
Update Installer for WildTangent Games App (HKLM-x32\...\{2FA94A64-C84E-49d1-97DD-7BF06C7BBFB2}.WildTangent Games App) (Version: - WildTangent) Hidden
Vacation Quest™ - Australia (HKLM-x32\...\WTA-ea175764-5169-45b7-be67-8d7d572b5763) (Version: 3.0.2.32 - WildTangent) Hidden
VAIO - Xperia Link (HKLM-x32\...\{D91558BF-D1F3-411F-AEFE-8774CB406512}) (Version: 1.3.2.07020 - Sony Corporation)
VAIO BIOS Data Transfer Utility (HKLM-x32\...\{5D772F4A-53DE-4E1F-83F5-B08DFF106C60}) (Version: 1.0.0.02050 - Sony Corporation) Hidden
VAIO Care (HKLM\...\{404D6E7E-948E-4D2E-9540-59550AB59D4F}) (Version: 8.4.5.06026 - Sony Corporation)
VAIO Care Recovery (HKLM\...\{15B9204E-BA09-485E-8F2C-094AC0077664}) (Version: 1.1.2.13230 - Sony Corporation)
VAIO Care-Hardwarediagnose-Plugin (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.8.0.13250 - Sony Corporation)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.2.0.03070 - Sony Corporation)
VAIO Data Restore Tool (HKLM-x32\...\{57B955CE-B5D3-495D-AF1B-FAEE0540BFEF}) (Version: 1.11.0.13250 - Sony Corporation)
VAIO Easy Connect (HKLM-x32\...\{7C80D30A-AC02-4E3F-B95D-29F0E4FF937B}) (Version: 8.2.0.14170 - Sony Corporation) Hidden
VAIO Gesture Control (HKLM-x32\...\{692955F2-DE9F-4078-8FAA-858D6F3A1776}) (Version: 2.2.0.01230 - Sony Corporation)
VAIO Gesture Control (HKLM-x32\...\{9CE67959-AF22-4D93-8D49-CB73F015628E}) (Version: 2.2.0.01230 - Sony Corporation) Hidden
VAIO Image Optimizer (HKLM-x32\...\{5597C927-029A-46A7-A0C0-8DABD9891A50}) (Version: 3.1.00.14260 - Sony Corporation) Hidden
VAIO Image Optimizer (HKLM-x32\...\InstallShield_{5597C927-029A-46A7-A0C0-8DABD9891A50}) (Version: 3.2.00.07040 - Sony Corporation)
VAIO Improvement (HKLM-x32\...\{3A26D9BD-0F73-432D-B522-2BA18138F7EF}) (Version: 2.2.0.01240 - Sony Corporation)
VAIO Movie Creator (HKLM-x32\...\{C2CC5822-32E6-4D21-88EA-DE8CED09EE2F}) (Version: 4.1.01.15140 - Sony Corporation) Hidden
VAIO Movie Creator (HKLM-x32\...\InstallShield_{C2CC5822-32E6-4D21-88EA-DE8CED09EE2F}) (Version: 4.2.00.07040 - Sony Corporation)
VAIO Sample Music (HKLM-x32\...\{FBEE3D44-0933-4B84-BB6A-49957F89187F}) (Version: 1.0.0.03051 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.2.0.16270 - Sony Corporation)
VAIO*CPU-Lüfterdiagnose (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.2.0.03050 - Sony Corporation)
VAIO-Support für Übertragungen (HKLM-x32\...\{5DDAFB4B-C52E-468A-9E23-3B0CEEB671BF}) (Version: 1.9.0.11060 - Sony Corporation)
VCCMMx64 (HKLM\...\{B812401D-BAB2-4E33-9AC7-9862BC8CAF64}) (Version: 1.0.0 - Sony Corporation) Hidden
VCCMMx86 (HKLM-x32\...\{CC87BAAD-AA25-4727-9B7C-E0876722B784}) (Version: 1.0.0 - Sony Corporation) Hidden
VCCx64 (HKLM\...\{25ECAFCB-DCFB-4FCE-A5B2-772A57F59860}) (Version: 1.0.0 - Sony Corporation) Hidden
