Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Mülltonne (https://www.trojaner-board.de/muelltonne/)
-   -   "Name nicht verfügbar" im Lautstärkemixer (https://www.trojaner-board.de/195337-name-verfuegbar-lautstaerkemixer.html)

dnllul 09.04.2019 16:19

"Name nicht verfügbar" im Lautstärkemixer
 
Hallo,
Ich habe seit ein paar Tagen das Problem, dass in meinem Lautstärkemixer ein Sound mit dem Namen "Name nicht verfügbar" vorhanden ist. Ich habe im Internet gelesen, dass das "normalerweise" Werbung etc. abspielt, bei mir macht es aber gar nix. Ich habe schon Malwarebytes, Adwcleaner, Spybot S&D und GData drüberlaufen lassen. Malwarebytes hat ein paar adware sachen gefunden, adwcleaner auch. Der Rest hat nichts gefunden. Die gefundenen Sachen habe ich aber alle schon von den Programmen entfernen lassen. Danach war das Problem leider immernoch da. Ausserdem ist das Gerät nicht bei jedem start vorhanden.

Vielen Dank für eure Hilfe

cosinus 09.04.2019 20:43

Wer soll sich denn dazu äußern wenn du null Infos (keine Logs) postest?

dnllul 09.04.2019 21:08

Ok, entschuldigung.
Hier sind Log dateien von adwcleaner und Malwarebytes:

Code:

# -------------------------------
# Malwarebytes AdwCleaner 7.3.0.0
# -------------------------------
# Build:    04-04-2019
# Database: 2019-04-08.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    04-09-2019
# Duration: 00:00:02
# OS:      Windows 10 Pro
# Cleaned:  33
# Failed:  0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

Deleted      C:\Program Files\D24A1DF6B752313AB94583932D83C4A6
Deleted      C:\Users\ds\AppData\Local\YSearchUtil

***** [ Files ] *****

Deleted      C:\Users\ds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Play Games Online.url

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

Deleted      C:\Windows\System32\Tasks\POWER SUITE
Deleted      C:\Windows\Tasks\POWER SUITE.JOB

***** [ Registry ] *****

Deleted      HKCU\Software\GoldenGate
Deleted      HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted      HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted      HKCU\Software\csastats
Deleted      HKCU\Software\win
Deleted      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{776E5C3F-C4D7-4A9C-8CB9-C3E8B65F195C}
Deleted      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{776E5C3F-C4D7-4A9C-8CB9-C3E8B65F195C}
Deleted      HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Power Suite
Deleted      HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{64E63D8D-19FF-4129-9A10-BB5099C14D6E}
Deleted      HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{6F083974-91C9-456C-8E92-7ABE0D09891D}
Deleted      HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{A5A1C024-8692-4FDF-82A6-1FD69526CFAD}
Deleted      HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{A6D63E27-79F5-4C8E-85F0-C710611AE464}
Deleted      HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{B29D3D3C-D90B-4F64-B99C-4509D6CAC77E}
Deleted      HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{E0210D34-95B3-48D5-9CEA-1B6BFC084FDF}
Deleted      HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{F2839E8C-9B76-4342-85A4-D1255C9E1D5F}
Deleted      HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{F9067641-BE82-4D54-8214-FE71CF1B1D07}
Deleted      HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon|Userinit
Deleted      HKLM\Software\Wow6432Node\\Classes\CLSID\{8BF0126F-A5B7-4720-ABB2-2414A0AF5474}
Deleted      HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted      HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted      HKU\PE_C_DEFAULTAPPPOOL\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted      HKU\PE_C_DEFAULTAPPPOOL\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted      HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted      HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com
Deleted      HKU\S-1-5-21-2346752298-182118505-4290318530-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\dospop.com
Deleted      HKU\S-1-5-21-2346752298-182118505-4290318530-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings\zonemap\domains\incredibar.com

***** [ Chromium (and derivatives) ] *****

Deleted      MSN Homepage & Bing Search Engine

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

Deleted      Search and New Tab by Yahoo

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [5128 octets] - [09/04/2019 15:38:45]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########





Code:

Malwarebytes
www.malwarebytes.com

-Protokolldetails-
Scan-Datum: 08.04.19
Scan-Zeit: 12:47
Protokolldatei: ae0ae4be-59eb-11e9-a953-001a7dda7113.json

-Softwaredaten-
Version: 3.7.1.2839
Komponentenversion: 1.0.563
Version des Aktualisierungspakets: 1.0.10048
Lizenz: Testversion

-Systemdaten-
Betriebssystem: Windows 10 (Build 17134.648)
CPU: x64
Dateisystem: NTFS
Benutzer: ****

-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 553602
Erkannte Bedrohungen: 206
In die Quarantäne verschobene Bedrohungen: 206
Abgelaufene Zeit: 15 Min., 14 Sek.

-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung

-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)

Modul: 0
(keine bösartigen Elemente erkannt)

Registrierungsschlüssel: 8
Adware.Wajam, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\NLASVC\PARAMETERS\INTERNET\MANUALPROXIES, In Quarantäne, [503], [-1],0.0.0
PUP.Optional.Social2Search, HKLM\SOFTWARE\Socia2Sea Browser Enhancer, In Quarantäne, [7126], [345866],1.0.10048
PUP.Optional.Gameo, HKU\S-1-5-21-2346752298-182118505-4290318530-1000\SOFTWARE\Gameo, In Quarantäne, [1098], [238616],1.0.10048
PUP.Optional.InstallCore, HKU\S-1-5-21-2346752298-182118505-4290318530-1000\SOFTWARE\ICSW1.14, In Quarantäne, [427], [239562],1.0.10048
PUP.Optional.Wajam, HKU\S-1-5-21-2346752298-182118505-4290318530-1000\SOFTWARE\WajIEnhance, In Quarantäne, [200], [244670],1.0.10048
PUP.Optional.InstallCore, HKU\S-1-5-21-2346752298-182118505-4290318530-1000\SOFTWARE\CSASTATS\ic, In Quarantäne, [427], [586068],1.0.10048
PUP.Optional.Social2Search, HKLM\SOFTWARE\WOW6432NODE\Socia2Sea Browser Enhancer, In Quarantäne, [7126], [345866],1.0.10048
PUP.Optional.InstallCore, HKU\S-1-5-21-2346752298-182118505-4290318530-1000\SOFTWARE\PRODUCTSETUP, In Quarantäne, [427], [481004],1.0.10048

Registrierungswert: 5
Adware.Wajam, HKU\S-1-5-18\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, In Quarantäne, [503], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-2346752298-182118505-4290318530-1000\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, In Quarantäne, [503], [-1],0.0.0
Adware.Wajam, HKU\S-1-5-21-2346752298-182118505-4290318530-500\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, In Quarantäne, [503], [-1],0.0.0
Adware.Wajam, HKU\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|PROXYENABLE, In Quarantäne, [503], [-1],0.0.0
PUP.Optional.InstallCore, HKU\S-1-5-21-2346752298-182118505-4290318530-1000\SOFTWARE\PRODUCTSETUP|TB, In Quarantäne, [427], [481004],1.0.10048

Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)

Daten-Stream: 0
(keine bösartigen Elemente erkannt)

Ordner: 10
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\index-dir, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Local Storage, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\databases, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\IndexedDB, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\GPUCache, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\USERS\DS\APPDATA\LOCAL\GAMEO, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.GoldenGate, C:\USERS\DS\APPDATA\ROAMING\GOLDENGATE, In Quarantäne, [3972], [261914],1.0.10048
Adware.Wajam, C:\WINDOWS\SYSTEM32\SSL, In Quarantäne, [503], [533889],1.0.10048

Datei: 183
PUP.Optional.Gameo, C:\USERS\DS\APPDATA\LOCAL\GAMEO\QUOTAMANAGER-JOURNAL, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\index-dir\the-real-index, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\025fedf8f5c8820a_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\06040b714e6df532_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\0b31489a8b814fef_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\0c08893dbf492c20_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\1040957439cf4d70_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\112cbbdaf998834d_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\143cc5fd46615bfe_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\15d840f8eaea20f1_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\18952b9c092c5e5c_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\18d31f0fee9c169e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\1db2d19ba02a933a_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\213437fc3f4ebd89_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\8bf30883dafa0174_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\8e2b7ae754f55bb1_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\8fb93cb570717f4f_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\958de824dbd2b7a1_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\95ddd53adf512dbc_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\97814d60229846ac_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\9873f2673c3d8526_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\9b8f2b091216225a_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\9c7cd81717e1acf5_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\9cea3e94d038268a_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\9f0465a88e2c309b_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\9f83b183fc917111_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\a058c7e7daea0968_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\a1628db2a5cd88af_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\a2f0886198373109_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\a5546c5b930d2a46_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\a682a844981d4e40_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\4192a20d93c859f3_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\41c05a76dba9e572_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\41e4ca011d6504cb_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\457169699fe9c03a_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\45c93b7742d80b6a_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\45c94e74f7b037e4_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\4724da1e9073f225_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\4769ed77936b7414_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\47cff2ba15008159_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\4a08013829c2e58b_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\4e4bff99d47b434e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\4f127f7b94bae832_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\4fc1d6c2f5c967dd_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5216403d02348b5c_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\cc9af08102830f10_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\cfc1d5580c32eb97_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\d0366b73f7b2ed1e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\d13deceedc6d7ef1_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\d2b9e15099fea888_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\d36e4249f673e831_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\d3c58d3a88f5618a_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\d493880a9e042f5d_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\d71ebf43ce50c9a1_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\d992a503918fae25_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\d9e89cfdb7b33d09_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\dd2b26197bd067e5_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\de3ec9ddc2b44a14_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\e0ea107913adae0a_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\e0fc366975331d02_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\e5ebac2b9f36aa12_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\e6815be17e5de1b9_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\668f5ecbb9c84dcb_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\66e8f33bf747677e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\66fb33cac6ea47fa_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\67b8233399ef3c0a_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\6a6e0e1c6dfcbd49_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\6da653eb6690b96e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\6ef06d1e2f888e7c_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\7051c4a73c60527f_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\7524ac7e1e158775_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\795b45b251fd952d_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\7c68b76f6abc17cc_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\7e59f17cd4ed822e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\84a81dc9ccb122b0_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\84b4e56286f4f118_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\86285c0e2a5ab7a8_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\880cc9eaf9073cab_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\8a2abd4eed83e9d6_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\327e2f346370c855_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\32c2946e86ce21a8_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\34c65f273f242ede_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\3528cdf90d1ebea9_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\3582755dfc2d3bee_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\3647e93441c23952_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\368358397c32e78f_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\3957ff7fb3e7bb94_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\3ade9ed20b3ff54e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\3ef6dd6fdd41d808_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\403f06852be16ada_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\e685b2ebc644ef56_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\f8453f48eb590b20_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\e954457bfde0c5bf_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\e993e65bdb97ebd2_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\ebcc42073b93d141_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\ed8fa2499d113a16_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\eeffa8655d80de51_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\f21faaf9feb7a16d_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\f3418edc49e42b97_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\f343125f2d82de59_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\a7045e9e06116dad_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\a719f227750a9ab9_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\a91ae8724de1eb0e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\a9361e184c4cb72a_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\aa77581ae6a946d2_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\aa8bbc37287750f0_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\ad2b25828c049fcc_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\af108d3f607fe54c_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\b32de173c326c9c0_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5321744fb21521b1_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\59f8199c46c0ac72_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\59fc860b5b654ff0_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5b744e37bdc47069_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5b9297c77ca7c67b_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5d637941bc60a57d_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5dcd47c52b77957c_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5dd175897d4ae871_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5e3037f02b1df4fb_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5ed920938b16b38d_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5f24ea9eafac7b76_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5f49ce25dea6cebd_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\5f787b798103fb2e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\64307bb324a32d10_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\f953e5d5e216b9a1_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\fa8f4973df93a255_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\fb35cf784be698c4_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\fc01adbe18090e9c_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\fc4bd3f94a673472_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\fcc7f1de8852fe4d_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\fd07de0d3bcf7f69_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\fd53f2e36cc2a588_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\fdf90dbbfbc34d95_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\ff73909e52aaf4d4_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\index, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\214632851f514c1d_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\221c73981cd4a163_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\224e9aae649eb7cf_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\22eb5426249297f5_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\2385d6bca304945e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\272e096687951257_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\2815c0f7ad99850c_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\2c5532589efbed57_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\2f202314122f1979_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\315a39b606bc4359_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\b35e102c6b8de514_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\b6343fd29ff7bb15_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\b96c886c7699cbb6_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\bbfa6bf3cdb76cfc_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\c1aad3e247c8b661_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\c4012c386409799f_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\c4255905bfb911aa_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\c63d8bbef1db0b75_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\c75abd2ef51eee29_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\c7e73a960e26aa70_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\c89f38f36e14b01c_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\ca61b5ae6bb9145e_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Cache\cb83286a7f819410_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\databases\Databases.db, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\databases\Databases.db-journal, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\GPUCache\data_0, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\GPUCache\data_1, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\GPUCache\data_2, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\GPUCache\data_3, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\GPUCache\index, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\000003.log, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\CURRENT, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\LOCK, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\LOG, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\IndexedDB\file__0.indexeddb.leveldb\MANIFEST-000002, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Local Storage\file__0.localstorage, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Local Storage\file__0.localstorage-journal, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\cookies, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\cookies-journal, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\QuotaManager, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Web Data, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\Web Data-journal, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.Gameo, C:\Users\ds\AppData\Local\Gameo\website.ico, In Quarantäne, [1098], [238614],1.0.10048
PUP.Optional.GoldenGate, C:\USERS\DS\APPDATA\ROAMING\GOLDENGATE\6a0d2960fee21d62ac3c5c61a9244f4a.logic.db, In Quarantäne, [3972], [261914],1.0.10048
PUP.Optional.GoldenGate, C:\Users\ds\AppData\Roaming\GoldenGate\6a0d2960fee21d62ac3c5c61a9244f4a.data.db, In Quarantäne, [3972], [261914],1.0.10048
PUP.Optional.GoldenGate, C:\Users\ds\AppData\Roaming\GoldenGate\6a0d2960fee21d62ac3c5c61a9244f4a.events.db, In Quarantäne, [3972], [261914],1.0.10048
PUP.Optional.GoldenGate, C:\Users\ds\AppData\Roaming\GoldenGate\6a0d2960fee21d62ac3c5c61a9244f4a.user.db, In Quarantäne, [3972], [261914],1.0.10048
Adware.Wajam, C:\WINDOWS\SYSTEM32\SSL\CERT.DB, In Quarantäne, [503], [533889],1.0.10048
Adware.Wajam, C:\Windows\System32\SSL\c2fa45db3896e5f7.cer, In Quarantäne, [503], [533889],1.0.10048

Physischer Sektor: 0
(keine bösartigen Elemente erkannt)

WMI: 0
(keine bösartigen Elemente erkannt)


(end)

Benutzer gegen **** ersetzt.

cosinus 09.04.2019 21:13

Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

dnllul 09.04.2019 21:29

Meintest du so?

sry

cosinus 09.04.2019 21:34

ja genau so :daumenhoc

Scan mit Farbar's Recovery Scan Tool (FRST)

Bitte lade dir die passende Version von Farbar's Recovery Scan Tool auf deinen Desktop: FRST 32-Bit | FRST 64-Bit
  • Starte jetzt FRST.
  • Ändere ungefragt keine der Checkboxen und klicke auf Untersuchen.
  • Die Logdateien werden nun erstellt und befinden sich danach auf deinem Desktop.
  • Poste mir die FRST.txt und die Addition.txt in deinem Thread (#-Symbol im Eingabefenster der Webseite anklicken)


Lesestoff:
Posten in CODE-Tags
Die Logfiles anzuhängen oder sogar vorher in ein ZIP, RAR oder 7Z-Archiv zu packen erschwert mir massiv die Arbeit.
Auch wenn die Logs für einen Beitrag zu groß sein sollten, bitte ich dich die Logs direkt und notfalls über mehrere Beiträge verteilt zu posten.
Um die Logfiles in eine CODE-Box zu stellen gehe so vor:
  • Markiere das gesamte Logfile (geht meist mit STRG+A) und kopiere es in die Zwischenablage mit STRG+C.
  • Klicke im Editor auf das #-Symbol. Es erscheinen zwei Klammerausdrücke [CODE] [/CODE].
  • Setze den Curser zwischen die CODE-Tags und drücke STRG+V.
  • Klicke auf Erweitert/Vorschau, um so prüfen, ob du es richtig gemacht hast. Wenn alles stimmt ... auf Antworten.
http://www.trojaner-board.de/picture...&pictureid=307

