Danke für die schnelle Antwort.
FRST Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-07-2019 01
durchgeführt von Hans (Administrator) auf FUTURE (Gigabyte Technology Co., Ltd. Z68XP-UD3) (26-07-2019 10:26:02)
Gestartet von C:\Users\Hans\Desktop
Geladene Profile: Hans (Verfügbare Profile: Hans & Anke & Administrator)
Platform: Windows 10 Pro Version 1903 18362.239 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Amazon Services LLC -> Amazon Services LLC) C:\Users\Hans\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Christian Hackbart -> CM & V) C:\Program Files (x86)\DVBViewer\DVBVservice.exe
(Christian Hackbart -> CM&V Hackbart) C:\Program Files (x86)\DVBViewer\DVBVCtrl.exe
(Giga-Byte Technology -> ) C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe
(Gigabyte Technology CO., LTD.) [Datei ist nicht signiert] C:\Program Files (x86)\GIGABYTE\smart6\timelock\AlarmClock.exe
(Gigabyte Technology CO., LTD.) [Datei ist nicht signiert] C:\Program Files (x86)\GIGABYTE\smart6\timelock\TimeMgmtDaemon.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe
(IDSA Production signing key -> Intel) C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Logitech -> Logitech Inc.) C:\Program Files\Logitech\Gaming Software\LWEMon.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Hans\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vdsldr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1907.4-0\NisSrv.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodag.exe
(O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\Defrag\oodtray.exe
(O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\DiskImage\oodiag.exe
(O&O Software GmbH -> O&O Software GmbH) C:\Program Files\OO Software\DiskImage\ooditray.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(QNAP Systems, Inc. -> ) C:\Program Files (x86)\QNAP\Qfinder\iSCSIAgent.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(REINER Kartengeraete GmbH & Co. KG -> REINER SCT) C:\Windows\SysWOW64\cjpcsc.exe
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe
(Schneider Electric -> Schneider Electric) [Datei ist nicht signiert] C:\Program Files (x86)\APC\PowerChute Personal Edition\apcsystray.exe
(Schneider Electric -> Schneider Electric) [Datei ist nicht signiert] C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe
(Schneider Electric -> Schneider Electric) [Datei ist nicht signiert] C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe
(SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION) C:\Program Files (x86)\EPSON Software\Event Manager\EEventManager.exe
(SEIKO EPSON Corporation -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11776104 2011-02-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [OODefragTray] => C:\Program Files\OO Software\Defrag\oodtray.exe [4468424 2016-02-15] (O&O Software GmbH -> O&O Software GmbH)
HKLM\...\Run: [OODITRAY.EXE] => C:\Program Files\OO Software\DiskImage\ooditray.exe [6370880 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
HKLM\...\Run: [Start WingMan Profiler] => C:\Program Files\Logitech\Gaming Software\LWEMon.exe [190536 2010-06-14] (Logitech -> Logitech Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-05-07] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1087184 2016-01-20] (SEIKO EPSON CORPORATION -> SEIKO EPSON CORPORATION)
HKLM-x32\...\Run: [CloneCDTray] => C:\Program Files (x86)\RedFox\CloneCD\CloneCDTray.exe [57344 2016-03-29] (RedFox) [Datei ist nicht signiert]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [644552 2019-07-04] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Display] => C:\Program Files (x86)\APC\PowerChute Personal Edition\DataCollectionLauncher.exe [480176 2019-06-07] (Schneider Electric -> Schneider Electric) [Datei ist nicht signiert]
HKU\S-1-5-21-249342433-4158582237-3597877800-1000\...\Run: [DVBV Service Ctrl] => C:\Program Files (x86)\DVBViewer\DVBVCtrl.exe [91504 2017-11-01] (Christian Hackbart -> CM&V Hackbart)
HKU\S-1-5-21-249342433-4158582237-3597877800-1000\...\Run: [Amazon Music Helper] => C:\Users\Hans\AppData\Local\Amazon Music\Amazon Music Helper.exe [2385336 2019-06-26] (Amazon Services LLC -> Amazon Services LLC)
