| |
| |||||||
Log-Analyse und Auswertung: Windows7: PDFs in Inbox kaputt, Amazon Downloader nicht deinstallierbarWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
20.10.2015, 16:17
| #1 |
 |  Windows7: PDFs in Inbox kaputt, Amazon Downloader nicht deinstallierbar Hallo, es geht um den PC meines Schwiegervaters, der sich seit einigen Tagen komisch verhält: - PDF Dateien im Outlook Posteingang sind kaputt (unvollständig, ein beträchtlicher Teil wird abgeschnitten), gleicher Effekt wenn man PDFs herunterlädt; im Firefox mit PDF.js kann man PDFs aber noch anschauen. - beim Booten kommt eine Fehlermeldung vom Amazon MP3-Downloader Installer NSIS:  - man kann den Amazon MP3-Downloader nicht deinstallieren (da kommt die gleiche Meldung) - mit MS Paint kann man keine Bilder speichern (ist mir eben beim Screenshot-Speichern aufgefallen, mit IrfanView geht es aber), egal wo (weder C: noch auf dem USB-Stick) - in der Browserhistory sind eine Menge ominöser EXE Downloads, an die sich mein Schwiegervater nicht erinnern kann - die Load ist generell recht hoch, Lüfter läuft praktisch immer Hier die Logs: Defogger hat kein Log erzeugt, nur ein defogger_disable.log mit binärem Inhalt, hier der Hexdump, falls das was hilft: Code:
ATTFilter 0000000 0064 0065 0066 006f 0067 0067 0065 0072
0000010 005f 0064 0069 0073 0061 0062 006c 0065
0000020 0020 0062 0079 0020 006a 0070 0073 0068
0000030 006f 0072 0074 0073 0074 0075 0066 0066
0000040 0020 0028 0032 0033 002e 0030 0032 002e
0000050 0031 0030 002e 0031 0029 000d 000a 004c
0000060 006f 0067 0020 0063 0072 0065 0061 0074
0000070 0065 0064 0020 0061 0074 0020 0031 0036
0000080 003a 0031 0035 0020 006f 006e 0020 0032
0000090 0030 002f 0031 0030 002f 0032 0030 0031
00000a0 0035 0020 0028 0047 00fc 006e 0074 0065
00000b0 0072 0020 0052 0069 0065 0077 0065 0073
00000c0 0065 006c 0029 000d 000a 000d 000a 0043
00000d0 0068 0065 0063 006b 0069 006e 0067 0020
00000e0 0066 006f 0072 0020 0061 0075 0074 006f
00000f0 0073 0074 0061 0072 0074 0020 0076 0061
0000100 006c 0075 0065 0073 002e 002e 002e 000d
0000110 000a 0048 004b 0043 0055 005c 007e 005c
0000120 0052 0075 006e 0020 0076 0061 006c 0075
0000130 0065 0073 0020 0072 0065 0074 0072 0069
0000140 0065 0076 0065 0064 002e 000d 000a 0048
0000150 004b 004c 004d 005c 007e 005c 0052 0075
0000160 006e 0020 0076 0061 006c 0075 0065 0073
0000170 0020 0072 0065 0074 0072 0069 0065 0076
0000180 0065 0064 002e 000d 000a 000d 000a 0043
0000190 0068 0065 0063 006b 0069 006e 0067 0020
00001a0 0066 006f 0072 0020 0073 0065 0072 0076
00001b0 0069 0063 0065 0073 002f 0064 0072 0069
00001c0 0076 0065 0072 0073 002e 002e 002e 000d
00001d0 000a 000d 000a 000d 000a 002d 003d 0045
00001e0 002e 004f 002e 0046 003d 002d
00001ec
FRST.txt: FRST Logfile: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x86) Version:18-10-2015
durchgeführt von Günter Meier (Administrator) auf GÜNTER-PC (20-10-2015 16:17:13)
Gestartet von E:\winguenter\bin
Geladene Profile: Günter Meier (Verfügbare Profile: Günter Meier & UpdatusUser)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: "C:\Program Files\Deutsche Telekom AG\Browser 7\Browser7.exe" -osint -url "%1")
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(G Data Software AG) C:\Program Files\Common Files\G DATA\GDScan\GDScan.exe
(G Data Software AG) C:\Program Files\G DATA\InternetSecurity\AVK\AVKWCtl.exe
(G Data Software AG) C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe
(G Data Software AG) C:\Program Files\G DATA\InternetSecurity\AVK\AVKService.exe
(Apple Computer, Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Protexis Inc.) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(G Data Software AG) C:\Program Files\G DATA\InternetSecurity\AVKTray\AVKTray.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(G Data Software AG) C:\Program Files\Common Files\G DATA\AVKProxy\GDKBFltExe32.exe
(simplitec GmbH) C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe
(Star Finanz-Software Entwicklung und Vertriebs GmbH) C:\Program Files\StarMoney 10\ouservice\StarMoneyOnlineUpdate.exe
(Star Finanz-Software Entwicklung und Vertriebs GmbH) C:\Program Files\StarMoney 9.0\ouservice\StarMoneyOnlineUpdate.exe
() C:\Program Files\Amazon Browser Bar\ToolbarUpdaterService.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
(G DATA Software AG) C:\Program Files\G DATA\InternetSecurity\Firewall\GDFirewallTray.exe
() C:\Program Files\Amazon Browser Bar\search_protect.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Omega Partners Ltd) C:\Program Files\AppGraffiti\AppGraffiti.exe
(G Data Software AG) C:\Program Files\G DATA\InternetSecurity\Firewall\GDFwSvc.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [868352 2006-12-18] (Analog Devices, Inc.)
HKLM\...\Run: [Performance Center] => C:\Program Files\Ascentive\Performance Center\APCMain.exe -m
HKLM\...\Run: [GDFirewallTray] => C:\Program Files\G Data\InternetSecurity\Firewall\GDFirewallTray.exe [1855608 2015-02-20] (G DATA Software AG)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2565520 2011-03-14] (CANON INC.)
HKLM\...\Winlogon: [Userinit] C:\Windows\system32\userinit.exe,C:\Program Files\G Data\InternetSecurity\AVKTray\AVKTray.exe
Winlogon\Notify\ScCertProp: wlnotify.dll [X]
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\Run: [ehTray.exe] => C:\Windows\ehome\ehTray.exe [144384 2010-11-20] (Microsoft Corporation)
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\Run: [Performance Center] => C:\Program Files\Ascentive\Performance Center\ApcMain.exe -m
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\Run: [AGupdate] => C:\Program Files\AppGraffiti\AGupdate.exe [894048 2013-03-19] (Omega Partners Ltd)
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\Run: [AmazonMP3DownloaderHelper] => C:\Windows\system32\config\systemprofile\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [397632 2013-04-05] ()
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\Run: [AppGraffiti] => C:\Program Files\AppGraffiti\AppGraffiti.exe [1220544 2015-06-25] (Omega Partners Ltd)
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\MountPoints2: E - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\MountPoints2: {d03db3b6-1d03-11e2-a160-001bfcd9fd0e} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\MountPoints2: {e9dbfc9b-1cfd-11e2-a85b-0000fcd9fd0e} - E:\.\Setup.exe AUTORUN=1
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\MountPoints2: {e9dbfcc7-1cfd-11e2-a85b-0000fcd9fd0e} - E:\.\Setup.exe AUTORUN=1
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => Keine Datei
Startup: C:\Users\Günter Meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2015-08-05]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 06 C:\Program Files\Bonjour\mdnsNSP.dll [94208 2006-02-28] (Apple Computer, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{92B1362F-D2B4-4AA3-8BF2-48D0F0646CDB}: [DhcpNameServer] 192.168.2.1 192.168.2.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkId=56626&homepage=hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\Software\Microsoft\Internet Explorer\Main,ICQ Search = hxxp://www.icq.com/search/results.php?q={searchTerms}&ch_id=osd
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.google.com/ie
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p08_serp_ie_de_display?ie=UTF8&tagbase=bds-p08&tbrId=v1_abb-channel-8_ad305e1609dc46fab7cd8417379de292_1036_1068_20150810_DE_ie_sp_
SearchScopes: HKU\.DEFAULT -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-3597727890-3998022267-917300989-1000 -> DefaultScope {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p08_serp_ie_de_display?ie=UTF8&tagbase=bds-p08&tag=bds-p08-serp-de-ie-21&tbrId=v1_abb-channel-8_ad305e1609dc46fab7cd8417379de292_1036_1068_20150810_DE_ie_ds_&query={searchTerms}
SearchScopes: HKU\S-1-5-21-3597727890-3998022267-917300989-1000 -> {05C72334-11F3-4e9f-8740-98128F52EFB9} URL = hxxp://google.ie7pro.com/search?q={searchTerms}&ie={inputEncoding}&oe={outputEncoding}
SearchScopes: HKU\S-1-5-21-3597727890-3998022267-917300989-1000 -> {B3B3A6AC-74EC-BD56-BCDB-EFA4799FB9DF} URL = hxxp://www.amazon.de/gp/bit/amazonserp/ref=bit_bds-p08_serp_ie_de_display?ie=UTF8&tagbase=bds-p08&tag=bds-p08-serp-de-ie-21&tbrId=v1_abb-channel-8_ad305e1609dc46fab7cd8417379de292_1036_1068_20150810_DE_ie_ds_&query={searchTerms}
SearchScopes: HKU\S-1-5-21-3597727890-3998022267-917300989-1000 -> {BE9654C9-9D79-42ec-B55A-3CAEB12DBF58} URL = hxxp://www.icq.com/search/results.php?q={searchTerms}&ch_id=osd
SearchScopes: HKU\S-1-5-21-3597727890-3998022267-917300989-1000 -> {CB779390-9FC4-4A00-B031-3CD9A1C8A67A} URL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
SearchScopes: HKU\S-1-5-21-3597727890-3998022267-917300989-1000 -> {CFF4DB9B-135F-47c0-9269-B4C6572FD61A} URL = hxxp://mystart.incredimail.com/?search={searchTerms}&loc=search_box_fs
BHO: Kein Name -> {11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5} -> C:\Program Files\SiteRanker\SiteRank.dll [2012-12-06] (Crawler, LLC)
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2015-09-29] (Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08] (CANON INC.)
BHO: AppGraffiti -> {6F6A5334-78E9-4D9B-8182-8B41EA8C39EF} -> C:\Program Files\AppGraffiti\AppGraffiti.dll [2015-06-25] (Omega Partners Ltd)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL [2014-01-23] (Microsoft Corporation)
BHO: Kein Name -> {CCB69577-088B-4004-9ED8-FF5BCC83A039} -> Keine Datei
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2015-09-15] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-08-03] (Sun Microsystems, Inc.)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08] (CANON INC.)