dnllul 09.04.2019 21:45

Jo, hier FRST.txt:
Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 17.03.2019
durchgeführt von ds (Administrator) auf PC_D (09-04-2019 22:37:22)
Gestartet von C:\Users\ds\Desktop
Geladene Profile: ds (Verfügbare Profile: ds & Administrator & DefaultAppPool)
Platform: Windows 10 Pro Version 1803 17134.648 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Opera
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
(G DATA Software AG -> G Data Software AG) C:\Program Files (x86)\G DATA\TotalProtection\AVK\AVKWCtlx64.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(AVM GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\FRITZ!Powerline\PowerlineService.exe
() [Datei ist nicht signiert] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G DATA\TotalProtection\AVKBackup\AVKBackupService.exe
(Hi-Rez Studios) [Datei ist nicht signiert] C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(G DATA Software AG -> G Data Software AG) C:\Program Files (x86)\G DATA\TotalProtection\Firewall\GDFwSvcx64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\rempl\sedsvc.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G DATA\TotalProtection\Firewall\GDFirewallTray.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Razer\Razer Services\GMS\SteamCmd\steamcmd.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> ) C:\Program Files (x86)\Gigabyte\AppCenter\ApCent.exe
(Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeApp.exe
() [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.42.60.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera_crashreporter.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\vds.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(AgileBits Inc. -> AgileBits Inc.) C:\Users\ds\AppData\Local\1password\app\7\1Password.exe
(AgileBits Inc. -> AgileBits Inc.) C:\Users\ds\AppData\Local\1password\app\7\1Password.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieCtrl.exe
(Discord Inc. -> Discord Inc.) C:\Users\ds\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\ds\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\ds\AppData\Local\Discord\app-0.0.305\Discord.exe
(Firebit OU -> Rainmeter) C:\Program Files\Rainmeter\Rainmeter.exe
(Discord Inc. -> Discord Inc.) C:\Users\ds\AppData\Local\Discord\app-0.0.305\Discord.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems, Incorporated -> Adobe Systems Inc.) E:\programme\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Discord Inc. -> Discord Inc.) C:\Users\ds\AppData\Local\Discord\app-0.0.305\Discord.exe
(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Discord Inc. -> Discord Inc.) C:\Users\ds\AppData\Local\Discord\app-0.0.305\Discord.exe
(Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G DATA\TotalProtection\AVKTray\AVKTray.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\Common Files\G Data\AVKProxy\GDKBFltExe32.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated.) E:\programme\Adobe\Acrobat DC\Acrobat\acrodist.exe
(Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Spotify AB -> Spotify Ltd) C:\Users\ds\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\ds\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\ds\AppData\Roaming\Spotify\Spotify.exe
(Spotify AB -> Spotify Ltd) C:\Users\ds\AppData\Roaming\Spotify\Spotify.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(G DATA Software AG -> G DATA Software AG) C:\Program Files (x86)\G DATA\TotalProtection\GUI\GDSC.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Opera Software AS -> Opera Software) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [638872 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-04-11] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2675176 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [757184 2018-06-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-03-24] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1087960 2014-03-20] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2410960 2019-03-01] (Adobe Systems Incorporated -> Adobe Inc.)
HKLM-x32\...\Run: [G Data ASM] => C:\Program Files (x86)\G DATA\TotalProtection\DelayLoader\AutorunDelayLoader.exe [682632 2019-01-21] (G DATA Software AG -> G DATA Software AG)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [598200 2018-09-28] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => E:\programme\Adobe\Acrobat DC\Acrobat\Acrotray.exe [4810224 2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [2309008 2018-06-01] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [601424 2018-12-16] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6788032 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKLM-x32\...\RunOnce: [PreRun] => C:\Program Files (x86)\Gigabyte\AppCenter\PreRun.exe [8192 2013-04-29] () [Datei ist nicht signiert]
HKLM-x32\...\RunOnce: [EasyTune] => C:\Program Files (x86)\Gigabyte\EasyTune\etro.exe [5632 2014-08-18] (GIGA-BYTE TECHNOLOGY CO., LTD.) [Datei ist nicht signiert]
HKU\S-1-5-19\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-20\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518144 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\Run: [SandboxieControl] => C:\Program Files\Sandboxie\SbieCtrl.exe [3682968 2018-03-08] (Invincea, Inc. -> Sandboxie Holdings, LLC)
HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\Run: [1Password] => C:\Users\ds\AppData\Local\1password\app\7\1Password.exe [5635472 2019-01-11] (AgileBits Inc. -> AgileBits Inc.)
HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\Run: [Discord] => C:\Users\ds\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-18\...\Winlogon: [Shell] C:\Windows\explorer.exe [3932672 2018-07-22] (Microsoft Windows -> Microsoft Corporation) <==== ACHTUNG
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\system32\frapsv64.dll [105984 2015-09-05] (Beepa P/L) [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\system32\ficvdec_x64.dll [652288 2013-05-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\system32\rtvcvfw64.dll [246272 2012-09-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.FPS1] => C:\Windows\SysWOW64\frapsvid.dll [94208 2015-09-05] (Beepa P/L) [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.FICV] => C:\Windows\SysWOW64\ficvdec_x86.dll [641024 2013-05-28] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [VIDC.RTV1] => C:\Windows\SysWOW64\rtvcvfw32.dll [247296 2012-09-28] () [Datei ist nicht signiert]
HKLM\Software\...\AppCompatFlags\Custom\GDFirewallTray.exe: [{97a7185d-397f-4652-a72c-d3a08820d734}.sdb] -> G DATA Firewall Helper
HKLM\Software\...\AppCompatFlags\InstalledSDB\{97a7185d-397f-4652-a72c-d3a08820d734}: [DatabasePath] -> C:\WINDOWS\AppPatch\CustomSDB\{97a7185d-397f-4652-a72c-d3a08820d734}.sdb [2018-01-09]
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\73.0.3683.86\Installer\chrmstp.exe [2019-03-26] (Google LLC -> Google Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\Users\ds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk [2019-03-18]
ShortcutTarget: Rainmeter.lnk -> C:\Program Files\Rainmeter\Rainmeter.exe (Firebit OU -> Rainmeter)
Startup: C:\Users\ds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\wallpaper64.exe - Verknüpfung.lnk [2017-10-13]
ShortcutTarget: wallpaper64.exe - Verknüpfung.lnk -> C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper64.exe (Kristjan Skutta -> )
BootExecute: autocheck autochk * sdnclean64.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{1ff7bea2-63a7-4b9d-ac68-00b99ff77afa}: [DhcpNameServer] 192.168.2.1

Internet Explorer:
==================
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2346752298-182118505-4290318530-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://go.microsoft.com/fwlink/p/?LinkId=619797&pc=UE01&ocid=UE01DHP
SearchScopes: HKU\S-1-5-21-2346752298-182118505-4290318530-1000 -> DefaultScope {22AA41A7-269D-462E-AFB3-C16AC2DF2CA6} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKU\S-1-5-21-2346752298-182118505-4290318530-1000 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2346752298-182118505-4290318530-1000 -> {22AA41A7-269D-462E-AFB3-C16AC2DF2CA6} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSERBM&pc=MSERT1
SearchScopes: HKU\S-1-5-21-2346752298-182118505-4290318530-1000 -> {35682719-1308-46D5-9B3F-966D25CA48EA} URL = hxxp://www.bing.com/search?FORM=SL5MDF&PC=SL5M&q={searchTerms}&src=IE-SearchBox
SearchScopes: HKU\S-1-5-21-2346752298-182118505-4290318530-1000 -> {433547E2-33CF-4C33-93C2-FF9CB00FA10F} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2346752298-182118505-4290318530-1000 -> {D03D9340-46DE-470F-98C5-645834C7AF13} URL = hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_201\bin\ssv.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-04-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_201\bin\jp2ssv.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-04-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-04-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-04-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2017-04-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2017-04-05] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: kwcfq968.default
FF ProfilePath: C:\Users\ds\AppData\Roaming\Mozilla\Firefox\Profiles\kwcfq968.default [2019-04-09]
FF Homepage: Mozilla\Firefox\Profiles\kwcfq968.default -> hxxps://www.google.de/
FF Extension: (G DATA Password Manager) - C:\Users\ds\AppData\Roaming\Mozilla\Firefox\Profiles\kwcfq968.default\Extensions\@gdatapasswordmanager.xpi [2017-05-16] [Legacy]
FF Extension: (Bing Search) - C:\Users\ds\AppData\Roaming\Mozilla\Firefox\Profiles\kwcfq968.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-02-11] [Legacy]
FF Extension: (uBlock Origin) - C:\Users\ds\AppData\Roaming\Mozilla\Firefox\Profiles\kwcfq968.default\Extensions\uBlock0@raymondhill.net.xpi [2017-11-19]
FF Extension: (uMatrix) - C:\Users\ds\AppData\Roaming\Mozilla\Firefox\Profiles\kwcfq968.default\Extensions\uMatrix@raymondhill.net.xpi [2017-11-19]
FF SearchPlugin: C:\Users\ds\AppData\Roaming\Mozilla\Firefox\Profiles\kwcfq968.default\searchplugins\bing-.xml [2016-02-11]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - E:\programme\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - E:\programme\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2018-10-06]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - E:\programme\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @java.com/DTPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\dtplugin\npDeployJava1.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.201.2 -> C:\Program Files\Java\jre1.8.0_201\bin\plugin2\npjp2.dll [2019-01-19] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-05] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-03-01] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-03-20] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-03-20] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corporation -> Microsoft Corp.)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.7\npGoogleUpdate3.dll [2019-03-28] (Google Inc -> Google LLC)
FF Plugin-x32: Adobe Acrobat -> E:\programme\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-02-01] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-03-01] (Adobe Systems Incorporated -> Adobe Systems)
StartMenuInternet: Firefox-A3710B8EBB50CD3 - C:\Program Files\Nightly\firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR DefaultSearchURL: Default -> hxxps://de.search.yahoo.com/search?p={searchTerms}&fr=yset_chr_syc_oracle&type=default
CHR DefaultSearchKeyword: Default -> Yahoo
CHR DefaultSuggestURL: Default -> hxxps://de.search.yahoo.com/sugg/ie?output=fxjson&command={searchTerms}&nResults=10
CHR Profile: C:\Users\ds\AppData\Local\Google\Chrome\User Data\Default [2019-04-09]
CHR Extension: (Adblock Plus) - C:\Users\ds\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2018-11-06]
CHR Extension: (Adobe Acrobat) - C:\Users\ds\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-05-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\ds\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-11-06]
CHR Extension: (Modern Flat) - C:\Users\ds\AppData\Local\Google\Chrome\User Data\Default\Extensions\pdcjjgefkpoemmlcjfcfkeminneboaob [2017-10-13]
CHR Extension: (Chrome Media Router) - C:\Users\ds\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-11-06]
CHR HKU\S-1-5-21-2346752298-182118505-4290318530-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fabhkdeopjkcpkmofliimbjckmocfiom] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [ibbfklbaljofpaanmpaeadejijfdddco] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR Extension: (Steam autolinkfilter) - C:\Users\ds\AppData\Roaming\Opera Software\Opera Stable\Extensions\bbnlpljjelnadgnejjjhilnlabeojdfa [2018-10-30]
OPR Extension: (1Password extension (desktop app required)) - C:\Users\ds\AppData\Roaming\Opera Software\Opera Stable\Extensions\fpnbobholfpcolmkinlokiaaanjilcop [2018-08-30]
OPR Extension: (Steam Override) - C:\Users\ds\AppData\Roaming\Opera Software\Opera Stable\Extensions\gnmolcccabceofkmcpoejcohipnnegae [2019-01-20]
OPR Extension: (Install Chrome Extensions) - C:\Users\ds\AppData\Roaming\Opera Software\Opera Stable\Extensions\kipjbhgniklcnglfaldilecjomjaddfi [2019-01-20]
OPR Extension: (Sidebar for YouTube™) - C:\Users\ds\AppData\Roaming\Opera Software\Opera Stable\Extensions\ljkgfkfopogmclcinephnaeekjiikibd [2019-03-07]
StartMenuInternet: (HKLM) OperaStable - C:\Users\ds\AppData\Local\Programs\Opera\Launcher.exe

==================== Dienste (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [818128 2019-03-01] (Adobe Systems Incorporated -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [2917864 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2709480 2018-12-13] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-03-08] (Apple Inc. -> Apple Inc.)
R2 AVKProxy; C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe [5981040 2019-01-30] (G DATA Software AG -> G DATA Software AG)
R2 AVKWCtl; C:\Program Files (x86)\G DATA\TotalProtection\AVK\AVKWCtlx64.exe [3651576 2019-01-20] (G DATA Software AG -> G Data Software AG)
R2 AVMPowerlineService; C:\Program Files (x86)\FRITZ!Powerline\PowerlineService.exe [139264 2014-05-21] (AVM GmbH) [Datei ist nicht signiert]
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8403672 2019-02-21] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11082312 2019-03-28] (Microsoft Corporation -> Microsoft Corporation)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [802432 2019-03-31] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S3 Futuremark SystemInfo Service; C:\Program Files (x86)\Futuremark\SystemInfo\FMSISvc.exe [342456 2018-02-06] (FUTUREMARK INC -> Futuremark)
R2 gadjservice; C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe [16896 2015-04-14] () [Datei ist nicht signiert]
R2 GDBackupSvc; C:\Program Files (x86)\G DATA\TotalProtection\AVKBackup\AVKBackupService.exe [4310152 2019-01-20] (G DATA Software AG -> G DATA Software AG)
R3 GDFwSvc; C:\Program Files (x86)\G DATA\TotalProtection\Firewall\GDFwSvcx64.exe [3782520 2019-01-31] (G DATA Software AG -> G Data Software AG)
R3 GDScan; C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe [1479576 2019-01-20] (G DATA Software AG -> G DATA Software AG)
S3 GDTunerSvc; C:\Program Files (x86)\G DATA\TotalProtection\AVKTuner\AVKTunerService.exe [3691144 2019-01-21] (G DATA Software AG -> G DATA Software AG)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2018-06-11] (Hi-Rez Studios) [Datei ist nicht signiert]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-04-11] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-10-20] (Intel(R) pGFX -> Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887232 2014-01-31] (Intel® Trusted Connect Service -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-03-20] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation)
R3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6562472 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
S3 mracsvc; C:\WINDOWS\System32\mracsvc.exe [10395248 2018-05-28] (Mail.Ru LLC -> LLC Mail.Ru)
R2 MSI_LiveUpdate_Service; C:\Program Files (x86)\MSI\Live Update\MSI_LiveUpdate_Service.exe [1741992 2015-07-30] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [782320 2019-03-18] (NVIDIA Corporation -> NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2298688 2019-03-12] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3171144 2019-03-12] (Electronic Arts, Inc. -> Electronic Arts)
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [449664 2018-08-29] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [942720 2018-09-12] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [253776 2018-12-18] (Razer USA Ltd. -> Razer Inc)
R2 RtkAudioUniversalService; C:\WINDOWS\System32\RtkAudUService64.exe [757184 2018-06-28] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [535424 2018-12-18] (Razer USA Ltd. -> Razer Inc.)
R2 RzKLService; C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe [502144 2018-01-16] (Razer USA Ltd. -> Razer Inc.)
R2 SbieSvc; C:\Program Files\Sandboxie\SbieSvc.exe [328344 2018-03-09] (Invincea, Inc. -> Sandboxie Holdings, LLC)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [3892256 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [3943664 2018-04-20] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [233712 2018-02-06] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [4737560 2019-02-16] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 TSNxGService; C:\Program Files (x86)\G DATA\TotalProtection\TSNxG\TSNxGService.exe [262560 2017-12-07] (G DATA Software AG -> G DATA Software)
R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [363888 2018-06-01] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4403496 2019-01-09] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [107160 2019-02-16] (Microsoft Corporation -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r

===================== Treiber (Nicht auf der Ausnahmeliste) ======================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 avmeject; C:\WINDOWS\System32\drivers\avmeject.sys [14120 2014-11-21] (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153328 2019-01-08] (Malwarebytes Corporation -> Malwarebytes)
R3 etocdrv; C:\WINDOWS\etocdrv.sys [15584 2013-10-31] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Giga-Byte Technology CO., LTD.)
S3 fwlanusb5_nv2; C:\WINDOWS\system32\DRIVERS\fwlanusb5_nv2.sys [1322824 2014-11-21] (AVM Computersysteme Vertriebs GmbH -> AVM GmbH)
R3 gddcd; C:\WINDOWS\System32\drivers\gddcd64.sys [89160 2016-12-22] (G DATA Software AG -> G DATA Software AG)
R1 gddcv; C:\WINDOWS\System32\drivers\gddcv64.sys [69192 2016-12-22] (G DATA Software AG -> G DATA Software AG)
S0 GDElam; C:\WINDOWS\System32\DRIVERS\GDElam.sys [179640 2019-01-14] (Microsoft Windows Early Launch Anti-malware Publisher -> G DATA Software AG)
R3 GDKBB; C:\Windows\system32\drivers\GDKBB64.sys [46104 2017-08-26] (G DATA Software AG -> G Data Software AG)
R3 GDKBFlt; C:\WINDOWS\system32\drivers\GDKBFlt64.sys [38984 2018-08-30] (G DATA Software AG -> G DATA Software AG)
R1 GDMnIcpt; C:\Windows\system32\drivers\MiniIcpt.sys [510768 2019-02-14] (G DATA Software AG -> G Data Software AG)
R3 GDPkIcpt; C:\Windows\system32\drivers\PktIcpt.sys [227704 2019-02-14] (G DATA Software AG -> G Data Software AG)
R3 gdrv; C:\WINDOWS\gdrv.sys [26192 2019-04-09] (Giga-Byte Technology -> Windows (R) Server 2003 DDK provider)
R1 gdwfpcd; C:\WINDOWS\System32\drivers\gdwfpcd64.sys [89832 2019-02-14] (G DATA Software AG -> G DATA Software AG)
R1 GRD; C:\Windows\system32\drivers\GRD.sys [125640 2017-09-06] (G DATA Software AG -> G Data Software)
S3 hamachi; C:\WINDOWS\system32\DRIVERS\Hamdrv.sys [45680 2018-12-14] (Microsoft Windows Hardware Compatibility Publisher -> LogMeIn Inc.)
R1 HookCentre; C:\Windows\system32\drivers\HookCentre.sys [238120 2019-02-14] (G DATA Software AG -> G Data Software AG)
R1 HssDRV6; C:\WINDOWS\system32\DRIVERS\hssdrv6.sys [44648 2015-06-04] (AnchorFree Inc -> AnchorFree Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [198512 2019-04-09] (Malwarebytes Corporation -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2019-02-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [127136 2019-04-09] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73912 2019-04-09] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [274416 2019-04-09] (Malwarebytes Corporation -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [114040 2019-04-09] (Malwarebytes Corporation -> Malwarebytes)
S3 mracdrv; C:\WINDOWS\System32\drivers\mracdrv.sys [9623160 2018-05-28] (Mail.Ru LLC -> LLC Mail.Ru)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [38216 2017-05-21] (SoftEther Corporation -> SoftEther Corporation)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2015-01-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 NTIOLib_MB; C:\Program Files (x86)\MSI\MSI Gaming APP\Lib\NTIOLib_X64.sys [13808 2014-03-13] (MICRO-STAR INTERNATIONAL CO., LTD. -> MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_edcffbdd101bbe5b\nvlddmkm.sys [20726016 2019-02-21] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30336 2019-02-26] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [70024 2018-10-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [66792 2018-10-03] (NVIDIA Corporation -> NVIDIA Corporation)
S3 ptun0901; C:\WINDOWS\System32\drivers\ptun0901.sys [27136 2016-06-15] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R0 PxHlpa64; C:\WINDOWS\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation -> Corel Corporation)
S3 RivaTuner64; C:\Program Files (x86)\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner64.sys [19952 2016-01-22] (techPowerUp -> )
R3 RTCore64; C:\Program Files (x86)\MSI Afterburner\RTCore64.sys [14024 2017-08-27] (MICRO-STAR INTERNATIONAL CO., LTD. -> )
S3 RzCommon; C:\WINDOWS\System32\drivers\RzCommon.sys [49544 2018-09-13] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_005c; C:\WINDOWS\System32\drivers\RzDev_005c.sys [51696 2018-04-22] (Razer USA Ltd. -> Razer Inc)
S3 RzDev_0221; C:\WINDOWS\System32\drivers\RzDev_0221.sys [51696 2018-04-22] (Razer USA Ltd. -> Razer Inc)
R3 rzendpt; C:\WINDOWS\System32\drivers\rzendpt.sys [52240 2017-07-19] (Razer USA Ltd. -> Razer Inc)
R2 rzpnk; C:\WINDOWS\system32\drivers\rzpnk.sys [140040 2018-03-20] (Razer USA Ltd. -> Razer, Inc.)
S3 RZSURROUNDVADService; C:\WINDOWS\system32\drivers\RzSurroundVAD.sys [49176 2016-10-16] (Razer USA Ltd. -> Windows (R) Win 7 DDK provider)
R3 SbieDrv; C:\Program Files\Sandboxie\SbieDrv.sys [228208 2018-03-09] (Sophos Ltd -> Sandboxie Holdings, LLC)
S3 ssdevfactory; C:\WINDOWS\System32\drivers\ssdevfactory.sys [46776 2018-12-21] (SteelSeries ApS -> )
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R0 TS4NT; C:\WINDOWS\System32\Drivers\TS4nt.sys [109128 2019-02-14] (G DATA Software AG -> G DATA Software AG)
R3 VBAudioVMAUXVAIOMME; C:\WINDOWS\system32\DRIVERS\vbaudio_vmauxvaio64_win7.sys [41192 2017-05-28] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\WINDOWS\system32\DRIVERS\vbaudio_vmvaio64_win7.sys [41192 2017-05-28] (Vincent Burel -> Windows (R) Win 7 DDK provider)
S3 VHidXInput; C:\WINDOWS\System32\drivers\VXInput.sys [7424 2014-08-13] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44616 2018-04-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [331680 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [44032 2018-04-12] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; kein ImagePath