HKU\S-1-5-21-249342433-4158582237-3597877800-1000\...\MountPoints2: {4cecffee-a647-11e9-aac4-806e6f6e6963} - "C:\WINDOWS\system32\RunDLL32.EXE" Shell32.DLL,ShellExec_RunDLL I:\LIESMICH.htm
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\APC UPS Status.lnk [2019-07-21]
ShortcutTarget: APC UPS Status.lnk -> C:\Program Files (x86)\APC\PowerChute Personal Edition\Display.exe (Schneider Electric -> Schneider Electric) [Datei ist nicht signiert]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\O&O Defrag Tray.lnk [2016-03-10]
ShortcutTarget: O&O Defrag Tray.lnk -> C:\Windows\Installer\{A7F1592C-02E9-435E-A918-537BDE859290}\app_icon.ico () [Datei ist nicht signiert]
GroupPolicy: Beschränkung ? <==== ACHTUNG
GroupPolicy\User: Beschränkung ? <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00F4FE5D-0AF2-4733-85D1-386DBD5CBB59} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {01FC630F-31E1-4320-9BA1-A9F2CD59CC1E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {0514B753-B74A-4B43-8B78-A242C8CC820D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {074B7CD0-3161-4EC1-B415-B6E848BF2444} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {0792A7FA-5DA3-45BA-9AD3-E3D41E16E7C2} - System32\Tasks\SidebarExecute => C:\Program Files (x86)\Windows Sidebar\sidebar.exe
Task: {0D9B2829-1128-4220-85B2-B830CB7276C4} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {1875339F-59A3-4564-8CD5-BC85ECDBBA96} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {1B1347FA-8300-4D93-9111-FB59DB88163D} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {1BA65263-7D34-4562-8CC7-910598266B7D} - System32\Tasks\OO DiskImage {e7eafe2d-1725-43a0-8512-3cbacd5cbf0d} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {1FB568F6-EEF5-467F-B6B2-30F8088184EA} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649152 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2170D4C1-AADC-421C-A6CA-388B47E44E84} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {2C8D2F81-9397-4270-A05E-BAAD64C21A96} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2D7434E4-2484-43DB-9042-C76D39D6CA88} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436672 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {32C57B8A-36F2-482E-82D9-CDCE455FFA84} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3D99BB00-17DA-48A3-A558-14D3C7FAC1DE} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {41EB24BC-1B85-4513-AB50-56AB2BA77C71} - System32\Tasks\{55D6D981-16B5-40B2-A92F-C7FFDE2F15EF} => C:\Windows\system32\pcalua.exe -a F:\DOWNLOAD\USBDrivers_23.exe -d F:\DOWNLOAD
Task: {4558DDB7-C2EC-43B2-9710-A6B807AAF534} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4AD8FF4D-A1B0-47F7-AA75-7BBB90B7855C} - System32\Tasks\{F8845FB5-1CBF-458C-85E5-9D25AA37F725} => C:\Windows\system32\pcalua.exe -a F:\DOWNLOAD\epson326619eu.exe -d F:\DOWNLOAD
Task: {4E150045-360D-4DB5-B637-8677346D7046} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {5006EDB2-B342-4E34-A3B1-EFAD8D8E9CBB} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {54864CE5-6163-439C-93B5-9791948343E5} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1704384 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {54B47B03-AB1D-439D-A5D1-CAED615BB5E3} - System32\Tasks\OO DiskImage {5b809c47-5c86-45f4-af05-e059c82922bf} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {588F9DE1-801F-480C-B491-6FB66E00EDE7} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1112576 2017-05-19] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5C6ED4D5-FD40-4DC0-B2AB-044D05FE8742} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5D269886-8C06-4CA2-A4A0-3D067B2C799A} - System32\Tasks\OO DiskImage {d6251ec9-6900-4283-b088-77bc092d8710} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {5EC50BA6-D6E5-4DB1-9BA9-1BA1E28D9D89} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {61090334-A0E3-49EF-891A-65082E1FD8EF} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6126CBD3-C7BF-4D2A-A177-6D1BD7FFB248} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