VCCx64 (HKLM\...\{AB447E3B-7A95-4CA6-8ECD-B25C96314B67}) (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (HKLM-x32\...\{AFDC0CC0-39E8-42C0-9823-2C1C182676DC}) (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (HKLM-x32\...\{B31938C7-7E97-49EE-8F88-951E156268A3}) (Version: 1.0.0 - Sony Corporation) Hidden
VHD (HKLM-x32\...\{9D8112DB-3490-4BF1-AAFA-1D224FFB5D3C}) (Version: 1.0.0 - Sony Corporation) Hidden
Virtual Villagers 5 - New Believers (HKLM-x32\...\WTA-79774b04-75b5-4253-b7f7-a679a5dcf12d) (Version: 3.0.2.32 - WildTangent) Hidden
VIx64 (HKLM\...\{D55EAC07-7207-44BD-B524-0F063F327743}) (Version: 1.0.0 - Sony Corporation) Hidden
VIx86 (HKLM-x32\...\{D17C2A58-E0EA-4DD7-A2D6-C448FD25B6F6}) (Version: 1.0.0 - Sony Corporation) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VPMx64 (HKLM\...\{DBEAA361-F8A4-4298-B41C-9E9DCB9AAB84}) (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx64 (HKLM\...\{4F31AC31-0A28-4F5A-8416-513972DA1F79}) (Version: 1.0.0 - Sony Corporation ) Hidden
VSSTx86 (HKLM-x32\...\{B24BB74E-8359-43AA-985A-8E80C9219C70}) (Version: 1.0.0 - Sony Corporation) Hidden
VUx64 (HKLM\...\{A0A2BE14-D3FF-41C8-9545-4B130E3FE9A4}) (Version: 1.2.0 - Sony Corporation) Hidden
VUx86 (HKLM-x32\...\{D04F1D22-4A47-42C6-A2B9-094A7B844D9B}) (Version: 1.2.0 - Sony Corporation) Hidden
VWSTx86 (HKLM-x32\...\{B8991D99-88FD-41F2-8C32-DB70278D5C30}) (Version: 1.0.0 - Sony Corporation) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{C6D9ED03-6FCF-4410-9CB7-45CA285F9E11}) (Version: 12.0.0.4900 - Broadcom Corporation)
WildTangent Games App (HKLM-x32\...\{70B446D1-E03B-4ab0-9B3C-0832142C9AA8}.WildTangent Games App-sony) (Version: 4.0.10.5 - WildTangent) Hidden
WildTangent-Spiele (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.4.0 - WildTangent)
Winamp (HKLM-x32\...\Winamp) (Version: 5.65 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1112274420-4084008991-2802509019-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
XperiaLinkx86 (HKLM-x32\...\{EE402ACB-8269-4E44-9CA1-D81FDC4B4545}) (Version: 1.0.0 - Sony Corporation) Hidden
Youda Jewel Shop (HKLM-x32\...\WTA-e7fcba0c-c4c1-4049-9dc3-18ade7791853) (Version: 3.0.2.32 - WildTangent) Hidden
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0EFBA741-72C3-4959-AA7D-FEE4B520216C} - System32\Tasks\{159DD28B-2595-4FA9-9AEB-E3F56DC4FE70} => Iexplore.exe hxxps://ui.skype.com/ui/0/7.33.0.104/en/abandoninstall?page=tsProgressBar
Task: {177499DC-E1BC-40F8-B163-F37B3D52433E} - System32\Tasks\Sony Corporation\VAIO Improvement\VAIOImprovementUploader => C:\Program Files\Sony\VAIO Improvement\viuploader.exe [2013-01-24] (Sony Corporation)