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2019-04-09 22:37 - 2019-04-09 22:38 - 000047203 _____ C:\Users\ds\Desktop\FRST.txt
2019-04-09 22:20 - 2019-04-09 22:20 - 000003114 _____ C:\WINDOWS\System32\Tasks\MSIAfterburner
2019-04-09 22:20 - 2019-04-09 22:20 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2019-04-09 22:01 - 2019-04-09 22:01 - 000274416 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2019-04-09 22:01 - 2019-04-09 22:01 - 000198512 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2019-04-09 22:01 - 2019-04-09 22:01 - 000127136 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2019-04-09 22:01 - 2019-04-09 22:01 - 000114040 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2019-04-09 22:01 - 2019-04-09 22:01 - 000073912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2019-04-09 18:35 - 2019-04-09 18:35 - 000001131 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2019-04-09 18:35 - 2019-04-09 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2019-04-09 18:35 - 2019-04-09 18:35 - 000000000 ____D C:\Program Files\VS Revo Group
2019-04-09 16:16 - 2019-04-09 16:16 - 000000000 ____D C:\Users\ds\AppData\Local\ESET
2019-04-09 15:37 - 2019-04-09 15:39 - 000000000 ____D C:\AdwCleaner
2019-04-09 15:37 - 2019-04-09 15:37 - 007025360 _____ (Malwarebytes) C:\Users\ds\Desktop\adwcleaner_7.3.exe
2019-04-09 15:02 - 2019-04-09 15:01 - 000000828 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20190409-150232.backup
2019-04-09 15:01 - 2019-04-09 15:01 - 000000000 ____D C:\WINDOWS\ABR
2019-04-09 14:37 - 2019-04-09 14:37 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-04-09 14:37 - 2019-04-09 14:37 - 000000000 ____D C:\Program Files\iTunes
2019-04-09 14:37 - 2019-04-09 14:37 - 000000000 ____D C:\Program Files\iPod
2019-04-09 14:17 - 2019-04-09 14:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2019-04-08 22:47 - 2018-11-21 19:05 - 000000033 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20190408-224733.backup
2019-04-08 15:57 - 2019-04-08 15:58 - 000000000 ____D C:\FRST
2019-04-08 15:56 - 2019-04-08 15:56 - 002434048 _____ (Farbar) C:\Users\ds\Desktop\FRST64.exe
2019-04-08 15:01 - 2019-04-09 15:36 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2019-04-08 15:01 - 2019-04-08 15:01 - 000001518 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2019-04-08 15:01 - 2019-04-08 15:01 - 000001506 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2019-04-08 15:01 - 2019-04-08 15:01 - 000000000 ____D C:\WINDOWS\System32\Tasks\Safer-Networking
2019-04-08 15:01 - 2019-04-08 15:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2019-04-08 15:01 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2019-04-08 15:00 - 2019-04-09 19:51 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2019-04-08 14:04 - 2019-04-08 14:04 - 042714144 _____ (Microsoft Corporation) C:\Users\ds\Desktop\Windows-KB890830-x64-V5.70.exe
2019-04-08 12:46 - 2019-04-08 12:46 - 000000000 ____D C:\Users\ds\AppData\Local\mbam
2019-04-08 12:45 - 2019-04-08 12:45 - 000000000 ____D C:\Users\ds\Desktop\hijackthis-devel
2019-04-08 12:45 - 2019-04-08 12:45 - 000000000 ____D C:\Users\ds\AppData\Local\mbamtray
2019-04-08 12:44 - 2019-04-08 12:44 - 021740507 _____ C:\Users\ds\Downloads\hijackthis-devel.zip
2019-04-08 12:44 - 2019-04-08 12:44 - 021740507 _____ C:\Users\ds\Desktop\hijackthis-devel.zip
2019-04-08 12:44 - 2019-04-08 12:44 - 000001960 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-04-08 12:44 - 2019-04-08 12:44 - 000000000 ____D C:\Users\ds\Desktop\ProcessExplorer
2019-04-08 12:44 - 2019-04-08 12:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-04-08 12:44 - 2019-04-08 12:44 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-04-08 12:44 - 2019-04-08 12:44 - 000000000 ____D C:\Program Files\Malwarebytes
2019-04-08 12:44 - 2019-04-08 12:41 - 001828569 _____ C:\Users\ds\Desktop\ProcessExplorer.zip
2019-04-08 12:44 - 2019-02-01 12:20 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2019-04-08 12:44 - 2019-01-08 16:32 - 000153328 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2019-04-08 12:41 - 2019-04-08 12:41 - 001828569 _____ C:\Users\ds\Downloads\ProcessExplorer.zip
2019-04-02 15:21 - 2019-04-02 15:21 - 000002288 _____ C:\Users\ds\Desktop\WhatsApp.lnk
2019-04-01 17:09 - 2019-04-01 17:09 - 000003994 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1477237482
2019-04-01 16:58 - 2019-04-01 16:58 - 000003350 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2346752298-182118505-4290318530-1000
2019-04-01 16:58 - 2019-04-01 16:58 - 000002412 _____ C:\Users\ds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-04-01 16:22 - 2019-04-01 16:40 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\steelseries-engine-3-client
2019-04-01 16:22 - 2019-04-01 16:22 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\SteelSeries Engine 3
2019-04-01 14:58 - 2019-04-01 14:59 - 000000000 ____D C:\Users\Administrator\AppData\LocalLow\Mozilla
2019-04-01 14:58 - 2019-04-01 14:58 - 000000000 ____D C:\Users\Administrator\AppData\Local\Mozilla
2019-04-01 13:35 - 2019-04-01 13:35 - 000000000 ____D C:\Users\Administrator\AppData\Local\ElevatedDiagnostics
2019-04-01 12:51 - 2019-04-01 12:53 - 000000000 ____D C:\ProgramData\SupremoRemoteDesktop
2019-04-01 12:36 - 2019-04-01 16:51 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Thunderbird
2019-04-01 12:36 - 2019-04-01 14:58 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Mozilla
2019-04-01 12:36 - 2019-04-01 12:36 - 000000000 ____D C:\Users\Administrator\AppData\Local\Thunderbird
2019-04-01 12:20 - 2019-04-01 12:20 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Opera Software
2019-04-01 12:20 - 2019-04-01 12:20 - 000000000 ____D C:\Users\Administrator\AppData\Local\Opera Software
2019-04-01 12:12 - 2019-04-01 12:12 - 000000000 ___HD C:\Users\Administrator\MicrosoftEdgeBackups
2019-04-01 12:12 - 2019-04-01 12:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\MicrosoftEdge
2019-04-01 12:12 - 2019-04-01 12:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\D3DSCache
2019-04-01 12:11 - 2019-04-01 16:29 - 000000000 ____D C:\Users\Administrator\AppData\Local\PlaceholderTileLogoFolder
2019-04-01 12:11 - 2019-04-01 12:11 - 000000000 ____D C:\Users\Administrator\AppData\Local\Razer
2019-04-01 12:11 - 2019-04-01 12:11 - 000000000 ____D C:\Users\Administrator\AppData\Local\Comms
2019-04-01 12:11 - 2019-04-01 12:11 - 000000000 ____D C:\Users\Administrator\ansel
2019-03-31 19:00 - 2019-04-01 12:12 - 000000000 ____D C:\Users\ds\AppData\Roaming\steelseries-engine-3-client
2019-03-30 17:00 - 2019-03-30 17:00 - 000000598 _____ C:\Users\ds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Daten (E) - Verknüpfung.lnk
2019-03-23 20:45 - 2019-03-23 20:45 - 000004308 _____ C:\WINDOWS\System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-23 20:45 - 000004106 _____ C:\WINDOWS\System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-23 20:45 - 000003976 _____ C:\WINDOWS\System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-23 20:45 - 000003940 _____ C:\WINDOWS\System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-23 20:45 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-23 20:45 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-23 20:45 - 000003926 _____ C:\WINDOWS\System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-23 20:45 - 000003894 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-23 20:45 - 000003866 _____ C:\WINDOWS\System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-23 20:45 - 000003858 _____ C:\WINDOWS\System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-23 20:45 - 000003654 _____ C:\WINDOWS\System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2019-03-23 20:45 - 2019-03-18 17:11 - 002769904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2019-03-23 20:45 - 2019-03-18 17:11 - 002149872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2019-03-23 00:04 - 2019-04-01 16:51 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2019-03-23 00:04 - 2019-03-30 16:59 - 000004210 _____ C:\WINDOWS\System32\Tasks\CCleaner Update
2019-03-23 00:04 - 2019-03-23 00:04 - 000002860 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2019-03-16 22:53 - 2019-03-16 22:53 - 000000929 _____ C:\Users\ds\Desktop\config.ini - Verknüpfung.lnk
2019-03-12 19:43 - 2019-03-06 17:37 - 001616608 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-03-12 19:43 - 2019-03-06 17:36 - 001047352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ReAgent.dll
2019-03-12 19:43 - 2019-03-06 17:17 - 012730368 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2019-03-12 19:43 - 2019-03-06 17:17 - 000810496 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2019-03-12 19:43 - 2019-03-06 17:12 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2019-03-12 19:43 - 2019-03-06 14:18 - 000918032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ReAgent.dll
2019-03-12 19:43 - 2019-03-06 11:16 - 000722744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimgapi.dll
2019-03-12 19:43 - 2019-03-06 11:16 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wimserv.exe
2019-03-12 19:43 - 2019-03-06 11:06 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-03-12 19:43 - 2019-03-06 11:04 - 000945464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refsv1.sys
2019-03-12 19:43 - 2019-03-06 11:03 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-03-12 19:43 - 2019-03-06 11:03 - 001921848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys
2019-03-12 19:43 - 2019-03-06 10:44 - 025856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-03-12 19:43 - 2019-03-06 10:36 - 022716928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-03-12 19:43 - 2019-03-06 10:33 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidparse.sys
2019-03-12 19:43 - 2019-03-06 10:32 - 003399168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-03-12 19:43 - 2019-03-06 10:31 - 007598592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-03-12 19:43 - 2019-03-06 10:28 - 004937728 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2019-03-12 19:43 - 2019-03-06 08:14 - 006568528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-03-12 19:43 - 2019-03-06 08:13 - 000607248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wimgapi.dll
2019-03-12 19:43 - 2019-03-06 08:05 - 022018048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-03-12 19:43 - 2019-03-06 07:56 - 019404288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-03-12 19:43 - 2019-03-06 07:52 - 005790720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-03-12 19:43 - 2019-03-06 07:49 - 004516352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2019-03-12 19:43 - 2019-02-16 14:34 - 004718080 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2019-03-12 19:43 - 2019-02-16 14:34 - 000302080 _____ (Microsoft Corporation) C:\WINDOWS\system32\AcLayers.dll
2019-03-12 19:43 - 2019-02-16 14:33 - 002194432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.ModernAppAgent.dll
2019-03-12 19:43 - 2019-02-16 14:32 - 001127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplySettingsTemplateCatalog.exe
2019-03-12 19:43 - 2019-02-16 14:31 - 001186816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.CommonBridge.dll
2019-03-12 19:43 - 2019-02-16 14:30 - 002019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngine.dll
2019-03-12 19:43 - 2019-02-16 14:25 - 001539896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppVEntSubsystems32.dll
2019-03-12 19:43 - 2019-02-16 14:08 - 000373760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AcLayers.dll
2019-03-12 19:43 - 2019-02-16 12:24 - 023862272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2019-03-12 19:43 - 2019-02-16 12:22 - 019525120 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2019-03-12 19:43 - 2019-02-16 10:03 - 007901392 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2019-03-12 19:43 - 2019-02-16 10:03 - 005625360 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2019-03-12 19:43 - 2019-02-16 10:02 - 005821440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d3d10warp.dll
2019-03-12 19:43 - 2019-02-16 10:02 - 001792712 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll
2019-03-12 19:43 - 2019-02-16 10:01 - 000735464 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-03-12 19:43 - 2019-02-16 09:51 - 001584536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll
2019-03-12 19:43 - 2019-02-16 09:50 - 000560384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-03-12 19:43 - 2019-02-16 09:36 - 007057408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2019-03-12 19:43 - 2019-02-16 09:35 - 008188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2019-03-12 19:43 - 2019-02-16 09:33 - 004708864 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2019-03-12 19:43 - 2019-02-16 09:25 - 000652800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2019-03-12 19:42 - 2019-03-06 17:39 - 000720536 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2019-03-12 19:42 - 2019-03-06 17:20 - 000064000 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2019-03-12 19:42 - 2019-03-06 17:19 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2019-03-12 19:42 - 2019-03-06 17:17 - 000116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bridge.sys
2019-03-12 19:42 - 2019-03-06 17:14 - 001180672 _____ (Microsoft Corporation) C:\WINDOWS\system32\localspl.dll
2019-03-12 19:42 - 2019-03-06 17:14 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2019-03-12 19:42 - 2019-03-06 17:14 - 000488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2019-03-12 19:42 - 2019-03-06 17:13 - 004053504 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2019-03-12 19:42 - 2019-03-06 17:13 - 001856512 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2019-03-12 19:42 - 2019-03-06 17:13 - 001662976 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-03-12 19:42 - 2019-03-06 17:13 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll
2019-03-12 19:42 - 2019-03-06 14:18 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2019-03-12 19:42 - 2019-03-06 14:10 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2019-03-12 19:42 - 2019-03-06 14:09 - 011919360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2019-03-12 19:42 - 2019-03-06 14:06 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2019-03-12 19:42 - 2019-03-06 14:05 - 004054016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2019-03-12 19:42 - 2019-03-06 14:05 - 001586176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2019-03-12 19:42 - 2019-03-06 14:04 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-03-12 19:42 - 2019-03-06 14:04 - 000423936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2019-03-12 19:42 - 2019-03-06 13:59 - 001008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MixedRealityCapture.dll
2019-03-12 19:42 - 2019-03-06 11:29 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-03-12 19:42 - 2019-03-06 11:16 - 002822456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-03-12 19:42 - 2019-03-06 11:16 - 001457032 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-03-12 19:42 - 2019-03-06 11:16 - 001188000 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll
2019-03-12 19:42 - 2019-03-06 11:16 - 000776792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-03-12 19:42 - 2019-03-06 11:16 - 000566568 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-03-12 19:42 - 2019-03-06 11:11 - 000493880 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2019-03-12 19:42 - 2019-03-06 11:10 - 000248880 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2019-03-12 19:42 - 2019-03-06 11:07 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-03-12 19:42 - 2019-03-06 11:07 - 001023800 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-03-12 19:42 - 2019-03-06 11:07 - 000376120 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fastfat.sys
2019-03-12 19:42 - 2019-03-06 11:06 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-03-12 19:42 - 2019-03-06 11:06 - 000076088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hvservice.sys
2019-03-12 19:42 - 2019-03-06 11:05 - 000439224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2019-03-12 19:42 - 2019-03-06 11:05 - 000436240 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2019-03-12 19:42 - 2019-03-06 11:05 - 000159864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2019-03-12 19:42 - 2019-03-06 11:04 - 002765856 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2019-03-12 19:42 - 2019-03-06 11:04 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpx.dll
2019-03-12 19:42 - 2019-03-06 11:03 - 002719544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2019-03-12 19:42 - 2019-03-06 11:03 - 002465784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2019-03-12 19:42 - 2019-03-06 11:03 - 000793400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2019-03-12 19:42 - 2019-03-06 11:03 - 000412984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2019-03-12 19:42 - 2019-03-06 11:03 - 000375608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msrpc.sys
2019-03-12 19:42 - 2019-03-06 11:02 - 002421048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2019-03-12 19:42 - 2019-03-06 11:02 - 001257672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-03-12 19:42 - 2019-03-06 11:02 - 001140480 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-03-12 19:42 - 2019-03-06 11:02 - 000982912 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-03-12 19:42 - 2019-03-06 11:02 - 000626488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2019-03-12 19:42 - 2019-03-06 10:36 - 004383744 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-03-12 19:42 - 2019-03-06 10:34 - 004866048 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-03-12 19:42 - 2019-03-06 10:32 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\exfat.sys
2019-03-12 19:42 - 2019-03-06 10:32 - 000209408 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2019-03-12 19:42 - 2019-03-06 10:31 - 002368512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2019-03-12 19:42 - 2019-03-06 10:31 - 001826816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.CloudStore.dll
2019-03-12 19:42 - 2019-03-06 10:31 - 000894464 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll
2019-03-12 19:42 - 2019-03-06 10:31 - 000808448 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2019-03-12 19:42 - 2019-03-06 10:31 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2019-03-12 19:42 - 2019-03-06 10:31 - 000424448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv.sys
2019-03-12 19:42 - 2019-03-06 10:31 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore.dll
2019-03-12 19:42 - 2019-03-06 10:31 - 000324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\udfs.sys
2019-03-12 19:42 - 2019-03-06 10:31 - 000279552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2019-03-12 19:42 - 2019-03-06 10:31 - 000266752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srvnet.sys
2019-03-12 19:42 - 2019-03-06 10:31 - 000154112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2019-03-12 19:42 - 2019-03-06 10:29 - 002364928 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpcServices.dll
2019-03-12 19:42 - 2019-03-06 10:29 - 002174976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-03-12 19:42 - 2019-03-06 10:29 - 001559552 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-03-12 19:42 - 2019-03-06 10:29 - 000736256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\srv2.sys
2019-03-12 19:42 - 2019-03-06 10:28 - 001803776 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2019-03-12 19:42 - 2019-03-06 10:27 - 002224640 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-03-12 19:42 - 2019-03-06 10:27 - 000776192 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2019-03-12 19:42 - 2019-03-06 10:27 - 000542720 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-03-12 19:42 - 2019-03-06 10:27 - 000507392 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2019-03-12 19:42 - 2019-03-06 10:26 - 000868864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MixedRealityCapture.dll
2019-03-12 19:42 - 2019-03-06 10:26 - 000073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\npfs.sys
2019-03-12 19:42 - 2019-03-06 10:26 - 000031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\msfs.sys
2019-03-12 19:42 - 2019-03-06 10:25 - 000093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cdfs.sys
2019-03-12 19:42 - 2019-03-06 09:08 - 000001310 _____ C:\WINDOWS\system32\tcbres.wim
2019-03-12 19:42 - 2019-03-06 08:17 - 001989040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2019-03-12 19:42 - 2019-03-06 08:17 - 000146712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2019-03-12 19:42 - 2019-03-06 08:15 - 002253488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2019-03-12 19:42 - 2019-03-06 08:15 - 000434488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2019-03-12 19:42 - 2019-03-06 08:14 - 000785568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll
2019-03-12 19:42 - 2019-03-06 08:14 - 000665224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-03-12 19:42 - 2019-03-06 08:14 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpx.dll
2019-03-12 19:42 - 2019-03-06 08:14 - 000380728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2019-03-12 19:42 - 2019-03-06 07:53 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-03-12 19:42 - 2019-03-06 07:53 - 003711488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-03-12 19:42 - 2019-03-06 07:52 - 000608768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2019-03-12 19:42 - 2019-03-06 07:52 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore6.dll
2019-03-12 19:42 - 2019-03-06 07:51 - 000561152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2019-03-12 19:42 - 2019-03-06 07:51 - 000333824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2019-03-12 19:42 - 2019-03-06 07:51 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-03-12 19:42 - 2019-03-06 07:50 - 001628160 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2019-03-12 19:42 - 2019-03-06 07:50 - 001347584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpcServices.dll
2019-03-12 19:42 - 2019-03-06 07:50 - 000578560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll
2019-03-12 19:42 - 2019-03-06 07:49 - 000318464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dhcpcore.dll
2019-03-12 19:42 - 2019-03-06 07:49 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msIso.dll
2019-03-12 19:42 - 2019-03-06 07:48 - 000669696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2019-03-12 19:42 - 2019-03-06 07:48 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-03-12 19:42 - 2019-03-03 18:54 - 000835480 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2019-03-12 19:42 - 2019-03-03 18:54 - 000179608 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2019-03-12 19:42 - 2019-02-21 05:26 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll
2019-03-12 19:42 - 2019-02-16 15:02 - 002871304 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2019-03-12 19:42 - 2019-02-16 15:02 - 001644040 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2019-03-12 19:42 - 2019-02-16 15:02 - 000808456 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2019-03-12 19:42 - 2019-02-16 15:02 - 000735752 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2019-03-12 19:42 - 2019-02-16 15:02 - 000620040 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2019-03-12 19:42 - 2019-02-16 15:02 - 000460296 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2019-03-12 19:42 - 2019-02-16 15:02 - 000322568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2019-03-12 19:42 - 2019-02-16 15:02 - 000147464 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2019-03-12 19:42 - 2019-02-16 15:02 - 000071176 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 002266936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystems64.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 001786672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 001627448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVIntegration.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 001424696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntSubsystemController.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 001048472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 001038136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPolicy.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000954168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVManifest.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000830264 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVOrchestration.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000825144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntStreamingManager.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000749880 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVReporting.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000670008 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVCatalog.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000652088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVPublishing.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000506088 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemreset.exe
2019-03-12 19:42 - 2019-02-16 14:57 - 000495416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TransportDSA.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVScripting.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000257848 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVFileSystemMetadata.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000231224 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVShNotify.exe
2019-03-12 19:42 - 2019-02-16 14:57 - 000228152 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamMap.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000201528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVStreamingUX.dll
2019-03-12 19:42 - 2019-02-16 14:57 - 000183608 _____ (Microsoft Corporation) C:\WINDOWS\system32\mavinject.exe
2019-03-12 19:42 - 2019-02-16 14:57 - 000180528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVDllSurrogate.exe
2019-03-12 19:42 - 2019-02-16 14:57 - 000172856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVNice.exe
2019-03-12 19:42 - 2019-02-16 14:57 - 000034104 _____ C:\WINDOWS\system32\SyncAppvPublishingServer.exe
2019-03-12 19:42 - 2019-02-16 14:56 - 000549520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll
2019-03-12 19:42 - 2019-02-16 14:56 - 000540984 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2019-03-12 19:42 - 2019-02-16 14:53 - 001516416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2019-03-12 19:42 - 2019-02-16 14:36 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-03-12 19:42 - 2019-02-16 14:34 - 001725952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2019-03-12 19:42 - 2019-02-16 14:33 - 001786880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2019-03-12 19:42 - 2019-02-16 14:32 - 003646976 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-03-12 19:42 - 2019-02-16 14:32 - 002051072 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2019-03-12 19:42 - 2019-02-16 14:31 - 001271808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpsvc.dll
2019-03-12 19:42 - 2019-02-16 14:31 - 001003520 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll
2019-03-12 19:42 - 2019-02-16 14:31 - 000861184 _____ (Microsoft Corporation) C:\WINDOWS\system32\mprddm.dll
2019-03-12 19:42 - 2019-02-16 14:31 - 000615424 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll
2019-03-12 19:42 - 2019-02-16 14:30 - 000877568 _____ (Microsoft Corporation) C:\WINDOWS\system32\RecoveryDrive.exe
2019-03-12 19:42 - 2019-02-16 14:29 - 000174080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResetEngOnline.dll
2019-03-12 19:42 - 2019-02-16 14:29 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe
2019-03-12 19:42 - 2019-02-16 14:25 - 000148784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mavinject.exe
2019-03-12 19:42 - 2019-02-16 14:24 - 000444176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll
2019-03-12 19:42 - 2019-02-16 14:22 - 001322176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2019-03-12 19:42 - 2019-02-16 14:07 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll
2019-03-12 19:42 - 2019-02-16 14:07 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll
2019-03-12 19:42 - 2019-02-16 14:06 - 002890752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-03-12 19:42 - 2019-02-16 14:06 - 001530880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2019-03-12 19:42 - 2019-02-16 14:06 - 001451520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll
2019-03-12 19:42 - 2019-02-16 14:06 - 000774656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll
2019-03-12 19:42 - 2019-02-16 14:06 - 000765952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mprddm.dll
2019-03-12 19:42 - 2019-02-16 14:04 - 000080384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe
2019-03-12 19:42 - 2019-02-16 14:02 - 000055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UevAppMonitor.exe
2019-03-12 19:42 - 2019-02-16 13:55 - 000070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Uev.Common.dll
2019-03-12 19:42 - 2019-02-16 10:16 - 000511800 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2019-03-12 19:42 - 2019-02-16 10:15 - 000505656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll
2019-03-12 19:42 - 2019-02-16 10:15 - 000035640 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2019-03-12 19:42 - 2019-02-16 10:05 - 000087800 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskhostw.exe
2019-03-12 19:42 - 2019-02-16 10:04 - 000193032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-03-12 19:42 - 2019-02-16 10:03 - 000510288 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2019-03-12 19:42 - 2019-02-16 10:02 - 003291632 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-03-12 19:42 - 2019-02-16 10:02 - 001934800 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll
2019-03-12 19:42 - 2019-02-16 10:02 - 000705848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2019-03-12 19:42 - 2019-02-16 10:02 - 000432952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdbss.sys
2019-03-12 19:42 - 2019-02-16 10:02 - 000413712 _____ (Microsoft Corporation) C:\WINDOWS\system32\AUDIOKSE.dll
2019-03-12 19:42 - 2019-02-16 10:01 - 001285424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2019-03-12 19:42 - 2019-02-16 10:01 - 001209696 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2019-03-12 19:42 - 2019-02-16 10:01 - 001098056 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2019-03-12 19:42 - 2019-02-16 10:01 - 001028920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2019-03-12 19:42 - 2019-02-16 10:01 - 001014344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll
2019-03-12 19:42 - 2019-02-16 10:01 - 000641984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcp_win.dll
2019-03-12 19:42 - 2019-02-16 10:01 - 000594024 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2019-03-12 19:42 - 2019-02-16 10:01 - 000527160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll
2019-03-12 19:42 - 2019-02-16 10:01 - 000480840 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase_enclave.dll
2019-03-12 19:42 - 2019-02-16 10:01 - 000335672 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2019-03-12 19:42 - 2019-02-16 10:01 - 000161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTWorkQ.dll
2019-03-12 19:42 - 2019-02-16 09:57 - 000383288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll
2019-03-12 19:42 - 2019-02-16 09:53 - 000443632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2019-03-12 19:42 - 2019-02-16 09:51 - 002479168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-03-12 19:42 - 2019-02-16 09:51 - 000170952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTWorkQ.dll
2019-03-12 19:42 - 2019-02-16 09:50 - 001805648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll
2019-03-12 19:42 - 2019-02-16 09:50 - 001171336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll
2019-03-12 19:42 - 2019-02-16 09:50 - 001130568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvproc.dll
2019-03-12 19:42 - 2019-02-16 09:50 - 001011872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll
2019-03-12 19:42 - 2019-02-16 09:50 - 000504072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msvcp_win.dll
2019-03-12 19:42 - 2019-02-16 09:37 - 009084928 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2019-03-12 19:42 - 2019-02-16 09:36 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll
2019-03-12 19:42 - 2019-02-16 09:35 - 006661632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2019-03-12 19:42 - 2019-02-16 09:34 - 005883904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2019-03-12 19:42 - 2019-02-16 09:34 - 000095232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDataTimeUtil.dll
2019-03-12 19:42 - 2019-02-16 09:34 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tzres.dll
2019-03-12 19:42 - 2019-02-16 09:33 - 006646784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2019-03-12 19:42 - 2019-02-16 09:33 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2019-03-12 19:42 - 2019-02-16 09:33 - 000054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialMigrationHandler.dll
2019-03-12 19:42 - 2019-02-16 09:33 - 000043520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredentialMigrationHandler.dll
2019-03-12 19:42 - 2019-02-16 09:33 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzres.dll
2019-03-12 19:42 - 2019-02-16 09:32 - 002969088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdp.dll
2019-03-12 19:42 - 2019-02-16 09:32 - 000173568 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2019-03-12 19:42 - 2019-02-16 09:31 - 002825728 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapGeocoder.dll
2019-03-12 19:42 - 2019-02-16 09:31 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2019-03-12 19:42 - 2019-02-16 09:31 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2019-03-12 19:42 - 2019-02-16 09:31 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\srpapi.dll
2019-03-12 19:42 - 2019-02-16 09:30 - 002449408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapRouter.dll
2019-03-12 19:42 - 2019-02-16 09:30 - 001986560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapGeocoder.dll
2019-03-12 19:42 - 2019-02-16 09:30 - 001124352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2019-03-12 19:42 - 2019-02-16 09:30 - 000530432 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2019-03-12 19:42 - 2019-02-16 09:30 - 000357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppLockerCSP.dll
2019-03-12 19:42 - 2019-02-16 09:30 - 000254464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppLockerCSP.dll
2019-03-12 19:42 - 2019-02-16 09:30 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\srpapi.dll
2019-03-12 19:42 - 2019-02-16 09:29 - 001768448 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-03-12 19:42 - 2019-02-16 09:29 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\domgmt.dll
2019-03-12 19:42 - 2019-02-16 09:28 - 003381248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapRouter.dll
2019-03-12 19:42 - 2019-02-16 09:28 - 002585600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-03-12 19:42 - 2019-02-16 09:28 - 001668096 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2019-03-12 19:42 - 2019-02-16 09:28 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingOnlineServices.dll
2019-03-12 19:42 - 2019-02-16 09:28 - 000705024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2019-03-12 19:42 - 2019-02-16 09:28 - 000528384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2019-03-12 19:42 - 2019-02-16 09:27 - 001364992 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpasvc.dll
2019-03-12 19:42 - 2019-02-16 09:27 - 000729088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2019-03-12 19:42 - 2019-02-16 09:27 - 000686592 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2019-03-12 19:42 - 2019-02-16 09:26 - 001459712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2019-03-12 19:42 - 2019-02-16 09:26 - 001225216 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2019-03-12 19:42 - 2019-02-16 09:26 - 000943616 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingOnlineServices.dll
2019-03-12 19:42 - 2019-02-16 09:26 - 000935424 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasmans.dll
2019-03-12 19:42 - 2019-02-16 09:26 - 000401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\rascustom.dll
2019-03-12 19:42 - 2019-02-16 09:25 - 000884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2019-03-12 19:38 - 2019-03-12 19:38 - 000001125 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2018.lnk
2019-03-12 19:34 - 2019-03-12 19:34 - 000001139 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2019.lnk
2019-03-11 20:21 - 2019-03-11 20:21 - 000001464 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk

==================== Ein Monat (geänderte) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2019-04-09 22:30 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-04-09 22:30 - 2016-06-30 13:41 - 000000000 ____D C:\Users\ds\AppData\Roaming\Spotify
2019-04-09 22:30 - 2016-06-30 13:41 - 000000000 ____D C:\Users\ds\AppData\Local\Spotify
2019-04-09 22:20 - 2017-10-30 17:21 - 000000000 ____D C:\Users\ds\Documents\Assassin's Creed Unity
2019-04-09 22:20 - 2016-10-02 13:07 - 000000000 ____D C:\ProgramData\NVIDIA
2019-04-09 22:20 - 2015-05-29 16:55 - 000000000 __SHD C:\Users\ds\IntelGraphicsProfiles
2019-04-09 22:14 - 2016-03-19 13:50 - 000000000 ____D C:\Program Files (x86)\Steam
2019-04-09 21:11 - 2017-06-28 16:10 - 000001950 _____ C:\WINDOWS\Sandboxie.ini
2019-04-09 21:10 - 2015-08-07 11:00 - 000000000 ____D C:\Users\ds\AppData\Local\Ubisoft Game Launcher
2019-04-09 19:58 - 2018-07-22 13:32 - 001968114 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-04-09 19:58 - 2018-07-22 13:29 - 000004142 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{BB91AF4B-0A6F-4277-BED0-22010AF57160}
2019-04-09 19:58 - 2018-04-12 18:14 - 000818236 _____ C:\WINDOWS\system32\perfh007.dat
2019-04-09 19:58 - 2018-04-12 18:14 - 000176018 _____ C:\WINDOWS\system32\perfc007.dat
2019-04-09 19:58 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-04-09 19:52 - 2015-06-13 19:30 - 000000000 ____D C:\Users\ds\AppData\Local\CrashDumps
2019-04-09 19:51 - 2018-07-22 13:29 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-04-09 19:51 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-04-09 19:51 - 2017-12-03 18:48 - 000026192 ____N (Windows (R) Server 2003 DDK provider) C:\WINDOWS\gdrv.sys
2019-04-09 19:51 - 2017-05-31 15:19 - 000000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2019-04-09 19:48 - 2018-07-22 13:16 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-04-09 18:15 - 2018-04-11 23:04 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2019-04-09 17:02 - 2017-12-26 17:56 - 000000000 ____D C:\Users\ds\Documents\FTBInfinity
2019-04-09 17:01 - 2017-12-26 17:57 - 000000000 ____D C:\Users\ds\Documents\FTBTrident
2019-04-09 16:53 - 2015-05-30 11:01 - 000000000 ____D C:\Users\ds\AppData\Roaming\minecraft2
2019-04-09 16:50 - 2018-02-25 19:48 - 000000000 ____D C:\Users\ds\Desktop\Minecraft scheisse
2019-04-09 16:43 - 2018-07-22 13:23 - 000000000 ____D C:\Users\ds
2019-04-09 16:40 - 2017-05-25 15:23 - 000000000 ____D C:\Users\ds\AppData\Local\Facebook
2019-04-09 15:40 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-04-09 15:02 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-04-09 14:14 - 2015-05-29 22:01 - 127411920 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-04-08 22:48 - 2017-07-29 17:07 - 000000000 __SHD C:\#GDATA.Recovery.Data#
2019-04-08 19:17 - 2017-05-10 17:01 - 000000000 ____D C:\WINDOWS\system32\MpEngineStore
2019-04-08 13:47 - 2015-06-15 16:22 - 000000000 ____D C:\Users\ds\AppData\Local\ElevatedDiagnostics
2019-04-08 12:44 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-04-07 21:50 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\NDF
2019-04-07 16:12 - 2016-01-22 15:32 - 000000000 ____D C:\Program Files (x86)\RivaTuner Statistics Server
2019-04-07 15:38 - 2018-07-22 13:31 - 000000000 ____D C:\Users\ds\AppData\Local\D3DSCache
2019-04-06 23:01 - 2019-02-20 18:24 - 000000000 ____D C:\Users\Default\AppData\Local\LogMeIn Hamachi
2019-04-06 23:01 - 2019-02-20 18:24 - 000000000 ____D C:\Users\Default User\AppData\Local\LogMeIn Hamachi
2019-04-06 19:17 - 2017-08-25 16:31 - 000000000 ____D C:\Program Files (x86)\Origin
2019-04-06 19:16 - 2017-08-25 16:28 - 000000000 ____D C:\ProgramData\Origin
2019-04-06 19:06 - 2017-12-29 17:49 - 000000000 ____D C:\Users\ds\AppData\Roaming\.minecraft
2019-04-06 17:06 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-04-06 17:05 - 2017-12-03 17:57 - 000000000 ____D C:\Program Files\Microsoft Office
2019-04-06 17:02 - 2016-11-15 17:50 - 000000000 ____D C:\Users\ds\AppData\Roaming\discord
2019-04-05 15:09 - 2018-07-11 17:13 - 000000000 ____D C:\Program Files\rempl
2019-04-03 23:09 - 2015-08-07 12:06 - 000000000 ____D C:\Users\ds\AppData\Local\Adobe
2019-04-03 22:55 - 2017-12-27 19:59 - 000000000 ____D C:\Users\ds\Desktop\pbs
2019-04-03 17:24 - 2017-12-12 19:40 - 000000000 ____D C:\Users\ds\AppData\Local\Packages
2019-04-02 19:26 - 2017-05-11 19:27 - 000000000 ____D C:\Users\ds\AppData\Roaming\WhatsApp
2019-04-02 15:21 - 2019-03-08 16:55 - 000000000 ____D C:\Users\ds\AppData\Local\WhatsApp
2019-04-02 15:21 - 2017-05-11 19:27 - 000000000 ____D C:\Users\ds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2019-04-01 16:58 - 2015-10-18 16:57 - 000000000 ___RD C:\Users\ds\OneDrive
2019-04-01 16:53 - 2016-01-23 17:05 - 000000000 ____D C:\Users\ds\AppData\Roaming\TS3Client
2019-04-01 16:51 - 2019-02-14 18:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA TOTAL SECURITY
2019-04-01 16:51 - 2018-12-24 17:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WD Discovery
2019-04-01 16:51 - 2018-12-24 17:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Western Digital Corporation
2019-04-01 16:51 - 2018-11-17 22:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\League of Legends
2019-04-01 16:51 - 2018-10-02 18:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2019-04-01 16:51 - 2018-07-22 13:23 - 000000000 ____D C:\Users\DefaultAppPool
2019-04-01 16:51 - 2018-07-22 13:23 - 000000000 ____D C:\Users\Administrator
2019-04-01 16:51 - 2018-06-09 17:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sandboxie
2019-04-01 16:51 - 2018-05-26 15:44 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gigabyte
2019-04-01 16:51 - 2018-04-23 20:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2019-04-01 16:51 - 2018-02-16 13:08 - 000000000 ___RD C:\Users\ds\Creative Cloud Files
2019-04-01 16:51 - 2017-12-03 18:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2016-Tools
2019-04-01 16:51 - 2017-10-16 20:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
2019-04-01 16:51 - 2017-10-16 20:12 - 000000000 ____D C:\Users\ds\AppData\Roaming\Rainmeter
2019-04-01 16:51 - 2017-10-09 21:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Auto Clicker
2019-04-01 16:51 - 2017-10-07 20:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Resource Tuner
2019-04-01 16:51 - 2017-08-25 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2019-04-01 16:51 - 2017-07-17 19:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Overwatch
2019-04-01 16:51 - 2017-07-03 17:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fraps
2019-04-01 16:51 - 2017-05-31 20:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2019-04-01 16:51 - 2017-05-31 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hi-Rez Studios
2019-04-01 16:51 - 2017-05-28 18:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VB Audio
2019-04-01 16:51 - 2017-05-04 18:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java Development Kit
2019-04-01 16:51 - 2017-04-23 17:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2019-04-01 16:51 - 2017-04-22 17:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2019-04-01 16:51 - 2017-03-03 10:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2019-04-01 16:51 - 2016-11-14 18:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2019-04-01 16:51 - 2016-08-25 14:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MAXON
2019-04-01 16:51 - 2016-06-07 14:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.0
2019-04-01 16:51 - 2016-03-19 13:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam
2019-04-01 16:51 - 2016-02-11 21:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-04-01 16:51 - 2016-02-11 15:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2019-04-01 16:51 - 2016-01-30 14:22 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live
2019-04-01 16:51 - 2016-01-23 17:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2019-04-01 16:51 - 2016-01-14 18:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2019-04-01 16:51 - 2015-12-17 16:04 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2019-04-01 16:51 - 2015-11-23 17:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TIPP10
2019-04-01 16:51 - 2015-10-27 18:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer
2019-04-01 16:51 - 2015-09-12 09:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2019-04-01 16:51 - 2015-09-10 07:44 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-04-01 16:51 - 2015-07-05 13:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Live Add-in
2019-04-01 16:51 - 2015-06-12 10:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!Powerline
2019-04-01 16:51 - 2015-05-29 20:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FRITZ!WLAN
2019-04-01 16:51 - 2015-05-29 17:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI Kombustor 2.5
2019-04-01 16:51 - 2015-05-29 17:03 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Intel
2019-04-01 16:51 - 2015-05-29 16:57 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2019-04-01 16:51 - 2009-07-14 07:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2019-04-01 16:43 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\InfusedApps
2019-04-01 16:42 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\registration
2019-04-01 16:42 - 2016-01-04 18:05 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\Adobe
2019-04-01 16:41 - 2018-03-23 17:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Geeks3D
2019-04-01 16:41 - 2017-09-02 15:56 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nem's Tools
2019-04-01 16:41 - 2015-08-07 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MSI
2019-04-01 16:29 - 2017-12-12 19:40 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2019-04-01 14:29 - 2016-01-04 18:05 - 000000000 __SHD C:\Users\Administrator\IntelGraphicsProfiles
2019-04-01 12:15 - 2016-01-04 18:06 - 000000000 ___RD C:\Users\Administrator\OneDrive
2019-04-01 12:12 - 2016-01-04 18:05 - 000000000 ____D C:\Users\Administrator\AppData\Local\NVIDIA Corporation
2019-03-31 19:00 - 2019-02-09 22:05 - 000000000 ____D C:\Program Files\SteelSeries
2019-03-31 15:54 - 2019-03-09 18:34 - 000001603 _____ C:\Users\ds\Desktop\GameUserSettings.ini - Verknüpfung.lnk
2019-03-31 15:54 - 2018-03-29 20:03 - 000001163 _____ C:\Users\ds\Desktop\MSI Afterburner.lnk
2019-03-31 15:54 - 2017-12-03 18:15 - 000002523 _____ C:\Users\ds\Desktop\OneNote 2016.lnk
2019-03-31 15:54 - 2017-12-03 18:14 - 000002584 _____ C:\Users\ds\Desktop\PowerPoint 2016.lnk
2019-03-31 15:54 - 2017-12-03 18:14 - 000002559 _____ C:\Users\ds\Desktop\Publisher 2016.lnk
2019-03-31 15:54 - 2017-12-03 18:13 - 000002609 _____ C:\Users\ds\Desktop\Word 2016.lnk
2019-03-31 15:54 - 2017-12-03 18:13 - 000002495 _____ C:\Users\ds\Desktop\Outlook 2016.lnk
2019-03-31 15:54 - 2017-12-03 18:12 - 000002605 _____ C:\Users\ds\Desktop\Excel 2016.lnk
2019-03-31 15:54 - 2017-12-03 18:12 - 000002526 _____ C:\Users\ds\Desktop\Access 2016.lnk
2019-03-31 15:54 - 2017-10-14 20:49 - 000001070 _____ C:\Users\ds\Desktop\Origin.lnk
2019-03-31 15:54 - 2016-06-09 14:41 - 000001601 _____ C:\Users\ds\Desktop\.minecraft - Verknüpfung.lnk
2019-03-31 15:17 - 2017-10-21 19:53 - 000000000 ____D C:\Users\ds\AppData\Roaming\EasyAntiCheat
2019-03-31 14:54 - 2017-04-21 11:25 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2019-03-30 17:00 - 2017-04-21 12:05 - 000000528 _____ C:\Users\ds\Desktop\Daten (E) - Verknüpfung.lnk
2019-03-28 20:04 - 2016-12-23 16:13 - 000000000 ___HD C:\adobeTemp
2019-03-28 20:03 - 2018-07-22 13:29 - 000003628 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2019-03-28 20:03 - 2018-07-22 13:29 - 000003504 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2019-03-26 18:33 - 2017-10-12 19:40 - 000002333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-03-23 22:59 - 2018-02-02 16:52 - 000000000 ____D C:\Users\ds\ansel
2019-03-23 20:46 - 2018-02-18 21:02 - 000001499 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2019-03-23 20:46 - 2017-04-21 11:25 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2019-03-23 20:45 - 2018-07-02 20:49 - 000000000 ____D C:\Users\ds\AppData\Local\BattlEye
2019-03-23 20:45 - 2017-04-21 11:25 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2019-03-23 01:09 - 2017-08-25 16:31 - 000000000 ____D C:\Users\ds\AppData\Roaming\Origin
2019-03-23 00:53 - 2017-06-08 16:25 - 000000000 ____D C:\Users\ds\AppData\Local\Battle.net
2019-03-23 00:09 - 2017-06-08 16:24 - 000000000 ____D C:\Program Files (x86)\Blizzard App
2019-03-23 00:04 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2019-03-23 00:04 - 2018-03-30 14:23 - 000000000 ____D C:\Program Files\CCleaner
2019-03-21 19:38 - 2018-01-09 19:00 - 000000000 ____D C:\ProgramData\Epic
2019-03-18 18:54 - 2017-07-03 14:24 - 000000000 ____D C:\Program Files\Rockstar Games
2019-03-18 18:54 - 2017-07-03 14:24 - 000000000 ____D C:\Program Files (x86)\Rockstar Games
2019-03-18 18:49 - 2017-09-23 20:02 - 000000000 ____D C:\Users\ds\Documents\Rockstar Games
2019-03-18 18:16 - 2017-10-16 20:11 - 000001787 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rainmeter.lnk
2019-03-18 18:16 - 2017-10-16 20:11 - 000000000 ____D C:\Program Files\Rainmeter
2019-03-18 17:11 - 2018-05-26 19:44 - 001323504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvRtmpStreamer64.dll
2019-03-18 16:31 - 2017-07-03 18:15 - 000001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2019-03-15 22:46 - 2016-01-14 18:52 - 000000000 ____D C:\Program Files (x86)\Minecraft
2019-03-12 21:59 - 2015-05-29 16:55 - 000000000 ____D C:\Users\ds\AppData\Roaming\Adobe
2019-03-12 21:56 - 2018-07-22 13:16 - 011018104 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-03-12 21:55 - 2018-04-12 18:19 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-03-12 21:55 - 2018-04-12 01:38 - 000000000 ___SD C:\WINDOWS\system32\UNP
2019-03-12 21:55 - 2018-04-12 01:38 - 000000000 ___RD C:\Program Files\Windows Defender
2019-03-12 21:55 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-03-12 21:55 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-03-12 21:55 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\appraiser
2019-03-12 21:55 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\ShellExperiences
2019-03-12 21:55 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-03-12 21:55 - 2018-04-12 01:38 - 000000000 ____D C:\Program Files (x86)\Windows Defender
2019-03-12 19:45 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-03-12 19:42 - 2015-05-29 22:01 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-03-12 19:38 - 2017-12-26 17:55 - 000000000 ____D C:\Users\ds\Documents\Adobe
2019-03-12 19:26 - 2018-11-25 20:21 - 000000000 ____D C:\Users\ds\AppData\Local\Discord
2019-03-12 19:26 - 2017-08-24 17:34 - 000000000 ____D C:\Users\ds\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Discord Inc
2019-03-11 20:21 - 2016-01-09 17:32 - 000000000 ____D C:\Program Files (x86)\Adobe