Task: {6523D33F-F745-483A-8197-442C3A7143CF} - System32\Tasks\OO DiskImage {9ad0a168-b2cc-4946-8dcf-7102deb64e97} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {6BA669B8-BDAC-4418-A989-88A8C11C8C52} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6ED25593-2FA0-4CE9-A242-5E61EC935E6D} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {6EFD9530-64B7-4353-9E38-7EF7A868FC1A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {75A62916-3541-4835-9BF5-62CBF69F5E3D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {76179DAF-FFF0-4B59-A542-7ACCFD436EC3} - System32\Tasks\{FC40B308-BF50-4551-B179-637DDE2C6E66} => C:\Windows\system32\pcalua.exe -a F:\DOWNLOAD\unetbootin-windows-625.exe -d F:\DOWNLOAD
Task: {7768D4E5-1C36-4AB5-9AE6-43C95C769F4C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {7777ADD8-8D6F-4652-A8BF-D2AB56FB0AAE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {78739F0C-7BF1-46BB-91FB-10828F9C7243} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {79342E1E-B3F5-43DF-BA5F-FF77879FD16C} - System32\Tasks\OO DiskImage {b09cac0f-c0e6-4899-ac8d-4d67d6e358b7} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {7AEBFAE7-A8A2-4C4F-9530-1792D9F50CD5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7C00FC4D-48BD-4BF8-B762-0D3815DC7B54} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7C093E83-A482-4755-A8FB-4652EAF08255} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {7D951B53-351B-46E4-B6A8-835001BC47F3} - System32\Tasks\{241ED81D-899A-4F18-B141-74845CF5560B} => C:\Windows\system32\pcalua.exe -a F:\DOWNLOAD\Outlook_2013_x64_DE.exe -d F:\DOWNLOAD
Task: {843CBC07-EDFF-4AE9-A5A4-28DFCBAC91F4} - System32\Tasks\{8B3FADA3-4839-473B-B873-87D8786AA2A4} => C:\Windows\system32\pcalua.exe -a G:\setup.exe -d G:\
Task: {86C346F5-6565-44AC-91F5-D4079266D5CB} - System32\Tasks\OO DiskImage {64d9f8b7-5ef1-443f-8b87-b11d0f0dc1a5} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {887FAF0F-37F8-4812-AAD6-B1B5E5BF9333} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {8913F66E-1053-4107-8419-019B8A723D01} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-09] (Adobe Inc. -> Adobe)
Task: {89AF2241-D0E4-46D5-A8DA-5E2865078137} - System32\Tasks\{0E42FA51-B420-4A6C-B5A3-342EDAF7ABCA} => C:\Windows\system32\pcalua.exe -a G:\Setup.exe -d G:\
Task: {91418C08-E872-416A-8A4C-8E748DCF6BE9} - System32\Tasks\{DDFD00D7-EB50-4DE7-B431-BD63C1C451FA} => C:\Windows\system32\pcalua.exe -a F:\DOWNLOAD\wds_current_setup.exe -d F:\DOWNLOAD
Task: {91EA5A3D-D018-4A1C-80C3-C5289F0D2F64} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MpCmdRun.exe [469960 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {987FB953-023D-4E1C-B3CB-7BC93D5DB900} - System32\Tasks\OO DiskImage {db3436a6-497b-4adc-b5c6-7efba2f3c5b2} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {994857B5-FBDD-4157-8D58-C95107B10E51} - System32\Tasks\OO DiskImage {d337cfd6-6946-4936-807d-f4e90dfb16f0} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {9BF45E2C-4678-4EF4-8158-AD23305CAB61} - System32\Tasks\{6152B527-E5F0-4EDE-B021-D06C3CA29BE5} => C:\Windows\system32\pcalua.exe -a "F:\DOWNLOAD\avm cd\Software\printer\install.exe" -d "F:\DOWNLOAD\avm cd\Software\printer"
Task: {9E323E60-6248-4BE9-9B19-9344343C8F88} - System32\Tasks\OO DiskImage {1813c7a8-7acc-4453-b880-ed3e150738e6} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {9F1E92F2-BE36-4988-BD6F-4DF832682A04} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {A447E2C6-6A2D-44A6-B786-854E6BA38D22} - System32\Tasks\OO DiskImage {8f63c9a5-f4dd-4231-8df9-d4fbc70883d5} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {AAD8325C-5D63-458D-A664-651D61B094BC} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {ADC4BF52-7153-4767-B30B-9B2FE3D58817} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B5C6003D-A7A6-4817-902C-4858FE82533B} - System32\Tasks\iSCSIAgentAutoStartup => C:\Program Files (x86)\QNAP\Qfinder\iSCSIAgent.exe [1739472 2013-03-26] (QNAP Systems, Inc. -> )
