FRST Addition: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version:01-12-2015
durchgeführt von MEIN_BENUTZER (2015-12-02 12:12:15)
Gestartet von C:\Users\MEIN_BENUTZER\Downloads
Windows 7 Professional Service Pack 1 (X64) (2013-04-12 21:47:34)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1549617161-3530456300-86204775-500 - Administrator - Disabled)
Gast (S-1-5-21-1549617161-3530456300-86204775-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1549617161-3530456300-86204775-1003 - Limited - Enabled)
Mcx1-ELITEBOOK (S-1-5-21-1549617161-3530456300-86204775-1004 - Limited - Enabled) => C:\Users\Mcx1-ELITEBOOK
MEIN_BENUTZER (S-1-5-21-1549617161-3530456300-86204775-1000 - Administrator - Enabled) => C:\Users\MEIN_BENUTZER
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: AVG AntiVirus Free Edition (Enabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG AntiVirus Free Edition (Enabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
µTorrent (HKU\S-1-5-21-1549617161-3530456300-86204775-1000\...\uTorrent) (Version: 3.3.1.30003 - BitTorrent Inc.)
2007 Microsoft Office Suite Service Pack 3 (SP3) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
2007 Microsoft Office Suite Service Pack 3 (SP3) (x32 Version: - Microsoft) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
ActivClient x64 (HKLM\...\{86E45973-5352-439F-A115-2E8EE4D40140}) (Version: 6.2 - ActivIdentity)
Adobe Flash Player 16 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 16.0.0.305 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AMS ZPoint-CI Measuring Graph Visualization OfflineViewer V1.13 (build3695) (HKLM-x32\...\InstallShield_{2FDEA04A-0D51-4E89-9ACC-A0057F705011}) (Version: 1.13.0.3695 - AMS Engineering GmbH)
AMS ZPoint-CI Measuring Graph Visualization OfflineViewer V1.13 (build3695) (x32 Version: 1.13.0.3695 - AMS Engineering GmbH) Hidden
Arduino (HKLM-x32\...\Arduino) (Version: 1.6.5-r5 - Arduino LLC)
AutoCAD 2012 - Deutsch (HKLM\...\AutoCAD 2012 - Deutsch) (Version: 18.2.51.0 - Autodesk)
AutoCAD 2012 - Deutsch (Version: 18.2.51.0 - Autodesk) Hidden
AutoCAD 2012 Language Pack - Deutsch (Version: 18.2.51.0 - Autodesk) Hidden
Autodesk Content Service (HKLM-x32\...\{086F9A69-CD39-4893-A9FB-D3A0634CE3F7}) (Version: 2.0.90 - Autodesk)
Autodesk Inventor Fusion 2012 (HKLM\...\Autodesk Inventor Fusion 2012) (Version: 1.0.0.79 - Autodesk, Inc.)
Autodesk Inventor Fusion 2012 (Version: 1.0.0.79 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion 2012 Language Pack (Version: 1.0.0.79 - Autodesk, Inc.) Hidden
Autodesk Inventor Fusion plug-in for AutoCAD 2012 (HKLM\...\Autodesk Inventor Fusion Plugin for AutoCAD 2012) (Version: 0.0.1.138 - Autodesk)
Autodesk Inventor Fusion Plugin for AutoCAD 2012 (Version: 0.0.1.138 - Autodesk) Hidden
Autodesk Inventor Fusion Plugin Language Pack for AutoCAD 2012 (Version: 0.0.1.138 - Autodesk) Hidden
Autodesk Material Library 2012 (HKLM-x32\...\{8F0837C2-EE09-4903-88F3-1976FE7FFF4E}) (Version: 2.5.0.8 - Autodesk)
Autodesk Material Library Base Resolution Image Library 2012 (HKLM-x32\...\{65420DC9-306E-4371-905F-F4DC3B418E52}) (Version: 2.5.0.8 - Autodesk)
AVG (HKLM\...\AvgZen) (Version: 1.22.1.40089 - AVG Technologies)
AVG (Version: 16.7.7227 - AVG Technologies) Hidden
AVG 2016 (Version: 16.0.4477 - AVG Technologies) Hidden
AVG Protection (HKLM\...\AVG) (Version: 2016.7.7227 - AVG Technologies)
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 3.4.0.1 - AVG Technologies)
AVG Zen (Version: 1.22.1 - AVG Technologies) Hidden
AVR Burn-O-Mat 2.1.2 (HKLM-x32\...\{B9F41D01-DB28-4595-B93C-2732A54CBEA2}_is1) (Version: - Torsten Brischalle)
Brother HL-5240 (HKLM-x32\...\{D9B27D47-A460-4FBF-B4D4-E02997D05B95}) (Version: 1.00 - Brother)
CalDavSynchronizer (HKLM-x32\...\{A84E32EE-D605-4737-9DDF-73EF5301C64B}) (Version: 1.0.0 - Gerhard Zehetbauer)
Calendar Sync V2 (HKLM-x32\...\Calendar Sync V2) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.07 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.2.4291 - CDBurnerXP)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 3.1.07021 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (x32 Version: 3.1.07021 - Cisco Systems, Inc.) Hidden
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAVE-3.1.10 (HKLM-x32\...\{B94E8F15-7984-4462-BF2D-FD1BFD93C4C5}) (Version: 3.1.1000.0514 - Infineon Technologies)
Deinst. f. Druckertreiber UFR II (HKLM\...\Canon UFR II Printer Driver) (Version: 6, 0, 0, 0 - Canon Inc.)
Devenv-Ressourcen für Microsoft Visual Studio 2012 (x32 Version: 11.0.50727 - Microsoft Corporation) Hidden
Digi XCTU (HKLM\...\XCTU_6.1) (Version: 6.1.0.3 - Digi International)
Dotfuscator and Analytics Community Edition (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Dotfuscator and Analytics Community Edition Language Pack (x32 Version: 5.5.4521.29298 - PreEmptive Solutions) Hidden
Dropbox (HKU\S-1-5-21-1549617161-3530456300-86204775-1000\...\Dropbox) (Version: 3.10.11 - Dropbox, Inc.)
EAGLE 6.4.0 (HKLM-x32\...\EAGLE 6.4.0) (Version: 6.4.0 - CadSoft Computer GmbH)
EaseUS Partition Master 9.3.0 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS)
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
FileZilla Client 3.12.0.2 (HKLM-x32\...\FileZilla Client) (Version: 3.12.0.2 - Tim Kosse)
FMW 1 (Version: 1.32.2 - AVG Technologies) Hidden
Fotogalerie (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
fruux Outlook Connector (HKU\S-1-5-21-1549617161-3530456300-86204775-1000\...\DA800D07A105DF99B8948FE5631DD7100F645DDA) (Version: 2.2.2.117 - fruux)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Drive (HKLM-x32\...\{1C3D2F92-D25E-4D98-B810-3F3B0857BF26}) (Version: 1.26.0707.2863 - Google, Inc.)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Hartlauer Foto World (HKLM-x32\...\Hartlauer Foto World) (Version: 5.0.6 - CEWE COLOR AG u Co. OHG)
Hewlett-Packard ACLM.NET v1.2.2.3 (x32 Version: 1.00.0000 - Hewlett-Packard Company) Hidden
HP Officejet Pro 8600 - Grundlegende Software für das Gerät (HKLM\...\{1241CE77-0B65-40A0-B893-02EA49E35332}) (Version: 25.0.619.0 - Hewlett-Packard Co.)