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse =======

2016-07-21 03:06 - 2016-07-21 03:06 - 000000048 _____ () C:\Program Files (x86)\ibdxotozgt.dat
2017-10-03 11:09 - 2017-10-03 11:09 - 000000033 _____ () C:\Users\ds\AppData\Roaming\AdobeWLCMCache.dat
2015-05-30 10:22 - 2015-05-30 10:22 - 000000000 _____ () C:\Users\ds\AppData\Roaming\gdfw.log
2015-05-30 10:22 - 2015-05-30 10:22 - 000000779 _____ () C:\Users\ds\AppData\Roaming\gdscan.log
2017-07-12 17:20 - 2018-12-11 16:34 - 000000858 _____ () C:\Users\ds\AppData\Roaming\jd-gui.cfg
2017-07-31 16:41 - 2018-10-28 16:51 - 000033974 _____ () C:\Users\ds\AppData\Roaming\VoiceMeeterDefault.xml
2016-10-30 18:33 - 2017-06-17 19:31 - 000001456 _____ () C:\Users\ds\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2016-01-22 17:27 - 2016-06-25 17:30 - 001065984 _____ () C:\Users\ds\AppData\Local\file__0.localstorage
2018-09-29 15:05 - 2018-09-29 15:05 - 000000000 _____ () C:\Users\ds\AppData\Local\oobelibMkey.log
2016-04-10 12:15 - 2016-04-10 12:15 - 000001465 _____ () C:\Users\ds\AppData\Local\recently-used.xbel
2015-11-23 19:31 - 2017-04-23 15:01 - 000007632 _____ () C:\Users\ds\AppData\Local\Resmon.ResmonCfg

==================== Bamital & volsnap ======================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

C:\WINDOWS\system32\winlogon.exe => Datei ist digital signiert
C:\WINDOWS\system32\wininit.exe => Datei ist digital signiert
C:\WINDOWS\explorer.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\explorer.exe => Datei ist digital signiert
C:\WINDOWS\system32\svchost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\svchost.exe => Datei ist digital signiert
C:\WINDOWS\system32\services.exe => Datei ist digital signiert
C:\WINDOWS\system32\User32.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\User32.dll => Datei ist digital signiert
C:\WINDOWS\system32\userinit.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\userinit.exe => Datei ist digital signiert
C:\WINDOWS\system32\rpcss.dll => Datei ist digital signiert
C:\WINDOWS\system32\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dnsapi.dll => Datei ist digital signiert
C:\WINDOWS\system32\dllhost.exe => Datei ist digital signiert
C:\WINDOWS\SysWOW64\dllhost.exe => Datei ist digital signiert
C:\WINDOWS\system32\Drivers\volsnap.sys => Datei ist digital signiert

LastRegBack: 2018-07-22 13:16

==================== Ende von FRST.txt ============================


dnllul 09.04.2019 21:45

.... Und Addition.txt:
Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 17.03.2019
durchgeführt von ds (09-04-2019 22:38:47)
Gestartet von C:\Users\ds\Desktop
Windows 10 Pro Version 1803 17134.648 (X64) (2018-07-22 11:30:23)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-2346752298-182118505-4290318530-500 - Administrator - Enabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-2346752298-182118505-4290318530-503 - Limited - Disabled)
ds (S-1-5-21-2346752298-182118505-4290318530-1000 - Administrator - Enabled) => C:\Users\ds
Gast (S-1-5-21-2346752298-182118505-4290318530-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-2346752298-182118505-4290318530-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: G DATA TOTAL SECURITY (Enabled - Up to date) {A9C56A9B-ECCD-57EA-78F6-92511DA1C885}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Spybot - Search and Destroy (Disabled - Up to date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: G DATA TOTAL SECURITY (Disabled - Up to date) {12A48B7F-CAF7-5864-4246-A92366268238}
FW: G DATA TOTAL SECURITY (Enabled) {91FEEBBE-A6A2-56B2-53A9-3B64E3728FFE}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

1Password (HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\1Password) (Version: 7.3.657 - AgileBits Inc.)
64 Bit HP CIO Components Installer (HKLM\...\{5737101A-27C4-408A-8A57-D1DC78DF84B4}) (Version: 8.2.1 - Hewlett-Packard) Hidden
7-Zip 9.20 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0920-000001000000}) (Version: 9.20.00.0 - Igor Pavlov)
Adobe Acrobat DC (HKLM-x32\...\{AC76BA86-1033-FFFF-7760-0C0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 19.010.20098 - Adobe Systems Incorporated)
Adobe After Effects CC 2018 (HKLM-x32\...\AEFT_15_1_2) (Version: 15.1.2 - Adobe Systems Incorporated)
Adobe After Effects CC 2019 (HKLM-x32\...\AEFT_16_0_1) (Version: 16.0.1 - Adobe Systems Incorporated)
Adobe Audition CC 2018 (HKLM-x32\...\AUDT_11_1_1) (Version: 11.1.1 - Adobe Systems Incorporated)
Adobe Audition CC 2019 (HKLM-x32\...\AUDT_12_0_1) (Version: 12.0.1 - Adobe Systems Incorporated)
Adobe Bridge CC 2018 (HKLM-x32\...\KBRG_8_1) (Version: 8.1 - Adobe Systems Incorporated)
Adobe Bridge CC 2019 (HKLM-x32\...\KBRG_9_0_2) (Version: 9.0.2 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 4.8.1.435 - Adobe Systems Incorporated)
Adobe Illustrator CC 2019 (HKLM-x32\...\ILST_23_0_2) (Version: 23.0.2 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.14 - Adobe Systems Incorporated)
Adobe Lightroom Classic CC (HKLM-x32\...\LTRM_8_2) (Version: 8.2 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2018 (HKLM-x32\...\AME_12_1_2) (Version: 12.1.2 - Adobe Systems Incorporated)
Adobe Media Encoder CC 2019 (HKLM-x32\...\AME_13_0_2) (Version: 13.0.2 - Adobe Systems Incorporated)
Adobe Photoshop CC 2018 (HKLM-x32\...\PHSP_19_1_8) (Version: 19.1.8 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_4) (Version: 20.0.4 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2018 (HKLM-x32\...\PPRO_12_1_2) (Version: 12.1.2 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2019 (HKLM-x32\...\PPRO_13_0_3) (Version: 13.0.3 - Adobe Systems Incorporated)
Apex Legends (HKLM-x32\...\{D7FBF176-382D-484E-863A-DFD1124A2A1C}) (Version: 1.0.0.6 - Electronic Arts, Inc.)
APP Center (HKLM-x32\...\{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.17.0801 - Gigabyte) Hidden
APP Center (HKLM-x32\...\InstallShield_{F3D47276-0E35-42CF-A677-B45118470E21}) (Version: 1.17.0801 - Gigabyte)
Apple Application Support (32-Bit) (HKLM-x32\...\{9F7041CB-8398-4691-B8CB-0D52273BB3D9}) (Version: 7.4 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{6E7DF4EE-1976-4215-9D81-755AFC95687D}) (Version: 7.4 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{BA2A6DBB-B09A-43D8-84F3-21C1537B47D9}) (Version: 12.2.0.15 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
Audacity 2.1.2 (HKLM-x32\...\Audacity®_is1) (Version: 2.1.2 - Audacity Team)
AVM FRITZ!WLAN (HKLM-x32\...\AVMWLANCLI) (Version: 06.20.00 - AVM Berlin)
bl (HKLM-x32\...\{2A075BB4-E976-4278-BF3F-E5C6945D84C0}) (Version: 1.0.0 - Your Company Name) Hidden
Blizzard App (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Call of Duty Black Ops 4 (HKLM-x32\...\Call of Duty Black Ops 4) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform)
CINEMA 4D Student 17.053 (HKLM\...\MAXON70C444BA) (Version: 17.053 - MAXON Computer GmbH)
CPUID CPU-Z Gigabyte 1.78 (HKLM\...\CPUID CPU-Z Gigabyte_is1) (Version: 1.78 - CPUID, Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
Data Lifeguard Diagnostic version 1.36 (HKLM-x32\...\{519C4DB6-B53B-4F5C-8297-89B2BE949FA5}_is1) (Version:  - Western Digital Corporation)
Destiny 2 (HKLM-x32\...\Destiny 2) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\Discord) (Version: 0.0.305 - Discord Inc.)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 419.17 - NVIDIA Corporation) Hidden
EasyTune (HKLM-x32\...\{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.15.0626 - GIGABYTE) Hidden
EasyTune (HKLM-x32\...\InstallShield_{7F635314-EE21-4E4B-A68D-69AE70BA0E9B}) (Version: 1.15.0626 - GIGABYTE)
Epic Games Launcher (HKLM-x32\...\{64F36122-A72E-4185-A986-0A73C3FA6F73}) (Version: 1.1.135.0 - Epic Games, Inc.)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Fraps (HKLM-x32\...\Fraps) (Version:  - )
FRITZ!Powerline (HKLM-x32\...\{F9C9378B-78D5-4CC0-8683-B7915DFEA9C5}) (Version: 01.00.65 - AVM Berlin)
Futuremark SystemInfo (HKLM-x32\...\{8AD048D8-1975-47F5-800F-15028E84F2C5}) (Version: 5.5.646.0 - Futuremark)
G DATA Firewall Helper (HKLM\...\{97a7185d-397f-4652-a72c-d3a08820d734}.sdb) (Version:  - )
G DATA TOTAL SECURITY (HKLM-x32\...\G DATA TOTAL SECURITY) (Version: 25.5.2.7 - G DATA Software AG)
GCFScape 1.8.6 (HKLM\...\GCFScape_is1) (Version:  - Ryan Gregg)
Geeks3D FurMark 1.20.0.1 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version:  - Geeks3D)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 73.0.3683.86 - Google Inc.)
Google Drive (HKLM-x32\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.7 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.21.115 - Google Inc.) Hidden
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
HiPatch (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF000}) (Version: 5.1.4.6 - Hi-Rez Studios)
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
iCloud (HKLM\...\{03742818-3BC2-45BA-B6BB-4C2D453FD033}) (Version: 7.11.0.19 - Apple Inc.)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 10.0.0.1204 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 21.1 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4835 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.3.1001 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 3.0.0.16 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{5a6a5d15-d5af-417c-b08f-f7e5eb1f98af}) (Version: 10.0.26 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{D2C7871C-C4D8-45AC-89FD-D7F304B87277}) (Version: 12.9.4.102 - Apple Inc.)
Java 8 Update 201 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180201F0}) (Version: 8.0.2010.9 - Oracle Corporation)
Java SE Development Kit 8 Update 131 (64-bit) (HKLM\...\{64A3A4F4-B792-11D6-A78A-00B0D0180131}) (Version: 8.0.1310.11 - Oracle Corporation)
KOBIL CCID driver x64x86 (HKLM-x32\...\{C5CBEBFF-3DB4-4271-A706-757BBE3BD5AE}) (Version: 1.013.02121 - KOBIL Systems) Hidden
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
LibreOffice 5.0.6.3 (HKLM-x32\...\{900D9036-4EDA-45EC-A095-E8AFB25D807A}) (Version: 5.0.6.3 - The Document Foundation)
Malwarebytes Version 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - de-de (HKLM\...\ProPlusRetail - de-de) (Version: 16.0.11425.20202 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\OneDriveSetup.exe) (Version: 19.033.0218.0011 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.15.26706 (HKLM-x32\...\{95ac1cfa-f4fb-4d1b-8912-7f9d5fbb140d}) (Version: 14.15.26706.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.15.26706 (HKLM-x32\...\{7e9fae12-5bbf-47fb-b944-09c49e75c061}) (Version: 14.15.26706.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 60.0 (x64 en-US) (HKLM\...\Mozilla Firefox 60.0 (x64 en-US)) (Version: 60.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 57.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 60.3.0.6912 - Mozilla)
Mozilla Thunderbird 60.3.3 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 60.3.3 (x86 de)) (Version: 60.3.3 - Mozilla)
MSI Afterburner 4.4.2 (HKLM-x32\...\Afterburner) (Version: 4.4.2 - MSI Co., LTD)
MSI Kombustor 2.5.9 (HKLM-x32\...\{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1) (Version:  - MSI Co., LTD)
MSI Live Update 6 (HKLM-x32\...\{4F46CF54-47D2-41F4-B230-B0954C544420}}_is1) (Version: 6.0.025 - MSI)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
Nightly 59.0a1 (x64 de) (HKLM\...\Nightly 59.0a1 (x64 de)) (Version: 59.0a1 - Mozilla)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.9 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.15 - NVIDIA Corporation) Hidden
NVIDIA 3D Vision Controller-Treiber 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA 3D Vision Treiber 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 419.17 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.18.0.94 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.18.0.94 - NVIDIA Corporation)
NVIDIA Grafiktreiber 419.17 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 419.17 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.13 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.13 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.18.0907 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.18.0907 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.1.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.11425.20202 - Microsoft Corporation) Hidden
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version:  - )
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Opera Stable 58.0.3135.118 (HKLM-x32\...\Opera 58.0.3135.118) (Version: 58.0.3135.118 - Opera Software)
Opera Stable 58.0.3135.127 (HKLM-x32\...\Opera 58.0.3135.127) (Version: 58.0.3135.127 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.5.36.23506 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{1452eebc-e271-4f11-b9df-298353e5d5ab}) (Version: latest - ppy Pty Ltd)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
ph (HKLM-x32\...\{185F9795-9663-4F13-9EF9-307A282ADB5A}) (Version: 1.0.0 - Your Company Name) Hidden
QuickTime 7 (HKLM-x32\...\{80CEEB1E-0A6C-45B9-A312-37A1D25FDEBC}) (Version: 7.78.80.95 - Apple Inc.)
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.3 r3298 - Rainmeter)
Razer Chroma SDK (HKLM-x32\...\Razer Chroma SDK) (Version: 2.22.3 - Razer Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 8.5.11.584 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.21.1 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8475 - Realtek Semiconductor Corp.)
Resource Tuner 2.10 (HKLM-x32\...\Resource Tuner_is1) (Version: 2.10 - Heaventools Software)
Revo Uninstaller 2.0.6 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.6 - VS Revo Group, Ltd.)
RivaTuner Statistics Server 7.0.2 (HKLM-x32\...\RTSS) (Version: 7.0.2 - Unwinder)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Sandboxie 5.24 (64-bit) (HKLM\...\Sandboxie) (Version: 5.24 - Sandboxie Holdings, LLC)
Skype Click to Call (HKLM-x32\...\{873F8E7C-10E6-449F-BD7E-5FBA7C8E1C9B}) (Version: 8.5.0.9167 - Microsoft Corporation)
Skype™ 7.38 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.38.101 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\Spotify) (Version: 1.1.4.197.g92d52c4f - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.18 - TeamSpeak Systems GmbH)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version:  - TechPowerUp)
The Crew (Worldwide) (HKLM-x32\...\Uplay Install 413) (Version:  - Ubisoft)
TIPP10 Version 2.1.0 (HKLM-x32\...\TIPP10_is1) (Version:  - (c) 2006-2011, Tom Thielicke IT Solutions)
Tom Clancy's Rainbow Six Siege (HKLM-x32\...\Uplay Install 635) (Version:  - Ubisoft Montreal)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{B2E25355-C24E-4E7D-8AD3-455D59810838}) (Version: 2.57.0.0 - Microsoft Corporation)
Uplay (HKLM-x32\...\Uplay) (Version: 7.3 - Ubisoft)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version:  - VB-Audio Software)
Vulkan Run Time Libraries 1.0.8.1 (HKLM\...\VulkanRT1.0.8.1) (Version: 1.0.8.1 - LunarG, Inc.)
WD Drive Utilities (HKLM-x32\...\{490aca2d-0bcf-4d7d-bfb8-c6785e2ba5f3}) (Version: 2.0.0.48 - Western Digital Technologies, Inc.)
WD Drive Utilities (HKLM-x32\...\{CC0FD183-6E59-4D9C-87A9-5055814C3E90}) (Version: 2.0.0.48 - Western Digital Technologies, Inc.) Hidden
WhatsApp (HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\WhatsApp) (Version: 0.3.2386 - WhatsApp)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.30 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-2346752298-182118505-4290318530-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-2346752298-182118505-4290318530-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-36664A93D01A} -> [Creative Cloud Files] => E:\programme\Creative Cloud Files [2017-06-29 16:58]
CustomCLSID: HKU\S-1-5-21-2346752298-182118505-4290318530-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-E6BD9DC515A7} -> [Creative Cloud Files] => C:\Users\ds\Creative Cloud Files [2018-02-16 13:08]
CustomCLSID: HKU\S-1-5-21-2346752298-182118505-4290318530-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
ShellIconOverlayIdentifiers: [  AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [  AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [  AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [  GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [  GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2018-04-23] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43} =>  -> Keine Datei
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => E:\programme\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2017-08-29] (Notepad++ -> )
ContextMenuHandlers1: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\TotalProtection\AVK\ShellExt64.dll [2019-01-21] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2019-03-13] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\TotalProtection\Shredder\Reisswlf64.dll [2019-01-21] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2010-11-18] (Igor Pavlov) [Datei ist nicht signiert]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files (x86)\Google\Drive\contextmenu64.dll [2018-04-23] (Google Inc -> Google)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Keine Datei
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-10-20] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-02-20] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2018-03-05] (Adobe Systems Incorporated -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => E:\programme\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2015-03-17] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [AVK9CM] -> {CAF4C320-32F5-11D3-A222-004095200FF2} => C:\Program Files (x86)\G DATA\TotalProtection\AVK\ShellExt64.dll [2019-01-21] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Reisswolf] -> {1F0F1EE7-36B9-11D2-8985-0080ADA96E9B} => C:\Program Files (x86)\G DATA\TotalProtection\Shredder\Reisswlf64.dll [2019-01-21] (G DATA Software AG -> G DATA Software AG)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2015-11-18] (win.rar GmbH -> Alexander Roshal)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {033D2D7D-E40D-424E-893B-787719D94651} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {04B0AE87-0C11-4DDC-AC2D-157CBF0362D9} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {071878AB-0A4E-40CE-A19B-8CF96BB4B812} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {09041146-44AC-4523-AB33-D1C3089AEB17} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {116FFA94-2D14-402C-880C-6C7B53A626C4} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {11F8B8AC-2F7D-4A42-8C98-2731289EF455} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {14E59AA0-94C4-4D60-A8D2-D3B447496462} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {1B5DD75F-B056-4499-A29B-5F1300AC0140} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1C2CD204-9C5D-4F59-BF5B-6F83B206CA48} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> Keine Datei <==== ACHTUNG
Task: {1E240644-27E6-4FA9-A129-66021FCD3F50} - System32\Tasks\{4B4A9D80-839C-4E29-BCEC-95AB398433AC} => "c:\windows\system32\launchwinapp.exe" hxxp://ui.skype.com/ui/0/7.21.0.100/de/abandoninstall?source=lightinstaller&page=tsInstall
Task: {203A0C11-0423-42D1-9B04-2EB2DEBE1E76} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {203D42F7-2D03-4682-9A4C-9B6D44C8A1EF} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {253CC11F-E4F9-4B23-99A2-A446401B787B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2AC1D2BB-D8B1-43F2-B7AA-99D969B1D86B} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {33DE83A9-B04C-43EE-AC78-BAEA1840E3F7} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {35C7C4D3-E145-42DA-9783-0CD23B975A46} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {3759178D-97D1-4516-874C-7A49B9D3CBC4} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Refresh immunization => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDImmunize.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {3CCAC1C1-13FD-432D-8E27-573E19CA0F19} - System32\Tasks\{E18F6B3A-F90C-4051-BF90-61F6210CC609} => C:\Windows\system32\pcalua.exe -a C:\Users\ds\AppData\Local\Temp\jre-8u60-windows-au.exe -d C:\Windows\SysWOW64 -c /installmethod=jau FAMILYUPGRADE=1 <==== ACHTUNG
Task: {4152B586-98C1-40C0-939A-6B54B81DDA80} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {41BDA5CC-A744-4466-9D1E-F58C1544A4AE} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {45518123-50DF-43F1-BF55-2820D2F54BE0} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {457BE428-0EAE-480A-B9EE-1B3EC6A48337} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4ACF6C8D-753B-471D-B6DE-ECD35BF3CA96} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4AF34363-98BC-45B0-8129-062AE50FAB87} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe (Apple Inc. -> Apple Inc.)
Task: {53859E2A-CD66-4A96-BC8F-43F8A167FCBD} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {58AAB8A7-3420-42DC-89C2-307F6AE206FF} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {5E524176-479C-401A-84AA-6AB9B4BBAB64} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {6147D9F8-08D2-4724-A642-8D4A1A4F5E7C} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {63291A6E-E9C8-436A-96C7-FEEB088327F7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {709087C0-58A6-4D5A-928B-B2AB03959921} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {766FD18A-569F-461E-8056-9156ACE9B1B6} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7B65143F-52D6-4867-B25F-C1DE9DACF8CD} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7B69C5CA-7D49-4EA0-A7ED-35EC5D41BBEE} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {7FD0939B-E884-40C9-8B8D-928BBDE8A8C1} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {81DB2D69-B5F4-4C56-8557-CCEA98294E45} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {86652D42-8AF3-4737-8F9F-E2FA76578605} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8773BB1A-2700-4778-A319-601293F64A56} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8C7A2241-9D3B-429B-AEF9-8C3447571592} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {8E72508D-735C-4138-96A9-8EB96BF3A260} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {90805873-EC74-408A-8644-3A121B1CEAF8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {9445A03D-37B3-46F5-872B-E06176348194} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9BFDD6DE-5C57-481F-85AC-335A33B6A5EC} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {A644ABC8-0260-4CDF-98A2-1BA83F9FCF40} - System32\Tasks\{5289819B-B151-4F72-9A76-EC5C4C1D99AD} => C:\Windows\system32\pcalua.exe -a C:\Users\ds\Downloads\avm_fritz!wlan_usb_stick_n_v2_x64_build_141114.exe -d C:\Users\ds\Downloads
Task: {A8C54DAE-E842-405E-9D35-C418E484D74C} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {A95E984F-231F-458B-961C-F51727DCEC12} - System32\Tasks\{92CD099C-E207-4F5D-BDB0-67EEC98E1D02} => C:\Windows\system32\pcalua.exe -a D:\SETUP.EXE -d D:\
Task: {AB3923C6-0D91-42A9-B9FB-9DF9D0DE899B} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {AC0E5BD4-FDC8-45D9-9A51-169949563330} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B1BE881D-900E-4033-B9BC-40CFA3484BA8} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {B34B1ADB-A9DA-43EA-A7DC-1AC23D8CE9B7} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\sdxhelper.exe (Microsoft Corporation -> Microsoft Corporation)
Task: {B67412C6-63FB-4066-99E1-7E3C8B696A83} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {B6BDE888-72C6-450B-8B9F-D03DADA9C219} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B6D7D96C-E00F-4E09-A16E-0004455CD8E7} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B95F71B9-5BED-4EF9-9BAD-663FD770A000} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {C05872D8-D85A-428D-B3D4-CCAAE8C797A4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C10EBBF2-D531-44E6-BEB3-66D55E85CDD8} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C8395F88-0BEC-4AE6-9304-A11DBB2F69DE} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe (MICRO-STAR INTERNATIONAL CO., LTD. -> )
Task: {CC0B6A2A-329D-4D13-B3E9-5088A7931FD7} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CC42151F-997C-4043-B4C9-64E1AB2432C2} - System32\Tasks\Opera scheduled Autoupdate 1477237482 => C:\Users\ds\AppData\Local\Programs\Opera\launcher.exe (Opera Software AS -> Opera Software)
Task: {CDB304BF-6E2D-4135-9CA0-16FB4CD3263A} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {D2FB1C5E-8475-4827-B1B5-939DB96CDEE8} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe (Google Inc -> Google Inc.)
Task: {D62D7BED-EB85-45FE-8B1B-2E364DD3AF88} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Check for updates => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {D7127484-5531-4933-9274-4DC4DD5DBEA2} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D93E4528-5E19-4608-B87D-BAFEDF7FE86C} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {DD36B6D5-9FAE-49EC-B3A3-A5913334037A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {E0F35678-CCAA-4340-AF99-6C1EE31530F9} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E34E84F3-3A94-4FF5-A09C-413D85732FEC} - System32\Tasks\AdobeGCInvoker-1.0-PC_D-ds => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
Task: {E62AEB39-7426-4DBA-B8D7-BCCDE1EB876E} - System32\Tasks\{01282DD4-E660-4642-B196-E799C15BDBE3} => C:\Windows\system32\pcalua.exe -a C:\Users\ds\Downloads\forge-1.7.10-10.13.2.1230-installer-win.exe -d C:\Users\ds\Desktop
Task: {EA222028-7775-433A-AEC1-ABB7FB03A8C5} - System32\Tasks\S-1-5-21-2346752298-182118505-4290318530-1000\DataSenseLiveTileTask => C:\WINDOWS\System32\DataUsageLiveTileTask.exe (Microsoft Windows -> Microsoft Corporation)
Task: {EB00FCD1-37F0-42F5-8C39-B1D5606E4291} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EEB7956B-D5A5-4840-89E8-5F7BA1779615} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F1A78C25-BA89-4D4A-B842-FFAF1C899DAB} - System32\Tasks\Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Task: {F2890E09-3F00-4866-8F43-C7B36FC0D60E} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F618BF36-0851-4AAD-96D5-1C7EF48DAEF0} - System32\Tasks\Safer-Networking\Spybot - Search and Destroy\Scan the system => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDScan.exe (Safer-Networking Ltd. -> Safer-Networking Ltd.)
Task: {FA4722E6-EADF-4506-8034-F62F29A95879} - System32\Tasks\AdobeAAMUpdater-1.0-PC_D-ds => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {FB00FB44-8427-4370-AE38-C6B92A986CE0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FFFD24BC-26AC-4E05-804C-1FCD4952CC18} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)


==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Geladene Module (Nicht auf der Ausnahmeliste) ==============

2014-05-21 11:19 - 2014-05-21 11:19 - 000139264 _____ (AVM GmbH) [Datei ist nicht signiert] C:\Program Files (x86)\FRITZ!Powerline\PowerlineService.exe
2015-04-14 15:27 - 2015-04-14 15:27 - 000016896 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Gigabyte\AppCenter\AdjustService.exe
2018-07-26 17:13 - 2018-06-11 20:57 - 000009728 _____ (Hi-Rez Studios) [Datei ist nicht signiert] C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
2018-02-25 12:07 - 2018-02-25 12:07 - 000091136 _____ () [Datei ist nicht signiert] C:\Users\ds\AppData\Roaming\Rainmeter\Plugins\TranslucentTaskbar.DLL
2015-08-07 11:06 - 2005-07-18 13:43 - 000160256 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\MSI\Live Update\unrar.dll
2014-04-11 09:31 - 2014-04-11 09:31 - 000297984 _____ (Intel Corporation) [Datei ist nicht signiert] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2014-04-11 09:31 - 2014-04-11 09:31 - 000523264 _____ (Intel Corporation) [Datei ist nicht signiert] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 003084800 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Quick.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 004571648 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Widgets.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000438272 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\Qt5WinExtras.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 005139968 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Gui.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 002950144 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Qml.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 002234880 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Network.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 005010944 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 001181184 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\platforms\qwindows.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000124928 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\styles\qwindowsvistastyle.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000026112 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qico.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000020992 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\imageformats\qsvg.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000259584 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\Qt5Svg.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick.2\qtquick2plugin.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000729088 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Controls\qtquickcontrolsplugin.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000073216 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Layouts\qquicklayoutsplugin.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000179712 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Dialogs\dialogplugin.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\Window.2\windowplugin.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000014848 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\QtQml\Models.2\modelsplugin.dll
2019-04-08 12:44 - 2019-03-13 09:22 - 000101888 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files\Malwarebytes\Anti-Malware\QtQuick\PrivateWidgets\widgetsplugin.dll
2014-01-22 13:53 - 2014-01-22 13:53 - 001607680 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Gigabyte\AppCenter\BDR_info.dll
2015-02-16 10:47 - 2015-02-16 10:47 - 000105472 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Gigabyte\AppCenter\ycc.dll
2015-03-17 01:34 - 2015-03-17 01:34 - 000010240 _____ () [Datei ist nicht signiert] E:\programme\Adobe\Acrobat DC\Acrobat\locale\de_de\acrotray.deu
2019-02-01 02:24 - 2019-02-01 02:24 - 001191424 _____ () [Datei ist nicht signiert] E:\programme\Adobe\Acrobat DC\Acrobat\locale\de_de\adistres.DEU

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\Users\ds\Anwendungsdaten:00e481b5e22dbe1f649fcddd505d3eb7 [362]
AlternateDataStreams: C:\Users\ds\AppData\Roaming:00e481b5e22dbe1f649fcddd505d3eb7 [362]
AlternateDataStreams: C:\Users\Public\AppData:CSM [472]
AlternateDataStreams: C:\Users\Public\Shared Files:VersionCache [486]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt.)


==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Da befinden sich 7941 mehr Seiten.

IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\123simsen.com -> www.123simsen.com

Da befinden sich 7941 mehr Seiten.


==================== Hosts Inhalt: ==========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2019-04-09 15:04 - 2019-04-09 15:04 - 000453557 ____R C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1        10sek.com
127.0.0.1        www.10sek.com
127.0.0.1        www.1-2005-search.com
127.0.0.1        1-2005-search.com
127.0.0.1        123fporn.info
127.0.0.1        www.123fporn.info
127.0.0.1        www.123haustiereundmehr.com
127.0.0.1        123haustiereundmehr.com
127.0.0.1        123moviedownload.com
127.0.0.1        www.123moviedownload.com
127.0.0.1        123simsen.com
127.0.0.1        www.123simsen.com
127.0.0.1        123topsearch.com
127.0.0.1        www.123topsearch.com
127.0.0.1        125sms.co.uk
127.0.0.1        www.125sms.co.uk
127.0.0.1        www.125sms.com
127.0.0.1        125sms.com
127.0.0.1        132.com
127.0.0.1        www.132.com
127.0.0.1        www.1337crew.info
127.0.0.1        1337crew.info
127.0.0.1        www.1337-crew.to
127.0.0.1        1337-crew.to
127.0.0.1        136136.net
127.0.0.1        www.136136.net
127.0.0.1        150freesms.de
127.0.0.1        www.150freesms.de
127.0.0.1        163ns.com
127.0.0.1        www.163ns.com

Da befinden sich 15564 zusätzliche Einträge.


==================== Andere Bereiche ============================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path: C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\QuickTime\QTSystem\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\Program Files (x86)\Skype\Phone\;C:\Users\ds\AppData\Local\Microsoft\WindowsApps;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR
HKU\S-1-5-21-2346752298-182118505-4290318530-1000\Control Panel\Desktop\\Wallpaper -> E:\zeug\Hintergrundbilder\2dxaFs9.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
Windows Firewall ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.

HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "RoccatIsku"
HKLM\...\StartupApproved\Run32: => "RazerCortex"
HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\StartupApproved\StartupFolder: => "wallpaper64.exe - Verknüpfung.lnk"
HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-2346752298-182118505-4290318530-1000\...\StartupApproved\Run: => "Skype"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ===============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{BCF2E2B4-AD4E-4F66-91EE-5BCA9D938A0B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{3F8C3F72-9CFC-4FC9-AD47-F255C07F28C9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{9A0F1F4E-758A-4D58-925C-44593B5E78FE}] => (Allow) E:\programme\steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe (Microsoft) [Datei ist nicht signiert]
FirewallRules: [{6A43537C-D71D-4A69-8239-7210D4BEAFA3}] => (Allow) E:\programme\steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe (Microsoft) [Datei ist nicht signiert]
FirewallRules: [{14C16391-8B78-4AF7-A967-3DE1772A7B95}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{60AD6710-C24E-46FE-8202-34B3A41EE5D1}] => (Allow) E:\programme\steam\steamapps\common\3DMark\bin\x64\3DMark.exe Keine Datei
FirewallRules: [{B94447F7-0D1F-480E-95A7-7E9EF3A9C1DB}] => (Allow) E:\programme\steam\steamapps\common\3DMark\bin\x64\3DMark.exe Keine Datei
FirewallRules: [{64FBB65B-FB58-4721-846F-D1A3DA5AA500}] => (Allow) E:\programme\steam\steamapps\common\3DMark\bin\x86\3DMark.exe Keine Datei
FirewallRules: [{33AC2C10-80C7-4D42-AA49-B0715F541842}] => (Allow) E:\programme\steam\steamapps\common\3DMark\bin\x86\3DMark.exe Keine Datei
FirewallRules: [{F2D86AB7-A8CC-4689-A9D7-1372DB185660}] => (Allow) E:\programme\steam\steamapps\common\Warframe\Tools\Launcher.exe Keine Datei
FirewallRules: [{E3B451CC-F142-47F0-BBC8-1A638AFFD0DC}] => (Allow) E:\programme\steam\steamapps\common\Warframe\Tools\Launcher.exe Keine Datei
FirewallRules: [{07BD7443-4C6F-41CE-839D-1D9E4C835876}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{2FC7999D-F119-4CFE-AC1D-BEC23EEAA13B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe Keine Datei
FirewallRules: [{DE9899D0-5565-435A-B008-3F560279FC1D}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe Keine Datei
FirewallRules: [{BB78BF49-09D3-4684-9C66-33CA56F188D1}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe Keine Datei
FirewallRules: [{F391AA3B-F5A0-44CE-A12D-53098E0A5DEE}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{DB6D75E8-82A3-4536-9B73-E35B0A9100A2}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{FA3D4F89-77DF-4FBE-AD86-E0C70E19F28B}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe Keine Datei
FirewallRules: [{7ACF6604-8BA5-4001-9B0A-6597933E098F}] => (Allow) C:\Program Files (x86)\EaseUS\Todo Backup\bin\TodoBackupService.exe Keine Datei
FirewallRules: [{2C8B5A2D-AE27-480F-BF98-82DF87AF6D49}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CC96A86F-B91B-4465-9112-962A13E036B9}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E118E2A1-0999-43EA-9DB7-DA35DB65FD19}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe Keine Datei
FirewallRules: [{8C866728-8798-4FD3-8516-C3262B66B71B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E7A429AF-EEB8-478A-A98D-60A95E7F817D}] => (Allow) LPort=1900
FirewallRules: [{3D94A110-CA40-4B11-A95D-4AFC07FE63E2}] => (Allow) LPort=2869
FirewallRules: [{92F2F186-34A6-43B2-968E-EF25A5C3F24C}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{A06C7B6D-9751-4A60-8F22-93335B321F78}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe (Shanghai Ubi Computer Software Co Ltd -> UBISoft)
FirewallRules: [{1E9409DB-1726-45FC-B0AA-0F74D643D947}] => (Allow) C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\games\The Crew (Worldwide)\TheCrew.exe (Shanghai Ubi Computer Software Co Ltd -> UBISoft)
FirewallRules: [{CC2E58DE-D821-4890-9531-0FE4D3B71AE3}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{E09AC5A5-0807-4AA5-B68F-6BA0AECDAB2D}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{041FE6F5-9FFE-46E7-92CA-B9C6B6F20942}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{ADAB1076-EB41-4DF9-97B0-2BB162C7234F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8D595EA3-50F4-4B84-B566-F87ECD717EBB}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe Keine Datei
FirewallRules: [{B66519E6-4B8A-49CB-8245-94D5F3A49D01}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame_BE.exe Keine Datei
FirewallRules: [{3114DBCB-652E-4412-92DA-530C71CAD928}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe Keine Datei
FirewallRules: [{87A9ED27-7B7A-4013-A8AB-AD134BD0D03A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ARK\ShooterGame\Binaries\Win64\ShooterGame.exe Keine Datei
FirewallRules: [{898F66E9-10E0-43FA-907D-0408A1FEA5C1}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{598C1DAD-4703-4320-AF76-4FD8A6B783F8}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\GAME.exe Keine Datei
FirewallRules: [{C79AC2F3-0A20-4FEA-A5A5-BA1409D273FF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\firstassault\Shipping\GAME.exe Keine Datei
FirewallRules: [{59786F11-B59C-4AAB-8876-817880913F0D}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient.exe Keine Datei
FirewallRules: [{9F9050DD-89FD-4887-B623-1864BF625C5D}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd.exe Keine Datei
FirewallRules: [{B617A37D-8BF3-4935-ABCD-5AD5F4C582DF}] => (Allow) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe Keine Datei
FirewallRules: [{936D95C8-8EEB-43E5-AEE8-F620E6E4EA38}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe Keine Datei
FirewallRules: [{9B858B06-E8CF-4949-9E14-176EA4420868}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmd_x64.exe Keine Datei
FirewallRules: [{98CC4868-1B34-4BF4-B6D2-2C6F52743AAA}] => (Allow) C:\Program Files\SoftEther VPN Client\vpncmgr.exe Keine Datei
FirewallRules: [{7D0E4AF4-AA93-47FB-A966-949F71F7E285}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{17B26B6B-4F2E-4310-886F-6643BBA70B3D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe (Valve -> )
FirewallRules: [{43A0FCC9-B28A-4F88-A2D6-02E90F0F42D6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ShellShock Live\ShellShockLive.exe () [Datei ist nicht signiert]
FirewallRules: [{5157BBFD-0D79-4079-8DD0-10F822684C99}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\ShellShock Live\ShellShockLive.exe () [Datei ist nicht signiert]
FirewallRules: [{87ECF56D-B29A-4452-9A5E-A1D7FCA21C3D}] => (Allow) E:\programme\steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe Keine Datei
FirewallRules: [{D6A527DF-2916-4ADC-8455-6FD7E5AA99AC}] => (Allow) E:\programme\steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe Keine Datei
FirewallRules: [{1F9D7D62-511F-4D54-8B05-816882F22B39}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{FEEE2318-7E34-466E-8032-598B56C371C0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{DE37E098-2CAF-4F23-9DA9-F206660C7ECA}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{5E4039A2-FE47-401A-8E5B-9CC5E5A794B9}] => (Allow) E:\programme\steam\steamapps\common\Einar\Einar.exe () [Datei ist nicht signiert]
FirewallRules: [{BA3E9FA2-9405-4B91-AFB2-533BA890045E}] => (Allow) E:\programme\steam\steamapps\common\Einar\Einar.exe () [Datei ist nicht signiert]
FirewallRules: [{8D28F690-0520-47C1-93BA-811D76F0970E}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe Keine Datei
FirewallRules: [{8099CB28-C67A-4D03-92F6-5023E569C077}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe Keine Datei
FirewallRules: [{9475AFA6-E345-4091-844E-3212F10518D5}] => (Allow) E:\programme\steam\steamapps\common\Timberman\Timberman.exe () [Datei ist nicht signiert]
FirewallRules: [{E449B347-EAE8-4F26-B14B-9FF3ADAC08BF}] => (Allow) E:\programme\steam\steamapps\common\Timberman\Timberman.exe () [Datei ist nicht signiert]
FirewallRules: [{68005989-5C48-4C1A-9CB6-AA823E41821B}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe Keine Datei
FirewallRules: [{BFC0CA36-AD35-4CB6-B2B6-F0DAC64A9458}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe Keine Datei
FirewallRules: [{8F1C4C8C-4E77-465D-8C0A-09A60DC6108B}] => (Allow) E:\programme\steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{1214A5C1-D05A-446A-98CF-D1C232EAC88B}] => (Allow) E:\programme\steam\steamapps\common\PUBG\TslGame\Binaries\Win64\TslGame_BE.exe (BattlEye Innovations e.K. -> BattlEye Innovations)
FirewallRules: [{EB6B2B3D-F0D2-4EAF-A729-CEDAF0B6583A}] => (Allow) E:\programme\steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe (my.com .BV -> MY.COM B.V.)
FirewallRules: [{FC4C0AF5-B1FB-4986-AAB7-8F23AD0513EC}] => (Allow) E:\programme\steam\steamapps\common\Warface\WarfaceMycomSteamLoader.exe (my.com .BV -> MY.COM B.V.)
FirewallRules: [{D3904508-EE1F-4E37-A5D2-3F9F9F778BFC}] => (Allow) C:\Program Files\Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{53EF4302-03A6-400D-B270-3B2135613182}] => (Allow) C:\Program Files\Nightly\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{82B2D391-7CFB-46F6-B5F3-56574168053B}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{5D858530-0EBB-4DEC-A3BF-B07802CD1612}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B591361F-AA36-442F-A0CC-DCCEDD86FFEC}] => (Allow) E:\programme\steam\steamapps\common\Bloons TD Battles\Battles-Win.exe () [Datei ist nicht signiert]
FirewallRules: [{677D34BF-1BF4-458C-825A-6153C90F15D9}] => (Allow) E:\programme\steam\steamapps\common\Bloons TD Battles\Battles-Win.exe () [Datei ist nicht signiert]
FirewallRules: [{3BF5AA45-ADC9-4096-A050-1E9BD340CF77}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0C389764-58EE-4D15-94C7-DB05E1689A9F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{3CA0664D-B927-4633-AA99-8413BE3250FA}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{BB7E81FD-5E6F-40CB-8F7D-54E444E48C99}C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe] => (Block) C:\program files (x86)\epic games\launcher\portal\binaries\win64\epicgameslauncher.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{BB3956B3-161D-410C-BA01-8B1056E84D08}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{29C076E0-7A2F-4B24-B008-61906D49C830}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{C5520859-E28F-4589-8FA2-69164F186E74}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{6F052EFF-DECB-46B1-945D-7C3CE70DCAB3}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{B9C1F82D-D8C5-4204-965E-B1E4CB9E3CFE}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{FF2C6127-E77E-4CBF-8BAF-1520E68F7634}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CS2D\CS2D.exe () [Datei ist nicht signiert]
FirewallRules: [{5F8731EB-190B-444D-BF11-8E0758083DD5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\CS2D\CS2D.exe () [Datei ist nicht signiert]
FirewallRules: [{AF7B16D8-A0D7-4490-BF0F-7BC1389707EE}] => (Allow) E:\programme\steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [Datei ist nicht signiert]
FirewallRules: [{97575674-E94A-4CE0-8EF0-3C246F9F47CB}] => (Allow) E:\programme\steam\steamapps\common\PUBG\TslGame\Binaries\Win64\ExecPubg.exe (PUBG Corporation ) [Datei ist nicht signiert]
FirewallRules: [{F876C8D2-2419-4AD1-8B64-C0AD497EE3FB}] => (Allow) G:\Programme\steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe Keine Datei
FirewallRules: [{0FD0E56B-2C59-4820-899D-1D49EF358FA3}] => (Allow) G:\Programme\steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe Keine Datei
FirewallRules: [{5723441B-3C1E-4957-8C70-0EE51F97DCB3}] => (Allow) G:\Programme\steam\steamapps\common\Portal 2\portal2.exe Keine Datei
FirewallRules: [{127AFF13-E394-4C78-BD3D-1633BF75EC97}] => (Allow) G:\Programme\steam\steamapps\common\Portal 2\portal2.exe Keine Datei
FirewallRules: [{5CC566B7-7E81-4944-8302-4C2EED921FDA}] => (Allow) G:\Programme\steam\steamapps\common\Portal\hl2.exe Keine Datei
FirewallRules: [{1E72D3C6-4EC6-4F4D-ACE4-46213F6B517D}] => (Allow) G:\Programme\steam\steamapps\common\Portal\hl2.exe Keine Datei
FirewallRules: [{0D59D4EC-E320-434C-B2F0-3B7F7E4C782E}] => (Allow) G:\Programme\steam\steamapps\common\Assassin's Creed Unity\ACU.exe Keine Datei
FirewallRules: [{AE9E5AEF-53FE-40A6-B0F8-A702B9F08AFA}] => (Allow) G:\Programme\steam\steamapps\common\Assassin's Creed Unity\ACU.exe Keine Datei
FirewallRules: [{04A1D10C-7574-4E9D-AC65-A244BFFDB116}] => (Allow) G:\Programme\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe Keine Datei
FirewallRules: [{59C297FC-A4CE-4748-BD5C-6867FC349237}] => (Allow) G:\Programme\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe Keine Datei
FirewallRules: [{C4AABACA-3CF7-4802-B2FB-534B9B0C6E91}] => (Allow) G:\Programme\steam\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe Keine Datei
FirewallRules: [{6CDEA008-59FC-4551-8FF9-21B3E15BB68B}] => (Allow) G:\Programme\steam\steamapps\common\Black Squad\binaries\win32\SteamLauncher.exe Keine Datei
FirewallRules: [{1A94AC9A-1686-421F-AE24-AF52F3F039D8}] => (Allow) G:\Programme\steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe Keine Datei
FirewallRules: [{2EFC3E36-9A0C-4013-B44D-1DBD58B9FB0A}] => (Allow) G:\Programme\steam\steamapps\common\Black Squad\binaries\win32\BlackSquadGame.exe Keine Datei
FirewallRules: [{F6AA07F9-6A32-4A7F-9C95-316B9D5E8D7A}] => (Allow) E:\programme\steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{E7A43A81-05B2-4602-BCEA-28C157CDD620}] => (Allow) E:\programme\steam\steamapps\common\Paladins\Binaries\Win64\PaladinsEAC.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{99AF996E-A2AE-41C0-BE7F-3545761DAE63}E:\programme\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\programme\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [UDP Query User{7C5CE062-27BE-4755-B2D5-027B69D37859}E:\programme\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe] => (Allow) E:\programme\fortnite\fortnite\fortnitegame\binaries\win64\fortniteclient-win64-shipping.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{B9D6B361-4D38-4346-B2FA-0FE89881F546}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{7DB8F074-EF34-457B-BD13-21A6B1A73618}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{A3FF35DD-07E3-441D-9FC6-FFD16217AC4B}] => (Allow) F:4\Programme\steam\steamapps\common\Spellsworn\Spellsworn.exe Keine Datei
FirewallRules: [{FDA30C17-7F56-4EDB-AEDE-D80B5A3B37B8}] => (Allow) F:4\Programme\steam\steamapps\common\Spellsworn\Spellsworn.exe Keine Datei
FirewallRules: [{6F6220A9-DB65-4C3A-B41D-5E6A01BFF09D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{3DC6CF93-E7AA-44A8-8096-BB95C7BFA2A6}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{AD2A365A-5943-418D-9EF8-6DA453E7170F}] => (Allow) H:\Programme\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe () [Datei ist nicht signiert]
FirewallRules: [{CF7FF72A-29C0-4CE0-AC6D-AF93769039A4}] => (Allow) H:\Programme\steam\steamapps\common\PAYDAY 2\payday2_win32_release.exe () [Datei ist nicht signiert]
FirewallRules: [{6DFD566B-EACB-4A97-95C2-4756A2B0DEB7}] => (Allow) H:\Programme\steam\steamapps\common\Spellsworn\Spellsworn.exe () [Datei ist nicht signiert]
FirewallRules: [{E4E4C611-2708-4C49-91B1-292CCF030F47}] => (Allow) H:\Programme\steam\steamapps\common\Spellsworn\Spellsworn.exe () [Datei ist nicht signiert]
FirewallRules: [{3D549B72-9BFE-440F-A4FD-3BA987865E09}] => (Allow) H:\Programme\steam\steamapps\common\Black Squad\binaries\win64\SteamLauncher.exe (NSSTUDIO INC. -> NS Studio)
FirewallRules: [{D39F2C97-38F7-41E8-B1E0-A1E91BE0B144}] => (Allow) H:\Programme\steam\steamapps\common\Black Squad\binaries\win64\SteamLauncher.exe (NSSTUDIO INC. -> NS Studio)
FirewallRules: [{1D1B294D-D13D-4696-B7F2-E5B129B7F272}] => (Allow) E:\programme\steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{CDFA5659-80F4-46BA-BFE5-98CA8EE2F194}] => (Allow) E:\programme\steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{D61BB469-EB00-41C6-9EA2-83894D20C538}] => (Allow) E:\programme\steam\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [Datei ist nicht signiert]
FirewallRules: [{66480CF8-4BC6-48AC-A589-65B7F7F77621}] => (Allow) E:\programme\steam\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [Datei ist nicht signiert]
FirewallRules: [{9DCC1850-C62E-4B19-A58F-B0BC9F22CBCD}] => (Allow) F:0\Programme\steam\steamapps\common\Vainglory\Vainglory.exe Keine Datei
FirewallRules: [{40FDD003-4CC9-4796-9543-21A335620731}] => (Allow) F:0\Programme\steam\steamapps\common\Vainglory\Vainglory.exe Keine Datei
FirewallRules: [{41F5A3D2-FEB1-4BDC-B129-6011C3F14C0C}] => (Allow) H:\Programme\steam\steamapps\common\Vainglory\Vainglory.exe () [Datei ist nicht signiert]
FirewallRules: [{E0897991-20D1-4FB3-A0EE-AA5BDE00A29C}] => (Allow) H:\Programme\steam\steamapps\common\Vainglory\Vainglory.exe () [Datei ist nicht signiert]
FirewallRules: [{2A94F481-B721-4F3C-B481-F628F7D0E023}] => (Allow) H:\Programme\steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{1F3E0A30-4753-4762-B013-BB3000BF8802}] => (Allow) H:\Programme\steam\steamapps\common\Grand Theft Auto V\GTAVLauncher.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{A265447D-94CA-48A0-A3BB-D86A87019B2D}] => (Allow) F:2\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe Keine Datei
FirewallRules: [{330752B1-BDD4-4C19-B0F5-40AD9EA65AEE}] => (Allow) F:2\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe Keine Datei
FirewallRules: [{97BD0BDE-BAA1-48CD-9D5E-FB6A2E52CBD4}] => (Allow) LPort=3935
FirewallRules: [{EB965089-F7C2-4A80-ACF0-E7F012AE59D0}] => (Allow) F:8\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe Keine Datei
FirewallRules: [{9CF6AABB-F40E-4CA6-A085-0823E425508A}] => (Allow) F:8\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe Keine Datei
FirewallRules: [{E3C6EE7E-F194-4CE0-82F7-212A2243BACD}] => (Allow) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.107\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{567E35F1-090F-42A3-A470-201F5F6F0DF3}] => (Allow) F:6\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe Keine Datei
FirewallRules: [{0502DC2F-FF75-4E2C-B9E8-ECCB7E1A5292}] => (Allow) F:6\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe Keine Datei
FirewallRules: [{28FB2464-4645-4986-A53B-2FD2EC1FAA3F}] => (Allow) E:\programme\Origin\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{CEF0C8D6-7C92-4FF5-8C34-68B288717727}] => (Allow) E:\programme\Origin\Apex\EasyAntiCheat_launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{5D5817D7-A53C-4DD4-8CCA-A20DA5710A3C}] => (Allow) E:0\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe Keine Datei
FirewallRules: [{414A1565-5F29-474A-9B57-5F888C843873}] => (Allow) E:0\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix_BE.exe Keine Datei
FirewallRules: [{8CCCE577-D4C5-434F-808C-7ACC4ACAC5E2}] => (Allow) E:0\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe Keine Datei
FirewallRules: [{96C9DE3F-806B-48A6-8FE3-90B255C361A4}] => (Allow) E:0\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe Keine Datei
FirewallRules: [{5796A20F-D508-46BF-851D-3ED2D2755931}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{44F318F8-7FC8-457E-94C0-7A999BF484BE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BD9367D3-C179-44A3-8E04-A87195C760A0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E41238F9-63D8-41E4-96E1-5FAB86E48E3A}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{4CFF6207-A974-4E9B-9CA9-D32F819323B4}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google Inc.)
FirewallRules: [{A28CEC01-DBCC-4A30-BB69-9B92199B99BE}] => (Allow) H:\Programme\steam\steamapps\common\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{71B9BBF7-768C-43E7-8AF7-444134C1B270}] => (Allow) H:\Programme\steam\steamapps\common\Assassin's Creed Unity\ACU.exe (UBISOFT ENTERTAINMENT INC. -> )
FirewallRules: [{ED3BE7DF-5F1B-48CC-820F-759896898479}] => (Allow) H:\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{218DF132-C318-48EA-80C9-4C56F1F5CC6B}] => (Allow) H:\Programme\steam\steamapps\common\Tom Clancy's Rainbow Six Siege\RainbowSix.exe (UBISOFT ENTERTAINMENT INC. -> Ubisoft)
FirewallRules: [{BE9345F6-B596-4BC3-B23E-4C1AF6CC6095}] => (Allow) H:\Programme\steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{852BE3F4-6DCC-4555-BCC9-9CAE1ECCB563}] => (Allow) H:\Programme\steam\steamapps\common\EasyAntiCheat\EasyAntiCheat.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{2EC2814E-357E-4A00-9B50-BBEF97185812}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{F0B3EEF7-242D-4956-BA7F-B7DEFC067EC0}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe (Psyonix, Inc) [Datei ist nicht signiert]
FirewallRules: [{A2F5A248-4330-47D3-83EF-1180A9E51CB2}] => (Allow) E:\programme\steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{455289BB-7221-477F-9CDF-3F9AB5AD388C}] => (Allow) E:\programme\steam\steamapps\common\A Story About My Uncle\Binaries\Win32\ASAMU-Win32-Shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{648BBB0D-9517-4695-888E-335EBC159A75}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{ECFBB194-D1E8-4939-BEF6-58D38E5E2D9F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{CF5BE76E-591F-4BB7-88D7-69EA456E3346}] => (Allow) E:\programme\steam\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [Datei ist nicht signiert]
FirewallRules: [{3503149B-06D2-46DD-9895-3DA15BAAE9A8}] => (Allow) E:\programme\steam\steamapps\common\WitchIt\WitchIt\Binaries\Win64\PropWitchHuntModule-Win64-Shipping.exe (G=Barrel Roll Games) [Datei ist nicht signiert]
FirewallRules: [{61FA5398-6F32-494C-B463-A1CED6619A0F}] => (Allow) C:\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{09325290-A688-4145-9585-6BBDFE43ACC5}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{81FDA816-CEC7-4362-AF70-2BF3456E6BC4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{309E758F-3344-426F-BDF5-2FD3B8E8F231}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service

==================== Wiederherstellungspunkte =========================

08-04-2019 13:50:31 Removed LogMeIn Hamachi

==================== Fehlerhafte Geräte im Gerätemanager =============


==================== Fehlereinträge in der Ereignisanzeige: =========================

Applikationsfehler:
==================
Error: (04/09/2019 10:20:44 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: PC_D)
Description: httphttp-2147467263

Error: (04/09/2019 09:11:23 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: PC_D)
Description: httphttp-2147467263

Error: (04/09/2019 07:53:57 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: PC_D)
Description: httphttp-2147467263

Error: (04/09/2019 07:52:09 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: PC_D)
Description: httphttp-2147467263

Error: (04/09/2019 07:52:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: rundll32.exe_shell32.dll, Version: 10.0.17134.1, Zeitstempel: 0xe814db7d
Name des fehlerhaften Moduls: mmsys.cpl, Version: 10.0.17134.81, Zeitstempel: 0x9999633e
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003bf3f
ID des fehlerhaften Prozesses: 0x1444
Startzeit der fehlerhaften Anwendung: 0x01d4eefceb58736c
Pfad der fehlerhaften Anwendung: C:\WINDOWS\System32\rundll32.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\mmsys.cpl
Berichtskennung: 31dc0c53-aed1-4ed3-bc26-19e8a51768e1
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:

Error: (04/09/2019 07:51:23 PM) (Source: Distributed Link Tracking Client) (EventID: 12500) (User: )
Description: Event-ID 12500

Error: (04/09/2019 06:36:34 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Programm RevoUnin.exe, Version 2.0.6.0 kann nicht mehr unter Windows ausgeführt werden und wurde beendet. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.

Prozess-ID: c9c

Startzeit: 01d4eef240895f81

Beendigungszeit: 4294967295

Anwendungspfad: C:\Program Files\VS Revo Group\Revo Uninstaller\RevoUnin.exe

Berichts-ID: 6999312d-ef51-41f8-ba7b-6572a4210f10

Vollständiger Name des fehlerhaften Pakets:

Auf das fehlerhafte Paket bezogene Anwendungs-ID:

Error: (04/09/2019 06:23:00 PM) (Source: Microsoft-Windows-SpellChecker) (EventID: 33) (User: PC_D)
Description: httphttp-2147467263


Systemfehler:
=============
Error: (04/09/2019 10:30:57 PM) (Source: DCOM) (EventID: 10016) (User: PC_D)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "PC_D\ds" (SID: S-1-5-21-2346752298-182118505-4290318530-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/09/2019 10:28:46 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (04/09/2019 10:21:19 PM) (Source: DCOM) (EventID: 10016) (User: PC_D)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "PC_D\ds" (SID: S-1-5-21-2346752298-182118505-4290318530-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 und der APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 im Anwendungscontainer "Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy" (SID: S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/09/2019 10:20:44 PM) (Source: Microsoft-Windows-DNS-Client) (EventID: 1012) (User: NT-AUTORITÄT)
Description: Fehler beim Lesen der Datei für lokale Hosts.

Error: (04/09/2019 10:20:35 PM) (Source: DCOM) (EventID: 10016) (User: PC_D)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "PC_D\ds" (SID: S-1-5-21-2346752298-182118505-4290318530-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 und der APPID
{8BC3F05E-D86B-11D0-A075-00C04FB68820}
 im Anwendungscontainer "Microsoft.Windows.ContentDeliveryManager_10.0.17134.1_neutral_neutral_cw5n1h2txyewy" (SID: S-1-15-2-350187224-1905355452-1037786396-3028148496-2624191407-3283318427-1255436723) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/09/2019 10:20:23 PM) (Source: DCOM) (EventID: 10016) (User: PC_D)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "PC_D\ds" (SID: S-1-5-21-2346752298-182118505-4290318530-1000) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 und der APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/09/2019 10:20:00 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.

Error: (04/09/2019 10:20:00 PM) (Source: DCOM) (EventID: 10016) (User: NT-AUTORITÄT)
Description: Durch die Berechtigungseinstellungen für "Anwendungsspezifisch" wird dem Benutzer "NT-AUTORITÄT\Lokaler Dienst" (SID: S-1-5-19) unter der Adresse "LocalHost (unter Verwendung von LRPC)" keine Berechtigung vom Typ "Lokal Aktivierung" für die COM-Serveranwendung mit der CLSID
{6B3B8D23-FA8D-40B9-8DBD-B950333E2C52}
 und der APPID
{4839DDB7-58C2-48F5-8283-E1D1807D0D7D}
 im Anwendungscontainer "Nicht verfügbar" (SID: Nicht verfügbar) gewährt. Die Sicherheitsberechtigung kann mit dem Verwaltungstool für Komponentendienste geändert werden.


CodeIntegrity:
===================================

Date: 2019-04-09 22:01:47.503
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Users\ds\AppData\Local\Programs\Opera\58.0.3135.127_0\opera.exe) attempted to load \Device\HarddiskVolume5\Program Files\Malwarebytes\Anti-Malware\mbae.dll that did not meet the Microsoft signing level requirements.

Date: 2019-04-09 19:51:38.626
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-09 18:45:41.858
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\G DATA\TotalProtection\AVK\AVKWCtlx64.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-09 18:45:41.856
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\G DATA\TotalProtection\AVK\AVKWCtlx64.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-09 18:45:41.651
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\G DATA\TotalProtection\AVK\AVKWCtlx64.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-09 18:45:41.649
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\G DATA\TotalProtection\AVK\AVKWCtlx64.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-09 18:45:41.444
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\G DATA\TotalProtection\AVK\AVKWCtlx64.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2019-04-09 18:45:41.442
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Program Files (x86)\G DATA\TotalProtection\AVK\AVKWCtlx64.exe) attempted to load \Device\HarddiskVolume5\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Speicherinformationen ===========================

Prozessor: Intel(R) Core(TM) i5-4590 CPU @ 3.30GHz
Prozentuale Nutzung des RAM: 38%
Installierter physikalischer RAM: 16239.01 MB
Verfügbarer physikalischer RAM: 9986.15 MB
Summe virtueller Speicher: 32623.01 MB
Verfügbarer virtueller Speicher: 24349.48 MB

==================== Laufwerke ================================

Drive c: (WIN10SSD) (Fixed) (Total:445.42 GB) (Free:94.4 GB) NTFS
Drive e: (Daten) (Fixed) (Total:439.45 GB) (Free:147.1 GB) NTFS
Drive f: (BackUp) (Fixed) (Total:491.52 GB) (Free:296.08 GB) NTFS
Drive h: (ds) (Fixed) (Total:1862.54 GB) (Free:1126.14 GB) NTFS

\\?\Volume{af062d2a-062e-11e5-8ef9-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:10.08 GB) (Free:9.91 GB) NTFS
\\?\Volume{81474b6d-0000-0000-0000-a0c4e8000000}\ () (Fixed) (Total:0.44 GB) (Free:0.1 GB) NTFS
\\?\Volume{568a8411-0000-0000-0000-38e371000000}\ () (Fixed) (Total:10.08 GB) (Free:9.52 GB) NTFS
\\?\Volume{cfb1c013-6e7c-4f40-b9e9-37fcdabfa2c9}\ (EFI) (Fixed) (Total:0.19 GB) (Free:0.19 GB) FAT32

==================== MBR & Partitionstabelle ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 81474B6D)
Partition 1: (Not Active) - (Size=491.5 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=439.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 568A8411)
Partition 1: (Active) - (Size=10.1 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=445.4 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=10.1 GB) - (Type=27)

========================================================
Disk: 2 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==================== Ende von Addition.txt ============================


cosinus 09.04.2019 21:53

Also dein Rechner ist planlos zugekleistert. GDATA, Spybot und mehr, das einzige Tool was vertretbar ist, ist Malwarebytes und natürlich das builtin AV von Microsoft der Windows Defender.

Dann seh ich da Software die auf gewerbliche Nutzung schließen. Privat braucht niemand die dicksten Versionen von Adobe oder Microsoft Office.

dnllul 09.04.2019 22:24

MS Office und Adobe benutze ich für die Schule und Freizeit, also NICHT gewerblich.
Spybot und malwarebytes hab ich mir nur runtergeladen, weil ich selbst schaun wollte, ob ich da was machen kann. Sonst hatte ich immer nur GData.

Alsoo, kannst/möchtest Du mir jetzt helfen? :confused:

cosinus 09.04.2019 22:38

Du hast mich nicht verstanden. Du hast du dicksten Versionen da jeweils drauf. Das sind Versionen, die in kleinen Betrieben nichtmal zum Einsatz kommen weil oftmals zu teuer. Und wir haben hier die Regel, dass wir hier die Herkunft von Software klären müssen.

Dass du da eine PRO-Version von Windows hast, die ebenfalls für Heimgebrauch unüblich ist, ist erstmal geschenkt.

dnllul 10.04.2019 11:08

Ja, ich verstehe das echt nicht so ganz....
Die Software ist legal erworben und ja ich besitze auch die "dickste" version aber ich benutze sie trotzdem privat. Wo ist das Problem?

cosinus 10.04.2019 11:12

Weil es einfach unglaubwürdig ist, dass man privat die dickste Version braucht und kauft. Wo hast du die her?

dnllul 10.04.2019 11:13

von Adobe bzw Microsoft? ....

cosinus 10.04.2019 11:21

Also langsam glaub ich du willst mich verarschen. Worüber reden wir denn die ganze Zeit? Und wenn dann eine konkrete Frage kommt, tust du ganz unwissend als wenn unklar sei worum es geht :stirn:


Alle Zeitangaben in WEZ +1. Es ist jetzt 09:22 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132