Hier der zweite Teil des FRST-Logfile Code:
C:\WINDOWS\system32\CompMgmtLauncher.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000088560 _____ (Microsoft Corporation) C:\WINDOWS\system32\remoteaudioendpoint.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000088488 _____ (Microsoft Corporation) C:\WINDOWS\system32\coloradapterclient.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000088064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\olepro32.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3api.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000087048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dot3msm.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditBufferTestHook.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApiSetHost.AppExecutionAlias.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000084488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000084280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000078848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000077824 _____ (Microsoft Corporation) C:\WINDOWS\system32\CustomInstallExec.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000076288 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilot.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000072816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\remoteaudioendpoint.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzautoupdate.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000071720 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwm.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.EnrollmentStatusTracking.ConfigProvider.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\monitor.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UsoClient.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcsvc6.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EditBufferTestHook.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000066360 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptdll.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000065064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsManagementServiceWinRt.ProxyStub.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\coloradapterclient.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcadm.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ApiSetHost.AppExecutionAlias.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000063504 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityHealthHost.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmgaproxystub.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidspi.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000058825 _____ C:\WINDOWS\system32\srms.dat
2019-08-19 22:53 - 2019-08-19 22:53 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcsvc6.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups2.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000057344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audioresourceregistrar.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000056008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptdll.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000055608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storufs.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000055296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efsext.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000052736 _____ (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcalua.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000049152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000047200 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\devauthe.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000046632 _____ (Microsoft Corporation) C:\WINDOWS\system32\browser_broker.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidusb.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmintegrator.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.Common.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000043536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiredNetworkCSP.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpgradeResultsUI.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000042296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SysResetErr.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\WordBreakers.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiConfigSP.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000037888 _____ C:\WINDOWS\system32\usocoreps.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvcpal.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000034816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mskssrv.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WordBreakers.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LaunchWinApp.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\sxssrv.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\FaxPrinterInstaller.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\KNetPwrDepBroker.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cmintegrator.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000029184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000028936 _____ (Microsoft Corporation) C:\WINDOWS\system32\vmbuspipe.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndistapi.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdsldr.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimsg.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidtel.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\autopilotdiag.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000023352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\isapnp.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\wci.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000021544 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdhvcom.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\system32\fixmapi.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000020728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64cpu.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winnlsres.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\winnlsres.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000019256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msisadrv.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\applockerfltr.sys
