Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 10-07-2016 01 durchgeführt von nicson (2016-07-13 10:20:41) Gestartet von C:\Users\nicson\Downloads\Programs Windows 10 Home Version 1511 (X64) (2015-11-18 11:32:54) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-733649565-1996660288-2117966594-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-733649565-1996660288-2117966594-503 - Limited - Disabled) Gast (S-1-5-21-733649565-1996660288-2117966594-501 - Limited - Disabled) nicson (S-1-5-21-733649565-1996660288-2117966594-1001 - Administrator - Enabled) => C:\Users\nicson ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe Flash Player 22 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 22.0.0.192 - Adobe Systems Incorporated) Adobe Photoshop 6.0 (HKLM-x32\...\Adobe Photoshop 6.0) (Version: 6.0 - Adobe Systems, Inc.) Adobe SVG Viewer (HKLM-x32\...\Adobe SVG Viewer) (Version: 1.0 - Adobe Systems, Inc.) AIMP (HKLM-x32\...\AIMP) (Version: v4.02.1725, 11.06.2016 - AIMP DevTeam) Anki (HKLM-x32\...\Anki) (Version: - ) AVS Audio Converter 8.0 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 8.0.2.541 - Online Media Technologies Ltd.) AVS Video ReMaker 5.0.1.172 (HKLM-x32\...\AVS Video ReMaker_is1) (Version: 5.0.1.172 - Online Media Technologies Ltd.) CyberLink PhotoDirector (Version: 5.0.5.6713 - CyberLink Corp.) Hidden CyberLink PowerDirector 12 (Version: 12.0.4.4301 - CyberLink Corp.) Hidden CyberLink PowerDVD 16 (HKLM-x32\...\{7CD1ACC0-3DD0-4894-90C7-BF2A136C074D}) (Version: 16.0.1713.60 - CyberLink Corp.) D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden Driver Easy 5.0.6 (HKLM\...\DriverEasy_is1) (Version: 5.0.6 - Easeware) DVDFab 9.3.0.5 (17/06/2016) (HKLM-x32\...\DVDFab 9_is1) (Version: - Fengtao Software Inc.) DVDFab Media Player 2 (HKLM-x32\...\DVDFab Media Player 2_is1) (Version: 2.5.0.5 - Fengtao Software Inc.) DVDFab Passkey 8.2.7.2 (04/05/2016) (HKLM-x32\...\DVDFab Passkey 8_is1) (Version: - Fengtao Software Inc.) EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS) EaseUS Partition Master 11.0 (HKLM-x32\...\EaseUS Partition Master_is1) (Version: - EaseUS) Energy Star (HKLM-x32\...\{FC0ADA4D-8FA5-4452-8AFF-F0A0BAC97EF7}) (Version: 1.0.9 - Hewlett-Packard Company) Evernote v. 5.8.6 (HKLM-x32\...\{FEDC7C10-EF67-11E4-9B07-00505695D7B0}) (Version: 5.8.6.7519 - Evernote Corp.) Fade In Professional Screenwriting Software (HKLM-x32\...\Fade In Professional Screenwriting Software_is1) (Version: - Fade In Professional Screenwriting Software) Final Draft (HKLM-x32\...\{E8FDC52C-83F4-4A0F-AA65-D0E8C0F3302F}) (Version: 9.0.9.200 - Cast & Crew Production Software, LLC) foobar2000 v1.3.10 (HKLM-x32\...\foobar2000) (Version: 1.3.10 - Peter Pawlowski) Glary Utilities PRO 5.55 (HKLM-x32\...\Glary Utilities 5) (Version: 5.55.0.76 - Glarysoft Ltd) GPSoftware Directory Opus (HKLM-x32\...\{0A6AA615-5321-43A0-AFAE-97BF95013EA0}) (Version: 11.19 - GPSoftware) HP Documentation (HKLM\...\HP_Documentation) (Version: - HP) HP ESU for Microsoft Windows 10 (HKLM-x32\...\{2CDA0D13-ED4D-4E66-B920-9AE696F9992E}) (Version: 1.1.1 - HP) HP Registration Service (HKLM\...\{D1E8F2D7-7794-4245-B286-87ED86C1893C}) (Version: 1.2.8305.5282 - Hewlett-Packard) HP Support Information (HKLM-x32\...\{76272057-98E0-4DC4-AAC3-10C546C47195}) (Version: 14.00.0000 - Hewlett-Packard) HP Support Solutions Framework (HKLM-x32\...\{D7D5F438-26EF-45AB-AB89-C476FBCF8584}) (Version: 12.4.18.7 - Hewlett-Packard Company) HP Welcome (HKLM\...\HPWelcome) (Version: 1.0 - Hewlett-Packard Company) Intel(R) Driver Update Utility 2.5 (x32 Version: 2.5.0.22 - Intel) Hidden Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4360 - Intel Corporation) Intel(R) Product Improvement Program (x32 Version: 2.1.27.3 - Intel) Hidden Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.7.0.1000 - Intel Corporation) Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{240E5DBF-63FA-4331-BC9D-1705B3C33E38}) (Version: 17.1.1531.1764 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (x32 Version: 10.1.1.9 - Intel(R) Corporation) Hidden Intel® Driver Update Utility (HKLM-x32\...