Trojaner-Board

Trojaner-Board (https://www.trojaner-board.de/)
-   Mülltonne (https://www.trojaner-board.de/muelltonne/)
-   -   Musik in Endlosschleife, im Lautstärkemixer "Name nicht verfügbar" (https://www.trojaner-board.de/199660-musik-endlosschleife-lautstaerkemixer-name-verfuegbar.html)

JayAwesome 01.08.2020 02:25
Musik in Endlosschleife, im Lautstärkemixer "Name nicht verfügbar"
 
Hallo zusammen!

Vor Jahren hat mir dieses Forum schon sehr gut geholfen und ich hoffe, dass ich wieder auf diese Hilfe zählen kann.

Mitten im Videospiel hörte ich plötzlich eine merkwürdige Musik, die definitiv nicht zum Spiel gehört. Ich dachte, im Browser hätte ich vielleicht was geöffnet. Im Lautstärkemixer fand ich den Eintrag "Name nicht verfügbar" und ich stellte fest, dass die Musik dort herkommt. Ich startete den PC neu, aber direkt nach Eingabe meines Benutzerpassworts fing die Musik wieder an. Vorher hatte ich sowas noch nie.

Kleine Feststellung am Rande: Vor ein paar Tagen ging mal von alleine mein DVD-Brenner auf. Keine Ahnung ob die Info hilfreich ist, aber das war doch vor 15 Jahren mal ein Symptom bei Trojanern.

Ich habe also meinen Antivirus (NOD32) und Spybot durchlaufen und Probleme beheben lassen. Sah für mich aber nur nach Tracking Cookies aus. Während Spybot gescannt hat, hörte die Musik auf, nachdem sie zuvor über eine Stunde gespielt hat.

Seitdem ist die Musik weg. Allerdings finde ich immer noch den Eintrag im Lautstärkemixer. Mir ist das nicht geheuer und ich hoffe ihr könnt mir helfen, mein System zu retten.

FRST.EXE (Teil 1)

Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 29-07-2020
durchgeführt von Jan Behrens (Administrator) auf ALPHA (MSI MS-7917) (01-08-2020 03:01:01)
Gestartet von D:\Users\Jan Behrens\Downloads
Geladene Profile: Jan Behrens
Platform: Windows 10 Pro Version 1909 18363.959 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

() [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.advancedlauncher.sdPlugin\com.barraider.advancedlauncher.exe
() [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.obstools.sdPlugin\com.barraider.obstools.exe
() [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.spotify.sdPlugin\com.barraider.spotify.exe
() [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.streamcountdowntimer.sdPlugin\com.barraider.streamcountdowntimer.exe
() [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.streamcounter.sdPlugin\com.barraider.streamcounter.exe
() [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.voicemeeter.sdPlugin\com.barraider.voicemeeter.exe
() [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\com.barraider.wintools.sdPlugin\com.barraider.wintools.exe
() [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\com.elgato.cpu.sdPlugin\cpu.exe
() [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\com.streamelements.obslive.sdPlugin\obslive-sdplugin.exe
() [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\tv.twitch.studio.sdPlugin\twitchstudiostreamdeck.exe
() [Datei ist nicht signiert] D:\altera\13.1\qprogrammer\bin64\jtagserver.exe
(AdiIRC.com) [Datei ist nicht signiert] C:\Program Files\AdiIRC\AdiIRC.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe
(bizmodeller Ltd -> bizmodeller Ltd) C:\Program Files\MyMediaForAlexa\MyMediaForAlexa.exe
(Cerulean Studios, LLC -> Cerulean Studios) C:\Program Files (x86)\Trillian\trillian.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc) C:\Program Files\Elgato\StreamDeck\StreamDeck.exe
(Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe
(Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe
(Discord Inc. -> Discord Inc.) C:\Users\Jan Behrens\AppData\Local\Discord\app-0.0.306\Discord.exe <6>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\102.4.431\QtWebEngineProcess.exe <2>
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <11>
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation - Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Kristjan Skutta -> ) D:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\wallpaper32.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Matthew Olivo) [Datei ist nicht signiert] C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\com.mixitup.streamdeckplugin.sdPlugin\MixItUp.StreamDeckPlugin.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20032.12611.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SndVol.exe
(Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd) C:\Windows\SysWOW64\CtHdaSvc.exe
(Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Open-Shell) [Datei ist nicht signiert] C:\Program Files\Open-Shell\StartMenu.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Killer Control Center\KillerControlCenter.exe
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Killer Control Center\KillerNetworkService.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(Safer-Networking Ltd. -> Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(The Qt Company Oy -> The Qt Company Ltd.) C:\Program Files\Elgato\StreamDeck\QtWebEngineProcess.exe <2>
(Vincent Burel -> VB-AUDIO Software) C:\Program Files (x86)\VB\Voicemeeter\voicemeeter8.exe
(Voicemod Sociedad Limitada -> ) C:\Users\Jan Behrens\AppData\Roaming\Elgato\StreamDeck\Plugins\net.voicemod.windowsdesktop.sdPlugin\voicemodplugin.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [322472 2015-06-23] (Intel Corporation - Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\ecmdS.exe [185648 2020-07-30] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [216576 2018-08-18] (Open-Shell) [Datei ist nicht signiert]
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3942936 2018-11-02] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [Stream Deck] => C:\Program Files\Elgato\StreamDeck\StreamDeck.exe [10824040 2020-07-02] (Corsair Memory, Inc. -> Corsair Memory, Inc)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7658496 2020-07-20] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [UpdReg] => C:\WINDOWS\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Sound Blaster Z-Series Control Panel] => C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\SBZ.exe [877056 2014-11-24] (Creative Technology Ltd) [Datei ist nicht signiert]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [710264 2020-06-18] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [6787856 2019-03-19] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) [Datei ist nicht signiert]
HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\Run: [WallpaperEngine] => D:\Program Files (x86)\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe [2601464 2020-05-18] (Kristjan Skutta -> )
HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [104449672 2020-07-30] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29262520 2020-07-29] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\Run: [PretzelSaltHelper] => C:\Users\Jan Behrens\AppData\Local\Programs\PretzelDesktop\helper\PretzelSaltHelper.exe [6936688 2018-07-20] (ZaaLabs, Ltd. -> )
HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\Run: [CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [144008 2019-11-26] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\Run: [Discord] => C:\Users\Jan Behrens\AppData\Local\Discord\app-0.0.306\Discord.exe [90950968 2020-02-24] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\Run: [AdiIRC] => C:\Program Files\AdiIRC\AdiIRC.exe [1949953 2020-03-24] (AdiIRC.com) [Datei ist nicht signiert]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\84.0.4147.105\Installer\chrmstp.exe [2020-07-29] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Control Center.lnk [2017-09-10]
ShortcutTarget: Killer Control Center.lnk -> C:\Program Files\Killer Networking\Killer Control Center\KillerControlCenter.exe (Rivet Networks LLC -> Rivet Networks)
Startup: C:\Users\Jan Behrens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Trillian.lnk [2020-05-29]
ShortcutTarget: Trillian.lnk -> C:\Program Files (x86)\Trillian\trillian.exe (Cerulean Studios, LLC -> Cerulean Studios)
Startup: C:\Users\Jan Behrens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Voicemeeter (VB-Audio).LNK [2019-08-04]
ShortcutTarget: Voicemeeter (VB-Audio).LNK -> C:\Program Files (x86)\VB\Voicemeeter\voicemeeter8.exe (Vincent Burel -> VB-AUDIO Software)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Beschränkung ? <==== ACHTUNG