HP Quick Launch Buttons (HKLM-x32\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.17.1 - Hewlett-Packard Company)
HP SoftPaq Download Manager (HKLM-x32\...\{f41e84dd-bf67-4276-a972-df8f69ff28b6}) (Version: 4.0.0.0 - Hewlett-Packard Company)
HP Support Assistant (HKLM-x32\...\{3AF15EEA-8EDF-4393-BB6C-CF8A9986486A}) (Version: 7.3.35.20 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{81E14A67-42ED-4DD0-AE08-366FE3D3102E}) (Version: 11.50.0012 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard)
HPISDataManager (HKLM-x32\...\{A682ACFC-C295-44F9-B745-6656B3272E7D}) (Version: 1.0.0.27 - Hewlett-Packard Company)
I.R.I.S. OCR (HKLM-x32\...\{CA6BCA2F-EDEB-408F-850B-31404BE16A61}) (Version: 12.3.4.0 - HP)
IDT Audio (HKLM-x32\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6300.0 - IDT)
Inkscape 0.48.5 (HKLM-x32\...\Inkscape) (Version: 0.48.5 - )
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 16.3 - Intel)
Intel(R) PROSet/Wireless for Bluetooth(R) + High Speed (HKLM\...\{BEE86606-EFB5-4353-9F34-29E0C59CDCFA}) (Version: 15.2.0.0284 - Intel Corporation)
Java 8 Update 66 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Java Card Security for HP ProtectTools (HKLM\...\{80B7BAE0-5728-4E5D-BA99-DBA497F8A869}) (Version: 5.0.4.1 - Hewlett-Packard)
Java SE Development Kit 7 Update 21 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0170210}) (Version: 1.7.0.210 - Oracle)
Java(TM) 6 Update 25 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83216025F0}) (Version: 6.0.250 - Oracle)
J-Link ARM V4.74 (HKLM-x32\...\J-Link ARM V4.74) (Version: V4.74 - SEGGER Microcontroller Systeme GmbH)
J-Link ARM V4.84f (HKLM-x32\...\J-Link ARM V4.84f) (Version: V4.84f - SEGGER Microcontroller Systeme GmbH)
K-Lite Codec Pack 8.4.0 (Basic) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 8.4.0 - )
Lexmark Pro800-Pro900 Series (HKLM\...\Lexmark Pro800-Pro900 Series) (Version: - Lexmark International, Inc.)
Lexmark Software deinstallieren (HKLM\...\Lexmark_HostCD) (Version: - Lexmark International, Inc.)
LocalESPC (x32 Version: 8.59.25584 - Microsoft Corporation) Hidden
LocalESPCui for de-de (x32 Version: 8.59.25584 - Microsoft) Hidden
Malwarebytes Anti-Malware Version 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Maple 15 (HKLM\...\Maple 15) (Version: - Maplesoft)
Maple 15 (HKLM-x32\...\Maple 15) (Version: 15.0.0.0 - Maplesoft)
MATLAB R2015b (HKLM\...\Matlab R2015b) (Version: 8.6 - MathWorks)
Microsoft .NET Framework 4.5 Multi-Targeting Pack (HKLM-x32\...\{5CBFF3F3-2D40-34EE-BCA5-A95BC19E400D}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK - DEU Lang Pack (HKLM-x32\...\{98B45D1C-6EB1-460D-A87D-2B60678DC105}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5 SDK (HKLM-x32\...\{1948E039-EC79-4591-951D-9867A8C14C90}) (Version: 4.5.50709 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM\...\{F7930EE9-0929-439D-A57B-D40C2C69C890}) (Version: 6.3.9723.0 - Microsoft Corporation)
Microsoft Help Viewer 2.0 (HKLM-x32\...\Microsoft Help Viewer 2.0) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Help Viewer 2.0 Language Pack - DEU (HKLM-x32\...\Microsoft Help Viewer 2.0 Language Pack - DEU) (Version: 2.0.50727 - Microsoft Corporation)
Microsoft Office 2003 Web Components (HKLM-x32\...\{90120000-00A4-0409-0000-0000000FF1CE}) (Version: 12.0.6213.1000 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISER) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM\...\{36E619BC-A234-4EC3-849B-779A7C865A45}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Data-Tier App Framework (HKLM-x32\...\{FBA6F90E-36EC-4FC9-9B25-3834E3BD46A8}) (Version: 11.0.2316.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{EF18EF0F-96D3-4A6B-9600-2197F1720A15}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (HKLM-x32\...\{6B7B7E62-9F56-4C87-8664-0E20F2CAB03B}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Management Objects (x64) (HKLM\...\{D4DA7C91-A59F-4C72-BAC4-DF7C76AB1CB8}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{13C9CD03-A5FE-4F50-AC8A-17B77C38CC52}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server 2012 T-SQL Language Service (HKLM-x32\...\{28C7A4BB-3966-4373-8376-C11F38290630}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft SQL Server Compact 4.0 SP1 x64 DEU (HKLM\...\{98225B15-ECF5-4645-B5AC-F8C5E869A5D5}) (Version: 4.0.8876.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{D434E072-F482-4F52-AB97-7B19DD5DAEB5}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (x64) (HKLM\...\{485F4AC6-F79E-4482-A0D2-EDF0CCE1E124}) (Version: 10.50.1600.1 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{09298F26-A95C-31E2-9D95-2C60F586F075}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{887868A2-D6DE-3255-AA92-AA0B5A59B874}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU (HKLM\...\Microsoft Visual Studio 2005 Remote Debugger Light (x64) - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2005 Tools for Applications - ENU (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Applications - ENU) (Version: - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Professional 2012 (HKLM-x32\...\{3682f425-c5f9-4fd6-b36a-793f4606b68f}) (Version: 11.0.50727.26 - Microsoft Corporation)
Microsoft Web Deploy dbSqlPackage Provider - DEU (HKLM-x32\...\{86756584-C41A-4CA3-B42D-4768C7720F56}) (Version: 10.3.20225.0 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (HKLM-x32\...\{4C0B27C3-3E8F-4BD2-80FF-6E9E48EBD6D8}) (Version: 11.0.2100.60 - Microsoft Corporation)
Microsoft-System-CLR-Typen für SQL Server 2012 (x64) (HKLM\...\{64A5D39C-95CD-4B8B-B2FA-6C713133B57F}) (Version: 11.0.2100.60 - Microsoft Corporation)
MiKTeX 2.9 (HKLM\...\MiKTeX 2.9) (Version: 2.9 - MiKTeX.org)
Mobile Broadband HL Service (HKLM-x32\...\Mobile Broadband HL Service) (Version: 22.001.07.00.03 - Huawei Technologies Co.,Ltd)
Movie Maker (x32 Version: 16.4.3508.0205 - Microsoft Corporation) Hidden
Mozilla Firefox 35.0.1 (x86 de) (HKLM-x32\...\Mozilla Firefox 35.0.1 (x86 de)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 31.0 - Mozilla)
Mozilla Thunderbird 38.0.1 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 38.0.1 (x86 de)) (Version: 38.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.6 - F.J. Wechselberger)
NetSpeedMonitor 2.5.4.0 x64 (HKLM\...\{88F41EE2-949B-4B52-933D-C7F8F67BC1D2}) (Version: 2.5.4.0 - Florian Gilles)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.3.3 - Notepad++ Team)
NVIDIA Grafiktreiber 341.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 341.81 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA nView 141.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.36 - NVIDIA Corporation)
OpenSSL 1.0.2a (32-bit) (HKLM-x32\...\OpenSSL (32-bit)_is1) (Version: - OpenSSL Win32 Installer Team)
OrCAD 16.6 Lite (HKU\S-1-5-21-1549617161-3530456300-86204775-1000\...\{12C79350-444D-48E0-B05C-1E610FF17F1A}) (Version: 16.60.000 - Cadence Design Systems)
ownCloud (HKLM-x32\...\ownCloud) (Version: 1.8.1.5050 - ownCloud)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PDF Split And Merge Basic (HKLM\...\{C91B24F6-1629-11E2-B696-21676188709B}) (Version: 2.2.2 - Andrea Vacondio)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 2.1.2 - pdfforge)
PreEmptive Analytics Client German Language Pack (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
PreEmptive Analytics Visual Studio Components (x32 Version: 1.0.2180.1 - PreEmptive Solutions) Hidden
QLBCASL (x32 Version: 6.40.17.2 - Hewlett-Packard) Hidden
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
RICOH Media Driver (HKLM-x32\...\{F5CC2EF8-20A4-4366-A681-3FE849E65809}) (Version: 2.13.00.05 - RICOH)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.55.0 - Samsung Electronics Co., Ltd.)