Toolbar: HKU\S-1-5-21-3597727890-3998022267-917300989-1000 -> Kein Name - {855F3B16-6D32-4FE6-8A56-BBB695989046} - Keine Datei
Toolbar: HKU\S-1-5-21-3597727890-3998022267-917300989-1000 -> Yahoo! Toolbar mit Pop-Up-Blocker - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - Keine Datei
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2015-02-17] (Microsoft Corporation)
Handler: rebinfo - {AF808758-C780-404C-A4EE-4526323FD9B6} - Keine Datei
FireFox:
========
FF ProfilePath: C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default
FF DefaultSearchEngine: MyStart Suche
FF DefaultSearchUrl: hxxp://search.yahoo.com/search?ei=UTF-8&fr=ytff-&p=
FF SelectedSearchEngine: Inbox Suchen
FF Homepage: hxxp://www.inbox.com/homepage.aspx?tbid=80772&iwk=293&lng=de
FF Keyword.URL: hxxp://mystart.incredimail.com/?loc=ff_address_bar&search=
FF NetworkProxy: "no_proxies_on", "*.local"
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_17_0_0_190.dll [2015-06-26] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2011-04-20] (CANON INC.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [2011-05-04] (Sun Microsystems, Inc.)
FF Plugin: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-03-31] (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-01-18] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-01-18] (NVIDIA Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll [2013-12-23] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 -> c:\program files\real\realplayer\Netscape6\nprpplugin.dll [2013-12-23] (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin: yaxmpb@yahoo.com/YahooActiveXPluginBridge;version=1.0.0.1 -> C:\Program Files\Yahoo!\Common\npyaxmpb.dll [2006-11-03] (Yahoo! Inc.)
FF Plugin HKU\S-1-5-21-3597727890-3998022267-917300989-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-3597727890-3998022267-917300989-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-09-02] (Google Inc.)
FF Plugin HKU\S-1-5-21-3597727890-3998022267-917300989-1000: amazon.com/AmazonMP3DownloaderPlugin -> C:\Windows\system32\config\systemprofile\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-04-16] (Amazon.com, Inc.)
FF user.js: detected! => C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default\user.js [2014-11-30]
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2011-05-04] (Sun Microsystems, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npLegitCheckPlugin.dll [2008-06-27] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npMeetingJoinPluginOC.dll [2015-03-31] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\NPOFF12.DLL [2006-10-26] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npOGAPlugin.dll [2009-08-03] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2014-09-12] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppl3260.dll [2013-12-23] (RealNetworks, Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nprpplugin.dll [2013-12-23] (RealPlayer)
FF SearchPlugin: C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default\searchplugins\inbox-search.xml [2014-02-03]
FF SearchPlugin: C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default\searchplugins\MyStart Search.xml [2011-02-07]
FF Extension: AppGraffiti - C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default\Extensions\AppGraffiti@AppGraffiti.com [2013-01-04] [ist nicht signiert]
FF Extension: Microsoft .NET Framework Assistant - C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2010-04-27] [ist nicht signiert]
FF Extension: Yahoo! Toolbar - C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default\Extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [2010-08-18] [ist nicht signiert]
FF Extension: Blue Ice 2 - C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default\Extensions\{a8dd47cf-239f-48c4-8379-e6b4cbafdcfa} [2008-08-04] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-03-11] [ist nicht signiert]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: RealDownloader - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2013-12-23] [ist nicht signiert]
FF Extension: Kein Name - C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default\extensions\AppGraffiti@AppGraffiti.com [nicht gefunden]
FF Extension: Kein Name - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [nicht gefunden]
FF Extension: Kein Name - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [nicht gefunden]
FF Extension: Kein Name - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [nicht gefunden]
FF Extension: Kein Name - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} [nicht gefunden]
FF Extension: Kein Name - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} [nicht gefunden]
FF Extension: Kein Name - C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [nicht gefunden]
FF Extension: Kein Name - C:\Users\Günter Meier\AppData\Roaming\Mozilla\Firefox\Profiles\ywlhf9be.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1} [nicht gefunden]
Chrome:
=======
CHR Profile: C:\Users\Günter Meier\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (AppGraffiti - Free Facebook Layouts) - C:\Users\Günter Meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\angobeimajilfhlcpeiccndaifchnppl [2013-03-06]
CHR Extension: (RealPlayer HTML5Video Downloader Extension) - C:\Users\Günter Meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk [2011-04-01]
CHR Extension: (RebateInformer) - C:\Users\Günter Meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\odbbfaealmlpnodchplhdomkgpdkeeal [2013-03-06]
CHR HKLM\...\Chrome\Extension: [angobeimajilfhlcpeiccndaifchnppl] - C:\Program Files\AppGraffiti\Chrome\graff_chr.crx [2012-12-20]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]
==================== Dienste (Nicht auf der Ausnahmeliste) ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AVKProxy; C:\Program Files\Common Files\G DATA\AVKProxy\AVKProxy.exe [2528888 2015-04-16] (G Data Software AG)
R2 AVKService; C:\Program Files\G Data\InternetSecurity\AVK\AVKService.exe [965240 2015-02-20] (G Data Software AG)
R2 AVKWCtl; C:\Program Files\G DATA\InternetSecurity\AVK\AVKWCtl.exe [2876888 2015-04-07] (G Data Software AG)
R2 Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [Datei ist nicht signiert]
S3 Browser7Maintenance; C:\Program Files\Browser 7 Maintenance Service\maintenanceservice.exe [148792 2015-08-20] (Deutsche Telekom AG)
S3 FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2007-12-08] (Macrovision Europe Ltd.) [Datei ist nicht signiert]
R3 GDFwSvc; C:\Program Files\G DATA\InternetSecurity\Firewall\GDFwSvc.exe [2539560 2015-02-20] (G Data Software AG)
R3 GDScan; C:\Program Files\Common Files\G DATA\GDScan\GDScan.exe [789112 2015-03-04] (G Data Software AG)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert]
S3 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [61440 2006-12-14] (Hewlett-Packard Company) [Datei ist nicht signiert]
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
R2 StarMoney 10 OnlineUpdate; C:\Program Files\StarMoney 10\ouservice\StarMoneyOnlineUpdate.exe [688784 2015-07-27] (Star Finanz-Software Entwicklung und Vertriebs GmbH)
S4 StarMoney 7.0 OnlineUpdate; C:\Program Files\StarMoney 7.0\ouservice\StarMoneyOnlineUpdate.exe [554160 2011-11-08] (Star Finanz - Software Entwicklung und Vertriebs GmbH)
R2 StarMoney 9.0 OnlineUpdate; C:\Program Files\StarMoney 9.0\ouservice\StarMoneyOnlineUpdate.exe [697488 2014-07-04] (Star Finanz-Software Entwicklung und Vertriebs GmbH)
S4 TeamViewer; C:\Program Files\TeamViewer3\TeamViewer_Host.exe [90112 2007-11-29] () [Datei ist nicht signiert]
R2 Updater Service for AMZN; C:\Program Files\Amazon Browser Bar\ToolbarUpdaterService.exe [222368 2013-03-21] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R0 GDBehave; C:\Windows\System32\drivers\GDBehave.sys [108032 2015-04-07] (G Data Software AG)
R3 GDKBB; C:\Windows\system32\drivers\GDKBB32.sys [24192 2015-04-07] (G Data Software AG)
R1 GDKBFlt; C:\Windows\system32\drivers\GDKBFlt32.sys [20352 2015-04-07] (G Data Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [161792 2015-04-07] (G Data Software AG)
S3 GdNetMon; C:\Windows\system32\drivers\GdNetMon32.sys [29400 2011-07-31] (G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [73216 2015-04-07] (G Data Software AG)
R1 gdwfpcd; C:\Windows\System32\drivers\gdwfpcd32.sys [53248 2015-07-12] (G Data Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [29528 2015-09-17] (G Data Software)
S1 HCW88AUD; C:\Windows\System32\drivers\hcw88aud.sys [11904 2007-01-23] (Hauppauge Computer Works, Inc)
S3 HCW88BDA; C:\Windows\System32\drivers\hcw88bda.sys [207872 2007-01-23] (Hauppauge Computer Works, Inc)
S3 HCW88TSE; C:\Windows\System32\drivers\hcw88tse.sys [299776 2007-01-23] (Hauppauge Computer Works, Inc)
S3 HCW88TUNE; C:\Windows\System32\drivers\hcw88tun.sys [149504 2007-01-23] (Hauppauge Computer Works, Inc.)
S3 hcw88vid; C:\Windows\System32\drivers\hcw88vid.sys [498176 2007-01-23] (Hauppauge Computer Works, Inc)
S3 HCW88XBAR; C:\Windows\System32\drivers\HCW88BAR.sys [23552 2007-01-23] (Hauppauge Computer Works, Inc.)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [87040 2015-04-07] (G Data Software AG)
R1 hwinterface; C:\Windows\System32\Drivers\hwinterface.sys [3026 2007-09-17] (Logix4u) [Datei ist nicht signiert]
S3 InputFilter_Hid_FlexDef2b; C:\Windows\System32\DRIVERS\InputFilter_FlexDef2b.sys [14848 2010-06-19] (Siliten)
R0 JRAID; C:\Windows\System32\DRIVERS\jraid.sys [48768 2007-07-05] (JMicron Technology Corp.)
S3 KMWDFILTERx86; C:\Windows\System32\DRIVERS\KMWDFILTER.sys [25088 2009-04-29] (Windows (R) Codename Longhorn DDK provider)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [7680 2006-10-18] ()
S3 SCR3XX2K; C:\Windows\System32\DRIVERS\SCR3XX2K.sys [56448 2007-10-17] (SCM Microsystems Inc.)
S3 STC2DFU; C:\Windows\System32\DRIVERS\Stc2Dfu.SYS [7796 2004-10-25] (SCM Microsystems Inc.) [Datei ist nicht signiert]
R0 ViBus; C:\Windows\System32\DRIVERS\ViBus.sys [16896 2007-03-26] (VIA Technologies, Inc.)
R0 ViPrt; C:\Windows\System32\DRIVERS\ViPrt.sys [52224 2007-03-26] (VIA Technologies, Inc.)
