Could it be malware causing my win update failures on Win 7?

Monokongo · Dec 13, 2018

I found this great and helpful sysnative forum, because the october/november windows update for Win 7 (KB4462923, KB4471318) won't install. The installation always rolls back. My windows license is OEM. Before the problem ocurred, I switched from the original harddrive to a larger one using HDClone 6. Moderator softwarmaniac after several checks recommended passing by in security arena to get sure, that I don't have an active malware. As antivirus I am now using bitdefender antivirus plus. It found nothing on the actual system, just threads in very old thunderbird mail folders which I did not open for years.

The windows update, as softwaremaniac found, seems to fail due to denied access at a certain registries microsoft task. This is the path, which in regedit neither cannot be opend nor exported:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft

Any idea, what I should try to do?

Thomas

Corrine · Dec 13, 2018

Hi, Monokongo. Please follow the Malware Removal Posting Instructions, posting the requested logs as a reply.

Thank you.

Monokongo · Dec 14, 2018

ok, thank you so much for trying to help. Here are the logs:

SecurityCheck.txt
SecurityCheck by glax24 & Severnyj v.1.4.0.53 [27.10.17]
WebSite: Ð¤Ð¾Ñ€ÑƒÐ¼ Ð¿Ð¾ Ð¸Ð½Ñ„Ð¾Ñ€Ð¼Ð°Ñ†Ð¸Ð¾Ð½Ð½Ð¾Ð¹ Ð±ÐµÐ·Ð¾Ð¿Ð°Ñ�Ð½Ð¾Ñ�Ñ‚Ð¸
DateLog: 15.12.2018 00:21:50
Path starting: C:\Users\TVK\AppData\Local\Temp\SecurityCheck\SecurityCheck.exe
Log directory: C:\SecurityCheck\
IsAdmin: True
User: TVK
VersionXML: 5.75is-13.12.2018
___________________________________________________________________________

Windows 7(6.1.7601) Service Pack 1 (x64) HomePremium Lang: German(0407)
Installation date OS: 02.07.2010 12:45:53
LicenseStatus: Windows(R) 7, HomePremium edition The machine is permanently activated.
Boot Mode: Normal
Default Browser: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
SystemDrive: C: FS: [NTFS] Capacity: [174.6 Gb] Used: [142.2 Gb] Free: [32.4 Gb]
------------------------------- [ Windows ] -------------------------------
Internet Explorer 11.0.9600.19129 Warning! Download Update
Online installation. Last version available when Windows update is enabled throught the Internet.
User Account Control enabled (Level 3)
Automatically download and notify of installatio
Date install updates: 2018-12-10 23:36:05
Windows Update (wuauserv) - The service is running
Sicherheitscenter (wscsvc) - The service is running
Remoteregistrierung (RemoteRegistry) - The service has stopped
SSDP-Suche (SSDPSRV) - The service is running
Remotedesktopdienste (TermService) - The service has stopped
Windows-Remoteverwaltung (WS-Verwaltung) (WinRM) - The service has stopped
---------------------------- [ Antivirus_WMI ] ----------------------------
Bitdefender Virenschutz (enabled and up to date)
--------------------------- [ FirewallWindows ] ---------------------------
Windows-Firewall (MpsSvc) - The service is running
--------------------------- [ AntiSpyware_WMI ] ---------------------------
Windows Defender (disabled and up to date)
Bitdefender Spyware-Schutz (enabled and up to date)
---------------------- [ AntiVirusFirewallInstall ] -----------------------
Bitdefender Antivirus Plus v.23.0.14.61
Bitdefender Agent v.1.0.1
--------------------------- [ OtherUtilities ] ----------------------------
7-Zip 18.01 (x64 edition) v.18.01.00.0 Warning! Download Update
Uninstall old version and install new one.
Microsoft Silverlight v.5.1.50907.0
FileZilla Client 3.24.0 v.3.24.0 Warning! Download Update
Picasa 3 v.3.9 Warning! This software is no longer supported.
TeamViewer 13 v.13.0.6447 Warning! Download Update
VeraCrypt v.1.17 Warning! Download Update
VLC media player v.3.0.4
TeamViewer 13 (TeamViewer) - The service is running
--------------------------------- [ IM ] ----------------------------------
Skype Version 8.19 v.8.19 Warning! Download Update
-------------------------------- [ Java ] ---------------------------------
Java 8 Update 171 (64-bit) v.8.0.1710.11 Warning! Download Update
Uninstall old version and install new one (jre-8u192-windows-x64.exe).
Java 8 Update 171 v.8.0.1710.11 Warning! Download Update
Uninstall old version and install new one (jre-8u192-windows-i586.exe).
--------------------------- [ AppleProduction ] ---------------------------
Bonjour-Druckdienste v.2.0.2.0 Warning! Download Update
^Please use Apple Software Update tool.^
Bonjour v.2.0.2.0 Warning! Download Update
^Please use Apple Software Update tool.^
QuickTime MPEG2 v.7.60.92.0 Warning! This software is no longer supported. Please uninstall it and use another software.
QuickTime 7 v.7.79.80.95 Warning! This software is no longer supported. Please uninstall it and use another software.
Dienst "Bonjour" (Bonjour Service) - The service is running
--------------------------- [ AdobeProduction ] ---------------------------
Adobe Flash Player 32 ActiveX v.32.0.0.101
Adobe Flash Player 32 NPAPI v.32.0.0.101
Adobe Media Player v.1.8 Warning! This software is no longer supported. Please uninstall it.
------------------------------- [ Browser ] -------------------------------
Google Chrome v.71.0.3578.98
Opera Stable 56.0.3051.116 v.56.0.3051.116 Warning! Download Update
----------------------------- [ EmailClient ] -----------------------------
Gpg4win (2.3.2) v.2.3.2
Mozilla Thunderbird 60.3.3 (x86 de) v.60.3.3
Windows Live Essentials v.14.0.8050.1202 Warning! This software is no longer supported.
Windows Live Mail v.14.0.8050.1202 Warning! This software is no longer supported.
Windows Live Sync v.14.0.8050.1202 Warning! This software is no longer supported.
--------------------------- [ RunningProcess ] ----------------------------
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe v.71.0.3578.98
chrome.exe
------------------ [ AntivirusFirewallProcessServices ] -------------------
C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe v.23.0.16.63
C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe v.23.0.16.63
C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe v.1.0.1.42
ProductAgentService (ProductAgentService) - The service is running
C:\Program Files\Bitdefender Agent\ProductAgentService.exe v.23.0.8.130
Bitdefender Desktop Update Service (UPDATESRV) - The service is running
C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe v.23.0.16.63
Bitdefender Virus Shield (VSSERV) - The service is running
C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe v.23.0.16.63
Windows Defender (WinDefend) - The service has stopped
---------------------------- [ UnwantedApps ] -----------------------------
JDownloader 2 v.2.0 Warning! Suspected Adware! If this program is not familiar to you it is recommended to uninstall it and execute PC scanning using Malwarebytes Anti-Malware and Malwarebytes AdwCleaner. Before uninstallation and scanning it is necessary to consult in the forum where cure is provided for you!!!
TuneUp Utilities 2014 v.14.0.1000.340 Warning! Suspected demo version of anti-spyware or optimization program - scareware, badware or rogue. If this program is not familiar to you it is recommended to uninstall it and execute PC scanning using Malwarebytes Anti-Malware. Possible you became a victim of fraud or social engineering.
Google Toolbar for Internet Explorer v.1.0.0 << Hidden Warning! Browser's toolbar. It can slow down the working of your browser and have violation privacy problems.
TuneUp Utilities Language Pack (en-US) v.13.0.3000.138 << Hidden Warning! Suspected demo version of anti-spyware or optimization program - scareware, badware or rogue. If this program is not familiar to you it is recommended to uninstall it and execute PC scanning using Malwarebytes Anti-Malware. Possible you became a victim of fraud or social engineering.
Skype Click to Call v.5.9.9216 Warning! Browser's toolbar. It can slow down the working of your browser and have violation privacy problems.
TuneUp Utilities 2014 (de-DE) v.14.0.1000.340 << Hidden Warning! Suspected demo version of anti-spyware or optimization program - scareware, badware or rogue. If this program is not familiar to you it is recommended to uninstall it and execute PC scanning using Malwarebytes Anti-Malware. Possible you became a victim of fraud or social engineering.
----------------------------- [ End of Log ] ------------------------------

FRST.txt
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 09.12.2018
durchgeführt von TVK (Administrator) auf GEKKO (15-12-2018 00:43:51)
Gestartet von C:\Users\TVK\Desktop\Update-Problem
Geladene Profile: TVK (Verfügbare Profile: TVK)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Sprache: Deutsch (Deutschland)
Internet Explorer Version 11 (Standard-Browser: Chrome)
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RTKAUDIOSERVICE64.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ABBYY Production LLC) C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Apple Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Avid Technology, Inc.) C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe
() C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
(PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
() C:\Program Files (x86)\PureVPN\PureVPNService.exe
(Realtek) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlService.exe
(Realtek Semiconductor Corp.) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtWLan.exe
() C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
(ATK) C:\Program Files\P4G\BatteryLife.exe
() C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
() C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(ELAN Microelectronic Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe
(TuneUp Software) C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesApp64.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
() C:\Program Files\Google\Drive\googledrivesync.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Dashlane, Inc.) C:\Users\TVK\AppData\Roaming\Dashlane\DashlanePlugin.exe
(Dashlane, Inc.) C:\Users\TVK\AppData\Roaming\Dashlane\Dashlane.exe
(RedFox) C:\Program Files (x86)\RedFox\AnyDVD\AnyDVDtray.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe
(SRS Labs, Inc.) C:\Program Files\SRS Labs\SRS Premium Sound Control Panel\SRSPremiumPanel_64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Ghisler Software GmbH) C:\programme\totalcmd\TOTALCMD64.EXE
(Ghisler Software GmbH) C:\programme\totalcmd\TOTALCMD64.EXE
(Ghisler Software GmbH) C:\programme\totalcmd\TOTALCMD64.EXE
(Ghisler Software GmbH) C:\programme\totalcmd\TOTALCMD64.EXE
() C:\Program Files (x86)\RedFox\AnyDVD\ADvdDiscHlp64.exe
() C:\Program Files\Google\Drive\googledrivesync.exe
(Bitdefender) C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat.exe
(Macrovision Europe Ltd.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\bdwtxag.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTE.EXE
(ASUS) C:\Program Files (x86)\ASUS\SmartLogon\smartlogon.exe
(Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\seccenter.exe
(Bitdefender) C:\Program Files\Bitdefender\Bitdefender Security\odsw.exe
(Microsoft Corporation) C:\Program Files (x86)\Windows NT\Accessories\wordpad.exe
(Microsoft Corporation) C:\Windows\splwow64.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [ETDWare] => C:\Program Files\Elantech\ETDCtrl.exe [621440 2009-09-30] (ELAN Microelectronic Corp.)
HKLM\...\Run: [apmwinapp] => C:\Program Files (x86)\Paragon Software\HFS+ for Windows 10.4\apmwinsrv.exe [66768 2015-11-15] ()
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [557768 2014-09-19] (Adobe Systems Incorporated)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [Bdagent] => C:\Program Files\Bitdefender\Bitdefender Security\bdagent.exe [482024 2018-12-12] (Bitdefender)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [284696 2009-12-23] (Intel Corporation)
HKLM-x32\...\Run: [HFS Activator] => C:\Program Files (x86)\Paragon Software\HFS+ for Windows 10.4\activation\hfsactivator.exe [245456 2014-11-07] ()
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [976320 2009-12-03] (SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [DigidesignMMERefresh] => C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [77824 2010-05-05] (Avid Technology, Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-05-03] (ASUS)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [4049216 2018-12-13] (Dropbox, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46459080 2018-10-04] ()
HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Run: [Akamai NetSession Interface] => C:\Users\TVK\AppData\Local\Akamai\netsession_win.exe [4489472 2013-06-05] (Akamai Technologies, Inc.)
HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Run: [] => [X]
HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Run: [DashlanePlugin] => C:\Users\TVK\AppData\Roaming\Dashlane\DashlanePlugin.exe [404560 2018-11-27] (Dashlane, Inc.)
HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Run: [Dashlane] => C:\Users\TVK\AppData\Roaming\Dashlane\Dashlane.exe [391248 2018-11-27] (Dashlane, Inc.)
HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Run: [AnyDVD] => C:\Program Files (x86)\RedFox\AnyDVD\AnyDVDtray.exe [10756096 2017-01-10] (RedFox)
HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Run: [aliim] => C:\Program Files (x86)\Trademanager\AliIM.exe [293272 2013-08-22] (Alibaba (China) Co., Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2018-05-15]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk [2010-03-31]
ShortcutTarget: FancyStart daemon.lnk -> C:\Windows\Installer\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}\_A1DDD39913A1970387B7B3.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SRS Premium Sound.lnk [2010-03-31]
ShortcutTarget: SRS Premium Sound.lnk -> C:\Windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe (Acresso Software Inc.)
Startup: C:\Users\TVK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Send to OneNote.lnk [2018-12-13]
ShortcutTarget: Send to OneNote.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{6AB423A1-D16F-4661-B802-D4CEF917227A}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{B7C4D000-080F-4241-9624-AFDC2A1C273C}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{C8C2A667-0306-4AAB-84B6-B58F87B11C68}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{FD06ED4C-BC90-4A88-A0AE-FF19E131C95C}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2995023867-192957892-1741380443-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT
SearchScopes: HKLM-x32 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2995023867-192957892-1741380443-1001 -> DefaultScope {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2995023867-192957892-1741380443-1001 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2995023867-192957892-1741380443-1001 -> {E9410C70-B6AE-41FF-AB71-32F4B279EA5F} URL = hxxps://www.google.com/search?bcutc=sp-006&q={searchTerms}
BHO: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2018-12-12] (Bitdefender)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2018-12-04] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_171\bin\ssv.dll [2018-04-18] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-07-14] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\URLREDIR.DLL [2018-12-04] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-18] (Oracle Corporation)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27] (Adobe Systems Incorporated)
BHO-x32: Bitdefender-Geldbörse -> {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} -> C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2018-12-12] (Bitdefender)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2018-12-04] (Microsoft Corporation)
BHO-x32: Dashlane BHO -> {42D79B50-CC4A-4A8E-860F-BE674AF053A2} -> C:\Users\TVK\AppData\Roaming\Dashlane\ie\Dashlanei.dll [2018-11-27] (Dashlane, Inc.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\ssv.dll [2018-04-18] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-07-14] (Google Inc.)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
BHO-x32: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17] (Skype Technologies S.A.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\root\Office16\URLREDIR.DLL [2018-12-04] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\jp2ssv.dll [2018-04-18] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-07-14] (Google Inc.)
Toolbar: HKLM - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\pmbxie.dll [2018-12-12] (Bitdefender)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-11] (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-07-14] (Google Inc.)
Toolbar: HKLM-x32 - Dashlane Toolbar - {669695BC-A811-4A9D-8CDF-BA8C795F261C} - C:\Users\TVK\AppData\Roaming\Dashlane\ie\KWIEBar.dll [2018-11-27] (Dashlane, Inc.)
Toolbar: HKLM-x32 - Bitdefender-Geldbörse - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender Security\Antispam32\pmbxie.dll [2018-12-12] (Bitdefender)
Toolbar: HKU\S-1-5-21-2995023867-192957892-1741380443-1001 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-07-14] (Google Inc.)
Toolbar: HKU\S-1-5-21-2995023867-192957892-1741380443-1001 -> Kein Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Keine Datei
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-04] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-04] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-04] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2018-12-04] (Microsoft Corporation)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2012-01-17] (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Keine Datei

FireFox:
========
FF DefaultProfile: monokongo@gmx.de
FF ProfilePath: C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default [2018-12-06]
FF user.js: detected! => C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\user.js [2017-09-24]
FF Homepage: Mozilla\Firefox\Profiles\8097ad9n.default -> hxxps://www.google.com/?bcutc=sp-006
FF NewTab: Mozilla\Firefox\Profiles\8097ad9n.default -> about:newtab
FF NetworkProxy: Mozilla\Firefox\Profiles\8097ad9n.default -> backup.ftp", "23.89.198.161"
FF Session Restore: Mozilla\Firefox\Profiles\8097ad9n.default -> ist aktiviert.
FF Extension: (Avira Browser Safety) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\abs@avira.com [2018-11-09]
FF Extension: (Adblock Plus Pop-up Addon) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\adblockpopups@jessehakanen.net.xpi [2016-05-02] [Legacy]
FF Extension: (Ant Video downloader) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\anttoolbar@ant.com.xpi [2017-11-22]
FF Extension: (Classic Theme Restorer) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\ClassicThemeRestorer@ArisT2Noia4dev.xpi [2017-11-15] [Legacy]
FF Extension: (Dashlane) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\jetpack-extension@dashlane.com.xpi [2017-11-24]
FF Extension: (NO Google Analytics) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\jid1-JcGokIiQyjoBAQ@jetpack.xpi [2016-04-27] [Legacy]
FF Extension: (Official My JDownloader AddOn) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2016-07-08] [Legacy]
FF Extension: (Tab Session Manager) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\Tab-Session-Manager@sienori.xpi [2017-11-29]
FF Extension: (Session Manager) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2017-01-31] [Legacy]
FF Extension: (Deaktivierungs-Add-on von Google Analytics) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\{6d96bb5e-1175-4ebf-8ab5-5f56f1c79f65}.xpi [2017-04-08]
FF Extension: (YouTube High Definition) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\{7b1bf0b6-a1b9-42b0-b75d-252036438bdc}.xpi [2017-12-02]
FF Extension: (Adblock Plus) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2017-11-08]
FF Extension: (YouTube Flash Video Player) - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\{f3bd3dd2-2888-44c5-91a2-2caeb33fb898}.xpi [2017-11-26]
FF SearchPlugin: C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\searchplugins\google-avast.xml [2016-11-24]
FF SearchPlugin: C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\searchplugins\google-images.xml [2015-10-11]
FF SearchPlugin: C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\searchplugins\google-maps.xml [2015-10-11]
FF SearchPlugin: C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\searchplugins\youtube.xml [2015-11-14]
FF HKLM\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF Extension: (Bitdefender Wallet) - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi [2018-12-12]
FF HKLM\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF Extension: (Bitdefender Antispam Toolbar) - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext [2018-10-29] [Legacy] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [bdwtwe@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdwteff.xpi
FF HKLM-x32\...\Thunderbird\Extensions: [bdThunderbird@bitdefender.com] - C:\Program Files\Bitdefender\Bitdefender Security\bdtbext
FF HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Firefox\Extensions: [cliqz@cliqz.com] - C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\extensions\cliqz@cliqz.com => nicht gefunden
FF HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Firefox\Extensions: [{442718d9-475e-452a-b3e1-fb1ee16b8e9f}] - C:\Users\TVK\AppData\Roaming\Dashlane\6.1848.0.15588\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f}
FF Extension: (Kein Name) - C:\Users\TVK\AppData\Roaming\Dashlane\6.1848.0.15588\bin\Firefox_Extension\{442718d9-475e-452a-b3e1-fb1ee16b8e9f} [2018-11-27] [ist nicht signiert]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_101.dll [2018-12-05] ()
FF Plugin: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-18] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-18] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ [] ()
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-09-19] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_101.dll [2018-12-05] ()
FF Plugin-x32: @alibaba.com/npwangwang;version=1.0 -> C:\Program Files (x86)\Trademanager\npwangwang.dll [2013-03-27] ( )
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\dtplugin\npDeployJava1.dll [2018-04-18] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.171.2 -> C:\Program Files (x86)\Java\jre1.8.0_171\bin\plugin2\npjp2.dll [2018-04-18] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-10-05] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50907.0\npctrl.dll [2017-05-03] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2018-10-05] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/VirtualEarth3D,version=4.0 -> C:\Program Files (x86)\Virtual Earth 3D\ [] ()
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8051.1204 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2008-12-04] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-05-19] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2018-08-09] (VideoLAN)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-09-19] (Adobe Systems)
FF Plugin HKU\.DEFAULT: @hola.org/FlashPlayer -> C:\Users\TVK\AppData\Local\Hola\firefox_hola\app\flash\NPSWF32_18_0_0_232.dll [Keine Datei]
FF Plugin HKU\.DEFAULT: @hola.org/vlc -> C:\Users\TVK\AppData\Local\Hola\firefox_hola\app\vlc\npvlc.dll [Keine Datei]
FF Plugin HKU\S-1-5-21-2995023867-192957892-1741380443-1001: @alibaba.com/npAliSSOLogin;version=1.0 -> C:\Program Files (x86)\Trademanager\npAliSSOLogin.dll [2013-03-27] (Alibaba software (Shanghai) Corporation.)
FF Plugin HKU\S-1-5-21-2995023867-192957892-1741380443-1001: @talk.google.com/GoogleTalkPlugin -> C:\Users\TVK\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2013-07-02] (Google)
FF Plugin HKU\S-1-5-21-2995023867-192957892-1741380443-1001: @talk.google.com/O1DPlugin -> C:\Users\TVK\AppData\Roaming\Mozilla\plugins\npo1d.dll [2013-07-02] (Google)
FF Plugin HKU\S-1-5-21-2995023867-192957892-1741380443-1001: @talk.google.com/O3DPlugin -> C:\Users\TVK\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll [2013-07-02] ()
FF Plugin HKU\S-1-5-21-2995023867-192957892-1741380443-1001: @tools.google.com/Google Update;version=3 -> C:\Users\TVK\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll [2013-07-13] (Google Inc.)
FF Plugin HKU\S-1-5-21-2995023867-192957892-1741380443-1001: @tools.google.com/Google Update;version=9 -> C:\Users\TVK\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll [2013-07-13] (Google Inc.)
FF Plugin HKU\S-1-5-21-2995023867-192957892-1741380443-1001: amazon.com/AmazonMP3DownloaderPlugin -> C:\Program Files (x86)\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin101753.dll [2012-10-29] (Amazon.com, Inc.)
FF Plugin HKU\S-1-5-21-2995023867-192957892-1741380443-1001: {@alibaba.com/alisetup;version=1.0} -> C:\Users\TVK\AppData\Local\Alibaba\AliSetup\0.1.0.52\npAliSetupOneClick.dll [2011-02-22] (alibaba)
FF Plugin ProgramFiles/Appdata: C:\Users\TVK\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2013-07-02] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\TVK\AppData\Roaming\mozilla\plugins\npgtpo3dautoplugin.dll [2013-07-02] ()
FF Plugin ProgramFiles/Appdata: C:\Users\TVK\AppData\Roaming\mozilla\plugins\npo1d.dll [2013-07-02] (Google)

