sphagnicola | 14.11.2017 07:38 | Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 12-11-2017 03
durchgeführt von Sebastian (Administrator) auf SEBASTIAN-PC (14-11-2017 07:34:03)
Gestartet von C:\Users\Sebastian\Desktop
Geladene Profile: Sebastian (Verfügbare Profile: Sebastian)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: FF)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE
(SEIKO EPSON CORPORATION) C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(McAfee, Inc.) C:\Windows\System32\mfevtps.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON_P2\Status Monitor\SESDBN.EXE
(SoftThinks SAS) C:\Program Files (x86)\Dell DataSafe Local Backup\SftService.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mcshield.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(McAfee, Inc.) C:\Program Files\Common Files\mcafee\systemcore\mfefire.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON_P2\Status Monitor\SEPWDN.EXE
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\NisSrv.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(SEIKO EPSON CORPORATION) C:\Program Files\EPSON_P2\Status Monitor\SEPSPZ.EXE
(Spotify Ltd) C:\Users\Sebastian\AppData\Roaming\Spotify\SpotifyWebHelper.exe
() C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\acrotray.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Evernote Corp., 305 Walnut Street, Redwood City, CA 94063) C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Mail\wlmail.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AdobeGCClient.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10920552 2010-06-23] (Realtek Semiconductor)
HKLM\...\Run: [RunDLLEntry_THXCfg] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [RunDLLEntry_EptMon] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\EptMon64.dll,RunDLLEntry EptMon64
HKLM\...\Run: [DellStage] => C:\Program Files (x86)\Dell Stage\Dell Stage\stage_primary.exe [1802472 2011-01-25] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [MSC] => c:\Program Files\Microsoft Security Client\msseces.exe [1353680 2016-11-14] (Microsoft Corporation)
HKLM\...\Run: [SEQLU] => C:\Program Files\EPSON_P2\Printer Software\SEQLUZ.EXE [950704 2012-11-16] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [SESMPSP] => C:\Program Files\EPSON_P2\Status Monitor\SEPSPZ.EXE [459184 2012-11-16] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [283160 2010-09-13] (Intel Corporation)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio PC\THXAudioCP\THXAudio.exe [963584 2009-12-01] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => "C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Reader_sl.exe"
HKLM-x32\...\Run: [RoxWatchTray] => C:\Program Files (x86)\Common Files\Roxio Shared\OEM\12.0\SharedCOM\RoxWatchTray12OEM.exe [240112 2010-11-25] (Sonic Solutions)
HKLM-x32\...\Run: [Desktop Disc Tool] => C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe [514544 2010-11-17] ()
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-04-21] (Apple Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [3567928 2017-11-01] (Dropbox, Inc.)
HKLM-x32\...\Run: [QuickTime Task] => C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2015-08-06] (Apple Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2017-09-05] (Oracle Corporation)
HKLM-x32\...\RunOnce: [Launcher] => C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe [163040 2010-08-11] (Softthinks)
HKLM-x32\...\RunOnce: [DSUpdateLauncher] => C:\Program Files (x86)\Dell DataSafe Local Backup\Components\DSUpdate\hstart.exe [18240 2010-07-21] (Dell)
HKU\S-1-5-21-1229241503-1036117088-2021709069-1000\...\Run: [EA Core] => "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
HKU\S-1-5-21-1229241503-1036117088-2021709069-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1229241503-1036117088-2021709069-1000\...\Run: [Spotify Web Helper] => C:\Users\Sebastian\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1580144 2017-08-14] (Spotify Ltd)
HKU\S-1-5-21-1229241503-1036117088-2021709069-1000\...\MountPoints2: {c294e04f-037d-11e5-89b0-782bcb94fad5} - E:\TDExtractor.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Spyder3Utility.lnk [2011-05-10]
ShortcutTarget: Spyder3Utility.lnk -> C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility.exe ()
Startup: C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\EvernoteClipper.lnk [2015-03-10]
ShortcutTarget: EvernoteClipper.lnk -> C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1 192.168.2.1
Tcpip\..\Interfaces\{C65ED75B-DF41-43D3-9164-8B07E2084D59}: [DhcpNameServer] 192.168.9.1 192.168.200.1
Tcpip\..\Interfaces\{D4BB49B4-1A18-4980-B879-47C5F1F05D47}: [DhcpNameServer] 192.168.2.1 192.168.2.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKU\S-1-5-21-1229241503-1036117088-2021709069-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.de/
SearchScopes: HKLM -> DefaultScope Wert fehlt
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope Wert fehlt
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120701140422.dll [2012-05-25] (McAfee, Inc.)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\ssv.dll [2017-10-21] (Oracle Corporation)
BHO-x32: scriptproxy -> {7DB2D5A0-7241-4E79-B68D-6309F01C5231} -> C:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120701140422.dll [2012-05-25] (McAfee, Inc.)
BHO-x32: Windows Live ID-Anmelde-Hilfsprogramm -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28] (Microsoft Corp.)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2017-09-20] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Windows Live Messenger Companion Helper -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2012-03-08] (Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\jp2ssv.dll [2017-10-21] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-1229241503-1036117088-2021709069-1000 -> Kein Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Keine Datei
FireFox:
========
FF ProfilePath: C:\Users\Sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\9b5uo83h.default-1486654576106 [2017-11-14]
FF Extension: (Imperia OneClickEdit) - C:\Users\Sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\9b5uo83h.default-1486654576106\Extensions\oce@imperia.de.xpi [2017-03-17]
FF Extension: (Safe Browsing Version 4 (temporary add-on)) - C:\Users\Sebastian\AppData\Roaming\Mozilla\Firefox\Profiles\9b5uo83h.default-1486654576106\Extensions\sbv4-gradual-rollout@mozilla.com.xpi [2017-11-08]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2015-10-17] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [{D19CA586-DD6C-4a0a-96F8-14644F340D60}] - C:\Program Files (x86)\Common Files\McAfee\SystemCore
FF Extension: (Kein Name) - C:\Program Files (x86)\Common Files\McAfee\SystemCore [2012-08-13] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_27_0_0_183.dll [2017-10-26] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_27_0_0_183.dll [2017-10-26] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\dtplugin\npDeployJava1.dll [2017-10-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.151.2 -> C:\Program Files (x86)\Java\jre1.8.0_151\bin\plugin2\npjp2.dll [2017-10-21] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-05-01] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-29] (Google Inc.)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin.dll [2016-01-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin2.dll [2016-01-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin3.dll [2016-01-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin4.dll [2016-01-01] (Apple Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npqtplugin5.dll [2016-01-01] (Apple Inc.)
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2257016 2017-08-23] (Adobe Systems, Incorporated)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51016 2017-11-01] (Dropbox, Inc.)
R2 EPSON_EB_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50STB.EXE [166400 2009-09-14] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
R2 EPSON_PM_RPCV4_04; C:\Program Files\Common Files\EPSON\EPW!3 SSRP\E_S50RPB.EXE [128512 2009-09-14] (SEIKO EPSON CORPORATION) [Datei ist nicht signiert]
R2 hasplms; C:\Windows\system32\hasplms.exe [4180576 2010-09-27] (SafeNet Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [Datei ist nicht signiert]
S3 Macromedia Licensing Service; C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe [68096 2012-09-23] () [Datei ist nicht signiert]
R2 McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [199272 2012-03-20] (McAfee, Inc.)
R2 mfefire; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [210584 2012-03-20] (McAfee, Inc.)
R2 mfevtp; C:\Windows\system32\mfevtps.exe [162192 2012-03-20] (McAfee, Inc.)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [119864 2016-11-14] (Microsoft Corporation)
R3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [361816 2016-11-14] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [512960 2017-08-18] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [462968 2017-05-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [449984 2017-08-18] (NVIDIA Corporation)
R2 SESMPWD; C:\Program Files\EPSON_P2\Status Monitor\SEPWDN.EXE [155568 2012-11-16] (SEIKO EPSON CORPORATION)
R2 SESMSDB; C:\Program Files\EPSON_P2\Status Monitor\SESDBN.EXE [343472 2012-11-16] (SEIKO EPSON CORPORATION)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 cfwids; C:\Windows\System32\drivers\cfwids.sys [65264 2012-02-22] (McAfee, Inc.)
