Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Rumbler.ru

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Antwort
Alt 21.12.2017, 17:54   #1
xeylos
 
Rumbler.ru - Standard

Rumbler.ru



Hallo Ich habe mir irgendwie den Nova.rumbler.ru eingefangen und bräuchte eure Hilfe ihn wieder loszuwerden. ich weis nicht wie es passiert da, ich Malwarebytes preium habe aber als ich es gemerkt habe das ich den Virus haben war komischerweise Malwarebytes deinstalliert ich weis aber nicht wie das passiert sein los. Evt könnt ihr mir helfen.

Code:
ATTFilter
ESETSmartInstaller@High as downloader log:
all ok
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=2154380bae41a344b4a1cc136461f2a9
# end=init
# utc_time=2017-12-21 01:39:59
# local_time=2017-12-21 02:39:59 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
Update Init
Update Download
Update Finalize
Updated modules version: 35809
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# EOSSerial=2154380bae41a344b4a1cc136461f2a9
# end=updated
# utc_time=2017-12-21 01:45:26
# local_time=2017-12-21 02:45:26 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# osver=6.1.7601 NT Service Pack 1
# product=EOS
# version=8
# OnlineScannerApp.exe=1.0.0.1
# OnlineScanner.ocx=1.0.0.7777
# api_version=3.1.1
# EOSSerial=2154380bae41a344b4a1cc136461f2a9
# engine=35809
# end=finished
# remove_checked=false
# archives_checked=true
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2017-12-21 04:28:19
# local_time=2017-12-21 05:28:19 (+0100, Mitteleuropäische Zeit)
# country="Germany"
# lang=1031
# osver=6.1.7601 NT Service Pack 1
# compatibility_mode_1='Microsoft Security Essentials'
# compatibility_mode=5895 16777213 100 100 33423100 136857693 0 0
# scanned=491955
# found=12
# cleaned=0
# scan_time=9773
sh=8D914C57C3C5D24CB1CE03329A860C1ECB74AE50 ft=1 fh=c3f75091d1a56ae1 vn="Variante von Win32/FusionCore.I eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\AppData\Roaming\DVDVideoSoft\FreeYouTubeToMP3Converter.exe"
sh=C365C82FC6EBDFBED37115D9E5E84DBB9644D7BE ft=1 fh=3a470ae20b00fdf7 vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\7 Zip 32 Bit - CHIP-Installer.exe"
sh=3310942AD3113DCA9907FEFDA1CB5D2BD0AFC621 ft=1 fh=2c1519e9295840d4 vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\BlueStacks App Player - CHIP-Installer.exe"
sh=88E940F1A26F3B0011A57C23243C2D5BDCC4F622 ft=1 fh=409d8f5ff2e10c0e vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\Free Dailymotion Download - CHIP-Installer.exe"
sh=6419A562DB955AC30E08B015C9F9FC741809262C ft=1 fh=5b83dfa74ace40e2 vn="Variante von Win32/FusionCore.I eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\FreeStudio_6.6.29.1027_o.exe"
sh=0E3961BE26A5DB2439028A981C6D364B3A612409 ft=1 fh=a0ad1b2d31087374 vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\inSSIDer Home letzte Freeware Version - CHIP-Installer.exe"
sh=7AB14BD072C2D69E745B94F1E068A0812EF88391 ft=1 fh=ce64a503fee99a7f vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\MotioninJoy - CHIP-Installer.exe"
sh=B531A814775D3EBB74A0FC07B4A163E627E6F721 ft=1 fh=a508425708cbaae0 vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\Samsung Android USB Composite Device Treiber - CHIP-Installer (1).exe"
sh=638E412FF1CE902CF65044E9ADA685E6F000073C ft=1 fh=5280043e44f88085 vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\Samsung Android USB Composite Device Treiber - CHIP-Installer.exe"
sh=FDA9FB48B380D1DC479A2941403EF35362F9A00F ft=1 fh=e566065cbbe6b141 vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\SiSoft Sandra Lite - CHIP-Installer.exe"
sh=6FD12F3C33DF3B34DEF1614CCC1C33B2785F2C54 ft=1 fh=db69c2937b6c25c5 vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\SiSoft Sandra Lite 2015 - CHIP-Installer.exe"
sh=0AB9E9D4E6B69225E7DC91533705328DBDA23D08 ft=1 fh=b92845aba4850b74 vn="Variante von Win32/DownloadSponsor.C eventuell unerwünschte Anwendung" ac=I fn="C:\Users\Chris\Downloads\Steam - CHIP-Installer.exe"
         
frst datei

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17-12-2017
durchgeführt von Chris (Administrator) auf CHRIS (21-12-2017 17:51:49)
Gestartet von C:\Users\Chris\Downloads
Geladene Profile: Chris (Verfügbare Profile: Chris)
Platform: Windows 7 Professional Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(AMD) C:\Windows\System32\atieclxx.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe
(Advanced Micro Devices) C:\Program Files\AMD\{920DEC42-4CA5-4d1d-9487-67BE645CDDFC}\amdacpusrsvc.exe
() C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe
() C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(cFos Software GmbH) C:\Program Files\ASRock\XFast LAN\spd.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Gira Giersiepen GmbH & Co. KG) C:\Program Files (x86)\Gira\Gira Project Assistant\Gira Project Assistant Service\Service.WindowsService.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\Center\EKAiOHostService.exe
(Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKPrinterSDK.exe
(SAP SE or an SAP affiliate company) C:\Program Files (x86)\SQL Anywhere 16\Bin32\dbsrv16.exe
( Rsupport Corporation) C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenService.exe
() C:\Program Files (x86)\Mono\Service\MonoService.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Rsupport corporation) C:\Program Files (x86)\RSUPPORT\MobizenService\MobizenTray.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(pdfforge GmbH) C:\Program Files\PDF Architect 4\creator-ws.exe
(© pdfforge GmbH.) C:\ProgramData\pdfforge\PDF Architect 4 Manager\PDF Architect 4\Architect Manager.exe
(A-Volute) C:\ProgramData\Razer\Synapse\Devices\Razer Surround\Driver\RzMaelstromVADStreamingService.exe
(Razer, Inc.) C:\Program Files (x86)\Razer\Core\64bit\RzOvlMon.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
() C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
(Eastman Kodak Company) C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe
(Hager Controls S.A.S) C:\Program Files\hager\domovea\Bin\Server\domovea_Service.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe
(Brother Industries, Ltd.) C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Haufe-Lexware GmbH & Co. KG) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Mobo, Inc.) C:\Program Files (x86)\Mobo\Service\MoboDeviceService.exe
(Mobo) C:\Program Files (x86)\Mobo\Service\MoboDeviceProxy.exe
(Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [MSC] => C:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16781824 2017-01-11] (Realtek Semiconductor)
HKLM\...\Run: [ISCT Tray] => C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTsysTray8.exe [5860656 2014-08-25] (Intel Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2384984 2016-12-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [139776 2014-06-16] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [4513792 2014-05-22] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [585536 2014-11-03] (Razer Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [298776 2015-11-20] (Intel Corporation)
HKU\S-1-5-21-3970870825-992797359-547389470-1000\...\Run: [ASRock A-Tuning] => [X]
HKU\S-1-5-21-3970870825-992797359-547389470-1000\...\MountPoints2: {633ed949-5bbc-11e4-b27f-806e6f6e6963} - D:\atisetup.exe
IFEO\playstv_launcher.exe: [Debugger] "C:\Program Files (x86)\TuneUp Utilities 2013\TUAutoReactivator64.exe"
GroupPolicy: Beschränkung - Chrome <==== ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{79EDD3B5-D4DF-449C-B8F3-256F53AA4DC6}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-3970870825-992797359-547389470-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://de.yahoo.com/?fr=yset_ie_syc_oracle&type=orcl_hpset
SearchScopes: HKU\S-1-5-21-3970870825-992797359-547389470-1000 -> {39732D9B-E0FE-4C25-9E85-56B9519936E9} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=chr-yset_ie_syc_oracle&type=orcl_default
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_151\bin\ssv.dll [2017-10-30] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2017-09-05] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-30] (Oracle Corporation)
BHO: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll => Keine Datei
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\OCHelper.dll [2017-08-15] (Microsoft Corporation)
BHO-x32: PDF Architect 4 Helper -> {38279E1A-7019-40C1-B579-E99DFB3312E8} -> C:\Program Files (x86)\PDF Architect 4\creator-ie-helper.dll [2016-08-05] (pdfforge GmbH)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\URLREDIR.DLL [2017-09-05] (Microsoft Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\GROOVEEX.DLL [2017-09-05] (Microsoft Corporation)
BHO-x32: DVDVideoSoft IE Extension -> {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} -> C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll => Keine Datei
Toolbar: HKLM-x32 - PDF Architect 4 Toolbar - {23FD9C33-A9E1-48A1-8404-E5925CF1C8E1} - C:\Program Files (x86)\PDF Architect 4\creator-ie-plugin.dll [2016-08-05] (pdfforge GmbH)
Toolbar: HKU\S-1-5-21-3970870825-992797359-547389470-1000 -> Kein Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  Keine Datei
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 2h12vpl9.default
FF ProfilePath: C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\2h12vpl9.default [2017-04-02]
FF Extension: (Firefox Hotfix) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\2h12vpl9.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-10-20] [Legacy]
FF Extension: (O2 Service Suite) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\2h12vpl9.default\Extensions\{95E05177-EA09-4386-8B79-FEB1EAC063E6} [2016-08-20] [Legacy] [ist nicht signiert]
FF Extension: (Youtube Unblocker Remediation) - C:\Users\Chris\AppData\Roaming\Mozilla\Firefox\Profiles\2h12vpl9.default\features\{ccf88ff0-7e4d-4bcd-aaf3-8925d95744c1}\malware-remediation@mozilla.org.xpi [2016-10-20] [Legacy]
FF HKLM\...\Firefox\Extensions: [pdf_architect_4_conv@pdfarchitect.org] - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension
FF Extension: (PDF Architect 4 Creator) - C:\Program Files\PDF Architect 4\resources\pdfarchitect4firefoxextension [2016-08-14] [Legacy] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_28_0_0_126.dll [2017-12-12] ()
FF Plugin: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-30] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-30] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-11-26] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-12-09] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_28_0_0_126.dll [2017-12-12] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-11-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-11-10] (Intel Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [Keine Datei]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Microsoft Office\Office15\NPSPWRAP.DLL [2015-11-26] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2017-11-14] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-11-04] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-12-09] (Adobe Systems)
FF Plugin HKU\S-1-5-21-3970870825-992797359-547389470-1000: @octoshape.com/Octoshape Streaming Services,version=1.0 -> C:\Users\Chris\AppData\Roaming\Octoshape\Octoshape Streaming Services\sua-1401100-0-npoctoshape.dll [2014-01-10] (Octoshape ApS)
FF Plugin ProgramFiles/Appdata: C:\Users\Chris\AppData\Roaming\mozilla\plugins\npoctoshape.dll [2015-04-14] (Octoshape ApS)

Chrome: 
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=orcl_default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default [2017-12-21]
CHR Extension: (BetterTTV) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2017-11-20]
CHR Extension: (Google Drive) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (Adobe Acrobat) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Google Docs Offline) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (AdBlock) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-12-07]
CHR Extension: (Unlimited Free VPN - Hola) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\gkojfkhlekighikafcpjkiklfbnlmeio [2017-12-15]
CHR Extension: (WEB.DE MailCheck) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\jaogepninmlbinccpbiakcgiolijlllo [2017-08-06]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Chrome Media Router) - C:\Users\Chris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-12-15]
CHR Profile: C:\Users\Chris\AppData\Local\Google\Chrome\User Data\System Profile [2017-12-18]
CHR HKU\S-1-5-21-3970870825-992797359-547389470-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Chris\AppData\Local\Google\Drive\apdfllckaahabafndbhieahigkjlhalf_live.crx [2014-11-17]
CHR HKU\S-1-5-21-3970870825-992797359-547389470-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ccjleegmemocfpghkhpjmiccjcacackp] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================


===================== Treiber (Nicht auf der Ausnahmeliste) ======================