Chrome:
=======
CHR Profile: C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default [2018-12-15]
CHR Extension: (Google Drive) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-05-28]
CHR Extension: (Adblock Plus) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-12-04]
CHR Extension: (Tabs Outliner) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\eggkanocgddhmamlbiijnphhppkpkmkl [2018-02-03]
CHR Extension: (Video Downloader professional) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\elicpjhcidhpjomhibiffojpinpmmpil [2018-11-03]
CHR Extension: (Dashlane) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdjamakpfbbddfjaooikfcpapjohcfmg [2018-12-12]
CHR Extension: (Google Docs Offline) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-04]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2018-02-03]
CHR Extension: (Video DownloadHelper) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2018-11-03]
CHR Extension: (Schwarz + Silber-Metall-Kohlenstoff) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\lodhggoaglindpoejnjldimdlikkphph [2018-02-04]
CHR Extension: (TabHamster) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\mkfjjmjmnplabnplceaekkjcmdddokee [2018-02-03]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04]
CHR Extension: (Chrome Media Router) - C:\Users\TVK\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-14]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-2995023867-192957892-1741380443-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\TVK\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx [2018-05-26]
CHR HKU\S-1-5-21-2995023867-192957892-1741380443-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gannpgaobkkhmpomoijebaigcapoeebl] - hxxps://clients2.google.com/service/update2/crx

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 ABBYY.Licensing.FineReader.Professional.12.0; C:\Program Files (x86)\ABBYY FineReader 12\NetworkLicenseServer.exe [925904 2014-01-23] (ABBYY Production LLC)
R2 BDAuxSrv; C:\Program Files\Bitdefender\Bitdefender Security\bdservicehost.exe [779152 2018-12-12] (Bitdefender)
R2 bdredline; C:\Program Files\Common Files\Bitdefender\SetupInformation\Bitdefender RedLine\bdredline.exe [2195320 2018-03-22] (Bitdefender)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9646240 2018-11-20] (Microsoft Corporation)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-22] (Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-22] (Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [51024 2018-12-13] (Dropbox, Inc.)
R2 DigiRefresh; C:\Program Files (x86)\Digidesign\Drivers\MMERefresh.exe [77824 2010-05-05] (Avid Technology, Inc.) [Datei ist nicht signiert]
R2 DirMngr; C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe [216576 2016-07-05] () [Datei ist nicht signiert]
R3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2013-05-21] (Macrovision Europe Ltd.) [Datei ist nicht signiert]
S3 GoogleChromeElevationService; C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [443872 2018-12-12] (Google Inc.)
S3 GSService; C:\Windows\SysWOW64\GSService.exe [385024 2010-12-23] () [Datei ist nicht signiert]
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]
S3 OpenVpnService; C:\Program Files (x86)\PureVPN\bin\openvpnserv2.exe [15872 2016-11-24] ( ) [Datei ist nicht signiert]
R2 PaceLicenseDServices; C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe [2932224 2011-07-09] (PACE Anti-Piracy, Inc.) [Datei ist nicht signiert]
S4 PCToolsSSDMonitorSvc; C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [583640 2009-10-14] (PC Tools)
S2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2009-05-14] (Hewlett-Packard) [Datei ist nicht signiert]
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1293936 2018-11-15] (Bitdefender)
S3 PSEXESVC; C:\Windows\PSEXESVC.exe [145568 2018-11-25] (Sysinternals)
R2 PureVPNService; C:\Program Files (x86)\PureVPN\PureVPNService.exe [105736 2018-11-12] ()
R2 RealtekWlanU; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [Datei ist nicht signiert]
S4 RGService; C:\Program Files (x86)\RadioGet\RGService.exe [385024 2010-12-23] () [Datei ist nicht signiert]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [324608 2017-04-13] (Realtek Semiconductor)
S2 RTLDHCPService; C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe [261848 2013-11-12] (Realtek)
S3 ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [633856 2011-06-08] (Nokia) [Datei ist nicht signiert]
S3 SMServer; C:\Windows\SysWOW64\snmvtsvc.exe [245760 2010-04-27] (SMServer) [Datei ist nicht signiert]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (DEVGURU Co., LTD.)
S4 STSService; C:\Program Files (x86)\SoundTaxi Media Suite\STSService.exe [344064 2010-04-27] () [Datei ist nicht signiert]
S4 SupThrSrv; C:\eSupport\SupThrSrv\SupThrSrv.exe [80512 2009-09-04] (ASUS)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [Datei ist nicht signiert]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10945776 2017-12-15] (TeamViewer GmbH)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesService64.exe [2145080 2014-07-16] (TuneUp Software)
R2 UPDATESRV; C:\Program Files\Bitdefender\Bitdefender Security\updatesrv.exe [112656 2018-12-12] (Bitdefender)
R2 VSSERV; C:\Program Files\Bitdefender\Bitdefender Security\vsserv.exe [804656 2018-12-12] (Bitdefender)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R3 AnyDVD; C:\Windows\System32\Drivers\AnyDVD.sys [154448 2016-07-11] (RedFox)
R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [154448 2016-07-11] (RedFox)
R0 apmwin; C:\Windows\System32\DRIVERS\apmwin.sys [50896 2014-11-07] (Paragon Software Group)
S1 Aspi32; kein ImagePath
R1 atc; C:\Windows\System32\DRIVERS\atc.sys [1292296 2018-06-05] (BitDefender S.R.L. Bucharest, ROMANIA)
R2 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [156912 2018-10-18] (Bitdefender)
S3 bdprivmon; C:\Windows\System32\DRIVERS\bdprivmon.sys [45728 2018-09-17] (© Bitdefender SRL)
S3 BDVEDISK; C:\Windows\System32\DRIVERS\bdvedisk.sys [96448 2018-04-27] (BitDefender)
S3 blackberryncm; C:\Windows\System32\DRIVERS\blackberryncm6_AMD64.sys [25600 2015-01-23] (BlackBerry Limited) [Datei ist nicht signiert]
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd.)
S2 DLPortIO; C:\Windows\SysWow64\Drivers\DLPortIO.sys [3584 1999-01-10] () [Datei ist nicht signiert]
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [129448 2017-09-19] (Future Technology Devices International Ltd.)
S3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [89792 2017-09-19] (Future Technology Devices International Ltd.)
R1 Gemma; C:\Windows\System32\DRIVERS\Gemma.sys [359584 2018-12-12] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 gpt_loader; C:\Windows\System32\DRIVERS\gpt_loader.sys [61136 2014-11-07] (Paragon Software Group)
R0 gzflt; C:\Windows\System32\DRIVERS\gzflt.sys [193184 2018-05-29] (BitDefender LLC)
S3 Hfsplus; C:\Windows\System32\DRIVERS\hfsplus.sys [205008 2014-11-07] (Paragon Software Group)
R2 HfsplusRec; C:\Windows\System32\DRIVERS\hfsplusrec.sys [15568 2014-11-07] (Paragon Software Group)
S3 Ignis; C:\Windows\System32\DRIVERS\ignis.sys [196352 2018-12-12] (Bitdefender)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
S3 libusb0; C:\Windows\System32\DRIVERS\libusb0.sys [43456 2011-01-18] (hxxp://libusb-win32.sourceforge.net)
S3 libusbK; C:\Windows\System32\DRIVERS\libusbK.sys [47928 2016-03-11] (hxxp://libusb-win32.sourceforge.net)
R0 mounthlp; C:\Windows\System32\DRIVERS\mounthlp.sys [42704 2014-11-07] (Paragon Software Group)
R3 Neo_VPN; C:\Windows\System32\DRIVERS\neo_vpn.sys [29744 2016-07-21] (PureVPN)
R2 npf; C:\Windows\System32\drivers\npf.sys [35344 2010-07-16] (CACE Technologies, Inc.)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] ()
S3 rimvndis; C:\Windows\System32\Drivers\rimvndis6_AMD64.sys [18432 2015-05-26] (BlackBerry Limited) [Datei ist nicht signiert]
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
R1 RrNetCapFilterDriver; C:\Windows\System32\DRIVERS\RrNetCapFilterDriver.sys [24744 2013-10-07] (Audials AG)
S3 RtlvVga; C:\Windows\System32\DRIVERS\RtlvVga.sys [11920 2014-03-19] (Realtek Semiconductor Corporation )
R3 RtlWlanu; C:\Windows\System32\DRIVERS\RTWlanU.sys [3071704 2014-03-31] (Realtek Semiconductor Corporation )
R2 Sentinel64; C:\Windows\System32\Drivers\Sentinel64.sys [142120 2007-04-27] (SafeNet, Inc.)
R3 SndTAudio; C:\Windows\System32\drivers\SndTAudio.sys [33336 2010-04-28] (Windows (R) Codename Longhorn DDK provider)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1799680 2009-07-17] ()
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [165504 2017-01-16] (Samsung Electronics Co., Ltd.)
S3 StarOpen; C:\Windows\System32\Drivers\StarOpen.sys [5504 2009-11-12] () [Datei ist nicht signiert]
S3 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [7168 2009-11-12] () [Datei ist nicht signiert]
R0 trufos; C:\Windows\System32\DRIVERS\trufos.sys [609576 2018-06-28] (Bitdefender)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\TuneUp Utilities 2014\TuneUpUtilitiesDriver64.sys [14112 2013-08-21] (TuneUp Software)
S3 USBAAPL64; C:\Windows\System32\Drivers\usbaapl64.sys [50688 2010-04-20] (Apple, Inc.) [Datei ist nicht signiert]
R3 usbscan; C:\Windows\SysWOW64\DRIVERS\usbscan.sys [12400 1999-10-13] (Microsoft Corporation) [Datei ist nicht signiert]
R3 VBAudioVACMME; C:\Windows\System32\DRIVERS\vbaudio_cable64_win7.sys [41192 2016-01-29] (Windows (R) Win 7 DDK provider)
R1 veracrypt; C:\Windows\System32\drivers\veracrypt.sys [198248 2016-03-24] (IDRIX)
S3 WsAudioDevice_383S(1); C:\Windows\System32\drivers\WsAudioDevice_383S(1).sys [29288 2015-02-02] (Wondershare)
S3 dbx; system32\DRIVERS\dbx.sys [X]
S1 ESProtectionDriver; \??\C:\Windows\system32\drivers\mbae64.sys [X]
S3 MBAMFarflt; system32\DRIVERS\farflt.sys [X]
S3 MBAMProtection; system32\DRIVERS\mbam.sys [X]
S3 MBAMWebProtection; system32\DRIVERS\mwac.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
S3 taphss6; system32\DRIVERS\taphss6.sys [X]
U3 tmlwf; kein ImagePath
U3 tmwfp; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