R3 mfeapfk; C:\Windows\System32\drivers\mfeapfk.sys [160792 2012-02-22] (McAfee, Inc.)
R3 mfeavfk; C:\Windows\System32\drivers\mfeavfk.sys [229528 2012-02-22] (McAfee, Inc.)
R3 mfefirek; C:\Windows\System32\drivers\mfefirek.sys [487296 2012-02-22] (McAfee, Inc.)
R0 mfehidk; C:\Windows\System32\drivers\mfehidk.sys [647208 2012-02-22] (McAfee, Inc.)
R1 mfenlfk; C:\Windows\System32\DRIVERS\mfenlfk.sys [75936 2012-02-22] (McAfee, Inc.)
S3 mferkdet; C:\Windows\System32\drivers\mferkdet.sys [100912 2012-02-22] (McAfee, Inc.)
R0 mfewfpk; C:\Windows\System32\drivers\mfewfpk.sys [289664 2012-02-22] (McAfee, Inc.)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [295000 2016-08-25] (Microsoft Corporation)
R3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [135928 2016-08-25] (Microsoft Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-08-18] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [48064 2017-08-18] (NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [57792 2017-08-18] (NVIDIA Corporation)
S3 Spyder3; C:\Windows\System32\DRIVERS\Spyder3.sys [15360 2008-09-08] ()
S3 cpuz130; \??\C:\Users\SEBAST~1\AppData\Local\Temp\cpuz130\cpuz_x64.sys [X] <==== ACHTUNG
S3 dbx; system32\DRIVERS\dbx.sys [X]
S3 MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys [X]
S3 vpnva; system32\DRIVERS\vpnva64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat: Erstellte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-11-14 07:34 - 2017-11-14 07:34 - 000022657 _____ C:\Users\Sebastian\Desktop\FRST.txt
2017-11-14 07:33 - 2017-11-14 07:34 - 000000000 ____D C:\FRST
2017-11-14 07:33 - 2017-11-14 07:33 - 002392576 _____ (Farbar) C:\Users\Sebastian\Desktop\FRST64.exe
2017-11-14 07:26 - 2017-11-14 07:26 - 000000000 ___HD C:\Users\Public\Documents\AdobeGC
2017-11-13 21:42 - 2017-11-13 21:42 - 013666534 _____ C:\Users\Sebastian\Desktop\17-10-22_Orchideen-Buch-final_klein.pdf
2017-11-13 21:09 - 2017-11-13 21:09 - 000132989 _____ C:\Users\Sebastian\Desktop\Kategorienbaum_int_vorläufig.pdf
2017-11-13 21:09 - 2017-11-13 21:09 - 000069212 _____ C:\Users\Sebastian\Desktop\Kategorienbaum_int_neu.pdf
2017-11-13 20:27 - 2017-11-13 20:27 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{F98E7764-A2E3-4D33-A412-60B08A79323D}
2017-11-13 08:27 - 2017-11-13 08:27 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{9D46220F-47CF-40D6-BA20-1102C38D296E}
2017-11-12 16:41 - 2017-11-12 16:41 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{3F630B22-A087-4C3B-ACEB-774CB9B53436}
2017-11-11 23:18 - 2017-11-11 23:18 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{9778F8D6-426A-411F-A77C-32562377FADF}
2017-11-11 22:50 - 2017-11-11 22:50 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{65490C57-95C8-4ED3-8F3D-D3D86D53AAA8}
2017-11-11 21:44 - 2017-11-11 21:59 - 000000000 ____D C:\AdwCleaner
2017-11-11 21:30 - 2017-11-11 21:30 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{398E8B2C-D7E1-4C42-A51B-469B12FEFAD9}
2017-11-10 21:34 - 2017-11-10 21:34 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{F711A3FF-1EED-4B11-A1F2-294CA4954B7A}
2017-11-10 09:32 - 2017-11-10 09:33 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{EF5B38B0-5E94-4CC5-A2B2-0F1E98E1E766}
2017-11-09 21:32 - 2017-11-09 21:32 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{5DCF2B74-7108-4D94-9056-09572283F2C2}
2017-11-09 09:31 - 2017-11-09 09:31 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{987C421E-61F6-4B96-9D53-93F3B9E2D662}
2017-11-08 21:31 - 2017-11-08 21:31 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{9BAC5400-A2BD-4867-AA93-F94F422C75CB}
2017-11-08 09:30 - 2017-11-08 09:30 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{423FAE26-5B2D-4886-A8FB-452074595DBE}
2017-11-07 21:18 - 2017-11-07 21:18 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{5B55F7BF-6899-41BA-9FAC-B264CDBBB5FE}
2017-11-07 09:18 - 2017-11-07 09:18 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{4D5A6839-75EE-4CE1-A87C-CB246B98A434}
2017-11-06 21:17 - 2017-11-06 21:17 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{A260DDBF-81D3-4659-8533-DA02FDB42B81}
2017-11-06 09:16 - 2017-11-06 09:16 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{001571EB-422A-49BE-AD2A-54224ADD60F2}
2017-11-05 21:26 - 2017-11-13 19:36 - 000000000 ____D C:\Users\Sebastian\Desktop\Relaunch
2017-11-05 21:16 - 2017-11-05 21:16 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{4CE8D1E9-DB4C-4712-8A45-05F4BA38895F}
2017-11-05 09:15 - 2017-11-05 09:15 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{9CC1CEFC-7CCD-4E82-A203-4BED095DC2CA}
2017-11-04 21:14 - 2017-11-04 21:14 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{8EAFA9B1-8BE5-4997-BB36-AD37F51751CB}
2017-11-04 09:14 - 2017-11-04 09:14 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{2EFB8E3E-A7DB-40CA-84EF-41A6780F7112}
2017-11-03 21:13 - 2017-11-03 21:13 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{CBCF1CB1-79A2-4E56-8971-FA209B7436F7}
2017-11-03 09:12 - 2017-11-03 09:12 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{9636A88D-965D-43A6-B82E-6264C90D5838}
2017-11-02 21:37 - 2017-11-02 21:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-11-02 09:20 - 2017-11-02 09:21 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{45D77300-4C04-4A27-8A3B-F73D90A80AF1}
2017-11-01 12:58 - 2017-11-01 12:58 - 000051016 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2017-11-01 12:58 - 2017-11-01 12:58 - 000045672 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2017-11-01 12:58 - 2017-11-01 12:58 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2017-11-01 12:58 - 2017-11-01 12:58 - 000045640 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2017-11-01 10:13 - 2017-11-01 10:13 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{9220D086-C81F-4678-A5E5-C92B15CF46DA}
2017-10-31 08:46 - 2017-10-31 08:46 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{F2F9511A-A974-46C7-843A-1818C8946AEF}
2017-10-30 20:46 - 2017-10-30 20:46 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{98133017-4C4B-4055-B8FD-C3004E0C3425}
2017-10-30 08:46 - 2017-10-30 08:46 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{2EFD1D68-E74B-43D3-8337-2886EE4A120F}
2017-10-29 20:45 - 2017-10-29 20:45 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{FB426003-DF26-4C44-905D-FDB1FE8ED57F}
2017-10-29 17:47 - 2017-10-29 17:47 - 004238158 _____ C:\Users\Sebastian\Desktop\Bando2018DE.pdf
2017-10-29 08:44 - 2017-10-29 08:44 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{FAD45CF8-61C0-4987-BD77-AE0F2BAB8133}
2017-10-28 09:08 - 2017-10-28 09:08 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{16F70350-F666-4AE7-B65B-739377F1E605}