2019-08-19 22:53 - 2019-08-19 22:53 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\system32\bindflt.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanhlp.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000016384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fixmapi.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8thk.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KBDJPN.DLL
2019-08-19 22:53 - 2019-08-19 22:53 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d8thk.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcaevts.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\pacjsworker.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.exe
2019-08-19 22:53 - 2019-08-19 22:53 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TpmCertResources.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmCertResources.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3r.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tier2punctuations.dll
2019-08-19 22:53 - 2019-08-19 22:53 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3r.dll
2019-08-19 22:50 - 2019-08-19 22:57 - 000000000 ____D C:\WINDOWS\system32\Intel
2019-08-19 22:50 - 2019-08-19 22:50 - 004470272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe
2019-08-19 22:50 - 2019-08-19 22:50 - 000903168 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsFilt.dll
2019-08-19 22:50 - 2019-08-19 22:50 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XpsFilt.dll
2019-08-19 22:50 - 2019-08-19 22:50 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\XPSSHHDR.dll
2019-08-19 22:50 - 2019-08-19 22:50 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\XPSSHHDR.dll
2019-08-19 22:50 - 2019-08-19 22:50 - 000076060 _____ C:\WINDOWS\SysWOW64\xpsrchvw.xml
2019-08-19 22:50 - 2019-08-19 22:50 - 000076060 _____ C:\WINDOWS\system32\xpsrchvw.xml
2019-08-19 22:50 - 2019-08-19 22:50 - 000000000 ____D C:\WINDOWS\system32\cAVS
2019-08-19 22:15 - 2019-08-19 22:15 - 000000000 ____D C:\ProgramData\Microsoft OneDrive
2019-08-19 22:14 - 2019-08-22 20:40 - 001632520 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-08-19 22:13 - 2019-08-22 20:35 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-08-19 22:13 - 2019-08-21 08:45 - 000004304 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineUA
2019-08-19 22:13 - 2019-08-21 08:45 - 000004072 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskMachineCore
2019-08-19 22:13 - 2019-08-19 22:13 - 000003482 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2019-08-19 22:13 - 2019-08-19 22:13 - 000002858 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2109547166-530357783-1099994632-1001
2019-08-19 22:13 - 2019-08-19 22:13 - 000002304 _____ C:\WINDOWS\System32\Tasks\RtHDVBg_PushButton
2019-08-19 22:13 - 2019-08-19 22:13 - 000000020 ___SH C:\Users\mhake\ntuser.ini
2019-08-19 22:13 - 2019-08-19 22:13 - 000000000 ____D C:\Users\mhake\AppData\Local\PackageStaging
2019-08-19 22:12 - 2019-08-19 22:13 - 000007623 _____ C:\WINDOWS\diagwrn.xml
2019-08-19 22:12 - 2019-08-19 22:13 - 000007623 _____ C:\WINDOWS\diagerr.xml
2019-08-19 22:11 - 2019-08-19 22:11 - 000000000 ____D C:\ProgramData\USOShared
2019-08-19 22:07 - 2019-08-22 20:03 - 000000000 ____D C:\Users\mhake
2019-08-19 22:07 - 2019-08-19 22:07 - 000000000 _SHDL C:\Users\mhake\Vorlagen
2019-08-19 22:07 - 2019-08-19 22:07 - 000000000 _SHDL C:\Users\mhake\Startmenü
2019-08-19 22:07 - 2019-08-19 22:07 - 000000000 _SHDL C:\Users\mhake\Netzwerkumgebung
2019-08-19 22:07 - 2019-08-19 22:07 - 000000000 _SHDL C:\Users\mhake\Lokale Einstellungen
2019-08-19 22:07 - 2019-08-19 22:07 - 000000000 _SHDL C:\Users\mhake\Eigene Dateien
2019-08-19 22:07 - 2019-08-19 22:07 - 000000000 _SHDL C:\Users\mhake\Druckumgebung
2019-08-19 22:07 - 2019-08-19 22:07 - 000000000 _SHDL C:\Users\mhake\AppData\Roaming\Microsoft\Windows\Start Menu\Programme
2019-08-19 22:07 - 2019-08-19 22:07 - 000000000 _SHDL C:\Users\mhake\AppData\Local\Verlauf
2019-08-19 22:07 - 2019-08-19 22:07 - 000000000 _SHDL C:\Users\mhake\AppData\Local\Anwendungsdaten
2019-08-19 22:07 - 2019-08-19 22:07 - 000000000 _SHDL C:\Users\mhake\Anwendungsdaten
2019-08-19 22:07 - 2019-03-19 06:46 - 000001105 _____ C:\Users\mhake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-08-19 22:06 - 2019-08-19 22:53 - 002874368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2019-08-19 22:06 - 2019-08-19 22:06 - 000001113 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves MaxxAudioPro.lnk
2019-08-19 22:06 - 2019-08-19 22:06 - 000000000 ____D C:\Program Files\Waves
2019-08-19 22:06 - 2017-05-31 02:25 - 000113640 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.DLL
2019-08-19 22:06 - 2017-05-31 02:25 - 000104416 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.DLL
2019-08-19 22:05 - 2019-08-22 19:07 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-08-19 22:05 - 2019-08-20 19:03 - 000437312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-08-19 18:43 - 2019-08-19 22:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-08-19 18:42 - 2019-08-19 21:08 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-08-13 13:49 - 2019-08-13 13:49 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-08-13 13:49 - 2019-08-13 13:49 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-08-13 13:49 - 2019-08-13 13:49 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-08-13 13:49 - 2019-08-13 13:49 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-08-04 16:16 - 2019-08-04 16:16 - 000300350 _____ C:\Users\mhake\Downloads\Zur Verjährung von Mord-komprimiert.pdf