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-12-21 17:51 - 2017-12-21 17:51 - 000020160 _____ C:\Users\Chris\Downloads\FRST.txt
2017-12-21 17:51 - 2017-12-21 17:51 - 000000000 ____D C:\FRST
2017-12-21 17:46 - 2017-12-21 17:46 - 002392064 _____ (Farbar) C:\Users\Chris\Downloads\FRST64.exe
2017-12-21 14:39 - 2017-12-21 14:39 - 000000000 ____D C:\Program Files (x86)\ESET
2017-12-21 14:37 - 2017-12-21 14:37 - 002870984 _____ (ESET) C:\Users\Chris\Downloads\esetsmartinstaller_deu.exe
2017-12-21 13:55 - 2017-12-21 13:55 - 003927160 _____ (Google) C:\Users\Chris\Downloads\chrome_cleanup_tool.exe
2017-12-20 14:07 - 2017-12-21 15:40 - 000084256 _____ (Malwarebytes) C:\Windows\system32\Drivers\mwac.sys
2017-12-20 14:07 - 2017-12-21 06:26 - 000253880 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2017-12-20 14:07 - 2017-12-21 06:26 - 000110016 _____ (Malwarebytes) C:\Windows\system32\Drivers\farflt.sys
2017-12-20 14:07 - 2017-12-21 06:26 - 000046008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-12-20 14:07 - 2017-12-20 14:07 - 000193968 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2017-12-19 19:28 - 2017-12-19 19:28 - 000002809 _____ C:\ProgramData\Microsoft\Windows\Start Menu\easySoft-Basic 6.lnk
2017-12-19 19:28 - 2017-12-19 19:28 - 000002785 _____ C:\Users\Public\Desktop\easySoft-Basic 6.lnk
2017-12-19 19:28 - 2017-12-19 19:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Eaton
2017-12-19 19:28 - 2017-12-19 19:28 - 000000000 ____D C:\ProgramData\Eaton
2017-12-19 19:28 - 2017-12-19 19:28 - 000000000 ____D C:\Program Files (x86)\Eaton
2017-12-19 15:04 - 2017-12-19 15:04 - 000112018 _____ C:\Users\Chris\Downloads\RE632900220171219.pdf
2017-12-19 14:04 - 2017-12-21 06:26 - 000002960 _____ C:\Windows\System32\Tasks\AsrSP.exe
2017-12-18 18:12 - 2017-12-18 18:12 - 000001867 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-12-18 18:12 - 2017-12-18 18:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-12-18 18:12 - 2017-12-18 18:12 - 000000000 ____D C:\Program Files\Malwarebytes
2017-12-18 18:12 - 2017-11-29 09:11 - 000077432 _____ C:\Windows\system32\Drivers\mbae64.sys
2017-12-18 18:09 - 2017-12-18 18:09 - 000000000 ____D C:\ProgramData\MB2Migration
2017-12-18 18:04 - 2017-12-18 18:12 - 000000000 ____D C:\Program Files (x86)\ Malwarebytes Anti-Malware 
2017-12-18 18:01 - 2017-12-18 18:01 - 000571738 _____ ( ) C:\Users\Chris\Downloads\moeller_easy_soft_pro_6_22_full_rar (1).exe
2017-12-18 18:01 - 2017-12-18 18:01 - 000001756 __RSH C:\ProgramData\ntuser.pol
2017-12-18 18:00 - 2017-12-18 18:00 - 007123657 _____ C:\Users\Chris\Downloads\easySoft-Pro_V695_SP1.zip
2017-12-18 18:00 - 2017-12-18 18:00 - 000571738 _____ ( ) C:\Users\Chris\Downloads\moeller_easy_soft_pro_6_22_full_rar.exe
2017-12-18 17:58 - 2017-12-18 17:59 - 067776496 _____ C:\Users\Chris\Downloads\EASY-SOFT_696_ProD.exe
2017-12-18 17:58 - 2017-12-18 17:58 - 054666976 _____ C:\Users\Chris\Downloads\EASY-SOFT_696_BasicD.exe
2017-12-18 17:57 - 2017-12-18 17:57 - 069260248 _____ C:\Users\Chris\Downloads\EASY-SOFT_694_ProD.exe
2017-12-17 09:58 - 2017-12-17 09:58 - 000112055 _____ C:\Users\Chris\Downloads\RE632649620171212.pdf
2017-12-17 09:57 - 2017-12-17 09:57 - 000112053 _____ C:\Users\Chris\Downloads\RE632415120171205.pdf
2017-12-17 09:48 - 2017-12-17 09:48 - 000530747 _____ C:\Users\Chris\Downloads\Flyer_QC-Camera.pdf
2017-12-16 19:19 - 2017-12-16 19:19 - 054573840 _____ ( ) C:\Users\Chris\Downloads\stellarium_0_11_2_win32.exe
2017-12-16 19:19 - 2017-12-16 19:19 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Stellarium
2017-12-14 21:30 - 2017-12-14 21:30 - 000044873 _____ C:\Users\Chris\Downloads\Kontoauszug_0413777200_20171201_213016.pdf
2017-12-13 15:25 - 2017-12-13 15:25 - 000088263 _____ C:\Users\Chris\Downloads\Auswertung Finanzbuchhaltung Oktober 2017 (1).zip
2017-12-13 15:20 - 2017-12-13 15:20 - 000088263 _____ C:\Users\Chris\Downloads\Auswertung Finanzbuchhaltung Oktober 2017.zip
2017-12-13 10:41 - 2017-11-17 05:23 - 003222528 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-12-13 10:41 - 2017-11-15 02:27 - 000395968 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2017-12-13 10:41 - 2017-11-15 01:36 - 000347336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2017-12-13 10:41 - 2017-11-14 04:57 - 025731072 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2017-12-13 10:41 - 2017-11-14 04:43 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2017-12-13 10:41 - 2017-11-14 04:43 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2017-12-13 10:41 - 2017-11-14 04:32 - 002903552 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2017-12-13 10:41 - 2017-11-14 04:31 - 000066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2017-12-13 10:41 - 2017-11-14 04:31 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2017-12-13 10:41 - 2017-11-14 04:30 - 000577024 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2017-12-13 10:41 - 2017-11-14 04:30 - 000417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2017-12-13 10:41 - 2017-11-14 04:30 - 000088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2017-12-13 10:41 - 2017-11-14 04:25 - 005925888 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2017-12-13 10:41 - 2017-11-14 04:24 - 000054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2017-12-13 10:41 - 2017-11-14 04:24 - 000034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2017-12-13 10:41 - 2017-11-14 04:21 - 000615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2017-12-13 10:41 - 2017-11-14 04:20 - 000817152 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2017-12-13 10:41 - 2017-11-14 04:20 - 000814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2017-12-13 10:41 - 2017-11-14 04:20 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2017-12-13 10:41 - 2017-11-14 04:20 - 000116224 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2017-12-13 10:41 - 2017-11-14 04:15 - 000968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2017-12-13 10:41 - 2017-11-14 04:12 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2017-12-13 10:41 - 2017-11-14 04:06 - 000087552 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2017-12-13 10:41 - 2017-11-14 04:06 - 000077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-12-13 10:41 - 2017-11-14 04:05 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2017-12-13 10:41 - 2017-11-14 04:03 - 000199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2017-12-13 10:41 - 2017-11-14 04:02 - 000092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2017-12-13 10:41 - 2017-11-14 04:00 - 000315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2017-12-13 10:41 - 2017-11-14 03:59 - 000152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2017-12-13 10:41 - 2017-11-14 03:51 - 000262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2017-12-13 10:41 - 2017-11-14 03:48 - 015267328 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2017-12-13 10:41 - 2017-11-14 03:48 - 000807936 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2017-12-13 10:41 - 2017-11-14 03:48 - 000726528 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2017-12-13 10:41 - 2017-11-14 03:47 - 001359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2017-12-13 10:41 - 2017-11-14 03:46 - 002134528 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2017-12-13 10:41 - 2017-11-14 03:39 - 003241472 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2017-12-13 10:41 - 2017-11-14 03:27 - 001544192 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2017-12-13 10:41 - 2017-11-14 03:16 - 000800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2017-12-13 10:41 - 2017-11-14 02:37 - 013679616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2017-12-13 10:41 - 2017-11-14 02:15 - 000416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2017-12-13 10:41 - 2017-11-14 02:15 - 000279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2017-12-13 10:41 - 2017-11-14 02:15 - 000076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2017-12-13 10:41 - 2017-11-14 02:10 - 020269056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2017-12-13 10:41 - 2017-11-14 01:32 - 000499200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2017-12-13 10:41 - 2017-11-14 01:31 - 000064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2017-12-13 10:41 - 2017-11-07 21:56 - 002724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2017-12-13 10:41 - 2017-11-07 21:46 - 000341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2017-12-13 10:41 - 2017-11-07 21:46 - 000062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2017-12-13 10:41 - 2017-11-07 21:46 - 000047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2017-12-13 10:41 - 2017-11-07 21:44 - 002293760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2017-12-13 10:41 - 2017-11-07 21:41 - 000047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2017-12-13 10:41 - 2017-11-07 21:41 - 000030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2017-12-13 10:41 - 2017-11-07 21:40 - 000476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2017-12-13 10:41 - 2017-11-07 21:39 - 000662016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2017-12-13 10:41 - 2017-11-07 21:38 - 000620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2017-12-13 10:41 - 2017-11-07 21:38 - 000115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2017-12-13 10:41 - 2017-11-07 21:29 - 000060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2017-12-13 10:41 - 2017-11-07 21:28 - 000091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2017-12-13 10:41 - 2017-11-07 21:28 - 000073216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdc.ocx
2017-12-13 10:41 - 2017-11-07 21:27 - 004509696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2017-12-13 10:41 - 2017-11-07 21:26 - 000168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2017-12-13 10:41 - 2017-11-07 21:24 - 000130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2017-12-13 10:41 - 2017-11-07 21:19 - 000230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2017-12-13 10:41 - 2017-11-07 21:18 - 000694272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2017-12-13 10:41 - 2017-11-07 21:17 - 002058752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2017-12-13 10:41 - 2017-11-07 21:17 - 001155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2017-12-13 10:41 - 2017-11-07 21:04 - 002767872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2017-12-13 10:41 - 2017-11-07 21:01 - 001313280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2017-12-13 10:41 - 2017-11-07 20:58 - 000710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2017-12-13 10:41 - 2017-11-07 17:31 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2017-12-13 10:41 - 2017-11-07 17:13 - 000002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2017-12-13 10:41 - 2017-11-04 16:31 - 000194048 _____ (Microsoft Corporation) C:\Windows\system32\itircl.dll
2017-12-13 10:41 - 2017-11-04 16:31 - 000170496 _____ (Microsoft Corporation) C:\Windows\system32\itss.dll
2017-12-13 10:41 - 2017-11-04 16:10 - 000158720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itircl.dll
2017-12-13 10:41 - 2017-11-04 16:10 - 000142336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\itss.dll
2017-12-13 10:41 - 2017-11-02 17:55 - 000281600 _____ (Microsoft Corporation) C:\Windows\system32\iprtrmgr.dll
2017-12-13 10:41 - 2017-11-02 17:55 - 000138240 _____ (Microsoft Corporation) C:\Windows\system32\rtm.dll
2017-12-13 10:41 - 2017-11-02 17:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\mprdim.dll
2017-12-13 10:41 - 2017-11-02 17:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\iprtprio.dll
2017-12-13 10:41 - 2017-11-02 16:11 - 000271360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtrmgr.dll
2017-12-13 10:41 - 2017-11-02 16:11 - 000115200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rtm.dll
2017-12-13 10:41 - 2017-11-02 16:11 - 000075264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mprdim.dll
2017-12-13 10:41 - 2017-11-02 15:56 - 000008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iprtprio.dll
2017-12-13 10:41 - 2017-10-17 00:04 - 001001984 _____ (Microsoft Corporation) C:\Windows\system32\gpedit.dll
2017-12-13 10:41 - 2017-10-16 23:46 - 000953344 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gpedit.dll
2017-12-13 10:41 - 2017-10-12 01:20 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2017-12-11 21:30 - 2017-12-11 21:30 - 000000000 ____D C:\Users\Chris\Desktop\Mercedes AAchen1
2017-12-11 10:16 - 2017-12-11 10:16 - 000000000 ____D C:\Users\Chris\Desktop\Musik Dezember 2017
2017-12-09 00:01 - 2017-12-09 00:01 - 000000997 _____ C:\Users\Chris\Desktop\Origin.lnk
2017-12-08 23:27 - 2017-12-08 23:27 - 000000000 ____D C:\Users\Chris\Documents\Electronic Arts
2017-12-08 23:03 - 2017-12-12 19:10 - 000000799 _____ C:\Users\Public\Desktop\Die Sims 4.lnk
2017-12-08 23:03 - 2017-12-08 23:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Die Sims 4
2017-12-08 23:03 - 2014-09-16 18:45 - 000447752 _____ (On2.com) C:\Windows\SysWOW64\vp6vfw.dll
2017-12-08 22:16 - 2017-12-08 22:16 - 000000000 ____D C:\Users\Chris\.Origin
2017-12-07 21:15 - 2017-12-07 21:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-12-06 19:22 - 2017-12-06 19:23 - 001928944 _____ (Haufe-Lexware GmbH & Co.KG) C:\Users\Chris\Downloads\Financial_Office_Plus_Setup (2).exe
2017-12-06 19:22 - 2017-12-06 19:22 - 001928944 _____ (Haufe-Lexware GmbH & Co.KG) C:\Users\Chris\Downloads\Financial_Office_Plus_Setup (3).exe
2017-12-05 02:06 - 2017-12-05 02:06 - 000051016 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-12-05 02:06 - 2017-12-05 02:06 - 000045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-12-05 02:06 - 2017-12-05 02:06 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-12-05 02:06 - 2017-12-05 02:06 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-12-03 15:45 - 2017-12-03 15:45 - 000024854 _____ C:\Users\Chris\Downloads\rechnung_AR20171108A0576358 (1).pdf
2017-12-03 15:43 - 2017-12-03 15:43 - 000024854 _____ C:\Users\Chris\Downloads\rechnung_AR20171108A0576358.pdf
2017-12-03 15:40 - 2017-12-03 15:40 - 000111741 _____ C:\Users\Chris\Downloads\RE630474620171018 (1).pdf
2017-12-03 15:25 - 2017-12-03 15:25 - 000361136 _____ C:\Users\Chris\Downloads\RA_14735_1330618.pdf
2017-12-03 15:23 - 2017-12-03 15:23 - 000359533 _____ C:\Users\Chris\Downloads\RA_14735_1327762 (1).pdf
2017-12-03 15:12 - 2017-12-03 15:12 - 000060896 _____ C:\Users\Chris\Downloads\Umsaetze_KtoNr850747700_EUR_03-12-2017_1512.pdf
2017-12-01 17:28 - 2017-12-01 17:28 - 000044873 _____ C:\Users\Chris\Downloads\Kontoauszug_0413777200_20171201_172836.pdf
2017-11-30 15:28 - 2017-11-30 15:28 - 000000935 _____ C:\Users\Chris\Desktop\Open Broadcaster Software.lnk
2017-11-30 14:35 - 2017-11-30 14:36 - 189764565 _____ C:\Users\Chris\Downloads\Update_G1_V2.0.442.zip
2017-11-30 13:43 - 2017-11-30 13:43 - 005849639 _____ C:\Users\Chris\Downloads\20679400.zip
2017-11-30 12:20 - 2017-11-30 12:20 - 000002254 _____ C:\Users\Public\Desktop\Gira Projekt Assistent 2.3.lnk
2017-11-30 12:20 - 2017-11-30 12:20 - 000000000 ____D C:\Users\Chris\AppData\Local\Gira_Giersiepen_GmbH_&_Co
2017-11-30 12:20 - 2017-11-30 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gira
2017-11-30 12:19 - 2017-11-30 12:19 - 000000000 ____D C:\ProgramData\Gira
2017-11-30 12:19 - 2017-11-30 12:19 - 000000000 ____D C:\Program Files (x86)\Gira
2017-11-30 12:17 - 2017-11-30 12:18 - 264625920 _____ C:\Users\Chris\Downloads\Gira_Project_Assistant_2.3_Setup.zip
2017-11-29 17:15 - 2017-11-29 17:15 - 000113258 _____ C:\Users\Chris\Downloads\RE632154620171129.pdf
2017-11-28 21:30 - 2017-11-28 21:30 - 000253964 _____ C:\Users\Chris\Downloads\OB-Berief-20170612-V07.viactp
2017-11-28 18:51 - 2017-11-28 20:13 - 000000000 ____D C:\Users\Chris\Desktop\Musik November 2017
2017-11-22 18:16 - 2017-11-22 18:17 - 068582904 _____ (obsproject.com) C:\Users\Chris\Downloads\OBS_0_659b_With_Browser_Installer.exe
2017-11-22 17:03 - 2017-11-22 17:03 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2017-11-22 17:03 - 2017-11-22 17:03 - 000002483 _____ C:\Users\Public\Desktop\Bonjour-Druckerassistent.lnk
2017-11-22 17:03 - 2017-11-22 17:03 - 000000000 ____D C:\Windows\System32\Tasks\Apple
2017-11-22 17:03 - 2017-11-22 17:03 - 000000000 ____D C:\Users\Chris\AppData\Local\Apple
2017-11-22 17:03 - 2017-11-22 17:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bonjour-Druckdienste
2017-11-22 17:03 - 2017-11-22 17:03 - 000000000 ____D C:\ProgramData\Apple
2017-11-22 17:03 - 2017-11-22 17:03 - 000000000 ____D C:\Program Files\Bonjour Print Services
2017-11-22 17:03 - 2017-11-22 17:03 - 000000000 ____D C:\Program Files\Bonjour
2017-11-22 17:03 - 2017-11-22 17:03 - 000000000 ____D C:\Program Files (x86)\Bonjour
2017-11-22 17:03 - 2017-11-22 17:03 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2017-11-22 17:02 - 2017-11-22 17:02 - 000001978 _____ C:\Users\Public\Desktop\Mobizen.lnk
2017-11-22 17:02 - 2017-11-22 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RSUPPORT
2017-11-22 17:02 - 2017-11-22 17:02 - 000000000 ____D C:\Program Files (x86)\RSUPPORT
2017-11-22 17:01 - 2017-11-22 17:02 - 050042536 _____ (RSUPPORT ) C:\Users\Chris\Downloads\mobizen (1).exe
2017-11-22 15:40 - 2017-11-22 15:40 - 000106800 _____ C:\Users\Chris\Downloads\GS76402620171122.pdf