Task: {B8B98A02-74D4-49AC-91C7-E447B92B60CF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649152 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C08A0BCD-F476-4696-BB8C-6CB62FD97916} - System32\Tasks\OO DiskImage {c162a847-f653-4c3d-8637-77db48aaa490} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {C89DCEC8-5D72-4273-8065-E6E5A7AEEAE3} - System32\Tasks\OO DiskImage {280d888e-c134-4481-a35a-256f8c5fb265} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {CD57DA6F-DAA1-485A-93F3-DB6BC78C4029} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [495040 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D1CC651B-ECD6-4CA1-8E9B-3FF013609C50} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {D34D3303-21B5-4E04-BE93-63ADB12053EF} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [732096 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {DB171FC3-E8D5-478C-9CC2-8AD21B4955FF} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {E04035C3-512C-42CE-A1C1-C3E557C679B4} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [732096 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E29EECF8-E177-478B-B1C0-3303A4E5CBE4} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EBF30538-D44D-4D28-B1A5-591625143457} - System32\Tasks\OO DiskImage {5f9750c4-12b1-4fa3-a82d-f9e028b9af41} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {ECF16F88-3B26-410D-B2F8-DB465EE0B419} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F19EAA57-1F13-4E88-AE06-EF9A004AFB53} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F2B2D2A3-D4E0-44D0-9BE8-C32F7BB55377} - System32\Tasks\OO DiskImage {50e93d3d-0f9d-4337-9da9-41e223dbecdf} => C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
Task: {F4C0367C-5E13-44C7-BBA0-0FC0383463C2} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {F9676A6D-B76C-4231-9C24-7E1846F9FB73} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [946112 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FF0ACF06-F2E5-48AF-9CD6-ADCC5909A712} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-09] (Adobe Inc. -> Adobe)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\OO DiskImage {1813c7a8-7acc-4453-b880-ed3e150738e6}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {1813c7a8-7acc-4453-b880-ed3e150738e6}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20160113.xml
Task: C:\WINDOWS\Tasks\OO DiskImage {280d888e-c134-4481-a35a-256f8c5fb265}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {280d888e-c134-4481-a35a-256f8c5fb265}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20180107.xml
Task: C:\WINDOWS\Tasks\OO DiskImage {50e93d3d-0f9d-4337-9da9-41e223dbecdf}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {50e93d3d-0f9d-4337-9da9-41e223dbecdf}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20170220[1].xml
Task: C:\WINDOWS\Tasks\OO DiskImage {5b809c47-5c86-45f4-af05-e059c82922bf}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {5b809c47-5c86-45f4-af05-e059c82922bf}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20150807.xml
Task: C:\WINDOWS\Tasks\OO DiskImage {5f9750c4-12b1-4fa3-a82d-f9e028b9af41}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {5f9750c4-12b1-4fa3-a82d-f9e028b9af41}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20160315.xml
Task: C:\WINDOWS\Tasks\OO DiskImage {64d9f8b7-5ef1-443f-8b87-b11d0f0dc1a5}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {64d9f8b7-5ef1-443f-8b87-b11d0f0dc1a5}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20120524.xml
Task: C:\WINDOWS\Tasks\OO DiskImage {8f63c9a5-f4dd-4231-8df9-d4fbc70883d5}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {8f63c9a5-f4dd-4231-8df9-d4fbc70883d5}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20160628.xml
Task: C:\WINDOWS\Tasks\OO DiskImage {9ad0a168-b2cc-4946-8dcf-7102deb64e97}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {9ad0a168-b2cc-4946-8dcf-7102deb64e97}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20150829.xml
Task: C:\WINDOWS\Tasks\OO DiskImage {b09cac0f-c0e6-4899-ac8d-4d67d6e358b7}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {b09cac0f-c0e6-4899-ac8d-4d67d6e358b7}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20190301.xml