Securepoint SSL VPN (HKLM-x32\...\{3A903356-AFF9-4CAF-BCEA-78B99427006E}) (Version: 1.0.3 - Securepoint GmbH)
Skype™ 7.14 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.14.106 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.0.15064.11 - Samsung Electronics Co., Ltd.)
Smart Switch (x32 Version: 4.0.15064.11 - Samsung Electronics Co., Ltd.) Hidden
SolidWorks 2013 x64 Edition SP0 (HKLM-x32\...\SolidWorks Installation Manager 20130-40000-1100-100) (Version: 21.0.0.5024 - SolidWorks Corporation)
SolidWorks 2013 x64 Edition SP0 (Version: 21.100.5024 - SolidWorks) Hidden
SolidWorks 2013 x64 German Resources (Version: 21.100.5024 - SolidWorks Corporation) Hidden
SolidWorks eDrawings 2013 x64 Edition SP0 (Version: 13.0.5016 - Dassault Systèmes SolidWorks Corp) Hidden
SolidWorks Explorer 2013 SP0 x64 Edition (Version: 21.00.5024 - SolidWorks Corporation) Hidden
SolidWorks Flow Simulation 2013 SP0 x64 Edition (Version: 21.00.5025 - SolidWorks Corporation) Hidden
SolidWorks Plastics 2013 SP0 x64 Edition (Version: 21.00.5024 - SolidWorks Corporation) Hidden
SonyEditor (remove only) (HKLM-x32\...\SonyEditor) (Version: - )
Steam (HKLM-x32\...\Steam) (Version: - Valve Corporation)
SumatraPDF (HKLM-x32\...\SumatraPDF) (Version: 2.3 - Krzysztof Kowalczyk)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
System Requirements Lab for Intel (HKLM-x32\...\{53C63F43-B827-42D9-8886-4698D91EA33B}) (Version: 4.5.15.0 - Husdawg, LLC)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.47484 - TeamViewer)
Texmaker (HKLM-x32\...\Texmaker) (Version: - )
TwinCAT 2.11 x64 Engineering (HKLM\...\{C354142F-F2C0-4395-8C12-1481695D1722}) (Version: 2.11.2241 - Beckhoff Automation)
TwinCAT Scope2 (HKLM-x32\...\{86280255-C5FE-4629-A869-6F58B98D612B}) (Version: 1.0.91 - Beckhoff)
Ubuntu (HKLM-x32\...\Wubi) (Version: 12.04-rev272 - Ubuntu)
Update for (KB2504637) (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}.KB2504637) (Version: 1 - Microsoft Corporation)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_ENTERPRISER_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version: - Microsoft)
Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_ENTERPRISER_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version: - Microsoft)
Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_ENTERPRISER_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version: - Microsoft)
Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_ENTERPRISER_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version: - Microsoft)
Virtual Router v1.0 (HKLM-x32\...\{BE905C46-2B34-4D73-AEE1-769ED138E0FF}) (Version: 1.0 - Chris Pietschmann)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: - Elaborate Bytes)
Visual Micro for Arduino (HKLM-x32\...\{C0B81137-C0C6-439A-8670-40678D74B0E5}) (Version: 15.03.1802 - Visual Micro Limited)
Visual Studio 2010 x64 Redistributables (HKLM\...\{21B133D6-5979-47F0-BE1C-F6A6B304693F}) (Version: 13.0.0.1 - AVG Technologies)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio C++ 10.0 Runtime (HKLM-x32\...\{4412F224-3849-4461-A3E9-DEEF8D252790}) (Version: 10.0.0 - TomTom International B.V.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WCF Data Services 5.0 (for OData v3) DEU Language Pack (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services 5.0 (for OData v3) Primary Components (x32 Version: 5.0.50628.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Microsoft Visual Studio 2012 (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF Data Services Tools for Visual Studio 11 DEU Language Pack (x32 Version: 5.0.50710.0 - Microsoft Corporation) Hidden
WCF RIA Services V1.0 SP2 (HKLM-x32\...\{3A523AF9-D32F-4C85-8388-0335731F3405}) (Version: 4.1.61829.0 - Microsoft Corporation)
WD Drive Utilities (HKLM-x32\...\{72E40002-8CEC-47C1-A099-83AC8E173BF0}) (Version: 1.0.3.3 - Western Digital Technologies, Inc.)
Win32DiskImager version 0.9.5 (HKLM-x32\...\{D074CE74-912A-4AD3-A0BF-3937D9D01F17}_is1) (Version: 0.9.5 - ImageWriter Developers)
WinAVR 20100110 (remove only) (HKLM-x32\...\WinAVR-20100110) (Version: 20100110 - )
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3508.0205 - Microsoft Corporation)
Windows-Treiberpaket - Segger (jlink) USB (04/11/2012 2.6.8.2) (HKLM\...\419546AE8E4244C647A348987F769803F43B9C4F) (Version: 04/11/2012 2.6.8.2 - Segger)
Windows-Treiberpaket - SEGGER (usbser) Ports (01/25/2012 6.0.2600.4) (HKLM\...\BD6BF8BBF7BE0D0091163F649A1A423B7EB9D4F1) (Version: 01/25/2012 6.0.2600.4 - SEGGER)
Winect version 0.75 (HKLM-x32\...\{68502EA1-4E8C-40FC-BED1-2AF413C89F8C}_is1) (Version: 0.75 - Ixora Studios)
WinSCP 5.7.4 (HKLM-x32\...\winscp3_is1) (Version: 5.7.4 - Martin Prikryl)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{6D7AE628-FF41-4CD3-91DD-34825BB1A251}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Deutsch\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{B77E471C-FBF3-4CB5-880F-D7528AD4B349}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Deutsch\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{C92FB640-AD4D-498A-9979-A51A2540C977}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Deutsch\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{D70E31AD-2614-49F2-B0FC-ACA781D81F3E}\localserver32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Deutsch\acad.exe (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{E2C40589-DE61-11ce-BAE0-0020AF6D7005}\InprocServer32 -> C:\Program Files\Autodesk\AutoCAD 2012 - Deutsch\acadficn.dll (Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-1549617161-3530456300-86204775-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
==================== Wiederherstellungspunkte =========================
25-11-2015 10:25:15 Geplanter Prüfpunkt
02-12-2015 11:37:27 JRT Pre-Junkware Removal
==================== Hosts Inhalt: ==========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2015-07-29 09:13 - 2015-07-29 09:13 - 00001242 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
192.168.0.112 meini.ddns.net
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0AD36E96-6755-4326-A792-C589C9AEE565} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Update Check => C:\ProgramData\Hewlett-Packard\HP Support Framework\Resources\Updater7\HPSFUpdater.exe [2014-05-12] (Hewlett-Packard Company)
Task: {0C1FA8A8-F62A-456D-AA52-58184ABAE72D} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1549617161-3530456300-86204775-1000UA => C:\Users\MEIN_BENUTZER\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-13] (Dropbox, Inc.)
Task: {1C44F087-5B49-4B96-A0D3-D3346146116A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {20F5E9C6-4BCB-4AE5-9FA5-240587B65A9D} - System32\Tasks\hpUrlLauncher.exe_{69AD82A2-8302-4B15-8C84-E6C81A8F8D50} => C:\Program Files\HP\HP Officejet Pro 8600\Bin\utils\hpUrlLauncher.exe [2011-09-09] (Hewlett-Packard Co.)