S3 ZSMC301b; C:\Windows\System32\Drivers\usbVM31b.sys [91527 2005-02-26] (VM)
S3 ewusbnet; system32\DRIVERS\ewusbnet.sys [X]
S3 ew_hwusbdev; system32\DRIVERS\ew_hwusbdev.sys [X]
S3 hwdatacard; system32\DRIVERS\ewusbmdm.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-10-20 16:16 - 2015-10-20 16:17 - 00000000 ____D C:\FRST
2015-10-20 16:15 - 2015-10-20 16:15 - 00000000 _____ C:\Users\Günter Meier\defogger_reenable
2015-10-17 15:51 - 2015-09-18 19:47 - 00023384 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-10-17 15:51 - 2015-09-18 19:44 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-10-17 15:51 - 2015-09-18 19:44 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-10-17 15:51 - 2015-09-18 19:44 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-10-17 15:51 - 2015-09-18 19:44 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-10-17 15:51 - 2015-09-18 19:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-17 15:51 - 2015-09-18 19:35 - 00999936 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 14:01 - 2015-07-18 15:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-14 14:00 - 2015-09-18 20:58 - 00345688 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-10-14 14:00 - 2015-09-16 05:58 - 20357632 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-10-14 14:00 - 2015-09-16 05:45 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-10-14 14:00 - 2015-09-16 05:45 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-10-14 14:00 - 2015-09-16 05:33 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-10-14 14:00 - 2015-09-16 05:33 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-10-14 14:00 - 2015-09-16 05:32 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-10-14 14:00 - 2015-09-16 05:32 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-10-14 14:00 - 2015-09-16 05:31 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-10-14 14:00 - 2015-09-16 05:28 - 02279936 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-10-14 14:00 - 2015-09-16 05:26 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-10-14 14:00 - 2015-09-16 05:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-10-14 14:00 - 2015-09-16 05:24 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-10-14 14:00 - 2015-09-16 05:23 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-10-14 14:00 - 2015-09-16 05:23 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-10-14 14:00 - 2015-09-16 05:22 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-10-14 14:00 - 2015-09-16 05:22 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-10-14 14:00 - 2015-09-16 05:18 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-10-14 14:00 - 2015-09-16 05:15 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-10-14 14:00 - 2015-09-16 05:10 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-10-14 14:00 - 2015-09-16 05:07 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-10-14 14:00 - 2015-09-16 05:06 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-10-14 14:00 - 2015-09-16 05:05 - 04527616 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-10-14 14:00 - 2015-09-16 05:05 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-10-14 14:00 - 2015-09-16 05:04 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-10-14 14:00 - 2015-09-16 04:58 - 12853760 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-10-14 14:00 - 2015-09-16 04:58 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-10-14 14:00 - 2015-09-16 04:56 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-10-14 14:00 - 2015-09-16 04:56 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-10-14 14:00 - 2015-09-16 04:55 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-10-14 14:00 - 2015-09-16 04:55 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-10-14 14:00 - 2015-09-16 04:37 - 02011136 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-10-14 14:00 - 2015-09-16 04:34 - 01311232 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-10-14 14:00 - 2015-09-16 04:32 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-10-14 13:57 - 2015-10-01 19:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 13:57 - 2015-10-01 19:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-14 13:57 - 2015-10-01 19:50 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-10-14 13:57 - 2015-10-01 19:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-14 13:57 - 2015-10-01 19:50 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-14 13:57 - 2015-10-01 18:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-14 13:57 - 2015-09-29 05:05 - 03990976 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-10-14 13:57 - 2015-09-29 05:05 - 03936192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-10-14 13:57 - 2015-09-29 05:02 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-10-14 13:57 - 2015-09-29 04:59 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-10-14 13:57 - 2015-09-29 04:59 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-10-14 13:57 - 2015-09-29 04:59 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-10-14 13:57 - 2015-09-29 04:59 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-10-14 13:57 - 2015-09-29 04:59 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-10-14 13:57 - 2015-09-29 04:59 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-10-14 13:57 - 2015-09-29 04:59 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-10-14 13:57 - 2015-09-29 04:58 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-10-14 13:57 - 2015-09-29 04:58 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-10-14 13:57 - 2015-09-29 04:58 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-10-14 13:57 - 2015-09-29 04:58 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-10-14 13:57 - 2015-09-29 04:58 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-10-14 13:57 - 2015-09-29 04:58 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-10-14 13:57 - 2015-09-29 04:53 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-10-14 13:57 - 2015-09-29 04:53 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-10-14 13:57 - 2015-09-29 04:49 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-10-14 13:57 - 2015-09-29 04:49 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-10-14 13:57 - 2015-09-29 03:43 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-10-14 13:57 - 2015-09-29 03:43 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-10-14 13:57 - 2015-09-29 03:43 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-10-14 13:57 - 2015-09-15 19:42 - 00139096 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-10-14 13:57 - 2015-09-15 19:42 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-10-14 13:57 - 2015-09-15 19:36 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-10-14 13:57 - 2015-09-15 19:36 - 00248832 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-10-14 13:57 - 2015-09-15 19:36 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-10-14 13:57 - 2015-09-15 19:36 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-10-14 13:57 - 2015-09-15 19:36 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-10-14 13:57 - 2015-09-15 19:36 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-10-14 13:57 - 2015-09-15 19:35 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-10-14 13:56 - 2015-09-25 19:59 - 02955776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-10-14 13:56 - 2015-09-25 19:59 - 02061824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-10-14 13:56 - 2015-09-25 19:59 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-10-14 13:56 - 2015-09-25 19:59 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-10-14 13:56 - 2015-09-25 19:59 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-10-14 13:56 - 2015-09-25 19:59 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-10-14 13:56 - 2015-09-25 19:59 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-10-14 13:56 - 2015-09-25 19:58 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-10-14 13:56 - 2015-09-25 19:58 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-10-14 13:56 - 2015-09-25 19:58 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-10-14 13:56 - 2015-09-25 19:58 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-10-14 13:56 - 2015-08-06 19:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 13:56 - 2015-08-06 19:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-10-13 16:55 - 2015-10-13 16:54 - 00524288 _____ (Simon Tatham) C:\Windows\putty.exe
2015-10-13 14:09 - 2015-10-13 14:09 - 00000000 ____D C:\Users\G�nter Meier
2015-10-12 18:09 - 2015-10-12 18:09 - 00000000 ____D C:\ProgramData\McAfee
2015-10-12 18:08 - 2015-10-17 15:49 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-10-12 18:08 - 2015-10-13 14:34 - 00002017 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2015-10-12 16:11 - 2015-10-12 16:11 - 28565300 _____ C:\Users\Günter Meier\Downloads\AdbeRdr920_de_DE.rar
2015-10-06 22:38 - 2015-10-13 13:42 - 00001508 _____ C:\Windows\PFRO.log
2015-09-25 21:58 - 2015-10-20 16:10 - 00711789 _____ C:\Windows\setupact.log
2015-09-25 21:58 - 2015-09-25 21:58 - 00000000 _____ C:\Windows\setuperr.log
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2015-10-20 16:15 - 2009-10-23 23:35 - 00000000 ____D C:\Users\Günter Meier
2015-10-20 16:15 - 2009-10-23 23:34 - 00019456 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-10-20 16:15 - 2009-10-23 23:34 - 00019456 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-10-20 16:12 - 2009-10-24 00:23 - 01648344 _____ C:\Windows\system32\PerfStringBackup.INI
2015-10-20 16:10 - 2011-02-28 19:30 - 00000000 ____D C:\Temp
2015-10-20 16:10 - 2009-10-24 00:12 - 01606529 _____ C:\Windows\WindowsUpdate.log
2015-10-20 16:07 - 2015-09-14 09:43 - 00000470 _____ C:\Windows\Tasks\simplitec Power Suite (Tray).job
2015-10-20 16:07 - 2009-07-14 06:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-10-18 17:43 - 2015-06-12 18:54 - 00000000 ____D C:\Program Files\StarMoney 10
2015-10-18 17:26 - 2014-04-08 08:38 - 00000884 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-10-18 17:26 - 2009-08-11 10:55 - 00001160 _____ C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3597727890-3998022267-917300989-1000UA.job
2015-10-18 09:49 - 2014-08-09 12:34 - 00000000 ____D C:\Program Files\StarMoney 9.0
2015-10-17 16:25 - 2014-12-12 10:32 - 00000000 ____D C:\Windows\system32\appraiser
2015-10-17 16:25 - 2014-05-06 17:55 - 00000000 ___SD C:\Windows\system32\CompatTel
2015-10-17 14:11 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\wfp
2015-10-17 14:10 - 2015-08-10 13:32 - 00000000 ____D C:\Program Files\Amazon Browser Bar
2015-10-17 14:10 - 2015-04-05 22:09 - 00000000 ___SD C:\Windows\system32\GWX