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {07058AB3-BDB0-45EE-9FD5-39C79B6E7946} - System32\Tasks\GoogleUpdateTaskMachineUA1d08f55295541c9 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {088EE5F9-0F45-4F55-9C39-2C4AF6EF2810} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0C738CB7-4A96-4EF0-8AED-29D8D06EE9D3} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3325520 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {1E55D237-51AD-45D1-A6F7-5C954CFE2237} - System32\Tasks\MSIAfterburner => C:\Program Files (x86)\MSI Afterburner\MSIAfterburner.exe
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe
Task: {4064DFAC-7EE3-4E00-B9BB-D7855300F7B9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4712D89F-35FE-40C6-8BB0-E5984BF4D453} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {513DA930-4AAA-42E3-96DF-B390CAD2866E} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {59DEE8A6-93D4-4930-9F24-FE2557E36091} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [32256 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
Task: {5F571F0B-64FF-4CBE-9976-ECDB67CC6060} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [170856 2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {604A4318-115A-49F1-BA1A-B22E6D8778F8} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6064544 2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {605534A8-1CE6-44D9-AAD0-5F8F7F1709C1} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23815032 2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {6DCA5D5F-FFAD-4DDE-BF9A-C1759520A5FD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}
Task: {74BE7263-02CA-48B9-AF6A-497BA14ACBBB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {778AA507-2E3F-4521-A484-5C5D87FBAA5D} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {77ABAA2C-9499-4AC2-8F8B-CFFA7C220C1A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE}
Task: {8BE44679-9D48-4E27-95DC-4C67A5A9A562} - System32\Tasks\GoogleUpdateTaskMachineUA1d0432d8b5bd6e7 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {94D1D82B-E1FD-4719-8343-AED23E0A6340} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9AEEC834-D67C-477B-959B-DCBFDF6D0ADC} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A333D240-B25C-4973-827E-02E251C7D489} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {A3D5AD4D-7964-4FD8-A3AB-AB5730951F77} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-4111253365-1997517826-1648085879-1001UA => C:\Users\Jan Behrens\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: {AC20102A-D7AB-4310-B6CC-98DDADD75E9E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24910520 2020-07-29] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AD940D41-DDD7-48EF-9F7E-F4B7A2216835} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1331792 2020-05-07] (Adobe Inc. -> Adobe Inc.)
Task: {AE6448FD-6641-41FC-B0EA-499CD9852827} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B4665CB5-60F7-4B80-81AD-CCB3774C8906} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {C70E509C-6F53-403F-A6F7-69CCB9A87AF5} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-16] (Dropbox, Inc -> Dropbox, Inc.)
Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {D5FE28CE-03DD-4458-87AD-A1BA848213FD} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-07-29] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {DC1D7FCB-7377-4A17-AF71-202910B5FC01} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23815032 2020-07-07] (Microsoft Corporation -> Microsoft Corporation)
Task: {E6D3F8A0-65BB-4E62-B260-28D81693671D} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [170856 2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {EE84679C-702C-4A04-BAE0-1CA1A1A5F309} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6064544 2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6DAEB57-23C3-4A6C-B469-ADF7AC5C0953} - System32\Tasks\GoogleUpdateTaskMachineCore1d0bffba8f5bc0d => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)
Task: {FC7D6BA4-1983-46F6-89E8-4F1C70D04E1D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-29] (Google Inc -> Google Inc.)