==================== Ein Monat: Erstellte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-12-15 00:19 - 2018-12-15 00:19 - 000000000 ____D C:\Users\TVK\.oracle_jre_usage
2018-12-14 23:54 - 2018-12-15 00:21 - 000000000 ____D C:\SecurityCheck
2018-12-14 14:51 - 2018-12-14 14:51 - 000190688 _____ C:\Users\TVK\Desktop\Weiterversicherung als freiwilliges Mitglied.pdf
2018-12-14 11:20 - 2018-12-14 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2018-12-13 06:12 - 2018-12-13 06:12 - 000051024 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2018-12-13 06:12 - 2018-12-13 06:12 - 000047800 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2018-12-12 21:11 - 2018-12-12 21:11 - 000000000 ____D C:\Windows\System32\Tasks\Apple
2018-12-12 18:26 - 2018-12-12 18:26 - 000000000 ___HD C:\OneDriveTemp
2018-12-12 18:24 - 2018-12-12 18:24 - 000000004 ____H C:\ProgramData\cm-lock
2018-12-12 18:22 - 2018-12-12 18:22 - 000000022 _____ C:\Windows\S.dirmngr
2018-12-12 18:22 - 2018-12-12 18:22 - 000000000 ____D C:\ProgramData\Gemma
2018-12-12 13:06 - 2018-12-12 13:06 - 000359584 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\gemma.sys
2018-12-11 21:09 - 2018-12-11 21:09 - 000000000 ____D C:\Users\TVK\Desktop\Niko
2018-12-04 15:45 - 2018-12-04 15:45 - 000002423 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2018-12-04 15:45 - 2018-12-04 15:45 - 000002418 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2018-12-04 15:45 - 2018-12-04 15:45 - 000002417 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2018-12-04 15:45 - 2018-12-04 15:45 - 000002381 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2018-12-04 15:45 - 2018-12-04 15:45 - 000002380 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2018-12-04 15:45 - 2018-12-04 15:45 - 000002374 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2018-12-04 15:45 - 2018-12-04 15:45 - 000002368 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2018-12-04 15:45 - 2018-12-04 15:45 - 000002360 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2018-12-04 15:45 - 2018-12-04 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2018-11-29 18:40 - 2018-11-29 18:40 - 000079250 _____ C:\Users\TVK\Desktop\Bürostuhl (verschoben).pdf
2018-11-29 18:34 - 2018-11-29 18:37 - 000000000 ____D C:\ProgramData\Dumps
2018-11-27 22:39 - 2018-11-27 22:39 - 000000000 ____D C:\Users\TVK\AppData\Local\bdch
2018-11-27 22:37 - 2018-11-27 22:37 - 000000000 ____D C:\ProgramData\bdch
2018-11-25 21:33 - 2018-11-25 21:33 - 000145568 _____ (Sysinternals) C:\Windows\PSEXESVC.exe
2018-11-25 21:33 - 2016-06-28 11:44 - 000339096 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\PsExec.exe
2018-11-25 21:33 - 2016-06-28 11:41 - 000374944 _____ (Sysinternals - www.sysinternals.com) C:\Windows\system32\PsExec64.exe
2018-11-25 21:28 - 2018-11-25 21:28 - 000000000 ____D C:\Users\TVK\Desktop\PSTools
2018-11-25 13:16 - 2018-11-25 13:16 - 000000000 ____D C:\Users\TVK\AppData\Local\OneDrive
2018-11-25 00:28 - 2018-11-25 00:28 - 000036044 _____ C:\ProgramData\dm.uninstall.1543102012.bdinstall.bin
2018-11-25 00:11 - 2018-12-12 18:19 - 000004160 _____ C:\bdlog.txt
2018-11-24 23:43 - 2018-11-24 23:43 - 000057705 _____ C:\ProgramData\dm.1543099173.bdinstall.bin
2018-11-24 23:43 - 2018-11-24 23:43 - 000000000 ____D C:\ProgramData\Bitdefender Device Management
2018-11-24 23:30 - 2018-11-24 23:30 - 000837120 _____ C:\ProgramData\cl.1543097300.bdinstall.v2.bin
2018-11-24 23:30 - 2018-11-24 23:30 - 000102544 _____ C:\ProgramData\cl.kit.1543097287.bdinstall.v2.bin
2018-11-24 23:30 - 2018-11-24 23:30 - 000000000 ____D C:\ProgramData\Atc
2018-11-24 23:23 - 2018-11-25 00:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bitdefender Security
2018-11-24 23:23 - 2018-11-24 23:23 - 000002314 _____ C:\Users\Public\Desktop\Bitdefender VPN.lnk
2018-11-24 23:23 - 2018-11-24 23:23 - 000002232 _____ C:\Users\Public\Desktop\Bitdefender.lnk
2018-11-24 23:22 - 2018-12-12 13:07 - 000196352 _____ (Bitdefender) C:\Windows\system32\Drivers\ignis.sys
2018-11-24 23:22 - 2018-11-24 23:23 - 000000000 ____D C:\ProgramData\BDLogging
2018-11-24 23:22 - 2018-11-24 23:22 - 000000000 ____D C:\Windows\system32\elambkup
2018-11-24 23:22 - 2018-10-18 17:12 - 000156912 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys
2018-11-24 23:22 - 2018-09-17 04:36 - 000045728 _____ (© Bitdefender SRL) C:\Windows\system32\Drivers\bdprivmon.sys
2018-11-24 23:22 - 2018-06-05 03:32 - 001292296 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\atc.sys
2018-11-24 23:22 - 2018-04-27 07:45 - 000096448 _____ (BitDefender) C:\Windows\system32\Drivers\bdvedisk.sys
2018-11-24 23:22 - 2018-04-19 07:37 - 000023032 _____ (Bitdefender) C:\Windows\system32\Drivers\bdelam.sys
2018-11-24 23:22 - 2018-04-17 10:27 - 001723552 _____ (BitDefender) C:\Windows\system32\Drivers\avc3.sys
2018-11-24 23:22 - 2007-04-11 10:11 - 000511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2018-11-24 23:21 - 2018-11-24 23:33 - 000000000 ____D C:\Users\TVK\AppData\Roaming\Bitdefender
2018-11-24 23:12 - 2018-11-25 20:21 - 000000000 ____D C:\Program Files\Bitdefender
2018-11-24 23:12 - 2018-11-24 23:12 - 000076428 _____ C:\ProgramData\agent.update.1543097519.bdinstall.v2.bin
2018-11-24 23:12 - 2018-06-28 13:39 - 000609576 _____ (Bitdefender) C:\Windows\system32\Drivers\trufos.sys
2018-11-24 23:12 - 2018-05-29 04:04 - 000193184 _____ (BitDefender LLC) C:\Windows\system32\Drivers\gzflt.sys
2018-11-24 23:10 - 2018-11-24 23:11 - 011928216 _____ C:\Users\TVK\Desktop\bitdefender_antivirus (1).exe
2018-11-24 23:06 - 2018-11-24 23:06 - 000007315 _____ C:\ProgramData\agent.1543097204.bdinstall.bin
2018-11-24 21:35 - 2018-11-24 23:12 - 000000000 ____D C:\Program Files\Common Files\Bitdefender
2018-11-24 14:50 - 2018-11-24 14:50 - 000043478 _____ C:\Users\TVK\Desktop\cc_20181124_145034.reg
2018-11-24 13:47 - 2018-11-24 13:47 - 000014422 _____ C:\ProgramData\agent.1543063642.3184.bin
2018-11-24 00:21 - 2018-11-29 18:35 - 000000000 ____D C:\ProgramData\Bitdefender
2018-11-24 00:15 - 2018-12-12 18:26 - 000003648 _____ C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2018-11-24 00:12 - 2018-11-24 23:30 - 000000000 ____D C:\Program Files\Bitdefender Agent
2018-11-24 00:12 - 2018-11-24 00:12 - 000043213 _____ C:\ProgramData\agent.1543014775.bdinstall.bin
2018-11-24 00:12 - 2018-11-24 00:12 - 000000000 ____D C:\ProgramData\Bitdefender Agent
2018-11-24 00:07 - 2018-11-24 00:07 - 001542152 _____ (CHIP Digital GmbH) C:\Users\TVK\Desktop\BitDefender Antivirus Free Edition - CHIP-Installer.exe
2018-11-23 20:49 - 2018-11-12 15:59 - 000022280 _____ C:\Windows\SysWOW64\fix-dns-leak-32.dll
2018-11-23 20:41 - 2018-11-23 20:41 - 000001410 _____ C:\Users\TVK\AppData\Roaming\Microsoft\Windows\Start Menu\Uninstall PureVPN.lnk
2018-11-23 20:41 - 2018-11-23 20:41 - 000000000 ____D C:\ProgramData\pure_ovpn
2018-11-23 20:38 - 2018-11-23 20:38 - 000007062 _____ C:\Users\TVK\Desktop\cc_20181123_203830.reg
2018-11-23 20:37 - 2018-11-23 20:37 - 000226294 _____ C:\Users\TVK\Desktop\cc_20181123_203733.reg
2018-11-23 19:10 - 2018-11-23 19:10 - 000000784 _____ C:\Users\Public\Desktop\CCleaner.lnk
2018-11-23 18:27 - 2018-11-23 18:27 - 000000278 _____ C:\Users\TVK\AppData\Local\temp.bat
2018-11-23 16:22 - 2018-11-23 16:23 - 020154692 _____ C:\Users\TVK\Downloads\Silverlight7.zip
2018-11-23 15:45 - 2018-11-24 13:04 - 000000000 ____D C:\ProgramData\SecTaskMan
2018-11-23 15:44 - 2018-11-23 15:44 - 000001160 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spy Protector.lnk
2018-11-23 15:44 - 2018-11-23 15:44 - 000001149 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security Task Manager.lnk
2018-11-23 15:44 - 2018-11-23 15:44 - 000000000 ____D C:\Program Files (x86)\Security Task Manager
2018-11-23 00:06 - 2018-11-23 00:06 - 000123654 _____ C:\Users\TVK\Desktop\Office 2016 Professional Plus.pdf
2018-11-22 19:57 - 2018-12-15 00:43 - 000000000 ____D C:\FRST
2018-11-18 22:45 - 2018-11-18 22:45 - 003452930 _____ C:\Users\TVK\Desktop\4467107.csv
2018-11-18 21:56 - 2018-11-18 21:56 - 000031776 _____ (Microsoft Corporation) C:\Users\TVK\Desktop\pciclearstalecache_f9e6352a8a36bd5304229012049c66ab267923f2.exe
2018-11-18 12:29 - 2018-12-14 23:53 - 000000000 ____D C:\Users\TVK\Desktop\Update-Problem

==================== Ein Monat: Geänderte Dateien und Ordner ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2018-12-15 00:26 - 2009-07-14 05:45 - 000023392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-12-15 00:26 - 2009-07-14 05:45 - 000023392 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-12-15 00:20 - 2010-07-15 18:52 - 000000000 ____D C:\Program Files (x86)\Vuze
2018-12-15 00:19 - 2010-07-02 13:46 - 000000000 ____D C:\Users\TVK
2018-12-14 23:52 - 2016-11-22 18:44 - 000001208 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2018-12-14 23:52 - 2016-11-22 18:44 - 000001204 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2018-12-14 11:27 - 2016-11-23 00:44 - 000002218 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2018-12-14 11:20 - 2016-11-22 18:43 - 000000000 ____D C:\Program Files (x86)\Dropbox
2018-12-13 22:29 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\NDF
2018-12-13 22:25 - 2018-04-11 21:26 - 000004128 _____ C:\Windows\System32\Tasks\CCleaner Update
2018-12-12 21:11 - 2010-08-11 22:36 - 000002519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2018-12-12 21:11 - 2010-07-25 14:51 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
2018-12-12 18:28 - 2014-01-08 00:08 - 000000000 ___RD C:\Users\TVK\Google Drive
2018-12-12 18:26 - 2015-11-15 01:13 - 000000000 ___RD C:\Users\TVK\OneDrive
2018-12-12 18:22 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-12-12 11:03 - 2017-09-25 00:11 - 000003162 _____ C:\Windows\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2995023867-192957892-1741380443-1001
2018-12-12 11:02 - 2018-10-04 22:30 - 000002167 _____ C:\Users\TVK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2018-12-11 11:40 - 2014-06-01 18:04 - 000003160 _____ C:\Windows\System32\Tasks\P4GIntlCtrl
2018-12-11 11:40 - 2013-07-27 12:56 - 000000000 ____D C:\ProgramData\TuneUp Software
2018-12-11 11:30 - 2009-08-04 10:51 - 018841264 _____ C:\Windows\system32\perfh007.dat
2018-12-11 11:30 - 2009-08-04 10:51 - 006090982 _____ C:\Windows\system32\perfc007.dat
2018-12-11 11:30 - 2009-07-14 06:13 - 000006268 _____ C:\Windows\system32\PerfStringBackup.INI
2018-12-11 00:46 - 2016-11-15 17:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2018-12-11 00:46 - 2012-10-14 11:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-12-06 22:55 - 2017-09-20 20:59 - 000000000 ____D C:\Users\TVK\AppData\Roaming\Dashlane
2018-12-06 22:54 - 2018-10-04 22:30 - 000001912 _____ C:\Users\TVK\Desktop\Dashlane.lnk
2018-12-06 22:48 - 2009-07-14 03:34 - 044564480 _____ C:\Windows\system32\config\SYSTEM_tureg_old
2018-12-06 22:46 - 2009-07-14 03:34 - 000262144 _____ C:\Windows\system32\config\SAM_tureg_old
2018-12-05 22:15 - 2018-10-07 19:58 - 000004506 _____ C:\Windows\System32\Tasks\Adobe Flash Player NPAPI Notifier
2018-12-05 22:15 - 2014-12-01 02:08 - 000004366 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2018-12-05 22:15 - 2012-08-17 13:14 - 000842240 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2018-12-05 22:15 - 2011-06-28 13:21 - 000175104 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2018-12-05 22:13 - 2012-02-17 17:38 - 000000000 ____D C:\Windows\system32\Macromed
2018-12-05 22:12 - 2010-03-31 19:24 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2018-12-04 16:59 - 2017-02-18 13:02 - 000000000 ____D C:\Users\TVK\AppData\Local\CrashDumps
2018-12-04 15:51 - 2015-11-15 00:54 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2018-12-04 15:41 - 2010-03-31 18:43 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2018-11-30 20:00 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\ModemLogs
2018-11-29 11:52 - 2015-12-03 23:14 - 000000000 ____D C:\sunPATH
2018-11-28 12:12 - 2016-01-25 23:57 - 000003862 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1453762570
2018-11-28 12:12 - 2010-07-15 19:01 - 000000000 ____D C:\Program Files (x86)\Opera
2018-11-28 11:48 - 2018-01-12 16:27 - 005107504 _____ C:\Windows\system32\FNTCACHE.DAT
2018-11-28 11:39 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\AppCompat
2018-11-26 07:18 - 2011-06-06 23:53 - 000000000 ____D C:\Program Files\CCleaner
2018-11-25 21:54 - 2010-03-31 19:35 - 000003755 _____ C:\Windows\system32\ServiceFilter.ini
2018-11-25 20:51 - 2016-12-04 16:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PureVPN
2018-11-25 00:15 - 2010-03-31 19:35 - 000004554 _____ C:\Windows\system32\AutoRunFilter.ini
2018-11-24 20:13 - 2013-06-30 20:29 - 000000000 ____D C:\Users\TVK\Desktop\Cinearte
2018-11-24 12:27 - 2013-02-28 04:44 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2018-11-23 22:45 - 2014-01-06 14:23 - 000000000 ____D C:\ProgramData\Package Cache
2018-11-23 22:36 - 2018-11-09 11:54 - 000000000 ____D C:\Program Files (x86)\Avira
2018-11-23 20:41 - 2016-12-04 16:58 - 000000000 ____D C:\ProgramData\purevpn
2018-11-23 20:40 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2018-11-23 20:39 - 2016-12-04 16:58 - 000000000 ____D C:\Program Files (x86)\PureVPN
2018-11-23 20:08 - 2010-09-22 22:28 - 000000000 ____D C:\Users\TVK\AppData\Roaming\DivX
2018-11-23 20:08 - 2010-09-22 22:28 - 000000000 ____D C:\Program Files (x86)\DivX
2018-11-23 20:08 - 2010-09-22 22:27 - 000000000 ____D C:\Program Files\DivX
2018-11-23 20:08 - 2010-09-22 22:25 - 000000000 ____D C:\ProgramData\DivX
2018-11-23 20:01 - 2011-02-04 05:00 - 000000000 ____D C:\Program Files (x86)\BBSAK
2018-11-23 15:28 - 2017-09-20 20:59 - 000000000 ____D C:\Users\TVK\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dashlane
2018-11-23 13:56 - 2010-09-26 14:14 - 000000000 ____D C:\Users\TVK\AppData\Roaming\vlc
2018-11-18 13:02 - 2013-07-18 09:33 - 000000000 ____D C:\Windows\system32\MRT
2018-11-18 12:38 - 2010-07-17 11:42 - 137810048 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-11-23 00:43 - 2016-11-23 01:00 - 050063360 _____ () C:\Program Files (x86)\GUT9869.tmp
2015-05-19 09:17 - 2015-05-19 09:17 - 006420480 _____ () C:\Program Files (x86)\GUTB03E.tmp
2013-11-21 17:06 - 2013-11-21 17:06 - 000000132 _____ () C:\Users\TVK\AppData\Roaming\Adobe PNG Format CS5 Prefs
2014-12-05 22:59 - 2014-12-05 22:59 - 000000132 _____ () C:\Users\TVK\AppData\Roaming\Adobe PNG Format CS6 Prefs
2013-06-25 20:40 - 2013-06-25 20:41 - 000469200 _____ () C:\Users\TVK\AppData\Roaming\CodecsLE_Install.log
2012-05-09 10:44 - 2012-05-09 10:50 - 000027214 _____ () C:\Users\TVK\AppData\Roaming\Comma Separated Values (Windows).ADR
2018-04-25 20:26 - 2018-04-25 20:45 - 000066359 _____ () C:\Users\TVK\AppData\Roaming\Comma Separated Values.ADR
2010-10-19 00:29 - 2010-10-19 00:30 - 000178168 _____ () C:\Users\TVK\AppData\Roaming\DXDriver_Install.log
2010-10-19 00:30 - 2010-10-19 00:30 - 000181416 _____ () C:\Users\TVK\AppData\Roaming\FlamethrowerDriver_Install.log
2010-10-19 00:31 - 2010-10-19 00:42 - 010051704 _____ () C:\Users\TVK\AppData\Roaming\MediaComposer_Install.log
2010-10-19 00:28 - 2010-10-19 00:29 - 000189982 _____ () C:\Users\TVK\AppData\Roaming\PACEDrivers_Install.log
2010-08-18 20:37 - 2015-09-30 19:40 - 000043588 _____ () C:\Users\TVK\AppData\Roaming\Rim.Desktop.Exception.log
2010-08-18 19:49 - 2018-10-26 14:37 - 000027953 _____ () C:\Users\TVK\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2011-06-08 18:24 - 2015-09-30 19:40 - 000022869 _____ () C:\Users\TVK\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-02-18 19:37 - 2015-09-30 19:40 - 000015015 _____ () C:\Users\TVK\AppData\Roaming\Rim.Transcoder.Exception.log
2011-01-21 04:02 - 2013-11-21 17:04 - 000001456 _____ () C:\Users\TVK\AppData\Local\Adobe Save for Web 12.0 Prefs
2013-12-01 14:52 - 2018-06-20 10:16 - 000001456 _____ () C:\Users\TVK\AppData\Local\Adobe Save for Web 13.0 Prefs
2018-01-27 17:34 - 2018-05-28 23:36 - 000007680 _____ () C:\Users\TVK\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-07-25 20:07 - 2010-07-25 20:07 - 000000036 _____ () C:\Users\TVK\AppData\Local\housecall.guid.cache
2018-02-12 19:02 - 2018-02-12 19:02 - 000000081 _____ () C:\Users\TVK\AppData\Local\onedrive.live.com.url
2018-11-08 18:49 - 2018-11-08 18:49 - 000000218 _____ () C:\Users\TVK\AppData\Local\recently-used.xbel
2011-08-11 21:52 - 2011-08-11 21:52 - 000000017 _____ () C:\Users\TVK\AppData\Local\resmon.resmoncfg
2018-11-23 18:27 - 2018-11-23 18:27 - 000000278 _____ () C:\Users\TVK\AppData\Local\temp.bat

Einige Dateien in TEMP:
====================
2018-12-15 00:20 - 2018-12-15 00:20 - 000035680 _____ () C:\Users\TVK\AppData\Local\Temp\i4jdel0.exe

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\Windows\system32\winlogon.exe => Datei ist digital signiert
C:\Windows\system32\wininit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\wininit.exe => Datei ist digital signiert
C:\Windows\explorer.exe => Datei ist digital signiert
C:\Windows\SysWOW64\explorer.exe => Datei ist digital signiert
C:\Windows\system32\svchost.exe => Datei ist digital signiert
C:\Windows\SysWOW64\svchost.exe => Datei ist digital signiert
C:\Windows\system32\services.exe => Datei ist digital signiert
C:\Windows\system32\User32.dll => Datei ist digital signiert
C:\Windows\SysWOW64\User32.dll => Datei ist digital signiert
C:\Windows\system32\userinit.exe => Datei ist digital signiert
C:\Windows\SysWOW64\userinit.exe => Datei ist digital signiert
C:\Windows\system32\rpcss.dll => Datei ist digital signiert
C:\Windows\system32\dnsapi.dll => Datei ist digital signiert
C:\Windows\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\Windows\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2018-01-11 17:47

==================== Ende von FRST.txt ============================

Addition.txt
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 09.12.2018
durchgeführt von TVK (15-12-2018 00:47:46)
Gestartet von C:\Users\TVK\Desktop\Update-Problem
Windows 7 Home Premium Service Pack 1 (X64) (2010-07-02 12:45:53)
Start-Modus: Normal
==========================================================

==================== Konten: =============================

89E832966D204D0FB264 (S-1-5-21-2995023867-192957892-1741380443-1004 - Limited - Enabled)
Administrator (S-1-5-21-2995023867-192957892-1741380443-500 - Administrator - Disabled)
ED520674BE4F4E9C9246 (S-1-5-21-2995023867-192957892-1741380443-1005 - Limited - Enabled)
Gast (S-1-5-21-2995023867-192957892-1741380443-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-2995023867-192957892-1741380443-1002 - Limited - Enabled)
TVK (S-1-5-21-2995023867-192957892-1741380443-1001 - Administrator - Enabled) => C:\Users\TVK

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Bitdefender Virenschutz (Enabled - Up to date) {0E17DB7D-A20F-62CE-B95B-17DB0CDFE318}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Bitdefender Spyware-Schutz (Enabled - Up to date) {B5763A99-8435-6D40-83EB-2CA97758A9A5}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