2015-10-17 14:10 - 2014-11-12 17:48 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-10-17 14:10 - 2011-07-05 16:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\simfy
2015-10-17 14:10 - 2011-03-27 17:48 - 00000000 ____D C:\ProgramData\Real
2015-10-17 14:10 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\registration
2015-10-17 14:09 - 2009-11-07 21:52 - 00000000 __RHD C:\MSOCache
2015-10-15 09:26 - 2015-07-08 15:57 - 00000412 _____ C:\Windows\Tasks\simplitec Power Suite.job
2015-10-15 09:21 - 2009-07-14 04:37 - 00000000 ____D C:\Windows\system32\de-DE
2015-10-14 19:10 - 2007-09-17 13:09 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-10-14 19:09 - 2013-08-02 21:57 - 00000000 ____D C:\Windows\system32\MRT
2015-10-14 19:01 - 2009-11-11 20:46 - 141105520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-10-14 19:00 - 2006-11-02 12:23 - 00000219 _____ C:\Windows\win.ini
2015-10-14 13:18 - 2015-07-08 15:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\simplitec
2015-10-14 13:17 - 2015-07-08 15:56 - 00000000 ____D C:\Program Files\simplitec
2015-10-13 16:53 - 2013-01-04 19:34 - 00000000 ____D C:\Program Files\AppGraffiti
2015-10-13 16:50 - 2008-08-04 16:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox
2015-10-12 18:07 - 2007-09-17 13:17 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-10-12 18:07 - 2007-09-17 13:17 - 00000000 ____D C:\Program Files\Adobe
2015-10-12 17:36 - 2007-09-17 13:17 - 00000000 ____D C:\ProgramData\Adobe
2015-10-07 21:17 - 2015-07-13 22:31 - 00000000 ____D C:\Users\Günter Meier\Documents\Bible
2015-10-06 22:35 - 2015-08-10 13:31 - 00000000 ____D C:\Program Files\Amazon
2015-09-23 21:08 - 2015-06-12 18:57 - 00002108 _____ C:\Users\Public\Desktop\StarMoney 10.lnk
2015-09-23 14:21 - 2014-09-24 11:24 - 00000071 _____ C:\Users\Günter Meier\Desktop\i_view32.ini
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2015-07-08 12:06 - 2015-07-09 09:31 - 0000053 _____ () C:\Users\Günter Meier\AppData\Roaming\LogFile.txt
2007-11-23 10:39 - 2009-01-08 19:29 - 0024206 _____ () C:\Users\Günter Meier\AppData\Roaming\UserTile.png
2015-02-12 10:59 - 2015-02-12 10:59 - 0000000 ____H () C:\Users\Günter Meier\AppData\Local\BITD367.tmp
2009-10-24 11:19 - 2009-10-24 11:19 - 0007609 _____ () C:\Users\Günter Meier\AppData\Local\Resmon.ResmonCfg
2011-12-23 21:57 - 2011-12-23 21:57 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{05CAAA34-0796-4266-BD12-2057BBECAF0B}
2011-07-30 09:28 - 2011-07-30 09:28 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{0766507E-53D7-44AF-A88E-C7EAEF153760}
2011-07-02 10:03 - 2011-07-02 10:08 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{0AE71263-88B3-4D37-9C7D-C0FC1B1FC4B9}
2011-10-18 13:16 - 2011-10-18 13:16 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{0B5A5CEB-9F36-4CEE-B0B7-2278D1CD416B}
2011-12-16 08:43 - 2011-12-16 08:43 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{17694828-0365-4695-AE08-08D098F41174}
2011-06-09 08:56 - 2011-06-09 08:56 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{189E3064-3E60-407D-B479-4EA6071C647E}
2012-01-11 12:36 - 2012-01-11 12:36 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{1CC4BC34-506A-4F28-849E-9BB689FDD145}
2011-05-12 22:19 - 2011-05-12 22:19 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{1D3488B1-AC49-4CE9-B01A-347A723C9E47}
2014-05-30 09:09 - 2014-05-30 09:09 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{23E58F2C-8DC4-4DE3-8FEF-766B1EEA544E}
2011-12-16 19:24 - 2011-12-16 19:24 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{28F4E85B-9194-4962-B72F-BDF01365858E}
2011-10-19 17:19 - 2011-10-19 17:19 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{29037809-5BF9-45EB-A551-B4F9944569EC}
2011-06-16 22:36 - 2011-06-16 22:36 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{29891808-A8FD-4F02-99A0-45E554B54B83}
2011-05-12 22:15 - 2011-05-12 22:15 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{2A589BD2-D8B8-4CE0-9AEC-9FD96C7E3A7C}
2011-11-10 16:20 - 2011-11-10 16:23 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{33620E34-0CC5-45B2-972D-B205D971AEFF}
2012-01-26 22:26 - 2012-01-26 22:26 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{338C8C87-226E-42F5-97CC-CDDC0BD39DC5}
2011-10-22 17:29 - 2011-10-22 17:29 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{35741B3A-B90E-4C17-980D-693DDC6D92B2}
2015-04-17 09:45 - 2015-04-17 09:49 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{37601423-536C-48D0-BBDF-BB556A35E507}
2011-11-10 16:23 - 2011-11-10 16:23 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{38CD506F-C922-4793-9DB1-A1F71DAE1C80}
2011-06-15 16:11 - 2011-06-15 16:16 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{3F1A741B-0E83-40B7-9293-F608619820F4}
2011-11-06 20:59 - 2011-11-06 20:59 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{41EB32F3-12BB-4F05-9EEA-C094A182864A}
2011-05-27 09:13 - 2011-05-27 09:13 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{451DD174-B044-4C44-BF45-A905F6CA4F5A}
2011-06-23 17:01 - 2011-06-23 17:01 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{4A257FA5-1DDC-43F7-BC1C-0101E86330DF}
2012-01-20 22:04 - 2012-01-20 22:04 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{4F835A43-90C0-45A9-A01D-30D12E39DA18}
2011-07-15 20:00 - 2011-07-15 20:00 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{5266879B-59A6-4F0B-99B1-F32396F78B0B}
2011-07-07 15:25 - 2011-07-07 15:25 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{565FA85B-71E4-48E4-BC1B-B4D473C9583E}
2011-06-26 16:03 - 2011-06-26 16:03 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{5DD604CF-949E-4EF9-AAE2-E98BF823D8DC}
2011-08-05 21:36 - 2011-08-05 21:36 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{618E2725-2A74-492B-AB68-9C9A7FBC60FA}
2014-09-17 11:32 - 2014-09-17 11:32 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{64A4A4AE-C52B-4208-9DC1-F3A515D33732}
2015-02-12 10:55 - 2015-02-12 10:59 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{6DA6D618-2D09-4E54-B6EA-D48FD2EE3E59}
2011-05-20 21:37 - 2011-05-20 21:37 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{71902AA3-3597-4958-BDBA-6C46016CED28}
2011-09-06 17:20 - 2011-09-06 17:21 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{724E8FC5-F413-4D0C-B0B8-8E9B13C5BE25}
2011-06-17 18:09 - 2011-06-17 18:09 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{77EFB568-7ED5-4EB2-8D60-8BC1540A9FF4}
2011-09-19 18:00 - 2011-09-19 18:04 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{79059305-E922-4911-B8D2-9135AFC051E0}
2012-01-06 19:58 - 2012-01-06 19:58 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{7BD81CF8-BA1F-405F-A974-8E15A12D1560}
2011-12-16 19:26 - 2011-12-16 19:26 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{7E6C24A7-A380-4862-909B-3C42CE67B411}
2011-07-17 08:29 - 2011-07-17 08:33 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{7ECE3187-654D-4E3E-B1E1-FB987C5DC824}
2011-11-10 16:25 - 2011-11-10 16:25 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{80059459-AD63-4EF3-B458-80436D4A91C3}
2011-09-19 18:02 - 2011-09-19 18:02 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{801DF4EC-2545-48AD-9E6B-B9E5F525FB45}
2011-09-14 19:39 - 2011-09-14 19:43 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{8433C909-3DE4-4FF7-BDB5-C71244205008}
2011-07-17 08:30 - 2011-07-17 08:35 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{875F79BE-EE0D-4267-8DE4-28ADBEDD6A58}
2011-07-30 09:29 - 2011-07-30 09:29 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{877CAC26-F3F4-4A4E-9FC9-D8B8DC3DC326}
2011-11-06 20:56 - 2011-11-06 20:56 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{89E76C26-CEDF-4184-82AE-3B1E5394A189}
2011-06-14 14:42 - 2011-06-14 14:42 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{8ED483F8-95C4-449A-B875-08FBA12129FF}
2011-10-07 18:16 - 2011-10-07 18:16 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{91EFF962-614A-45F8-9B30-57FBF9D336C6}
2011-06-15 16:09 - 2011-06-15 16:14 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{94858006-C678-4BCF-B655-CC82F18CB6C1}
2011-10-30 15:06 - 2011-10-30 15:06 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{96A82280-66E2-438B-BA18-9357DF72FEDD}
2011-11-03 18:14 - 2011-11-03 18:14 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{97F44D2C-D6DE-4D4B-8FF6-9DA56B1FB7E5}
2011-06-08 12:25 - 2011-06-08 12:25 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{A01F53D9-7AFF-4AA4-8C51-541D0653CD1E}
2011-06-09 08:58 - 2011-06-09 08:58 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{A1C1B8D0-278C-4B74-92BE-77ABC7A2B36B}
2011-12-06 10:44 - 2011-12-06 10:44 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{A31325A4-1936-4BBF-A614-C4901C6F3313}
2011-12-17 11:13 - 2011-12-17 11:13 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{A34EC897-35C0-45AE-9061-6D13B9F064C5}
2011-11-15 15:53 - 2011-11-15 15:53 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{A50C05E7-36C0-41CD-A151-312C267A8F93}
2011-10-02 22:06 - 2011-10-02 22:06 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{A6546426-9765-47B3-A4B5-8833E3728509}
2011-11-03 18:16 - 2011-11-03 18:16 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{A65891F9-D1DC-4710-A18B-59195499AD25}
2012-01-06 19:56 - 2012-01-06 19:56 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{A7E6BDF8-283D-4421-AFB2-449C1D5038C4}
2012-02-01 09:28 - 2012-02-01 09:28 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{AA7D708B-14B4-48CA-BB7B-EBC8D4578E6C}
2012-01-11 22:22 - 2012-01-11 22:22 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{AAB15AF0-99F7-416A-A202-9B120F5AFC76}
2014-07-11 09:15 - 2014-07-11 09:15 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{ABEA0400-D334-4F95-BDB4-85D0FFE3916D}
2011-07-17 18:35 - 2011-07-17 18:35 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{AC3DF61D-2DE3-41B9-B4A9-239938F825C7}
2011-07-06 09:24 - 2011-07-06 09:24 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{B2A65E21-ED83-41A4-BDF9-6898D2BD17C7}
2011-08-01 11:03 - 2011-08-01 11:04 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{BC517638-F267-4F06-926C-C1BBB488A79F}
2011-06-19 13:12 - 2011-06-19 13:12 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{BDA60C25-42C9-4EC4-9957-33B1206E85A2}
2011-11-09 22:01 - 2011-11-09 22:03 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{C102085D-C45E-4EA1-B94A-70AD439FE9EA}
2011-10-12 12:33 - 2011-10-12 12:33 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{CDD78E85-8B3D-43A0-B667-60152FD93FA4}
2011-12-16 08:45 - 2011-12-16 08:45 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{CEC7DA45-826C-4850-8A58-567EC29FC7D4}
2011-09-14 19:41 - 2011-09-14 19:41 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{D161D418-F4E5-4391-A183-9A90BA48F3AD}