\{aa1dec3b-dc4b-4db0-8c18-9157457eff1f}) (Version: 2.5.0.22 - Intel) Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.) Junk Mail filter update (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{77E7AE5C-181C-4CAF-ADBF-946F11C1CE26}) (Version: 16.0.0.614 - Kaspersky Lab) Kaspersky Internet Security (x32 Version: 16.0.0.614 - Kaspersky Lab) Hidden Logiciel Intel® PROSet/Wireless (HKLM-x32\...\{d5572863-793c-4ec8-872a-43cccc68b948}) (Version: 18.40.0 - Intel Corporation) Malwarebytes Anti-Malware version 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes) Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.6.140.0 - Microsoft Corporation) Microsoft Office Famille et Etudiant 2013 - fr-fr (HKLM\...\HomeStudentRetail - fr-fr) (Version: 15.0.4833.1001 - Microsoft Corporation) Microsoft Text-to-Speech Engine 4.0 (English) (HKLM-x32\...\MSTTS) (Version: - ) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation) Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation) Mozilla Firefox 47.0.1 (x86 fr) (HKLM-x32\...\Mozilla Firefox 47.0.1 (x86 fr)) (Version: 47.0.1 - Mozilla) Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 47.0.1.6018 - Mozilla) O&O AutoBackup Professional (HKLM\...\{774A1CC2-894C-43F2-B4BA-0812C47B8F8B}) (Version: 5.1.157 - O&O Software GmbH) O&O Defrag Professional (HKLM\...\{10F2471C-34AD-4C33-9F92-039B8BC44AC0}) (Version: 19.5.222 - O&O Software GmbH) Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4833.1001 - Microsoft Corporation) Hidden Office 15 Click-to-Run Licensing Component (Version: 15.0.4833.1001 - Microsoft Corporation) Hidden Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4833.1001 - Microsoft Corporation) Hidden Paragon Software Langenscheidt 7 (HKLM-x32\...\Paragon Software Langenscheidt 7) (Version: - ) PDF-Viewer (HKLM\...\{A278382D-4F1B-4D47-9885-8523F7261E8D}_is1) (Version: 2.5.315.0 - Tracker Software Products Ltd) PhotoFiltre 7 (HKU\S-1-5-21-733649565-1996660288-2117966594-1001\...\PhotoFiltre 7) (Version: - ) Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10586.29092 - Realtek Semiconduct Corp.) Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.6.1001.2015 - Realtek) Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7865 - Realtek Semiconductor Corp.) Revo Uninstaller Pro 3.1.6 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.1.6 - VS Revo Group, Ltd.) Scrivener (HKLM-x32\...\Scrivener 1900) (Version: 1900 - Literature and Latte) Speccy (HKLM\...\Speccy) (Version: 1.29 - Piriform) SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - ) VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies) Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.) VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN) Windows Live (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation) WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH) Wise Care 365 4.22 (HKLM-x32\...\Wise Care 365_is1) (Version: 4.22 - WiseCleaner.com, Inc.) Wise Data Recovery 3.84 (HKLM-x32\...\Wise Data Recovery_is1) (Version: 3.84 - WiseCleaner.com, Inc.) WordWeb Pro (HKLM-x32\...\WordWeb) (Version: 8 - WordWeb Software) XYplorer 16.80 (HKLM-x32\...\XYplorer) (Version: 16.80 - Donald Lessau) ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{000ACA17-D212-4A12-966D-C08E87379B67}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{01E725A5-81B4-411C-81CA-0C772D80F442}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{05CAE20F-3173-452A-BB96-436C930BB349}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{070057DA-0223-4D7E-B886-7CF38806F044}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{0E079522-EBDC-434F-A12C-CA4FE85E6BAD}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{11394F7F-3118-4276-B55E-21C0CE1BE6C0}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{13DD2BF5-5321-4973-9D1A-3BFDD82F8966}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{14A4B648-2183-44E4-B428-64BD914030BC}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{1E29823B-0373-4585-B988-F0635AE04A13}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{2062D610-2293-4B6A-BA16-13632D9993DD}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{25378F35-C652-4294-96B8-402C93CED26B}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{27FDD4F2-1673-4D9D-9964-5A228B4A0EB3}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{29F40C1D-6745-4E47-