Task: C:\WINDOWS\Tasks\OO DiskImage {c162a847-f653-4c3d-8637-77db48aaa490}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {c162a847-f653-4c3d-8637-77db48aaa490}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20160301.xml
Task: C:\WINDOWS\Tasks\OO DiskImage {d6251ec9-6900-4283-b088-77bc092d8710}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {d6251ec9-6900-4283-b088-77bc092d8710}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20160301[1].xml
Task: C:\WINDOWS\Tasks\OO DiskImage {db3436a6-497b-4adc-b5c6-7efba2f3c5b2}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {db3436a6-497b-4adc-b5c6-7efba2f3c5b2}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20170220.xml
Task: C:\WINDOWS\Tasks\OO DiskImage {e7eafe2d-1725-43a0-8512-3cbacd5cbf0d}.job => C:\Program Files\OO Software\DiskImage\oodiag.exe,/run {e7eafe2d-1725-43a0-8512-3cbacd5cbf0d}O&O DiskImage C:\ProgramData\OO Software\DiskImage\Aufgaben\Aufgabe20160113[1].xml
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{361C5F2A-3855-4504-BB96-1574B2EB3C07}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{68F98613-014A-4838-81F7-7C28E0BE073F}: [DhcpNameServer] 192.168.178.1
Internet Explorer:
==================
HKU\S-1-5-21-249342433-4158582237-3597877800-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.spiegel.de/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-249342433-4158582237-3597877800-1000 -> {DBCB1543-1CB9-4DC0-9272-DF5221C51E52} URL = hxxps://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:{language}:{referrer:source}&ie={inputEncoding?}&oe={outputEncoding?}
BHO: GBHO.BHO -> {45d30484-7ded-43d9-957a-d2fd1f046511} -> c:\windows\system32\mscoree.dll [2019-03-19] (Microsoft Windows -> Microsoft Corporation)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll => Keine Datei
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\ssv.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\jp2ssv.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Smart Recovery 2 - {1d09c093-f71e-43c3-b948-19316cbd695e} - c:\windows\system32\mscoree.dll [2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files (x86)\Epson Software\Easy Photo Print\EPTBL.dll Keine Datei
DPF: HKLM-x32 {1ABA5FAC-1417-422B-BA82-45C35E2C908B} hxxp://kitchenplanner.ikea.com/DE/Core/Player/2020PlayerAX_IKEA_Win32.cab
DPF: HKLM-x32 {937FE81C-FECF-4A55-9754-49D6D6550EDC} hxxp://192.168.178.30:8080/cgi-bin/NNVRVMon.cab
FireFox:
========
FF DefaultProfile: m9u2z4rd.Standard-Benutzer
FF ProfilePath: C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\m9u2z4rd.Standard-Benutzer [2019-07-26]
FF Homepage: Mozilla\Firefox\Profiles\m9u2z4rd.Standard-Benutzer -> www.Spiegel.de
FF Extension: (uBlock Origin) - C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\m9u2z4rd.Standard-Benutzer\Extensions\uBlock0@raymondhill.net.xpi [2019-07-14]
FF ProfilePath: C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\z6zx7ihl.default-1459018334352 [2019-05-03]
FF Homepage: Mozilla\Firefox\Profiles\z6zx7ihl.default-1459018334352 -> hxxp://spiegel.de/
FF Extension: (ETP Search Volume Study) - C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\z6zx7ihl.default-1459018334352\Extensions\etp-search-volume-study@shield.mozilla.org.xpi [2019-04-09]
FF Extension: (uBlock Origin) - C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\z6zx7ihl.default-1459018334352\Extensions\uBlock0@raymondhill.net.xpi [2019-03-23]
FF Extension: (YouTube Flash Video Player) - C:\Users\Hans\AppData\Roaming\Mozilla\Firefox\Profiles\z6zx7ihl.default-1459018334352\Extensions\{f3bd3dd2-2888-44c5-91a2-2caeb33fb898}.xpi [2018-01-23]
FF HKLM-x32\...\Firefox\Extensions: [ff-bmboc@bytemobile.com] - C:\Program Files\T-Mobile\InternetManager_H\OCx64\addon => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [{00F0643E-B367-4779-B45D-7046EBA37A88}] - C:\Program Files (x86)\Steganos Password Manager 2012\spmplugin3 => nicht gefunden
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Keine Datei]
FF Plugin-x32: @garmin.com/GpsControl -> C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll [2012-05-30] (Garmin International -> GARMIN Corp.)