2019-08-03 10:28 - 2019-08-19 22:13 - 000000000 ___DC C:\WINDOWS\Panther
==================== Ein Monat (geänderte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-08-22 20:47 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2019-08-22 20:40 - 2019-03-19 14:16 - 000708746 _____ C:\WINDOWS\system32\perfh007.dat
2019-08-22 20:40 - 2019-03-19 14:16 - 000142890 _____ C:\WINDOWS\system32\perfc007.dat
2019-08-22 20:39 - 2017-10-06 15:35 - 000000000 ____D C:\Users\mhake\AppData\LocalLow\Mozilla
2019-08-22 20:35 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-08-22 20:35 - 2017-12-20 17:21 - 000000000 ___RD C:\Users\mhake\OneDrive - European LegalTech Expo GmbH
2019-08-22 20:35 - 2017-09-26 19:05 - 000000000 ___RD C:\Users\mhake\OneDrive
2019-08-22 20:35 - 2017-09-26 19:03 - 000000000 __SHD C:\Users\mhake\IntelGraphicsProfiles
2019-08-22 20:31 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-08-22 20:10 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2019-08-22 20:10 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-08-22 20:10 - 2018-06-20 20:37 - 000000000 ____D C:\ProgramData\Packages
2019-08-22 19:54 - 2017-09-26 20:49 - 000001244 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2019-08-22 19:54 - 2017-09-26 20:49 - 000001240 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2019-08-20 19:31 - 2017-09-26 21:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-08-20 19:29 - 2018-11-17 00:58 - 000000000 ____D C:\Program Files\rempl
2019-08-20 19:03 - 2017-10-30 12:17 - 000000000 ___RD C:\Users\mhake\3D Objects
2019-08-20 19:03 - 2017-09-26 19:03 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-08-20 19:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2019-08-20 19:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-08-20 19:00 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-08-20 18:59 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-08-20 18:59 - 2018-11-11 15:24 - 000000000 ____D C:\Users\mhake\AppData\Roaming\Sky Go
2019-08-20 17:53 - 2017-09-26 19:14 - 000000000 ____D C:\WINDOWS\SysWOW64\sda
2019-08-20 17:48 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\servicing
2019-08-20 17:30 - 2018-01-03 20:08 - 000000000 ____D C:\Users\mhake\AppData\Local\PlaceholderTileLogoFolder
2019-08-20 17:30 - 2017-11-29 19:41 - 000000000 ____D C:\Users\mhake\AppData\Local\Packages
2019-08-19 22:59 - 2019-06-19 10:23 - 000000000 ____D C:\Program Files\UNP
2019-08-19 22:59 - 2019-03-19 06:56 - 000000000 ____D C:\WINDOWS\Setup
2019-08-19 22:59 - 2019-03-19 06:52 - 000000000 __RHD C:\Users\Public\Libraries
2019-08-19 22:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinBioDatabase
2019-08-19 22:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\spool
2019-08-19 22:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-08-19 22:59 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-08-19 22:59 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-08-19 22:59 - 2019-03-19 06:49 - 000028672 _____ C:\WINDOWS\system32\config\BCD-Template
2019-08-19 22:59 - 2018-06-15 14:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2019-08-19 22:59 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2019-08-19 22:59 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\MsDtc
2019-08-19 22:59 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-08-19 22:59 - 2018-04-10 09:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PhotoScape
2019-08-19 22:59 - 2018-04-10 09:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2019-08-19 22:59 - 2017-10-30 12:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-08-19 22:59 - 2017-10-30 12:14 - 000000000 ____D C:\WINDOWS\SysWOW64\images
2019-08-19 22:59 - 2017-10-07 20:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-08-19 22:59 - 2017-09-26 21:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2019-08-19 22:59 - 2017-09-26 19:01 - 000000000 ____D C:\Program Files\Intel
2019-08-19 22:57 - 2019-06-26 15:22 - 000000000 ____D C:\WINDOWS\Firmware
2019-08-19 22:57 - 2019-06-19 12:46 - 000000000 ____D C:\WINDOWS\system32\Drivers\RivetNetworks
2019-08-19 22:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2019-08-19 22:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Resources
2019-08-19 22:57 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Help
2019-08-19 22:57 - 2018-06-08 20:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cisco
2019-08-19 22:57 - 2017-09-26 19:15 - 000000000 ____D C:\Program Files\Realtek
2019-08-19 22:56 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2019-08-19 22:56 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2019-08-19 22:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\TextInput
2019-08-19 22:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2019-08-19 22:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2019-08-19 22:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-08-19 22:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-08-19 22:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2019-08-19 22:56 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2019-08-19 22:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lv-LV
2019-08-19 22:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2019-08-19 22:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\et-EE
2019-08-19 22:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SysWOW64\es-MX
2019-08-19 22:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2019-08-19 22:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2019-08-19 22:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\et-EE
2019-08-19 22:50 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\es-MX
2019-08-19 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\Registration
2019-08-19 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\USOPrivate
2019-08-19 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows NT