B362-2D602D27E5AA}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{2C527566-9310-4765-9228-52026AFDE678}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{2DBDA328-BC8D-4AD6-978E-03EC8E9A3A78}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{329BFF9E-E25D-4894-9EB8-641B47BB71CE}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{364B4442-887D-430D-B7DC-32D079AE7F26}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{3702936F-5DA0-4AB4-BE08-A3A2EF3FF14D}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{38DC0630-8C1D-46D0-B835-F4A48CDCFF92}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{3C14C21B-84FE-4598-A6E2-C950836E7723}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{3DC5E069-84E3-4FED-AC59-53C2C4D2D44D}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{4D443A99-5C3E-41DE-96EE-DCE2A6A84759}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{4DF50353-B1B6-405E-A7F9-08CF4A7BF1E5}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{4F2B9597-F497-4A40-AAEB-07E81F4636A0}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{500255A1-4AD5-490C-9E24-B8FD133DCE90}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{52FF4127-4F80-4C17-AA5C-B3714450ED05}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{55AEB7A5-B64A-4B80-96E2-AB38840A11B5}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{5C17944C-13B5-4BD3-9217-5FB31F62E61D}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{5DEB5D8C-1063-465F-B8FB-F3C8F7F286FD}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{60DFE615-18D6-48CD-B0B8-238F1E28C541}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{62723F39-D1DE-4288-9EBE-583BA329F6C8}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{6538A4EE-8F1A-4C69-B164-5CBF23FFCFA1}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{66293978-D039-495E-A2DB-604315EEE755}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{6766F0C9-EC71-41A4-B795-85FFFDE571D9}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{6A30639F-A84D-429D-B852-79350445AF70}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{6D16CA93-9EFB-4A47-B8DB-62FEBBD9ECD7}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{6DFE4A8E-EC06-4072-A2D7-447AB74A4C01}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\nicson\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\FileCoAuth.exe (Microsoft Corporation) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{7D48854D-7B92-449D-AAB7-81DE406020A5}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{7E1FA86C-C51C-44E0-B556-1685C6F53E09}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{82B60994-1970-4916-BBA0-3770A19F69BB}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{8856DBB1-2933-45C3-A9F6-DC2FB9E4D31E}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{8CBA927B-C288-40B2-9493-4CD488E83AF2}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{91D9559B-F85B-4946-B6B4-242092ED03E5}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{9427FD35-0DD2-4EB6-A66E-2B128CD9D6D7}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{96A4E0E2-D9C0-4173-9003-0B8D95ACDD5E}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{9CE211C8-F622-4C4B-A796-FCBED8827A41}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{AB7B9341-CACF-4EC1-937D-32B30021CE10}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{ACEF3D06-85BC-4A12-8857-AF5DB160D618}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{AE80A1DE-2007-4E8C-B254-EB97C3C0EF15}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{AFBEBAC6-BD1A-4B77-BF0F-7C57BC002C74}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{B083EF30-1F56-46FA-963A-8C9BF3A6F0BD}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{B245AA96-2BFD-4130-A67D-64A8C339F438}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{B7FA83D4-067B-4FEF-8A9D-01DAC7FFFC03}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{B958B86A-A16C-4A05-BE6F-5459395679F1}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{B9C76E7D-AEB7-49FE-89BF-EA8BA200A50B}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{BA5BF8C8-9052-4D14-8A95-54641DFAD4BF}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{BFF6D745-D92D-44DB-9A7A-89313D7B9EFB}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{C3FAF4AA-58EF-467D-990B-C140B974C152}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{C6A13CBB-D78F-4781-8D58-0FDA41866E98}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{C9BD044C-490C-457E-9693-0F3CE1D612CB}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{CA7A2D2F-9210-4006-8DC3-DC23958A3773}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{CAD3758F-16A4-4165-BFDD-D91F2353CDDD}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{D1041644-5218-467F-893B-B5B0EB019A93}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{D29250F9-424D-4B6A-B5BC-6421B3E6C09B}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{D5303528-1D47-48CE-9BB2-6315464C2CDF}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{DA580A42-B959-4C2C-8722-41DD101DE333}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{DEC1CDB0-1080-4753-8852-0671A1C5B0C1}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{DFFF6AE8-05AB-4875-AD01-0904E1564529}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{E1E78048-4A11-421D-B1B4-B6AED3009A40}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{E22B1031-D042-4916-9F82-D60850A3789E}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{E5259CD8-AEDC-4F84-8238-70A9BD79555D}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{E6EA81B1-AFE1-4F0F-A87C-5E577FDCB54F}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{EBB6E5BB-7CB4-4A2D-B878-CE0A88E1C310}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{EBCD65E5-8BFF-4EC6-8D8A-B66B29EBD345}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{F2A860BD-CCC4-42EF-B73E-90307668A6B2}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{F2BDE9C1-390B-4C5C-A1A2-F941A5385342}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{F5881F29-7DAA-4553-AB46-3A46AE5B965F}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{F6C6E62F-4A8C-442F-9FE4-AFA94F00B273}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{F95D4E91-0B5F-48A9-A5C9-99F432CC3418}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{FB68174B-F367-4302-8E94-FEBFFC551B1A}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) CustomCLSID: HKU\S-1-5-21-733649565-1996660288-2117966594-1001_Classes\CLSID\{FB713838-6852-4C98-98D3-8EDB84EDD868}\InprocServer32 -> C:\Program Files\GPSoftware\Directory Opus\dopuslib.dll (GP Software) ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {063C0053-5BA4-4A50-9C2A-6F8A77D25B47} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation) Task: {143CC7EA-7734-4CC1-98DD-25D8CFBA9E37} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-06-28] (HP Inc.) Task: {173A80C6-7949-4F38-8BFD-A2B434406926} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard) Task: {1754768A-91B6-4346-A00A-CBB09A322648} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-05-04] (Hewlett-Packard) Task: {1C2CE080-CBB5-4642-BB48-052BA9F6A9B4} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2015-09-10] (Microsoft) Task: {219FB311-BFB7-44EF-AB91-14D8546771AF} - System32\Tasks\Wise Turbo Checker.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTurbo.exe [2016-03-24] (WiseCleaner.COM) Task: {263AF25F-DF0F-44AD-932F-772664ED9DD8} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-09-10] (Microsoft Corporation) Task: {32937E83-37F5-4ECA-A79B-05CD71748670} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Active Health Launcher => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-06-15] (HP Inc.) Task: {37B1C36F-DCDA-4837-869C-E3C0D0F95D9B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company) Task: {3A06D271-48F1-4E4A-9FD2-E5E3C7382F03} - System32\Tasks\YCMServiceAgent => C:\Program Files (x86)\CyberLink\YouCam6\YouCamService6.exe [2015-07-01] (CyberLink Corp.) Task: {3AB18C81-887C-4DD7-B57C-C0205D21AF48} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-05-09] (Hewlett-Packard) Task: {40D6FD18-B6FF-4BF6-A641-83573D6F72CD} - System32\Tasks\HPCeeScheduleFornicson => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard) Task: {65AC94B2-E833-4A98-AAFB-10159E4A62C8} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-06-15] (HP Inc.) Task: {74193D92-20D2-42E7-B105-0C056A9AEEB5} - System32\Tasks\GlaryInitialize 5 => C:\Program Files (x86)\Glary Utilities 5\Initialize.exe [2016-07-08] (Glarysoft Ltd) Task: {84218689-F9C6-4AE7-9B50-8C80EBC4C6F3} - System32\Tasks\Wise Care 365.job => C:\Program Files (x86)\Wise\Wise Care 365\WiseTray.exe [2016-05-24] (WiseCleaner.com) Task: {9BCDBF62-4492-4EF7-9B81-E4129EA34D1E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-02-18] (Hewlett-Packard Company) Task: {A24C4F14-EA98-4124-A353-6D70576E51AB} - System32\Tasks\WiseCleaner\WDRSkipUAC => C:\Program Files (x86)\Wise\Wise Data Recovery\WiseDataRecovery.exe [2016-05-30] (WiseCleaner.com) Task: {BB8ACD0E-B1CE-421C-AB32-2C4FE5C983C6} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-09-10] (Microsoft Corporation) Task: {BCA29ACD-493A-4A92-B90D-239FB19DCFF3} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-06-17] (Adobe Systems Incorporated) Task: {D01993AA-2B09-4A55-831D-C279A15FCB49} - System32\Tasks\GU5SkipUAC => C:\Program Files (x86)\Glary Utilities 5\Integrator.exe [2016-07-08] (Glarysoft Ltd) Task: {D1FDB5B4-072F-4352-B1E7-1DB46A37A66B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2015-09-10] (Microsoft Corporation) Task: {D835EB0A-DFEA-4FB7-A38F-576D4C9A03CC} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2015-09-10] (Microsoft Corporation) Task: {E700F50F-B4EC-43E9-B004-009FCB4E2C7E} - System32\Tasks\Intel\Intel Telemetry 2 (x86) => C:\Program Files (x86)\Intel\Telemetry 2.0\lrio.exe [2016-03-17] (Intel Corporation) Task: {EF36CE50-CF89-42AB-A17D-B6947779DA4D} - System32\Tasks\USER_ESRV_SVC_WILLAMETTE => Wscript.exe //B //NoLogo "C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\task.vbs" Task: {F53BAB3D-5F2E-4461-8F75-A62F93BEFD08} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-04-12] (Microsoft Corporation) Task: {F877B157-DEE7-4DD8-80A3-04BBADD01D85} - System32\Tasks\DeviceDetector7.5 => C:\Program Files (x86)\CyberLink\MediaEspresso7.5\DeviceDetector\DeviceDetector7.5.exe [2016-03-21] (CyberLink Corp.) Task: {FA325A46-B737-41C0-8804-2E9BDACC35DE} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [2016-06-28] (HP Inc.) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe Task: C:\WINDOWS\Tasks\HPCeeScheduleFornicson.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe ==================== Verknüpfungen ============================= (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============== 2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll 2015-10-08 19:46 - 2014-04-15 03:59 - 00389896 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe 2015-11-13 14:52 - 2016-04-19 19:26 - 00114888 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll 2015-10-20 16:27 - 2015-10-20 16:27 - 02073816 _____ () C:\Program Files\OO Software\AutoBackup\ooabagrs.dll 2016-03-28 18:33 - 2016-02-23 13:27 - 02654872 _____ () C:\WINDOWS\system32\CoreUIComponents.dll 2016-03-28 18:33 - 2016-02-23 13:27 - 02654872 _____ () C:\WINDOWS\System32\CoreUIComponents.dll 2016-03-28 18:33 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll 2016-03-28 18:33 - 2016-02-23 10:36 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll 2016-03-28 18:34 - 2016-01-05 03:29 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll 2016-03-28 18:34 - 2016-01-05 03:23 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll 2016-03-28 18:34 - 2016-01-16 07:10 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll 2016-03-28 18:34 - 2016-01-16 07:13 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll 2015-07-09 00:18 - 2015-07-09 00:18 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.0\kpcengine.2.3.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\ProgramData\sdpsenv.dat:naughtypirates [322] AlternateDataStreams: C:\Users\nicson\AppData\Local\2ThS2hwrt:uIeVbJHIQ6iBM4g9IFES6qt [2564] AlternateDataStreams: C:\Users\nicson\AppData\Local\Temp:yR6Z2l9rI8nZsP56I [2504] ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.) ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.) ==================== Internet Explorer Vertrauenswürdig/Eingeschränkt =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.) ==================== Hosts Inhalt: =============================== (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2015-07-10 13:04 - 2015-07-10 13:02 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts ==================== Andere Bereiche ============================ (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-733649565-1996660288-2117966594-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\nicson\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\zazie_link_foot.jpg DNS Servers: 138.201.48.176 - 8.8.8.8 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) mpsdrv => Firewall Dienst läuft nicht. MpsSvc => Firewall Dienst läuft nicht. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) MSCONFIG\Services: a2AntiMalware => 2 HKLM\...\StartupApproved\Run: => "emsisoft anti-malware" HKLM\...\StartupApproved\Run32: => "PowerDVD14Agent" HKLM\...\StartupApproved\Run32: => "CLMLServer_For_P2G10" HKLM\...\StartupApproved\Run32: => "PowerDVD15Agent" HKU\S-1-5-21-733649565-1996660288-2117966594-1001\...\StartupApproved\StartupFolder: => "Envoyer à OneNote.lnk" HKU\S-1-5-21-733649565-1996660288-2117966594-1001\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-733649565-1996660288-2117966594-1001\...\StartupApproved\Run: => "DVDFab Passkey" HKU\S-1-5-21-733649565-1996660288-2117966594-1001\...\StartupApproved\Run: => "Power2GoExpress10" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) =============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139 FirewallRules: [{9B7E21B0-7E8C-488C-B607-3F90AC727A71}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{F57C4995-F451-41C2-938C-4172067AD226}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{129241B9-062B-4526-9F2C-D73E7985B5EC}] => (Allow) LPort=1900 FirewallRules: [{1AF453B6-687E-4D70-B25C-58F447D3368C}] => (Allow) LPort=2869 FirewallRules: [{A6B6113E-9BEC-4E3F-91D2-39A239937FAD}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe FirewallRules: [{F9F0AF8F-70D2-4BFF-91FB-C4231A997470}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD.exe FirewallRules: [{A7631AC7-D87D-4047-AF78-2FCB8EE7E970}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Kernel\DMS\CLMSServerPDVD14.exe FirewallRules: [{85B08404-BD96-48B1-8604-1149FEDE889E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\PowerDVD14Agent.exe FirewallRules: [{F7F8C744-189C-4748-B394-5240E6B587C9}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVDMovie.exe FirewallRules: [{B5D65FBA-5D42-4F64-BA61-CF7BFD41A9AC}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD14\Movie\PowerDVD Cinema\PowerDVDCinema.exe FirewallRules: [{A89F142E-2572-443A-B059-06DB5A9F859E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe FirewallRules: [{826010B1-8C6C-422F-A67F-09B53BC9F006}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe ==================== Wiederherstellungspunkte ========================= Überprüfen Sie den "winmgmt" Dienst oder reparieren Sie den WMI. ==================== Fehlerhafte Geräte im Gerätemanager ============= Name: Description: Class Guid: Manufacturer: Service: Problem: : The drivers for this device are not installed. (Code 28) Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard. ==================== Fehlereinträge in der Ereignisanzeige: ========================= Applikationsfehler: ================== Error: (07/13/2016 09:41:48 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: BITSC:\Windows\System32\bitsperf.dll8 Error: (07/13/2016 09:41:48 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: aspnet_stateC:\Windows\System32\aspnet_counters.dll8 Error: (07/13/2016 09:41:48 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: ASP.NET_4.0.30319C:\Windows\System32\aspnet_counters.dll8 Error: (07/13/2016 09:41:48 AM) (Source: Perflib) (EventID: 1008) (User: ) Description: ASP.NETC:\Windows\System32\aspnet_counters.dll8 Error: (07/13/2016 09:39:36 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante IAStorDataMgrSvc.exe, version : 14.7.0.1000, horodatage : 0x55f7ca99 Nom du module défaillant : ntdll.dll, version : 10.0.10586.122, horodatage : 0x56cc16f5 Code d’exception : 0xc0000374 Décalage d’erreur : 0x000dc7a9 ID du processus défaillant : 0x18a4 Heure de début de l’application défaillante : 0xIAStorDataMgrSvc.exe0 Chemin d’accès de l’application défaillante : IAStorDataMgrSvc.exe1 Chemin d’accès du module défaillant: IAStorDataMgrSvc.exe2 ID de rapport : IAStorDataMgrSvc.exe3 Nom complet du package défaillant : IAStorDataMgrSvc.exe4 ID de l’application relative au package défaillant : IAStorDataMgrSvc.exe5 Error: (07/13/2016 01:47:41 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ShellExperienceHost.exe, version : 10.0.10586.122, horodatage : 0x56cc0133 Nom du module défaillant : twinapi.appcore.dll, version : 10.0.10586.0, horodatage : 0x5632d2f5 Code d’exception : 0xc000027b Décalage d’erreur : 0x000000000004b199 ID du processus défaillant : 0xcac Heure de début de l’application défaillante : 0xShellExperienceHost.exe0 Chemin d’accès de l’application défaillante : ShellExperienceHost.exe1 Chemin d’accès du module défaillant: ShellExperienceHost.exe2 ID de rapport : ShellExperienceHost.exe3 Nom complet du package défaillant : ShellExperienceHost.exe4 ID de l’application relative au package défaillant : ShellExperienceHost.exe5 Error: (07/13/2016 01:13:13 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ShellExperienceHost.exe, version : 10.0.10586.122, horodatage : 0x56cc0133 Nom du module défaillant : twinapi.appcore.dll, version : 10.0.10586.0, horodatage : 0x5632d2f5 Code d’exception : 0xc000027b Décalage d’erreur : 0x000000000004b199 ID du processus défaillant : 0x540 Heure de début de l’application défaillante : 0xShellExperienceHost.exe0 Chemin d’accès de l’application défaillante : ShellExperienceHost.exe1 Chemin d’accès du module défaillant: ShellExperienceHost.exe2 ID de rapport : ShellExperienceHost.exe3 Nom complet du package défaillant : ShellExperienceHost.exe4 ID de l’application relative au package défaillant : ShellExperienceHost.exe5 Error: (07/13/2016 12:47:35 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Fade In.exe, version : 1.2.544.0, horodatage : 0x57471bc6 Nom du module défaillant : Fade In.exe, version : 1.2.544.0, horodatage : 0x57471bc6 Code d’exception : 0xc000041d Décalage d’erreur : 0x000c9938 ID du processus défaillant : 0x2ed4 Heure de début de l’application défaillante : 0xFade In.exe0 Chemin d’accès de l’application défaillante : Fade In.exe1 Chemin d’accès du module défaillant: Fade In.exe2 ID de rapport : Fade In.exe3 Nom complet du package défaillant : Fade In.exe4 ID de l’application relative au package défaillant : Fade In.exe5 Error: (07/13/2016 12:47:28 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante Fade In.exe, version : 1.2.544.0, horodatage : 0x57471bc6 Nom du module défaillant : Fade In.exe, version : 1.2.544.0, horodatage : 0x57471bc6 Code d’exception : 0xc0000005 Décalage d’erreur : 0x000c9938 ID du processus défaillant : 0x2ed4 Heure de début de l’application défaillante : 0xFade In.exe0 Chemin d’accès de l’application défaillante : Fade In.exe1 Chemin d’accès du module défaillant: Fade In.exe2 ID de rapport : Fade In.exe3 Nom complet du package défaillant : Fade In.exe4 ID de l’application relative au package défaillant : Fade In.exe5 Error: (07/13/2016 12:41:19 AM) (Source: Application Error) (EventID: 1000) (User: ) Description: Nom de l’application défaillante ShellExperienceHost.exe, version : 10.0.10586.122, horodatage : 0x56cc0133 Nom du module défaillant : twinapi.appcore.dll, version : 10.0.10586.0, horodatage : 0x5632d2f5 Code d’exception : 0xc000027b Décalage d’erreur : 0x000000000004b199 ID du processus défaillant : 0x19bc Heure de début de l’application défaillante : 0xShellExperienceHost.exe0 Chemin d’accès de l’application défaillante : ShellExperienceHost.exe1 Chemin d’accès du module défaillant: ShellExperienceHost.exe2 ID de rapport : ShellExperienceHost.exe3 Nom complet du package défaillant : ShellExperienceHost.exe4 ID de l’application relative au package défaillant : ShellExperienceHost.exe5 Systemfehler: ============= Error: (07/13/2016 09:39:39 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Rapid Storage Technology s’est terminé de façon inattendue pour la 1ème fois. Error: (07/13/2016 09:37:27 AM) (Source: Service Control Manager) (EventID: 7000) (User: ) Description: Le service SystemUsageReportSvc_WILLAMETTE n’a pas pu démarrer en raison de l’erreur : %%1053 = Le service n’a pas répondu assez vite à la demande de lancement ou de contrôle. Error: (07/13/2016 09:37:27 AM) (Source: Service Control Manager) (EventID: 7009) (User: ) Description: Le dépassement de délai (30000 millisecondes) a