Task: {1D40FD7D-4F82-42F8-B7AC-68202664BDA6} - System32\Tasks\Sony Corporation\VAIO Care\UpdateContacts => C:\ProgramData\Sony Corporation\VAIO Care\UpdateContacts.exe
Task: {1DAC6FFE-B29C-46EF-9039-E3248A2B311D} - System32\Tasks\Sony Corporation\VAIO Care\DeployCRMflag => C:\Program Files\Sony\VAIO Care\DeployCRMflag.exe [2016-03-18] (Sony Corporation)
Task: {1FD1E283-7284-4ACD-9072-5DED46B221BA} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcDaily => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation)
Task: {22A7B50C-1BDC-439A-8F55-77581E54A516} - System32\Tasks\Sony Corporation\VAIO Care\VCOneClick => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {2E9C6C11-FED3-4FCC-871E-7747BC6189F0} - System32\Tasks\HP AR Program Upload - 04406544821148d5a476cf627fd720e374ef835606a7447fa2da660b0f32122d => C:\Program Files\HP\HP ENVY 4500 series\bin\HPRewards.exe [2013-08-13] (TODO: <Company name>)
Task: {30E625A3-AE40-4DC7-8F71-22A856B39221} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Daily => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {345CFE00-CFA5-4ED5-A3D4-DFCF5012507E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-05] (Microsoft Corporation)
Task: {3A0E032B-E8C9-4F4D-9384-56E37116694D} - System32\Tasks\Sony Corporation\VAIO Care\VTSvc => C:\Program Files\Sony\VAIO Care\VAIOTM\VTSvc.exe [2016-05-30] (Sony Corporation)
Task: {4149A398-C0CC-4B44-94C3-670D2ED6B4B3} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-04-25] (Adobe Systems Incorporated)
Task: {415FFA99-1501-402B-9467-D15563C1F600} - System32\Tasks\Sony Corporation\VAIO Care\ActiveStatusCollect => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {4318BFF9-B6FE-4033-90E2-1EA584B57890} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2014-11-17] (Sony Corporation)
Task: {4417FE53-FE2E-4465-A843-C4F353C11D6F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-06] (Microsoft Corporation)
Task: {46B3DE5C-57C5-4E55-AB1D-89F1DC0934C7} - System32\Tasks\Sony Corporation\VAIO Care\UpdateSolution => C:\Program Files\Sony\VAIO Care\Solution.Updater.exe [2016-03-24] (Sony Corporation)
Task: {4811362E-EE1E-4B99-8674-1E5DEEA5789C} - System32\Tasks\{9842ACF2-4A17-4ED9-90C7-015322EDF9E4} => Iexplore.exe hxxps://ui.skype.com/ui/0/7.33.0.104/en/abandoninstall?page=tsProgressBar
Task: {576FC0EE-18B6-4D44-9C85-6F1758876196} - System32\Tasks\{DFD981B3-5808-465D-9D78-7F0DA62253BA} => Iexplore.exe hxxps://ui.skype.com/ui/0/7.33.0.104/en/abandoninstall?page=tsProgressBar
Task: {650F3EF9-C1F5-416C-B35E-89A2325AE5C7} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2016-04-25] (Sony Corporation)
Task: {683762F0-85E8-4CA9-89B8-E85E8AF9D540} - System32\Tasks\HPCustParticipation HP ENVY 4500 series => C:\Program Files\HP\HP ENVY 4500 series\Bin\HPCustPartic.exe [2013-08-13] (Hewlett-Packard Co.)