2019-08-19 22:13 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Windows Defender
2019-08-19 22:13 - 2019-03-19 06:37 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-08-19 22:13 - 2017-09-26 19:03 - 000000000 ____D C:\Users\mhake\AppData\Local\ConnectedDevicesPlatform
2019-08-19 22:11 - 2019-03-19 06:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2019-08-19 22:10 - 2017-11-29 19:45 - 000023056 _____ C:\WINDOWS\system32\emptyregdb.dat
2019-08-19 22:07 - 2018-11-11 15:23 - 000000000 ____D C:\Users\mhake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sky
2019-08-19 22:07 - 2018-01-02 13:16 - 000000000 ____D C:\Users\mhake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Exodus Movement Inc
2019-08-19 22:07 - 2017-10-30 12:20 - 000000000 ____D C:\Users\mhake\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-08-19 22:06 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\appcompat
2019-08-19 22:06 - 2017-09-26 19:16 - 000000000 ____D C:\WINDOWS\system32\RTCOM
2019-08-19 22:06 - 2017-09-26 19:15 - 000000000 ____D C:\WINDOWS\SysWOW64\RTCOM
2019-08-19 21:21 - 2017-11-13 13:17 - 000002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2019-08-19 21:08 - 2017-10-06 15:35 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-08-19 18:49 - 2017-10-06 15:35 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-08-19 18:45 - 2017-09-26 21:47 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-08-19 18:44 - 2017-09-26 20:49 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-08-19 18:43 - 2017-09-26 21:47 - 134272480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-08-04 19:57 - 2017-09-26 20:52 - 000000000 ___RD C:\Users\mhake\Dropbox
2019-07-26 15:05 - 2018-02-22 19:14 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ================
2017-10-30 12:16 - 2004-12-10 22:44 - 000052736 _____ (ToMMTi-Systems) C:\Users\mhake\ForceDLL.dll
2017-10-30 12:16 - 2004-12-10 22:44 - 000090112 _____ (ToMMTi-Systems) C:\Users\mhake\hook_3DA.dll
2019-06-16 21:31 - 2019-06-16 21:31 - 000027771 _____ () C:\Users\mhake\AppData\Local\recently-used.xbel
==================== SigCheck ===============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ============================ Und hier noch das Addition Logfile und die AdwCleaner Logfiles:
[CODE] Addition Logfile Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 22-08-2019
durchgeführt von mhake (22-08-2019 20:50:08)
Gestartet von C:\Users\mhake\Downloads
Windows 10 Home Version 1903 18362.295 (X64) (2019-08-19 20:13:13)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2109547166-530357783-1099994632-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2109547166-530357783-1099994632-503 - Limited - Disabled)
Gast (S-1-5-21-2109547166-530357783-1099994632-501 - Limited - Disabled)
mhake (S-1-5-21-2109547166-530357783-1099994632-1001 - Administrator - Enabled) => C:\Users\mhake
WDAGUtilityAccount (S-1-5-21-2109547166-530357783-1099994632-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 19.012.20036 - Adobe Systems Incorporated)
B110 (HKLM-x32\...\{CC2917EA-96EC-41D1-9756-760C32AF6F12}) (Version: 140.0.353.000 - Hewlett-Packard) Hidden
BufferChm (HKLM-x32\...\{FA0FF682-CC70-4C57-93CD-E276F3E7537E}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\Cisco AnyConnect Secure Mobility Client) (Version: 4.5.04029 - Cisco Systems, Inc.)
Cisco AnyConnect Secure Mobility Client (HKLM-x32\...\{3AA4F1C9-87A4-437A-B3F4-69100178F709}) (Version: 4.5.04029 - Cisco Systems, Inc.) Hidden
Cisco VideoGuard Player (HKLM-x32\...\{30e4813e-2a86-4e4f-82ea-23df71ca8ffb}) (Version: 10.1.1.6570 - Cisco Systems, Inc)
Destinations (HKLM-x32\...\{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (HKLM-x32\...\{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 79.4.143 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden
Exodus (HKU\S-1-5-21-2109547166-530357783-1099994632-1001\...\exodus) (Version: 1.41.0 - Exodus Movement Inc)
GPBaseService2 (HKLM-x32\...\{BB3447F6-9553-4AA9-960E-0DB5310C5779}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Wireless B110 All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{C63184F3-8343-408F-A948-DDB0AC969A99}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPAppStudio (HKLM-x32\...\{565E7B0E-B76B-4EAD-9753-F1E72A5CF12E}) (Version: 140.0.95.000 - Hewlett-Packard) Hidden
HPPhotoGadget (HKLM-x32\...\{CAE4213F-F797-439D-BD9E-79B71D115BE3}) (Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (HKLM-x32\...\{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}) (Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (HKLM-x32\...\{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 21.20.16.4664 - Intel Corporation)
MarketResearch (HKLM-x32\...\{D360FA88-17C8-4F14-B67F-13AAF9607B12}) (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Maxx Audio Installer (x64) (HKLM\...\{307032B2-6AF2-46D7-B933-62438DEB2B9A}) (Version: 2.7.9233.1 - Waves Audio Ltd.) Hidden
Microsoft Office 365 ProPlus - de-de (HKLM\...\O365ProPlusRetail - de-de) (Version: 16.0.11328.20392 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2109547166-530357783-1099994632-1001\...\OneDriveSetup.exe) (Version: 19.123.0624.0005 - Microsoft Corporation)
Mozilla Firefox 68.0.2 (x64 de) (HKLM\...\Mozilla Firefox 68.0.2 (x64 de)) (Version: 68.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 56.0 - Mozilla)
Network64 (HKLM\...\{6BFAB6C1-6D46-46DB-A538-A269907C9F2F}) (Version: 140.0.306.000 - Hewlett-Packard) Hidden
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.11328.20392 - Microsoft Corporation) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
PS_AIO_07_B110_SW_Min (HKLM-x32\...\{C0974FF0-282B-4730-A50C-B112FA263E17}) (Version: 140.0.365.000 - Hewlett-Packard) Hidden
QuickTransfer (HKLM-x32\...\{E517094C-06B6-419F-8FFD-EF4F57972130}) (Version: 140.0.98.000 - Hewlett-Packard) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.15063.21300 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8205 - Realtek Semiconductor Corp.)