2011-06-24 12:21 - 2011-06-24 12:21 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{D5119CE5-BDA0-4DDC-AAAF-21CCABC1C9DD}
2011-11-03 18:17 - 2011-11-03 18:17 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{D82FFAB7-3D57-49A8-8D08-5AFE6035D856}
2012-01-09 11:33 - 2012-01-09 11:34 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{DAB70909-1C31-4C50-BA6D-8A1DBC16C007}
2011-06-11 17:02 - 2011-06-11 17:02 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{DB4E76D0-D1A0-4DED-9618-FBC8D03F53C2}
2011-06-10 18:00 - 2011-06-10 18:01 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{DC29E31A-B235-4BC6-A04B-0D1810A2B392}
2011-09-19 18:06 - 2011-09-19 18:06 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{DF19300C-A2C8-4C8B-AA5F-2FDEA33BA72A}
2011-10-10 22:01 - 2011-10-10 22:01 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{E1D28314-940E-4F2E-950F-7B627D0F8245}
2011-06-23 16:59 - 2011-06-23 16:59 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{E3048784-D47B-4F95-BCB2-17CAC094F43A}
2011-07-31 11:49 - 2011-07-31 11:49 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{E467D0D2-A4F5-469E-A910-783FD1A073CE}
2011-12-04 16:38 - 2011-12-04 16:38 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{E58633B9-ACF2-4DF5-B796-C6E479EF246D}
2011-10-14 16:21 - 2011-10-14 16:21 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{EAD67AE9-0963-41F1-B934-5FB345612BE3}
2011-09-16 10:57 - 2011-09-16 10:57 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{F3CC78FF-402B-4FF3-A996-24ED5C370D3F}
2011-06-24 12:17 - 2011-06-24 12:17 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{F5C3197E-C3C0-42C9-BE75-9A8896599CD3}
2011-12-17 11:16 - 2011-12-17 11:16 - 0000000 _____ () C:\Users\Günter Meier\AppData\Local\{FB2FD8B0-9BAB-4F35-9EE2-00E8FC1372C6}
Dateien, die verschoben oder gelöscht werden sollten:
====================
C:\Users\Günter Meier\ger21008.exe
==================== Bamital & volsnap =================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2015-08-24 21:57
==================== Ende vom FRST.txt ============================
Addition.txt: Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x86) Version:18-10-2015
durchgeführt von Günter Meier (2015-10-20 16:18:38)
Gestartet von E:\winguenter\bin
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2009-10-24 08:10:48)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-3597727890-3998022267-917300989-500 - Administrator - Disabled)
Gast (S-1-5-21-3597727890-3998022267-917300989-501 - Limited - Enabled)
Günter Meier (S-1-5-21-3597727890-3998022267-917300989-1000 - Administrator - Enabled) => C:\Users\Günter Meier
UpdatusUser (S-1-5-21-3597727890-3998022267-917300989-1001 - Limited - Enabled) => C:\Users\UpdatusUser
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: G DATA INTERNET SECURITY (Disabled - Up to date) {545C8713-0744-B079-87F8-349A6D5C8CF0}
AS: G DATA INTERNET SECURITY (Disabled - Up to date) {EF3D66F7-217E-BFF7-BD48-0FE816DBC64D}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: G*DATA Personal Firewall (Disabled) {6C670636-4D2B-B121-ACA7-9DAF938FCB8B}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Activation Assistant for the 2007 Microsoft Office suites (HKLM\...\Activation Assistant for the 2007 Microsoft Office suites) (Version: - Microsoft Corporation)
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0 - Microsoft Corporation) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 15.009.20069 - Adobe Systems Incorporated)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 2.7.0.19530 - Adobe Systems Incorporated)
Adobe Color Common Settings (HKLM\...\Adobe_6c8e2cb4fd241c55406016127a6ab2e) (Version: 1.0.1 - Adobe Systems Incorporated)
Adobe ExtendScript Toolkit 2 (HKLM\...\Adobe_3e054d2218e7aa282c2369d939e58ff) (Version: 2.0.2 - Adobe Systems Incorporated)
Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.190 - Adobe Systems Incorporated)
Adobe Photoshop CS3 (HKLM\...\Adobe_5f143314a5d434c8511097393d17397) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Reader 8.1.2 Security Update 1 (KB403742) (HKLM\...\{AC76BA86-7AD7-1031-7B44-A90000000001}_Adobe Reader 9 - Deutsch) (Version: - )
Amazon MP3-Downloader 1.0.18 (HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\Amazon MP3-Downloader) (Version: 1.0.18 - Amazon Services LLC)
Browser 7 der Telekom 39.0.15 (x86 de) (HKLM\...\Browser 7 der Telekom 39.0.15 (x86 de)) (Version: 39.0.15 - Deutsche Telekom AG)
Browser 7 Maintenance Service (HKLM\...\Browser7MaintenanceService) (Version: 33.1.17 - Deutsche Telekom AG)
Canon Easy-PhotoPrint EX (HKLM\...\Easy-PhotoPrint EX) (Version: - )
Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data (HKLM\...\Canon Easy-PhotoPrint Pro - Pro9000 series Extention Data) (Version: - )
Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data (HKLM\...\Canon Easy-PhotoPrint Pro - Pro9500 series Extention Data) (Version: - )
Canon Easy-PhotoPrint Pro (HKLM\...\Easy-PhotoPrint Pro) (Version: - )
Canon Easy-WebPrint EX (HKLM\...\Easy-WebPrint EX) (Version: - )
Canon MG8200 series Benutzerregistrierung (HKLM\...\Canon MG8200 series Benutzerregistrierung) (Version: - )
Canon MG8200 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG8200_series) (Version: - )
Canon MG8200 series On-screen Manual (HKLM\...\Canon MG8200 series On-screen Manual) (Version: - )
Canon MP Navigator EX 5.0 (HKLM\...\MP Navigator EX 5.0) (Version: - )
Canon MP Navigator EX 5.1 (HKLM\...\MP Navigator EX 5.1) (Version: - )
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: - )
CHIPDRIVE Smartcard Commander (HKLM\...\CHIPDRIVE Smartcard Commander_CDInst21) (Version: - SCM Microsystems)
CorelDRAW Graphics Suite X4 - Capture (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Content (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Draw (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Filters (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - FontNav (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics SUite X4 - ICA (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - IPM (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - Lang DE (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - PP (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 - VBA (Version: 14.0 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X4 (Version: 14.0 - Corel Corporation) Hidden
Duden Korrektor (HKLM\...\InstallShield_{91BF142C-E8C0-4279-A98D-A61A4404CF56}) (Version: 5.00.1507.00 - Duden)
Duden Korrektor (Version: 5.00.1507.00 - Duden) Hidden
ElsterFormular (HKLM\...\ElsterFormular) (Version: 16.1.20150424 - Landesfinanzdirektion Thüringen)
G DATA INTERNET SECURITY (HKLM\...\{AC68D2FF-1674-4C16-A536-A69FC11BBD82}) (Version: 25.1.0.4 - G DATA Software AG)
GEAR 32bit Driver Installer (HKLM\...\{E89B484C-B913-49A0-959B-89E836001658}) (Version: 2.005.1 - GEAR Software, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 45.0.2454.85 - Google Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Earth (HKLM\...\{9509674F-3972-11DE-806D-005056806466}) (Version: 5.0.11733.9347 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.28.13 - Google Inc.) Hidden
Herrnhuter Losungen (HKLM\...\{2DEEC41F-02B0-4BC4-819A-2355E8B1C398}) (Version: 3.4.0 - Evang. Brüderunität Herrnhut)
ICQ6.5 (HKLM\...\{60DE4033-9503-48D1-A483-7846BD217CA9}) (Version: 6.5 - ICQ)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.40 - Irfan Skiljan)
Java(TM) 6 Update 26 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216020FF}) (Version: 6.0.260 - Sun Microsystems, Inc.)
JMB36X Raid Configurer (HKLM\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMICRON Technology Corp.)
LightScribe 1.4.136.1 (Version: 1.4.136.1 - hxxp://www.lightscribe.com) Hidden
Microsoft .NET Framework 4 Client Profile DEU Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile DEU Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4.5.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.50938 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUSR) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{e6e75766-da0f-4ba2-9788-6ea593ce702d}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x86) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XML Parser und SDK (HKLM\...\{35343FF7-939B-401A-87B3-FF90A5123D88}) (Version: 4.10.9404.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 7 Premium (HKLM\...\{CF097717-F174-4144-954A-FBC4BF301031}) (Version: 7.02.9753 - Nero AG)
Office-Bibliothek (HKLM\...\{5C81B189-5456-40C4-9313-7FE6FA6DD64C}) (Version: 5.00.3 - Bibliographisches Institut & F.A. Brockhaus AG)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0 - Microsoft Corporation) Hidden
Online Bibel 12.07.02 (HKLM\...\OnlineBible) (Version: - )
Online Bibel 12.07.02 (HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\OnlineBible) (Version: - )
Outils de vérification linguistique 2013 de Microsoft Office*- Français (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Paint.NET v3.30 (HKLM\...\{FF09A6A1-4DE5-467D-AA26-EF18C0EA4DAB}) (Version: 3.30.0 - dotPDN LLC)
PDF Settings (Version: 1.0 - Adobe Systems Incorporated) Hidden
Platform (Version: 1.24 - VIA Technologies, Inc.) Hidden
PlayReady PC Runtime x86 (HKLM\...\{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}) (Version: 1.3.0 - Microsoft Corporation)
PVSonyDll (Version: 1.00.0001 - NVIDIA Corporation) Hidden
RealDownloader (Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (Version: 10.0 - RealNetworks, Inc) Hidden
RealUpgrade 1.1 (Version: 1.1.0 - RealNetworks, Inc.) Hidden
SCR3xx USB Smart Card Reader (HKLM\...\{7EABFCD9-9F26-4E2C-A762-73ABE2C54E95}) (Version: 8.18.0001 - SCM Microsystems)
simfy (HKLM\...\Simfy) (Version: 1.4.8 - simfy GmbH)
simfy (Version: 1.4.8 - simfy GmbH) Hidden
simplitec Power Suite (HKLM\...\simplitec POWER SUITE_is1) (Version: 2.3.2.873 - simplitec GmbH)
SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 6.10.1.6140 - Analog Devices)
Spelling Dictionaries Support For Adobe Reader 9 (HKLM\...\{AC76BA86-7AD7-5464-3428-900000000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
StarMoney (Version: 2.0 - StarFinanz) Hidden
StarMoney (Version: 3.0.0.124 - StarFinanz) Hidden
StarMoney (Version: 4.0.0.203 - StarFinanz) Hidden
StarMoney (Version: 5.0.0.226 - StarFinanz) Hidden
StarMoney 10 (HKLM\...\{BEA4756B-BD9D-49AA-9260-C496B3D8F8E1}) (Version: 10 - Star Finanz GmbH)
StarMoney 6.0 S-Edition (HKLM\...\{60459C52-DCD5-408F-925E-4AD20D9DAFD8}) (Version: 6.0 - StarFinanz GmbH)
StarMoney 9.0 (HKLM\...\{172EC92E-003F-47B8-8E38-00A3FD455467}) (Version: - )
StarMoney 9.0 (HKLM\...\{2262CF96-D326-4926-885E-AA3B7E4E7368}) (Version: 9.0 - Star Finanz GmbH)
TeamViewer 3 (HKLM\...\TeamViewer 3) (Version: - TeamViewer GmbH)