Task: {6ADD9ADF-5561-4206-A845-774653576058} - System32\Tasks\Sony Corporation\VAIO Care\VCMetrics => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {6EEF9789-5140-47EC-B3D4-32FA97F70CB0} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2017-05-06] (Microsoft Corporation)
Task: {6EF9FABE-219F-4B10-B695-A6B96C9EA7C3} - System32\Tasks\HP AR Program Upload - 4af055497ec841ceb36baee3d8fcbd2525ae91588d634534b6226d1a483c79f1 => C:\Program Files\HP\HP ENVY 4500 series\bin\HPRewards.exe [2013-08-13] (TODO: <Company name>)
Task: {7DE3D3C8-1BE8-4376-A4BC-7993D320D7C5} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-1112274420-4084008991-2802509019-1002 => C:\Users\Internet\AppData\Local\Microsoft\OneDrive\OneDrive.exe
Task: {8BA2F1A8-DA15-4164-9430-44AD8E53C7FC} - System32\Tasks\Sony Corporation\VAIO Care\GetSystemInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {908AA828-04DE-4726-B44A-5E6F06656BF5} - System32\Tasks\Sony Corporation\Xperia Link\Xperia Link Logon Start => C:\Program Files (x86)\Sony\Xperia Link\Xperia Link.exe [2014-07-03] (Sony Corporation)
Task: {9470D78C-FACD-4879-AFDB-1D0125859788} - System32\Tasks\{B71BEABB-137F-42F5-AE15-8980C8B0281A} => Firefox.exe hxxp://ui.skype.com/ui/0/7.24.85.104/en/abandoninstall?page=tsBing
Task: {9754E879-81F3-4DA6-89A5-24990619957C} - System32\Tasks\Sony Corporation\VAIO Hardware Diagnostics\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2013-01-25] (Sony Corporation)
Task: {98D87702-F18D-4CD1-87A6-E5B48980DA2E} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2017-05-05] (Microsoft Corporation)
Task: {9CA1062B-993F-4F12-A251-EC052DEDA7C3} - System32\Tasks\HP Photo Creations Communicator => C:\ProgramData\HP Photo Creations\Communicator.exe [2014-11-24] ()
Task: {A0D44D4C-55BE-4E2E-8D9F-82006EDDF499} - System32\Tasks\Sony Corporation\VAIO Care\GetPOTInfo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {A12947B0-C517-4E96-A4B6-B931D07E5647} - System32\Tasks\{EB91CE94-8941-4AAD-82BD-AADABCA3B5E2} => Firefox.exe hxxp://ui.skype.com/ui/0/6.14.0.104/en/abandoninstall?page=tsProgressBar
Task: {A7FCA21B-F914-4338-9420-88D36056BEC5} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\CyberLink\Power2Go8\CLVDLauncher.exe [2012-07-24] (CyberLink Corp.)
Task: {B4ACBEAB-67F1-4BD9-868B-A5884A4EF8D3} - System32\Tasks\Sony Corporation\VAIO Control Center\Level4Month => C:\Program Files (x86)\Sony\VAIO Control Center\WBCBatteryCare.exe [2013-02-02] (Sony Corporation)
Task: {B846BFF8-2601-4053-8458-2EE6C517E94D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2017-05-06] (Microsoft Corporation)
Task: {B9AE7938-3AC2-4B96-983D-02D40810988F} - System32\Tasks\Sony Corporation\VAIO Care\UploadPOT => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {C2EF357A-4D61-4AB1-9DA0-BC038535F2E5} - System32\Tasks\HP AR Program Upload - 78f6139f686f4b948ce54a86592097609d8562e8fd744698ad4b0996ba72ae8b => C:\Program Files\HP\HP ENVY 4500 series\bin\HPRewards.exe [2013-08-13] (TODO: <Company name>)
Task: {C65B0356-31D6-404F-B2D1-1482DE77675F} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2014-11-17] (Sony Corporation)
Task: {C7109A5B-25FF-4A1C-BA11-82691E13F776} - System32\Tasks\Sony Corporation\VAIO Gesture Control\VCGULogonTask => C:\Program Files (x86)\Sony\VAIO Camera Gesture Utility\VCGU.exe [2013-01-23] (Sony Corporation)
Task: {C7B1A190-15F2-4FEF-926B-F090820EC6DE} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2016-03-31] (Sony Corporation)
Task: {CBC694ED-344D-4A8F-BE64-3713F25171C7} - System32\Tasks\Sony Corporation\VAIO Care\VCCheckIolo => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {CDC22B62-08B3-4C3F-B28B-AB52DBE43BB2} - System32\Tasks\Sony Corporation\VAIO Care\VKSvcWeekly => C:\Program Files\Sony\VAIO Care\VAIOTM\VKSvc.exe [2016-05-30] (Sony Corporation)