Scan (HKLM-x32\...\{06A1D88C-E102-4527-AF70-29FFD7AF215A}) (Version: 140.0.253.000 - Hewlett-Packard) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Sky Go 1.4.10.0 (HKU\S-1-5-21-2109547166-530357783-1099994632-1001\...\com.bskyb.skygoplayer_is1) (Version: 1.4.10.0 - Sky)
SolutionCenter (HKLM-x32\...\{BC5DD87B-0143-4D14-AAE6-97109614DC6B}) (Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (HKLM-x32\...\{5B025634-7D5B-4B8D-BE2A-7943C1CF2D5D}) (Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Toolbox (HKLM-x32\...\{292F0F52-B62D-4E71-921B-89A682402201}) (Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (HKLM-x32\...\{CD31E63D-47FD-491C-8117-CF201D0AFAB5}) (Version: 140.0.297.000 - Hewlett-Packard) Hidden
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.1 - VideoLAN)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0) (Version: 1.0.33.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.0.33.0 (HKLM\...\VulkanRT1.0.33.0-4) (Version: 1.0.33.0 - LunarG, Inc.)
WebReg (HKLM-x32\...\{8EE94FD8-5F52-4463-A340-185D16328158}) (Version: 140.0.297.017 - Hewlett-Packard) Hidden
WinRAR 5.50 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.50.0 - win.rar GmbH)
Packages:
=========
Adobe Reader Touch -> C:\Program Files\WindowsApps\AdobeSystemsIncorporated.AdobeReader_3.1.8.7675_x86__ynb6jyjzte8ga [2017-09-26] (Adobe Systems Incorporated)
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.0.2.0_x64__tf1gferkr813w [2019-05-29] (Autodesk Inc.)
EasyNotes for Keep -> C:\Program Files\WindowsApps\61545TimGrabinat.wAPPerforGKeep_1.1.36.0_x64__rcb0qdgx4z9ca [2019-06-10] (Tim Grabinat) [MS Ad]
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_100.1.581.0_x64__v10z8vjag6ke6 [2019-07-19] (HP Inc.)
Killer Control Center -> C:\Program Files\WindowsApps\RivetNetworks.KillerControlCenter_2.0.2369.0_x64__rh07ty8m5nkag [2019-06-19] (Rivet Networks LLC)
Mail und Kalender -> C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.11901.20184.0_x64__8wekyb3d8bbwe [2019-08-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft News – Nachrichten -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.31.12124.0_x64__8wekyb3d8bbwe [2019-08-19] (Microsoft Corporation) [MS Ad]
MSN Wetter -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.31.11905.0_x64__8wekyb3d8bbwe [2019-07-22] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.93.478.0_x64__mcm4njqhnhss8 [2019-06-28] (Netflix, Inc.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.451.0_x86__zpdnekdrzrea0 [2019-08-19] (Spotify AB)
Wunderlist: To-Do Liste -> C:\Program Files\WindowsApps\6Wunderkinder.Wunderlist_3.6.35.0_x64__b4cwydgxqx59r [2019-07-27] (6 Wunderkinder GmbH)
XING -> C:\Program Files\WindowsApps\XINGAG.XING_3.137.16.0_x86__xpfg3f7e9an52 [2019-08-20] (XING SE)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2109547166-530357783-1099994632-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive - Personal] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}0
CustomCLSID: HKU\S-1-5-21-2109547166-530357783-1099994632-1001_Classes\CLSID\{04271989-C4D2-DBA2-1577-B0E539B92B6D} -> [OneDrive - European LegalTech Expo GmbH] => C:\Users\mhake\OneDrive - European LegalTech Expo GmbH [2017-12-20 17:21]
CustomCLSID: HKU\S-1-5-21-2109547166-530357783-1099994632-1001_Classes\CLSID\{a9872fee-5a55-4ecb-9b0f-b06fedcf14d1}\localserver32 -> C:\Program Files\Waves\MaxxAudio\MaxxAudioPro.exe (Waves Inc -> Waves Audio Ltd)
CustomCLSID: HKU\S-1-5-21-2109547166-530357783-1099994632-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\mhake\Dropbox [2017-09-26 20:52]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\ki122459.inf_amd64_e5494748d53088c1\igfxDTCM.dll [2017-05-31] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2017-08-11] (win.rar GmbH -> Alexander Roshal)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============
2009-11-17 22:58 - 2009-11-17 22:58 - 000342656 _____ (Hewlett Packard -> Hewlett-Packard Co.) [Datei ist nicht signiert] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqmif08.dll
2009-11-17 22:58 - 2009-11-17 22:58 - 000559232 _____ (Hewlett Packard -> Hewlett-Packard Co.) [Datei ist nicht signiert] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusg.dll
2011-04-29 11:34 - 2011-04-29 11:34 - 000978432 _____ (Hewlett-Packard Co.) [Datei ist nicht signiert] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqsem08.rsc
2011-04-29 11:34 - 2011-04-29 11:34 - 000012288 _____ (Hewlett-Packard Co.) [Datei ist nicht signiert] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqstp08.rsc
2011-04-29 19:08 - 2011-04-29 19:08 - 000048128 _____ (Hewlett-Packard Co.) [Datei ist nicht signiert] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.rsc
2011-08-18 01:29 - 2011-08-18 01:29 - 001039360 _____ (Hewlett-Packard Co.) [Datei ist nicht signiert] c:\program files (x86)\hp\digital imaging\bin\hpslpsvc64.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000071680 _____ (Hewlett-Packard) [Datei ist nicht signiert] c:\windows\system32\hpzinw12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000089600 _____ (Hewlett-Packard) [Datei ist nicht signiert] c:\windows\system32\hpzipm12.dll