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2017-12-21 17:46 - 2014-10-25 21:31 - 000000000 ____D C:\Users\Chris\AppData\Roaming\TS3Client
2017-12-21 17:08 - 2016-06-29 11:19 - 000001212 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-12-21 08:42 - 2009-07-14 05:45 - 000022592 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-12-21 08:42 - 2009-07-14 05:45 - 000022592 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-12-21 08:28 - 2017-01-10 21:32 - 000013405 _____ C:\Windows\BRRBCOM.INI
2017-12-21 08:13 - 2017-01-04 20:20 - 000000000 ____D C:\Users\Chris\Desktop\Lexware  pdf
2017-12-21 08:12 - 2016-12-05 00:24 - 000000000 ____D C:\ProgramData\Lexware
2017-12-21 08:11 - 2015-02-22 14:02 - 000000000 ____D C:\Program Files (x86)\Origin
2017-12-21 06:36 - 2014-10-26 10:01 - 000000000 ____D C:\Users\Chris\AppData\Local\Adobe
2017-12-21 06:33 - 2015-01-13 17:30 - 000000000 _____ C:\Windows\system32\RzMaelstromVADAudioDeviceManager_log.txt
2017-12-21 06:31 - 2011-04-12 08:43 - 000699092 _____ C:\Windows\system32\perfh007.dat
2017-12-21 06:31 - 2011-04-12 08:43 - 000149232 _____ C:\Windows\system32\perfc007.dat
2017-12-21 06:31 - 2009-07-14 06:13 - 001619284 _____ C:\Windows\system32\PerfStringBackup.INI
2017-12-21 06:31 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-12-21 06:30 - 2016-02-13 14:14 - 000000000 ____D C:\ProgramData\BlueStacksSetup
2017-12-21 06:30 - 2015-02-22 14:03 - 000000000 ____D C:\Users\Chris\AppData\Local\Origin
2017-12-21 06:30 - 2015-02-22 14:02 - 000000000 ____D C:\ProgramData\Origin
2017-12-21 06:26 - 2017-11-12 02:18 - 000002962 _____ C:\Windows\System32\Tasks\AsrAPPShop
2017-12-21 06:25 - 2016-08-15 17:55 - 000000262 _____ C:\Windows\Tasks\SetGoIoPackageUpdater.job
2017-12-21 06:25 - 2016-06-29 11:19 - 000001208 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-12-21 06:25 - 2014-10-26 17:21 - 000000000 ____D C:\ProgramData\Kodak
2017-12-21 06:25 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-12-20 22:48 - 2014-10-24 21:52 - 000065536 _____ C:\Windows\system32\spu_storage.bin
2017-12-20 20:11 - 2014-10-25 19:11 - 000000000 ____D C:\Program Files (x86)\Overwolf
2017-12-20 18:31 - 2015-02-22 14:03 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Origin
2017-12-18 18:01 - 2009-07-14 04:20 - 000000000 ___HD C:\Windows\system32\GroupPolicy
2017-12-18 18:01 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\GroupPolicy
2017-12-18 17:59 - 2016-08-09 18:55 - 000000000 ____D C:\Users\Chris\AppData\Local\Downloaded Installations
2017-12-18 17:45 - 2014-10-25 21:20 - 000000000 ____D C:\Users\Chris\AppData\Local\Battle.net
2017-12-18 16:25 - 2014-10-25 21:20 - 000000000 ____D C:\Program Files (x86)\Battle.net
2017-12-17 10:42 - 2014-11-04 20:34 - 000007639 _____ C:\Users\Chris\AppData\Local\Resmon.ResmonCfg
2017-12-17 07:10 - 2014-10-26 10:10 - 000000000 ____D C:\Users\Chris\AppData\Local\CrashDumps
2017-12-16 01:15 - 2014-10-25 19:10 - 000000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-12-15 16:19 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\rescache
2017-12-14 20:48 - 2014-10-24 21:35 - 000002187 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-12-14 20:37 - 2017-11-08 15:48 - 000000000 ____D C:\Users\Chris\AppData\Local\Amazon Music
2017-12-14 20:36 - 2009-07-14 05:45 - 000455032 _____ C:\Windows\system32\FNTCACHE.DAT
2017-12-14 20:36 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\SysWOW64\Setup
2017-12-14 20:36 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\Setup
2017-12-14 00:19 - 2014-10-25 23:47 - 000000000 ____D C:\Windows\system32\MRT
2017-12-14 00:17 - 2017-10-10 22:07 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT-KB890830.exe
2017-12-14 00:17 - 2014-10-25 23:47 - 133326408 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-12-13 23:06 - 2017-11-08 15:49 - 000001183 _____ C:\Users\Chris\Desktop\Amazon Music.lnk
2017-12-13 12:08 - 2017-10-20 18:29 - 000000000 ____D C:\Users\Chris\Desktop\Mercedes AAchen
2017-12-13 10:31 - 2017-04-06 18:41 - 000000000 ____D C:\Users\Chris\Desktop\steuer
2017-12-12 17:07 - 2014-11-09 18:28 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-12-12 17:07 - 2014-11-09 18:28 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-12-12 17:07 - 2014-11-09 18:28 - 000004366 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-12-12 17:07 - 2014-11-09 18:28 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-12-12 17:07 - 2014-11-09 18:28 - 000000000 ____D C:\Windows\system32\Macromed
2017-12-10 18:55 - 2017-01-03 18:13 - 000000000 ____D C:\Users\Chris\Desktop\Selbstständigkeit
2017-12-08 23:03 - 2015-02-22 14:04 - 000000000 ____D C:\Program Files (x86)\Origin Games
2017-12-08 23:03 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-12-08 22:18 - 2015-11-26 17:29 - 000000000 ___RD C:\Users\Chris\OneDrive
2017-12-08 22:16 - 2014-10-24 21:19 - 000000000 ____D C:\Users\Chris
2017-12-07 21:15 - 2016-06-29 11:19 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-11-30 22:13 - 2016-11-12 21:08 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-11-30 15:52 - 2017-10-30 16:21 - 000000000 ____D C:\Users\Chris\AppData\Roaming\obs-studio
2017-11-30 15:33 - 2014-10-26 17:42 - 000000000 ____D C:\Users\Chris\AppData\Roaming\OBS
2017-11-30 15:33 - 2014-10-26 17:42 - 000000000 ____D C:\Program Files (x86)\OBS
2017-11-30 15:28 - 2014-10-26 17:42 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2017-11-30 15:28 - 2014-10-26 17:42 - 000000000 ____D C:\Program Files\OBS
2017-11-30 12:19 - 2014-10-24 21:31 - 000000000 ____D C:\ProgramData\Package Cache
2017-11-30 12:06 - 2017-09-08 05:42 - 000000000 ____D C:\Users\Chris\Desktop\datenbank ets
2017-11-22 17:02 - 2016-03-19 07:41 - 000000000 ____D C:\Users\Chris\AppData\Roaming\Rsupport
2017-11-22 17:02 - 2016-02-28 15:21 - 000000000 ____D C:\Users\Chris\.android

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2017-01-08 16:48 - 2017-01-08 21:22 - 000000033 _____ () C:\Users\Chris\AppData\Roaming\AdobeWLCMCache.dat
2015-08-10 16:52 - 2015-05-12 17:11 - 000000034 _____ () C:\Users\Chris\AppData\Roaming\pdfdrawcodec.dll
2017-11-12 02:16 - 2017-11-12 02:17 - 000000064 _____ () C:\Users\Chris\AppData\Roaming\Sandra.ldb
2017-11-12 02:16 - 2016-02-17 23:30 - 015384576 _____ () C:\Users\Chris\AppData\Roaming\Sandra.mdb
2016-11-02 20:10 - 2016-11-02 20:10 - 000000036 ____H () C:\Users\Chris\AppData\Roaming\swk.ini
2016-08-20 22:49 - 2016-08-20 23:33 - 000002018 _____ () C:\Users\Chris\AppData\Local\installer.log
2014-10-26 17:24 - 2015-08-05 15:08 - 000000236 _____ () C:\Users\Chris\AppData\Local\LaunchHomeCenter.log
2014-11-04 20:34 - 2017-12-17 10:42 - 000007639 _____ () C:\Users\Chris\AppData\Local\Resmon.ResmonCfg

Einige Dateien in TEMP:
====================
2017-02-17 23:11 - 2017-02-17 23:13 - 429088496 _____ (AMD Inc.) C:\Users\Chris\AppData\Local\Temp\tmpBB33.exe
2017-10-30 23:16 - 2016-02-21 14:32 - 000892720 _____ () C:\Users\Chris\AppData\Local\Temp\UninstallAndyTemp.exe
2017-07-23 15:50 - 2017-07-23 15:50 - 015301888 _____ (Microsoft Corporation) C:\Users\Chris\AppData\Local\Temp\vcredist_x64.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2017-12-20 19:46

==================== Ende von FRST.txt ============================
         

Alt 21.12.2017, 17:56   #2
xeylos
 
Rumbler.ru - Standard

Rumbler.ru



Addition Datei
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 17-12-2017
durchgeführt von Chris (21-12-2017 17:52:18)
Gestartet von C:\Users\Chris\Downloads
Windows 7 Professional Service Pack 1 (X64) (2014-10-24 20:19:24)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-3970870825-992797359-547389470-500 - Administrator - Disabled)
Chris (S-1-5-21-3970870825-992797359-547389470-1000 - Administrator - Enabled) => C:\Users\Chris
Gast (S-1-5-21-3970870825-992797359-547389470-501 - Limited - Enabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