Task: {D18C1BA8-9069-4E9B-B9F5-778593CDAB2A} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {D213873A-E558-40DE-984F-E9AE52ABE250} - System32\Tasks\Sony Corporation\VAIO Care\VAIO Care => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
Task: {DA1A7C6C-7AED-45A5-B508-05D8E3778BF0} - System32\Tasks\Sony Corporation\VAIO Care\VTUsr => C:\Program Files\Sony\VAIO Care\VAIOTM\VTUsr.exe [2016-05-30] (Sony Corporation)
Task: {DD4FBCA8-101F-4083-BE58-6F129312E0DC} - System32\Tasks\HP AR Program Upload - 99d17595a0fd4be69e1aaaf3aacdb36b916ef2c8c3914bb5abdb29856180c851 => C:\Program Files\HP\HP ENVY 4500 series\bin\HPRewards.exe [2013-08-13] (TODO: <Company name>)
Task: {F7CDFFAA-739C-4492-922A-D67F72BD937A} - System32\Tasks\Sony Corporation\VAIO Care\VCRLog => C:\Program Files\Sony\VAIO Care\VCSystemTray.exe [2016-05-31] (Sony Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\HP Photo Creations Communicator.job => C:\ProgramData\HP Photo Creations\Communicator.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-09-05 02:36 - 2013-09-05 02:36 - 00013088 _____ () C:\Program Files\NVIDIA Corporation\CoProcManager\detoured.dll
2016-06-12 14:20 - 2017-05-06 01:05 - 08923840 _____ () C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\1033\GrooveIntlResource.dll
2013-08-16 05:17 - 2013-01-23 11:26 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-11-30 23:34 - 2017-05-16 22:59 - 03593920 _____ () C:\Program Files (x86)\Microsoft Office\Root\Office16\gfx.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 _____ C:\WINDOWS\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1112274420-4084008991-2802509019-1001\Control Panel\Desktop\\Wallpaper ->
HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Sony\VAIO 13 img1 Wallpaper 1366x768.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\Services: BthHFSrv => 3
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: btwdins => 2
MSCONFIG\Services: ESRV_SVC => 2
MSCONFIG\Services: GamesAppIntegrationService => 2
MSCONFIG\Services: GamesAppService => 3
MSCONFIG\Services: McComponentHostServiceSony => 3
MSCONFIG\Services: USER_ESRV_SVC => 3
HKLM\...\StartupApproved\StartupFolder: => "McAfee Parental Controls.lnk"
HKLM\...\StartupApproved\Run: => "Bluetooth"
HKLM\...\StartupApproved\Run32: => "mcpltui_exe"
HKLM\...\StartupApproved\Run32: => "mcui_exe"
HKLM\...\StartupApproved\Run32: => "PMBVolumeWatcher"
HKU\S-1-5-21-1112274420-4084008991-2802509019-1003\...\StartupApproved\Run: => "Skype"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{17F1A580-43B0-4DB1-A227-53B175ED6E79}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{93946D29-D8B0-46DB-B8D8-A4341F61F3EF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{70290813-07E0-438F-8FFF-847F1207D68F}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{DB17960E-7B23-4A47-9C7E-0A0E8E2E96C6}] => (Allow) C:\Program Files\Common Files\mcafee\Platform\McSvcHost\McSvHost.exe
FirewallRules: [{707AC9B9-655E-4306-A549-91B7DF3A5A57}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{7279BA07-84A6-46BB-AF49-44EAF9185803}] => (Allow) LPort=5357
FirewallRules: [{CD308BB5-0851-4332-BEF6-5C6AEF1B9A07}] => (Allow) C:\Program Files\HP\HP ENVY 4500 series\Bin\DeviceSetup.exe
FirewallRules: [{6ECD09A9-ED44-4091-AB1F-C9C9662931FB}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{64BAB53B-1B74-4F93-9B02-E818F6E06F06}] => (Allow) C:\Program Files (x86)\Winamp\winamp.exe
FirewallRules: [{2564F8B7-3CD7-4961-99BA-13A0C0E2E845}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{6D2B64C5-23B0-45E7-BE8A-D3909EFEB4D6}] => (Allow) C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe
FirewallRules: [{B70B626F-1F1B-4534-B78A-3067FFE6038F}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{F1B09C68-B9A2-49D5-8D72-0E4637BCF2A2}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{D58DBCB6-B9BC-4B38-9BB2-DD636045ADAE}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{E26096CD-3B48-4E54-BDA3-4EE281DECC1C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AB35E542-8CDF-4B87-953B-1EE1CEC0C07B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AAA38A4B-4178-4987-8015-21FCA55797D6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{25923EB9-C053-4F7F-B933-54591A1CA637}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{461C159C-4A2B-4A6F-8D74-F435270BEF01}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{5DDB82FE-AAB7-4A09-AFDC-8BB61388E66C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{4C76FC12-4D52-417E-89D5-93D0929E7DDC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{DCB2273A-867F-44DD-8242-E88EDD4005BA}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{38C9E153-BBBE-4F18-A80A-42BF6518B1B3}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{4487EE82-C92C-4E00-9D35-CF8F01FC12B6}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [TCP Query User{B1B678CA-4825-4774-81FC-295C4DED3450}C:\program files (x86)\cambridgesoft\chemoffice2015\chemdraw\chemdraw.exe] => (Block) C:\program files (x86)\cambridgesoft\chemoffice2015\chemdraw\chemdraw.exe
FirewallRules: [UDP Query User{13A52C97-7BF6-47AE-90C6-B33950C46711}C:\program files (x86)\cambridgesoft\chemoffice2015\chemdraw\chemdraw.exe] => (Block) C:\program files (x86)\cambridgesoft\chemoffice2015\chemdraw\chemdraw.exe
FirewallRules: [{8ECC8844-C293-4968-BDF9-2CEF1A36C688}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{F10F10C5-EBE0-45AD-A742-C6DF1377AD27}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAgent.exe
FirewallRules: [{56017C75-29B3-4A5F-A5ED-71DD2E062E91}] => (Allow) C:\Program Files\Sony\VAIO Care\VCAdmin.exe
FirewallRules: [{2699A137-ED12-46F0-8561-19D9397C0F0F}] => (Allow) C:\Program Files\Sony\VAIO Care\VCSystemTray.exe
FirewallRules: [{13D0375B-04C8-41D1-A517-C9CEA7743441}] => (Allow) C:\Program Files\Sony\VAIO Care\VAIOShell.exe
==================== Wiederherstellungspunkte =========================
24-06-2017 23:32:28 Geplanter Prüfpunkt
27-06-2017 17:12:51 Removed Microsoft Visual C++ 2005 Redistributable
28-06-2017 22:01:36 Removed Microsoft Visual C++ 2005 Redistributable (x64)
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Bluetooth-Gerät (PAN)
Description: Bluetooth Device (Personal Area Network)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (06/29/2017 10:52:06 AM) (Source: Microsoft Office 16) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {F39A9856-D316-4777-A575-9878C9C83520}
Error: (06/29/2017 10:52:06 AM) (Source: Microsoft Office 16) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {F39A9856-D316-4777-A575-9878C9C83520}
Error: (06/29/2017 02:21:37 AM) (Source: Microsoft Office 16) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {149BCF30-A1EF-43C6-B633-C85A0343A151}
Error: (06/29/2017 02:21:37 AM) (Source: Microsoft Office 16) (EventID: 2011) (User: )
Description: Office Subscription licensing exception: Error Code: 0x803D0010; CorrelationId: {149BCF30-A1EF-43C6-B633-C85A0343A151}
Error: (06/28/2017 11:35:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DataAnalysis.exe, version: 4.4.102.47, time stamp: 0x55dce5a0
Faulting module name: ntdll.dll, version: 6.3.9600.18438, time stamp: 0x57ae642e
Exception code: 0xc0150004
Fault offset: 0x00000000000ecdd0
Faulting process ID: 0xe90
Faulting application start time: 0x01d2f0565efbb726
Faulting application path: C:\Program Files\Bruker Daltonik\DataAnalysis\4.4\DataAnalysis.exe
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report ID: bf74fda4-5c49-11e7-8166-78843c3528c1