TSP_CODEC (HKLM\...\{A90C03D6-08E1-4C59-B93B-6919A6C0AC19}) (Version: 1.00.0000 - Bytescribe)
Update for Skype for Business 2015 (KB2889853) 32-Bit Edition (HKLM\...\{90150000-012B-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{0C5B0539-7EDE-4297-947E-48890971B557}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3085581) 32-Bit Edition (HKLM\...\{90150000-012B-0407-0000-0000000FF1CE}_Office15.PROPLUSR_{E93D8472-11CA-4A0C-B31F-C82C9E9AA1CC}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3085581) 32-Bit Edition (HKLM\...\{91150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUSR_{E93D8472-11CA-4A0C-B31F-C82C9E9AA1CC}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0407-0000-0000000FF1CE}_PRO_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM\...\{90120000-001A-0407-0000-0000000FF1CE}_PRO_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0407-0000-0000000FF1CE}_PRO_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0407-0000-0000000FF1CE}_PRO_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
VIA Plattform-Geräte-Manager (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.24 - VIA Technologies, Inc.)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
Yahoo! Detect (HKLM\...\YTdetect) (Version: - )
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{1796A329-04C1-4C07-B28E-E4A807935C06}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{1A239250-B650-4B63-B4CF-7FCC4DC07DC6}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{1AEDB68D-18A7-4CA9-B41B-3CE7E59FAB24}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{2C9357FA-97F8-4213-B712-A4CCF03AE379}\InprocServer32 -> C:\Users\Günter Meier\AppData\Roaming\SpaceTime 3D for T-Online\SpaceTime\AlexaWebSearch.dll (Bitmanagement)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{3f04dadf-6ea4-44d1-a507-03cad176f443}\InprocServer32 -> C:\Windows\system32\config\systemprofile\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll (Amazon.com, Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{42DF0D46-7D49-4AE5-8EF6-9CA6E41EFEC1}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{44EA0FF7-08B7-4B7F-A594-F7F94A2B60F7}\InprocServer32 -> C:\Users\Günter Meier\AppData\Roaming\SpaceTime 3D for T-Online\SpaceTime\GoogleSearch.dll (SpaceTime)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{5C8C2A98-6133-4EBA-BBCC-34D9EA01FC2E}\InprocServer32 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.1\psuser.dll => Keine Datei
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{5D052CD7-6CAE-463C-99FF-0159EABFE66E}\InprocServer32 -> C:\Users\Günter Meier\AppData\Roaming\SpaceTime 3D for T-Online\SpaceTime\SpaceTime3D.ocx (SpaceTime 3D, Inc)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{63E6BE14-A742-4EEA-8AF3-0EC39F10F850}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{645EEE5A-BD51-4C05-A6AF-6F2CF8950AAB}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{77C4C807-E257-43AD-BB3F-7CA88760BD29}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.13\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{8097D7E9-DB9E-4AEF-9B28-61D82A1DF784}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{9059C329-4661-49B2-9984-8753C45DB7B9}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{9919BE4D-9E6F-4732-9E4E-5F83ABB62FEB}\InprocServer32 -> C:\Users\Günter Meier\AppData\Roaming\SpaceTime 3D for T-Online\SpaceTime\websearch.dll ()
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{998FA181-D5BB-4548-9CB6-7FC105A0A327}\InprocServer32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\wavdest.ax ()
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{A2D4475B-C9AA-48E2-A029-1DB829DACF7B}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{A4F65992-5738-475B-9C16-CF102BCDE153}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{AFD07A5E-3E20-4D77-825C-2F6D1A50BE5B}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{B153D707-447A-4538-913E-6146B3FDEE02}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{B3C985DA-45C2-417D-B11B-6E6484A725F1}\InprocServer32 -> C:\Users\Günter Meier\AppData\Roaming\SpaceTime 3D for T-Online\SpaceTime\RSSSearch.dll (SpaceTime3D inc)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{BF9A5794-8AF5-46FA-8865-EAF65CD654A8}\InprocServer32 -> C:\Users\Günter Meier\AppData\Roaming\SpaceTime 3D for T-Online\SpaceTime\Compass.dll ()
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{CB27DAA3-E581-4777-A725-F32B47EDBDCF}\InprocServer32 -> C:\Users\Günter Meier\AppData\Roaming\SpaceTime 3D for T-Online\SpaceTime\Compass.dll ()
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{CBD4FB70-F00B-4963-B249-4B056E6A981A}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{D166BD15-03AF-413A-BEFD-0679FF410B49}\InprocServer32 -> C:\Windows\system32\config\systemprofile\AppData\Local\Dropbox\Update\1.3.27.29\psuser.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{D6F407CF-E8AE-469D-9FC7-1DECAEDAAD9A}\InprocServer32 -> C:\Users\Günter Meier\AppData\Roaming\SpaceTime 3D for T-Online\SpaceTime\websearch.dll ()
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{D93BF052-FC68-4DB6-A4F8-A4DC9BEEB1C0}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\googleearth.exe (Google)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Günter Meier\AppData\Local\Google\Update\1.3.28.13\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-3597727890-3998022267-917300989-1000_Classes\CLSID\{F4F7B301-7C59-4851-BA97-C51F110B590F}\InprocServer32 -> C:\Users\Günter Meier\AppData\Local\Google\Google Earth\earthps.dll ()
==================== Wiederherstellungspunkte =========================
29-09-2015 18:45:25 Windows Update
03-10-2015 22:16:11 Windows Update
06-10-2015 22:08:05 Windows Update
08-10-2015 19:32:53 Windows Update
12-10-2015 17:32:09 Removed Adobe Reader XI (11.0.11) - Deutsch.
12-10-2015 17:33:54 Removed Adobe Reader XI (11.0.11) - Deutsch.
12-10-2015 17:35:46 Removed Adobe Reader XI (11.0.11) - Deutsch.
13-10-2015 14:07:29 Windows Update
13-10-2015 17:15:19 Removed simfy
14-10-2015 13:12:23 Wiederherstellungsvorgang
14-10-2015 13:30:34 Removed simfy
14-10-2015 14:16:04 Windows Update
14-10-2015 18:52:43 Windows Update
15-10-2015 17:56:52 Windows Update
17-10-2015 14:04:53 Wiederherstellungsvorgang
17-10-2015 16:24:23 Windows Update
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2006-11-02 12:23 - 2015-10-13 17:14 - 00000763 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
::1 localhost
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00D58F06-E0E1-4A74-9DCC-17ED108F0BEB} - System32\Tasks\{47C57D00-1548-4256-9285-CBEED6687977} => pcalua.exe -a H:\setup.exe -d H:\ -c autorun
Task: {0588BB0D-C82E-4CC1-92A1-4224DA648CFB} - System32\Tasks\RealUpgradeLogonTaskS-1-5-21-3597727890-3998022267-917300989-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {0E9F0C20-BCE3-499C-A966-F734C28C163E} - System32\Tasks\{8FE32562-C235-4FAB-9A6D-03D63CA7D940} => pcalua.exe -a C:\Windows\System32\config\systemprofile\Downloads\browser7_setup(1).exe -d C:\Windows\System32\config\systemprofile\Downloads
Task: {1104AA23-EFC9-449A-80B1-8D2AC7522A6D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {14E7FE71-8001-4321-89D5-08F1290FB27F} - System32\Tasks\{CE475AAD-AFC9-42A3-9D97-A57126633DF0} => pcalua.exe -a "C:\Users\Günter Meier\Downloads\aomwin200ea24.exe" -d "C:\Program Files\Mozilla Firefox"
Task: {1F743136-E9A5-4E4F-93EA-600712E0DC7B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {220210B8-C66A-44C3-9E69-2CC5ADC162CF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3597727890-3998022267-917300989-1000Core => C:\Users\Günter Meier\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {2A893B50-DD57-4382-AA0F-6BF75F24EE12} - System32\Tasks\simplitec Power Suite (Tray) => C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe [2015-09-04] (simplitec GmbH)
Task: {2D80F328-4163-4F70-8A20-E3DA5EE5DC86} - System32\Tasks\{6B8F0279-9C50-4EDB-BFC5-881052B5558C} => C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
Task: {38E40A51-8080-4086-82A7-ADE3C56521D7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-09-14] (Adobe Systems Incorporated)
Task: {3FD8EA5F-ED3E-4A8E-A9E8-17FED68D3BCF} - System32\Tasks\{D6456F15-B695-4531-A08C-703557131E8B} => pcalua.exe -a D:\smoney_m_18_0_01234567_0000011022_j_.exe -d D:\
Task: {4BA14185-3A0A-425D-B5F8-F67D75F2F8F4} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-04] (Adobe Systems Incorporated)
Task: {4C2F9702-1EE5-473A-A1D7-6E20635A84B8} - System32\Tasks\{515B8E38-020F-42EF-BBA0-FF5772AA7ACE} => C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
Task: {4E109E6D-3616-4CCD-BE29-95646479A919} - System32\Tasks\{151811DA-8574-4F07-B4E3-BC0CC70C5210} => C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
Task: {561375CB-FF5A-417B-B297-BA73DE149581} - System32\Tasks\Microsoft\Windows\Wired\GatherWiredInfo => C:\Windows\system32\gatherWiredInfo.vbs
Task: {5DCBDA99-E748-4AB4-BEE6-ACD450989D75} - System32\Tasks\{D5DC5CA7-AF3F-444F-8CAE-BF2020269A3A} => pcalua.exe -a "C:\Program Files\Bible\OlbDel.Exe" -c "Online Bibel" "Online Bibel" "C:\Users\Günter Meier\Documents\Bible\" "C:\Users\Public\Documents\Online Bible\"
Task: {5E2CC2C0-064B-4059-B917-4D504F3AACD0} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {63AE1EE3-64C8-48DE-9C54-45711309E921} - System32\Tasks\{9C90A1E7-FADF-400F-B72A-CBE75816D972} => pcalua.exe -a "C:\bibel digital\mfbo2a32.exe" -d C:\Windows\system32\config\systemprofile\Desktop
Task: {71890D32-2507-4406-A13F-F2BDF9323AE4} - System32\Tasks\simplitec Power Suite => C:\Program Files\simplitec\simplitec Power Suite\PowerSuite.exe [2015-09-04] (simplitec GmbH)
Task: {75D3157F-439F-4E84-924A-FA650AB4F69A} - System32\Tasks\{A7B6B988-1FC5-42A4-BD45-CD7EE5F1C1DA} => C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
Task: {848A33C2-A5F0-497A-B08C-EAC01706C1E8} - System32\Tasks\{A2D23527-3082-44BC-8390-0526D67B3D46} => pcalua.exe -a "C:\Program Files\InstallShield Installation Information\{80F24F31-F641-4349-83F3-59E335976D16}\setup.exe" -c -runfromtemp -l0x0007 -removeonly
Task: {8B815B25-1B02-4957-A89E-2A3E1321533E} - System32\Tasks\RealUpgradeScheduledTaskS-1-5-21-3597727890-3998022267-917300989-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {8E3BF495-571E-40DD-B913-C302BD618019} - System32\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-3597727890-3998022267-917300989-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {911023DE-5FF7-409F-A38A-476275210A5B} - System32\Tasks\{F5595CA3-EF8C-4FF9-9CC8-3F5BFDE3A806} => pcalua.exe -a I:\InstallTomTomHOME.exe -d I:\
Task: {96EDA8E3-5C17-4AF4-9537-3FF2530B08E6} - System32\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-3597727890-3998022267-917300989-1000 => C:\Program Files\Real\RealUpgrade\RealUpgrade.exe [2013-08-14] (RealNetworks, Inc.)