2010-08-06 11:15 - 2010-08-06 11:15 - 000054784 _____ (Hewlett-Packard) [Datei ist nicht signiert] C:\WINDOWS\SYSTEM32\hpzipr12.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\mhake\Desktop\Studienbescheinigung 17.pdf:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\mhake\Desktop\Studienbescheinigung 17.pdf:com.dropbox.attrs [58]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-2109547166-530357783-1099994632-1001\...\sharepoint.com -> hxxps://goetheuniversitaet-files.sharepoint.com
IE trusted site: HKU\S-1-5-21-2109547166-530357783-1099994632-1001\...\sharepoint.de -> hxxps://lr-files.sharepoint.de
==================== Hosts Inhalt: ===============================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2017-03-18 23:03 - 2017-03-18 23:01 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ============================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-2109547166-530357783-1099994632-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\mhake\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\GOPR0412.JPG
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
Windows Firewall ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "Cisco AnyConnect Secure Mobility Agent for Windows"
HKU\S-1-5-21-2109547166-530357783-1099994632-1001\...\StartupApproved\Run: => "Steam"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{1B0DB455-8D5A-4ED5-8C49-501E923647FD}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{86A46184-39A8-410F-94C6-BCF0B2366240}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.451.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{E3AEC624-F699-4C46-84E7-2AD76555AC27}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.451.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4FE9C08B-C0D7-4F38-8DC2-05D9A014BC4B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.451.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4F514B50-7632-4847-A0FC-C8D6EDB8E8C2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.451.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5EC7CBC6-883B-48F6-9C79-982BE0C85845}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.451.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9AF0F857-4A2A-4FAE-BE41-ECE4626D1A69}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.451.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D8FAF3A4-981D-44FE-A339-3F6521E45EB5}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.451.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F6C2C82A-7254-480C-B97A-7B75230460C3}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.112.451.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{22DACD42-FB13-4C9A-95F0-5A5DAA798019}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{E40640B8-3227-44A4-8C3B-7F7DB5339306}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{AEA08CEB-14F5-40CB-A164-8932BAA11FA9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{929D2E6C-88AA-49F7-8834-5713B3195399}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CFC66AA1-30BB-442F-BC05-211E4E9500B9}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B249E600-B88C-445F-BF45-CA26ECAF1434}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe (Hewlett-Packard Company -> Hewlett-Packard)
FirewallRules: [{90C51334-3469-4345-8F67-30EEB653C229}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgh.exe (Hewlett Packard -> Hewlett-Packard Co.) [Datei ist nicht signiert]
FirewallRules: [{CFEA25E8-9A20-465E-9DFC-96D60A076D26}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqusgm.exe (Hewlett Packard -> Hewlett-Packard Co.) [Datei ist nicht signiert]
FirewallRules: [{BF8AD621-30C7-4514-898C-10A330CCB6DC}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett Packard -> Hewlett-Packard)
FirewallRules: [{DDB4491F-9F0D-4178-A934-E7654A7D8917}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgplgtupl.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{415C1A14-4550-44DC-90BE-F25FC76C28B7}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{92E710A3-B414-4E8A-9936-0C0ABC2A40CF}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpoews01.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{20389C4A-B1E5-4296-8EA5-E52D0C41F9BE}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{93CE1EA1-2616-4AAF-97AE-F3A795E4100F}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{81BC0476-622B-4DBC-9BB5-162A90AD0504}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hposid01.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{27F698DC-7E1F-464C-B802-29C0D31671B2}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqste08.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{BECFD31F-6EBF-409F-8801-2AFE26C72668}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett Packard -> Hewlett-Packard Co.)