Faulting package full name:
Faulting package-relative application ID:
Error: (06/28/2017 11:04:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: DataAnalysis.exe, version: 4.4.102.47, time stamp: 0x55dce5a0
Faulting module name: ntdll.dll, version: 6.3.9600.18438, time stamp: 0x57ae642e
Exception code: 0xc0150004
Fault offset: 0x00000000000ecdd0
Faulting process ID: 0xd88
Faulting application start time: 0x01d2f052301ad038
Faulting application path: C:\Program Files\Bruker Daltonik\DataAnalysis\4.4\DataAnalysis.exe
Faulting module path: C:\WINDOWS\SYSTEM32\ntdll.dll
Report ID: 7051beb2-5c45-11e7-8166-78843c3528c1
Faulting package full name:
Faulting package-relative application ID:
Error: (06/28/2017 10:23:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OfficeClickToRun.exe, version: 16.0.7369.1373, time stamp: 0x590d51fe
Faulting module name: OfficeClickToRun.exe, version: 16.0.7369.1373, time stamp: 0x590d51fe
Exception code: 0x00000000
Fault offset: 0x000000000002a168
Faulting process ID: 0x1600
Faulting application start time: 0x01d2f04c588b23c8
Faulting application path: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
Faulting module path: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
Report ID: 9648604f-5c3f-11e7-8166-78843c3528c1
Faulting package full name:
Faulting package-relative application ID:
Error: (06/28/2017 10:22:54 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OfficeClickToRun.exe, version: 16.0.7369.1373, time stamp: 0x590d51fe
Faulting module name: OfficeClickToRun.exe, version: 16.0.7369.1373, time stamp: 0x590d51fe
Exception code: 0x00000000
Fault offset: 0x000000000002a168
Faulting process ID: 0x1ea0
Faulting application start time: 0x01d2f04c52ac1076
Faulting application path: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
Faulting module path: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
Report ID: 90884ae3-5c3f-11e7-8166-78843c3528c1
Faulting package full name:
Faulting package-relative application ID:
Error: (06/28/2017 10:21:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OfficeC2RClient.exe, version: 16.0.7369.1373, time stamp: 0x590d51fe
Faulting module name: OfficeC2RClient.exe, version: 16.0.7369.1373, time stamp: 0x590d51fe
Exception code: 0x00000000
Fault offset: 0x0000000000043d08
Faulting process ID: 0xd44
Faulting application start time: 0x01d2f04c22304508
Faulting application path: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe
Faulting module path: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe
Report ID: 600c8098-5c3f-11e7-8166-78843c3528c1
Faulting package full name:
Faulting package-relative application ID:
Error: (06/28/2017 10:21:21 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application name: OfficeClickToRun.exe, version: 16.0.7369.1373, time stamp: 0x590d51fe
Faulting module name: OfficeClickToRun.exe, version: 16.0.7369.1373, time stamp: 0x590d51fe
Exception code: 0x00000000
Fault offset: 0x000000000002a168
Faulting process ID: 0x1fbc
Faulting application start time: 0x01d2f04c1b6fa4a9
Faulting application path: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
Faulting module path: C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
Report ID: 5931a60c-5c3f-11e7-8166-78843c3528c1
Faulting package full name:
Faulting package-relative application ID:
Systemfehler:
=============
Error: (06/29/2017 04:19:18 PM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: A corruption was discovered in the file system structure on volume ??.
Die genaue Art der Beschädigung ist unbekannt. Die Dateisystemstrukturen müssen online überprüft werden.
Error: (06/29/2017 03:33:30 PM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: A corruption was discovered in the file system structure on volume ??.
Die genaue Art der Beschädigung ist unbekannt. Die Dateisystemstrukturen müssen online überprüft werden.
Error: (06/29/2017 03:33:27 PM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: A corruption was discovered in the file system structure on volume ??.
Die genaue Art der Beschädigung ist unbekannt. Die Dateisystemstrukturen müssen online überprüft werden.
Error: (06/29/2017 12:55:36 PM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: A corruption was discovered in the file system structure on volume ??.
Die genaue Art der Beschädigung ist unbekannt. Die Dateisystemstrukturen müssen online überprüft werden.
Error: (06/29/2017 12:37:58 PM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: A corruption was discovered in the file system structure on volume ??.
Die genaue Art der Beschädigung ist unbekannt. Die Dateisystemstrukturen müssen online überprüft werden.
Error: (06/29/2017 10:57:33 AM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: A corruption was discovered in the file system structure on volume ??.
Die genaue Art der Beschädigung ist unbekannt. Die Dateisystemstrukturen müssen online überprüft werden.
Error: (06/29/2017 10:30:55 AM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: A corruption was discovered in the file system structure on volume ??.
Die genaue Art der Beschädigung ist unbekannt. Die Dateisystemstrukturen müssen online überprüft werden.
Error: (06/29/2017 10:13:36 AM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: A corruption was discovered in the file system structure on volume ??.
Die Masterdateitabelle (MFT) beinhaltet einen beschädigten Dateidatensatz. Die Dateireferenznummer ist 0xe000000021771. Der Name der Datei ist "<Dateiname kann nicht bestimmt werden>".
Error: (06/29/2017 10:09:29 AM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: A corruption was discovered in the file system structure on volume ??.
Die genaue Art der Beschädigung ist unbekannt. Die Dateisystemstrukturen müssen online überprüft werden.
Error: (06/29/2017 12:39:20 AM) (Source: Ntfs) (EventID: 55) (User: NT-AUTORITÄT)
Description: A corruption was discovered in the file system structure on volume ??.
Die genaue Art der Beschädigung ist unbekannt. Die Dateisystemstrukturen müssen online überprüft werden.
CodeIntegrity:
===================================
Date: 2016-12-07 08:25:48.264
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\iertutil.dll that did not meet the Windows signing level requirements.
Date: 2016-12-07 08:25:47.420
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\iertutil.dll that did not meet the Windows signing level requirements.
Date: 2016-12-07 08:25:46.561
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\iertutil.dll that did not meet the Windows signing level requirements.
Date: 2016-12-07 08:25:45.608
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\iertutil.dll that did not meet the Windows signing level requirements.
Date: 2016-12-07 08:25:44.936
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\iertutil.dll that did not meet the Windows signing level requirements.
Date: 2016-12-07 08:25:44.186
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\iertutil.dll that did not meet the Windows signing level requirements.
Date: 2016-12-07 08:25:43.420
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\iertutil.dll that did not meet the Windows signing level requirements.
Date: 2016-12-07 08:25:42.733
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\iertutil.dll that did not meet the Windows signing level requirements.
Date: 2016-12-07 08:25:41.842
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\iertutil.dll that did not meet the Windows signing level requirements.
Date: 2016-12-07 08:25:41.170
Description: Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Windows\System32\iertutil.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Pentium(R) CPU 2117U @ 1.80GHz
Prozentuale Nutzung des RAM: 52%
Installierter physikalischer RAM: 3974.8 MB
Verfügbarer physikalischer RAM: 1889.72 MB
Summe virtueller Speicher: 8070.8 MB
Verfügbarer virtueller Speicher: 4301.68 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:437.6 GB) (Free:39.35 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 640B1719)
Partition: GPT.
==================== Ende von Addition.txt ============================
|
FRST 32-Bit | FRST 64-Bit
Lesestoff:
Revo Uninstaller (alternativ portable Revo Uninstaller) herunter.
SecurityCheck und:
dann auf 
und dann auf 
. 