Task: {258C762A-70A8-405D-AC8D-EB688E82BD86} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-02-05] (Adobe Systems Incorporated)
Task: {2961C344-884B-45A4-9A0F-14E474247142} - System32\Tasks\0615pizUpdateInfo => C:\ProgramData\Avg_Update_0615piz\0615piz_AVG-Secure-Search-Update.exe [2015-11-03] ()
Task: {2CC9413A-54B4-4ADD-A3F1-EAFC931610A2} - System32\Tasks\Microsoft\Windows\Media Center\Extender\Update media permissions for Mcx1-ELITEBOOK => C:\Windows\ehome\McxTask.exe [2009-07-14] (Microsoft Corporation)
Task: {4160844A-4E8B-47E1-A0F3-D5E8C8AC5C3D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {427FC932-9D10-4AF8-9DA1-E0093594E973} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1549617161-3530456300-86204775-1000UA => C:\Users\MEIN_BENUTZER\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {584712E0-8B05-499A-AB20-115A177264A1} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-06-01] (Piriform Ltd)
Task: {7652EEEF-873E-4EDC-900D-3DF4AE6997C3} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-08-29] (Hewlett-Packard Company)
Task: {85CB3F4F-6A29-4A16-8358-C444319EFA91} - System32\Tasks\MATLAB R2015b Startup Accelerator => C:\Program Files\MATLAB\R2015b\bin\win64\MATLABStartupAccelerator.exe [2015-07-30] ()
Task: {98883F70-CAC6-4756-84AF-BFBB5CCCA69E} - System32\Tasks\AdobeAAMUpdater-1.0-Elitebook-MEIN_BENUTZER => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-09-20] (Adobe Systems Incorporated)
Task: {B2DE0E99-0776-46AE-A350-04C9A806B8B5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1549617161-3530456300-86204775-1000Core => C:\Users\MEIN_BENUTZER\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {BCD4D9E1-5339-480E-A173-7A126820644F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2013-08-29] (Hewlett-Packard Company)
Task: {EDB440F8-6753-4BE0-A17C-0D13C03A3039} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-1549617161-3530456300-86204775-1000Core => C:\Users\MEIN_BENUTZER\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-13] (Dropbox, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\0615pizUpdateInfo.job => C:\ProgramData\Avg_Update_0615piz\0615piz_AVG-Secure-Search-Update.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1549617161-3530456300-86204775-1000Core.job => C:\Users\MEIN_BENUTZER\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-1549617161-3530456300-86204775-1000UA.job => C:\Users\MEIN_BENUTZER\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1549617161-3530456300-86204775-1000Core.job => C:\Users\MEIN_BENUTZER\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1549617161-3530456300-86204775-1000UA.job => C:\Users\MEIN_BENUTZER\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\MATLAB R2015b Startup Accelerator.job => C:\Program Files\MATLAB\R2015b\bin\win64\MATLABStartupAccelerator.exe
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2013-04-12 22:53 - 2015-08-18 01:07 - 00115376 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-05-06 02:30 - 2015-05-06 02:30 - 00059904 _____ () C:\Program Files (x86)\ownCloud\shellext\OCUtil_x64.dll
2015-07-09 18:32 - 2015-07-09 18:32 - 00043480 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2014-08-13 17:34 - 2009-11-04 07:17 - 00189440 _____ () C:\Windows\system32\spool\PRTPROCS\x64\lxecdrpp.dll
2013-11-30 11:38 - 2009-11-04 08:18 - 00189440 _____ () C:\Windows\system32\spool\PRTPROCS\x64\lxeadrpp.dll
2014-08-13 17:33 - 2013-01-23 12:35 - 00772712 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecmon.exe
2014-08-13 17:33 - 2013-01-23 12:35 - 00150264 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\ezprint.exe
2011-02-02 13:08 - 2011-02-02 13:08 - 00018656 _____ () C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe
2011-08-12 07:21 - 2011-08-12 07:21 - 00227680 _____ () C:\ProgramData\MobileBrServ\mbbservice.exe
2014-02-14 13:18 - 2014-02-14 13:18 - 00040840 _____ () C:\Program Files (x86)\Securepoint SSL VPN\SPOpenVPNService.exe
2014-03-07 17:09 - 2014-03-07 17:09 - 00463408 _____ () C:\TwinCAT\EventLogger\TcEventLogger.exe
2013-10-17 22:28 - 2013-10-17 22:28 - 00028672 _____ () C:\Windows\system32\valWBFPolicyService.exe
2015-02-19 22:37 - 2015-02-19 22:37 - 00063376 _____ () C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\zlib1.dll
2014-08-13 17:33 - 2010-04-01 11:23 - 00389120 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecscw.dll
2014-08-13 17:33 - 2009-05-27 06:16 - 00192512 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecdatr.dll
2014-08-13 17:33 - 2009-05-27 06:13 - 00081920 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxeccats.dll
2014-08-13 17:33 - 2010-04-01 11:24 - 01159168 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecDRS.dll
2014-08-13 17:33 - 2009-03-09 23:43 - 00155648 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxeccaps.dll
2014-08-13 17:32 - 2009-02-20 02:48 - 00381440 _____ () C:\Windows\system32\lxecsm.dll
2014-08-13 17:32 - 2009-04-28 01:56 - 00024064 _____ () C:\Windows\system32\lxecsmr.dll
2014-08-13 17:33 - 2010-04-05 04:56 - 00716954 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\Epwizard.DLL
2014-08-13 17:33 - 2010-04-05 04:55 - 00159890 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\customui.dll
2014-08-13 17:33 - 2010-04-05 04:54 - 00123033 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\Eputil.DLL
2014-08-13 17:33 - 2010-04-05 04:54 - 00143502 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\Imagutil.DLL
2014-08-13 17:33 - 2010-04-05 04:55 - 00061604 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\Epfunct.DLL
2014-08-13 17:33 - 2009-06-23 05:09 - 02203648 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\EPWizRes.dll
2014-08-13 17:33 - 2009-06-23 05:10 - 00045056 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\epstring.dll
2014-08-13 17:33 - 2009-06-23 05:11 - 00102400 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\EPOEMDll.dll
2014-08-13 17:33 - 2009-04-07 13:25 - 00409600 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\iptk.dll
2014-08-13 17:33 - 2009-03-02 08:25 - 00151552 _____ () C:\Program Files (x86)\Lexmark Pro800-Pro900 Series\lxecptp.dll
2015-12-02 11:41 - 2015-12-02 11:41 - 00098816 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32api.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00110080 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\pywintypes27.dll
2015-12-02 11:41 - 2015-12-02 11:41 - 00364544 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\pythoncom27.dll
2015-12-02 11:41 - 2015-12-02 11:41 - 00046080 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\_socket.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 01208320 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\_ssl.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00320512 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32com.shell.shell.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00776704 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\_hashlib.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 01176576 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\wx._core_.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00806400 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\wx._gdi_.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00816128 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\wx._windows_.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 01067008 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\wx._controls_.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00733184 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\wx._misc_.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00682496 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\pysqlite2._sqlite.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00088064 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\_ctypes.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00119808 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32file.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00108544 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32security.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00007168 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\hashobjs_ext.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00017920 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\thumbnails_ext.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00079360 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\usb_ext.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00167936 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32gui.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00018432 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32event.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00128512 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\_elementtree.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00127488 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\pyexpat.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00013824 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\common.time34.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00036864 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\_psutil_windows.