Task: {A61C90FA-B985-462E-A804-70558A90C134} - System32\Tasks\Microsoft\Windows\WindowsCalendar\Reminders - Günter Meier => C:\Program Files\Windows Calendar\WinCal.exe
Task: {A64AE6AE-1A92-403B-8196-EE4C17077740} - System32\Tasks\{88B1E977-17F5-4EAF-BA92-03B89D785644} => C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE
Task: {C34D7B5A-DBEE-4220-AA8F-57CD980FDDDD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-3597727890-3998022267-917300989-1000UA => C:\Users\Günter Meier\AppData\Local\Google\Update\GoogleUpdate.exe [2015-09-02] (Google Inc.)
Task: {CB0E91C7-DAEF-4541-8AF5-29BAFA96EBFD} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => C:\Windows\system32\compattelrunner.exe [2015-09-18] (Microsoft Corporation)
Task: {D2AE73FE-E2C5-431A-918B-F03363307423} - System32\Tasks\{A37709E2-5C8D-4187-ACBD-0664905177B7} => pcalua.exe -a "C:\Users\Günter Meier\Downloads\teledatX120\Konfig\V3_02_02\_ISDel.exe" -d "C:\Users\Günter Meier\Downloads\teledatX120\Konfig\V3_02_02"
Task: {D57B9C09-4511-4F89-93BE-71AF5F9DCACC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {DBCEE112-EA9A-4F16-9C36-EE9EF50D3571} - System32\Tasks\{6EA55286-8D0E-467A-9FB0-F5B315B5ABA8} => pcalua.exe -a "C:\Users\Günter Meier\Downloads\wmp11-windowsxp-x86-DE-DE.exe" -d "C:\Users\Günter Meier\Downloads"
Task: {E5150B95-F9B4-4D5D-95A2-7EC1ACBA95F8} - System32\Tasks\Microsoft\Windows\Wireless\GatherWirelessInfo => C:\Windows\system32\gatherWirelessInfo.vbs
Task: {ED4CB7E8-51FB-4A5C-B797-622CD46DAF23} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {FBB31E70-84F8-4478-8FCA-7B0A64BD4336} - System32\Tasks\{B09EF877-27B6-4235-882D-C184CF3EF917} => pcalua.exe -a "C:\Users\Günter Meier\Downloads\GER_R_FUL_AV.exe" -d "C:\Users\Günter Meier\Downloads"
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3597727890-3998022267-917300989-1000Core.job => C:\Users\Günter Meier\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3597727890-3998022267-917300989-1000UA.job => C:\Users\Günter Meier\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\simplitec Power Suite (Tray).job => C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe
Task: C:\Windows\Tasks\simplitec Power Suite.job => C:\Program Files\simplitec\simplitec Power Suite\PowerSuite.exe
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2009-05-04 13:10 - 2008-09-16 20:18 - 00132608 _____ () C:\Program Files\WinRAR\rarext.dll
2013-08-14 16:19 - 2013-08-14 16:19 - 00039056 _____ () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
2015-07-08 15:56 - 2015-09-04 14:11 - 00101120 _____ () C:\Program Files\simplitec\simplitec Power Suite\modules\common\asp_ipc32.dll
2015-07-08 15:56 - 2015-05-06 16:54 - 02228224 _____ () C:\Program Files\simplitec\simplitec Power Suite\MFL_rel_u_vc12.dll
2015-07-29 22:45 - 2011-01-13 11:44 - 00232800 _____ () C:\Program Files\StarMoney 10\ouservice\PATCHW32.dll
2014-08-09 12:36 - 2011-01-13 10:44 - 00232800 _____ () C:\Program Files\StarMoney 9.0\ouservice\PATCHW32.dll
2013-03-21 20:24 - 2013-03-21 20:24 - 00222368 _____ () C:\Program Files\Amazon Browser Bar\ToolbarUpdaterService.exe
2015-07-24 10:49 - 2015-07-24 10:49 - 00773592 _____ () C:\Program Files\Amazon Browser Bar\search_protect.exe
2015-02-20 05:42 - 2015-02-20 05:42 - 00317560 ____N () C:\Program Files\Common Files\G DATA\AVKProxy\PktIcpt2.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Günter Meier\Documents\Fotovorlagen:com.dropbox.attributes
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\.DEFAULT\...\amazon.de -> amazon.de
IE trusted site: HKU\S-1-5-21-3597727890-3998022267-917300989-1000\...\amazon.de -> amazon.de
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-3597727890-3998022267-917300989-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: Datenträger ist nicht mit dem Internet verbunden.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist deaktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\Services: StarMoney 7.0 OnlineUpdate => 2
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\startupreg: Adobe Reader Speed Launcher => "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
MSCONFIG\startupreg: JMB36X IDE Setup => C:\Windows\RaidTool\xInsIDE.exe
MSCONFIG\startupreg: NeroFilterCheck => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
MSCONFIG\startupreg: SoundMAXPnP => C:\Program Files\Analog Devices\Core\smax4pnp.exe
==================== FirewallRules (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{DB1B0F8C-F8B0-4EDB-8050-9903D99C271E}C:\program files\icq6.5\icq.exe] => (Allow) C:\program files\icq6.5\icq.exe
FirewallRules: [TCP Query User{D2ED50E5-ECBA-4948-A737-CD574422ED83}C:\program files\icq6.5\icq.exe] => (Allow) C:\program files\icq6.5\icq.exe
FirewallRules: [UDP Query User{BC1B4E24-7EBD-4EC5-8594-55F8ACBD8274}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{040CD7D5-ECE8-49EE-8A50-977C4F681C43}C:\program files\mozilla firefox\firefox.exe] => (Block) C:\program files\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{D6F4D7DB-4845-47F1-8E55-8DA46042BA13}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [TCP Query User{C87F02C0-6E69-4D92-8920-9E65E63E4FAD}C:\program files\internet explorer\iexplore.exe] => (Allow) C:\program files\internet explorer\iexplore.exe
FirewallRules: [{C7D6D316-A356-4310-AD6B-4981B9F8B777}] => (Allow) C:\Program Files\Windows Live\Messenger\livecall.exe
FirewallRules: [{DE344125-C3EF-4BAD-B2DA-A1599E5EB1BB}] => (Allow) svchost.exe
FirewallRules: [{A50D645D-011F-492D-BF38-EB7A6863AAFC}] => (Allow) C:\Program Files\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [UDP Query User{B8EF7B60-2422-4342-975E-B6A2067C6871}C:\program files\icq6\icq.exe] => (Allow) C:\program files\icq6\icq.exe
FirewallRules: [TCP Query User{ADEC9F8E-8625-48A4-8A60-2D04234396AE}C:\program files\icq6\icq.exe] => (Allow) C:\program files\icq6\icq.exe
FirewallRules: [{4FDB4FE1-D932-4439-B87F-6A438835C552}] => (Allow) C:\Program Files\StarMoney 7.0\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{1405F477-C137-4B8B-BACB-752782BF0BC4}] => (Allow) C:\Program Files\StarMoney 7.0\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{6E52F4DD-1DB8-41B7-9EF9-C1720B1071EB}] => (Allow) C:\Program Files\StarMoney 7.0\app\StarMoney.exe
FirewallRules: [{F450EACA-F7F1-4C16-A862-CF5650E61586}] => (Allow) C:\Program Files\StarMoney 7.0\app\StarMoney.exe
FirewallRules: [{61D8180E-69E0-44D0-9825-CC55CF9E77C6}] => (Allow) C:\Users\Günter Meier\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{4A8ADBAB-8CB2-412F-9430-A58A7062D98A}] => (Allow) C:\Users\Günter Meier\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{7ED9393A-D714-4C67-9066-BF5760279FD2}] => (Allow) C:\Windows\Temp\IMInstaller\incredimail_installer.exe
FirewallRules: [{2B44D336-9058-41C8-A627-DC2FDDC1806E}] => (Allow) C:\Windows\Temp\IMInstaller\incredimail_installer.exe
FirewallRules: [{80368D74-E7DB-4F7D-9F02-FE106A76A00C}] => (Allow) C:\Program Files\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{A79CA6CC-A682-419D-89DB-DAFEC93D724D}] => (Allow) C:\Program Files\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{FA0986BF-4915-4DED-8AA2-F7586A6F7D5F}] => (Allow) C:\Program Files\IncrediMail\Bin\ImpCnt.exe
FirewallRules: [{B17CA17F-6034-4B49-8DB8-0FEADF7E93F0}] => (Allow) C:\Program Files\IncrediMail\Bin\IncMail.exe
FirewallRules: [{AF7D77F4-EE2A-42EB-8D13-DE4BAA176B5C}] => (Allow) C:\Program Files\IncrediMail\Bin\IncMail.exe
FirewallRules: [{8839229D-A821-4495-B79D-C6C553E3B29B}] => (Allow) C:\Program Files\IncrediMail\Bin\ImApp.exe
FirewallRules: [{AD490351-CD10-40EA-BEDE-0B79B2C331DC}] => (Allow) C:\Program Files\IncrediMail\Bin\ImApp.exe
FirewallRules: [{1D8D05B8-D46B-4950-A9EA-85D92F3AC71E}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{426AFD31-A30C-4BF1-9A5A-F7DBC1566220}] => (Allow) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{5CC9264A-17A9-4A6D-9838-E6D64973F460}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{FA888CC4-0283-403E-AE44-9D88A46A0B0F}] => (Allow) C:\Program Files\StarMoney 9.0\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{BCB71965-94DE-47A3-A9D1-C5C6D2D725D6}] => (Allow) C:\Program Files\StarMoney 9.0\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{1861CF61-4EE2-419C-A3AC-45A526472F52}] => (Allow) C:\Program Files\StarMoney 9.0\app\StarMoney.exe
FirewallRules: [{9B399FA5-CE50-4C73-9E33-32D5720D2CC2}] => (Allow) C:\Program Files\StarMoney 9.0\app\StarMoney.exe