3DMark (HKLM\...\{A4F25B0E-C0F2-4CA6-A481-AC123A0B4D85}) (Version: 1.5.915.0 - Futuremark) Hidden
3DMark (HKLM-x32\...\{12d6e0d7-21d5-4755-9da2-70352c6f7558}) (Version: 1.5.915.0 - Futuremark)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version:  - )
ACP Application (HKLM\...\{6BD46891-C9D6-AD70-C500-3018D399E9CD}) (Version: 2017.1102.1434.20 - Advanced Micro Devices, Inc.) Hidden
Acrobat.com (HKLM-x32\...\{77DCDCE3-2DED-62F3-8154-05E745472D07}) (Version: 0.0.0 - Adobe Systems Incorporated) Hidden
Acrobat.com (HKLM-x32\...\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.1.377 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 18.009.20050 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 27.0.0.124 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.9.5.353 - Adobe Systems Incorporated)
Adobe Flash Player 28 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 28.0.0.126 - Adobe Systems Incorporated)
Adobe Illustrator CC 2017 (HKLM-x32\...\ILST_21_0_0) (Version: 21.0.0 - Adobe Systems Incorporated)
aioscnnr (HKLM-x32\...\{EF53BFAB-4C10-40DB-A82D-9B07111715C6}) (Version: 7.6.13.10 - Your Company Name) Hidden
Amazon Music (HKU\S-1-5-21-3970870825-992797359-547389470-1000\...\Amazon Amazon Music) (Version: 6.1.5.1213 - Amazon Services LLC)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 17.11.1 - Advanced Micro Devices, Inc.)
APP Shop v1.0.31 (HKLM-x32\...\{90242E9B-BC60-46E3-8EE7-8E953F702280}_is1) (Version: 1.0.31 - ASRock Inc.)
Apple Software Update (HKLM-x32\...\{6956856F-B6B3-4BE0-BA0B-8F495BE32033}) (Version: 2.1.1.116 - Apple Inc.)
Application Profiles (HKLM-x32\...\{51BB3435-5A70-FAB4-2AAB-DFB9B1B209F5}) (Version: 1.00.0000 - Advanced Micro Devices, Inc.)
ASRock App Charger v1.0.6 (HKLM\...\ASRock App Charger_is1) (Version: 1.0.6 - ASRock Inc.)
ASRock SmartConnect v1.0.7 (HKLM\...\ASRock SmartConnect_is1) (Version: 1.0.7 - ASRock Inc.)
ASRock XFast RAM v3.0.3 (HKLM\...\ASRock XFast RAM_is1) (Version:  - ASRock Inc.)
A-Tuning v2.0.271 (HKLM-x32\...\A-Tuning_is1) (Version: 2.0.271 - ASRock Inc.)
BAB STARTER (HKLM-x32\...\{41911A02-50BF-40C8-A0E4-90AD20B164F9}) (Version: 1.0.15 - BAB TECHNOLOGIE GmbH)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Berker TS RTR Plugin 0.0.1.0 (HKLM-x32\...\{E11AC1A7-2F59-4911-90ED-E0B55D2101D6}) (Version: 0.0.1.0 - Berker GmbH & Co. KG)
BlueStacks App Player (HKLM-x32\...\{AF0D9073-1AE0-4C21-AA70-41294AEFBDFD}) (Version: 2.0.8.5638 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
Brother MFL-Pro Suite MFC-J5620DW (HKLM-x32\...\{7FC49664-DAA4-4E7C-ADD0-614ABB43691B}) (Version: 1.0.5.0 - Brother Industries, Ltd.)
C4USelfUpdater (HKLM-x32\...\{48B41C3A-9A92-4B81-B653-C97FEB85C910}) (Version: 1.00.0000 - Your Company Name) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.5844 - CDBurnerXP)
center (HKLM-x32\...\{56BA241F-580C-43D2-8403-947241AAE633}) (Version: 7.8.0.0 - Eastman Kodak Company) Hidden
Compatibility Pack for the 2007 Office system (HKLM-x32\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Content Manager (HKLM-x32\...\Content Manager) (Version: 3.18.5.613171 - NNG Llc.)
Counter-Strike 1.6 (HKLM-x32\...\{13B792AA-C078-43A4-8A3A-8B12D629940D}) (Version: 1.00.0000 - )
Curse Client (HKU\S-1-5-21-3970870825-992797359-547389470-1000\...\101a9f93b8f0bb6f) (Version: 5.1.1.844 - Curse)
DALI gateway IP Plug-in V1.3.1 (HKLM-x32\...\{AC3F15F8-4921-4047-8F7F-B781AA58CD30}) (Version: 1.3.1 - Merten GmbH)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Die Sims™ 4 (HKLM-x32\...\{48EBEBBF-B9F8-4520-A3CF-89A730721917}) (Version: 1.37.35.1010 - Electronic Arts Inc.)
Discord (HKU\S-1-5-21-3970870825-992797359-547389470-1000\...\Discord) (Version: 0.0.298 - Discord Inc.)
domovea Client (HKLM\...\{2B73DB78-DE75-48A5-9447-D64B56C0840E}) (Version: 3.6.0.2 - hager)
domovea Konfigurationtool (HKLM\...\{12D6ABE0-ABF0-44E9-A9A1-79268B394794}) (Version: 3.6.0.2 - hager)
domovea Server (HKLM\...\{34DF8B75-25B8-4920-8000-72B783BC6331}) (Version: 3.6.0.2 - hager)
Dropbox (HKLM-x32\...\Dropbox) (Version: 40.4.46 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.65.1 - Dropbox, Inc.) Hidden
easySoft-Basic 6 (HKLM-x32\...\{3FDA521B-5C9D-4F27-85F4-32595BF914BB}) (Version: 6.90.5193 - Eaton Industries GmbH)
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version:  - )
essentials (HKLM-x32\...\{BE94C681-68E2-4561-8ABC-8D2E799168B4}) (Version: 7.8.0.0 - Eastman Kodak Company) Hidden
ETS3 - B.IQ-Display Berker 1v08 (HKLM-x32\...\Biq006ETS3_is1) (Version: 1v08 - Gebr. Berker GmbH & Co KG)
ETS3 - B.IQ-Display Berker 2v04 (HKLM-x32\...\Bq2006ETS3_is1) (Version: 2v04 - Gebr. Berker GmbH & Co KG)
ETS3 - Infodisplay Berker 3.03 (HKLM-x32\...\ID006ETS3_is1) (Version: 3.03 - Berker GmbH & Co. KG)
ETS3 - Tastsensor mit RTR und Display Berker 1v04 (HKLM-x32\...\K1006ETS3_is1) (Version: 1v04 - Gebr. Berker GmbH & Co KG)
ETS3 - Wetterstation 2v06 Merten (HKLM-x32\...\{DE3F165D-D00A-ws-012-ETS3}_is1) (Version: 2v06 - Merten GmbH & Co. KG)
ETS3 - Wetterstation 3020601 Berker (HKLM-x32\...\{DE3F165D-D00A-ws-006-ETS3}_is1) (Version: 3020601 - Berker GmbH & Co. KG)
ETS3 Generic PlugIn Setup V 2.0.33 (HKLM-x32\...\{7B5A76C4-F2FF-43A4-A0E3-0CF4B2ABF67D}) (Version: 2.0.33 - Siemens AG)
FLV and Media Player 4.2.1.1 (HKLM-x32\...\FLV and Media Player) (Version: 4.2.1.1 - Applian Technologies)
Free Studio (HKLM-x32\...\Free Studio_is1) (Version: 6.6.39.707 - Digital Wave Ltd)
FreeMind (HKLM-x32\...\B991B020-2968-11D8-AF23-444553540000_is1) (Version: 1.0.1 - )
Futuremark SystemInfo (HKLM-x32\...\{AFBB2F94-A43D-46AD-8F77-66ACB3C71EDF}) (Version: 4.39.552.0 - Futuremark)
Gira Project Assistant 2.3 (HKLM-x32\...\{752f6366-0ac7-44df-abc1-ff1f202b476b}) (Version: 2.3.0.529 - Gira Giersiepen GmbH & Co. KG)
Gira Projekt Assistent 2.3 (HKLM-x32\...\{C5573B23-2400-4BB9-A18C-EFC059DCFE4A}) (Version: 2.3.0.529 - Gira Giersiepen GmbH & Co. KG) Hidden
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version:  - GOG.com)
GOG.com Downloader version 3.6.0 (HKLM-x32\...\{456A5815-604D-4D72-94DF-346D2B978A59}_is1) (Version: 3.6.0 - GOG.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 63.0.3239.84 - Google Inc.)
Google Drive (HKLM-x32\...\{9BC95947-92FD-438B-A168-C01F9A5B7292}) (Version: 2.34.7529.6838 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.7 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
hagercad.expert (Dokumentation) (HKLM-x32\...\{8689F9A9-DC92-4589-9F4D-61748397D798}) (Version: 3.2.1709.2703 - Hager)
hagercad.expert (HKLM-x32\...\{797CE9D1-1887-4DED-B48E-EC01962B3BEE}) (Version: 3.2.1709.2703 - Hager)
HagercadPDF (HKLM\...\HagercadPDF) (Version:  3.0 - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
Heroes of the Storm (HKLM-x32\...\Heroes of the Storm) (Version:  - Blizzard Entertainment)
HOTSLogsUploader (HKU\S-1-5-21-3970870825-992797359-547389470-1000\...\99a83d131490dc73) (Version: 1.0.0.12 - HOTSLogsUploader)
Infinite HD™ App (HKU\S-1-5-21-3970870825-992797359-547389470-1000\...\Octoshape Streaming Services) (Version:  - Octoshape ApS)
inSSIDer Home (HKLM-x32\...\{9E54E4AE-B67A-4925-8E92-0E1F9817FD73}) (Version: 3.1.2.1 - MetaGeek, LLC)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.31.1000 - Intel Corporation)
Intel(R) Network Connections 19.0.27.0 (HKLM\...\PROSetDX) (Version: 19.0.27.0 - Intel)
Intel(R) Smart Connect Technology (HKLM\...\{94A137EA-92EF-441C-A7E2-6757CC08EA82}) (Version: 5.0.10.2907 - Intel Corporation)
Intel(R) Update Manager (HKLM-x32\...\{84A2B59B-6A7B-4C01-8592-15C9BFE6AC36}) (Version: 2.4.3 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.3.49 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{da2de8c3-61b9-4b3b-916d-6b2fb2b1a90c}) (Version: 10.0.21 - Intel(R) Corporation) Hidden
ITHau.Faktura 2015.10.01 (HKLM-x32\...\ITHau.Faktura) (Version: 2015.10.01 - IT-Service Christian Hau)
Java 8 Update 151 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
Java SE Development Kit 8 Update 91 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180910}) (Version: 8.0.910.14 - Oracle Corporation)
Java SE Development Kit 8 Update 92 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180920}) (Version: 8.0.920.14 - Oracle Corporation)
KNX ETS5 Compatibility Components V5.5.0 (HKLM-x32\...\{070C17B5-D0DB-443A-9504-0AF04FE91F1E}) (Version: 5.5.0.0 - KNX Association cvba) Hidden
KNX ETS5 v5.5.4 (HKLM-x32\...\{8b1004e0-8147-409d-92b2-a0345ec4d0aa}) (Version: 5.5.952.23148 - KNX Association cvba)
KNX ETS5 v5.5.4 (HKLM-x32\...\{9CCEC06C-DC5C-4D5C-9C72-B641D5186E3C}) (Version: 5.5.952.23148 - KNX Association cvba) Hidden
Kodak AIO Printer (HKLM\...\{27EF8E7F-88D1-4ec5-ADE2-7E447FDF114E}) (Version: 7.8.1.0 - Eastman Kodak Company) Hidden
KODAK All-in-One Software (HKLM-x32\...\{E0F274B7-592B-4669-8FB8-8D9825A09858}) (Version: 7.9.1.1 - Eastman Kodak Company)
Lexware Datenbank plus 2017 (HKLM-x32\...\{A8635748-EE67-41C0-B0C9-33A9C3C3554D}) (Version: 17.00.00.0075 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware EasyArchive 2017 (HKLM-x32\...\{C0C53938-408C-4CFB-BE8E-C95AC7E1BAA8}) (Version: 1.00.00.0007 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Elster (HKLM-x32\...\{A8877DD0-6474-4AA3-8998-64F83844622E}) (Version: 17.03.00.0307 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Elster 2017 (HKLM-x32\...\{c2bd713f-8377-4bac-8e60-fcf27567e0fe}) (Version: 17.3.0.208 - Haufe-Lexware GmbH & Co.KG)
Lexware financial office plus 2017 (HKLM-x32\...\{5F61BE82-70A1-4E6D-B63F-3F30A8FFB1AC}) (Version: 17.52.00.0345 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware financial office plus handwerk 2017 (HKLM-x32\...\{43310fcf-ee63-43aa-a671-fc5939e03ea4}) (Version: 17.52.0.243 - Haufe-Lexware GmbH & Co.KG)
Lexware Info Service (HKLM-x32\...\{73681446-EE9F-47DF-9185-4BB6B985F743}) (Version: 17.00.00.0028 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware Installations Dienst (HKLM-x32\...\{3E7D13DE-D424-4AF6-A2DD-2E28506844E7}) (Version: 5.03.00.0048 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware lohn+gehalt Diagnose (HKLM-x32\...\{63EA36B6-341B-4AE9-BBBC-2F24E2DDC96C}) (Version: 4.00.00.0082 - Haufe-Lexware GmbH & Co.KG) Hidden
Lexware online banking (HKLM-x32\...\{2A594C9D-3011-4628-A524-1D5B7181C0A9}) (Version: 24.01.00.0124 - Haufe-Lexware GmbH & Co.KG)
Lexware PDF-Export 5 (HKLM-x32\...\{D6604FDD-E71F-40CA-9764-98649EC969DD}) (Version: 5.50.01.0011 - Haufe-Lexware GmbH & Co.KG) Hidden
LINE (HKU\S-1-5-21-3970870825-992797359-547389470-1000\...\LINE) (Version: 5.4.0.1554 - LINE Corporation)
Malwarebytes Version 3.3.1.2183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.3.1.2183 - Malwarebytes)
Manager (HKLM-x32\...\{38251B9A-C44B-42D9-9A6A-0697986E334A}) (Version: 4.1.4.27792 - 2015 pdfforge GmbH. All rights reserved) Hidden
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4.7 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Office Professional 2013 - de-de (HKLM\...\ProfessionalRetail - de-de) (Version: 15.0.4971.1002 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3970870825-992797359-547389470-1000\...\OneDriveSetup.exe) (Version: 17.3.4604.0120 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Command Line Utilities  (HKLM\...\{DA3B8CEF-CA41-4038-BD6C-D7136FBFDBDF}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB  (HKLM\...\{E4A1FDA3-689D-44DA-9B39-86BD2270F522}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client  (HKLM\...\{3965C9F9-9B9A-4391-AC4B-8388210D3AA0}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24215 (HKLM-x32\...\{d992c12e-cab2-426f-bde3-fb8c53950b0d}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{2e085fd2-a3e4-4b39-8e10-6b8d35f55244}) (Version: 14.0.23918.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Mobizen (HKLM-x32\...\{BA0D3A44-BCEE-4C8B-BCD4-F7F1E64F41E3}) (Version: 2.21.6.1 - RSUPPORT)
MoboMarket For Android (HKLM-x32\...\aMoboMarket) (Version: 5.1.9.589 - Mobo)
MoboMarket For iOS (HKLM-x32\...\iMoboMarket) (Version: 5.1.9.589 - Mobo)
MotioninJoy Gamepad tool 0.7.1001 (HKLM\...\{330DAC67-5B62-452A-A0E4-6B4A5923940F}_is1) (Version: 0.7.1001 - www.motioninjoy.com)
Mozilla Firefox 46.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 de)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1 - Mozilla)
myHomeControl 1.2.21 SP3 (HKLM\...\{75F29801-60C9-4534-894D-46F94B9316B8}) (Version: 1.2.21.0399 - BootUp GmbH)
myHomeControl 1.2.21 SP3 (HKLM-x32\...\{b9cb7625-35fe-4156-ac6e-f7b6e5ad8cf4}) (Version: 1.0.4.0 - BootUp GmbH) Hidden
Naviextras Toolbox Prerequesities (HKLM-x32\...\{537575D6-3B96-474C-BD8F-DFF667363DBD}) (Version: 1.0.0 - NNG Llc.)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.1 - Notepad++ Team)
o2 Service Suite (HKLM-x32\...\o2 Service Suite) (Version: 1.16.1.1167 - Telefónica Germany GmbH & Co. OHG)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 20.1.1 - OBS Project)
ocr (HKLM-x32\...\{BFBCF96F-7361-486A-965C-54B17AC35421}) (Version: 6.2.3.50 - Eastman Kodak Company) Hidden
ODF Add-in for Microsoft Office (HKLM-x32\...\{2BC21CD2-8053-406A-80F6-9AB61717B49D}) (Version: 4.0.5309.0 - OpenXML/ODF Translator Team)
Office 15 Click-to-Run Extensibility Component (HKLM\...\{90150000-008C-0000-1000-0000000FF1CE}) (Version: 15.0.4971.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (HKLM\...\{90150000-007E-0000-1000-0000000FF1CE}) (Version: 15.0.4971.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (HKLM\...\{90150000-008C-0407-1000-0000000FF1CE}) (Version: 15.0.4971.1002 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenOffice 4.1.2 (HKLM-x32\...\{F5CAB1AF-7B1A-4CEC-B829-A3F699473AE1}) (Version: 4.12.9782 - Apache Software Foundation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.8.17910 - Electronic Arts, Inc.)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.108.211.0 - Overwolf Ltd.)
Path of Exile (HKLM-x32\...\{90A4562F-D4A1-4B65-906D-41F236CF6902}) (Version: 2.1.1.50105 - Grinding Gear Games)
PDF Architect 4 (HKLM-x32\...\PDF Architect 4) (Version: 4.0.34.26215 - pdfforge GmbH)
PDF Architect 4 Create Module (HKLM\...\{72B9DF2C-76FA-40B5-A469-16EAB159CE72}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 Edit Module (HKLM\...\{BDF7326B-7ED4-4034-B867-F4E88D4E628B}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDF Architect 4 View Module (HKLM\...\{03E04B47-9270-4613-8D7E-DA4AD2B259A0}) (Version: 4.1.5.29097 - pdfforge GmbH) Hidden
PDFBearbeiten V2.3 (HKLM-x32\...\PDFBearbeiten_is1) (Version:  - hxxp://www.PDFBearbeiten.net)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.3.2 - pdfforge GmbH)
PDFtk - The PDF Toolkit (HKLM-x32\...\{D2183C6A-1659-4177-B8CA-0644B972949D}) (Version: 2.02 - PDF Labs)
Personal ID (HKLM-x32\...\{F722209B-739E-40E4-ADB1-062BD032A0DB}) (Version: 1.8.5 - coolspot AG)
PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.9.2-r111395-release - Plays.tv, LLC)
PokerStars.eu (HKLM-x32\...\PokerStars.eu) (Version:  - PokerStars.eu)
PreReq (HKLM-x32\...\{DA5BDB2A-12F0-4343-8351-21AAEB293990}) (Version: 6.2.4.0 - Eastman Kodak Company) Hidden
PrintProjects (HKLM-x32\...\PrintProjects) (Version: 1.0.0.9282 - RocketLife Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: 5.2.7-r116720-release - Raptr, Inc)
Razer Core (HKLM-x32\...\Razer Core) (Version: 1.0.1.66 - Razer Inc)
Razer Surround (HKLM-x32\...\Razer Surround) (Version: 1.05.10 - Razer Inc.)
Razer Synapse 2.0 (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 1.18.18.23036 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8036 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
SAMSUNG Android USB Modem Software (HKLM\...\SAMSUNG Android USB Modem) (Version: V5.28.2.1 - )
Samsung SideSync (HKLM-x32\...\Samsung SideSync) (Version: 4.7.5.203 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
Set&Go io (HKLM-x32\...\{A58CED24-9BDC-47CE-AA12-07DEAA6CD606}) (Version: 3.0.2.0 - Somfy) Hidden
Set&Go io (HKLM-x32\...\Set&Go io 3.0.2.0) (Version: 3.0.2.0 - Somfy)
SimCity™ (HKLM-x32\...\{F70FDE4B-8F86-4eb6-8C8E-636EC89F6419}) (Version: 4.0.86.0859 - Electronic Arts)
Simulationcraft(x64) version 6.1.0.06 (HKLM-x32\...\{AC025546-B7C5-45A7-B16A-80AE482CBB01}_is1) (Version: 6.1.0.06 - Simulationcraft)
SiSoftware Sandra Lite 2016.SP1 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}_is1) (Version: 22.20.2016.3 - SiSoftware)
Skype™ 7.24 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.24.104 - Skype Technologies S.A.)
Sparkol VideoScribe (HKLM-x32\...\{BC3D545D-2EE7-4AF8-8CEB-AEE94DF006AD}) (Version: 2.3.3028 - Sparkol) Hidden
Sparkol VideoScribe (HKLM-x32\...\Sparkol VideoScribe 2.3.3028) (Version: 2.3.3028 - Sparkol)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.38843 - TeamViewer)
The Witcher 2 - Assassins of Kings Enhanced Edition (HKLM-x32\...\GOGPACKTHEWITCHER2EE_is1) (Version: 3.4.0.25 - GOG.com)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.0.9.0 - GOG.com)
TomTom MyDrive Connect 4.1.0.2658 (HKLM-x32\...\MyDriveConnect) (Version: 4.1.0.2658 - TomTom)
TouchPanel Image Editor (HKLM-x32\...\{59EB1E3F-852D-4341-B368-C9B3BD2F014A}) (Version: 2.0.220 - Merten GmbH)
TuneUp Utilities 2013 (HKLM-x32\...\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}) (Version: 13.0.4000.245 - TuneUp Software) Hidden
TuneUp Utilities 2013 (HKLM-x32\...\TuneUp Utilities 2013) (Version: 13.0.4000.245 - TuneUp Software)
TuneUp Utilities Language Pack (de-DE) (HKLM-x32\...\{F4811919-F252-4B25-9AB2-8859A85810B5}) (Version: 13.0.4000.245 - TuneUp Software) Hidden
TwitchAlerts (HKU\S-1-5-21-3970870825-992797359-547389470-1000\...\fb3f6ca9b67f53a3) (Version: 1.0.0.8 - TwitchAlerts)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Virtual Audio Cable 4.14 (HKLM\...\Virtual Audio Cable 4.14) (Version:  - )
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.4.7.0 - Elaborate Bytes)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Warcraft Logs Uploader (HKLM-x32\...\{581AA9DD-44B4-BB82-DFFB-49DB7BB7BDFE}) (Version: 3.52 - UNKNOWN) Hidden
Warcraft Logs Uploader (HKLM-x32\...\com.warcraft.logs) (Version: 3.52 - UNKNOWN)
WinRAR 5.31 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version:  - Blizzard Entertainment)
World of Warcraft Public Test (HKLM-x32\...\World of Warcraft Public Test) (Version:  - Blizzard Entertainment)
XFast LAN v9.05 (HKLM\...\XFast LAN) (Version: 9.05 - cFos Software GmbH, Bonn)
Yahoo Search Set (HKLM-x32\...\Yahoo! SearchSet) (Version:  - Yahoo Inc.)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-3970870825-992797359-547389470-1000_Classes\CLSID\{19fd39d9-ef7f-4d15-905c-2a9475b1bf50}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3970870825-992797359-547389470-1000_Classes\CLSID\{41b71af0-6961-4d2e-93fc-a1e4e8e32193}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3970870825-992797359-547389470-1000_Classes\CLSID\{44ca494e-03ac-4e09-81c4-a2ce31a66bbf}\InprocServer32 -> C:\Windows\system32\dfshim.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3970870825-992797359-547389470-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-11-10] (Google)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers1-x32: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers1-x32: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Notepad++\NppShell_06.dll [2016-03-28] ()
ContextMenuHandlers1-x32: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ContextMenuHandlers1-x32: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers1-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google)
ContextMenuHandlers1-x32: [PDFArchitect4_ManagerExt] -> {3AECFCB3-8472-48E9-BC7B-5A3CD945C886} => C:\Program Files\PDF Architect 4\creator-context-menu.dll [2016-08-05] (pdfforge GmbH)
ContextMenuHandlers1-x32: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Windows\system32\mscoree.dll [2010-11-21] (Microsoft Corporation)
ContextMenuHandlers1-x32: [TuneUp Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\TuneUp Utilities 2013\SDShelEx-x64.dll [2014-01-28] (TuneUp Software)
ContextMenuHandlers1-x32: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG)
ContextMenuHandlers1-x32: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers1-x32-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers4-x32: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ContextMenuHandlers4-x32: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => C:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers4-x32: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2017-11-10] (Google)
ContextMenuHandlers4-x32: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd)
ContextMenuHandlers4-x32: [TuneUp Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\TuneUp Utilities 2013\DseShExt-x64.dll [2014-01-28] (TuneUp Software)
ContextMenuHandlers4-x32: [TuneUp Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\TuneUp Utilities 2013\SDShelEx-x64.dll [2014-01-28] (TuneUp Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2017-11-02] (Advanced Micro Devices, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-12-05] (Dropbox, Inc.)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-10-25] ()
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2017-11-01] (Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2016-02-04] (Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2016-02-04] (Alexander Roshal)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {06CC2931-E2BF-4219-9B52-8F933CC95D66} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [2017-11-02] (Advanced Micro Devices, Inc.)
Task: {17AFA01D-B708-4B62-8780-D7EDDCA78394} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2015-07-08] (Lenovo)
Task: {19D9FC21-55F4-4BB6-8974-26402AEB8AEB} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {2232D250-C6AD-41F8-A010-08A23747242B} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-06-29] (Dropbox, Inc.)
Task: {23907DFC-A6CA-483B-8C52-2146B3B0721C} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {3CC06E3E-5806-4642-AB59-88CC5973CCF0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-09-27] (Adobe Systems Incorporated)
Task: {4FC8ADCA-E314-4E47-B474-64D136C8D50E} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2017-09-05] (Oracle Corporation)
Task: {660A1E84-3D6F-4686-ACDC-0D36EEDB855C} - System32\Tasks\AsrSP.exe => C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\AsrSP.exe [2014-12-02] ()
Task: {694B6666-0A5D-4823-AE33-EBAC60258A5C} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)
Task: {75049AAA-1C3C-4A4F-9D25-27445E3A54F0} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2013\OneClick.exe [2014-01-28] (TuneUp Software)
Task: {78E55BEA-1FD9-4B43-9E67-0ACDC2F74288} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] ()
Task: {799CA2D9-16D8-4502-86C6-858C24D29C35} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-09-05] (Microsoft Corporation)
Task: {7AEE1E61-58A1-46B5-8F7E-8F3F341C785F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {7E1CDF49-00F6-44E4-8679-CE08BDBB7C5D} - System32\Tasks\{0091DD11-5F8D-4D0A-8CEB-6BA6034E3DBD} => D:\witcher 2\The Witcher 2 Enhanced Edition\Launcher.exe [2013-05-06] (CD Projekt RED)
Task: {8C6DA979-3C82-44E2-ADB5-2DA5B398D0CF} - System32\Tasks\Lexware-Online-Aktualisierungsprogramm => C:\Program Files (x86)\Lexware\Update Manager\LxUpdateManager.exe [2016-09-01] (Haufe-Lexware GmbH & Co. KG)
Task: {9E2F55A2-9990-43E9-94B4-462B252D4055} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2017-12-18] (Overwolf LTD)
Task: {A3742183-B8AD-41C4-AC8E-F12950A22B65} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2008-07-30] (Apple Inc.)
Task: {B7068BFC-A659-431A-B855-9CD0BC5DD92D} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2017-09-05] (Microsoft Corporation)
Task: {C6BEEE9F-112C-46AC-93C6-B72C6E3E5B16} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2014-04-09] ()
Task: {D328D1D3-894E-4785-B46A-70607557389D} - System32\Tasks\AdobeAAMUpdater-1.0-CHRIS-Chris => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2016-07-01] (Adobe Systems Incorporated)
Task: {D42BF99D-4A8B-4254-A36B-FCAE6E5C9CEC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-12-12] (Adobe Systems Incorporated)
Task: {E52CC260-F5D5-4E82-97F5-AB83BB6B2FC4} - System32\Tasks\SetGoIoPackageUpdater => D:\somfy\SetGoIoPackageUpdater.exe [2015-08-26] (Somfy)
Task: {F2BDD824-3457-44BF-AF3A-5BFE21B75EE4} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-06-29] (Dropbox, Inc.)
Task: {F3C1AC78-3514-4946-B586-80BF61B556E4} - System32\Tasks\AsrAPPShop => C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe [2017-04-25] ()

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\SetGoIoPackageUpdater.job => D:\somfy\SetGoIoPackageUpdater.exe

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)


==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2017-07-07 21:01 - 2016-01-23 12:11 - 000097768 _____ () C:\Windows\System32\custmon64i.dll
2014-07-29 02:05 - 2014-07-31 15:17 - 000463112 _____ () C:\Program Files (x86)\ASRock Utility\A-Tuning\Bin\IOMonitorSrv.exe
2017-11-12 02:17 - 2017-04-25 18:16 - 006179080 _____ () C:\Program Files (x86)\ASRock Utility\APP Shop\AsrAPPShop.exe
2015-11-26 17:24 - 2017-01-17 03:25 - 000117440 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2014-08-25 15:01 - 2014-08-25 15:01 - 000209712 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
2014-08-25 15:01 - 2014-08-25 15:01 - 000057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\NetworkHeuristic.dll
2014-08-25 15:01 - 2014-08-25 15:01 - 000037168 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTNetMon.dll
2014-08-25 15:01 - 2014-08-25 15:01 - 000057648 _____ () C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\ISCTEncryptionCheck.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000047832 _____ () C:\Program Files (x86)\Mono\Service\MonoService.exe
2016-10-25 09:57 - 2016-10-25 09:57 - 031723696 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2014-01-28 09:37 - 2014-01-28 09:37 - 000741176 _____ () C:\Program Files (x86)\TuneUp Utilities 2013\avgrepliba.dll
2014-10-31 23:27 - 2014-10-31 23:27 - 000183488 _____ () C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
2017-12-18 18:12 - 2017-11-29 09:11 - 002301384 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2017-12-18 18:12 - 2017-11-29 09:11 - 002358728 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\MwacLib.dll
2017-07-25 13:25 - 2017-07-25 13:25 - 000015360 _____ () C:\Program Files\AMD\CNext\CNext\libEGL.DLL
2017-07-25 13:25 - 2017-07-25 13:25 - 002519040 _____ () C:\Program Files\AMD\CNext\CNext\libGLESv2.dll
2017-12-14 20:48 - 2017-12-06 05:24 - 004063064 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.84\libglesv2.dll
2017-12-14 20:48 - 2017-12-06 05:24 - 000099672 _____ () C:\Program Files (x86)\Google\Chrome\Application\63.0.3239.84\libegl.dll
2016-12-09 15:09 - 2016-12-09 15:09 - 052051544 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2017-01-10 21:32 - 2009-02-27 16:38 - 000139264 ____R () C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2017-08-12 11:01 - 2017-05-16 20:49 - 000114664 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\zlib1.dll
2017-08-12 11:02 - 2017-05-16 20:49 - 000108008 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_filesystem-vc120-mt-1_56.dll
2017-08-12 11:02 - 2017-05-16 20:49 - 000024040 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_system-vc120-mt-1_56.dll
2017-08-12 11:02 - 2017-05-16 20:49 - 000048104 _____ () C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\boost_date_time-vc120-mt-1_56.dll
2016-12-02 01:54 - 2016-12-02 01:54 - 000118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-12-02 01:54 - 2016-12-02 01:54 - 000223232 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-12-02 01:54 - 2016-12-02 01:54 - 000117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-12-02 01:54 - 2016-12-02 01:54 - 000124928 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-12-09 15:09 - 2016-12-09 15:09 - 000110680 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin7.dll
2016-12-02 01:54 - 2016-12-02 01:54 - 000086528 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2014-11-10 11:12 - 2014-11-10 11:12 - 001243936 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000474328 _____ () C:\Program Files (x86)\Mobo\Service\ADCM.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000830680 _____ () C:\Program Files (x86)\Mobo\Service\IMLM.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000462552 _____ () C:\Program Files (x86)\Mobo\Service\ABIC.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000178392 _____ () C:\Program Files (x86)\Mobo\Service\cdm.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000213720 _____ () C:\Program Files (x86)\Mobo\Service\Utility.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000063704 _____ () C:\Program Files (x86)\Mobo\Service\AutoStatistic.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000331480 _____ () C:\Program Files (x86)\Mobo\Service\UBDG.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000255704 _____ () C:\Program Files (x86)\Mobo\Service\Singleton.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000255192 _____ () C:\Program Files (x86)\Mobo\Service\iTunesInterface.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000096984 _____ () C:\Program Files (x86)\Mobo\Service\Qrcode.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000685784 _____ () C:\Program Files (x86)\Mobo\Service\DDM.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000880856 _____ () C:\Program Files (x86)\Mobo\Service\NetInterface.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 003064024 _____ () C:\Program Files (x86)\Mobo\Service\ABL.dll
2017-10-31 00:10 - 2016-10-25 09:16 - 000089304 _____ () C:\Program Files (x86)\Mobo\Service\ABE.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)


==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)


==================== Hosts Inhalt: ===============================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-3970870825-992797359-547389470-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Chris\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^HandyAndy.lnk => C:\Windows\pss\HandyAndy.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Chris^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CurseClientStartup.ccip => C:\Windows\pss\CurseClientStartup.ccip.Startup
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: Amazon Music => C:\Users\Chris\AppData\Local\Amazon Music\Amazon Music.exe
MSCONFIG\startupreg: Amazon Music Helper => "C:\Users\Chris\AppData\Local\Amazon Music\Amazon Music Helper.exe"
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: BrHelp => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe /AUTORUN
MSCONFIG\startupreg: Conime => %windir%\system32\conime.exe
MSCONFIG\startupreg: Discord => C:\Users\Chris\AppData\Local\Discord\app-0.0.297\Discord.exe
MSCONFIG\startupreg: Dropbox => "C:\Program Files (x86)\Dropbox\Client\Dropbox.exe" /systemstartup
MSCONFIG\startupreg: EKStatusMonitor => C:\Program Files (x86)\Kodak\AiO\StatusMonitor\EKStatusMonitor.exe
MSCONFIG\startupreg: GalaxyClient => C:\Program Files (x86)\GalaxyClient\GalaxyClient.exe /launchViaAutoStart
MSCONFIG\startupreg: GoogleDriveSync => "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart                                                                                                                                                                                                     
MSCONFIG\startupreg: Haufe.Loge.AutostartLauncher.exe => C:\Program Files (x86)\Common Files\Lexware\Dll\Haufe.Loge.AutostartLauncher.exe
MSCONFIG\startupreg: o2 Service Suite => C:\Program Files (x86)\o2 Service Suite\o2_ServiceSuite_Launcher.exe /auto
MSCONFIG\startupreg: Octoshape Streaming Services => "C:\Users\Chris\AppData\Roaming\Octoshape\Octoshape Streaming Services\OctoshapeClient.exe" -inv:bootrun
MSCONFIG\startupreg: Overwolf => C:\Program Files (x86)\Overwolf\Overwolf.exe -silent
MSCONFIG\startupreg: Personal ID => C:\COOLSP~1\PERSON~1\PID.EXE
MSCONFIG\startupreg: PlaysTV => "C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe" --startup                                                                                                                                                                                                
MSCONFIG\startupreg: Raptr => "C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe" --startup
MSCONFIG\startupreg: SideSync => C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
MSCONFIG\startupreg: Skype => "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
MSCONFIG\startupreg: Steam => "C:\Program Files (x86)\Steam\steam.exe" -silent
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
MSCONFIG\startupreg: XFast LAN => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{9FB24B90-75C7-47AB-BC40-8EB688EC6B09}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{3C8B82AC-50A0-4266-8F16-303E225E3691}] => (Allow) C:\Program Files (x86)\Battle.net\Battle.net.exe
FirewallRules: [{D0E767D0-D520-4CA2-A0C4-0C99E7AD5C07}] => (Allow) LPort=5353
FirewallRules: [TCP Query User{3522687F-2318-4713-958B-4ED1787AD3EB}C:\program files (x86)\valve\hl.exe] => (Allow) C:\program files (x86)\valve\hl.exe
FirewallRules: [UDP Query User{616F4C61-7674-45A8-810E-5A77753C31C8}C:\program files (x86)\valve\hl.exe] => (Allow) C:\program files (x86)\valve\hl.exe
FirewallRules: [{2FF0BF4C-CE92-4892-B50C-137E8C08BAA2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1363879D-FFAF-4309-ABE8-EE7423155D8E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{FD2D8330-72D2-43E4-8D00-706483F04CE7}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{21C5E16A-4506-493F-9495-7FB5B31B3F98}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{F6379219-39DF-4B61-96AA-F399125FD680}] => (Allow) D:\diablo3\Diablo III\Diablo III.exe
FirewallRules: [{40BCF8AB-69F1-4769-87CB-5D82A69EF83C}] => (Allow) D:\diablo3\Diablo III\Diablo III.exe
FirewallRules: [{B81B5593-BB7A-4ADB-A725-E3F60BB0D0FE}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{1D1804A2-B809-4450-8120-369028785F42}] => (Allow) C:\Program Files (x86)\Origin Games\SimCity\SimCity\SimCity.exe
FirewallRules: [{47E7AD97-68F4-4601-927F-D61AE18C23D7}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{5A357335-BB89-4488-80A3-BB53280EB5EC}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{95F4D137-150F-438C-A941-B019FBA476CF}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{B6EAC23F-1A7D-4DFD-AAF8-8FF1669B34CC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{FDEF2C98-B920-4CCB-B166-96E6F41704C3}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{FD830ECD-8AB3-46EB-8518-0A99334843EA}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{D3F37E4B-789F-408E-9517-4B449EFE8D17}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{75BF2D0F-9A0C-429B-8F3C-875CFCB98AB9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Cities_Skylines\Cities.exe
FirewallRules: [{2D17FBBC-CA1E-4F1E-942A-3A669BBF55C9}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{C82121C5-697E-4FE8-B88E-AAE82BF66A57}D:\witcher 2\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) D:\witcher 2\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [UDP Query User{92225003-1F35-472C-8BFF-2D02F998FC19}D:\witcher 2\the witcher 2 enhanced edition\bin\witcher2.exe] => (Allow) D:\witcher 2\the witcher 2 enhanced edition\bin\witcher2.exe
FirewallRules: [{F4EE9FD7-2887-45CC-BD30-A70CBE060E86}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Center\AiOHomeCenter.exe
FirewallRules: [{BC40B06C-1BC3-4F6A-B527-4748F295307C}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Center\AiOHomeCenter.exe
FirewallRules: [{03E115A1-2EC8-4128-834F-335531292F2E}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Center\Kodak.Statistics.exe
FirewallRules: [{437225DC-39B8-4B83-A6D2-E4DBF871D648}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Center\Kodak.Statistics.exe
FirewallRules: [{6D6035D2-E0C8-446D-AB82-5CE10E14EBEA}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Center\NetworkPrinterDiscovery.exe
FirewallRules: [{2D981E37-9AF4-4847-AC87-050B719D6D86}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Center\NetworkPrinterDiscovery.exe
FirewallRules: [{F256ABD1-C160-4F22-98A5-90496E4FA123}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Firmware\KodakAiOUpdater.exe
FirewallRules: [{651D4801-EF3C-4EF4-A728-A788FF626791}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Firmware\KodakAiOUpdater.exe
FirewallRules: [{0499FF8D-4DAC-423E-B77F-3EF6ED21B7CB}] => (Allow) C:\ProgramData\Kodak\Installer\Setup.exe
FirewallRules: [{0294B344-0072-435B-8E61-AB2F2892F536}] => (Allow) C:\ProgramData\Kodak\Installer\Setup.exe
FirewallRules: [{5931FB81-28C4-46F6-8F0A-A4467F3883D7}] => (Allow) LPort=9322
FirewallRules: [{6C6C77B2-AB8C-414E-ACFE-5291505A195D}] => (Allow) LPort=5353
FirewallRules: [{D346ED9C-C6AF-4346-81CC-4C298FDA6203}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{272459DB-210C-49E0-8F18-87629A376F1A}] => (Allow) C:\Users\Chris\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [{7055BA38-F188-4434-ACA5-6A36A23E6E0A}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{CCD751F7-7E7E-4818-BDFB-E4BD146448D4}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{8C7077BC-38F9-43F9-8EC2-604C5F1F3F3C}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{702BFB16-D4A5-4A3F-BA70-B7ED0B8FC236}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{0B74CC6E-862F-46E5-B209-E71E283E3C9B}C:\users\chris\desktop\sw box\swproxy.exe] => (Allow) C:\users\chris\desktop\sw box\swproxy.exe
FirewallRules: [UDP Query User{A29D125C-79C4-45C8-B43C-3D22864A4A63}C:\users\chris\desktop\sw box\swproxy.exe] => (Allow) C:\users\chris\desktop\sw box\swproxy.exe
FirewallRules: [{6ACEE4FF-B26C-4B7F-96D9-896FD88703F2}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{AE83C259-D09D-4143-A11C-AC4963D7A9C9}] => (Allow) C:\Program Files\Andy\andy.exe
FirewallRules: [{37A74828-5B45-49B3-9403-7905DE4F36DF}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{46D24A6E-1EA6-4C9D-B46D-4FCC48678C3F}] => (Allow) C:\Program Files\Andy\AndyConsole.exe
FirewallRules: [{C1588771-CD63-4AA2-89CB-4F959801FF42}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{13FD1778-57F9-4313-9C03-0EC720816B51}] => (Allow) C:\Program Files\Andy\SetupFiles\Uninstall.exe
FirewallRules: [{4088E2D1-BAC5-44B6-B41D-D6384C2F2366}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{09EB3E28-16A7-4B27-AE0D-A86B4FBF5773}] => (Allow) C:\Program Files\Andy\HandyAndy.exe
FirewallRules: [{72D3AA82-24D5-44B8-9D1C-988C6EC553E1}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{090BD952-D9B6-4873-B6A9-19148B7674F6}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [TCP Query User{0CCE6415-C4C2-4175-802A-C4A8124C4F0B}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Allow) C:\program files (x86)\samsung\sidesync4\sidesync.exe
FirewallRules: [UDP Query User{56435F42-8ED6-4261-9CA0-547221EB6666}C:\program files (x86)\samsung\sidesync4\sidesync.exe] => (Allow) C:\program files (x86)\samsung\sidesync4\sidesync.exe
FirewallRules: [TCP Query User{1F5C3049-4555-49C4-A88E-0F5CA24EC3B8}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [UDP Query User{74697723-F306-4C9B-B8C4-FE50841421C6}D:\overwatch\overwatch.exe] => (Allow) D:\overwatch\overwatch.exe
FirewallRules: [{C0984FD0-DEB5-475B-84DE-831B5BDABD1C}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BAE579B8-AC87-4A32-A9AD-E1D1B8D96B5F}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5C93045E-C251-4DC4-80FB-AD253174D46F}] => (Allow) C:\Program Files (x86)\o2 Service Suite\o2_ServiceSuite_Launcher.exe
FirewallRules: [{3DA56AAF-9B50-452E-9D3B-5EF304C7C3D1}] => (Allow) C:\Program Files (x86)\o2 Service Suite\o2_ServiceSuite_Launcher.exe
FirewallRules: [{B90CA7FD-9FFF-4415-A84A-1F3BDC8ED2C2}] => (Allow) C:\Program Files (x86)\o2 Service Suite\o2_ServiceSuite_Repair.exe
FirewallRules: [{52528007-2317-430C-A0A0-AB8E0FAE4EA7}] => (Allow) C:\Program Files (x86)\o2 Service Suite\o2_ServiceSuite_Repair.exe
FirewallRules: [{7EBF5136-F22F-49D0-A93C-8089EC689942}] => (Allow) C:\Program Files (x86)\o2 Service Suite\o2_ServiceSuite.exe
FirewallRules: [{B7D677D0-C90E-4446-AE7B-8AF0A0525189}] => (Allow) C:\Program Files (x86)\o2 Service Suite\o2_ServiceSuite.exe
FirewallRules: [{1ECBB15B-27D7-4CAE-BEE0-C673D2E28900}] => (Allow) C:\Program Files (x86)\o2 Service Suite\Update\M2Updater.exe
FirewallRules: [{F0C2EA4F-6D98-49D9-A9C1-EBB4678856DF}] => (Allow) C:\Program Files (x86)\o2 Service Suite\Update\M2Updater.exe
FirewallRules: [{285D35EA-56BC-4CA2-B40A-0B39CB7A5B89}] => (Allow) C:\Program Files (x86)\o2 Service Suite\PDF_Viewer\m2PDFViewer.exe
FirewallRules: [{A6F218D0-CBC4-45F4-8B54-64AE2EF982BD}] => (Allow) C:\Program Files (x86)\o2 Service Suite\PDF_Viewer\m2PDFViewer.exe
FirewallRules: [{079DCFA3-C038-4E11-945E-4D45127259ED}] => (Allow) G:\fsetup.exe
FirewallRules: [{DC607F62-4FD8-4D26-B165-B03937203F3D}] => (Allow) G:\fsetup.exe
FirewallRules: [{7AB45715-896B-4B75-A0EE-B6627BF7E864}] => (Allow) LPort=9322
FirewallRules: [{1147EB41-81EC-48B3-BDC9-CAC4705368C8}] => (Allow) LPort=5353
FirewallRules: [{59124BE2-B716-44DB-9652-52B2E7A2015D}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Center\AiOHomeCenter.exe
FirewallRules: [{AB18E889-06AA-4C26-9B9C-6C0EBE29878D}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Center\Kodak.Statistics.exe
FirewallRules: [{62148658-BC8A-4E02-8E2F-59399D85B9A1}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Center\NetworkPrinterDiscovery.exe
FirewallRules: [{64CF9D2B-8070-4A2E-BD5D-F3C0C3B439DB}] => (Allow) C:\Program Files (x86)\Kodak\AiO\Firmware\KodakAiOUpdater.exe
FirewallRules: [{7CBD391D-D4C9-499D-8FA1-E77479801FB6}] => (Allow) C:\ProgramData\Kodak\Installer\Setup.exe
FirewallRules: [{E03BBC08-BFF7-4225-BD52-2721FDCBD5C2}] => (Allow) LPort=4504
FirewallRules: [{7FDB4D42-0F6D-42B8-AAAF-E26C375E3286}] => (Allow) LPort=4505
FirewallRules: [{FF4ACAE3-02F4-45FD-A6E8-9FF497D3F9E4}] => (Allow) LPort=2899
FirewallRules: [{3EED6D89-4A22-47DE-947E-9047227E115F}] => (Allow) LPort=137
FirewallRules: [{754E07DE-63D4-4DC8-B2A1-53638949F43C}] => (Allow) C:\Program Files\BootUp GmbH\myHomeControl 1.2.21 SP3\bin\HomeControl.exe
FirewallRules: [{D0E733AB-B386-47CA-AE0E-AFDBC7A906F0}] => (Allow) C:\ProgramData\BootUp GmbH\myHomeControl V1.2\WEB\abyssws.exe
FirewallRules: [{FA230C69-BE4A-4537-9DDB-975ED1118DAC}] => (Allow) C:\ProgramData\BootUp GmbH\myHomeControl V1.2\WEB\adn\FCGIDotNet_4_0_x64.exe
FirewallRules: [TCP Query User{A5E3204A-AFA8-4DD9-9321-DF032CE6B1C4}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe
FirewallRules: [UDP Query User{04A2FAA5-5997-4B91-AC7F-4CC75CB56933}D:\hearthstone\hearthstone.exe] => (Allow) D:\hearthstone\hearthstone.exe
FirewallRules: [{463D434B-ABA3-4041-9C06-A8D480F07EEF}] => (Allow) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
FirewallRules: [{ADD32AA3-7382-43B9-ADEC-A2D29D69A2C1}] => (Allow) C:\Program Files (x86)\Lexware\Update Service\Hmg.InstallationService.Service.exe
FirewallRules: [TCP Query User{E6B0AD48-49AC-45D1-9360-B2C607B416AB}D:\babtec\bab-starter.exe] => (Allow) D:\babtec\bab-starter.exe
FirewallRules: [UDP Query User{25BA5BEA-4514-4636-BAD9-F4DA4A475526}D:\babtec\bab-starter.exe] => (Allow) D:\babtec\bab-starter.exe
FirewallRules: [{8FE34440-48D7-4D54-84C5-60415C5744BC}] => (Allow) C:\Program Files (x86)\SQL Anywhere 16\Bin32\dbsrv16.exe
FirewallRules: [{4BE63F5B-85BF-40BB-926C-9EF3B66FEED7}] => (Allow) C:\Program Files (x86)\SQL Anywhere 16\Bin32\dbsrv16.exe
FirewallRules: [TCP Query User{D02872B9-A31D-4E21-9FB5-F1FD459AA247}C:\users\chris\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Allow) C:\users\chris\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [UDP Query User{6147CD7F-059E-4471-A7CA-26778C13E419}C:\users\chris\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light] => (Allow) C:\users\chris\appdata\local\temp\jivexviewer\jre\bin\jivex[dv] light
FirewallRules: [{1AD7D4E1-F574-43A8-8EDA-B165BC8D9301}] => (Allow) C:\Program Files (x86)\Brother\Brmfl14e\FAXRX.EXE
FirewallRules: [{237880AF-5A5C-4155-9174-EC907331CAB9}] => (Allow) LPort=54925
FirewallRules: [{F4A7E388-A570-4EEC-B95D-E761551315AC}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{515D1ADC-0EDF-4A1C-BED8-60AC75DA5DEE}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{E6C7E24D-E13E-46A5-A8DD-47A6AA2513FA}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{942CCBCB-1956-4F7F-BE00-816E86D464D7}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [TCP Query User{F4FB1044-EBC0-4200-ADA7-B8CCF57E7E1E}D:\sw runeoptimizer\swproxy.exe] => (Allow) D:\sw runeoptimizer\swproxy.exe
FirewallRules: [UDP Query User{449EE5ED-55E6-4C99-980D-A3EBB4F48048}D:\sw runeoptimizer\swproxy.exe] => (Allow) D:\sw runeoptimizer\swproxy.exe
FirewallRules: [TCP Query User{4966810B-AA8F-40BE-AA28-4D3B9B37AA5F}C:\users\chris\appdata\local\temp\rar$exa0.913\swproxy.exe] => (Allow) C:\users\chris\appdata\local\temp\rar$exa0.913\swproxy.exe
FirewallRules: [UDP Query User{AB6A911C-CB47-4784-8D40-A43C8AD9F121}C:\users\chris\appdata\local\temp\rar$exa0.913\swproxy.exe] => (Allow) C:\users\chris\appdata\local\temp\rar$exa0.913\swproxy.exe
FirewallRules: [TCP Query User{37449C7E-C3DE-4246-9F76-7D549AFB6E52}C:\users\chris\desktop\sw proxy\swproxy.exe] => (Allow) C:\users\chris\desktop\sw proxy\swproxy.exe
FirewallRules: [UDP Query User{CC9D8F96-E4CF-4115-A4FE-C3A76460E720}C:\users\chris\desktop\sw proxy\swproxy.exe] => (Allow) C:\users\chris\desktop\sw proxy\swproxy.exe
FirewallRules: [TCP Query User{7C174EF9-9F89-473F-A7FD-4AD026F5F8DF}D:\heroes of the storm\versions\base52647\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base52647\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{5D11C7E2-1866-417E-AE64-C049CD319222}D:\heroes of the storm\versions\base52647\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base52647\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{9F47D0E7-1A2F-4A9E-8495-6000CBE1FF3A}D:\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{5B3C66F2-F5B0-423D-B644-EDAFA8E8900C}D:\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base52860\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{FC0F3C95-F753-4D0F-B52A-E4E9E25A53A5}D:\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{2C2C64A4-7BA0-4F6E-8348-FF2809F26541}D:\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base53548\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{CFE0726A-CEBE-462A-8FC9-ECF34C9C5E16}D:\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{E471EDA5-59B7-4CB8-8510-918033BE7763}D:\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base53965\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{81DCE9F1-4975-4911-8592-9150222FA325}D:\heroes of the storm\versions\base55010\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base55010\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{60E60D28-912A-4D1F-8AD8-76FCCB6B5418}D:\heroes of the storm\versions\base55010\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base55010\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{1D643166-B144-4586-A5AB-5245B32B2045}D:\diablo3\diablo iii\x64\diablo iii64.exe] => (Allow) D:\diablo3\diablo iii\x64\diablo iii64.exe
FirewallRules: [UDP Query User{F312E388-235C-4DA4-B192-FEA717AFFC34}D:\diablo3\diablo iii\x64\diablo iii64.exe] => (Allow) D:\diablo3\diablo iii\x64\diablo iii64.exe
FirewallRules: [TCP Query User{AC29C274-6BED-4727-846D-F5ACAE3F6217}D:\heroes of the storm\versions\base56175\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base56175\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{BE151260-F718-4B64-A942-24003172C436}D:\heroes of the storm\versions\base56175\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base56175\heroesofthestorm_x64.exe
FirewallRules: [{64D4267D-E2A7-4FCF-BE2E-2631BE115CF0}] => (Allow) C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
FirewallRules: [{A59A80C9-07A1-414D-8C13-B9165239A514}] => (Allow) C:\Program Files (x86)\DVDVideoSoft\Free Torrent Download\FreeTorrentDownload.exe
FirewallRules: [TCP Query User{D44F5181-971D-4EDE-A954-521D3B97A72B}D:\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{6C0DBF4C-10B3-4B9F-91E7-336D6F35D428}D:\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base56361\heroesofthestorm_x64.exe
FirewallRules: [{8A037CE2-FAA4-41DD-8D29-FDD22FB7EB8E}] => (Allow) C:\Users\Chris\AppData\Local\LINE\bin\5.3.3.1519\LINE.exe
FirewallRules: [{DF6C4A88-1A62-4764-B8BB-FF12C2EF0BCB}] => (Allow) C:\Users\Chris\AppData\Local\LINE\bin\5.3.3.1519\LINE.exe
FirewallRules: [{155D4F62-D90A-4F3A-B7AC-0B79C7F08183}] => (Allow) C:\Users\Chris\AppData\Local\LINE\bin\5.3.3.1519\LineUpdater.exe
FirewallRules: [{CD907D60-84D0-4282-BDFF-327E20B1D412}] => (Allow) C:\Users\Chris\AppData\Local\LINE\bin\5.3.3.1519\LineUpdater.exe
FirewallRules: [TCP Query User{89755675-E835-47F2-A5CF-7D9A196ADD93}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [UDP Query User{071D0306-0588-424F-8B88-DB988B8BC500}C:\program files\java\jre1.8.0_121\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_121\bin\javaw.exe
FirewallRules: [{21D74E18-81AF-41A0-9144-1A407A8231A2}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
FirewallRules: [{2C557174-7467-4FF8-A723-ABFF93C02A12}] => (Allow) C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe
FirewallRules: [{F6EEF7F1-CD6B-4008-BEEB-9E0A3C210099}] => (Allow) C:\Program Files (x86)\Mobo\Service\MoboDeviceProxy.exe
FirewallRules: [{8B4D7206-B5E9-4EEB-88B4-05F429F50DAE}] => (Allow) C:\Program Files (x86)\Mobo\Service\MoboDeviceProxy.exe
FirewallRules: [{E54B23AF-69BF-4D5E-9C71-18C3862056C0}] => (Allow) C:\Program Files (x86)\Mobo\Service\MoboDeviceProxy.exe
FirewallRules: [{3C419A05-73D7-4E91-9A97-1E6E47568AAA}] => (Allow) C:\Program Files (x86)\Mobo\Service\MoboDeviceProxy.exe
FirewallRules: [{818F7231-7812-49CD-BF39-D992119D74D5}] => (Allow) C:\Program Files (x86)\Mobo\Service\MoboDeviceService.exe
FirewallRules: [{E0D4E53E-93EB-4E74-8E87-578355368671}] => (Allow) C:\Program Files (x86)\Mobo\Service\MoboDeviceService.exe
FirewallRules: [{7569092D-F06F-481C-ADC6-F45B5EC8E2BB}] => (Allow) C:\Program Files (x86)\Mobo\Service\MoboDeviceService.exe
FirewallRules: [{CCD6D285-C025-4D05-8DA7-C2B043EB92DB}] => (Allow) C:\Program Files (x86)\Mobo\Service\MoboDeviceService.exe
FirewallRules: [{9877A748-70C7-414C-8852-760F3941EB79}] => (Allow) C:\Program Files (x86)\Mobo\aMoboMarket\aMoboMarket.exe
FirewallRules: [{3FE8A3B6-118C-4C67-A3F8-6113142306C8}] => (Allow) C:\Program Files (x86)\Mobo\aMoboMarket\aMoboMarket.exe
FirewallRules: [{0E0402E7-BA13-40F4-A313-A08201F0CC90}] => (Allow) C:\Program Files (x86)\Mobo\aMoboMarket\aMoboMarket.exe
FirewallRules: [{69A7A41D-572D-4CF4-B2B1-97FD89260689}] => (Allow) C:\Program Files (x86)\Mobo\aMoboMarket\aMoboMarket.exe
FirewallRules: [{D9D4B202-B8DF-4657-83EE-03151C4C4C08}] => (Allow) C:\Program Files (x86)\ExtendRes\ExtendRes.exe
FirewallRules: [{186913FC-360F-4D91-BC5C-E350F724DE51}] => (Allow) C:\Program Files (x86)\ExtendRes\ExtendRes.exe
FirewallRules: [{6A4B404B-FB14-45B3-9AAD-A744809A20AC}] => (Allow) C:\Program Files (x86)\ExtendRes\ExtendRes.exe
FirewallRules: [{5E216792-1CAC-4208-8849-25BD44F77558}] => (Allow) C:\Program Files (x86)\ExtendRes\ExtendRes.exe
FirewallRules: [{D66C8C98-FB44-4823-AA88-80CA429E0C52}] => (Allow) C:\Program Files (x86)\Mobo\iMoboMarket\iMoboMarket.exe
FirewallRules: [{401AB64B-C76D-4DD8-828D-52D252C5F230}] => (Allow) C:\Program Files (x86)\Mobo\iMoboMarket\iMoboMarket.exe
FirewallRules: [{D8B65D86-5225-4191-80C2-FEF2BB86F80D}] => (Allow) C:\Program Files (x86)\Mobo\iMoboMarket\iMoboMarket.exe
FirewallRules: [{6E03EF06-4109-4416-AD2E-9AB2D8BA5763}] => (Allow) C:\Program Files (x86)\Mobo\iMoboMarket\iMoboMarket.exe
FirewallRules: [TCP Query User{A6BD2512-560B-49EB-99F4-1C2EFEFC8CA5}C:\program files (x86)\mobo\service\mobodeviceproxy.exe] => (Block) C:\program files (x86)\mobo\service\mobodeviceproxy.exe
FirewallRules: [UDP Query User{BD92AC40-8011-4922-AA10-C2CBFE29EEAC}C:\program files (x86)\mobo\service\mobodeviceproxy.exe] => (Block) C:\program files (x86)\mobo\service\mobodeviceproxy.exe
FirewallRules: [TCP Query User{E7C308B9-C9D0-4182-B7D4-7DD4037A8CEE}D:\heroes of the storm\versions\base59239\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base59239\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{B75D359F-44D4-4FBE-95CC-9D01A6356C7E}D:\heroes of the storm\versions\base59239\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base59239\heroesofthestorm_x64.exe
FirewallRules: [TCP Query User{5125980A-FDF6-4BC9-B731-2674B5F2A86E}C:\users\chris\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\chris\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [UDP Query User{24440712-885F-4C5E-8B6F-34518C1113E8}C:\users\chris\appdata\local\amazon music\amazon music helper.exe] => (Allow) C:\users\chris\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [TCP Query User{B5DFDC6D-C133-47FF-A1D9-12C5E56D455E}C:\users\chris\appdata\local\amazon music\amazon music helper.exe] => (Block) C:\users\chris\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [UDP Query User{C314D95C-B518-487D-8CDD-80ACCA9704CE}C:\users\chris\appdata\local\amazon music\amazon music helper.exe] => (Block) C:\users\chris\appdata\local\amazon music\amazon music helper.exe
FirewallRules: [{59CEF964-76F0-4C0E-9EF5-894B4DB5DB11}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\RpcAgentSrv.exe
FirewallRules: [{03864052-97EA-4CC8-892C-0058600A2F52}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2016.SP1\WNt600x64\RpcSandraSrv.exe
FirewallRules: [{FC67AB3B-2DB8-406F-AC64-217A37C91F92}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{8CDD392C-C8A9-47F4-9E2C-714F3D7D2C49}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{F8AAD507-BADB-487A-8BDC-4BB82DC9FCB6}C:\program files (x86)\rsupport\mobizen\mobizen.exe] => (Allow) C:\program files (x86)\rsupport\mobizen\mobizen.exe
FirewallRules: [UDP Query User{BB1D532B-FBC6-4C68-97DD-138432FBC88B}C:\program files (x86)\rsupport\mobizen\mobizen.exe] => (Allow) C:\program files (x86)\rsupport\mobizen\mobizen.exe
FirewallRules: [TCP Query User{14973E17-721E-46F7-851E-E93DE7F1C486}D:\heroes of the storm\versions\base59799\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base59799\heroesofthestorm_x64.exe
FirewallRules: [UDP Query User{3AA63370-BF6F-47CF-A345-DE764CEC5623}D:\heroes of the storm\versions\base59799\heroesofthestorm_x64.exe] => (Allow) D:\heroes of the storm\versions\base59799\heroesofthestorm_x64.exe
FirewallRules: [{DDA5CDC9-E238-4815-84FD-D0524D67F2A5}] => (Allow) C:\Program Files (x86)\Gira\Gira Project Assistant\2.3\Gira Project Assistant 2.3.exe
FirewallRules: [TCP Query User{D6CA4A54-B075-4107-BE2D-A0182A48D306}C:\program files (x86)\ets5\ets5c.exe] => (Allow) C:\program files (x86)\ets5\ets5c.exe
FirewallRules: [UDP Query User{EBDEA2B0-BBB6-49AF-ADDE-034037DCBE75}C:\program files (x86)\ets5\ets5c.exe] => (Allow) C:\program files (x86)\ets5\ets5c.exe
FirewallRules: [{B710D690-649D-4521-9083-E1B129D83594}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{3F1715EF-BB46-4245-B9CF-220C31F759F7}] => (Allow) D:\sims\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{9D10ACC8-5FE5-4E15-941E-6F6E656C11F5}] => (Allow) D:\sims\The Sims 4\Game\Bin\TS4.exe
FirewallRules: [{369009BF-9688-4053-853A-41CC2E9E8D97}] => (Allow) D:\sims\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [{E3CE9B30-D205-42DC-9B9D-8D19BFD28FE9}] => (Allow) D:\sims\The Sims 4\Game\Bin\TS4_x64.exe
FirewallRules: [TCP Query User{E5F925AC-6269-4D74-82E0-AAAAE0B986F0}C:\program files\hager\domovea\bin\configurator\domovea_configuration.exe] => (Allow) C:\program files\hager\domovea\bin\configurator\domovea_configuration.exe
FirewallRules: [UDP Query User{D298CA73-DFBD-4B57-87BD-EFBCE7AE0B0A}C:\program files\hager\domovea\bin\configurator\domovea_configuration.exe] => (Allow) C:\program files\hager\domovea\bin\configurator\domovea_configuration.exe
FirewallRules: [{5162FDF3-6280-4459-800D-74FE06D8924A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Wiederherstellungspunkte =========================


==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/21/2017 05:52:32 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Erstellen der Schattenkopieanbieter-COM-Klasse mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
] ist ein Fehler aufgetreten.


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
   Schattenkopien abfragen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Snapshotkontext: 13
   Snapshotkontext: 13
   Ausführungskontext: Coordinator

Error: (12/21/2017 05:52:32 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} und dem Namen "SW_PROV" kann nicht gestartet werden. [0x80070422, Der angegebene Dienst kann nicht gestartet werden. Er ist deaktiviert oder nicht mit aktivierten Geräten verbunden.
]


Vorgang:
   Für diesen Anbieter eine aufrufbare Schnittstelle abrufen
   Schnittstellen für alle Anbieter auflisten, die diesen Kontext unterstützen
   Schattenkopien abfragen

Kontext:
   Anbieter-ID: {b5946137-7b9f-4925-af80-51abd60b20d5}
   Klassen-ID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
   Snapshotkontext: 13
   Snapshotkontext: 13
   Ausführungskontext: Coordinator

Error: (12/21/2017 05:47:05 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/21/2017 02:39:55 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Chris\Downloads\esetsmartinstaller_deu.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/21/2017 02:37:52 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Users\Chris\Downloads\esetsmartinstaller_deu.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/21/2017 06:27:39 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.

Error: (12/21/2017 06:26:08 AM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/20/2017 09:59:37 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Samsung\SideSync4\SideSync.exe". Fehler in
Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit
einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Komponente 2: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.

Error: (12/20/2017 02:18:10 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Fehler beim Erstellen des Wiederherstellungspunkts (Prozess = C:\Windows\system32\svchost.exe -k netsvcs; Beschreibung = Windows Update; Fehler = 0x80042302).

Error: (12/20/2017 02:18:10 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "GetProviderMgmtInterface" ist ein unerwarteter Fehler aufgetreten. hr = 0x8004230f, Unerwarteter Fehler beim Schattenkopieanbieter bei dem Versuch, den angegebenen Vorgang zu verarbeiten.
.


Systemfehler:
=============
Error: (12/21/2017 02:45:18 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Treiber konnte nicht geladen werden.

Error: (12/21/2017 02:45:18 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Chris\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (12/21/2017 02:45:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Treiber konnte nicht geladen werden.

Error: (12/21/2017 02:45:17 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Chris\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (12/21/2017 02:45:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Treiber konnte nicht geladen werden.

Error: (12/21/2017 02:45:17 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Chris\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (12/21/2017 02:41:17 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Treiber konnte nicht geladen werden.

Error: (12/21/2017 02:41:17 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Chris\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Error: (12/21/2017 02:41:16 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet: 
Der Treiber konnte nicht geladen werden.

Error: (12/21/2017 02:41:16 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \??\C:\Users\Chris\AppData\Local\Temp\ehdrv.sys nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.


CodeIntegrity:
===================================
  Date: 2014-11-23 00:16:14.380
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.

  Date: 2014-11-23 00:16:14.363
  Description: Windows konnte die Abbildintegrität der Datei "\Device\HarddiskVolume2\Windows\System32\drivers\vrtaucbl.sys" nicht überprüfen, weil der Dateihash nicht im System gefunden wurde. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um schädliche Software aus einer unbekannten Quelle handelt, installiert.


==================== Speicherinformationen =========================== 

Prozessor: Intel(R) Xeon(R) CPU E3-1231 v3 @ 3.40GHz
Prozentuale Nutzung des RAM: 63%
Installierter physikalischer RAM: 8126.95 MB
Verfügbarer physikalischer RAM: 2938.71 MB
Summe virtueller Speicher: 16252.09 MB
Verfügbarer virtueller Speicher: 9391.62 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:238.37 GB) (Free:22.8 GB) NTFS
Drive d: (Volume) (Fixed) (Total:931.51 GB) (Free:558.15 GB) NTFS

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 238.5 GB) (Disk ID: 8251C55B)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=238.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6B1C7FEB)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt ============================
         
__________________


Antwort

Themen zu Rumbler.ru
bräuchte, deinstalliert, eingefangen, gefangen, gemerkt, hilfe, malwarebytes, nicht, virus



Ähnliche Themen: Rumbler.ru


  1. Nova Rumbler lässt sich nicht entfernen
    Plagegeister aller Art und deren Bekämpfung - 07.04.2017 (1)
  2. Browser Hijacker nova.rumbler.ru gefangen
    Plagegeister aller Art und deren Bekämpfung - 16.01.2017 (21)
  3. Nova Rumbler Virus - Google wechselt in Chrome automatisch zu russischer Seite + Popups
    Plagegeister aller Art und deren Bekämpfung - 27.07.2016 (7)
  4. rumbler.ru
    Plagegeister aller Art und deren Bekämpfung - 11.08.2006 (7)

Zum Thema Rumbler.ru - Hallo Ich habe mir irgendwie den Nova.rumbler.ru eingefangen und bräuchte eure Hilfe ihn wieder loszuwerden. ich weis nicht wie es passiert da, ich Malwarebytes preium habe aber als ich es - Rumbler.ru...
Archiv
Du betrachtest: Rumbler.ru auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.