64 Bit HP CIO Components Installer (HKLM\...\{BE930E38-7BB3-45B6-85B2-5251F374F844}) (Version: 6.2.2 - Hewlett-Packard) Hidden
7-Zip 18.01 (x64 edition) (HKLM\...\{23170F69-40C1-2702-1801-000001000000}) (Version: 18.01.00.0 - Igor Pavlov)
ABBYY FineReader 12 Professional (HKLM-x32\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.0.501 - ABBYY Production LLC)
ABC Amber BlackBerry Converter (HKLM-x32\...\ABC Amber BlackBerry Converter) (Version: - )
ACDSee 10 Photo Manager (HKLM-x32\...\{F8B98EB6-FC06-45BF-87D4-9784E0408611}) (Version: 10.0.219 - ACD Systems International)
Activation Assistant for the 2007 Microsoft Office suites (HKLM-x32\...\{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}) (Version: 1.0 - Microsoft Corporation) Hidden
Adobe Acrobat 9 Pro Extended - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7761-000000000004}{AC76BA86-1033-F400-7761-000000000004}) (Version: 9.0.0 - Adobe Systems)
Adobe Acrobat 9 Pro Extended 64-bit Add-On (HKLM\...\{AC76BA86-1033-0000-0064-0003D0000004}) (Version: 9.0.0 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.101 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.0 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
AirParrot 2 (HKLM\...\{CC57CDC1-8E77-4A81-92D0-033202E6EFC4}) (Version: 2.7.5.0 - Squirrels)
Akamai NetSession Interface (HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Akamai) (Version: - Akamai Technologies, Inc)
Alcor Micro USB Card Reader (HKLM-x32\...\{331C520E-D8C3-4AB9-ADF7-A666A3561922}) (Version: 1.3.17.25001 - Alcor Micro Corp.) Hidden
Alcor Micro USB Card Reader (HKLM-x32\...\InstallShield_{331C520E-D8C3-4AB9-ADF7-A666A3561922}) (Version: 1.3.17.25001 - Alcor Micro Corp.)
Alien Skin Eye Candy 7 (HKLM\...\Alien Skin Eye Candy 7) (Version: - Alien Skin)
AliIM Plugins for Browser (HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\AliIM Plugins for Browser) (Version: 1.0 - Alibaba(China) Co., Ltd)
Amazon MP3-Downloader 1.0.17 (HKLM-x32\...\Amazon MP3-Downloader) (Version: 1.0.17 - Amazon Services LLC)
AnyDVD (HKLM-x32\...\AnyDVD) (Version: 8.0.9.2 - RedFox)
Apple Application Support (HKLM-x32\...\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}) (Version: 2.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
ARRI Lighting Service Manager Version 2.2.0-13605 (HKLM-x32\...\{5BBB7762-97E0-4D29-816E-CFCDFA5C6E36}_is1) (Version: 2.2.0-13605 - Arnold & Richter Cine Technik GmbH & Co. Betriebs KG)
AstroWorld 8.0 expert edition (HKLM-x32\...\AstroWorld 8.0 expert edition) (Version: 8.0.0.7 - AstroWorld Int. - Stefan Nitschke -)
ASUS AI Recovery (HKLM-x32\...\{06585B02-F20D-4AB2-9A64-86EF2AE0F8F0}) (Version: 1.0.7 - ASUS)
ASUS FancyStart (HKLM-x32\...\{F0DF4513-3C4C-4EB8-8012-2C5F70AF3988}) (Version: 1.0.6 - ASUSTeK Computer Inc.)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.20 - ASUS)
ASUS Live Update (HKLM-x32\...\{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}) (Version: 2.5.9 - ASUS)
ASUS MultiFrame (HKLM-x32\...\{9D48531D-2135-49FC-BC29-ACCDA5396A76}) (Version: 1.0.0019 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{91EFE3A1-585E-4F66-B5F6-F118F56C4C47}) (Version: 1.1.25 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0007 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.19 - asus)
ASUS_UL_Series_Screensaver (HKLM-x32\...\ASUS_UL_Series_Screensaver) (Version: - )
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0006 - ASUS)
Attribute Changer 8.20 (HKLM-x32\...\{27263813-8BDE-4CD2-84D3-02536743428A}_is1) (Version: 8.20 - Romain Petges)
Audiograbber 1.83 SE (HKLM-x32\...\Audiograbber) (Version: 1.83 SE - Audiograbber)
Avid Audio Drivers (x64) (HKLM\...\{2F227ACA-204C-4529-BA33-D095C42C72DB}) (Version: 8.0.4 - Avid)
Avid Codecs LE (HKLM-x32\...\{BD499241-5AD0-407A-8935-7549997C3930}) (Version: 2.3.8 - Ihr Firmenname)
Avid FX (64 Bit) (HKLM\...\{AB2B030E-2F67-4BA1-B353-F1F89879DE05}) (Version: 6.0.0 - Boris FX, Inc.)
Avid License Control (HKLM-x32\...\{F187D064-F101-4E95-8D05-4027809AA0F8}) (Version: 3.0.0 - Avid Technology, Inc.)
Avid Media Composer (HKLM\...\{32363C25-8898-4D6A-B06A-6C811D253C6F}) (Version: 6.5.2000 - Avid Technology, Inc.)
AviSynth 2.6 (HKLM-x32\...\AviSynth) (Version: 2.6.0.2 - GPL Public release.)
Backup and Sync from Google (HKLM\...\{608EBDC6-D18A-4CF6-AD54-EE6B71D29065}) (Version: 3.43.1584.4446 - Google, Inc.)
BEIKS English-German-English Dictionary for BlackBerry (HKLM-x32\...\BEIKS English-German-English Dictionary for BlackBerry) (Version: - )
Biet-O-Matic v2.14.12 (HKLM-x32\...\Biet-O-Matic v2.14.12) (Version: 2.14.12 - BOM Development Team)
Bing Maps 3D (HKLM\...\{6ACE7F46-FACE-4125-AE86-672F4F2A6A28}) (Version: 4.0.903.16005 - Microsoft Corporation)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 1.0.1 - Bitdefender)
Bitdefender Antivirus Plus (HKLM\...\Bitdefender) (Version: 23.0.14.61 - Bitdefender)
Bonjour (HKLM\...\{B91110FB-33B4-468B-90C2-4D5E8AE3FAE1}) (Version: 2.0.2.0 - Apple Inc.)
Bonjour-Druckdienste (HKLM\...\{0DA20600-6130-443B-9D4B-F30520315FA6}) (Version: 2.0.2.0 - Apple Inc.)
Canon MP Navigator EX 2.0 (HKLM-x32\...\MP Navigator EX 2.0) (Version: - )
Canon Utilities EOS Utility (HKLM-x32\...\EOS Utility) (Version: 2.10.2.0 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
CanoScan LiDE 100 Scanner Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2413) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.49 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.6795 - CDBurnerXP)
ChessJam (HKLM-x32\...\{DC0C599C-6F4F-793E-2BA1-35C87F49DF0F}) (Version: 4.1.0 - HD Interactive of Tampa Bay) Hidden
ChessJam (HKLM-x32\...\ChessJam.808D34EF1AE2806F00104989FE66F8BDE6B323D7.1) (Version: 4.1.0 - HD Interactive of Tampa Bay)
Choice Guard (HKLM-x32\...\{8FFC5648-FAF8-43A3-BC8F-42BA1E275C4E}) (Version: 1.2.87.0 - Microsoft Corporation) Hidden
Cinema Craft Encoder SP v2.67.00.27 RETAIL dONGLE cRACKED (HKLM-x32\...\Cinema Craft Encoder SP v2.67.00.27 RETAIL dONGLE cRACKED) (Version: - )
CodeMeter Runtime Kit v5.22a (HKLM\...\{8D299F2C-A3C8-49A5-A726-E885AB397243}) (Version: 5.22.1508.501 - WIBU-SYSTEMS AG)
ControlDeck (HKLM-x32\...\{5B65EF64-1DFA-414A-8C94-7BB726158E21}) (Version: 1.0.4 - ASUS)
Cool Edit Pro 2.1 (HKLM-x32\...\Cool Edit Pro 2.1) (Version: - )
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1908 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3509a - CyberLink Corp.)
CyberViewX (HKLM-x32\...\{D20A621F-5933-4185-922D-51D187670690}) (Version: 5.16.50 - CyberViewX)
Dashlane (HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Dashlane) (Version: 6.1848.0.15588 - Dashlane, Inc.)
dBpoweramp Music Converter (HKLM-x32\...\dBpoweramp Music Converter) (Version: - )
DJ_SF_06_D1600_SW_Min (HKLM-x32\...\{C9B2F671-870B-43A0-8B9D-7DB30CEBD87E}) (Version: 140.0.690.000 - Hewlett-Packard) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 63.4.107 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.141.1 - Dropbox, Inc.) Hidden
DVDx 4.0 (HKLM-x32\...\DVDx 4.0) (Version: 4.0 - labDV)
DVDx 4.0 Open Edition (HKLM-x32\...\DVDx 4.0 Open Edition) (Version: 4.0 (Open Edition) - labDV)
Electrum (HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Electrum) (Version: 2.6.4 - Electrum Technologies GmbH)
EOSInfo (HKLM-x32\...\{CC23FF9A-989C-4DEB-8970-50E6E4862315}) (Version: 0.2.0 - astrojargon.net)
Epson Event Manager (HKLM-x32\...\{03B8AA32-F23C-4178-B8E6-09ECD07EAA47}) (Version: 2.40.0001 - SEIKO EPSON CORPORATION)
EPSON Scan (HKLM-x32\...\EPSON Scanner) (Version: - Seiko Epson Corporation)
EPSON TX125 Series Printer Uninstall (HKLM\...\EPSON TX125 Series) (Version: - SEIKO EPSON Corporation)
Equalify Pro (HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Equalify Pro 1.1.7) (Version: 1.1.7 - Leonardsen Software)
eReg (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
ETDWare PS/2-x64 7.0.5.9_WHQL (HKLM\...\Elantech) (Version: - )
Eye Candy 4000 (HKLM-x32\...\Eye Candy 4000) (Version: - )
FARO LS 1.1.406.58 (HKLM-x32\...\{951B0F30-9F1A-4BF6-B3DA-99EB0E917B1C}) (Version: 4.6.58.2 - FARO Scanner Production)
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.4 - ASUS)
FileZilla Client 3.24.0 (HKLM-x32\...\FileZilla Client) (Version: 3.24.0 - Tim Kosse)
FormatFactory 2.20 (HKLM-x32\...\FormatFactory) (Version: 2.20 - Free Time)
Free DWG Viewer 7.1 (HKLM-x32\...\{B8B4D43C-EAA0-4EEC-B93E-D4D012316286}) (Version: 7.1 - IGC)
FreeStyler (HKLM-x32\...\FreeStyler 1024_is1) (Version: - Raphaël Wellekens)
GetDataBack for FAT and GetDataBack for NTFS (HKLM-x32\...\{49C09E32-B9FD-4EDC-9152-9BC0CC618A13}) (Version: 3.03.000 - Runtime Software)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Drive (HKLM-x32\...\{9BC95947-92FD-438B-A168-C01F9A5B7292}) (Version: 2.34.7529.6838 - Google, Inc.)
Google Earth Pro (HKLM\...\{F914BC59-918A-498F-B2E3-B274C9CB48A8}) (Version: 7.3.2.5491 - Google)
Google Talk Plugin (HKLM-x32\...\{6D2A900D-EB39-3386-8D9F-3B8F069C57A5}) (Version: 4.2.1.14031 - Google)
Google Toolbar for Internet Explorer (HKLM-x32\...\{18455581-E099-4BA8-BC6B-F34B2F06600C}) (Version: 1.0.0 - Google Inc.) Hidden
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.8231.2252 - Google Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Google+ Auto Backup (HKLM-x32\...\{A50DE037-B5C0-4C8A-8049-B0C576B313D1}) (Version: 1.0.21.81 - Google)
Gpg4win (2.3.2) (HKLM-x32\...\GPG4Win) (Version: 2.3.2 - The Gpg4win Project)
GSmartControl (HKLM-x32\...\GSmartControl) (Version: 1.1.1 - Alexander Shaduri)
HDClone 6 Free Edition (HKLM\...\Miray.HDClone.fe.6.0.7.1031-{94203BDD-B6D8-4FE5-884E-7ECB1293405B}) (Version: 6 - Miray Software AG)
HFSExplorer 0.23.1 (HKLM-x32\...\HFSExplorer) (Version: 0.23.1 - Catacombae Software)
HP DeskJet 3630 series - Grundlegende Software für das Gerät (HKLM\...\{B86356DF-08E9-4321-88A4-0E36D958AD32}) (Version: 35.0.61.54677 - Hewlett-Packard Co.)
HP DeskJet 3630 series Hilfe (HKLM-x32\...\{1E7FEA2B-A4FB-4C6D-996D-360F5B065111}) (Version: 35.0.0 - Hewlett Packard)
HP Deskjet D1600 Printer Driver 14.0 Rel. 6 (HKLM\...\{96178C0A-BAF9-4E49-A2A5-CDE76722105B}) (Version: 14.0 - HP)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.1.0 - LIGHTNING UK!)
inSSIDer Office (HKLM-x32\...\{E909E6D9-706A-4863-AC63-29F5D89443AE}) (Version: 4.4.1.6 - MetaGeek, LLC)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 9.5.6.1001 - Intel Corporation)
IrfanView 64 (remove only) (HKLM\...\IrfanView) (Version: 4.40 - Irfan Skiljan)
jAlbum (HKLM-x32\...\{E87F1FFB-A689-4AB4-B79C-4FC4AAF4A1FD}) (Version: 11.6.14 - Jalbum AB)
Java 8 Update 171 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
Java 8 Update 171 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180171F0}) (Version: 8.0.1710.11 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
jetAudio Basic VX (HKLM-x32\...\{DF8195AF-8E6F-4487-A0EE-196F7E3F4B8A}) (Version: 8.0.14 - COWON)
Junk Mail filter update (HKLM-x32\...\{4AB8B41B-3AF1-46BE-99B0-0ACD3B300C0A}) (Version: 14.0.8050.1202 - Microsoft Corporation) Hidden
License Support (HKLM\...\{3165EA9B-36CC-499B-96FF-36FC30E10EF4}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.) Hidden
License Support (HKLM-x32\...\InstallShield_{3165EA9B-36CC-499B-96FF-36FC30E10EF4}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
Logitech Unifying-Software 2.50 (HKLM\...\Logitech Unifying) (Version: 2.50.25 - Logitech)
Macromedia FreeHand MX (HKLM-x32\...\{8B4AE751-7055-4518-87B0-E148A8D50D0A}) (Version: 11 - Macromedia)
Magic ISO Maker v5.5 (build 0265) (HKLM-x32\...\Magic ISO Maker v5.5 (build 0265)) (Version: - )
MagicDisc 2.7.106 (HKLM-x32\...\MagicDisc 2.7.106) (Version: - )
MEGAsync (HKLM-x32\...\MEGAsync) (Version: - Mega Limited)
Microsoft .NET Framework 4.7.2 (Deutsch) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1031) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProPlusRetail - en-us) (Version: 16.0.11029.20079 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\OneDriveSetup.exe) (Version: 18.222.1104.0007 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50907.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2012 Express LocalDB (HKLM\...\{E4A1FDA3-689D-44DA-9B39-86BD2270F522}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{3965C9F9-9B9A-4391-AC4B-8388210D3AA0}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft Sync Framework Runtime Native v1.0 (x86) (HKLM-x32\...\{8A74E887-8F0F-4017-AF53-CBA42211AAA5}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Sync Framework Services Native v1.0 (x86) (HKLM-x32\...\{BD64AF4A-8C80-4152-AD77-FCDDF05208AB}) (Version: 1.0.1215.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570 (HKLM\...\{8338783A-0968-3B85-AFC7-BAAE0A63DC50}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM-x32\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{b341426f-8543-4e0d-96c3-e976f8ec5ab6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 RC Redistributable (x86) - 14.10.24728 (HKLM-x32\...\{38602f72-a7f8-456b-84e5-6e200dc99917}) (Version: 14.10.24728.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 (HKLM-x32\...\{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}) (Version: 4.0.20823.0 - Microsoft Corporation)
MKVtoolnix 4.1.1 (HKLM-x32\...\MKVtoolnix) (Version: 4.1.1 - Moritz Bunkus)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 60.3.0.6912 - Mozilla)
Mozilla Thunderbird 60.3.3 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 60.3.3 (x86 de)) (Version: 60.3.3 - Mozilla)
Mp3tag v2.90b (HKLM-x32\...\Mp3tag) (Version: 2.90b - Florian Heidenreich)
MSVC80_x64 (HKLM\...\{68660049-8D48-427C-9FF7-139D8340CDC0}) (Version: 1.0.1.0 - Nokia) Hidden
MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86 (HKLM-x32\...\{212748BB-0DA5-46DE-82A1-403736DC9F27}) (Version: 1.0.1.0 - Nokia) Hidden
MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 and SOAP Toolkit 3.0 (HKLM-x32\...\{32343DB6-9A52-40C9-87E4-5E7C79791C87}) (Version: 1.0.0.0 - Webroot Software, Inc.) Hidden
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM-x32\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
MyPhoneExplorer (HKLM-x32\...\MPE) (Version: 1.8.8 - F.J. Wechselberger)
Native Instruments Traktor DJ Studio 3 (HKLM-x32\...\Native Instruments Traktor DJ Studio 3) (Version: - )
NewBlue 3D Explosions for Windows (HKLM-x32\...\NewBlue 3D Explosions for Windows) (Version: - )
NewBlue 3D Transformations for Windows (HKLM-x32\...\NewBlue 3D Transformations for Windows) (Version: - )
NewBlue Film Effects for Windows (HKLM-x32\...\NewBlue Film Effects for Windows) (Version: - )
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.0.1 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.11029.20079 - Microsoft Corporation) Hidden
Opera Stable 56.0.3051.116 (HKLM-x32\...\Opera 56.0.3051.116) (Version: 56.0.3051.116 - Opera Software)
Paragon HFS+ for Windows™ 10.4 (HKLM-x32\...\{456534C0-51E7-11DF-B336-005056C00008}) (Version: 1.00 - Paragon Software)
PC Connectivity Solution (HKLM-x32\...\{C373F7C4-05D2-4047-96D1-6AF30661C6AA}) (Version: 11.4.19.0 - Nokia)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PixiePack Codec Pack (HKLM-x32\...\{9C450606-ED24-4958-92BA-B8940C99D441}) (Version: 1.1.400.0 - None)
Pixum Fotowelt (HKLM-x32\...\Pixum Fotowelt) (Version: 6.3.6 - CEWE Stiftung u Co. KGaA)
PureVPN (HKLM-x32\...\{5a4554ca-71a3-4c6e-81df-0cbfecee4836}) (Version: 6.3.0.0 - ) Hidden
PureVPN (HKLM-x32\...\PureVPN) (Version: 6.3.0.0 - PureVPN)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
QuickTime MPEG2 (HKLM-x32\...\{12EAE4F0-8770-451C-B4AD-76B569678973}) (Version: 7.60.92.0 - Apple Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8117 - Realtek Semiconductor Corp.)
Realtek USB Wireless LAN Driver (HKLM-x32\...\InstallShield_{DBCC4C27-F949-482b-B786-7B3B67587CD2}) (Version: 3.00.0014 - REALTEK Semiconductor Corp.)
REALTEK Wireless LAN Driver and Utility (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: 1.00.0243 - REALTEK Semiconductor Corp.)
Replay Music 7 (7.0.1.54) (HKLM-x32\...\Replay Music 7) (Version: 7.0.1.54 - Applian Technologies)
Replay Music 8 (8.0.1.27) (HKLM-x32\...\Replay Music 8) (Version: 8.0.1.27 - Applian Technologies)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
SDFormatter (HKLM-x32\...\{A5355F15-F98B-4704-9BAE-E53B9FE48F48}) (Version: 3.1.0 - SD Association)
Security Task Manager 2.3 (HKLM-x32\...\Security Task Manager) (Version: 2.3 - Neuber Software)
Sentinel Protection Installer 7.4.0 (HKLM-x32\...\{5A180ED5-0AC1-410A-B790-5E0319CD0A93}) (Version: 7.4.0 - SafeNet, Inc.)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 5.9.9216 - Skype Technologies S.A.)
Skype Version 8.19 (HKLM-x32\...\Skype_is1) (Version: 8.19 - Skype Technologies S.A.)
Smart Switch (HKLM-x32\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM-x32\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.1.17054.16 - Samsung Electronics Co., Ltd.)
SoundTaxi Media Suite 4.0.1 (HKLM-x32\...\STMediaSuite) (Version: 4.0.1 - Ramka Ltd.)
Spotify (HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Spotify) (Version: 1.0.92.390.g2ce5ec7d - Spotify AB)
SRS Premium Sound Control Panel (HKLM\...\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}) (Version: 1.8.1200 - SRS Labs, Inc.)
SuperNova (HKLM-x32\...\{CAEFD497-C350-4504-A282-3B04E17023D3}) (Version: 4.0.0 - LumenRadio AB)
SuperVoip (HKLM-x32\...\{5C8714C0-96DF-4073-8F74-1268277D3DC8}) (Version: 2.04.0000 - Finarea SA Switzerland)
Sybex AstroWorld Tao (HKLM-x32\...\Sybex AstroWorld Tao) (Version: - )
Sybex AstroWorld Today (HKLM-x32\...\Sybex AstroWorld Today) (Version: - )
Sybex AstroWorld Universe (HKLM-x32\...\Sybex AstroWorld Universe) (Version: AstroWorld Universe(tm) - AstroWorld Int.)
TAMRON TAP-in Utility Ver 1.3.0 (HKLM-x32\...\TAMRON TAP-in Utility_is1) (Version: 1.3.0 - TAMRON Co., Ltd.)
TCP/IP Manager 4.1.1 (Build 29) (HKLM-x32\...\TCP/IP Manager) (Version: 4.1.1 (Build 29) - Adrian-Costin Tundrea)
TeamViewer 13 (HKLM-x32\...\TeamViewer) (Version: 13.0.6447 - TeamViewer)
Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.428.000 - Hewlett-Packard) Hidden
Total Commander (Remove or Repair) (HKLM-x32\...\Totalcmd) (Version: 7.55a - Ghisler Software GmbH)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.12 - Ghisler Software GmbH)
TradeManager 2013 Beta2 (HKLM-x32\...\TradeManager) (Version: - Alibaba (China) Network Technology Co., Ltd.)
tulox Freeware-Wörterbuch (Spanisch) (HKLM-x32\...\tulox Freeware-Wörterbuch (Spanisch)) (Version: - )
Tunebite (HKLM-x32\...\{FA41F625-513A-4C57-A9A8-B93B8F6EE371}) (Version: 7.1.2017.1700 - RapidSolution Software AG)
TuneUp Utilities 2014 (de-DE) (HKLM-x32\...\{EA594E28-547D-4FB5-AED8-3628EFB1474D}) (Version: 14.0.1000.340 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}) (Version: 14.0.1000.340 - TuneUp Software) Hidden
TuneUp Utilities 2014 (HKLM-x32\...\TuneUp Utilities) (Version: 14.0.1000.340 - TuneUp Software)
TuneUp Utilities Language Pack (en-US) (HKLM-x32\...\{A6F5703D-A4B1-4857-9EDD-DC0ABBBB0D96}) (Version: 13.0.3000.138 - TuneUp Software) Hidden
USB 2.0 UVC 0.3M WebCam (HKLM\...\USB 2.0 UVC 0.3M WebCam) (Version: - )
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version: - VB-Audio Software)
VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.17 - IDRIX)
Virtual DJ - Atomix Productions (HKLM-x32\...\Virtual DJ - Atomix Productions) (Version: - )
Visual C++ 64-bit Redistributables (HKLM-x32\...\InstallShield_{5B0E60DB-7741-412F-88B3-E6975D30D019}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
Visual C++ Redistributables (HKLM-x32\...\InstallShield_{C2AF7B2D-7018-414B-9B8B-D3C9F3BED04F}) (Version: 1.1.0.0929 - PACE Anti-Piracy, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.4 - VideoLAN)
VoipConnect (HKLM-x32\...\VoipConnect_is1) (Version: 4.14 build 770 - Finarea S.A. Switzerland)
WIDCOMM Bluetooth Software (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9600 - Broadcom Corporation)
Wide Screen Software's sunPATH (HKLM-x32\...\widescreen) (Version: - )
Winamp (HKLM-x32\...\Winamp) (Version: 5.572 - Nullsoft, Inc)
Winamp Erkennungs-Plug-in (HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
Windows 7 USB/DVD Download Tool (HKLM-x32\...\{CCF298AF-9CE1-4B26-B251-486E98A34789}) (Version: 1.0.30 - Microsoft Corporation)
Windows Driver Package - Cambridge Silicon Radio Ltd. (CSRBC) USB (04/21/2011 01.0.0.0) (HKLM\...\BEA7B05370C19B9C86893BB484FD6B9CC52B0CD8) (Version: 04/21/2011 01.0.0.0 - Cambridge Silicon Radio Ltd.)
Windows Live Anmelde-Assistent (HKLM-x32\...\{83E2CFA9-E0EB-4E08-9F85-43E577FF3D60}) (Version: 5.000.818.6 - Microsoft Corporation)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Sync (HKLM-x32\...\{8C1E2925-14F8-45AA-B999-1E2A74BF5607}) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live-Uploadtool (HKLM-x32\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM-x32\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows-Treiberpaket - FTDI CDM Driver Package - Bus/D2XX Driver (08/26/2014 2.12.00) (HKLM\...\705E68198CF680B29D08A3D99A38DD6800FA3ED6) (Version: 08/26/2014 2.12.00 - FTDI)
Windows-Treiberpaket - FTDI CDM Driver Package - VCP Driver (08/26/2014 2.12.00) (HKLM\...\35942942AC9822AE32C956444EF22BB146DF6368) (Version: 08/26/2014 2.12.00 - FTDI)
Windows-Treiberpaket - libusbK uDMX (04/27/2014 3.0.7.0) (HKLM\...\C51F425A37B9DA646C3FE465693A12ECBE4BA173) (Version: 04/27/2014 3.0.7.0 - libusbK)
Windows-Treiberpaket - Nokia pccsmcfd (08/22/2008 7.0.0.0) (HKLM\...\FCEC33AD40CEA5E0FC4CEE6E42041A0DA189652D) (Version: 08/22/2008 7.0.0.0 - Nokia)
Windows-Treiberpaket - STMicroelectronics (STTub30) USB (07/05/2012 3.0.4.0) (HKLM\...\4A1A85C6E9813B77863C2401251A5284B1923DA4) (Version: 07/05/2012 3.0.4.0 - STMicroelectronics)
Windows-Treiberpaket - STMicroelectronics (usbser) Ports (04/25/2010 1.3.1) (HKLM\...\1628ECA16EA833D7F30DD35215E306FAD333DF83) (Version: 04/25/2010 1.3.1 - STMicroelectronics)
Windows-Treiberpaket - TAMRON Co., Ltd. (usbser) Ports (03/01/2016 1.0.0.0) (HKLM\...\222CA7B1DBE06A88D4244B13D3860211B103F91C) (Version: 03/01/2016 1.0.0.0 - TAMRON Co., Ltd.)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.29.0 - ASUS)
WinPcap 4.1.2 (HKLM-x32\...\WinPcapInst) (Version: 4.1.0.2001 - CACE Technologies)
Wireless Console 3 (HKLM-x32\...\{20FDF948-C8ED-4543-A539-F7F4AEF5AFA2}) (Version: 3.0.13 - ASUS)
Wondershare Photo Recovery(build 2.0.3) (HKLM-x32\...\Wondershare Photo Recovery_is1) (Version: - Wondershare Software)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2995023867-192957892-1741380443-1001_Classes\CLSID\{3E4F331E-F0D2-134E-73F3-376654155076}\InprocServer32 -> C:\Windows\system32\ole32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2995023867-192957892-1741380443-1001_Classes\CLSID\{4CEEAF57-0208-4CA4-A473-914C2D2FFC23}\InprocServer32 -> C:\Program Files (x86)\Trademanager\AliIMX_64.dll (Alibaba (China) Co., Ltd.)
CustomCLSID: HKU\S-1-5-21-2995023867-192957892-1741380443-1001_Classes\CLSID\{5D09DD40-CDC4-4C56-B615-0D1E3B357C2B}\InprocServer32 -> C:\Program Files (x86)\Trademanager\AliIMX_64.dll (Alibaba (China) Co., Ltd.)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync64.dll [2018-10-04] (Google)
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => C:\Users\TVK\AppData\Local\MEGAsync\ShellExtX64.dll [2018-10-05] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => C:\Users\TVK\AppData\Local\MEGAsync\ShellExtX64.dll [2018-10-05] ()
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => C:\Users\TVK\AppData\Local\MEGAsync\ShellExtX64.dll [2018-10-05] ()
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers1: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\TVK\AppData\Local\MEGAsync\ShellExtX64.dll [2018-10-05] ()
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-06-11] (Adobe Systems Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-10-04] (Google)
ContextMenuHandlers1: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\GNU\GnuPG\bin\gpgex.dll [2016-07-05] (g10 Code GmbH)
ContextMenuHandlers1: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-22] (MagicISO, Inc.)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-10-15] (Florian Heidenreich)
ContextMenuHandlers1-x32: [MyPhoneExplorer] -> {A372C6DF-7A85-41B1-B3B0-D1E24073DCBF} => C:\Program Files (x86)\MyPhoneExplorer\DLL\ShellMgr.dll [2010-03-30] (F.J. Wechselberger)
ContextMenuHandlers1-x32-x32: [OpenFolder] -> {0DE1378D-F811-40E6-B60A-1CC56F57D3E9} => C:\Program Files (x86)\Trademanager\AliIMExt.dll [2012-11-23] (Alibaba (China) Co., Ltd.)
ContextMenuHandlers1-x32-x32-x32: [Tunebite] -> {F57A1D82-A108-468a-B2D2-8AA57530F834} => C:\Program Files (x86)\RapidSolution\Tunebite 7\TunebiteShellExtension.dll [2010-01-12] (RapidSolution Software AG)
ContextMenuHandlers1-x32-x32-x32: [TuneUp Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\TuneUp Utilities 2014\SDShelEx-x64.dll [2014-07-16] (TuneUp Software)
ContextMenuHandlers2: [ACShell] -> {D3F9A525-8824-497A-BE36-B23E22F141FC} => C:\Program Files (x86)\Attribute Changer\acshell.dll [2016-02-15] (Romain Petges)
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-10-15] (Florian Heidenreich)
ContextMenuHandlers3: [ACShell] -> {D3F9A525-8824-497A-BE36-B23E22F141FC} => C:\Program Files (x86)\Attribute Changer\acshell.dll [2016-02-15] (Romain Petges)
ContextMenuHandlers3: [jetAudio] -> {8D1636FD-CA49-4B4E-90E4-0A20E03A15E8} => C:\Program Files (x86)\JetAudio\JetFlExt64.dll [2010-08-05] (JetAudio)
ContextMenuHandlers4: [###MegaContextMenuExt] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => C:\Users\TVK\AppData\Local\MEGAsync\ShellExtX64.dll [2018-10-05] ()
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu64.dll [2018-10-04] (Google)
ContextMenuHandlers4: [GpgEX] -> {CCD955E4-5C16-4A33-AFDA-A8947A94946B} => C:\Program Files (x86)\GNU\GnuPG\bin\gpgex.dll [2016-07-05] (g10 Code GmbH)
ContextMenuHandlers4: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-22] (MagicISO, Inc.)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2018-10-15] (Florian Heidenreich)
ContextMenuHandlers4: [TuneUp Disk Space Explorer Shell Extension] -> {4838CD50-7E5D-4811-9B17-C47A85539F28} => C:\Program Files (x86)\TuneUp Utilities 2014\DseShExt-x64.dll [2014-07-16] (TuneUp Software)
ContextMenuHandlers4: [TuneUp Shredder Shell Extension] -> {4858E7D9-8E12-45a3-B6A3-1CD128C9D403} => C:\Program Files (x86)\TuneUp Utilities 2014\SDShelEx-x64.dll [2014-07-16] (TuneUp Software)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.26.0.dll [2018-12-13] (Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2009-07-28] (Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2009-08-28] (NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\..\Acrobat Elements\ContextMenu64.dll [2008-06-11] (Adobe Systems Inc.)
ContextMenuHandlers6: [jetAudio] -> {8D1636FD-CA49-4B4E-90E4-0A20E03A15E8} => C:\Program Files (x86)\JetAudio\JetFlExt64.dll [2010-08-05] (JetAudio)
ContextMenuHandlers6: [MagicISO] -> {DB85C504-C730-49DD-BEC1-7B39C6103B7A} => C:\Program Files (x86)\MagicISO\misosh64.dll [2008-05-22] (MagicISO, Inc.)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {029F8E56-B70E-4CCF-AFD7-7C2D5F6F8BB0} - System32\Tasks\ASUS P4G => C:\Program Files\P4G\BatteryLife.exe [2009-11-07] (ATK)
Task: {0AAF33BF-1881-4B6A-B608-837F1EF4E87F} - System32\Tasks\{07564958-AD2F-49D6-849C-90A022434195} => C:\Windows\system32\pcalua.exe -a C:\Windows\twain_32\CyberViewX\CyberViewX.exe -d C:\Windows\twain_32\CyberViewX\
Task: {1055E3A4-5472-4500-86E6-4F02B0E5D5DC} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2018-12-05] (Adobe Systems Incorporated)
Task: {17D1B5ED-02A3-49A7-A963-4C907642CCBF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-12-04] (Microsoft Corporation)
Task: {1A7FECD3-34EB-43D6-B908-CF21D1F7588A} - System32\Tasks\{01C6E998-4AEE-453A-986B-30F0403D6E67} => C:\Windows\system32\pcalua.exe -a C:\Users\TVK\Desktop\AmazonMP3DownloaderInstall.exe -d C:\Users\TVK\Desktop
Task: {217BE6CE-8431-4FC2-97ED-A00408A3A7D3} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {242B4262-B0A6-4F97-AF2F-789C9FD03224} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-27] (Google Inc.)
Task: {255BE043-065D-4500-A01F-A022A6D01F6E} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_101_Plugin.exe [2018-12-05] (Adobe Systems Incorporated)
Task: {2A25708B-BFF8-4281-B8EF-96506D31A376} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2995023867-192957892-1741380443-1001UA => C:\Users\TVK\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-30] (Google Inc.)
Task: {2AACF547-0EEC-4F3C-9563-AA6C76F9CFE0} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [2018-11-23] (AVAST Software)
Task: {2D8803BA-6248-4755-9685-D4EFB9CD4612} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2018-11-06] (Piriform Software Ltd)
Task: {326DD8A3-A574-4766-89D6-F416013FAC78} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-15] (Microsoft Corporation)
Task: {3D4A7505-2F74-4146-B48F-E3D20D368FC0} - System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013 => C:\Program Files (x86)\TuneUp Utilities 2014\OneClick.exe [2014-07-16] (TuneUp Software)
Task: {4B709E11-2999-4F69-999A-BE9AAD5790EA} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-22] (Dropbox, Inc.)
Task: {4D495001-DAE6-45E2-9D36-D4B69550BAB5} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-04-13] (Realtek Semiconductor)
Task: {4E17DBA1-0407-40DC-B174-1659799FF1B1} - System32\Tasks\{0B44DF11-779A-4119-80A8-946C67EFA249} => C:\Windows\system32\pcalua.exe -a D:\Installierbar\Sunpath\11-2010\sunPATH_download\sunpath_install\setup.exe -d D:\Installierbar\Sunpath\11-2010\sunPATH_download\sunpath_install
Task: {5366A272-9092-49E7-AA48-45A8E50FCDE1} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {58DFFA3B-715F-426C-A22D-9BD70A33D5CD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2018-11-15] (Microsoft Corporation)
Task: {5EF47B1B-DD3F-40BA-A73A-651F709098C6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2995023867-192957892-1741380443-1001Core => C:\Users\TVK\AppData\Local\Google\Update\GoogleUpdate.exe [2012-09-30] (Google Inc.)
Task: {685F9C51-48D1-4CF8-9FAE-A8F80B3BC6AD} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {6FD7A0C4-AE5E-4E39-85DE-DA57887CEA7C} - System32\Tasks\P4GIntlCtrl => C:\Program Files\P4G\IntlCtrl.exe [2009-09-23] (TODO: <Company name>)
Task: {7C5A80E1-65A5-4BB2-AADF-BE30EAB21EE1} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [2016-11-22] (Dropbox, Inc.)
Task: {7F769103-0870-4067-BB67-5066851201F3} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-12-04] (Microsoft Corporation)
Task: {897D3B40-545E-420B-908F-E14256D5D964} - System32\Tasks\Opera scheduled Autoupdate 1453762570 => c:\program files (x86)\opera\launcher.exe [2018-11-26] (Opera Software)
Task: {8FB1AB7E-5E57-47A8-90E8-45E7875C1B08} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {902C40B1-1CE5-42D5-A4A7-65CCDC300621} - System32\Tasks\{274B7A48-137E-4215-870D-D0057145691B} => C:\Windows\system32\pcalua.exe -a C:\Windows\unvise32qt.exe -c C:\Windows\system32\QuickTime\Uninstall.log
Task: {9042B50D-6C78-483C-9D40-4676EF5E7595} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-12-04] (Microsoft Corporation)
Task: {9305B136-718E-45F4-96AA-59D24F826484} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2018-12-04] (Microsoft Corporation)
Task: {93BC9621-A2A3-4868-B6AB-AF8848F9CA19} - System32\Tasks\{40023E27-804B-48D3-B6E4-040471E83C7D} => C:\Program Files (x86)\Skype\Phone\Skype.exe
Task: {9A71D7B1-FF64-4960-98D7-CB93C2E6499B} - System32\Tasks\RtHDVBg_ListenToDevice => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2017-04-13] (Realtek Semiconductor)
Task: {9BFAB747-52AE-498E-9B16-9261A6FE3B22} - System32\Tasks\{FF137603-C79B-4E61-BE30-FEF9C13F8F02} => C:\Windows\system32\pcalua.exe -a C:\Users\TVK\Desktop\activescan2_de.exe -d C:\Users\TVK\Desktop
Task: {9EA05D53-17D9-4DB9-97C9-E904B0098DE9} - System32\Tasks\TCP IP Manager => C:\Users\TVK\AppData\Roaming\TCP IP Manager\TCP_IP_Manager.exe [2015-03-13] (Adrian-Costin Tundrea)
Task: {9EDB049A-8720-459E-9FF8-CD4A28409810} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17] (ASUS)
Task: {A1612B7B-8410-477B-B0F6-25850C473F3A} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2018-11-15] (Bitdefender)
Task: {A19110DC-EC73-4CB1-83BB-A617C29D5582} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe [2007-11-30] ()
Task: {A5B8F710-6FDC-4B78-9255-4AF431108CE8} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2009-05-18] (ASUS)
Task: {A60D79A5-E401-4D06-8946-1947978ABD2A} - System32\Tasks\WC3 => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2009-10-23] ()
Task: {B3D9F662-9387-4EAF-A604-5B16F2922459} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [2018-11-06] (Piriform Ltd)
Task: {C2511E8A-A46E-422A-95B5-17820E8E62A8} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-2995023867-192957892-1741380443-1001 => C:\Users\TVK\AppData\Local\MEGAsync\MEGAupdater.exe [2018-10-05] (Mega Limited)
Task: {C620CABC-68B6-4DD0-B41C-EFF0EE831C89} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [2018-12-04] (Microsoft Corporation)
Task: {C79E9197-953C-40AD-AABA-D51F9E8A9673} - System32\Tasks\Java Update Scheduler => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2018-03-28] (Oracle Corporation)
Task: {D76C5B12-E7FA-4DCF-A064-E5A0E469FF01} - System32\Tasks\SmartShare => C:\Program Files (x86)\LG Software\LG Smart Share\SmartShareStart.exe
Task: {D8703DB9-C75B-4BD8-A2DC-715B7B5AFC54} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [2018-12-04] (Microsoft Corporation)
Task: {DBBBC759-D9D8-48A8-8BB1-74AB8F336C7B} - System32\Tasks\{39CC2C71-5AC4-4688-83E5-AEC4F96E8419} => C:\Windows\system32\pcalua.exe -a C:\Users\TVK\Desktop\710_b042_multilanguage.exe -d C:\Users\TVK\Desktop
Task: {EAEAC2C5-4713-4731-956C-27AEB539080B} - System32\Tasks\{28DFF783-062B-46C4-B09A-669003607D50} => C:\Windows\system32\pcalua.exe -a "C:\Users\TVK\Desktop\Astroworld Expert Edition\Astroworld_Expert_Edition_P01849-01_cb431.exe" -d "C:\Users\TVK\Desktop\Astroworld Expert Edition"
Task: {EE93C065-9781-4D10-8650-E8004E106AD9} - System32\Tasks\Avast TUNEUP Update => C:\Program Files (x86)\AVAST Software\Avast Cleanup\TUNEUpdate.exe
Task: {F44BA667-C06E-4635-B715-2F4F2A105952} - System32\Tasks\ASUSControlDeck => C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe [2009-09-24] ()

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2995023867-192957892-1741380443-1001Core.job => C:\Users\TVK\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2995023867-192957892-1741380443-1001UA.job => C:\Users\TVK\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\TCP IP Manager.job => C:\Users\TVK\AppData\Roaming\TCP IP Manager\TCP_IP_Manager.exe

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

ShortcutWithArgument: C:\Users\TVK\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\cf44704c78be601a\Tabs Outliner.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=eggkanocgddhmamlbiijnphhppkpkmkl

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2018-11-24 23:39 - 2018-11-24 23:39 - 000994752 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_02951_002\ashttpbr.mdl
2018-11-24 23:39 - 2018-11-24 23:39 - 000544880 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_02951_002\ashttpdsp.mdl
2018-11-24 23:39 - 2018-11-24 23:39 - 003240080 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_02951_002\ashttpph.mdl
2018-11-24 23:39 - 2018-11-24 23:39 - 001530368 _____ () C:\Program Files\Bitdefender\Bitdefender Security\otengines_02951_002\ashttprbl.mdl
2016-07-05 11:50 - 2016-07-05 11:50 - 000216576 _____ () C:\Program Files (x86)\GNU\GnuPG\dirmngr.exe
2018-07-13 16:09 - 2018-11-12 15:59 - 000105736 _____ () C:\Program Files (x86)\PureVPN\PureVPNService.exe
2010-03-31 19:34 - 2007-11-30 19:20 - 000051768 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe
2009-10-23 13:40 - 2009-10-23 13:40 - 000041984 _____ () C:\Program Files\P4G\DevMng.dll
2009-09-11 12:27 - 2009-09-11 12:27 - 000029184 _____ () C:\Program Files\P4G\OvrClk.dll
2009-09-24 17:50 - 2009-09-24 17:50 - 000053888 _____ () C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
2009-10-23 00:45 - 2009-10-23 00:45 - 001593344 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
2017-01-13 20:10 - 2017-01-13 20:10 - 000052400 _____ () C:\Program Files\FileZilla FTP Client\fzshellext_64.dll
2014-05-01 15:13 - 2018-10-05 01:27 - 000598528 _____ () C:\Users\TVK\AppData\Local\MEGAsync\ShellExtX64.dll
2014-07-16 09:24 - 2014-07-16 09:24 - 000699704 _____ () C:\Program Files (x86)\TuneUp Utilities 2014\avgrepliba.dll
2018-10-04 19:44 - 2018-10-04 19:44 - 046459080 _____ () C:\Program Files\Google\Drive\googledrivesync.exe
2014-09-30 01:51 - 2014-09-30 01:51 - 000074664 _____ () C:\Program Files (x86)\RedFox\AnyDVD\ADvdDiscHlp64.exe
2018-12-12 18:24 - 2018-12-12 18:24 - 000113664 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\_ctypes.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000080896 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\bz2.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 001792512 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\_hashlib.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000128512 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32api.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000137728 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\pywintypes27.dll
2018-12-12 18:24 - 2018-12-12 18:24 - 000548864 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\pythoncom27.dll
2018-12-12 18:24 - 2018-12-12 18:24 - 000689664 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\unicodedata.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000438784 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32com.shell.shell.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 001489408 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\wx._core_.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 001007104 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\wx._gdi_.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 001039872 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\wx._windows_.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 001325056 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\wx._controls_.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000916992 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\wx._misc_.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 001084416 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\pysqlite2._sqlite.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000149504 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32file.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000136192 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32security.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000007680 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\hashobjs_ext.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000020992 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\thumbnails_ext.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000118784 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\usb_ext.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000047616 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\_socket.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 002224640 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\_ssl.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000014848 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\common.time34.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000023040 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32event.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000034304 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\windows.conditional.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000020480 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\windows.winwrap.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000110080 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\windows.volumes.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000223232 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32gui.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000173568 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\_elementtree.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000169472 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\pyexpat.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000048128 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32inet.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000103424 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\wx._html2.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000046080 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\_psutil_windows.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000633272 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\windows._cacheinvalidation.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000011776 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32crypt.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000301568 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\PIL._imaging.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000032256 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\_multiprocessing.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 005752320 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\cello.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000026112 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\_yappi.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000044032 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32process.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000027648 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32pipe.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000010752 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\select.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000029696 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32pdh.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000038400 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\windows.connectivity.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000073216 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\windows.device_monitor.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000020480 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32profile.pyd
2018-12-12 18:24 - 2018-12-12 18:24 - 000026624 _____ () C:\Users\TVK\AppData\Local\Temp\_MEI46482\win32ts.pyd
2018-12-14 11:27 - 2018-12-12 06:11 - 005237216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libglesv2.dll
2018-12-14 11:27 - 2018-12-12 06:11 - 000117216 _____ () C:\Program Files (x86)\Google\Chrome\Application\71.0.3578.98\libegl.dll
2016-07-05 11:38 - 2016-07-05 11:38 - 000222720 _____ () C:\Program Files (x86)\GNU\GnuPG\libksba-8.dll
2016-07-05 11:32 - 2016-07-05 11:32 - 000103424 _____ () C:\Program Files (x86)\GNU\GnuPG\libgpg-error-0.dll
2016-07-05 11:27 - 2016-07-05 11:27 - 000050176 _____ () C:\Program Files (x86)\GNU\GnuPG\libw32pth-0.dll
2016-07-05 11:38 - 2016-07-05 11:38 - 000073728 _____ () C:\Program Files (x86)\GNU\GnuPG\libassuan-0.dll
2016-07-05 11:41 - 2016-07-05 11:41 - 000750592 _____ () C:\Program Files (x86)\GNU\GnuPG\libgcrypt-20.dll
2018-01-22 00:11 - 2013-02-27 17:17 - 000221184 _____ () C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\EnumDevLib.dll
2018-10-06 01:32 - 2009-12-23 16:32 - 000058880 _____ () C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IsdiInterop.dll
2008-06-12 01:46 - 2008-06-12 01:46 - 008413184 _____ () c:\program files (x86)\adobe\acrobat 9.0\acrobat\exlang32.deu
2008-06-12 01:22 - 2008-06-12 01:22 - 001708032 _____ () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\plug_ins\Annots.DEU
2008-06-11 23:00 - 2008-06-11 23:00 - 000237568 _____ () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\sqlite.dll
2008-06-12 01:22 - 2008-06-12 01:22 - 000102400 _____ () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\plug_ins\EScript.DEU
2008-06-12 01:27 - 2008-06-12 01:27 - 000005120 _____ () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\plug_ins\Updater.DEU
2008-05-07 20:33 - 2008-05-07 20:33 - 000417792 _____ () C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\AdobeXMP.dll
2017-01-13 20:10 - 2017-01-13 20:10 - 000048304 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2018-12-14 11:19 - 2018-12-13 06:12 - 001140552 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_watchdog.dll
2018-12-14 11:19 - 2018-12-13 06:12 - 002103112 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_crashpad.dll
2018-12-11 21:36 - 2018-12-13 06:16 - 000023376 _____ () C:\Program Files (x86)\Dropbox\Client\tornado.speedups.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000025456 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._constant_time.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:12 - 000148968 _____ () C:\Program Files (x86)\Dropbox\Client\_cffi_backend.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 001878888 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._openssl.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\cryptography.hazmat.bindings._padding.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:12 - 000118232 _____ () C:\Program Files (x86)\Dropbox\Client\pywintypes35.dll
2018-12-11 21:36 - 2018-12-13 06:12 - 000109024 _____ () C:\Program Files (x86)\Dropbox\Client\win32api.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000083784 _____ () C:\Program Files (x86)\Dropbox\Client\fastpath.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:12 - 000418776 _____ () C:\Program Files (x86)\Dropbox\Client\pythoncom35.dll
2018-12-14 11:19 - 2018-12-13 06:15 - 000074072 _____ () C:\Program Files (x86)\Dropbox\Client\psutil._psutil_windows.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32event.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000049128 _____ () C:\Program Files (x86)\Dropbox\Client\win32process.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000026600 _____ () C:\Program Files (x86)\Dropbox\Client\win32clipboard.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000131552 _____ () C:\Program Files (x86)\Dropbox\Client\win32file.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000182752 _____ () C:\Program Files (x86)\Dropbox\Client\win32gui.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000027616 _____ () C:\Program Files (x86)\Dropbox\Client\win32pipe.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000119272 _____ () C:\Program Files (x86)\Dropbox\Client\win32security.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:16 - 000401752 _____ () C:\Program Files (x86)\Dropbox\Client\win32com.shell.shell.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000028640 _____ () C:\Program Files (x86)\Dropbox\Client\win32job.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:16 - 000034664 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.kernel32.compiled._winffi_kernel32.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:16 - 000062304 _____ () C:\Program Files (x86)\Dropbox\Client\winshell.compiled._winshell.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:12 - 000023520 _____ () C:\Program Files (x86)\Dropbox\Client\mmapfile.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000053736 _____ () C:\Program Files (x86)\Dropbox\Client\win32service.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000065504 _____ () C:\Program Files (x86)\Dropbox\Client\win32evtlog.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:14 - 000025944 _____ () C:\Program Files (x86)\Dropbox\Client\cpuid.compiled._cpuid.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:16 - 000068968 _____ () C:\Program Files (x86)\Dropbox\Client\winenumhandles.compiled._WinEnumHandles.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:16 - 000028520 _____ () C:\Program Files (x86)\Dropbox\Client\winscreenshot.compiled._CaptureScreenshot.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000027488 _____ () C:\Program Files (x86)\Dropbox\Client\crashpad.compiled._Crashpad.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000032224 _____ () C:\Program Files (x86)\Dropbox\Client\win32ts.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000156504 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineWidgets.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000092496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt562.sip.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 001778000 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtCore.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000518992 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtNetwork.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000052056 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngineCore.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 001929552 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtGui.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 003821392 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWidgets.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000044888 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebChannel.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000132944 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKit.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000218456 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebKitWidgets.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000205656 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtPrintSupport.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000061408 _____ () C:\Program Files (x86)\Dropbox\Client\win32print.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:16 - 000051552 _____ () C:\Program Files (x86)\Dropbox\Client\winrpcserver.compiled._RPCServer.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:12 - 000027624 _____ () C:\Program Files (x86)\Dropbox\Client\win32profile.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:16 - 000033632 _____ () C:\Program Files (x86)\Dropbox\Client\winreindex.compiled._winreindex.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:16 - 000028008 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.user32.compiled._winffi_user32.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.iphlpapi.compiled._winffi_iphlpapi.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:16 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winerror.compiled._winffi_winerror.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.wininet.compiled._winffi_wininet.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000031600 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox.infinite.win.compiled._driverinstallation.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:12 - 000486880 _____ () C:\Program Files (x86)\Dropbox\Client\winxpgui.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:16 - 000029040 _____ () C:\Program Files (x86)\Dropbox\Client\winverifysignature.compiled._VerifySignature.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 011727696 _____ () C:\Program Files (x86)\Dropbox\Client\nucleus_python.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000029024 _____ () C:\Program Files (x86)\Dropbox\Client\librsyncffi.compiled._librsyncffi.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:12 - 000036312 _____ () C:\Program Files (x86)\Dropbox\Client\librsync.dll
2018-12-11 21:36 - 2018-12-13 06:16 - 000025960 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.advapi32.compiled._winffi_advapi32.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000433992 _____ () C:\Program Files (x86)\Dropbox\Client\dropbox_sqlite_ext.DLL
2018-12-11 21:36 - 2018-12-13 06:16 - 000035680 _____ () C:\Program Files (x86)\Dropbox\Client\wind3d11.compiled._wind3d11.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000025920 _____ () C:\Program Files (x86)\Dropbox\Client\libEGL.DLL
2018-12-14 11:19 - 2018-12-13 06:15 - 001592128 _____ () C:\Program Files (x86)\Dropbox\Client\libGLESv2.dll
2018-12-14 11:20 - 2018-12-13 06:16 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.shell32.compiled._winffi_shell32.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000102736 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWinExtras.cp35-win32.pyd
2018-12-11 21:36 - 2018-12-13 06:16 - 000025448 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.gdi32.compiled._winffi_gdi32.cp35-win32.pyd
2018-12-14 11:20 - 2018-12-13 06:16 - 000029544 _____ () C:\Program Files (x86)\Dropbox\Client\winffi.winhttp.compiled._winffi_winhttp.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000530768 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQuick.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000348496 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtQml.cp35-win32.pyd
2018-12-14 11:19 - 2018-12-13 06:15 - 000037200 _____ () C:\Program Files (x86)\Dropbox\Client\PyQt5.QtWebEngine.cp35-win32.pyd

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\Temp:05E9FFE5 [149]
AlternateDataStreams: C:\ProgramData\Temp:A5C00DEE [380]
AlternateDataStreams: C:\ProgramData\Temp:A8ADE5D8 [109]
AlternateDataStreams: C:\ProgramData\Temp:CB0AACC9 [180]
AlternateDataStreams: C:\ProgramData\Temp

1B5B4F1 [302]
AlternateDataStreams: C:\ProgramData\Temp

BC416F8 [256]
AlternateDataStreams: C:\ProgramData\Temp

FC5A2B2 [308]
AlternateDataStreams: C:\Users\TVK\Cookies:BqyWDWiFq3WaLuNEsoULANMI [680]
AlternateDataStreams: C:\Users\TVK\Lokale Einstellungen:aUmFtP9Y5t5ugY6FCxhPjU [2346]
AlternateDataStreams: C:\Users\TVK\Lokale Einstellungen:kZZRVrFBTADVSvhoT [2454]
AlternateDataStreams: C:\Users\TVK\AppData\Local:aUmFtP9Y5t5ugY6FCxhPjU [2346]
AlternateDataStreams: C:\Users\TVK\AppData\Local:kZZRVrFBTADVSvhoT [2454]
AlternateDataStreams: C:\Users\TVK\AppData\Local\Anwendungsdaten:aUmFtP9Y5t5ugY6FCxhPjU [2346]
AlternateDataStreams: C:\Users\TVK\AppData\Local\Anwendungsdaten:kZZRVrFBTADVSvhoT [2454]
AlternateDataStreams: C:\Users\TVK\AppData\Local\Temporary Internet Files:at7X5KUhoKaajS7bIVsukGV9d [2526]
AlternateDataStreams: C:\Users\TVK\AppData\Local\Temporary Internet Files:uYSiYn5IMiOU9gdLmcQBaq [2802]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)

HKU\S-1-5-21-2995023867-192957892-1741380443-1001\Software\Classes\.scr: AutoCADScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE trusted site: HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\alipay.com -> hxxps://alipay.com
IE trusted site: HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\alipay.com -> hxxp://alipay.com
IE trusted site: HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\alisoft.com -> hxxps://alisoft.com
IE trusted site: HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\alisoft.com -> hxxp://alisoft.com
IE trusted site: HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\taobao.com -> hxxps://taobao.com
IE trusted site: HKU\S-1-5-21-2995023867-192957892-1741380443-1001\...\taobao.com -> hxxp://taobao.com

==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2018-12-15 00:15 - 000002125 _____ C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 adobe.activate.com
127.0.0.1 adobeereg.com
127.0.0.1 www.adobeereg.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 125.252.224.90
127.0.0.1 125.252.224.91
127.0.0.1 hl2rcv.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 shop.audials.com
127.0.0.1 act2.mediafour.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 opd.redfox.bz

==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-2995023867-192957892-1741380443-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\TVK\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.

MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{4242FD1B-B94D-4D5A-B01F-826647941233}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\wlcsdk.exe
FirewallRules: [{A1D84019-8933-436F-A760-BE1D08469AB2}] => (Allow) C:\Program Files (x86)\Windows Live\Sync\WindowsLiveSync.exe
FirewallRules: [TCP Query User{070CB8B5-4422-4AF5-B855-577E35ABEE12}C:\program files (x86)\smartvoip.com\smartvoip\smartvoip.exe] => (Allow) C:\program files (x86)\smartvoip.com\smartvoip\smartvoip.exe
FirewallRules: [UDP Query User{67BE2A66-2618-4035-8B1D-95CE1014F9B8}C:\program files (x86)\smartvoip.com\smartvoip\smartvoip.exe] => (Allow) C:\program files (x86)\smartvoip.com\smartvoip\smartvoip.exe
FirewallRules: [{245B2492-2176-4307-BE5D-02F0156B6E9C}] => (Allow) LPort=57039
FirewallRules: [{41C144DE-9D33-42BD-B864-9196F6A2E3D7}] => (Allow) LPort=57039
FirewallRules: [TCP Query User{91B8F824-0C31-455E-8340-A6839EA09728}C:\programme\totalcmd\totalcmd.exe] => (Allow) C:\programme\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{98137E44-42A6-4FDD-BBE5-3E6601AC04C4}C:\programme\totalcmd\totalcmd.exe] => (Allow) C:\programme\totalcmd\totalcmd.exe
FirewallRules: [{655B3246-D8EF-4821-9F59-5F14D808D4AE}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{393A0F5E-171B-4BBF-AC43-452FF76176C4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{84FB3076-1153-4F5E-A294-F2B4A137B21C}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [{6C2EE01B-5ED9-4881-B729-9D39B7D3ABFE}] => (Allow) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
FirewallRules: [TCP Query User{478B45FC-D959-47FB-8F30-6EF18A089642}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [UDP Query User{C93F67DA-D721-4A09-934E-1FA0F375D36B}C:\program files (x86)\epson software\event manager\eeventmanager.exe] => (Block) C:\program files (x86)\epson software\event manager\eeventmanager.exe
FirewallRules: [TCP Query User{4B874FEE-F048-4A06-B913-06C5EBB889EC}D:\installierbar\digital fusion 4.02\dfusion.exe] => (Allow) D:\installierbar\digital fusion 4.02\dfusion.exe
FirewallRules: [UDP Query User{33DA3762-D4F0-4AE3-ABB7-BD59BC726583}D:\installierbar\digital fusion 4.02\dfusion.exe] => (Allow) D:\installierbar\digital fusion 4.02\dfusion.exe
FirewallRules: [TCP Query User{AD7D3E06-F105-48A0-B8EF-F3352A99CD31}C:\users\tvk\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\tvk\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{FF14F7F0-336B-4C8C-ACF3-B7781072D979}C:\users\tvk\appdata\local\akamai\netsession_win.exe] => (Allow) C:\users\tvk\appdata\local\akamai\netsession_win.exe
FirewallRules: [TCP Query User{38419043-E3FA-4E77-BC11-3FB0D430CFD7}C:\users\tvk\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\tvk\appdata\local\akamai\netsession_win.exe
FirewallRules: [UDP Query User{3C75D1CA-CCA8-4C7F-BC30-18F93B5B14FA}C:\users\tvk\appdata\local\akamai\netsession_win.exe] => (Block) C:\users\tvk\appdata\local\akamai\netsession_win.exe
FirewallRules: [{886BBEED-710A-4B53-865E-3BFEF0A958D3}] => (Allow) C:\Program Files (x86)\Trademanager\AliIM.exe
FirewallRules: [{007662F5-39B1-44D3-9FE0-DE441BCB0077}] => (Allow) C:\Program Files (x86)\Trademanager\AliIM.exe
FirewallRules: [TCP Query User{54975770-3C12-43E1-A907-07E7FA14DC0A}C:\program files (x86)\trademanager\aliim.exe] => (Allow) C:\program files (x86)\trademanager\aliim.exe
FirewallRules: [UDP Query User{720E6054-F5EA-4DC7-A473-64B91F8409F8}C:\program files (x86)\trademanager\aliim.exe] => (Allow) C:\program files (x86)\trademanager\aliim.exe
FirewallRules: [TCP Query User{E4057A78-2772-4F14-8CCC-1CECA5FD176E}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe
FirewallRules: [UDP Query User{6B2435B2-8E5A-4E00-918C-72D2B40FDB0F}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe
FirewallRules: [TCP Query User{0B6A1938-8E8A-495A-8F7B-91E73AE20096}C:\programme\totalcmd\totalcmd.exe] => (Allow) C:\programme\totalcmd\totalcmd.exe
FirewallRules: [UDP Query User{405F191E-EDF0-4F8A-9E7F-06C24EA2E693}C:\programme\totalcmd\totalcmd.exe] => (Allow) C:\programme\totalcmd\totalcmd.exe
FirewallRules: [{20D842B0-DD29-4590-8F5F-6816D1B57F67}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe
FirewallRules: [TCP Query User{B19D3838-E2CC-4870-834F-CCC8AC8701B0}C:\program files (x86)\supervoip\supervoip.exe] => (Allow) C:\program files (x86)\supervoip\supervoip.exe
FirewallRules: [UDP Query User{B35B1153-82A9-4B19-B99F-AB6ABC056D48}C:\program files (x86)\supervoip\supervoip.exe] => (Allow) C:\program files (x86)\supervoip\supervoip.exe
FirewallRules: [TCP Query User{71B30156-EE74-4E91-AFF2-4734439D6C7E}C:\program files (x86)\supervoip\supervoip.exe] => (Allow) C:\program files (x86)\supervoip\supervoip.exe
FirewallRules: [UDP Query User{8A247B0F-9AB4-49FA-8CFC-8E9F2BC8DEF7}C:\program files (x86)\supervoip\supervoip.exe] => (Allow) C:\program files (x86)\supervoip\supervoip.exe
FirewallRules: [TCP Query User{8CA844A5-57A5-4657-913B-4E532F5A69CC}C:\program files\avid\avid media composer\avidbinindexer.exe] => (Allow) C:\program files\avid\avid media composer\avidbinindexer.exe
FirewallRules: [UDP Query User{91F42A22-4547-43F7-B8A9-4EFCC28922CC}C:\program files\avid\avid media composer\avidbinindexer.exe] => (Allow) C:\program files\avid\avid media composer\avidbinindexer.exe
FirewallRules: [TCP Query User{2B7F84E7-20D3-4911-8919-8281EA2A2D91}C:\program files\avid\avid media composer\avidphoneticindexer.exe] => (Allow) C:\program files\avid\avid media composer\avidphoneticindexer.exe
FirewallRules: [UDP Query User{D3DA2F4C-14FF-4803-9217-300463676D37}C:\program files\avid\avid media composer\avidphoneticindexer.exe] => (Allow) C:\program files\avid\avid media composer\avidphoneticindexer.exe
FirewallRules: [{01C05DCB-DCE2-4B08-8B7D-AC9156F6CB28}] => (Block) C:\program files\avid\avid media composer\avidphoneticindexer.exe
FirewallRules: [{54EF767E-C697-4C18-B1CB-C0D273FB43D0}] => (Block) C:\program files\avid\avid media composer\avidphoneticindexer.exe
FirewallRules: [{3EAF4CC8-1D48-4B1A-8D67-3CA77847808E}] => (Block) C:\program files\avid\avid media composer\avidbinindexer.exe
FirewallRules: [{B98466D8-7BC3-4682-8F70-9730B64BCF81}] => (Block) C:\program files\avid\avid media composer\avidbinindexer.exe
FirewallRules: [{A4EA6C20-ED71-4EE2-84BB-8BC4EA163DAC}] => (Block) %ProgramFiles%\Google\Nik Collection\Color Efex Pro 4\Color Efex Pro 4 (64-Bit)\Color Efex Pro 4.exe
FirewallRules: [{789847AE-33E0-4E9F-BEAA-8F42DA26FDE9}] => (Block) %ProgramFiles%\Google\Nik Collection\Color Efex Pro 4\Color Efex Pro 4.exe
FirewallRules: [{380DB0E1-0C91-4411-998E-93758C183C0E}] => (Block) %ProgramFiles%\Google\Nik Collection\Dfine 2\Dfine2.exe
FirewallRules: [{B49BD683-EE3D-4E30-9723-7656621BB133}] => (Block) %ProgramFiles%\Google\Nik Collection\HDR Efex Pro 2\HDR Efex Pro 2 (64-Bit)\HDR Efex Pro 2.exe
FirewallRules: [{71C087E9-124E-42FE-8FFC-7E0B5EDBE38C}] => (Block) %ProgramFiles%\Google\Nik Collection\HDR Efex Pro 2\HDR Efex Pro 2.exe
FirewallRules: [{3F085457-D9CF-4446-A580-80E915A056B7}] => (Block) %ProgramFiles%\Google\Nik Collection\Sharpener Pro 3\SHP3OS.exe
FirewallRules: [{66B5C5CE-494B-40C2-8AC0-57ECA64E5568}] => (Block) %ProgramFiles%\Google\Nik Collection\Sharpener Pro 3\SHP3RPS.exe
FirewallRules: [{9E62DE15-D52F-4043-B4F0-B3129A67275D}] => (Block) %ProgramFiles%\Google\Nik Collection\Silver Efex Pro 2\Silver Efex Pro 2 (64-Bit)\Silver Efex Pro 2.exe
FirewallRules: [{5F715A94-29AD-4DE5-9FD0-28E138012B4C}] => (Block) %ProgramFiles%\Google\Nik Collection\Silver Efex Pro 2\Silver Efex Pro 2.exe
FirewallRules: [{54C88085-48C7-46C7-B1D6-A0C21804D37A}] => (Block) %ProgramFiles%\Google\Nik Collection\Viveza 2\Viveza 2.exe
FirewallRules: [TCP Query User{C8C0C517-E624-4487-8305-B71CB9D9E233}C:\users\tvk\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tvk\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{08D16587-C4AF-41E6-8E4A-21B7E4B620A4}C:\users\tvk\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tvk\appdata\roaming\spotify\spotify.exe
FirewallRules: [TCP Query User{5195C0C2-BD19-4905-BA51-D6B1E2B1AE3C}C:\users\tvk\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tvk\appdata\roaming\spotify\spotify.exe
FirewallRules: [UDP Query User{407F1327-B663-4ED3-9B1E-14A1CF1A7E94}C:\users\tvk\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\tvk\appdata\roaming\spotify\spotify.exe
FirewallRules: [{346D565B-B161-454C-85D7-FD3FD22C96D0}] => (Allow) C:\Program Files (x86)\Virtual WiFi Router\VirtualWiFiRouterLibrary.dll
FirewallRules: [{2CEF18E1-03E1-4FB1-B78F-84A78505C9E5}] => (Allow) C:\Program Files (x86)\Virtual WiFi Router\VirtualWiFiRouterLibrary.dll
FirewallRules: [{0F010093-C095-4CBE-BF8C-5483AF1FC952}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{911892F6-3BAC-4428-B2F2-0738C5EED692}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{2A605A5A-4CFB-489C-B725-D5E06D99A302}] => (Allow) C:\Users\TVK\AppData\Local\Microsoft\OneDrive\OneDrive.exe
FirewallRules: [TCP Query User{568C55A0-41EB-40D4-AE2D-A5EC8FDD225E}C:\programme\totalcmd\totalcmd64.exe] => (Allow) C:\programme\totalcmd\totalcmd64.exe
FirewallRules: [UDP Query User{704268C0-813D-45C3-BFA7-E03DCFDAB92E}C:\programme\totalcmd\totalcmd64.exe] => (Allow) C:\programme\totalcmd\totalcmd64.exe
FirewallRules: [{94A326FE-D97D-4C5B-9EA2-83CD7127EFDF}] => (Block) %ProgramFiles% (x86)\ABBYY FineReader 12\FineReader.exe
FirewallRules: [{F7D7ABA0-6FBA-4220-9722-A8B8166B8E40}] => (Block) %ProgramFiles% (x86)\ABBYY FineReader 12\Bonus.ScreenshotReader.exe
FirewallRules: [{11FEA1A4-E29A-4A41-B4A7-7E2F9CA69662}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{23F77976-F641-498A-A50C-A5164EEE601D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [TCP Query User{5BB8851A-A0FD-4CE1-92A8-CB7B3FE21D66}C:\users\tvk\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\tvk\appdata\local\jdownloader 2.0\jdownloader2.exe
FirewallRules: [UDP Query User{B9AF1F0F-A6FD-4A34-BD8D-F9FABA48E685}C:\users\tvk\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\tvk\appdata\local\jdownloader 2.0\jdownloader2.exe
FirewallRules: [{9973742A-CEAC-4715-AC64-4BF778B99090}] => (Allow) LPort=3332
FirewallRules: [{5A6E6DCB-6E88-4D75-99AA-7F2220E51B59}] => (Allow) %ProgramFiles% (x86)\FreeStyler\FreeStylerX2.exe
FirewallRules: [TCP Query User{3D0297B1-F73C-410E-A24A-58F8EF9BC5DC}C:\program files (x86)\freestyler\art-net to dmx.exe] => (Allow) C:\program files (x86)\freestyler\art-net to dmx.exe
FirewallRules: [UDP Query User{26F0ACB2-B3F8-4751-ACDA-4F96FC1146BF}C:\program files (x86)\freestyler\art-net to dmx.exe] => (Allow) C:\program files (x86)\freestyler\art-net to dmx.exe
FirewallRules: [{ED5E55F1-E6E2-4242-9C8C-21BC242FD0F3}] => (Allow) C:\Program Files\HP\HP DeskJet 3630 series\Bin\DeviceSetup.exe
FirewallRules: [{3C5832D7-34ED-4AF0-92F5-491502812434}] => (Allow) LPort=5357
FirewallRules: [{81A0EE77-51B9-456A-B065-0FBA0F9A2874}] => (Allow) C:\Program Files\HP\HP DeskJet 3630 series\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{DB4C9E68-6D85-4D37-AF67-9D113D86E709}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{073BE4D8-2746-4063-99F5-9C47A10C958D}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{B562B3A1-161E-4185-BADC-E1420F980E50}] => (Allow) C:\Program Files (x86)\PureVPN\vpnclient.exe
FirewallRules: [{B130ACE3-EC13-4FE7-8279-04DDF2FF182C}] => (Allow) C:\Program Files (x86)\Applian Technologies\Replay Music 7\jrmp.exe
FirewallRules: [{A10C002B-01C9-4E6F-99E5-7A4C446E11C9}] => (Allow) C:\Program Files (x86)\Applian Technologies\Replay Music 7\jrmp.exe
FirewallRules: [TCP Query User{8F45EC17-8911-4E26-9462-A9DBC75ED6F7}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [UDP Query User{D9EBD3A7-5C81-41DD-819A-244801CDEB28}C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe] => (Allow) C:\program files (x86)\myphoneexplorer\myphoneexplorer.exe
FirewallRules: [{29B6E660-E251-4C9B-8A56-603DD63A51C5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A757EAC7-7CD7-41C1-AD79-067ACD113AE5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{6C8664A9-5A13-4B32-9FB6-1FD97402D61E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{D3D637C3-5DD2-4587-B60D-6DB25ACFFFB0}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{E1982584-479D-4052-865B-988303205A96}] => (Allow) LPort=53
FirewallRules: [{2AD12DFC-8EBB-4038-812B-4A0DBB4CE3B3}] => (Allow) C:\PROGRA~2\REALTEK\USBWIR~1\RtWlan.exe
FirewallRules: [{7C5C09BB-7EF4-4412-BA5C-78EC5D766735}] => (Allow) LPort=1542
FirewallRules: [{5C025438-8C55-47D0-8501-7674735020CF}] => (Allow) LPort=1542
FirewallRules: [{24399178-A0BF-4C32-A180-AAD9B04AF5CA}] => (Allow) C:\PROGRA~2\REALTEK\USBWIR~1\RtWlan.exe
FirewallRules: [{C7D9E208-FAC8-4719-BF9F-6E2A0757C8B8}] => (Allow) LPort=53
FirewallRules: [{7002DA92-6868-4BB9-9AE7-787A90C798EE}] => (Allow) C:\PROGRA~2\REALTEK\USBWIR~1\Rtldhcp.exe
FirewallRules: [{590BAA96-3FC0-4D42-88BE-49755D12A9E7}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe
FirewallRules: [{B1FFB0E8-4E08-42C1-922B-0456E010E2E5}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe
FirewallRules: [{57402662-E439-476C-B906-1FAD48593694}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe
FirewallRules: [{5477D0B8-BE80-4DC4-8A47-ACF5C71F8F85}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe
FirewallRules: [{90EAE819-D5B4-44BE-B77D-5CCEA5861B99}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe
FirewallRules: [{7D14A311-8223-431E-84DE-C0C6A99AF109}] => (Allow) C:\Program Files (x86)\Realtek\USB Wireless LAN Utility\RTLDHCP.exe
FirewallRules: [TCP Query User{44894918-D409-4BA3-BFE8-E44063F02231}C:\Program Files (x86)\VideoLAN\VLC\vlc.exe] => (Allow) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
FirewallRules: [UDP Query User{E80657F0-FB5E-4E82-8D24-B20FA6C125FD}C:\Program Files (x86)\VideoLAN\VLC\vlc.exe] => (Allow) C:\Program Files (x86)\VideoLAN\VLC\vlc.exe
FirewallRules: [TCP Query User{34F83513-D70F-4E46-B5EC-1F89155F6BD6}C:\program files (x86)\lumenradio ab\supernova\supernova.exe] => (Allow) C:\program files (x86)\lumenradio ab\supernova\supernova.exe
FirewallRules: [UDP Query User{0E2D58C2-0478-489C-A104-62CB4FCBA5DC}C:\program files (x86)\lumenradio ab\supernova\supernova.exe] => (Allow) C:\program files (x86)\lumenradio ab\supernova\supernova.exe
FirewallRules: [{31B4BB1D-D792-4A88-8B8E-768E2773A5C9}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{1CF4201A-ACBA-4964-9B5D-A49721C7ED5E}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
FirewallRules: [{D30FB275-3328-46B7-9767-FCBC4A5E5D9F}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{56E1DB39-4784-42DC-BEA6-A1C2441F8976}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{1BA2D4C8-D0C7-4EA1-85DA-2F1BE3E88D00}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{BBFEB374-DF28-4D6F-A6EA-055B17F4389C}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{0FB30C45-32AE-411C-92B1-E807ECC90CBA}] => (Allow) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
FirewallRules: [{FF82F800-6362-4DB4-B933-5C78272E3C58}] => (Allow) C:\Program Files\AirParrot 2\AirParrot2.exe
FirewallRules: [{77F3C09C-12DD-4600-B803-1517CD901E96}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{731DF20B-4FF2-475C-B377-9D04499B6001}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{A4F83EDE-9986-4DD1-8293-66D790553A3B}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{F8838CED-8607-438E-B896-AA9F382FC3A7}] => (Allow) c:\program files (x86)\opera\56.0.3051.104\opera.exe
FirewallRules: [{A19900ED-9896-40D6-A49C-CE6D57CD0FD0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{5686E824-6984-49B2-8AD7-E982081E4ED3}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe
FirewallRules: [{B095E28C-DC9F-4757-A9A8-D693EB740152}] => (Allow) c:\program files (x86)\opera\56.0.3051.116\opera.exe
FirewallRules: [{0014C2F6-2B8E-4993-A8BA-4BF36DB65C1C}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
FirewallRules: [{F6BC6508-C204-4C3D-ABDE-0081377BBA46}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
DomainProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe] => Enabled:CodeMeter Runtime Server

==================== Wiederherstellungspunkte =========================

==================== Fehlerhafte Geräte im Gerätemanager =============

Name: Atheros AR9285 Wireless Network Adapter
Description: Atheros AR9285 Wireless Network Adapter
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Atheros Communications Inc.
Service: athr
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (12/14/2018 11:35:36 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (12/14/2018 11:35:36 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.

Error: (12/14/2018 01:57:38 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 15195

Error: (12/14/2018 01:57:38 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 15195

Error: (12/14/2018 01:57:38 AM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (12/11/2018 11:30:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3011) (User: NT-AUTORITÄT)
Description: Fehler beim Herunterladen der Zeichenfolgen der Leistungsindikatoren für Dienst "WmiApRpl" (WmiApRpl). Der Fehlercode ist das erste DWORD im Datenbereich.

Error: (12/11/2018 11:30:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Error: (12/11/2018 11:30:56 AM) (Source: Microsoft-Windows-LoadPerf) (EventID: 3012) (User: NT-AUTORITÄT)
Description: Die Zeichenfolgen der Leistungsindikatoren in der Leistungsindikatorenregistrierung werden beschädigt wenn der Prozess "Performance" auf dem Erweiterungsleistungsindikator-Anbieter ausgeführt wird. Der Wert "BaseIndex" aus der Leistungsregistrierung ist das erste DWORD im Datenbereich, der Wert "LastCounter" ist das zweite DWORD im Datenbereich und der Werte "LastHelp" ist das dritte DWORD im Datenbereich.

Systemfehler:
=============
Error: (12/14/2018 11:17:10 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Der Server "{96D1EED3-701E-4FE5-B996-A543A8465897}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (12/12/2018 09:00:13 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst EFS erreicht.