FirewallRules: [{E052E913-C5E4-476F-8C95-EDD2A7A98152}] => (Allow) C:\Users\mhake\AppData\Local\Temp\7zS1159\setup\hpznui40.exe Keine Datei
FirewallRules: [UDP Query User{D6F5725F-6C7A-4EFE-BC44-B017D17DD909}C:\gog games\empire earth gold edition\empire earth\empire earth.exe] => (Allow) C:\gog games\empire earth gold edition\empire earth\empire earth.exe Keine Datei
FirewallRules: [TCP Query User{F8A29E21-0D74-450A-A55A-487B4D3F7EA0}C:\gog games\empire earth gold edition\empire earth\empire earth.exe] => (Allow) C:\gog games\empire earth gold edition\empire earth\empire earth.exe Keine Datei
FirewallRules: [{0619DB00-F166-431E-892E-0C1DABF2805A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{91851692-7E9E-4C8D-995D-D6817A8EB5F7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{A08EE121-56A8-445D-A138-BCCC4A5DC56D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{368F9DEA-5A54-4D57-9EF1-54BF6A8982C4}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{CEE1E05B-AEF4-4BAE-9996-5FF3BE7A5B31}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{9F43A069-37B1-442B-AEEF-1F79C128A463}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{D34B9920-4BEA-4D6F-B24D-1DBE50FD1F94}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{A8435C03-AE73-468D-96BA-D5927C6D82F8}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{1958D6BE-5BFE-4947-AC60-AF01C775F27F}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{EBDCA1FB-5695-451B-BCCF-5F4487D295FA}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert (Total:225.69 GB) (Free:120.52 GB) (53%)
==================== Fehlerhafte Geräte im Gerätemanager =============
Name:
Description:
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Description: Cisco AnyConnect Secure Mobility Client Virtual Miniport Adapter for Windows x64
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Cisco Systems
Service: vpnva
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
Name: HP Photosmart B110
Description: HP Photosmart B110
Class Guid: {6bdd1fc6-810f-11d0-bec7-08002be2092f}
Manufacturer: Hewlett-Packard
Service: StillCam
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Fehlereinträge in der Ereignisanzeige: =========================
Applikationsfehler:
==================
Error: (08/22/2019 07:07:16 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (08/20/2019 05:29:30 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0
Error: (08/19/2019 10:17:00 PM) (Source: SideBySide) (EventID: 35) (User: )
Description: Fehler beim Generieren des Aktivierungskontextes für "C:\Program Files (x86)\Microsoft Office\root\Office16\lync.exe.Manifest". Fehler in Manifest- oder Richtliniendatei "C:\Program Files (x86)\Microsoft Office\root\Office16\UccApi.DLL" in Zeile 1.
Die im Manifest gefundene Komponenten-ID stimmt nicht mit der ID der angeforderten Komponente überein.
Verweis: UccApi,processorArchitecture="AMD64",type="win32",version="16.0.0.0".
Definition: UccApi,processorArchitecture="x86",type="win32",version="16.0.0.0".
Verwenden Sie das Programm "sxstrace.exe" für eine detaillierte Diagnose.
Error: (08/19/2019 10:10:39 PM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Error: (08/19/2019 10:10:37 PM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Error: (08/19/2019 10:10:37 PM) (Source: MSDTC 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Error: (08/19/2019 10:10:36 PM) (Source: MSDTC Client 2) (EventID: 4104) (User: )
Description: Fehler beim Abrufen des Status des Clusterknotens: .Zurückgegebener Fehlercode: 0x8007085A
Error: (08/19/2019 10:06:09 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 256) (User: )
Description: Vom Kryptografiedienst konnte die Katalogdatenbank nicht initialisiert werden. Fehler: -2147418113 (0x8000ffff) : Schwerwiegender Fehler
.
Systemfehler:
=============
Error: (08/22/2019 08:35:10 PM) (Source: BTHUSB) (EventID: 5) (User: )
Description: Der Bluetooth-Treiber hat ein HCI-Ereignis mit einer bestimmten Größe erwartet, das aber nicht empfangen wurde.
Error: (08/22/2019 08:27:47 PM) (Source: BTHUSB) (EventID: 5) (User: )
Description: Der Bluetooth-Treiber hat ein HCI-Ereignis mit einer bestimmten Größe erwartet, das aber nicht empfangen wurde.