FirewallRules: [{44117AEF-EC60-4924-8622-141C42DBFD8C}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{1B8582D3-9153-4A84-81D8-2E2FA904916A}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{6DC934A1-CABE-47C3-BBDB-E667D26D3764}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{7C5467E3-0AB4-4B05-BFC8-814A14D88C16}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{2E237F61-D6B4-483C-8DC3-5C4AAAC08574}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{113776B5-2BE7-429B-81AD-DFA7850A78F3}] => (Allow) C:\Program Files\Microsoft Office\Office15\lync.exe
FirewallRules: [{45F2DD33-BBFF-4866-B9F7-8717AF298B0C}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{7936D596-1165-4FC0-9D83-E8E564CCA25E}] => (Allow) C:\Program Files\Microsoft Office\Office15\UcMapi.exe
FirewallRules: [{FFE1557E-0267-4A9F-A333-F610BFFFF2BF}] => (Allow) C:\Program Files\Deutsche Telekom AG\Browser 7\Browser7.exe
FirewallRules: [{B72C2DE3-F7AA-4039-AEA3-8BB23726543C}] => (Allow) C:\Program Files\Deutsche Telekom AG\Browser 7\Browser7.exe
FirewallRules: [{0499696A-7CFA-4E00-828B-6676988C9DDB}] => (Allow) C:\Program Files\StarMoney 10\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{CA378E91-2269-4F8E-BACA-3192532B1733}] => (Allow) C:\Program Files\StarMoney 10\ouservice\StarMoneyOnlineUpdate.exe
FirewallRules: [{4E1E623C-3507-4E41-9191-EF317A05B33E}] => (Allow) C:\Program Files\StarMoney 10\app\StarMoney.exe
FirewallRules: [{1C0E5D20-0F39-4ED0-9D73-DF44A2AFC3A5}] => (Allow) C:\Program Files\StarMoney 10\app\StarMoney.exe
FirewallRules: [{D998154B-4F5B-4463-BCAC-F41B4C4A1B74}] => (Allow) C:\Program Files\simplitec\simplifast\PowerSuite.exe
FirewallRules: [{5F41C9C5-062A-4596-97B6-DFBBC6F0DC27}] => (Allow) C:\Program Files\simplitec\simplifast\PowerSuite.exe
FirewallRules: [{7D72ECE0-A4AC-4AFD-ADFA-3227298E9BC1}] => (Allow) C:\Program Files\simplitec\simplifast\ServiceProvider.exe
FirewallRules: [{603A4EB2-8FEA-47A0-BEBD-5A84320106B6}] => (Allow) C:\Program Files\simplitec\simplifast\ServiceProvider.exe
FirewallRules: [{BD375068-A645-4810-A32E-ABD60014A60E}] => (Allow) C:\Program Files\simplitec\simplitec Power Suite\PowerSuite.exe
FirewallRules: [{9FEE394B-0061-4D96-A2E2-76639C645CA1}] => (Allow) C:\Program Files\simplitec\simplitec Power Suite\PowerSuite.exe
FirewallRules: [{5DE97CF7-47B0-481A-97A9-687C8F0A499E}] => (Allow) C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe
FirewallRules: [{1414BB0A-2983-49C1-9CA9-D75704B9C143}] => (Allow) C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe
FirewallRules: [{7370E5AC-5D97-4D83-B08C-5670587B2597}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{88FA3FBE-7657-42DB-82D2-DED836237376}] => (Allow) C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe
FirewallRules: [{782E3989-2D24-41B6-BB25-C48C3B5A2CC2}] => (Allow) C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe
FirewallRules: [{61AEEFA5-E66E-410B-8EB3-C8D9EC32B8B4}] => (Allow) C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe
FirewallRules: [{9FD6D478-AA5F-4ACD-80D1-AEA25B738887}] => (Allow) C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe
FirewallRules: [{72A6D150-1990-4F46-A338-7AA7CC7D3EDC}] => (Allow) C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe
FirewallRules: [{E8ABAB9E-FE3C-41CF-9CEA-4ADBF486523C}] => (Allow) C:\Program Files\simplitec\simplitec Power Suite\ServiceProvider.exe
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (10/18/2015 06:49:28 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Browser7.exe, Version: 39.0.3.5700, Zeitstempel: 0x55c88cd2
Name des fehlerhaften Moduls: xul.dll, Version: 39.0.3.5700, Zeitstempel: 0x55c88e9c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x00b1ba22
ID des fehlerhaften Prozesses: 0xecc
Startzeit der fehlerhaften Anwendung: 0xBrowser7.exe0
Pfad der fehlerhaften Anwendung: Browser7.exe1
Pfad des fehlerhaften Moduls: Browser7.exe2
Berichtskennung: Browser7.exe3
Error: (10/17/2015 05:32:25 PM) (Source: GDFwSvc) (EventID: 0) (User: )
Description: Can not connect to Process Manager (0)
Error: (10/17/2015 03:47:55 PM) (Source: MsiInstaller) (EventID: 1024) (User: GÜNTER-PC)
Description: Produkt: Adobe Acrobat Reader DC - Deutsch - Update "{AC76BA86-7AD7-0000-2550-AC0F094E6500}" konnte nicht installiert werden. Fehlercode 1625. Windows Installer kann Protokolle erstellen, um bei der Problembehandlung betreffend der Installation von Softwarepaketen behilflich zu sein. Verwenden Sie folgenden Link, um Anweisungen zur Aktivierung der Protokollierungsunterstützung zu erhalten: hxxp://go.microsoft.com/fwlink/?LinkId=23127
Error: (10/17/2015 02:00:47 PM) (Source: RegDefragTask) (EventID: 1001) (User: GÜNTER-PC)
Description: ERROR missing /Name: option
Error: (10/17/2015 02:00:47 PM) (Source: RegDefragTask) (EventID: 1001) (User: GÜNTER-PC)
Description: ERROR CFG File; none found
Error: (10/17/2015 02:00:47 PM) (Source: RegDefragTask) (EventID: 1001) (User: GÜNTER-PC)
Description: ERROR Multistring not found: RegDefragNT.exe
Error: (10/17/2015 02:00:22 PM) (Source: RegDefragTask) (EventID: 1001) (User: GÜNTER-PC)
Description: ERROR missing /Name: option
Error: (10/17/2015 02:00:22 PM) (Source: RegDefragTask) (EventID: 1001) (User: GÜNTER-PC)
Description: ERROR CFG File; none found
Error: (10/17/2015 02:00:22 PM) (Source: RegDefragTask) (EventID: 1001) (User: GÜNTER-PC)
Description: ERROR Multistring not found: RegDefragNT.exe
Error: (10/17/2015 02:00:07 PM) (Source: RegDefragTask) (EventID: 1001) (User: GÜNTER-PC)
Description: ERROR missing /Name: option
Systemfehler:
=============
Error: (10/20/2015 04:07:59 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "G Data Personal Firewall" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (10/20/2015 04:07:59 PM) (Source: DCOM) (EventID: 10005) (User: )
Description: 1053GDFwSvc-Service{1DED95CA-C567-464A-B405-087EDDF0B095}
Error: (10/20/2015 04:07:57 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst G Data Personal Firewall erreicht.
Error: (10/18/2015 05:54:30 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: Ein an das System angeschlossenes Gerät funktioniert nicht.SCM Microsystems Inc. SCR33x USB Smart Card Reader 00x31200012 00 0a 20
Error: (10/18/2015 05:54:30 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: Ein an das System angeschlossenes Gerät funktioniert nicht.SCM Microsystems Inc. SCR33x USB Smart Card Reader 00x31200012 00 0a 20
Error: (10/18/2015 05:51:56 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: Ein an das System angeschlossenes Gerät funktioniert nicht.SCM Microsystems Inc. SCR33x USB Smart Card Reader 00x31200012 00 0a 20
Error: (10/18/2015 05:51:56 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: Ein an das System angeschlossenes Gerät funktioniert nicht.SCM Microsystems Inc. SCR33x USB Smart Card Reader 00x31200012 00 0a 20
Error: (10/18/2015 05:44:58 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: Ein an das System angeschlossenes Gerät funktioniert nicht.SCM Microsystems Inc. SCR33x USB Smart Card Reader 00x31200012 00 0a 20
Error: (10/18/2015 05:44:58 PM) (Source: SCardSvr) (EventID: 610) (User: )
Description: Ein an das System angeschlossenes Gerät funktioniert nicht.SCM Microsystems Inc. SCR33x USB Smart Card Reader 00x31200012 00 0a 20
Error: (10/18/2015 05:15:49 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 18.10.2015 um 17:10:00 unerwartet heruntergefahren.
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 CPU 4400 @ 2.00GHz
Prozentuale Nutzung des RAM: 43%
Installierter physikalischer RAM: 2046.49 MB
Verfügbarer physikalischer RAM: 1158.08 MB
Summe virtueller Speicher: 4092.98 MB
Verfügbarer virtueller Speicher: 2703.4 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:298.09 GB) (Free:218.35 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive e: (KINGSTON) (Removable) (Total:58.58 GB) (Free:58.44 GB) FAT32
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: E7AFE7AF)
Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS)
========================================================
Disk: 5 (MBR Code: Windows XP) (Size: 58.6 GB) (Disk ID: C9D93779)
Partition 1: (Active) - (Size=58.6 GB) - (Type=0C)
==================== Ende vom Addition.txt ============================
|
| Themen zu Windows7: PDFs in Inbox kaputt, Amazon Downloader nicht deinstallierbar |
| deinstallieren, dnsapi.dll, downloader, downloads, fehlermeldung, installer, nsis/startpage.cb, posteingang, praktisch, pup.optional.alexatb, pup.optional.amazontb, pup.optional.appgraffiti, pup.optional.icq, pup.optional.icqtoolbar, pup.optional.inboxtoolbar, pup.optional.mystartsearch.shrtcln, pup.optional.rebateinformer, pup.optional.searchprotect, speicher, speichern, starmoney, win32/slowpcfighter.a, win32/toolbar.mywebsearch.ao |
Baum-Darstellung