Error: (12/12/2018 09:00:13 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Warten auf eine Transaktionsrückmeldung von Dienst ShellHWDetection erreicht.

Error: (12/12/2018 06:29:31 PM) (Source: Service Control Manager) (EventID: 7022) (User: )
Description: Der Dienst "Windows Update" wurde nicht richtig gestartet.

Error: (12/12/2018 06:24:17 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Das Laden folgender Boot- oder Systemstarttreiber ist fehlgeschlagen:
Aspi32
ESProtectionDriver

Error: (12/12/2018 06:24:17 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Realtek DHCP Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.

Error: (12/12/2018 06:22:54 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "DriverLINX Port I/O Driver" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.

Error: (12/12/2018 06:22:54 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: Aufgrund der Inkompatibilität mit diesem System wurde \SystemRoot\SysWow64\Drivers\DLPortIO.SYS nicht geladen. Wenden Sie sich an den Softwarehersteller, um eine kompatible Version des Treibers zu erhalten.

Windows Defender:
===================================
Date: 2016-11-21 17:29:01.176
Description:
Die Windows Defender-Überprüfung wurde vor Fertigstellung beendet.
Überprüfungs-ID:{0BBD5082-FAED-4EEA-9DA0-420302D6BF6E}
Überprüfungstyp:AntiSpyware
Überprüfungsparameter:Schnellscan
Benutzer:Gekko\TVK

CodeIntegrity:
===================================

Date: 2010-07-31 00:54:46.452
Description:
Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Spyware Doctor\smum64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2010-07-31 00:41:59.390
Description:
Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Spyware Doctor\smum64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2010-07-31 00:03:19.772
Description:
Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Spyware Doctor\smum64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2010-07-30 23:56:42.256
Description:
Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Spyware Doctor\smum64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2010-07-30 23:50:23.149
Description:
Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Spyware Doctor\smum64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

Date: 2010-07-30 23:30:28.479
Description:
Die Abbildintegrität der Datei "\Device\HarddiskVolume2\Program Files (x86)\Spyware Doctor\smum64.dll" konnte nicht überprüft werden, da der Satz seitenbezogener Abbildhashes auf dem System nicht gefunden wurde.

==================== Speicherinformationen ===========================

Prozessor: Genuine Intel(R) CPU U7300 @ 1.30GHz
Prozentuale Nutzung des RAM: 83%
Installierter physikalischer RAM: 4061.02 MB
Verfügbarer physikalischer RAM: 682.73 MB
Summe virtueller Speicher: 8120.2 MB
Verfügbarer virtueller Speicher: 2843.77 MB

==================== Laufwerke ================================

Drive c: (OS) (Fixed) (Total:174.65 GB) (Free:32.33 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive d: (DATA) (Fixed) (Total:489.66 GB) (Free:112.91 GB) NTFS
Drive x: (RECOVERY) (Fixed) (Total:34.31 GB) (Free:23.43 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 698.6 GB) (Disk ID: 742F9C48)
Partition 1: (Not Active) - (Size=34.3 GB) - (Type=0C)
Partition 2: (Active) - (Size=174.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=489.7 GB) - (Type=0F Extended)

==================== Ende von Addition.txt ============================

Corrine · Dec 15, 2018

Hi, Monokongo.

In addition to outdated programs, at least one program installed on your computer is identified as a trojan.

1. Please do a scan with ESET Online Scanner

Temporarily disable your AntiVirus and AntiSpyware protection - instructions here.

Please visit the ESET Online Scanner website
Click the SCAN NOW button to download the esetonlinescanner_enu.exe file to the Desktop
Double click esetonlinescanner_enu.exe. Accept the Terms of Use
Select Enable detection of potentially unwanted applications
In Advanced Settings: make sure that Clean threats automatically is unchecked
And Enable detection of potentially unsafe applications, Enable detection of suspicious applications, Scan archives, and Enable Anti-Stealth technology are all checked.
Click Scan
The program will begin to download it's virus database. The speed may vary depending on your Internet connection.
When completed, the program will begin to scan. This may take several hours. Please, be patient.
Do not do anything on your machine as it may interrupt the scan.
When completed it'll show a list of "Threats found", click beneath it on Save to text file.... and save it as ESET log.txt on your Desktop.
Then click Do not clean. Place a checkmark at Delete application's data on close, click Finish and close the program.

Don't forget to re-enable previously switched-off protection software!

2. Please download Malwarebytes to your desktop.

Double-click mb3-setup-consumer-{version}.exe and follow the prompts to install the program.
Then click Finish.
Once the program has fully updated, select Scan Now on the Dashboard. Or select the Threat Scan from the Scan menu.
If another update of the definitions is available, it will be implemented before the rest of the scanning procedure.
When the scan is complete, make sure that all Threats are selected, and click Remove Selected.
Restart your computer when prompted to do so.
The log is available from the History tab. Please post it contents in your next reply.

Monokongo · Dec 17, 2018

Thanks Corinne for the advise. I ran Eset twice, first time it found items stored in AdwCleaner quarantaine folder sleeping there for years. I think a recent Bitdefender scan deleted attachments in my old Thunderbird profile mail folders. Malwarebytes I ran too.

Eset Log 1
16.12.2018 12:38:49
Files scanned: 618492
Infected files: 66
Cleaned threats: 66
Total scan time 07:00:31
Scan status: Finished
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Conduit\Community Alerts\Alert.dll.vir Win32/Toolbar.Conduit.Y potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\assists\ie_default_search_provider\ARBITER.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AM potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\assists\ie_default_search_provider\ASSIST.EXE.vir a variant of Win32/Toolbar.MyWebSearch.AF potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\assists\ie_enable\ARBITER.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AR potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\assists\ie_enable\ARBITER64.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AR potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jbar.dll.vir a variant of Win32/Toolbar.MyWebSearch.AJ potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jbarsvc.exe.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jdatact.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jdlghk64.dll.vir a variant of Win64/Toolbar.MyWebSearch.B potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jfeedmg.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jhighin.exe.vir a variant of Win32/Toolbar.MyWebSearch.AJ potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jhkstub.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jhtmlmu.dll.vir a variant of Win32/Toolbar.MyWebSearch.AT potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jhttpct.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jidle.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jmedint.exe.vir a variant of Win32/Toolbar.MyWebSearch.AJ potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jmlbtn.dll.vir Win32/Toolbar.MyWebSearch.AS potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jPlugin.dll.vir a variant of Win32/Toolbar.MyWebSearch.AJ potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jregfft.dll.vir a variant of Win32/Toolbar.MyWebSearch.AS potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jreghk.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jscript.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jskin.dll.vir a variant of Win32/Toolbar.MyWebSearch.P potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jskplay.exe.vir a variant of Win32/Toolbar.MyWebSearch.AJ potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jSrchMn.exe.vir a variant of Win32/Toolbar.MyWebSearch.AJ potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jsrchmr.dll.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\4jtpinst.dll.vir a variant of Win32/Toolbar.MyWebSearch.AA potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\APPINTEGRATOR.EXE.vir a variant of Win32/Toolbar.MyWebSearch.AJ potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\AppIntegrator64.exe.vir Win64/Toolbar.MyWebSearch.D potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\APPINTEGRATORSTUB.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AM potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\AppIntegratorStub64.dll.vir a variant of Win64/Toolbar.MyWebSearch.F potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\ASSISTMONITOR.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AU potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\ASSISTMONITOR64.DLL.vir a variant of Win64/Toolbar.MyWebSearch.F potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\BOOTSTRAP.JS.vir JS/Mindspark.C potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\CREXT.DLL.vir a variant of Win32/Toolbar.MyWebSearch.Z potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\CrExtP4j.exe.vir a variant of Win32/Toolbar.MyWebSearch.AR potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\DPNMNGR.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AR potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\FF-NativeMessagingDispatcher.dll.vir a variant of Win32/Toolbar.MyWebSearch.AO potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\HKFXMGR.DLL.vir Win32/Toolbar.MyWebSearch.AR potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\HKFXMGR64.DLL.vir Win64/Toolbar.MyWebSearch.E potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\HPG.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AU potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\Hpg64.dll.vir a variant of Win64/Toolbar.MyWebSearch.F potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\T8EPMSUP.DLL.vir Win32/Toolbar.MyWebSearch.AU potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\T8EXTEX.DLL.vir Win32/Toolbar.MyWebSearch.AU potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\T8EXTPEX.DLL.vir Win32/Toolbar.MyWebSearch.AU potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\T8HTML.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AS potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\T8TICKER.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AE potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\TOOLBARGUARD.DLL.vir a variant of Win32/Toolbar.MyWebSearch.AU potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\TOOLBARGUARD64.DLL.vir a variant of Win64/Toolbar.MyWebSearch.F potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\TPIMANAGERCONSOLE.EXE.vir Win32/Toolbar.MyWebSearch.AI potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\RadioRage_4j\bar\1.bin\VERIFY.DLL.vir Win32/Toolbar.MyWebSearch.AU potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Program Files (x86)\Vuze_Remote\Vuze_RemoteToolbarHelper.exe.vir a variant of Win32/Toolbar.Conduit.AU potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Local\Conduit\APISupport\APISupport_2.0.3.3\ApiSupport.dll.vir a variant of Win32/Conduit.SearchProtect.N potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Local\Conduit\APISupport\APISupport_2.0.4.3\ApiSupport.dll.vir a variant of Win32/Conduit.SearchProtect.N potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Local\Conduit\APISupport\APISupport_2.0.5.9\ApiSupport.dll.vir a variant of Win32/Conduit.SearchProtect.N potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Local\Conduit\APISupport\APISupport.dll.vir a variant of Win32/Conduit.SearchProtect.N potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Local\Conduit\APISupport\APISupport.old.vir a variant of Win32/Conduit.SearchProtect.N potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Local\Conduit\Chrome\CT2504091\CHUninstaller.exe.vir a variant of Win32/Toolbar.Conduit.AR potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Local\Conduit\Chrome\CT2504091\UninstallerUI.exe.vir a variant of Win32/Toolbar.Conduit.AR potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Local\NativeMessaging\CT2504091\1_0_0_10\TBMessagingHost.exe.vir a variant of Win32/Toolbar.Conduit.AH potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\4jffxtbr@RadioRage_4j.com\plugins\NativeMessagingDispatcher.dll.vir Win32/Toolbar.MyWebSearch.AO potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\4jffxtbr@RadioRage_4j.com\bootstrap.js.vir JS/Mindspark.C potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}\Chrome\CT2504091\content\popup.js.vir JS/Toolbar.Conduit.B potentially unwanted application cleaned by deleting
C:\AdwCleaner\Quarantine\C\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\Extensions\{ba14329e-9550-4989-b3f2-9732e92d17cc}\ctypes\FirefoxCtype.dll.vir a variant of Win32/Conduit.SearchProtect.N potentially unwanted application cleaned by deleting
C:\Users\TVK\Desktop\BitDefender Antivirus Free Edition - CHIP-Installer.exe a variant of Win32/DownloadSponsor.C potentially unwanted application cleaned by deleting
C:\Users\TVK\Documents\Funfiles\oeps.exe Win32/BadJoke.AN trojan cleaned by deleting
C:\Windows\System32\config\systemprofile\AppData\Local\DMR\AirParrot - CHIP-Installer.exe a variant of Win32/DownloadSponsor.C potentially unwanted application cleaned by deleting

Malwarebytes
# AdwCleaner 7.0.6.0 - Logfile created on Sat Jan 13 11:44:50 2018
# Updated on 2017/21/12 by Malwarebytes
# Database: 01-11-2018.1
# Running on Windows 7 Home Premium (X64)
# Mode: scan
# Support: Customer Support & Help Center | Malwarebytes

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

PUP.Optional.Chip, C:\Program Files (x86)\Chip Digital GmbH
PUP.Optional.Chip, C:\Windows\Installer\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}

***** [ Files ] *****

PUP.Optional.Legacy, C:\Users\TVK\AppData\Roaming\Mozilla\Firefox\Profiles\8097ad9n.default\invalidprefs.js

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled\{D4027C7F-154A-4066-A1AD-4243D8127440}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Classes\Interface\{E7BC34A1-BA86-11CF-84B1-CBC2DA68BF6C}
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced
PUP.Optional.Legacy, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSyncing
PUP.Optional.Legacy, [Key] - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\hola.org
PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\04A063A0BBEACF54EAEF493C49D9E3F6
PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\04A063A0BBEACF54EAEF493C49D9E3F6
PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\E49AC3054380EEC4DA29AB71FAE408A9
PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Classes\Installer\Features\E49AC3054380EEC4DA29AB71FAE408A9
PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Classes\Installer\Products\E49AC3054380EEC4DA29AB71FAE408A9
PUP.Optional.Chip, [Key] - HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\services
PUP.Optional.Chip, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders | C:\Program Files (x86)\Chip Digital GmbH\chip1click\
PUP.Optional.Chip, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders | C:\Program Files (x86)\Chip Digital GmbH\
PUP.Optional.Chip, [Value] - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders | C:\Windows\Installer\{503CA94E-0834-4CEE-AD92-BA17AF4E809A}\
PUP.Optional.FLVMPlayer, [Key] - HKLM\SOFTWARE\Applian Technologies

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries.

*************************

C:/AdwCleaner/AdwCleaner[C2].txt - [7581 B] - [2015/12/1 2:49:32]
C:/AdwCleaner/AdwCleaner[C3].txt - [4167 B] - [2016/11/21 14:8:8]
C:/AdwCleaner/AdwCleaner[S0].txt - [26115 B] - [2014/11/2 12:14:34]
C:/AdwCleaner/AdwCleaner[S4].txt - [7723 B] - [2015/11/28 12:25:7]
C:/AdwCleaner/AdwCleaner[S5].txt - [7093 B] - [2015/12/1 2:40:28]
C:/AdwCleaner/AdwCleaner[S6].txt - [1041 B] - [2015/12/1 2:56:34]
C:/AdwCleaner/AdwCleaner[S7].txt - [1048 B] - [2015/12/10 14:48:28]
C:/AdwCleaner/AdwCleaner[S8].txt - [1048 B] - [2015/12/11 11:5:8]
C:/AdwCleaner/AdwCleaner[S9].txt - [4091 B] - [2016/11/21 14:7:27]

########## EOF - C:\AdwCleaner\AdwCleaner[S7].txt ##########

Corrine · Dec 17, 2018

Hi, Monokongo.

It appears you've provided an old Adware Cleaner log rather than the log from Malwarebytes:

# AdwCleaner 7.0.6.0 - Logfile created on Sat Jan 13 11:44:50 2018
# Updated on 2017/21/12 by Malwarebytes
# Database: 01-11-2018.1

Please refer to my previous instructions for scanning with Malwarebytes.

Thank you.

Monokongo · Dec 17, 2018

sorry, I pasted the wrong one... Unfortunately its in german

Malwarebytes
Malwarebytes Cybersecurity for Windows, Mac, Android & iOS | Malwarebytes

-Protokolldetails-
Scan-Datum: 15.12.18
Scan-Zeit: 02:01
Protokolldatei: fceb547e-0004-11e9-a04a-00ff427cf16d.json

-Softwaredaten-
Version: 3.6.1.2711
Komponentenversion: 1.0.508
Version des Aktualisierungspakets: 1.0.8329
Lizenz: Testversion

-Systemdaten-
Betriebssystem: Windows 7 Service Pack 1
CPU: x64
Dateisystem: NTFS
Benutzer: Gekko\TVK

-Scan-Ãœbersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 319228
Erkannte Bedrohungen: 3
In die QuarantÃ¤ne verschobene Bedrohungen: 0
Abgelaufene Zeit: 34 Min., 6 Sek.

-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Deaktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung

-Scan-Details-
Prozess: 0
(keine bÃ¶sartigen Elemente erkannt)

Modul: 0
(keine bÃ¶sartigen Elemente erkannt)

RegistrierungsschlÃ¼ssel: 0
(keine bÃ¶sartigen Elemente erkannt)

Registrierungswert: 0
(keine bÃ¶sartigen Elemente erkannt)

Registrierungsdaten: 0
(keine bÃ¶sartigen Elemente erkannt)

Daten-Stream: 0
(keine bÃ¶sartigen Elemente erkannt)

Ordner: 0
(keine bÃ¶sartigen Elemente erkannt)

Datei: 3
PUP.Optional.ChipDe, C:\USERS\TVK\DESKTOP\BITDEFENDER ANTIVIRUS FREE EDITION - CHIP-INSTALLER.EXE, Keine Aktion durch Benutzer, [481], [562568],1.0.8329
PUP.Optional.ChipDe, C:\WINDOWS\SYSTEM32\CONFIG\SYSTEMPROFILE\APPDATA\LOCAL\DMR\AIRPARROT - CHIP-INSTALLER.EXE, Keine Aktion durch Benutzer, [481], [562568],1.0.8329
PUP.Optional.ChipDe, C:\WINDOWS\INSTALLER\E9D10B6.MSI, Keine Aktion durch Benutzer, [481], [594115],1.0.8329

Physischer Sektor: 0
(keine bÃ¶sartigen Elemente erkannt)

WMI: 0
(keine bÃ¶sartigen Elemente erkannt)

(end)

Corrine · Dec 17, 2018

Please see my next reply.

Please do the following to provide fresh FRST logs:

Download a fresh copy of the Farbar Recovery Scan Tool (FRST) and save it to your Desktop. As before, select the version compatible with your system (32- or 64-bit) but this time, please rename the downloaded file as EnglishFRST64.exe.

Right-click to run as administrator. When the tool opens click Yes to disclaimer.

Press Scan button.

Please copy/paste both logs in your reply.

Corrine · Dec 17, 2018

After taking a closer look at your original logs, I notice that you are using a method to bypass activation of licensed Adobe software. In checking your thread in the Windows Update forum, I see you had also had pirated software and tools used to bypass activation of Microsoft Office. Doing so is contrary to Sysnative's Forum rules and I cannot provide further assistance.

Could it be malware causing my win update failures on Win 7?

Monokongo

Active member

Corrine

Administrator,
Microsoft MVP,
Security Analyst

Monokongo

Active member

Corrine

Administrator,
Microsoft MVP,
Security Analyst

Monokongo

Active member

Corrine

Administrator,
Microsoft MVP,
Security Analyst

Monokongo

Active member

Corrine

Administrator,
Microsoft MVP,
Security Analyst

Corrine

Administrator,
Microsoft MVP,
Security Analyst

Could it be malware causing my win update failures on Win 7?

Active member

Administrator, Microsoft MVP, Security Analyst

Active member

Administrator, Microsoft MVP, Security Analyst

Active member

Administrator, Microsoft MVP, Security Analyst

Active member

Administrator, Microsoft MVP, Security Analyst

Administrator, Microsoft MVP, Security Analyst

Administrator,
Microsoft MVP,
Security Analyst

Administrator,
Microsoft MVP,
Security Analyst

Administrator,
Microsoft MVP,
Security Analyst

Administrator,
Microsoft MVP,
Security Analyst

Administrator,
Microsoft MVP,
Security Analyst