FF Plugin-x32: @java.com/DTPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\dtplugin\npDeployJava1.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.221.2 -> C:\Program Files (x86)\Java\jre1.8.0_221\bin\plugin2\npjp2.dll [2019-07-18] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corporation -> Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S4 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] (Wolters Kluwer Deutschland GmbH -> )
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 APC Data Service; C:\Program Files (x86)\APC\PowerChute Personal Edition\dataserv.exe [14256 2019-06-07] (Schneider Electric -> Schneider Electric) [Datei ist nicht signiert]
R2 APC UPS Service; C:\Program Files (x86)\APC\PowerChute Personal Edition\mainserv.exe [4261808 2019-06-07] (Schneider Electric -> Schneider Electric) [Datei ist nicht signiert]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
S2 AVMPowerlineService; C:\Program Files (x86)\FRITZ!Powerline\PowerlineService.exe [245760 2017-02-28] (AVM GmbH) [Datei ist nicht signiert]
R2 cjpcsc; C:\Windows\SysWOW64\cjpcsc.exe [569344 2015-07-31] (REINER Kartengeraete GmbH & Co. KG -> REINER SCT)
R2 DES2 Service; C:\Program Files (x86)\GIGABYTE\EnergySaver2\des2svr.exe [68136 2009-06-17] (Giga-Byte Technology -> )
R2 DSAService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAService.exe [26984 2019-07-25] (IDSA Production signing key -> Intel)
R3 DSAUpdateService; C:\Program Files (x86)\Intel\Driver and Support Assistant\DSAUpdateService.exe [80744 2019-07-25] (IDSA Production signing key -> Intel)
R2 DVBVRecorder; C:\Program Files (x86)\DVBViewer\DVBVservice.exe [926576 2017-11-01] (Christian Hackbart -> CM & V)
R2 EpsonScanSvc; C:\Windows\system32\EscSvc64.exe [144560 2012-05-17] (SEIKO EPSON Corporation -> Seiko Epson Corporation)
S4 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [Datei ist nicht signiert]
S3 Intel(R) SUR QC SAM; C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18168 2017-07-13] (Intel(R) Software Asset Manager -> Intel Corporation)
S2 MB3Service; C:\Program Files\Malwarebytes\Anti-Ransomware\MB3Service.exe [6054352 2017-08-18] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 OO DiskImage; C:\Program Files\OO Software\DiskImage\oodiag.exe [7898176 2017-09-20] (O&O Software GmbH -> O&O Software GmbH)
R2 OODefragAgent; C:\Program Files\OO Software\Defrag\oodag.exe [3636936 2016-02-15] (O&O Software GmbH -> O&O Software GmbH)
S3 PAExec; C:\Windows\PAExec.exe [189112 2016-06-28] (Power Admin LLC -> Power Admin LLC)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5773384 2019-07-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Smart TimeLock; C:\Program Files (x86)\GIGABYTE\Smart6\Timelock\TimeMgmtDaemon.exe [114688 2009-10-13] (Gigabyte Technology CO., LTD.) [Datei ist nicht signiert]
S3 UPnPService; C:\Program Files (x86)\Common Files\MAGIX Shared\UPnPService\UPnPService.exe [544768 2006-12-14] (Magix AG) [Datei ist nicht signiert]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\NisSrv.exe [2552416 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1907.4-0\MsMpEng.exe [108832 2019-07-26] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NvContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerLocalSystem -a -f "C:\ProgramData\NVIDIA\NvContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem" -r -p 30000
S3 NvContainerNetworkService; "C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe" -s NvContainerNetworkService -f "C:\ProgramData\NVIDIA\NvContainerNetworkService.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvContainer\plugins\NetworkService" -r -p 30000
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AnyDVD; C:\WINDOWS\System32\Drivers\AnyDVD.sys [150440 2015-12-28] (SlySoft, Inc. -> SlySoft, Inc.)