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00038912 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32inet.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00525640 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\windows._lib_cacheinvalidation.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00011264 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32crypt.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00077312 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\wx._html2.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00027136 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\_multiprocessing.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00020480 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\_yappi.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00035840 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32process.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00686080 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\unicodedata.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00123392 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\wx._wizard.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00024064 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32pipe.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00010240 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\select.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00025600 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32pdh.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00017408 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32profile.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00022528 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\win32ts.pyd
2015-12-02 11:41 - 2015-12-02 11:41 - 00078848 _____ () C:\Users\MEIN_BENUTZER\AppData\Local\Temp\_MEI29722\wx._animate.pyd
2015-11-24 08:16 - 2015-11-24 08:15 - 40500224 _____ () C:\Program Files (x86)\AVG\UiDll\2171\libcef.dll
2015-07-09 18:32 - 2015-07-09 18:32 - 00039384 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2015-11-12 15:42 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-12 15:42 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\46.0.2490.86\libegl.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== EXE Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1549617161-3530456300-86204775-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\MEIN_BENUTZER\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8 - 8.8.4.4
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SolidWorks 2013 Schnellstart.lnk => C:\Windows\pss\SolidWorks 2013 Schnellstart.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^SolidWorks Hintergrund-Downloader.lnk => C:\Windows\pss\SolidWorks Hintergrund-Downloader.lnk.CommonStartup
MSCONFIG\startupreg: Acrobat Assistant 8.0 => "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
MSCONFIG\startupreg: BlueStacks Agent => C:\Program Files (x86)\BlueStacks\HD-Agent.exe
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: Cisco AnyConnect Secure Mobility Agent for Windows => "C:\Program Files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnui.exe" -minimized
MSCONFIG\startupreg: Dropbox Update => "C:\Users\MEIN_BENUTZER\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
MSCONFIG\startupreg: EaseUS EPM tray => C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe
MSCONFIG\startupreg: Google Update => "C:\Users\MEIN_BENUTZER\AppData\Local\Google\Update\GoogleUpdate.exe" /c
MSCONFIG\startupreg: GoogleChromeAutoLaunch_46C9A72171D2E1031857456317B3AAA4 => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
MSCONFIG\startupreg: HP Software Update => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: Samsung Link => C:\Program Files\Samsung\Samsung Link\utils\Samsung Link Launcher.exe
MSCONFIG\startupreg: TcSysUI => C:\TwinCAT\TcSysUI.exe
MSCONFIG\startupreg: VirtualCloneDrive => "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{B03F0E28-2186-46BF-94D1-663177C71713}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{A1135F1B-D82A-46CA-8202-1515C27EB902}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
FirewallRules: [{A3B1D195-8960-4858-9A68-2929B5C90652}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\photoview\photoview360.exe
FirewallRules: [{7F2E5D2C-40D5-4B4F-96D6-9DB9609CDA37}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\photoview\photoview360.exe
FirewallRules: [{55902A56-9A3A-41B7-9923-AB6E760ACC98}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\photoview\photoview360_cl.exe
FirewallRules: [{3211D078-8972-477F-9F81-E273AFE652F2}] => (Allow) C:\Program Files\SolidWorks Corp\SolidWorks\photoview\photoview360_cl.exe
FirewallRules: [{448D6623-672E-4FC1-9B04-89B043ACCA83}] => (Allow) C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{ED61F1EE-E7B5-458A-B421-7AA441050571}] => (Allow) C:\Users\MEIN_BENUTZER\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{774801E1-EEDF-4C34-8C0D-3AD6D20870E4}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\DeviceSetup.exe
FirewallRules: [{933CD5AD-A2B8-4A20-A762-597CDDFE01F9}] => (Allow) C:\Program Files\HP\HP Officejet Pro 8600\Bin\HPNetworkCommunicator.exe
FirewallRules: [{F727B875-71A6-417E-9590-CA754ACE272F}] => (Allow) LPort=8743
FirewallRules: [{08217C40-9D82-4603-B764-E45111265E4F}] => (Allow) LPort=8643
FirewallRules: [{94B40E20-3472-45C8-89B4-66A7B395A1DF}] => (Allow) LPort=7676
FirewallRules: [{527C5134-8D13-4F65-B0E1-2656EAF1842F}] => (Allow) LPort=7679
FirewallRules: [{8844AEF0-621B-4672-AB09-1B07320B1CAB}] => (Allow) LPort=24234
FirewallRules: [{C326EA59-331D-4926-830D-494E7564EFCA}] => (Allow) LPort=7900
FirewallRules: [{836AAA23-1D33-4E13-A224-C4714A565507}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{C79F81B4-17EA-4681-ABCB-6F9E69127830}C:\users\MEIN_BENUTZER\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\MEIN_BENUTZER\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{292F823E-6345-4C50-B291-28ECA993D2BF}C:\users\MEIN_BENUTZER\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\MEIN_BENUTZER\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{7A0C696D-60DF-4653-8AFB-DF84EC36F6F8}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [UDP Query User{094B8D18-4D2E-43A5-9027-E358ADBE3322}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [TCP Query User{C6064235-F319-4E21-9289-F6100BB1CE23}C:\program files\maple 15\jre\bin\maple.exe] => (Block) C:\program files\maple 15\jre\bin\maple.exe
FirewallRules: [UDP Query User{53984C33-96AC-42A3-B4D0-E9E64C0D79E2}C:\program files\maple 15\jre\bin\maple.exe] => (Block) C:\program files\maple 15\jre\bin\maple.exe
FirewallRules: [TCP Query User{56888EB0-16C3-4259-8EBE-82C23C277AE8}C:\program files\maple 15\jre\bin\maple.exe] => (Allow) C:\program files\maple 15\jre\bin\maple.exe
FirewallRules: [UDP Query User{51C7CAB8-2BBD-4A71-B6D9-537B6E42A645}C:\program files\maple 15\jre\bin\maple.exe] => (Allow) C:\program files\maple 15\jre\bin\maple.exe
FirewallRules: [{17617A63-9153-4ECA-A1E8-6B3DBF3DA03A}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{5ED587E7-875C-482C-8228-2E9A4FBE3431}] => (Allow) LPort=2869
FirewallRules: [{6B85EEAA-BC14-4AE3-BD49-4FFB314638A7}] => (Allow) LPort=1900
FirewallRules: [{6FC6E805-BD1C-408E-A407-5CD046103429}] => (Allow) C:\OrCAD\OrCAD_16.6_Lite\tools\pcb\bin\productserver.exe
FirewallRules: [{9D8377AF-E2E6-49B7-9660-DF0319E11190}] => (Allow) C:\OrCAD\OrCAD_16.6_Lite\openaccess\bin\win32\opt\oadmturboserver.exe
FirewallRules: [{64EE829B-0700-465D-A659-6BD9E95C9638}] => (Allow) C:\OrCAD\OrCAD_16.6_Lite\OpenAccess\bin\win32\opt\oaFSLockD.exe
FirewallRules: [{55514DF7-6051-4165-BBAC-405126EDDD36}] => (Allow) C:\OrCAD\OrCAD_16.6_Lite\tools\bin\cdsmsgserver.exe
FirewallRules: [{2BACC00F-77C8-4045-BD8E-BD217AB23828}] => (Allow) C:\OrCAD\OrCAD_16.6_Lite\tools\bin\cdsnameserver.exe
FirewallRules: [{C32F0FFD-326E-43F4-B5CE-80FFA14BF94F}] => (Allow) C:\OrCAD\OrCAD_16.6_Lite\tools\bin\cdsmps.exe
FirewallRules: [{AA6B7DDB-B8F5-49B6-9760-498C66E9B1E7}] => (Allow) C:\OrCAD\OrCAD_16.6_Lite\tools\jre\bin\javaw.exe
FirewallRules: [{25245A7E-FAF1-44A6-A148-D994435FFA37}] => (Allow) C:\OrCAD\OrCAD_16.6_Lite\tools\bin\clsbd.exe
FirewallRules: [{7598AD48-284A-4E90-95A3-D8BC50F59D77}] => (Allow) C:\OrCAD\OrCAD_16.6_Lite\tools\capture\Capture.exe
FirewallRules: [{9DC1FE9E-A3C4-4344-8DED-C4E43F5BBBF4}] => (Allow) C:\Windows\system32\lxeacoms.exe
FirewallRules: [{046C0371-EB48-4DBA-AFE2-62B5F90B5F17}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{03CE0552-796E-4305-A8A3-4D7DA53A8051}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{61F0A7B7-FBE9-45B8-8FF2-F4C8492804FA}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{29C0FA00-BEBB-4A74-8728-10035256B383}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{D33A74CE-19DC-4CA9-BBD2-326F3B109122}] => (Allow) C:\Windows\system32\lxeccoms.exe
FirewallRules: [{26952412-42DD-4618-BB05-83E33AEFAEF1}] => (Allow) C:\Windows\system32\LXECcoms.exe
FirewallRules: [{8598E984-E07B-496A-A660-074D8EE3713E}] => (Allow) C:\Windows\system32\LXECcoms.exe
FirewallRules: [{045DA916-11F0-4585-B958-41F03547A5B2}] => (Allow) C:\Program Files (x86)\Microsoft Visual Studio 11.0\Common7\IDE\devenv.exe