2017-10-27 21:08 - 2017-10-27 21:08 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{0356FA32-9CDE-47C1-AD51-597BDD9CF938}
2017-10-27 09:07 - 2017-10-27 09:07 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{24B54EEE-3AEF-4D39-8A17-9F56738FB674}
2017-10-26 21:06 - 2017-10-26 21:06 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{4C418298-DAA9-4610-AFB8-2DF9AFAC2FBA}
2017-10-26 09:06 - 2017-10-26 09:06 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{8602E72B-2D4C-4A4B-9001-A853253947B7}
2017-10-25 18:33 - 2017-10-25 18:33 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{8A759D11-9745-43ED-A19B-DFA56E24B8D6}
2017-10-25 06:32 - 2017-10-25 06:32 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{95387D83-AC49-440B-98BB-B1757305B749}
2017-10-24 10:38 - 2017-10-24 10:38 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{26E22659-E0D8-4C41-B567-CD6EEAD8E8E5}
2017-10-23 20:39 - 2017-10-23 20:39 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{7FC23E82-D094-494F-80E6-B96A6E5CCB08}
2017-10-23 08:38 - 2017-10-23 08:38 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{F56F9291-23EE-4DF2-9A34-78DD3682D848}
2017-10-22 20:37 - 2017-10-22 20:37 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{C8296BF0-4791-4592-A183-CD43F7FAB1BE}
2017-10-22 08:36 - 2017-10-22 08:36 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{6F163F00-D295-45E6-89EE-601AD44A8845}
2017-10-21 18:44 - 2017-10-21 18:44 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{7ACC2A4F-136E-43A8-A70C-CFA2D1A54CD6}
2017-10-20 21:17 - 2017-10-20 21:17 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{EAA0C5BB-5FED-4636-9E92-8DA2ACC121A5}
2017-10-20 09:16 - 2017-10-20 09:16 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{B92B3C98-208A-446C-8B3C-2D68E3AA0EE7}
2017-10-19 21:15 - 2017-10-19 21:15 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{8A91F90D-E4D1-46C4-8335-9A3E0DE53640}
2017-10-19 09:14 - 2017-10-19 09:14 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{D72D8574-C11D-4138-86E8-126F07120D71}
2017-10-18 21:13 - 2017-10-18 21:13 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{3F3D11CC-4634-4047-820A-24E9F009CF75}
2017-10-18 09:13 - 2017-10-18 09:13 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{F2C2A7A8-DDC2-4ECB-BB79-3D0218A8B479}
2017-10-17 21:12 - 2017-10-17 21:12 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{A83B3ECD-09C2-4E39-91F7-B3C0519FB218}
2017-10-17 09:11 - 2017-10-17 09:11 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{6B55797B-9931-4ADB-AE9A-A9B682A946DE}
2017-10-16 21:11 - 2017-10-16 21:11 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{8DE743FC-7FE1-4BAD-BDAF-66EDCA9422D9}
2017-10-16 09:09 - 2017-10-16 09:10 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{5AB2BC99-DEBD-4282-B987-D2DF53027425}
2017-10-15 19:59 - 2017-10-15 19:59 - 000000000 ____D C:\Users\Sebastian\AppData\Local\{403D50C9-7260-40BC-8335-7ECC26347FA2}
==================== Ein Monat: Geänderte Dateien und Ordner ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2017-11-14 07:27 - 2014-08-18 09:26 - 000000000 ____D C:\Users\Sebastian\AppData\Local\Adobe
2017-11-14 07:27 - 2009-07-14 05:45 - 000028128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-11-14 07:27 - 2009-07-14 05:45 - 000028128 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-11-14 07:20 - 2016-11-19 00:34 - 000000000 ____D C:\Users\Sebastian\AppData\LocalLow\Mozilla
2017-11-14 07:19 - 2013-04-09 16:46 - 000000000 ____D C:\ProgramData\NVIDIA
2017-11-14 07:18 - 2011-05-06 17:24 - 000000000 ____D C:\ProgramData\Sonic
2017-11-14 07:16 - 2015-07-11 00:43 - 000001216 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2017-11-14 07:16 - 2011-05-10 18:55 - 000000000 ____D C:\Users\Sebastian\AppData\Local\SoftThinks
2017-11-14 07:15 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2017-11-13 23:14 - 2015-07-11 00:43 - 000001220 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2017-11-13 09:27 - 2013-04-06 12:27 - 000006412 _____ C:\Windows\system32\PerfStringBackup.TMP
2017-11-13 09:27 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2017-11-13 09:23 - 2011-05-06 17:06 - 000000000 ____D C:\Program Files (x86)\Dell DataSafe Local Backup
2017-11-12 23:01 - 2011-08-22 20:55 - 000000132 _____ C:\Users\Sebastian\AppData\Roaming\Adobe PNG Format CS5 Prefs
2017-11-12 18:41 - 2011-06-05 08:06 - 000000000 ____D C:\Users\Sebastian\AppData\Local\ElevatedDiagnostics
2017-11-12 16:27 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2017-11-04 09:34 - 2016-04-11 08:47 - 000000000 ____D C:\Users\Sebastian\AppData\Local\Spotify
2017-11-04 09:33 - 2016-04-11 08:44 - 000000000 ____D C:\Users\Sebastian\AppData\Roaming\Spotify
2017-11-02 21:37 - 2015-07-11 00:43 - 000000000 ____D C:\Program Files (x86)\Dropbox
2017-10-28 07:36 - 2012-05-02 14:41 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-28 07:36 - 2011-05-10 19:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-10-26 07:38 - 2012-05-10 02:21 - 000803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-10-26 07:38 - 2012-05-10 02:21 - 000004366 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-10-26 07:38 - 2012-05-10 02:21 - 000000000 ____D C:\Windows\system32\Macromed
2017-10-26 07:38 - 2011-06-09 04:18 - 000144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-10-26 07:38 - 2011-05-06 16:58 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2017-10-24 22:00 - 2011-05-10 18:55 - 000000000 ____D C:\Users\Sebastian
2017-10-24 19:51 - 2012-01-09 01:05 - 000300032 ___SH C:\Users\Sebastian\Thumbs.db
2017-10-21 19:48 - 2013-10-22 07:34 - 000000000 ____D C:\ProgramData\Oracle
2017-10-21 18:44 - 2014-10-23 06:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-10-21 18:44 - 2011-05-06 17:01 - 000000000 ____D C:\Program Files (x86)\Java
2017-10-21 18:43 - 2014-10-23 06:16 - 000097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2017-10-18 11:30 - 2015-08-10 12:07 - 000000000 ____D C:\Users\Sebastian\AppData\Local\CrashDumps
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======
2012-08-12 10:11 - 2012-12-03 13:06 - 000000132 _____ () C:\Users\Sebastian\AppData\Roaming\Adobe AIFF Format CS5 Prefs
2012-08-15 21:50 - 2016-02-05 22:54 - 000000132 _____ () C:\Users\Sebastian\AppData\Roaming\Adobe BMP Format CS5 Prefs
2011-06-26 14:09 - 2016-03-01 22:53 - 000000132 _____ () C:\Users\Sebastian\AppData\Roaming\Adobe GIF Format CS5 Prefs
2011-08-22 20:55 - 2017-11-12 23:01 - 000000132 _____ () C:\Users\Sebastian\AppData\Roaming\Adobe PNG Format CS5 Prefs
2011-06-26 18:54 - 2015-01-14 23:08 - 000000268 ___RH () C:\Users\Sebastian\AppData\Roaming\Mail