R3 AnyDVD; C:\Windows\SysWOW64\Drivers\AnyDVD.sys [150440 2015-12-28] (SlySoft, Inc. -> SlySoft, Inc.)
R3 DDBase; C:\WINDOWS\System32\drivers\DDBase.sys [32768 2012-12-21] (Digital Devices GmbH -> Digital Devices GmbH)
R3 DDCapture; C:\WINDOWS\System32\drivers\DDCapture.sys [21504 2012-12-21] (Digital Devices GmbH -> Digital Devices GmbH)
R3 DDCommonInterface; C:\WINDOWS\System32\drivers\DDCommonInterface.sys [62464 2012-12-21] (Digital Devices GmbH -> Digital Devices GmbH)
R3 DDTuner; C:\WINDOWS\System32\drivers\DDTuner.sys [169984 2012-12-21] (Digital Devices GmbH -> Digital Devices GmbH)
R3 ElbyCDFL; C:\WINDOWS\System32\Drivers\ElbyCDFL.sys [40872 2014-02-10] (SlySoft, Inc. -> SlySoft, Inc.)
R3 ElbyCDFL; C:\Windows\SysWOW64\Drivers\ElbyCDFL.sys [40872 2014-02-10] (SlySoft, Inc. -> SlySoft, Inc.)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
S3 etdrv; C:\Windows\etdrv.sys [25640 2017-06-06] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R3 gdrv; C:\Windows\gdrv.sys [25640 2019-07-26] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R3 GeneStor; C:\WINDOWS\system32\DRIVERS\GeneStor.sys [215608 2016-08-22] (GENESYS LOGIC, INC. -> GenesysLogic)
S3 GVTDrv64; C:\Windows\GVTDrv64.sys [30528 2017-08-10] (GIGA-BYTE TECHNOLOGY CO., LTD -> )
R1 HWiNFO32; C:\Windows\system32\drivers\HWiNFO64A.SYS [27552 2016-01-24] (Martin Malik - REALiX -> REALiX(tm))
R3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [44480 2011-05-17] (Akeo Consulting -> hxxp://libusb-win32.sourceforge.net)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [199768 2019-07-14] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-06-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [224408 2019-07-26] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73584 2019-07-26] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [275232 2019-07-26] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [116112 2019-07-26] (Malwarebytes Corporation -> Malwarebytes)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_ref_pubwu.inf_amd64_2e7fa54192fe16d0\nvlddmkm.sys [16936048 2017-11-09] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [48064 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
R0 oodisr; C:\WINDOWS\System32\DRIVERS\oodisr.sys [116888 2016-04-28] (O&O Software GmbH -> O&O Software GmbH)
R0 oodisrh; C:\WINDOWS\System32\DRIVERS\oodisrh.sys [41112 2016-04-28] (O&O Software GmbH -> O&O Software GmbH)
R3 oodivd; C:\WINDOWS\System32\DRIVERS\oodivd.sys [255640 2016-04-28] (O&O Software GmbH -> O&O Software GmbH)
R0 oodivdh; C:\WINDOWS\System32\DRIVERS\oodivdh.sys [44696 2016-04-28] (O&O Software GmbH -> O&O Software GmbH)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [711968 2019-06-04] (Realtek Semiconductor Corp. -> Realtek )
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [47496 2019-07-26] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [23200 2015-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [344288 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54496 2019-07-26] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) |