Error: (08/22/2019 08:26:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Content Protection HECI Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/22/2019 08:26:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "DbxSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/22/2019 08:26:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Waves Audio Services" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/22/2019 08:26:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Killer Network Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (08/22/2019 08:26:19 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (08/22/2019 08:26:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Content Protection HDCP Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
==================== Speicherinformationen ===========================
BIOS: Dell Inc. 2.10.0 09/27/2018
Motherboard: Dell Inc. 0T3FTF
Prozessor: Intel(R) Core(TM) i7-7500U CPU @ 2.70GHz
Prozentuale Nutzung des RAM: 62%
Installierter physikalischer RAM: 7917.05 MB
Verfügbarer physikalischer RAM: 2946.88 MB
Summe virtueller Speicher: 9197.05 MB
Verfügbarer virtueller Speicher: 3852.5 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:225.69 GB) (Free:120.52 GB) NTFS
\\?\Volume{270d9751-ffa4-4833-be32-712be56b84b8}\ () (Fixed) (Total:0.85 GB) (Free:0.34 GB) NTFS
\\?\Volume{291ae20c-df75-458a-94e4-2690d6fc2132}\ (Image) (Fixed) (Total:10.19 GB) (Free:0.12 GB) NTFS
\\?\Volume{164f8248-ab1b-4e4a-b7d9-c8fb88a658cc}\ (DELLSUPPORT) (Fixed) (Total:1.13 GB) (Free:0.52 GB) NTFS
\\?\Volume{d517a221-d276-4730-87e2-e1edcbc56604}\ (ESP) (Fixed) (Total:0.48 GB) (Free:0.41 GB) FAT32
==================== MBR & Partitionstabelle ==================
========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: AC3970C0)
Partition: GPT.
==================== Ende von Addition.txt ============================ AdwCleaner Logfile 00: Code:
# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-22-2019
# Duration: 00:00:01
# OS: Windows 10 Home
# Cleaned: 8
# Failed: 2
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files (x86)\Browser Files
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
Deleted HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{92423B36-DC37-4061-95AC-0175058CEF54}
Deleted HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{92423B36-DC37-4061-95AC-0175058CEF54}
Deleted HKLM\Software\Websuche
Deleted HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Websuche
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
Deleted www1.online/?w=RD4345
Deleted www1.online/?w=RD4345
Not Deleted www1.online
Not Deleted www1.online
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2009 octets] - [22/08/2019 19:51:09]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ########## AdwCleaner Logfile 00 Code:
# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-22-2019
# Duration: 00:00:11
# OS: Windows 10 Home
# Scanned: 35493
# Detected: 10
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.WebsucheDE C:\Program Files (x86)\Browser Files
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\Main|Start Page
PUP.Optional.Legacy HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{92423B36-DC37-4061-95AC-0175058CEF54}
PUP.Optional.Legacy HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{92423B36-DC37-4061-95AC-0175058CEF54}
PUP.Optional.WebsucheDE HKLM\Software\Websuche
PUP.Optional.WebsucheDE HKLM\Software\Wow6432Node\\Microsoft\Windows\CurrentVersion\Uninstall\Websuche
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
PUP.Optional.Legacy www1.online
PUP.Optional.Legacy www1.online
PUP.Optional.Legacy www1.online/?w=RD4345
PUP.Optional.Legacy www1.online/?w=RD4345
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ########## AdwCleaner Logfile 01: Code:
# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-22-2019
# Duration: 00:00:10
# OS: Windows 10 Home
# Scanned: 35493
# Detected: 2
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
PUP.Optional.Legacy www1.online
PUP.Optional.Legacy www1.online
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [2009 octets] - [22/08/2019 19:51:09]
AdwCleaner[C00].txt - [2010 octets] - [22/08/2019 19:51:50]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ########## AdwCleaner Logfile 01 Code:
# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-22-2019
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 2
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
Not Deleted www1.online
Not Deleted www1.online
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2009 octets] - [22/08/2019 19:51:09]
AdwCleaner[C00].txt - [2010 octets] - [22/08/2019 19:51:50]
AdwCleaner[S01].txt - [1504 octets] - [22/08/2019 20:22:57]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C01].txt ########## AdwCleaner Logfile 02 Code:
# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 08-22-2019
# Duration: 00:00:10
# OS: Windows 10 Home
# Scanned: 35493
# Detected: 2
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
PUP.Optional.Legacy www1.online
PUP.Optional.Legacy www1.online
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [2009 octets] - [22/08/2019 19:51:09]
AdwCleaner[C00].txt - [2010 octets] - [22/08/2019 19:51:50]
AdwCleaner[S01].txt - [1504 octets] - [22/08/2019 20:22:57]
AdwCleaner[C01].txt - [1654 octets] - [22/08/2019 20:23:14]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S02].txt ########## AdwCleaner Logfile 02 Code:
# -------------------------------
# Malwarebytes AdwCleaner 7.4.0.0
# -------------------------------
# Build: 07-23-2019
# Database: 2019-08-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 08-22-2019
# Duration: 00:00:00
# OS: Windows 10 Home
# Cleaned: 0
# Failed: 2
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
No malicious folders cleaned.
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
No malicious registry entries cleaned.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
Not Deleted www1.online
Not Deleted www1.online
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [2009 octets] - [22/08/2019 19:51:09]
AdwCleaner[C00].txt - [2010 octets] - [22/08/2019 19:51:50]
AdwCleaner[S01].txt - [1504 octets] - [22/08/2019 20:22:57]
AdwCleaner[C01].txt - [1654 octets] - [22/08/2019 20:23:14]
AdwCleaner[S02].txt - [1626 octets] - [22/08/2019 20:25:40]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C02].txt ########## |