FirewallRules: [{B8D835CA-DE4F-443C-A0C2-F3EE520219C3}] => (Allow) C:\Windows\system32\LMabcoms.exe
FirewallRules: [TCP Query User{89D7BB38-DB74-402F-8FB2-A07DD1F3691F}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{6FEE4EA0-E85A-406F-9668-F13EAA477643}C:\program files (x86)\videolan\vlc\vlc.exe] => (Allow) C:\program files (x86)\videolan\vlc\vlc.exe
FirewallRules: [{3FD4DD37-AF05-4E7D-8B70-DA9CFA28117F}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{CC4E50C3-9A0B-4083-BB73-77E81A59BFA6}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5A57E2B4-6753-4DC7-A7A3-037D38D86223}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{CBCA1444-5CBA-4171-ACD5-8587E9FAF721}C:\users\MEIN_BENUTZER\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\MEIN_BENUTZER\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [UDP Query User{8AE854B7-92BC-4F93-9685-C44656D76E50}C:\users\MEIN_BENUTZER\appdata\local\popcorn time\node-webkit\popcorn time.exe] => (Allow) C:\users\MEIN_BENUTZER\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [{94391A6D-0B46-4EA1-926F-28BE45645940}] => (Block) C:\users\MEIN_BENUTZER\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [{901C79EE-AB5C-4DE5-B1AD-E2322ED4E379}] => (Block) C:\users\MEIN_BENUTZER\appdata\local\popcorn time\node-webkit\popcorn time.exe
FirewallRules: [{3E1D585D-3976-4F88-AE5C-FC9486AC6CCE}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{588F645D-815F-4F6F-A408-BC4FC816BCD3}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [TCP Query User{B3A9AD54-2F2C-46F7-96AB-0175AA3FD97A}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Block) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [UDP Query User{6ACF977F-52C1-4A8B-8C25-3D4126F53ABF}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Block) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [TCP Query User{818C7BD3-0E5A-44B4-ADE2-15B79719DD4F}C:\dave-3.1.10\debugger\bin\taskingdebugger.exe] => (Allow) C:\dave-3.1.10\debugger\bin\taskingdebugger.exe
FirewallRules: [UDP Query User{20F4BE2C-1AC2-4A73-8744-8AD235721BF9}C:\dave-3.1.10\debugger\bin\taskingdebugger.exe] => (Allow) C:\dave-3.1.10\debugger\bin\taskingdebugger.exe
FirewallRules: [{E3651082-C65A-421B-9166-E4B82D0BAC4F}] => (Block) C:\dave-3.1.10\debugger\bin\taskingdebugger.exe
FirewallRules: [{6258F81F-6D7E-4CE8-A5F6-9CF0310B33DE}] => (Block) C:\dave-3.1.10\debugger\bin\taskingdebugger.exe
FirewallRules: [TCP Query User{6956E35D-31D7-471F-99A2-C8E5F4005D55}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{10764DEC-244B-4241-BCA3-8A1272948517}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [TCP Query User{4904AADD-4D7C-4DD6-BB87-FFF7AA427E84}C:\processing-2.2.1\java\bin\java.exe] => (Allow) C:\processing-2.2.1\java\bin\java.exe
FirewallRules: [UDP Query User{1D23877A-6B3B-4524-9C95-1F4DC66BF9CA}C:\processing-2.2.1\java\bin\java.exe] => (Allow) C:\processing-2.2.1\java\bin\java.exe
FirewallRules: [TCP Query User{D65E18E3-FCBE-4004-958A-A9FDE61E9531}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{733B4B64-19D7-4D60-818F-6C8AFD1801BE}C:\program files (x86)\arduino\java\bin\javaw.exe] => (Allow) C:\program files (x86)\arduino\java\bin\javaw.exe
FirewallRules: [{61D352EF-E677-46DE-BECC-1E1F0B3389C9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{35238CD2-5E45-43CB-B305-EEFA3E180CFE}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A7EBF14D-6416-462D-BFD2-478339B55788}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3A620409-FB4F-4437-A04A-F1136426CB37}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A780C69D-2CF5-487D-9F11-525ECEBB99D5}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{EE8CDB42-3FA4-4307-9E75-8A4DC956B831}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgmfapx.exe
FirewallRules: [{FC7BFFFC-AB1B-4A2D-844F-4CCE308EF50E}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{9D0643CB-9C82-418D-8E93-19BEFF92D552}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgnsa.exe
FirewallRules: [{4E3806C3-5F7F-4114-BE69-C66604ABE365}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{2F2C2D34-B169-4BCB-A9E5-3DD7D500EC9E}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgdiagex.exe
FirewallRules: [{A640ADB4-C924-44D4-8B2B-6B8F2C4234BD}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{92B81DE1-EF8A-4826-A03D-2692B1985C9D}] => (Allow) C:\Program Files (x86)\AVG\AVG2015\avgemca.exe
FirewallRules: [{2E2E997E-5D0E-426F-8532-208B30C3F996}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{C229A20D-5ED0-489F-AB9D-9E758AE1D2B2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{1076D3AB-ECD0-4085-A94B-1058B94FD806}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{A1048F96-BAF2-4F98-8C1D-7BF3A151427F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{6A17A3B9-141E-44DD-AF8F-F62276D79226}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => (Allow) C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [UDP Query User{22B9BF20-9BDC-4509-A1C8-1AE847CAB3A2}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => (Allow) C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [TCP Query User{EF0974CB-5F6B-4FB9-9FCB-DD2260589456}C:\arduino\java\bin\javaw.exe] => (Allow) C:\arduino\java\bin\javaw.exe
FirewallRules: [UDP Query User{505928B9-DD29-44B9-A865-67D964AB393E}C:\arduino\java\bin\javaw.exe] => (Allow) C:\arduino\java\bin\javaw.exe
FirewallRules: [TCP Query User{F763272D-2543-4951-9A74-27C8BF39CBC2}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => (Allow) C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [UDP Query User{19AB95BE-F781-4C79-B4F3-4EE2943D88D4}C:\program files\matlab\r2015b\bin\win64\matlab.exe] => (Allow) C:\program files\matlab\r2015b\bin\win64\matlab.exe
FirewallRules: [{A434EE8B-20BE-4844-BE70-B396380CC1AF}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{904AD28B-EAC6-4B74-A7F6-6D7AB896731E}D:\powerline utility\powerline scan.exe] => (Allow) D:\powerline utility\powerline scan.exe
FirewallRules: [UDP Query User{E763BA52-67E9-4113-A7E3-C839A75C87E5}D:\powerline utility\powerline scan.exe] => (Allow) D:\powerline utility\powerline scan.exe
FirewallRules: [{EF5118D3-EFAA-4A1E-98C2-ABDF09B640AF}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{2B6854D5-19C3-4107-AA3E-4918E8CAB936}] => (Allow) C:\Program Files (x86)\AVG\Av\avgnsa.exe
FirewallRules: [{595220AB-01D4-487A-9AAC-2A5FCE50E946}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{24DFE4CF-C586-4F1E-A7A7-698D25C563BC}] => (Allow) C:\Program Files (x86)\AVG\Av\avgdiagex.exe
FirewallRules: [{86936296-A34F-47FE-A164-833B40975F7E}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{67DDB028-9FE9-4476-AC71-B3E9AF41B32C}] => (Allow) C:\Program Files (x86)\AVG\Av\avgmfapx.exe
FirewallRules: [{F5983F1D-8E56-489F-B318-C0E31A94EC98}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
FirewallRules: [{EA722B57-2757-4EA0-98E4-5C6E143FF7D1}] => (Allow) C:\Program Files (x86)\AVG\Av\avgemca.exe
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\K1\HomeStream Player\HomeStreamPlayer.exe] => Enabled:HomeStream Player
==================== Fehlerhafte Geräte im Gerätemanager =============
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (12/01/2015 09:21:29 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.18064, Zeitstempel: 0x56042d8f
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.19045, Zeitstempel: 0x56259295
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000004ac04
ID des fehlerhaften Prozesses: 0x27e4
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Error: (12/01/2015 06:26:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm TwinCatScopeView2.exe, Version 1.0.2201.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Wartungscenter-Systemsteuerung, um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 754
Startzeit: 01d12c5cc24f2915
Endzeit: 60000
Anwendungspfad: C:\TwinCAT\Scope 2\View\TwinCatScopeView2.exe
Berichts-ID: 7f99c8dd-9850-11e5-9055-e02a822df1b2
Error: (12/01/2015 02:52:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.18064, Zeitstempel: 0x56042d8f
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.19045, Zeitstempel: 0x56259295
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000004ac04
ID des fehlerhaften Prozesses: 0x2214
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Error: (12/01/2015 02:31:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.18064, Zeitstempel: 0x56042d8f
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.19045, Zeitstempel: 0x56259295
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000004ac04
ID des fehlerhaften Prozesses: 0x1f4
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Error: (12/01/2015 00:33:37 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: GWXUX.exe, Version: 6.3.9600.18064, Zeitstempel: 0x56042d8f
Name des fehlerhaften Moduls: ntdll.dll, Version: 6.1.7601.19045, Zeitstempel: 0x56259295
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000004ac04
ID des fehlerhaften Prozesses: 0x18a8
Startzeit der fehlerhaften Anwendung: 0xGWXUX.exe0
Pfad der fehlerhaften Anwendung: GWXUX.exe1
Pfad des fehlerhaften Moduls: GWXUX.exe2
Berichtskennung: GWXUX.exe3
Error: (12/01/2015 11:43:27 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"1".
Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (12/01/2015 11:43:20 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"1".
Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (12/01/2015 11:43:20 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"1".
Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (12/01/2015 11:43:20 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"1".
Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Error: (12/01/2015 11:43:20 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"1".
Die abhängige Assemblierung "Microsoft.VC80.DebugCRT,processorArchitecture="x86",publicKeyToken="1fc8b3b9a1e18e3b",type="win32",version="8.0.50727.762"" konnte nicht gefunden werden.
Verwenden Sie für eine detaillierte Diagnose das Programm "sxstrace.exe".
Systemfehler:
=============
Error: (12/02/2015 11:41:38 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "lxecCATSCustConnectService" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (12/02/2015 11:41:38 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst lxecCATSCustConnectService erreicht.
Error: (12/02/2015 11:35:52 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "lxecCATSCustConnectService" wurde aufgrund folgenden Fehlers nicht gestartet:
%%1053
Error: (12/02/2015 11:35:52 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst lxecCATSCustConnectService erreicht.
Error: (12/02/2015 11:35:03 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Der Versuch des Dienststeuerungs-Managers, nach dem unerwarteten Beenden des Dienstes "Windows Search" Korrekturmaßnahmen (Neustart des Diensts) durchzuführen, ist fehlgeschlagen. Fehler:
%%1056
Error: (12/02/2015 11:34:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Modules Installer" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/02/2015 11:34:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/02/2015 11:34:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "HP Support Assistant Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/02/2015 11:34:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (12/02/2015 11:34:34 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Intel® Centrino® Wireless Bluetooth® + High Speed Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7 CPU M 640 @ 2.80GHz
Prozentuale Nutzung des RAM: 43%
Installierter physikalischer RAM: 8047.38 MB
Verfügbarer physikalischer RAM: 4514.48 MB
Summe virtueller Speicher: 16092.96 MB
Verfügbarer virtueller Speicher: 12128.92 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:232.88 GB) (Free:17.33 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: BD0FCE4E)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================ MBAM Suchlauf: Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Suchlaufdatum: 02.12.2015
Suchlaufzeit: 10:56
Protokolldatei: mbam_scan.txt
Administrator: Ja
Version: 2.2.0.1024
Malware-Datenbank: v2015.12.02.02
Rootkit-Datenbank: v2015.11.26.01
Lizenz: Testversion
Malware-Schutz: Aktiviert
Schutz vor bösartigen Websites: Aktiviert
Selbstschutz: Deaktiviert
Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: MEIN_BENUTZER
Suchlauftyp: Bedrohungssuchlauf
Ergebnis: Abgeschlossen
Durchsuchte Objekte: 449113
Abgelaufene Zeit: 14 Min., 47 Sek.
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Aktiviert
PUM: Aktiviert
Prozesse: 0
(keine bösartigen Elemente erkannt)
Module: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 0
(keine bösartigen Elemente erkannt)
Registrierungswerte: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 2
PUM.Optional.ConnectionControlRestriction, HKLM\SOFTWARE\POLICIES\MICROSOFT\INTERNET EXPLORER\CONTROL PANEL|ConnectionsTab, 1, Gut: (0), Schlecht: (1),Ersetzt,[2624dfc14e3d11255c61f77ad92bae52]
PUM.Optional.ConnectionControlRestriction, HKLM\SOFTWARE\WOW6432NODE\POLICIES\MICROSOFT\INTERNET EXPLORER\CONTROL PANEL|ConnectionsTab, 1, Gut: (0), Schlecht: (1),Ersetzt,[a8a2b7e94843b18505b8254c966ece32]
Ordner: 0
(keine bösartigen Elemente erkannt)
Dateien: 2
PUP.Optional.UTop, C:\Users\MEIN_BENUTZER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_utop.it_0.localstorage, Löschen bei Neustart, [d6745c440f7ce551d8e05a54ad560cf4],
PUP.Optional.UTop, C:\Users\MEIN_BENUTZER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_utop.it_0.localstorage-journal, Löschen bei Neustart, [85c5554b008baf877d3b238b06fd50b0],
Physische Sektoren: 0
(keine bösartigen Elemente erkannt)
(end) MBAM Schutzprotokoll: Code:
Malwarebytes Anti-Malware
www.malwarebytes.org
Protection, 02.12.2015 10:55, SYSTEM, ELITEBOOK, Protection, Malware Protection, Starting,
Protection, 02.12.2015 10:55, SYSTEM, ELITEBOOK, Protection, Malware Protection, Started,
Protection, 02.12.2015 10:55, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Starting,
Protection, 02.12.2015 10:55, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Started,
Update, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Manual, Remediation Database, 2015.9.16.1, 2015.12.1.3,
Update, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Manual, Rootkit Database, 2015.9.18.1, 2015.11.26.1,
Update, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Manual, IP Database, 2015.9.21.2, 2015.11.30.2,
Update, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Manual, Domain Database, 2015.9.22.3, 2015.12.2.1,
Update, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Manual, Malware Database, 2015.9.22.5, 2015.12.2.2,
Protection, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Protection, Refresh, Starting,
Protection, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Stopping,
Protection, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Stopped,
Protection, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Protection, Refresh, Success,
Protection, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Starting,
Protection, 02.12.2015 10:56, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Started,
Detection, 02.12.2015 11:21, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 53403, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:21, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 53403, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:21, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 53404, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:21, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 53423, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Scan, 02.12.2015 11:21, SYSTEM, ELITEBOOK, Manual, Start: 02.12.2015 10:56, Dauer: 14 Min. 47 Sek., Bedrohungssuchlauf, Abgeschlossen, 0 Malware-Erkennung, 4 Nicht-Malware-Erkennungen,
Protection, 02.12.2015 11:22, SYSTEM, ELITEBOOK, Protection, Malware Protection, Starting,
Protection, 02.12.2015 11:22, SYSTEM, ELITEBOOK, Protection, Malware Protection, Started,
Protection, 02.12.2015 11:22, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Starting,
Protection, 02.12.2015 11:22, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Started,
Detection, 02.12.2015 11:25, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49347, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:25, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49347, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:25, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49348, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:25, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49352, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Protection, 02.12.2015 11:36, SYSTEM, ELITEBOOK, Protection, Malware Protection, Starting,
Protection, 02.12.2015 11:36, SYSTEM, ELITEBOOK, Protection, Malware Protection, Started,
Protection, 02.12.2015 11:36, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Starting,
Protection, 02.12.2015 11:36, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Started,
Protection, 02.12.2015 11:36, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Stopping,
Protection, 02.12.2015 11:36, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Stopped,
Protection, 02.12.2015 11:36, SYSTEM, ELITEBOOK, Protection, Malware Protection, Stopping,
Protection, 02.12.2015 11:36, SYSTEM, ELITEBOOK, Protection, Malware Protection, Stopped,
Protection, 02.12.2015 11:41, SYSTEM, ELITEBOOK, Protection, Malware Protection, Starting,
Protection, 02.12.2015 11:41, SYSTEM, ELITEBOOK, Protection, Malware Protection, Started,
Protection, 02.12.2015 11:41, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Starting,
Protection, 02.12.2015 11:41, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Started,
Detection, 02.12.2015 11:42, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49343, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:42, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49343, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:42, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49344, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:42, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49345, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:51, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49589, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:51, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49625, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:51, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49650, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:53, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49779, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:53, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49793, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 11:53, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 49804, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Protection, 02.12.2015 11:54, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Stopping,