2015-01-14 23:09 - 2015-01-14 23:09 - 000000268 ___RH () C:\Users\Sebastian\AppData\Roaming\Mallets
2011-06-26 18:54 - 2015-01-14 23:08 - 000000268 ___RH () C:\Users\Sebastian\AppData\Roaming\Master
2011-05-10 19:39 - 2011-05-10 19:39 - 000000268 ___RH () C:\Users\Sebastian\AppData\Roaming\Specifications
2011-05-10 19:39 - 2017-06-01 20:49 - 000000000 _____ () C:\Users\Sebastian\AppData\Roaming\Speech Enhancer
2011-05-12 00:47 - 2016-12-19 11:25 - 000001456 _____ () C:\Users\Sebastian\AppData\Local\Adobe Für Web speichern 12.0 Prefs
2015-07-30 07:55 - 2016-03-02 19:44 - 000000600 _____ () C:\Users\Sebastian\AppData\Local\PUTTY.RND
2013-01-30 04:10 - 2013-03-28 10:32 - 000007652 _____ () C:\Users\Sebastian\AppData\Local\Resmon.ResmonCfg
2011-05-10 19:39 - 2011-05-10 19:39 - 000000012 ___RH () C:\ProgramData\Bass
2012-02-02 17:48 - 2012-02-02 17:48 - 000000056 ____H () C:\ProgramData\ezsidmv.dat
2017-06-01 20:49 - 2017-06-01 20:49 - 000000000 _____ () C:\ProgramData\LaserPrinter
2015-01-14 23:08 - 2015-01-14 23:08 - 000000268 ___RH () C:\ProgramData\Metadata Importer
2015-01-14 23:09 - 2015-01-14 23:09 - 000000268 ___RH () C:\ProgramData\Multipressor
2015-01-14 23:08 - 2015-01-14 23:08 - 000000268 ___RH () C:\ProgramData\Nature
2011-05-10 19:33 - 2017-06-01 20:49 - 000000000 ____H () C:\ProgramData\PKP_DLbx.DAT
2011-05-10 19:39 - 2011-05-10 19:39 - 000000020 ____H () C:\ProgramData\PKP_DLck.DAT
2011-06-26 18:54 - 2015-01-14 23:09 - 000000020 ____H () C:\ProgramData\PKP_DLes.DAT
2011-06-26 18:54 - 2017-09-02 15:42 - 000000020 ____H () C:\ProgramData\PKP_DLet.DAT
2011-06-26 18:54 - 2015-01-14 23:08 - 000000020 ____H () C:\ProgramData\PKP_DLev.DAT
2011-05-10 19:39 - 2011-05-10 19:39 - 000000268 ___RH () C:\ProgramData\Standard Tool
Einige Dateien in TEMP:
====================
2016-07-22 21:10 - 2016-07-22 21:10 - 000741440 _____ (Oracle Corporation) C:\Users\Sebastian\AppData\Local\Temp\jre-8u101-windows-au.exe
2016-10-23 09:21 - 2016-10-23 09:21 - 000737856 _____ (Oracle Corporation) C:\Users\Sebastian\AppData\Local\Temp\jre-8u111-windows-au.exe
2017-01-20 08:16 - 2017-01-20 08:16 - 000739904 _____ (Oracle Corporation) C:\Users\Sebastian\AppData\Local\Temp\jre-8u121-windows-au.exe
2017-04-23 08:35 - 2017-04-23 08:35 - 000739904 _____ (Oracle Corporation) C:\Users\Sebastian\AppData\Local\Temp\jre-8u131-windows-au.exe
2017-07-24 10:23 - 2017-07-24 10:23 - 000739904 _____ (Oracle Corporation) C:\Users\Sebastian\AppData\Local\Temp\jre-8u141-windows-au.exe
2017-10-21 18:39 - 2017-10-21 18:39 - 001856576 _____ (Oracle Corporation) C:\Users\Sebastian\AppData\Local\Temp\jre-8u151-windows-au.exe
2016-02-08 12:37 - 2016-02-08 12:37 - 000736352 _____ (Oracle Corporation) C:\Users\Sebastian\AppData\Local\Temp\jre-8u73-windows-au.exe
2016-03-30 07:53 - 2016-03-30 07:53 - 000736320 _____ (Oracle Corporation) C:\Users\Sebastian\AppData\Local\Temp\jre-8u77-windows-au.exe
2016-05-04 07:03 - 2016-05-04 07:03 - 000739904 _____ (Oracle Corporation) C:\Users\Sebastian\AppData\Local\Temp\jre-8u91-windows-au.exe
2015-09-04 13:35 - 2015-08-07 01:04 - 001171872 _____ (NVIDIA Corporation) C:\Users\Sebastian\AppData\Local\Temp\nvSCPAPI.dll
2016-07-22 21:47 - 2015-08-07 01:04 - 000783480 _____ (NVIDIA Corporation) C:\Users\Sebastian\AppData\Local\Temp\nvStInst.exe
2017-09-06 08:50 - 2017-09-06 08:50 - 000043520 ____N () C:\Users\Sebastian\AppData\Local\Temp\proxy_vole7010577869914399622.dll
2017-09-21 22:15 - 2017-09-21 22:15 - 004185426 _____ (Dropbox, Inc.) C:\Users\Sebastian\AppData\Local\Temp\{10A59B14-E9D9-498B-9BFE-3666E88A32FE}-DropboxClient_35.4.20.exe
==================== Bamital & volsnap ======================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert
LastRegBack: 2017-11-09 11:06
==================== Ende von FRST.txt ============================ Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 12-11-2017 03
durchgeführt von Sebastian (14-11-2017 07:35:11)
Gestartet von C:\Users\Sebastian\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-05-10 17:54:57)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1229241503-1036117088-2021709069-500 - Administrator - Disabled)
Gast (S-1-5-21-1229241503-1036117088-2021709069-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1229241503-1036117088-2021709069-1002 - Limited - Enabled)
Sebastian (S-1-5-21-1229241503-1036117088-2021709069-1000 - Administrator - Enabled) => C:\Users\Sebastian
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Microsoft Security Essentials (Enabled - Up to date) {71A27EC9-3DA6-45FC-60A7-004F623C6189}
AS: Microsoft Security Essentials (Enabled - Up to date) {CAC39F2D-1B9C-4A72-5A17-3B3D19BB2B34}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.4.980 - Adobe Systems Incorporated.)
Adobe Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 1.4.0 - Adobe Systems Incorporated)
Adobe Creative Suite 5.5 Design Premium (HKLM-x32\...\{60E59A6C-7399-495A-B85C-C829F4E59602}) (Version: 5.5 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 27 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 27.0.0.183 - Adobe Systems Incorporated)
Adobe Flash Player 27 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 27.0.0.183 - Adobe Systems Incorporated)
Adobe Lens Profile Downloader (HKLM-x32\...\AdobeLensProfileDownloader) (Version: 1.0.1 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7 64-bit (HKLM\...\{1B77B02E-17E4-4B6D-B8A1-74B29AF3D8DD}) (Version: 5.7.0 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser.E7BED6E5DDA59983786DD72EBFA46B1598278E07.1) (Version: 2.0 Build 230 - Adobe Systems Incorporated.)
Ansel (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Ansel) (Version: 384.94 - NVIDIA Corporation) Hidden
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
ATI Catalyst Install Manager (HKLM\...\{881F6DFF-9090-E49F-4CF7-4827705D0F56}) (Version: 3.0.808.0 - ATI Technologies, Inc.)
AudibleManager (HKLM-x32\...\AudibleManager) (Version: 2009216049.48.56.39785850 - Audible, Inc.)
Brandenburg Berlin 2.0 (HKLM-x32\...\{E5856DAC-D612-4B66-BD10-76720817E1BC}) (Version: 2.0 - MagicMaps)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Das Interaktive Kartenwerk. Deutschland (HKLM-x32\...\{BFFE230A-8520-423D-8A22-DB82C9922925}) (Version: 2.0.3 - MagicMaps)
Dell DataSafe Local Backup - Support Software (HKLM-x32\...\{A9668246-FB70-4103-A1E3-66C9BC2EFB49}) (Version: - Dell)
Dell DataSafe Local Backup (HKLM-x32\...\{0ED7EE95-6A97-47AA-AD73-152C08A15B04}) (Version: 9.4.47 - Dell)
Dell Edoc Viewer (HKLM\...\{8EBA8727-ADC2-477B-9D9A-1A1836BE4E05}) (Version: 1.0.0 - Dell Inc)
Dell Getting Started Guide (HKLM-x32\...\{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}) (Version: 1.00.0000 - Dell Inc.)
Dell MusicStage (HKLM-x32\...\{17407164-F2AD-4E04-886B-8060D503F21C}) (Version: 1.4.162.0 - Fingertapps)
Dell Stage (HKLM-x32\...\{AB1723E2-05BC-49C1-86AB-409764C0E608}) (Version: 1.4.173.0 - Fingertapps)
Dell VideoStage (HKLM-x32\...\{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.1.1.1408 - CyberLink Corp.) Hidden
Dell VideoStage (HKLM-x32\...\InstallShield_{DCE0E79A-B9AC-41AC-98C1-7EF0538BCA7F}) (Version: 1.1.1.1408 - CyberLink Corp.)
DirectX 9 Runtime (HKLM-x32\...\{AF9E97C1-7431-426D-A8D5-ABE40995C0B1}) (Version: 1.00.0000 - Sonic Solutions) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 38.4.27 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.59.1 - Dropbox, Inc.) Hidden
DW WLAN Card (HKLM\...\DW WLAN Card) (Version: 5.60.48.35 - Dell Inc.)
EPSON Printer Software (HKLM-x32\...\{7612D261-8150-4B33-ADEE-3D3C086F0815}) (Version: 1.000.00.00 - EPSON)
EPSON S22 Series Printer Uninstall (HKLM\...\EPSON S22 Series) (Version: - SEIKO EPSON Corporation)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - )
Evernote v. 6.7.5 (HKLM-x32\...\{65B334F4-9E45-11E7-A6A5-005056951CAD}) (Version: 6.7.5.5825 - Evernote Corp.)
FileZilla Client 3.16.0 (HKLM-x32\...\FileZilla Client) (Version: 3.16.0 - Tim Kosse)
Google Earth Pro (HKLM-x32\...\{ECF2E224-42F5-4E50-B58E-94CA70E85697}) (Version: 7.3.0.3832 - Google)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.5 - Google Inc.) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
hörbert Software (HKLM-x32\...\{ADF3E7F9-09CF-B87F-D1B7-D1375026A888}) (Version: 1.4.7 - WINZKI GmbH & Co. KG) Hidden
hörbert Software (HKLM-x32\...\com.hoerbert.playlistmanager) (Version: 1.4.7 - WINZKI GmbH & Co. KG)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.0.0.1046 - Intel Corporation)
Java 8 Update 151 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180151F0}) (Version: 8.0.1510.12 - Oracle Corporation)
JavaFX 2.1.1 (HKLM-x32\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
Junk Mail filter update (HKLM-x32\...\{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
m.objects v5 (HKLM-x32\...\m.objects v5) (Version: 3.0 - Richter & Wehner)
Macromedia Dreamweaver MX 2004 (HKLM-x32\...\{05BB2EC5-6BEF-4DDC-9E75-BEE7B161157A}) (Version: 7.0.1 - Macromedia)
Macromedia Extension Manager (HKLM-x32\...\{A5BA14E0-7384-11D4-BAE7-00409631A2C8}) (Version: 1.5 - Macromedia)
MAGIX Speed burnR (HKLM\...\{301EB2C0-9696-47F9-8B8B-5939DB6407D2}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{301EB2C0-9696-47F9-8B8B-5939DB6407D2}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Video deluxe Plus (HKLM\...\{DC4FD10F-549C-4B58-8C99-5BAEE5104604}) (Version: 16.0.1.22 - MAGIX Software GmbH) Hidden
MAGIX Video deluxe Plus (HKLM\...\MX.{DC4FD10F-549C-4B58-8C99-5BAEE5104604}) (Version: 16.0.1.22 - MAGIX Software GmbH)
MAGIX Video deluxe Plus Update (HKLM\...\{DE443753-8F96-47F5-9173-E39403BEFCBF}) (Version: 16.0.2.49 - MAGIX Software GmbH) Hidden
Mein CEWE FOTOBUCH (HKLM-x32\...\Mein CEWE FOTOBUCH) (Version: 6.0.3 - CEWE Stiftung u Co. KGaA)
Mesh Runtime (HKLM-x32\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Messenger Companion (HKLM-x32\...\{0481A2EA-DA1D-4D10-A7C3-F8237948F6B5}) (Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft .NET Framework 4.7 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.02053 - Microsoft Corporation)
Microsoft Camera Codec Pack (HKLM\...\{2CA3495A-46E9-4E03-866F-8B9B0AD177CA}) (Version: 16.0.0652.0621 - Microsoft Corporation)
Microsoft Office 2010 (HKLM-x32\...\{95140000-0070-0000-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Klick-und-Los 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM-x32\...\{90110407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Starter 2010 - Deutsch (HKLM-x32\...\{90140011-0066-0407-0000-0000000FF1CE}) (Version: 14.0.4763.1000 - Microsoft Corporation)
Microsoft Security Essentials (HKLM\...\Microsoft Security Client) (Version: 4.10.209.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{d07b0db5-8dad-40e1-be90-88026298a46b}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Mozilla Firefox 56.0.2 (x64 de) (HKLM\...\Mozilla Firefox 56.0.2 (x64 de)) (Version: 56.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 56.0.2.6506 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Neat Image v7.0 Demo plug-in for Photoshop (64-bit) (HKLM\...\Neat Image plug-in for Photoshop_is1) (Version: - Neat Image team, ABSoft)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.1.1 - Nikon)
Nikon Movie Editor (HKLM-x32\...\{5CAD3393-EEC0-44CE-9F93-BCAA365B77FB}) (Version: 2.9.2 - Nikon)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.3.2 - Notepad++ Team)
NVIDIA 3D Vision Controller-Treiber 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 382.05 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.9.0.61 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.9.0.61 - NVIDIA Corporation)
NVIDIA Grafiktreiber 382.05 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 382.05 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.34.27 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.27 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
ODBC (HKLM-x32\...\ODBC) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.0.14.2148 - Electronic Arts, Inc.)
PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden
PhotoShowExpress (HKLM-x32\...\{3250260C-7A95-4632-893B-89657EB5545B}) (Version: 2.0.063 - Sonic Solutions) Hidden
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
RBVirtualFolder64Inst (HKLM\...\{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}) (Version: 1.00.0000 - Roxio, Inc.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6141 - Realtek Semiconductor Corp.)
Roxio Creator Starter (HKLM-x32\...\{6F0BBEFE-BE1C-419B-BA1F-D36C9E7915BC}) (Version: 12.1.77.0 - Roxio)
Roxio File Backup (HKLM\...\{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}) (Version: 1.3.2 - Roxio) Hidden
Saal Design Software (HKLM-x32\...\{0C52FDB3-C8A1-E686-5A87-85F3EC2259D4}) (Version: 4.0 - Saal Digital Fotoservice GmbH) Hidden
Saal Design Software (HKLM-x32\...\SaalDesignSoftware) (Version: 4.0 - Saal Digital Fotoservice GmbH)
Safari (HKLM-x32\...\{735619D4-B42A-437A-958C-199BFCAEDB38}) (Version: 5.34.50.0 - Apple Inc.)
Sonic CinePlayer Decoder Pack (HKLM-x32\...\{9A00EC4E-27E1-42C4-98DD-662F32AC8870}) (Version: 4.3.0 - Sonic Solutions) Hidden
Spotify (HKU\S-1-5-21-1229241503-1036117088-2021709069-1000\...\Spotify) (Version: 1.0.60.492.gbb40dab8 - Spotify AB)
Spyder3Express (HKLM-x32\...\Spyder3Express) (Version: - )
THX TruStudio PC (HKLM-x32\...\{010A785B-F920-4350-821B-6309909C20BB}) (Version: 1.0 - Creative Technology Limited)
tiptoi® Manager 3.1.8 (HKLM-x32\...\9978-5763-2995-5228) (Version: 3.1.8 - Ravensburger AG)
ViewNX 2 (HKLM\...\{635BE602-BB9C-4C59-8CC5-93F9366E8A21}) (Version: 2.10.0 - Nikon)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.42.1 (HKLM\...\VulkanRT1.0.42.1) (Version: 1.0.42.1 - LunarG, Inc.)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3555.0308 - Microsoft Corporation)
Windows Live Mesh ActiveX control for remote connections (HKLM-x32\...\{C5398A89-516C-4DAF-BA07-EE7949090E56}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers1-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers1-x32: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems Inc.)
ContextMenuHandlers1-x32: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_05.dll [2012-06-18] ()
ContextMenuHandlers1-x32: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers1-x32: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers1-x32: [Roxio Burn] -> {E8CB9D53-A47A-42B5-9F5B-96B037C9DD4C} => C:\Program Files\Roxio\Roxio Burn\RB_ContextMenu64.dll [2010-11-10] (TODO: <Company name>)
ContextMenuHandlers2: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers4-x32: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files (x86)\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov)
ContextMenuHandlers4-x32: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers4-x32: [EPP] -> {09A47860-11B0-4DA5-AFA5-26D86198A780} => c:\Program Files\Microsoft Security Client\shellext.dll [2016-11-14] (Microsoft Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> Keine Datei
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.19.0.dll [2017-11-01] (Dropbox, Inc.)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2017-05-01] (NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0BDA7457-CF5E-47F6-8001-849E98C610D8} - System32\Tasks\AdobeAAMUpdater-1.0-Sebastian-PC-Sebastian => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-08-05] (Adobe Systems Incorporated)
Task: {0C80DA70-1D14-45AD-9A69-A46BFDCA39D3} - System32\Tasks\SystemToolsDailyTest => C:\Program Files\Dell Support Center\pcdrcui.exe
Task: {10BFFA76-4A87-4F45-B64E-4E7E566E24D1} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [2017-08-18] (NVIDIA Corporation)
Task: {290E5D62-6C81-4D39-A6E1-CC105FF6B5AF} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => c:\Program Files\Microsoft Security Client\\MpCmdRun.exe [2016-11-14] (Microsoft Corporation)
Task: {3492BDC8-3FE3-409E-AD35-B81B9D48FABD} - System32\Tasks\{EFEFE929-E48C-44D9-A8B5-65480B3729E7} => C:\Windows\system32\pcalua.exe -a C:\Users\Sebastian\Desktop\neat_image_4_pro_plus_edition_\P\Sources\NeatImage\neat_image_4_pro_plus_edition_.exe -d C:\Users\Sebastian\Desktop\neat_image_4_pro_plus_edition_\P\Sources\NeatImage
Task: {36729DDA-428E-4F9F-AB35-038328B2CD0D} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation)
Task: {3D697BE7-0F2F-4934-94F4-01D6315CC665} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [2017-08-18] (NVIDIA Corporation)
Task: {41A49407-A20D-499B-B74B-8CA5F408B153} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {529EBE41-2556-4B29-A15E-CB075CB3A4E3} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {5B703E4B-A0A5-456A-8632-1EF46A378131} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-10-26] (Adobe Systems Incorporated)
Task: {6CC2A555-35D3-46B5-B3B4-BDC050FA0BF4} - System32\Tasks\{B80F9751-CA24-4E82-9722-C7A225B1DCCF} => C:\Windows\system32\pcalua.exe -a C:\Users\Sebastian\AppData\Local\Temp\Temp1_neat_image_4_pro_plus_edition_.zip\P\Sources\NeatImage\neat_image_4_pro_plus_edition_.exe <==== ACHTUNG
Task: {741E2FE7-73BE-41CC-94B1-1AE7C395756E} - System32\Tasks\{0ED2AC21-B44F-441F-A45B-FF345BF731CC} => C:\Windows\system32\pcalua.exe -a C:\Users\Sebastian\Downloads\epson326688eu.exe -d "C:\Program Files (x86)\Mozilla Firefox"
Task: {7B5BFCEB-3F5E-4DC2-B1C6-C17936DE1945} - System32\Tasks\{B0E5025C-1ED2-43BB-9F57-6FEBE01FD5DA} => C:\Windows\system32\pcalua.exe -a "C:\Users\Sebastian\Desktop\Neuer Ordner\F-D810-V102W.exe" -d "C:\Users\Sebastian\Desktop\Neuer Ordner"
Task: {8100685E-6BA8-46EE-817E-976B1D9084C4} - System32\Tasks\{AB721D5A-8ADA-459F-9D43-FB79BE281C48} => C:\Windows\system32\pcalua.exe -a D:\Sims3EP08Setup.exe -d D:\
Task: {8D87B1E6-29A2-4C30-AAC5-3FCB3A67365B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation)
Task: {A8D42414-ADBD-40FE-B616-AFB058CCF843} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [2017-08-18] (NVIDIA Corporation)
Task: {AB82095F-88C2-4188-8ACF-2735E616A599} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {C85B15BA-5453-410C-A9B7-74CD343ACCFD} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {D7640A31-9F43-4A4A-9011-80FC33B5BC04} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-05] (Dropbox, Inc.)
Task: {E292A4C6-C288-4D74-B0B9-341A59F83205} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [2017-08-18] (NVIDIA Corporation)
Task: {EDFD6EF8-90F3-49A5-B064-0CF391294D5B} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-07-19] (Adobe Systems Incorporated)
Task: {F6589CF6-4A0D-487A-A190-5A0F4D8E3AD6} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-08-18] (NVIDIA Corporation)
Task: {FA5364F9-A226-4EE0-BD5F-94E6DCAEB495} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [2017-08-18] (NVIDIA Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2016-02-29 11:23 - 2016-02-29 11:23 - 000052912 _____ () C:\Program Files (x86)\FileZilla FTP Client\fzshellext_64.dll
2012-06-18 16:24 - 2012-06-18 16:24 - 000222720 _____ () C:\Program Files (x86)\Notepad++\NppShell_05.dll
2017-10-12 08:54 - 2017-08-18 05:36 - 001267136 _____ () C:\Program Files\NVIDIA Corporation\NvContainer\libprotobuf.dll
2011-05-06 17:06 - 2010-08-11 17:19 - 000781536 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\STService.exe
2009-08-11 09:19 - 2009-08-11 09:19 - 006798714 _____ () C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility.exe
2010-11-17 09:35 - 2010-11-17 09:35 - 000514544 _____ () C:\Program Files (x86)\Roxio\OEM\Roxio Burn\RoxioBurnLauncher.exe
2011-05-06 17:06 - 2010-08-11 17:19 - 000056544 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STCoreXml.dll
2011-05-06 17:06 - 2010-08-11 17:19 - 000113888 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\PSTVdsDisk.dll
2011-05-06 17:06 - 2010-08-11 17:19 - 000126176 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STLog.dll
2011-05-06 17:06 - 2010-08-11 17:19 - 001121504 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\LibXml2.dll
2011-05-06 17:06 - 2010-08-11 17:19 - 000077024 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\zlib1.dll
2011-05-06 17:06 - 2010-08-11 17:19 - 000232672 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STFiles.dll
2011-05-06 17:06 - 2010-08-11 17:19 - 000072928 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STRegistry.dll
2011-05-06 17:06 - 2010-08-11 17:19 - 000109792 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STPE.dll
2011-05-06 17:06 - 2010-08-11 17:19 - 000119008 ____N () C:\Program Files (x86)\Dell DataSafe Local Backup\STNLS.dll
2009-08-11 09:19 - 2009-08-11 09:19 - 000135168 _____ () C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility Libs\Appearance Pak.dll
2009-08-11 09:19 - 2009-08-11 09:19 - 000147456 _____ () C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility Libs\RegEx.dll
2009-08-11 09:19 - 2009-08-11 09:19 - 000897024 _____ () C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility Libs\RBScript.dll
2009-08-11 09:19 - 2009-08-11 09:19 - 000098304 _____ () C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility Libs\Shell.dll
2009-08-11 09:19 - 2009-08-11 09:19 - 000762368 _____ () C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility Libs\XML.dll
2009-08-11 09:19 - 2009-08-11 09:19 - 000335872 _____ () C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility Libs\CGamma.dll
2009-08-11 09:19 - 2009-08-11 09:19 - 000131072 _____ () C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility Libs\CSensor.dll
2009-08-11 09:19 - 2009-08-11 09:19 - 000028672 _____ () C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility Libs\MBSRegistrationPlugin16042.dll
2009-08-11 09:19 - 2009-08-11 09:19 - 000025600 _____ () C:\Program Files (x86)\Datacolor\Spyder3Express\Utility\Spyder3Utility Libs\MBSPluginVersionPlugin16042.dll
2010-11-24 21:44 - 2010-11-24 21:44 - 000375280 _____ () c:\program files (x86)\common files\roxio shared\dllshared\SQLite352.dll
2015-09-24 16:41 - 2015-09-24 16:41 - 000019968 _____ () C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\locale\de_de\acrotray.deu
2017-11-02 21:37 - 2017-11-01 12:58 - 000724288 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2017-11-02 21:37 - 2017-11-01 12:58 - 002002752 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2017-08-05 07:47 - 2017-11-01 12:57 - 000100296 _____ () C:\Program Files (x86)\Dropbox\Client\_ctypes.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000018888 _____ () C:\Program Files (x86)\Dropbox\Client\select.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000020800 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000035792 _____ () C:\Program Files (x86)\Dropbox\Client\_multiprocessing.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000694224 _____ () C:\Program Files (x86)\Dropbox\Client\unicodedata.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000130512 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 001856848 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.pyd
2017-11-02 21:37 - 2017-11-01 12:57 - 000145864 _____ () C:\Program Files (x86)\Dropbox\Client\pyexpat.pyd
2017-11-02 21:37 - 2017-11-01 12:58 - 000116688 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes27.dll
2017-08-05 07:47 - 2017-11-01 12:57 - 000105928 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.crt.compiled._winffi_crt.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000062784 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000024528 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000040248 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.pyd
2017-11-02 21:37 - 2017-11-01 12:57 - 000020936 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000124880 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000116176 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.pyd
2017-11-02 21:37 - 2017-11-01 12:58 - 000392656 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom27.dll
2017-08-05 07:47 - 2017-11-01 13:01 - 000392512 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000175560 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000030160 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000043472 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.pyd
2017-09-22 19:27 - 2017-11-01 12:57 - 000026056 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000048592 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000057808 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000021824 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.pyd
2017-09-08 18:41 - 2017-11-01 13:01 - 000023368 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000022856 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000066392 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 001796920 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000084424 _____ () C:\Program Files (x86)\Dropbox\Client\sip.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 001956152 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 003859264 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000154440 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000521024 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000050496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000042304 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000131384 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000218944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000204096 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000025432 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000060880 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000054608 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000024016 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000022864 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000028616 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000021848 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000022360 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.pyd
2017-08-05 07:47 - 2017-11-01 12:57 - 000349128 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.pyd
2017-08-05 07:47 - 2017-11-01 13:01 - 000023896 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000025424 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.pyd
2017-11-02 21:37 - 2017-11-01 12:58 - 000036296 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2017-11-02 21:37 - 2017-11-01 13:01 - 000181056 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2017-08-05 07:47 - 2017-11-01 13:01 - 000030536 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000024368 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
2017-11-02 21:37 - 2017-11-01 13:01 - 001638200 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2017-08-05 07:47 - 2017-11-01 13:01 - 000026456 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000545080 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000359224 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.pyd
2017-11-02 21:37 - 2017-11-01 13:01 - 000038208 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.pyd
2017-09-20 13:54 - 2017-09-20 13:54 - 000667520 _____ () C:\Program Files (x86)\Evernote\Evernote\tidy.dll
2017-09-13 02:44 - 2017-09-13 02:44 - 000169984 _____ () C:\Windows\assembly\NativeImages_v2.0.50727_32\IsdiInterop\3884a8a63e3e744d3668fa93e80b056f\IsdiInterop.ni.dll
2011-05-06 17:02 - 2010-09-13 17:28 - 000058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2017-10-12 08:54 - 2017-08-18 05:36 - 001040320 _____ () C:\Program Files (x86)\NVIDIA Corporation\NvContainer\libprotobuf.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Sebastian\AppData\Local\TAW1wxkPLEuJYV:3taIR46hvFTbIeE2DecIkRRM [2066]
AlternateDataStreams: C:\Users\Sebastian\AppData\Local\Temporary Internet Files:AXpp8So7fPyIm91pmfbmCA4IgNIu [2156]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefire => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfefirek.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfehidk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\mfevtp => ""="Driver"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-1229241503-1036117088-2021709069-1000\...\localhost -> localhost
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2017-11-12 17:01 - 000000824 _____ C:\Windows\system32\Drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1229241503-1036117088-2021709069-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Sebastian\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
MSCONFIG\startupreg: AmazonMP3DownloaderHelper => C:\Users\Sebastian\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe
MSCONFIG\startupreg: Nikon Message Center 2 => C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{2ED27918-3EDF-4D28-A3F2-95A2F0B57B46}] => (Allow) c:\Program Files (x86)\Dell\VideoStage\VideoStage.exe
FirewallRules: [{CDE1FF60-C5C2-4CD8-B078-DC0F4D26D54F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{61E49E05-F40A-47D1-A2BB-0FD5A547BCAA}] => (Allow) LPort=2869
FirewallRules: [{B729EBE9-1D75-4DFB-92CB-3B39BF56DCFA}] => (Allow) LPort=1900
FirewallRules: [{642376C3-5535-4A88-B0E1-816BF589109D}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{19D9FFCA-EF56-4BFC-BCBA-28936EA57381}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{3AB3A996-D37F-4953-BE0E-E6E247A32541}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{D525E825-785A-4179-8496-70DBC24B1283}] => (Allow) C:\Program Files\Common Files\mcafee\mcsvchost\McSvHost.exe
FirewallRules: [{DDABF9B4-CD50-4999-9DA4-82A13C67ED05}] => (Block) %ProgramFiles% (x86)\Nikon\Capture NX 2\Capture NX 2.exe
FirewallRules: [{E7A0455E-0102-416A-B0A2-B70EAAE1B21A}] => (Block) %ProgramFiles% (x86)\Nikon\Capture NX 2\Capture NX 2.exe
FirewallRules: [{5CE59D45-10D5-43FD-AA84-991DFAAD6C01}] => (Block) %ProgramFiles% (x86)\Nikon\Nikon Message Center 2\NkMC2.exe
FirewallRules: [{8E265C21-8940-4625-81D6-59566E76C301}] => (Block) %ProgramFiles% (x86)\Nikon\Nikon Message Center 2\NkMC2.exe
FirewallRules: [TCP Query User{8AE4A3DE-7EBF-408F-BD6E-3D037C476561}C:\program files (x86)\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files (x86)\google\google earth\plugin\geplugin.exe
FirewallRules: [UDP Query User{80131195-4150-4A89-810E-C9A7BCF74F95}C:\program files (x86)\google\google earth\plugin\geplugin.exe] => (Allow) C:\program files (x86)\google\google earth\plugin\geplugin.exe
FirewallRules: [TCP Query User{E0D88A0D-FA58-46EC-B6D2-A2657661EB9B}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe
FirewallRules: [UDP Query User{F59CDC4C-9008-46D4-911D-6A5113CE76B1}C:\program files (x86)\google\google earth\client\googleearth.exe] => (Allow) C:\program files (x86)\google\google earth\client\googleearth.exe
FirewallRules: [{F627E0B4-F953-487E-A583-2384CC379725}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [{D5E0E353-592C-4415-801A-DC18342BF655}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{04066DA3-4289-4137-A06C-04CE376D0350}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{B2A7613F-85B4-44F7-A309-003A6489D82E}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
FirewallRules: [{50A8946E-7091-433A-A12D-0B07E0B258F3}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3.exe
FirewallRules: [{AC851886-AFC3-4354-BED3-E41A640CCB3A}] => (Allow) C:\Windows\system32\hasplms.exe
FirewallRules: [TCP Query User{87114EA9-FCEA-454E-A3EE-21DE62562FDB}C:\program files (x86)\electronic arts\command & conquer 4 tiberian twilight\data\cnc4.game] => (Allow) C:\program files (x86)\electronic arts\command & conquer 4 tiberian twilight\data\cnc4.game
FirewallRules: [UDP Query User{B568655D-98B6-4F50-8A89-5B276C141F42}C:\program files (x86)\electronic arts\command & conquer 4 tiberian twilight\data\cnc4.game] => (Allow) C:\program files (x86)\electronic arts\command & conquer 4 tiberian twilight\data\cnc4.game
FirewallRules: [{85AF8769-194D-4AB2-A1AD-5E23A781253F}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [{7081A0C2-9A1A-4B1C-A2A8-2B5841FF3F09}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
FirewallRules: [TCP Query User{323026B6-EB75-48B2-8E94-70243F22C261}C:\users\sebastian\appdata\roaming\wuala\wuala.exe] => (Allow) C:\users\sebastian\appdata\roaming\wuala\wuala.exe
FirewallRules: [UDP Query User{ED843D35-67FA-4795-85E1-45736BCABFEF}C:\users\sebastian\appdata\roaming\wuala\wuala.exe] => (Allow) C:\users\sebastian\appdata\roaming\wuala\wuala.exe
FirewallRules: [{0BCE9069-2274-4641-969C-8822C54B6A19}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{40CC8A63-73A2-424A-8304-F70FE0E899BE}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{C162A0BD-637F-4E4E-B5FF-C184E46B480D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{AD2A70EC-D15F-4E52-AF50-32CD7830C176}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{BF84C183-172B-4726-9A95-6B446E062B4C}C:\users\sebastian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sebastian\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{B475195E-6FA7-4A16-8F40-D10D73EB8BFD}C:\users\sebastian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sebastian\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{D3A15160-5233-4219-89E6-C7D602F97ECD}C:\users\sebastian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sebastian\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{83D2DD09-B767-4878-88F5-CC7AEDF1922D}C:\users\sebastian\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\sebastian\appdata\roaming\spotify\spotify.exe
FirewallRules: [{87321424-CC3D-44CD-837D-3164EF5EF12B}] => (Allow) C:\Program Files\MAGIX\Video deluxe Plus\2017\Videodeluxe.exe
FirewallRules: [{E008A836-4A86-4DFE-9E53-D802E7C741BA}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [TCP Query User{97640768-4C55-4023-84B7-D6BFD87BDE66}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{3817E180-3352-4B41-AA9A-3547BEC76562}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{765CFEBA-30A6-4DD3-AA89-F846456A42E3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{A22E9D2A-0ADE-4437-B959-65CC440B416F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{CD680ADF-B934-4C9C-AB28-69D77B9233D0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
FirewallRules: [{AE997C44-536B-42AA-B1A3-CA983FF7E920}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{08603F98-9052-42DD-AA93-01356804E053}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{DD2AAF60-96CD-4447-AB14-CDBA8E8FC40A}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
==================== Wiederherstellungspunkte =========================
08-11-2017 14:36:00 Geplanter Prüfpunkt
11-11-2017 21:46:49 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager =============
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (11/14/2017 07:17:24 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (11/14/2017 07:16:04 AM) (Source: Application Virtualization Client) (EventID: 2009) (User: )
Description: Der Application Virtualization-Kerndienst konnte aufgrund eines Treiberfehlers bei einer früheren Ausführung nicht gestartet werden.
Error: (11/14/2017 07:16:04 AM) (Source: Application Virtualization Client) (EventID: 3056) (User: )
Description: {tid=DB0}
Der Application Virtualization-Kerndienst wurde nicht gestartet, weil ein Treiber, von dem er abhängig ist (sftplay.sys), beim letzten Mal abgestürzt ist."
Error: (11/13/2017 09:27:22 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren, die für die Sprach-ID "009" definiert wurden, können nicht gelesen werden. Das erste DWORD im Datenbereich enthält den Win32-Fehlercode.
Error: (11/13/2017 09:27:22 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren, die für die Sprach-ID "007" definiert wurden, können nicht gelesen werden. Das erste DWORD im Datenbereich enthält den Win32-Fehlercode.
Error: (11/13/2017 09:27:22 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren, die für die Sprach-ID "009" definiert wurden, können nicht gelesen werden. Das erste DWORD im Datenbereich enthält den Win32-Fehlercode.
Error: (11/13/2017 09:27:22 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3006) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren, die für die Sprach-ID "007" definiert wurden, können nicht gelesen werden. Das erste DWORD im Datenbereich enthält den Win32-Fehlercode.
Error: (11/13/2017 08:11:08 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Ereignisfilter mit Abfrage "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" konnte im Namespace "//./root/CIMV2" nicht reaktiviert werden aufgrund des Fehlers 0x80041003. Ereignisse können nicht durch diesen Filter geschickt werden, bis dieses Problem gelöst ist.
Error: (11/13/2017 08:10:40 AM) (Source: Application Virtualization Client) (EventID: 2009) (User: )
Description: Der Application Virtualization-Kerndienst konnte aufgrund eines Treiberfehlers bei einer früheren Ausführung nicht gestartet werden.
Error: (11/13/2017 08:10:40 AM) (Source: Application Virtualization Client) (EventID: 3056) (User: )
Description: {tid=E1C}
Der Application Virtualization-Kerndienst wurde nicht gestartet, weil ein Treiber, von dem er abhängig ist (sftplay.sys), beim letzten Mal abgestürzt ist."
Systemfehler:
=============
Error: (11/14/2017 07:16:13 AM) (Source: VDS Basic Provider) (EventID: 1) (User: )
Description: Unerwarteter Fehler. Fehlercode: D@01010004
Error: (11/14/2017 07:16:08 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (11/14/2017 07:16:04 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Client Virtualization Handler" ist vom Dienst "Application Virtualization Client" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Eine DLL-Initialisierungsroutine ist fehlgeschlagen.
Error: (11/14/2017 07:16:04 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Application Virtualization Client" wurde mit folgendem Fehler beendet:
Eine DLL-Initialisierungsroutine ist fehlgeschlagen.
Error: (11/13/2017 08:10:40 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (11/13/2017 08:10:40 AM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Client Virtualization Handler" ist vom Dienst "Application Virtualization Client" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Eine DLL-Initialisierungsroutine ist fehlgeschlagen.
Error: (11/13/2017 08:10:40 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Application Virtualization Client" wurde mit folgendem Fehler beendet:
Eine DLL-Initialisierungsroutine ist fehlgeschlagen.
Error: (11/12/2017 04:22:27 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
cdrom
Error: (11/12/2017 04:22:27 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Der Dienst "Client Virtualization Handler" ist vom Dienst "Application Virtualization Client" abhängig, der aufgrund folgenden Fehlers nicht gestartet wurde:
Eine DLL-Initialisierungsroutine ist fehlgeschlagen.
Error: (11/12/2017 04:22:27 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Application Virtualization Client" wurde mit folgendem Fehler beendet:
Eine DLL-Initialisierungsroutine ist fehlgeschlagen.
CodeIntegrity:
===================================
Date: 2017-10-11 11:07:12.269
Description: Die Abbildintegrität der Datei "\Device\HarddiskVolume3\Windows\System32\kernel32.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.
==================== Speicherinformationen ===========================
Prozessor: Intel(R) Core(TM) i7-2600 CPU @ 3.40GHz
Prozentuale Nutzung des RAM: 34%
Installierter physikalischer RAM: 8174.45 MB
Verfügbarer physikalischer RAM: 5390.75 MB
Summe virtueller Speicher: 16347.07 MB
Verfügbarer virtueller Speicher: 13342.43 MB
==================== Laufwerke ================================
Drive c: (OS) (Fixed) (Total:1384.85 GB) (Free:212.8 GB) NTFS
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 1397.3 GB) (Disk ID: 58000000)
Partition 1: (Not Active) - (Size=173 MB) - (Type=DE)
Partition 2: (Active) - (Size=12.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=1384.8 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ============================ |