été atteint lors de l’attente de la connexion du service SystemUsageReportSvc_WILLAMETTE. Error: (07/13/2016 09:36:59 AM) (Source: Service Control Manager) (EventID: 7023) (User: ) Description: Le service USER_ESRV_SVC_WILLAMETTE s’est arrêté avec l’erreur : %%268439555 Error: (07/13/2016 01:47:45 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Benutzerdatenzugriff_5195b s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Neustart des Diensts. Error: (07/13/2016 01:47:45 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Benutzerdatenspeicher _5195b s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Neustart des Diensts. Error: (07/13/2016 01:47:45 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Kontaktdaten_5195b s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Neustart des Diensts. Error: (07/13/2016 01:47:45 AM) (Source: Service Control Manager) (EventID: 7031) (User: ) Description: Le service Synchronisierungshost_5195b s’est terminé de manière inattendue. Ceci s’est produit 1 fois. L’action corrective suivante va être effectuée dans 10000 millisecondes : Neustart des Diensts. Error: (07/13/2016 01:47:44 AM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT) Description: AnwendungsspezifischLokalAktivierung{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT-AUTORITÄTSYSTEMS-1-5-18LocalHost (unter Verwendung von LRPC)Nicht verfügbarNicht verfügbar Error: (07/12/2016 09:47:24 AM) (Source: Service Control Manager) (EventID: 7034) (User: ) Description: Le service Intel(R) Rapid Storage Technology s’est terminé de façon inattendue pour la 1ème fois. CodeIntegrity: =================================== Date: 2016-07-12 02:52:19.011 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-07-12 02:51:28.146 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-07-12 01:34:23.824 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files\Emsisoft Anti-Malware\a2hooks64.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-28 00:32:49.914 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-04-14 09:51:02.660 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-30 09:15:48.632 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-28 18:46:42.872 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-03-28 18:40:26.701 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2016-02-10 09:39:56.595 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. Date: 2015-12-11 09:07:00.764 Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume3\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system. ==================== Speicherinformationen =========================== Prozessor: Intel(R) Core(TM) i5-4460T CPU @ 1.90GHz Prozentuale Nutzung des RAM: 33% Installierter physikalischer RAM: 8117.91 MB Verfügbarer physikalischer RAM: 5377.56 MB Summe virtueller Speicher: 8517.91 MB Verfügbarer virtueller Speicher: 5671.07 MB ==================== Laufwerke ================================ Drive c: (Windows) (Fixed) (Total:915.79 GB) (Free:65.48 GB) NTFS Drive d: (Recovery Image) (Fixed) (Total:14.39 GB) (Free:14.34 GB) NTFS Drive f: (LaCie3T) (Fixed) (Total:2794.45 GB) (Free:85.64 GB) NTFS Drive g: (KINGSTON) (Removable) (Total:58.59 GB) (Free:0.33 GB) NTFS Drive h: (My Passport) (Fixed) (Total:1862.98 GB) (Free:2.09 GB) NTFS Drive i: (Transcend) (Fixed) (Total:1863.01 GB) (Free:7.48 GB) NTFS ==================== MBR & Partitionstabelle ================== ======================================================== Disk: 0 (Size: 931.5 GB) (Disk ID: F8A39127) Partition: GPT. Attempted reading MBR returned 0 bytes. Could not read MBR for disk 1. ======================================================== Disk: 2 (MBR Code: Windows XP) (Size: 58.6 GB) (Disk ID: 43B28DB3) Partition 1: (Active) - (Size=58.6 GB) - (Type=07 NTFS) ======================================================== Disk: 3 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: 0005F107) Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS) ======================================================== Disk: 4 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: EC639B72) Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS) ==================== Ende von Addition.txt ============================