Protection, 02.12.2015 11:54, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Stopped,
Protection, 02.12.2015 11:55, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Starting,
Protection, 02.12.2015 11:55, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Started,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 50355, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 50355, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 50357, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.32, xin.hatredsmotorcyclist.com, 50372, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.32, xin.hatredsmotorcyclist.com, 50372, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 8.34.112.226, jem.recombinantsunengaged.com, 50374, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 8.34.112.226, jem.recombinantsunengaged.com, 50374, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.32, kdv.decipheringwarns.com, 50375, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.32, kdv.decipheringwarns.com, 50375, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 198.27.102.144, a.visadd.com, 50381, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:06, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 198.27.102.144, a.visadd.com, 50381, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, pstatic.eshopcomp.com, 51300, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, pstatic.eshopcomp.com, 51300, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, pstatic.eshopcomp.com, 51301, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, pstatic.eshopcomp.com, 51302, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, pstatic.eshopcomp.com, 51303, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, pstatic.eshopcomp.com, 51304, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, pstatic.eshopcomp.com, 51305, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 51319, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51324, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51324, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51325, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51326, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51327, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51328, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 8.34.112.226, kdv.decipheringwarns.com, 51330, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 8.34.112.226, kdv.decipheringwarns.com, 51330, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.34, xin.hatredsmotorcyclist.com, 51331, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.34, xin.hatredsmotorcyclist.com, 51331, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.32, jem.recombinantsunengaged.com, 51332, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.32, jem.recombinantsunengaged.com, 51332, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.32, jem.recombinantsunengaged.com, 51333, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 51350, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 51351, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 51352, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 51393, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51394, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51395, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51396, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51397, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51398, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.34, xin.hatredsmotorcyclist.com, 51400, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 8.34.112.226, kdv.decipheringwarns.com, 51401, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.32, jem.recombinantsunengaged.com, 51402, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 51415, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51416, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51417, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51418, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51419, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 205.185.208.26, istatic.eshopcomp.com, 51420, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.34, xin.hatredsmotorcyclist.com, 51423, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 8.34.112.226, kdv.decipheringwarns.com, 51424, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:52, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.32, jem.recombinantsunengaged.com, 51425, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:53, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 51454, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:56, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.34, jem.recombinantsunengaged.com, 51582, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:56, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.34, jem.recombinantsunengaged.com, 51582, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:56, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.34, jem.recombinantsunengaged.com, 51583, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:56, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 37.58.102.34, jem.recombinantsunengaged.com, 51584, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:56, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 51589, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
Detection, 02.12.2015 12:56, SYSTEM, ELITEBOOK, Protection, Malicious Website Protection, Domain, 82.163.143.94, m56.dnsqa.me, 51622, Outbound, C:\Program Files (x86)\Google\Chrome\Application\chrome.exe,
(end) AdwCleaner: Code:
# AdwCleaner v5.023 - Bericht erstellt am 02/12/2015 um 11:34:35
# Aktualisiert am 30/11/2015 von Xplode
# Datenbank : 2015-11-30.1 [Server]
# Betriebssystem : Windows 7 Professional Service Pack 1 (x64)
# Benutzername : MEIN_BENUTZER - ELITEBOOK
# Gestartet von : C:\Users\MEIN_BENUTZER\Downloads\AdwCleaner_5.023.exe
# Option : Löschen
# Unterstützung : hxxp://toolslib.net/forum
***** [ Dienste ] *****
[-] Dienst Gelöscht : vToolbarUpdater3.4.0
***** [ Ordner ] *****
[-] Ordner Gelöscht : C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Ordner Gelöscht : C:\ProgramData\AVG Secure Search
[-] Ordner Gelöscht : C:\ProgramData\AVG Security Toolbar
[-] Ordner Gelöscht : C:\Users\MEIN_BENUTZER\AppData\Roaming\Mozilla\Firefox\Profiles\qohjitme.default\Extensions\Avg@toolbar
***** [ Dateien ] *****
[-] Datei Gelöscht : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[-] Datei Gelöscht : C:\Users\MEIN_BENUTZER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage
[-] Datei Gelöscht : C:\Users\MEIN_BENUTZER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pstatic.bestpriceninja.com_0.localstorage-journal
[-] Datei Gelöscht : C:\Users\MEIN_BENUTZER\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage
[-] Datei Gelöscht : C:\Users\MEIN_BENUTZER\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxp_www.azlyrics.com_0.localstorage-journal
[-] Datei Gelöscht : C:\Users\MEIN_BENUTZER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] Datei Gelöscht : C:\Users\MEIN_BENUTZER\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] Datei Gelöscht : C:\Users\MEIN_BENUTZER\AppData\Roaming\Mozilla\Firefox\Profiles\qohjitme.default\searchplugins\avg-secure-search.xml
***** [ DLLs ] *****
***** [ Verknüpfungen ] *****
***** [ Aufgabenplanung ] *****
***** [ Registrierungsdatenbank ] *****
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\protocols\handler\viprotocol
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\speedupmypc
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1
[-] Wert Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Schlüssel Gelöscht : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Schlüssel Gelöscht : HKCU\Software\OCS
[-] Schlüssel Gelöscht : HKCU\Software\Avg Secure Update
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\AVG Secure Search
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Uniblue
[-] Schlüssel Gelöscht : HKLM\SOFTWARE\Avg Secure Update
[-] Schlüssel Gelöscht : HKU\.DEFAULT\Software\Avg Secure Update
***** [ Internetbrowser ] *****
*************************
:: "Tracing" Schlüssel gelöscht
:: Proxy Einstellungen zurückgesetzt
:: Winsock Einstellungen zurückgesetzt
:: Internet Explorer Richtlinien gelöscht
:: Chrome Richtlinien gelöscht
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [5527 Bytes] ########## JRT: Code:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.1 (11.24.2015)
Operating System: Windows 7 Professional x64
Ran by MEIN_BENUTZER (Administrator) on 02.12.2015 at 11:37:26,85
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
File System: 0
Registry: 0
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 02.12.2015 at 11:39:51,62
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ |