DrPinkelstei | 09.05.2020 13:34 | FRST:
FRST Logfile: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 09-05-2020
durchgeführt von KKaSo (Administrator) auf DESKTOP-9D3QBDC (Acer Aspire GX-781) (09-05-2020 14:32:52)
Gestartet von C:\Users\KKaSo\Desktop
Geladene Profile: defaultuser0 & KKaSo (Verfügbare Profile: defaultuser0 & KKaSo)
Platform: Windows 10 Home Version 1903 18362.778 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Opera
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
(Acronis International GmbH -> ) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe
(Acronis International GmbH -> Acronis International GmbH) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0348909.inf_amd64_f9f8b711ad4efca4\B349181\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0348909.inf_amd64_f9f8b711ad4efca4\B349181\atiesrxx.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Gameforge 4D GmbH -> ) C:\Program Files (x86)\GameforgeClient\gfclient.exe
(Gameforge 4D GmbH -> ) C:\Program Files (x86)\GameforgeClient\gfservice.exe
(Gameforge 4D GmbH -> ) C:\Program Files (x86)\GameforgeClient\SparkWebHelper.exe <2>
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation-Wireless Connectivity Solutions -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Logitech Inc -> Logitech Inc.) C:\Program Files\Logitech Gaming Software\Drivers\APOService\LogiRegistryService.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\AppVShNotify.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12624.20368.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.220.4152.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.220.4152.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MicrosoftEdgeSH.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\mspaint.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\schtasks.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
(Microsoft) [Datei ist nicht signiert] C:\Program Files (x86)\Brother\iPrint&Scan\USBAppControl.exe
(Microsoft) [Datei ist nicht signiert] C:\Program Files (x86)\Brother\iPrint&Scan\WorkflowAppControl.exe
(Opera Software AS -> Opera Software) C:\Program Files\Opera\68.0.3618.63\opera.exe <22>
(Opera Software AS -> Opera Software) C:\Program Files\Opera\68.0.3618.63\opera_crashreporter.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(SiSoftware SPC -> SiSoftware) [Datei ist nicht signiert] C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2020\RpcAgentSrv.exe
(Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\NortonSecurity.exe <2>
(Symantec Corporation -> Symantec Corporation) C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\nsWscSvc.exe
(TeamViewer GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Webzen Inc. -> ) C:\Program Files (x86)\Metin2\m2cefbrowser.exe
(WEBZEN Inc. -> ) C:\Program Files (x86)\Metin2\metin2client.exe
(Wondershare software CO., LIMITED -> Wondershare) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320568 2016-09-20] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [108216 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
HKLM\...\Run: [Launch LCore] => C:\Program Files\Logitech Gaming Software\LCore.exe [18723976 2018-08-08] (Logitech Inc -> Logitech Inc.)
HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [585336 2019-02-01] (Acronis International GmbH -> )
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [16709128 2016-10-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Opera Browser Assistant] => C:\Program Files\Opera\assistant\browser_assistant.exe [3004440 2020-04-29] (Opera Software AS -> Opera Software)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2137744 2016-10-08] (Wondershare software CO., LIMITED -> Wondershare)
HKU\S-1-5-21-841053766-362285273-718638101-1000\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [518656 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-21-841053766-362285273-718638101-1001\...\Run: [Discord] => C:\Users\KKaSo\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-841053766-362285273-718638101-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3148576 2019-06-18] (Valve -> Valve Corporation)
HKU\S-1-5-21-841053766-362285273-718638101-1001\...\Run: [QMxNetworkSync] => C:\Program Files\Common Files\MAGIX Services\QMxNetworkSync\QMxNetworkSync.exe [851704 2018-11-13] (MAGIX Software GmbH -> MAGIX)
HKU\S-1-5-21-841053766-362285273-718638101-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [22488952 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\81.0.4044.138\Installer\chrmstp.exe [2020-05-08] (Google LLC -> Google LLC)
GroupPolicy: Beschränkung ? <==== ACHTUNG
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0BAA15FC-2D92-4F64-B90C-CEF92FFEEBCA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {111E17C9-5A2F-45AA-8E2F-D46721E0B12B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124760 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {12EF9DF3-89EB-4E05-ABF3-A70CB34BC923} - System32\Tasks\Oem\AcerJumpstartTask => C:\Program Files (x86)\Acer\Acer Jumpstart\hermes.exe [64320 2019-07-11] (Acer Incorporated -> Acer)
Task: {12F5F713-3828-4311-87D7-56F190EB3156} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [61112 2019-11-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {1693B359-9CB0-4793-A00F-F3178D8A2C3D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16494464 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {17172F1E-BE45-4A71-B255-5F88E186CE31} - System32\Tasks\FubToolByPLD => C:\OEM\Preload\FubTool\FubTool.exe [30976 2015-05-14] (Acer Incorporated -> )
Task: {1A2A3913-27C4-4E56-A798-8C10E2881000} - System32\Tasks\Norton Security\Norton Security Error Analyzer => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\SymErr.exe [116392 2020-01-21] (Symantec Corporation -> Symantec Corporation)
Task: {1B1F7CEF-21D2-4D8F-9BB5-6956FA8178B1} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [124760 2020-05-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {1C019796-7385-468E-8D96-E5FF707C6366} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772528 2020-04-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {2803B117-EBCF-4263-930B-53EB6E96D72E} - System32\Tasks\MAGIX PC Check & Tuning 2019 => C:\Program Files (x86)\MAGIX\MAGIX PC Check & Tuning 2019\PCCT.exe [2467912 2018-06-01] (MAGIX Software GmbH -> MAGIX Software GmbH)
Task: {38BE3E87-E2C6-4C03-B002-DFC47EA83637} - System32\Tasks\ModifyLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [468992 2019-11-27] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
Task: {3B99BDC3-F468-4493-A92C-CD553C47BAB0} - System32\Tasks\MAGIX PC Check & Tuning 2019 (Autopilot.exe) => C:\Program Files (x86)\MAGIX\MAGIX PC Check & Tuning 2019\Autopilot.exe [1743944 2018-06-01] (MAGIX Software GmbH -> MAGIX Software GmbH)
Task: {3EB42681-8D82-4C40-9BBE-F217099703F4} - System32\Tasks\Opera scheduled assistant Autoupdate 1581166179 => C:\Program Files\Opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)
Task: {46E7BF54-66A7-4365-AFD9-A221F9448643} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {47AA7D0E-F564-4C14-B4E4-8BDE4FC3BC0E} - System32\Tasks\Quick Access => C:\Program Files\Acer\Acer Quick Access\QALauncher.exe [421792 2016-06-17] (Acer Incorporated -> Acer Incorporated)
Task: {510F3A3B-F04F-4EE7-8CC7-8FA5737EE938} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-05-01] (Google Inc -> Google Inc.)
Task: {58CBB147-1652-43F9-866B-F5AB0674D9F1} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [152216 2018-05-01] (Google Inc -> Google Inc.)
Task: {7555B7DA-9042-4753-B22F-A6BFB5B0EE14} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {811DFFFC-29F8-489F-960F-42D9070CFF90} - System32\Tasks\Remediation\AntimalwareMigrationTask => C:\Program Files\Common Files\AV\Norton Security\Upgrade.exe [1926304 2020-01-21] (Symantec Corporation -> Symantec Corporation)
Task: {86507830-67BE-4D76-898C-00AFBFB8331C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-03-11] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8673631B-02B6-458B-9ADB-C78D04A23D86} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [216296 2014-03-12] (Acer Incorporated -> TODO: <Company name>)
Task: {93C14D49-D983-4C94-BE95-45C5547D7DA7} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {960DD0A6-04A3-435B-8DBC-467B8A55852D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9AA9083F-B34F-4766-A9D3-955037420892} - System32\Tasks\Norton Security\Norton Security Autofix => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\SymErr.exe [116392 2020-01-21] (Symantec Corporation -> Symantec Corporation)
Task: {9CFB4404-56AA-418B-B772-DEA121B3E7F7} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\BIN64\InstallManagerApp.exe [468992 2019-11-27] (Advanced Micro Devices, Inc.) [Datei ist nicht signiert]
Task: {9EBE093D-8375-40E1-96BC-E3CDA603E2FD} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920752 2016-09-19] (Acer Incorporated -> )
Task: {ABFC82EC-46D2-4DAC-8CD0-70EC34B566F1} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [3325032 2020-04-15] (Avast Software s.r.o. -> AVAST Software)
Task: {ACC721CA-7C67-4E1E-8EE4-6A3F632F0A02} - System32\Tasks\App Explorer => C:\Users\KKaSo\AppData\Local\Host App Service\Engine\HostAppServiceUpdater.exe [7241624 2018-12-12] (SweetLabs Inc. -> SweetLabs, Inc) <==== ACHTUNG
Task: {B1AA0DC8-097B-4D48-A697-65B97672B711} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [68280 2019-11-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
Task: {B3C4678E-7E01-445A-B633-FF307C3FCFD3} - System32\Tasks\BacKGroundAgent => C:\Program Files (x86)\Acer\AOP Framework\BackgroundAgent.exe [65752 2017-03-20] (Acer Incorporated -> Acer Incorporated)
Task: {C5A0E3CD-A32A-4E64-AA2A-3196BB1885BD} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4645168 2016-09-19] (Acer Incorporated -> )
Task: {CB00CED8-5731-461B-9820-293A6DD72BEE} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23772528 2020-04-30] (Microsoft Corporation -> Microsoft Corporation)
Task: {D093C14C-9CA9-4BD7-A370-3C6B8E51C20F} - System32\Tasks\Norton Security\Norton Security Error Processor => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\SymErr.exe [116392 2020-01-21] (Symantec Corporation -> Symantec Corporation)
Task: {D39CEC84-D511-4C46-8892-7FB56AD2E55D} - System32\Tasks\PCMeter\Startup => C:\Users\KKaSo\Downloads\PCMeter\PCMeterV4\PCMeterV0.4.exe
Task: {D5B9900C-9A54-450D-9D93-8DF066573622} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2016-09-19] (Acer Incorporated -> )
Task: {DD663E53-405A-4581-B941-998916120DB0} - System32\Tasks\Opera GX scheduled Autoupdate 1584031787 => C:\Users\KKaSo\AppData\Local\Programs\Opera GX\launcher.exe [1480216 2020-04-02] (Opera Software AS -> Opera Software)
Task: {DE43D125-7AAC-4FBA-B2E2-0C61B1699248} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [126152 2020-04-20] (Mozilla Corporation -> Mozilla Foundation)
Task: {EAD4ECCE-8458-461E-8E75-186293D62691} - System32\Tasks\Opera scheduled Autoupdate 1524327143 => C:\Program Files\Opera\launcher.exe [1517592 2020-04-29] (Opera Software AS -> Opera Software)
Task: {F6715EBD-7D73-47B0-B92E-1D54E14F9FA0} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [472992 2016-06-17] (Acer Incorporated -> Acer Incorporated)
Task: {F8F09A7F-B395-481B-979B-FA6001DAB253} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2004.6-0\MpCmdRun.exe [485944 2020-05-01] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {FDD7308D-8022-44E3-BCD8-DABD6EE43180} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\iCLS Client\IntelPTTEKRecertification.exe [909112 2016-07-26] (Intel(R) Trusted Connect Service -> Intel(R) Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\MAGIX PC Check & Tuning 2019 (Autopilot.exe).job => C:\Program Files (x86)\MAGIX\MAGIX PC Check & Tuning 2019\Autopilot.exe C:\Program Files (x86)\MAGIX\MAGIX PC Check & Tuning 2019\DESKTOP-9D3QBDC\KKaSo-MAGIX PC Check & Tuning 2019 (Autopilot.exe
Task: C:\WINDOWS\Tasks\MAGIX PC Check & Tuning 2019.job => C:\Program Files (x86)\MAGIX\MAGIX PC Check & Tuning 2019\PCCT.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Addition: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 09-05-2020
durchgeführt von KKaSo (09-05-2020 14:30:53)
Gestartet von C:\Users\KKaSo\Desktop
Windows 10 Home Version 1903 18362.778 (X64) (2019-10-30 17:27:06)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-841053766-362285273-718638101-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-841053766-362285273-718638101-503 - Limited - Disabled)
defaultuser0 (S-1-5-21-841053766-362285273-718638101-1000 - Limited - Disabled) => C:\Users\defaultuser0
Gast (S-1-5-21-841053766-362285273-718638101-501 - Limited - Disabled)
KKaSo (S-1-5-21-841053766-362285273-718638101-1001 - Administrator - Enabled) => C:\Users\KKaSo
WDAGUtilityAccount (S-1-5-21-841053766-362285273-718638101-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Norton Security (Disabled - Out of date) {1122B19A-E671-38EC-8EAC-87048FD4528D}
AV: Norton Security (Disabled - Out of date) {A2708B76-6835-6565-CB96-694212954A75}
AV: Avast Antivirus (Disabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Norton Security (Disabled) {9A4B0A53-225A-643D-E0C9-C077EC460D0E}
FW: Norton Security (Disabled) {291930BF-AC1E-39B4-A5F3-2E31710715F6}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
abFiles (HKLM-x32\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 2.07.2004 - Acer Incorporated)
abPhoto (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 4.00.2001.1 - Acer Incorporated)
Acer Care Center (HKLM\...\{1AF41E84-3408-499A-8C93-8891F0612719}) (Version: 2.00.3025 - Acer Incorporated)
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Acer Jumpstart (HKLM-x32\...\{4B92BFBE-917D-4FA1-97E9-DB9D91286E90}) (Version: 3.0.18135.100 - Acer)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 3.12.2006 - Acer Incorporated)
Acer Quick Access (HKLM\...\{8BBF04F1-C68A-441C-B5EF-446EE9960EAF}) (Version: 2.01.3006 - Acer Incorporated)
Acer UEIP Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 3.02.3001 - Acer Incorporated)
Acronis True Image (HKLM-x32\...\{9BB8598B-C237-446F-AD4E-8F0FA6A93D10}) (Version: 22.6.15470 - Acronis) Hidden
Acronis True Image (HKLM-x32\...\{9BB8598B-C237-446F-AD4E-8F0FA6A93D10}Visible) (Version: 22.6.15470 - Acronis)
Adobe Audition 2020 (HKLM-x32\...\AUDT_13_0_4) (Version: 13.0.4 - Adobe Systems Incorporated)
Adobe Audition 3.0 (HKLM-x32\...\Adobe Audition 3.0) (Version: 3.0 - Adobe Systems Incorporated)
Adobe Flash Player 29 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 29.0.0.140 - Adobe Systems Incorporated)
Adobe Photoshop CS2 (HKLM-x32\...\Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0407-1E257A25E34D}) (Version: 9.0 - Adobe Systems, Inc.)
AMD Software (HKLM\...\AMD Catalyst Install Manager) (Version: 19.12.1 - Advanced Micro Devices, Inc.)
Android Studio (HKLM\...\Android Studio) (Version: 1.0 - Google Inc.)
AOP Framework (HKLM-x32\...\{4A37A114-702F-4055-A4B6-16571D4A5353}) (Version: 3.25.2001.0 - Acer Incorporated)
App Explorer (HKU\S-1-5-21-841053766-362285273-718638101-1000\...\Host App Service) (Version: 0.272.1.295 - SweetLabs) <==== ACHTUNG
App Explorer (HKU\S-1-5-21-841053766-362285273-718638101-1001\...\Host App Service) (Version: 0.273.2.988 - SweetLabs) <==== ACHTUNG
Audacity 2.3.0 (HKLM-x32\...\Audacity_is1) (Version: 2.3.0 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.2.2401 - Avast Software)
balenaEtcher 1.5.76 (HKU\S-1-5-21-841053766-362285273-718638101-1001\...\{d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b}) (Version: 1.5.76 - Balena Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Branding64 (HKLM\...\{EE2AFCE4-0238-4DE0-A140-1647021627C1}) (Version: 1.00.0001 - Advanced Micro Devices, Inc.) Hidden
BrLauncher (HKLM-x32\...\{42D26B47-887C-45FC-BCAE-0BE485C5C0BB}) (Version: 2.0.11.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{190861E7-09C5-42D8-BB4B-0AFB234BCFC1}) (Version: 1.0.3.1 - Brother Industries Ltd.) Hidden
Brother iPrint&Scan (HKLM-x32\...\{0473af6f-6d5b-448f-8410-50c98e43ed00}) (Version: 4.3.1.1 - Brother Industries, Ltd.)
Brother iPrint&Scan (HKLM-x32\...\{F9F653E2-4490-471B-BF2C-A8CFF2C68AED}) (Version: 4.3.1.1 - Brother Industries, Ltd.) Hidden
Brother PCFax Driver (HKLM-x32\...\{56BA05BD-7A67-4EF8-85A7-8C6528AEE2AC}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Printer Driver (HKLM-x32\...\{272543B6-B337-4C8F-B9F1-19E884C2C7AC}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{1162495D-7CE7-4EF9-A0F8-151196F3A660}) (Version: 1.0.17.1 - Brother Industries Ltd.) Hidden
BrSupportTools (HKLM-x32\...\{32F47565-84B1-42CC-B09A-4CDDD9A32F94}) (Version: 1.0.20.0 - Brother Industries Ltd.) Hidden
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version: - Blizzard Entertainment)
Catalyst Control Center Next Localization BR (HKLM\...\{5591A46B-4FD3-21E2-039C-737CC739F52E}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHS (HKLM\...\{1165E935-AA00-7CE4-C458-B6C7290682CC}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CHT (HKLM\...\{272BFE26-87E0-B8DE-54F2-FD44A32DFBD5}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization CS (HKLM\...\{BB45FEF8-167F-72F7-A631-5DB3D93A8872}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DA (HKLM\...\{B78A2258-5630-C1DF-0F27-AD1F1E59AEC6}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization DE (HKLM\...\{8DEF9006-FC17-6332-79C6-49A47B86ABFD}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization EL (HKLM\...\{EA0D8B3B-ADB3-6DBC-DA34-51B70AE29C16}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization ES (HKLM\...\{052F0949-D33A-3128-9DCE-50BEA1B341B7}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FI (HKLM\...\{081C8424-2C7F-573E-ED3B-61E063111DC5}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization FR (HKLM\...\{A3571290-2E3C-F314-866E-52A3B9295DA9}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization HU (HKLM\...\{964640D0-AC6C-9549-892E-DB0E3AAC5CEF}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization IT (HKLM\...\{EA54F30D-6AB0-7870-A0F2-E802632E3AE1}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization JA (HKLM\...\{C1B17BA3-56B2-47B1-E4EE-6602392724AE}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization KO (HKLM\...\{78B5EF49-6FD5-0A1F-C7C3-A5B8214C1DAC}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NL (HKLM\...\{2ED86AAF-9DA0-8F95-21E1-01D6878E312D}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization NO (HKLM\...\{1B77DD3D-8DA4-CE05-36CE-6FBF71995D74}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization PL (HKLM\...\{7461FCE1-D63D-C463-00F4-55864E06079D}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization RU (HKLM\...\{234B355E-EFF0-C923-A496-FA032E54F820}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization SV (HKLM\...\{FDEFB5D3-92AC-4A94-1682-92143E3DA051}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TH (HKLM\...\{D2115CD4-D30A-9605-FAE8-B21EF4CD20EC}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
Catalyst Control Center Next Localization TR (HKLM\...\{DA3AE593-6667-EAD6-4BBF-3936FE1164D7}) (Version: 2016.0927.1916.32860 - Advanced Micro Devices, Inc.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.55 - Piriform)
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.8.6795 - CDBurnerXP)
ControlCenter4 (HKLM-x32\...\{9091B952-8719-49C3-9CC7-6E20EC61081F}) (Version: 4.6.6.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{FD8A9511-BFC9-43B5-BB75-9CEC0EA03CF0}) (Version: 4.6.1.1 - Brother Industries, Ltd.) Hidden
Debut Video-Aufnahme-Programm (HKLM-x32\...\Debut) (Version: 5.23 - NCH Software)
Discord (HKU\S-1-5-21-841053766-362285273-718638101-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Doxillion Dokumentkonverter (HKLM-x32\...\Doxillion) (Version: 3.16 - NCH Software)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3019 - Acer Incorporated)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
EVEREST Home Edition v2.20 (HKLM-x32\...\EVEREST Home Edition_is1) (Version: 2.20 - Lavalys Inc)
Express Burn Disc-Brennprogramm (HKLM-x32\...\ExpressBurn) (Version: 9.03 - NCH Software)
FFmpeg (Windows) for Audacity Version 2.2.2 (HKLM-x32\...\{9C7E31E3-017F-434C-AC40-24431A354A1E}_is1) (Version: 2.2.2 - )
FileZilla Client 3.33.0 (HKLM-x32\...\FileZilla Client) (Version: 3.33.0 - Tim Kosse)
Gameforge Client (HKLM-x32\...\{d3b2a0c1-f0d0-4888-ae0b-1c5e1febdafb}_is1) (Version: 2.0.54.131 - Gameforge)
Git version 2.25.0 (HKLM\...\Git_is1) (Version: 2.25.0 - The Git Development Community)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 81.0.4044.138 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.26) (Version: 9.26 - Artifex Software Inc.)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
Intel Processor Diagnostic Tool 64bit (HKLM-x32\...\{d23ef847-2a5d-49ad-a6b5-7ffc8f255179}) (Version: 4.1.4.36 - )
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.6.0.1030 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 15.2.0.1020 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{8790ED90-756F-45DD-B38F-7436093963C6}) (Version: 19.11.1639.0649 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{bb0592a7-5772-4736-9d55-2402740085db}) (Version: 10.1.1.38 - Intel(R) Corporation) Hidden
Intel® Hardware Accelerated Execution Manager (HKLM\...\{73250D12-B600-4ED6-AFC0-10D9D8EDA745}) (Version: 7.3.2 - Intel Corporation)
Intel® Processor Identification Utility (HKU\S-1-5-21-841053766-362285273-718638101-1001\...\Intel® Programm für die Prozessorerkennung 6.1.0731) (Version: 6.1.0731 - Intel Corporation)
Intel® Programm für die Prozessorerkennung (HKLM-x32\...\{909744AA-EECD-4786-9624-93C146B68D92}) (Version: 6.1.0731 - Intel Corporation) Hidden
Intel® PROSet/Wireless Software (HKLM-x32\...\{bc883058-299e-461f-8e52-4f1dbb355f86}) (Version: 19.0.1 - Intel Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
League of Legends (HKLM-x32\...\League of Legends 1.0) (Version: 1.0 - Riot Games, Inc)
Logitech Gaming Software 9.02 (HKLM\...\Logitech Gaming Software) (Version: 9.02.61 - Logitech Inc.)
MAGIX Connect (HKLM\...\{B0C73D27-EB3E-4D0E-B40D-0141DAF708CC}) (Version: 3.0.0.1 - MAGIX Software GmbH) Hidden
MAGIX Connect (HKLM\...\MX.{B0C73D27-EB3E-4D0E-B40D-0141DAF708CC}) (Version: 3.0.0.1 - MAGIX Software GmbH)
MAGIX Content und Soundpools (HKLM-x32\...\MAGIX_GlobalContent) (Version: 1.0.0.0 - MAGIX Software GmbH)
MAGIX PC Check & Tuning 2019 (HKLM-x32\...\PC Check Tuning 2019_is1) (Version: 2.7.0.56 - MAGIX Software GmbH)
MAGIX Soundpool Music Maker - Feel good (HKLM\...\{83D2491E-E25D-4CEB-9AFD-CEF77BF03974}) (Version: 1.0.0.0 - MAGIX Software GmbH) Hidden
Mein CEWE FOTOBUCH (HKLM-x32\...\Mein CEWE FOTOBUCH) (Version: 7.0.1 - CEWE Stiftung u Co. KGaA)
Metin2 (HKLM-x32\...\Metin2_DE_is1) (Version: - Gameforge 4D GmbH)
Metin2 (HKLM-x32\...\Metin2_PA_is1) (Version: - Gameforge 4D GmbH)
Metin2 de-DE (HKLM-x32\...\{fab180a3-cd65-4b7e-bd0e-2ef77fd0c258.de-DE}) (Version: - Gameforge)
Microsoft Office 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.12730.20250 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-841053766-362285273-718638101-1001\...\OneDriveSetup.exe) (Version: 19.232.1124.0012 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Mozilla Firefox 75.0 (x64 de) (HKLM\...\Mozilla Firefox 75.0 (x64 de)) (Version: 75.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 69.0.2 - Mozilla)
Music Maker (HKLM\...\{A03DDADD-6280-46A7-B101-93EF16E78DE4}) (Version: 27.0.2.28 - MAGIX Software GmbH) Hidden
Music Maker (HKLM-x32\...\MX.{A03DDADD-6280-46A7-B101-93EF16E78DE4}) (Version: 27.0.2.28 - MAGIX Software GmbH)
NetworkRepairTool (HKLM-x32\...\{86E68F57-FAFE-4052-BDD4-3B90C38236AE}) (Version: 1.2.16.0 - Brother Industries, Ltd.) Hidden
Norton Security (HKLM-x32\...\NGC) (Version: 22.20.1.69 - Symantec Corporation)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.5.6 - Notepad++ Team)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.1.2 - OBS Project)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.12730.20250 - Microsoft Corporation) Hidden
OpenOffice 4.1.5 (HKLM-x32\...\{F0C909D7-D643-4628-8C6A-94073139F0CE}) (Version: 4.15.9789 - Apache Software Foundation)
Opera GX Stable 67.0.3575.130 (HKU\S-1-5-21-841053766-362285273-718638101-1001\...\Opera GX 67.0.3575.130) (Version: 67.0.3575.130 - Opera Software)
Opera Stable 68.0.3618.63 (HKLM-x32\...\Opera 68.0.3618.63) (Version: 68.0.3618.63 - Opera Software)
Oracle VM VirtualBox 6.0.14 (HKLM\...\{5F88BE85-569B-46F5-B961-463A445AC5EA}) (Version: 6.0.14 - Oracle Corporation)
osrss (HKLM-x32\...\{1BA1133B-1C7A-41A0-8CBF-9B993E63D296}) (Version: 1.0.0 - Microsoft Corporation) Hidden
paint.net (HKLM\...\{BAFF7E40-25F2-4681-95F1-9D0E8EF0ABA4}) (Version: 4.2.8 - dotPDN LLC)
PC-FAXReceive (HKLM-x32\...\{65EA2C86-30CD-444C-ADAB-8762BE4E2E8C}) (Version: 1.8.003.0 - Brother Insutries Ltd.) Hidden
PCFaxTx (HKLM-x32\...\{03BF5A21-6363-410C-B3BE-0946B0012704}) (Version: 3.7.3.1 - Brother Industries Ltd.) Hidden
Rainmeter (HKLM-x32\...\Rainmeter) (Version: 4.0 beta r2613 - Win10 Widgets)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.14393.31228 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.10.714.2016 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7954 - Realtek Semiconductor Corp.)
RemoteSetup (HKLM-x32\...\{FAB8A30A-B074-48F9-9D73-5E9A757403F8}) (Version: 3.10.2.0 - Brother Industries Ltd.) Hidden
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
SiSoftware Sandra Lite 2020 (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2596}_is1) (Version: 30.27.2020.1 - SiSoftware)
SoftwareUpdateNotification (HKLM-x32\...\{34F12379-C924-41E6-921D-51C71217F58C}) (Version: 1.0.9.0 - Brother Industries, Ltd.) Hidden
StatusMonitor (HKLM-x32\...\{40578A7A-6E36-457F-A4F0-45BC37EB61FD}) (Version: 1.20.1.0 - Brother Insutries Ltd.) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Sweet Home 3D version 5.7 (HKLM\...\Sweet Home 3D_is1) (Version: 5.7 - eTeks)
TeamSpeak 3 Client (HKLM-x32\...\TeamSpeak 3 Client) (Version: 3.1.8 - TeamSpeak Systems GmbH)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.0.8397 - TeamViewer)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
UpdateAssistant (HKLM\...\{F339C545-24DC-4870-AA32-6EB6B0500B95}) (Version: 1.24.0.0 - Microsoft Corporation) Hidden
UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden
VEGAS Pro 15.0 (HKLM\...\{EAFAE361-EC36-11E8-9A08-00155D6302F2}) (Version: 15.0.416 - VEGAS)
Vita Concert Grand LE (HKLM\...\{CB5D721E-C919-4CDF-8356-D6F84490FB3F}) (Version: 2.4.0.96 - MAGIX Software GmbH) Hidden
Vulkan Run Time Libraries 1.0.26.0 (HKLM\...\VulkanRT1.0.26.0) (Version: 1.0.26.0 - LunarG, Inc.)
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
Windows 10-Update-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22402 - Microsoft Corporation)
Windows Setup Remediations (x64) (KB4023057) (HKLM\...\{5534e02f-0f5d-40dd-ba92-bea38d22384d}.sdb) (Version: - )
WinRAR 5.70 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Wondershare Helper Compact 2.5.2 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.2 - Wondershare)
Wondershare PDFelement 6 Pro(Build 6.8.0) (HKLM-x32\...\{B026557A-EF19-4812-8A79-B30F94AA0A78}_is1) (Version: 6.8.0.3523 - Wondershare Software Co.,Ltd.)
Packages:
=========
Autodesk SketchBook -> C:\Program Files\WindowsApps\89006A2E.AutodeskSketchBook_5.1.0.0_x64__tf1gferkr813w [2019-11-06] (Autodesk Inc.)
Booking.com -> C:\Program Files\WindowsApps\Booking.com_1.0.1606.2210_x64__96rgg7pjt343r [2017-03-13] (CN=Acer Incorporated)
Bubble Witch 3 Saga -> C:\Program Files\WindowsApps\king.com.BubbleWitch3Saga_6.8.5.0_x86__kgqvnymyfvs32 [2020-04-09] (king.com)
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.167.200.0_x86__kgqvnymyfvs32 [2020-05-06] (king.com)
eBay -> C:\Program Files\WindowsApps\eBay_1.0.1606.2210_x64__96rgg7pjt343r [2017-03-13] (CN=Acer Incorporated)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2019-10-30] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-19] (Microsoft Corporation) [MS Ad]
Microsoft News – Nachrichten -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.5012.0_x64__8wekyb3d8bbwe [2020-05-02] (Microsoft Studios) [MS Ad]
MSN Wetter -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Music Maker Jam -> C:\Program Files\WindowsApps\MAGIX.MusicMakerJam_3.1.1.0_x64__a2t3txkz9j1jw [2020-01-16] (MAGIX)
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.96.725.0_x64__mcm4njqhnhss8 [2020-04-10] (Netflix, Inc.)
One Calendar -> C:\Program Files\WindowsApps\64885BlueEdge.OneCalendar_2020.229.1.0_x64__8kea50m9krsh2 [2020-03-09] (Code Spark)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.132.618.0_x86__zpdnekdrzrea0 [2020-05-09] (Spotify AB) [Startup Task]
WildTangent Games -> C:\Program Files\WindowsApps\WildTangentGames.63435CFB65F55_2.0.82.0_x64__qt5r5pa5dyg8m [2019-12-24] (WildTangent Games)
XING -> C:\Program Files\WindowsApps\XINGAG.XING_4.0.4.0_x86__xpfg3f7e9an52 [2020-04-06] (New Work SE)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-841053766-362285273-718638101-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\KKaSo\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter.gadget\CoreTempReader.dll (AddGadgets IT -> )
CustomCLSID: HKU\S-1-5-21-841053766-362285273-718638101-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\KKaSo\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-841053766-362285273-718638101-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\KKaSo\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ AcronisDrive] -> {5D74FD4B-4EFB-4586-8022-8637BBE40970} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-02-01] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-02-01] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-02-01] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2019-02-01] (Acronis International GmbH -> )
ShellIconOverlayIdentifiers: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\buShell.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\buShell.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\buShell.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers: [ ACloudSynced] -> {5CCE71FA-9F61-4F24-9CD1-98D819B40D68} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudSyncing] -> {C1E1456F-C2D8-4C96-870D-35F1E13941EE} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [ ACloudToBeSynced] -> {307523FA-DDC0-4068-983F-2A6B34627744} => C:\Program Files (x86)\Acer\shellext\x64\shellext_win.dll [2017-10-02] (Acer Incorporated -> Acer Incorporated)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-15] (Avast Software s.r.o. -> AVAST Software)
ShellIconOverlayIdentifiers-x32: [ OverlayExcluded] -> {4433A54A-1AC8-432F-90FC-85F045CF383C} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\buShell.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayPending] -> {F17C0B1E-EF8E-4AD4-8E1B-7D7E8CB23225} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\buShell.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ShellIconOverlayIdentifiers-x32: [ OverlayProtected] -> {476D0EA3-80F9-48B5-B70B-05E677C9C148} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\buShell.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2018-03-19] (Notepad++ -> )
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\buShell.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\NavShExt.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\NavShExt.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2019-11-26] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2020-04-15] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [BUContextMenu] -> {F7CAA2A1-67A2-44BB-B20F-202FD8EB1DAB} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\buShell.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [Symantec.Norton.Antivirus.IEContextMenu] -> {FAD61B3D-699D-49B2-BE16-7F82CB4C59CA} => C:\Program Files (x86)\Norton Security\Engine\22.20.1.69\NavShExt.dll [2020-01-21] (Symantec Corporation -> Symantec Corporation)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [vidc.i420] => lvcod64.dll
HKLM\...\Drivers32-x32: [vidc.i420] => lvcodec2.dll
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2020-04-30 16:28 - 2016-07-21 10:54 - 000137728 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSCreateVC.dll
2020-04-30 16:28 - 2016-10-08 16:48 - 001506304 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\DAQExp.dll
2019-05-04 15:16 - 2019-07-16 07:45 - 048936448 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\libcef.dll
2019-05-04 15:16 - 2019-07-16 07:53 - 000075264 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\libegl.dll
2019-05-04 15:16 - 2019-07-16 07:45 - 001665024 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\libglesv2.dll
2019-05-04 15:16 - 2019-07-16 07:45 - 000083456 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\miles\mssa3d.m3d
2019-05-04 15:16 - 2019-07-16 07:45 - 000070656 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\miles\mssds3d.m3d
2019-05-04 15:16 - 2019-07-16 07:45 - 000093696 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\miles\mssdsp.flt
2019-05-04 15:16 - 2019-07-16 07:45 - 000080896 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\miles\mssdx7.m3d
2019-05-04 15:16 - 2019-07-16 07:45 - 000103424 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\miles\msseax.m3d
2019-05-04 15:16 - 2019-07-16 07:45 - 000125952 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\miles\mssmp3.asi
2019-05-04 15:16 - 2019-07-16 07:45 - 000354816 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\miles\mssrsx.m3d
2019-05-04 15:16 - 2019-07-16 07:45 - 000067072 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\miles\msssoft.m3d
2019-05-04 15:16 - 2019-07-16 07:45 - 000197120 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\miles\mssvoice.asi
2019-05-04 15:16 - 2019-07-16 07:53 - 000349696 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\mss32.dll
2019-05-04 15:25 - 2019-07-16 07:45 - 001806336 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\SpeedTreeRT.dll
2019-05-17 21:56 - 2005-04-22 13:36 - 000143360 _____ () [Datei ist nicht signiert] C:\WINDOWS\system32\BrSNMP64.dll
2019-05-04 15:16 - 2019-07-16 07:45 - 000269312 _____ (Abysmal Software) [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\DevIL.dll
2019-05-17 21:56 - 2016-11-01 11:27 - 000090112 _____ (Brother Industries, Ltd.) [Datei ist nicht signiert] C:\WINDOWS\system32\BrNetSti.dll
2019-05-04 15:16 - 2019-07-16 07:53 - 000401462 _____ (Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\MSVCP60.dll
2019-05-04 15:25 - 2019-07-16 07:53 - 002436608 _____ (Python Software Foundation) [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\python27.dll
2019-05-04 15:16 - 2020-02-03 19:55 - 000663040 _____ (RAD Game Tools, Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\Metin2\granny2.dll
2020-04-30 16:28 - 2017-10-19 10:17 - 000271360 _____ (Wondershare Software) [Datei ist nicht signiert] C:\WINDOWS\System32\WSPDFelementMonitor.dll
2020-04-30 16:28 - 2016-10-08 16:49 - 000708608 _____ (Wondershare) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\CBSProducstInfo.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Public\AppData:CSM [474]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2016-07-16 13:47 - 2019-01-04 13:20 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile\;C:\Program Files (x86)\Common Files\Acronis\VirtualFile64\;C:\Program Files (x86)\Common Files\Acronis\FileProtector\;C:\Program Files (x86)\Common Files\Acronis\FileProtector64\;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;C:\Program Files (x86)\Common Files\Adobe\AGL;C:\Program Files\Git\cmd
HKU\S-1-5-21-841053766-362285273-718638101-1000\Control Panel\Desktop\\Wallpaper -> C:\Windows\Web\Wallpaper\Windows\img0.jpg
HKU\S-1-5-21-841053766-362285273-718638101-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\KKaSo\AppData\Local\Packages\Microsoft.Windows.Photos_8wekyb3d8bbwe\LocalState\PhotosAppBackground\hintergrund.jpg
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)
ist deaktiviert.
Network Binding:
=============
WLAN: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "SecurityHealth"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run: => "IAStorIcon"
HKLM\...\StartupApproved\Run: => "Launch LCore"
HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"
HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"
HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"
HKLM\...\StartupApproved\Run32: => "M17A"
HKLM\...\StartupApproved\Run32: => "ControlCenter4"
HKLM\...\StartupApproved\Run32: => "BrStsMon00"
HKLM\...\StartupApproved\Run32: => "BrotherSoftwareUpdateNotification"
HKU\S-1-5-21-841053766-362285273-718638101-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-841053766-362285273-718638101-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-841053766-362285273-718638101-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-841053766-362285273-718638101-1001\...\StartupApproved\Run: => "QMxNetworkSync"
HKU\S-1-5-21-841053766-362285273-718638101-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{88EA8042-D2C8-4CB5-B16C-DABD44A5DCC5}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{0E2E227B-CDBC-4156-B670-68DB02ED1068}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B1CE5C41-5D3B-4BE3-A46A-2FAE9BFE0C0C}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe (Brother Industries, Ltd.) [Datei ist nicht signiert]
FirewallRules: [{435536C1-FACC-47D1-BD5F-22EA04C77F04}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe (Brother Industries, Ltd.) [Datei ist nicht signiert]
FirewallRules: [{79EAB191-F63A-43E7-B076-036B50A66868}] => (Allow) LPort=54955
FirewallRules: [{7A5E79BF-1386-45CB-90B8-92D6103564B4}] => (Allow) LPort=54950
FirewallRules: [{8C8C99E4-DA76-4715-B906-F8A1C6817A35}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\ActiveProtection\anti_ransomware_service.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{006EE698-1A1A-4544-9D9A-7807657E65A3}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\LicenseActivator.exe (Acronis International GmbH -> )
FirewallRules: [{28E62D8A-F0AC-41E9-A7A0-AB64EB953C77}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\ga_service.exe (Acronis International GmbH -> )
FirewallRules: [{91C988AC-E117-468F-9A35-33E40784F72A}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\mobile_backup_status_server.exe (Acronis International GmbH -> )
FirewallRules: [{F581B51F-6979-4909-B597-EB14856DBB6D}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\MobileBackupServer\mobile_backup_server.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{A3D7A217-3028-444B-93E7-4E557EC0CEBA}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\acronis_drive.exe (Acronis International GmbH -> )
FirewallRules: [{5CB330AA-27F4-4CB0-8C0D-3736512552F8}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\SystemReport.exe (Acronis International GmbH -> )
FirewallRules: [{73AB4E3D-A530-4011-9CA1-065B024976D1}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\MediaBuilder.exe (Acronis International GmbH -> )
FirewallRules: [{A2594CD0-BBE5-4544-8347-136429262591}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\TrueImageHome\TrueImageHomeService.exe (Acronis International GmbH -> )
FirewallRules: [{B6A00CC7-4916-4DDF-9F5F-1B827C99CCEA}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageTools.exe (Acronis International GmbH -> )
FirewallRules: [{6AFEA669-E396-488F-BBFD-91184B1643A0}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe (Acronis International GmbH -> )
FirewallRules: [{42AC73E6-9C75-4EA5-9B48-450223F9F111}] => (Allow) C:\Program Files (x86)\Acronis\TrueImageHome\TrueImage.exe (Acronis International GmbH -> )
FirewallRules: [{6821CCF6-CA99-471B-963A-DFA50322309B}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\Infrastructure\mms_mini.exe (Acronis International GmbH -> Acronis International GmbH)
FirewallRules: [{2495D374-0A57-4E70-B9DE-290C4731151A}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> )
FirewallRules: [{98FD5162-04FB-45A2-A0C1-048227CFFA4A}] => (Allow) C:\Program Files (x86)\MAGIX\Music Maker\27\MusicMaker.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{50D2D912-B7C9-4490-8D13-5D755659137A}] => (Allow) C:\Program Files\Common Files\MAGIX Services\QMxNetworkSync\QMxNetworkSync.exe (MAGIX Software GmbH -> MAGIX)
FirewallRules: [UDP Query User{4C424CBC-20F5-4B8A-8F81-E4F015C704A9}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{B8CAF9E6-7CE3-46EB-8191-AC42FA0B6008}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.168\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{9EB8268A-8689-4F72-B938-13A949B0F9C8}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{7A08B5B7-D291-4CEC-8EEA-8FD5056D79D7}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.166\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{8F3E2996-A8E8-4EFB-ACF2-C8AFE054CFBD}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{091761A1-8522-43EE-9247-7C2026865841}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.164\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{7B3974F0-900B-4E08-8480-AEB5D04F7620}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [TCP Query User{598840E3-FE66-4E33-962B-C4C6895D464C}C:\program files\logitech gaming software\lcore.exe] => (Allow) C:\program files\logitech gaming software\lcore.exe (Logitech Inc -> Logitech Inc.)
FirewallRules: [UDP Query User{1227BA55-0543-4427-94B3-4DD3049BE0AA}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{97539F4C-D2A3-443C-845D-B0EA6CF01C31}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.163\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{1454E727-53EC-428F-9C78-6D40EE830FB4}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{0825EAB9-1828-488E-A39A-96EDE595A039}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.160\deploy\leagueclient.exe => Keine Datei
FirewallRules: [{F29699F2-BE3E-4F4D-8B53-5BBCD11139A9}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{751D4079-5366-4101-8327-CB73606C66FD}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{6C3C311E-BDEE-4884-8B44-E1B7B564D83E}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{38E42B91-F245-4911-82E8-A7F5C048B61C}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.159\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{29ADD970-EC1D-47B8-B741-B68229B8DEDA}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{791255EC-337A-4EC2-8301-D3BD6B56D7CA}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.158\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{CA46ABA0-0E82-4077-98F6-FD651670EB24}C:\users\kkaso\appdata\local\temp\scoped_dir15660_8440\anydesk.exe] => (Allow) C:\users\kkaso\appdata\local\temp\scoped_dir15660_8440\anydesk.exe => Keine Datei
FirewallRules: [TCP Query User{0B16CDFB-6B7F-47EA-AF21-76148E26E7C0}C:\users\kkaso\appdata\local\temp\scoped_dir15660_8440\anydesk.exe] => (Allow) C:\users\kkaso\appdata\local\temp\scoped_dir15660_8440\anydesk.exe => Keine Datei
FirewallRules: [UDP Query User{A3529D96-BD01-402D-BC43-05B33FF1FD21}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{75AA240F-9951-488F-BBF6-BB7009A9A1B6}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.157\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{FA04502D-BF6E-4CF6-AFF6-D4C17EA213E1}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{9AFB9BAD-2631-4393-898E-1B39563754E8}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.156\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{FA9BC5EF-9AC1-4EAA-BD09-38D65CB3B39F}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{37E6BB58-8D11-4601-B730-F455BC10D05E}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.155\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{30C66F72-E85F-48C4-B63A-AAD464C8A778}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{D3521CB0-23DA-43B9-BCD7-686B8B0492F8}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.154\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{E1235920-A10F-4011-A6DB-B6DD2032B7CE}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe => Keine Datei
FirewallRules: [TCP Query User{90562295-D12B-4CB4-AF6F-34A0C9BC535E}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.151\deploy\leagueclient.exe => Keine Datei
FirewallRules: [{9163DCCC-D216-4E11-AD6A-65F09A6DA883}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation-Wireless Connectivity Solutions -> )
FirewallRules: [{E6610B27-4F94-4B8B-8FDE-391F986917DF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe => Keine Datei
FirewallRules: [{C8728630-61B3-4775-9F15-65F4FC21733F}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{88E761A2-B1BF-4FB9-B789-34BE6AD4A694}] => (Allow) C:\Program Files (x86)\Acer\AOP Framework\acer\ccd.exe (Acer Incorporated -> Acer Cloud Technology)
FirewallRules: [{6C7E0EA2-A82C-484E-BCE0-BE3CBB11BE64}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{5A97F05C-F488-441D-993D-7A32964D20D1}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\DMCDaemon.exe (Acer Incorporated -> acer)
FirewallRules: [{A4378B8B-3B77-405B-B7FE-7AC38A0B7FB5}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [{116D4AA4-4FCF-4551-8301-2E0B95C20D57}] => (Allow) C:\Program Files (x86)\Acer\abPhoto\WindowsUpnp.exe (Acer Incorporated -> acer)
FirewallRules: [TCP Query User{2AD426E3-9A7B-4B30-80C9-86F1C01479E4}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe => Keine Datei
FirewallRules: [UDP Query User{0610B7FF-D31A-49FC-BCEC-4135DC7D589F}C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe] => (Allow) C:\program files\game\leagueoflegends\rads\projects\league_client\releases\0.0.0.140\deploy\leagueclient.exe => Keine Datei
FirewallRules: [{0561BE02-0074-4DF8-BDDB-A951DE56E621}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{E6BAF630-3BD6-4DF3-8F3D-BD1EF8936139}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{4461734C-D586-4845-8FCA-474BAB2CD99D}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{9F09BF2D-06D8-465D-B12E-8CBC53BD7DEA}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe => Keine Datei
FirewallRules: [{31F49FB7-5667-4F96-8C67-706F5CF61097}] => (Allow) E:\Game\Doom 4\steamapps\common\quakechampions\client\bin\pc\QuakeChampions.exe (id Software) [Datei ist nicht signiert]
FirewallRules: [{5B0FE106-D3CA-40F6-882B-9DD9B6325BAC}] => (Allow) E:\Game\Doom 4\steamapps\common\quakechampions\client\bin\pc\QuakeChampions.exe (id Software) [Datei ist nicht signiert]
FirewallRules: [{4F4AFF6C-B799-44B4-B50F-AD35853CF9FD}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{3A2F4C19-6E1E-41EF-90FC-FE094F100AA1}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{B8A0A138-B514-48B4-976D-7F36D89203D9}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D897672E-0DAE-42D2-B48D-1220B537D2D3}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{D7478FB9-3BFB-494A-8942-2E2F73A290D5}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{14BC13BA-7216-4F77-9603-29ABD430EE86}] => (Allow) C:\Program Files\Opera\67.0.3575.137\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{F0C6A780-1E1A-4762-953F-77608B67A1BC}] => (Allow) C:\Program Files\Opera\68.0.3618.63\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{178B47BC-3054-4AA4-A6C1-5D070AC2878A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{2F72ED59-D47A-4E5A-B016-FBF1286718E2}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.132.618.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{F4F5159C-6C3A-4068-982F-E39F21E4AA1E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.132.618.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9CB1A2C9-5C5A-4619-85B8-03FAD82EF8E7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.132.618.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8322DB6F-4047-4DD1-9FE0-735C217A69B6}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.132.618.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1985680C-8200-4B51-BCFB-6DDA4FC76709}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.132.618.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{D744B78A-2A1B-491D-88E1-96AEF1128236}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.132.618.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{B1C662F7-9F52-4BCF-A960-9AD7DCB1D7BA}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.132.618.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{5C0CC554-8683-41D9-94FC-BA8EE6B96898}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.132.618.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{8C6C46A9-7E34-41FA-80A6-7C22B6DA874A}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2020\RpcAgentSrv.exe (SiSoftware SPC -> SiSoftware) [Datei ist nicht signiert]
FirewallRules: [{6C5659C8-E714-45D5-9771-2A9D6D013780}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2020\WNt600x64\RpcSandraSrv.exe (SiSoftware SPC -> SiSoftware) [Datei ist nicht signiert]
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert (Total:118.13 GB) (Free:39.14 GB) (33%)
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (05/09/2020 02:27:04 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Metin2\metin2launch.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_2e73ee38278978be.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_e6c6b761130d4fb8.manifest.
Error: (05/09/2020 02:13:03 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (19252,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (05/09/2020 02:13:02 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Metin2\metin2launch.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_2e73ee38278978be.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_e6c6b761130d4fb8.manifest.
Error: (05/09/2020 02:13:02 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Metin2\metin2launch.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_2e73ee38278978be.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_e6c6b761130d4fb8.manifest.
Error: (05/09/2020 02:07:12 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Metin2\metin2launch.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_2e73ee38278978be.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_e6c6b761130d4fb8.manifest.
Error: (05/09/2020 02:07:12 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Metin2\metin2launch.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_2e73ee38278978be.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_e6c6b761130d4fb8.manifest.
Error: (05/09/2020 01:55:41 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Fehler beim Generieren des Aktivierungskontexts für "C:\Program Files (x86)\Metin2\metin2launch.exe". Fehler in Manifest- oder Richtliniendatei "" in Zeile .
Eine für die Anwendung erforderliche Komponentenversion steht in Konflikt mit einer anderen, bereits aktiven Komponentenversion.
In Konflikt stehende Komponenten:.
Komponente 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_2e73ee38278978be.manifest.
Komponente 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.778_none_e6c6b761130d4fb8.manifest.
Error: (05/09/2020 04:48:40 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (18828,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Systemfehler:
=============
Error: (05/09/2020 02:17:48 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9D3QBDC)
Description: Der Server "{0134A8B2-3407-4B45-AD25-E9F7C92A80BC}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/09/2020 02:04:38 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9D3QBDC)
Description: Der Server "{0134A8B2-3407-4B45-AD25-E9F7C92A80BC}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/09/2020 01:58:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9D3QBDC)
Description: Der Server "{0134A8B2-3407-4B45-AD25-E9F7C92A80BC}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/09/2020 05:14:39 AM) (Source: DCOM) (EventID: 10005) (User: DESKTOP-9D3QBDC)
Description: Fehler "1053" in DCOM, als der Dienst "BcastDVRUserService_6b296787" mit den Argumenten "Nicht verfügbar" gestartet wurde, um den folgenden Server zu verwenden:
Windows.Media.Capture.Internal.AppCaptureShell
Error: (05/09/2020 05:14:39 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Benutzerdienst für GameDVR und Übertragungen_6b296787" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Error: (05/09/2020 05:14:39 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Das Zeitlimit (30000 ms) wurde beim Verbindungsversuch mit dem Dienst Benutzerdienst für GameDVR und Übertragungen_6b296787 erreicht.
Error: (05/09/2020 04:36:46 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9D3QBDC)
Description: Der Server "{0134A8B2-3407-4B45-AD25-E9F7C92A80BC}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/09/2020 04:17:48 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-9D3QBDC)
Description: Der Server "{0134A8B2-3407-4B45-AD25-E9F7C92A80BC}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Windows Defender:
===================================
Date: 2020-04-30 16:27:21.478
Description:
Windows Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:Win32/Wacatac.C!ml&threatid=2147749372&enterprise=0
Name: Trojan:Win32/Wacatac.C!ml
ID: 2147749372
Schweregrad: Schwerwiegend
Kategorie: Trojaner
Pfad: file:_C:\Users\KKaSo\Downloads\Adobe Audition 2020 Kurulum.exe
Erkennungsursprung: Lokaler Computer
Erkennungstype: FastPath
Erkennungsquelle: System
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: Unknown
Sicherheitsversion: AV: 1.313.2652.0, AS: 1.313.2652.0, NIS: 1.313.2652.0
Modulversion: AM: 1.1.16900.4, NIS: 1.1.16900.4
Date: 2020-04-10 10:27:49.585
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {33B7CB4D-56D7-4ABF-A239-DAC544A019BD}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
CodeIntegrity:
===================================
Date: 2020-05-09 13:55:52.416
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Windows signing level requirements.
Date: 2020-05-09 13:55:52.403
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Norton Security\Engine\22.20.1.69\symamsi.dll that did not meet the Windows signing level requirements.
Date: 2020-05-09 05:14:47.235
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\BASHDefs\20180618.001\BHDrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-05-09 05:14:47.206
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume3\Program Files (x86)\Norton Security\NortonData\22.8.0.50\Definitions\BASHDefs\20180618.001\BHDrvx64.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-05-09 04:36:12.598
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2020-05-09 04:36:12.582
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Norton Security\Engine\22.20.1.69\symamsi.dll that did not meet the Microsoft signing level requirements.
Date: 2020-05-09 04:36:12.500
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\AVAST Software\Avast\aswAMSI.dll that did not meet the Microsoft signing level requirements.
Date: 2020-05-09 04:36:12.484
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files (x86)\Norton Security\Engine\22.20.1.69\symamsi.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. R02-A0 11/17/2016
Hauptplatine: Acer Aspire GX-781
Prozessor: Intel(R) Core(TM) i5-7400 CPU @ 3.00GHz
Prozentuale Nutzung des RAM: 87%
Installierter physikalischer RAM: 8150.51 MB
Verfügbarer physikalischer RAM: 1020.78 MB
Summe virtueller Speicher: 26710.72 MB
Verfügbarer virtueller Speicher: 8375.38 MB
==================== Laufwerke ================================
Drive c: (Win10) (Fixed) (Total:118.13 GB) (Free:39.14 GB) NTFS
Drive e: (Daten) (Fixed) (Total:931.39 GB) (Free:723.45 GB) NTFS
\\?\Volume{c5433f53-0e1b-4820-a4ee-6657be27695b}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.56 GB) NTFS
\\?\Volume{73a3d34e-2aee-4e6f-9073-b64050ddf70a}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 119.2 GB) (Disk ID: 33B61532)
Partition: GPT.
==========================================================
Disk: 1 (Size: 931.5 GB) (Disk ID: E1B31D3A)
Partition: GPT.
==================== Ende von Addition.txt ======================= --- --- --- |