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0432d8b5bd6e7.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{3562d675-0761-4af0-98d5-b9ab3f9fd069}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{77b30eb4-1f1a-46bf-8de2-27bcec0c152d}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{a0044405-3cea-4d7c-8927-e7035925bc90}: [DhcpNameServer] 192.168.178.1

Internet Explorer:
==================
BHO: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.50\BHO\ie_to_edge_bho_64.dll [2020-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Open-Shell\ClassicExplorer64.dll [2018-08-18] (Open-Shell) [Datei ist nicht signiert]
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Open-Shell\ClassicIEDLL_64.dll [2018-08-18] (Open-Shell) [Datei ist nicht signiert]
BHO-x32: IEToEdge BHO -> {1FD49718-1D00-4B19-AF5F-070AF6D5D54C} -> C:\Program Files (x86)\Microsoft\Edge\Application\84.0.522.50\BHO\ie_to_edge_bho.dll [2020-07-31] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Open-Shell\ClassicExplorer32.dll [2018-08-18] (Open-Shell) [Datei ist nicht signiert]
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\ssv.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Open-Shell\ClassicIEDLL_32.dll [2018-08-18] (Open-Shell) [Datei ist nicht signiert]
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Open-Shell\ClassicExplorer64.dll [2018-08-18] (Open-Shell) [Datei ist nicht signiert]
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Open-Shell\ClassicExplorer32.dll [2018-08-18] (Open-Shell) [Datei ist nicht signiert]
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://files.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://files.creative.com/Web/softwareupdate/ocx/150323/CTPID.cab
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)

Edge:
======
Edge Profile: C:\Users\Jan Behrens\AppData\Local\Microsoft\Edge\User Data\Default [2020-08-01]

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw.dll [2019-03-15] (Adobe Systems, Inc.) [Datei ist nicht signiert]
FF Plugin-x32: @java.com/DTPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\dtplugin\npDeployJava1.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.261.2 -> C:\Program Files (x86)\Java\jre1.8.0_261\bin\plugin2\npjp2.dll [2020-07-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-07-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2019-08-14] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-05-04] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default [2020-08-01]
CHR Notifications: Default -> hxxp://kleinanzeigen.ebay.de; hxxp://www.carthrottle.com; hxxp://www.ebay-kleinanzeigen.de; hxxps://steamstat.us; hxxps://twitter.com; hxxps://www.carthrottle.com; hxxps://www.lieferando.de; hxxps://www.mydealz.de; hxxps://www.trillian.im
CHR HomePage: Default -> hxxp://www.shadow-world.de.ms/
CHR StartupUrls: Default -> "hxxp://janster.lima-city.de/"
CHR Extension: (ProxFlow) - C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Extensions\aakchaleigkohafkfjfjbblobjifikek [2020-06-12]
CHR Extension: (Google Drive) - C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (uBlock Origin) - C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2020-07-25]
CHR Extension: (Google-Suche) - C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Tampermonkey) - C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-05-29]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-04]
CHR Extension: (Google Mail) - C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-23]
CHR Extension: (Chrome Media Router) - C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-07-15]
CHR Profile: C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\System Profile [2020-03-31]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3673680 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3406416 2020-06-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1465352 2017-02-04] (BattlEye Innovations e.K. -> )
R2 Bonjour Service; C:\Program Files (x86)\Blizzard\Bonjour Service\mDNSResponder.exe [390504 2017-04-26] (Apple Inc. -> Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [10574712 2020-07-02] (Microsoft Corporation -> Microsoft Corporation)
R2 CTAudSvcService; C:\Program Files (x86)\Creative\Shared Files\CTAudSvc.exe [423424 2012-10-08] (Creative Technology Ltd) [Datei ist nicht signiert]
R2 CtHdaSvc; C:\WINDOWS\sysWow64\CtHdaSvc.exe [124008 2019-11-21] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-16] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-16] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-07-20] (Dropbox, Inc -> Dropbox, Inc.)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [382504 2017-09-15] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2371760 2020-07-30] (ESET, spol. s r.o. -> ESET)
S3 ElfoService; C:\Program Files (x86)\ElsterFormular Update Service\bin\elfoService.exe [1284360 2019-02-17] (Bayerisches Landesamt fuer Steuern -> )
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [365040 2017-03-17] (Intel(R) pGFX -> Intel Corporation)
R2 JTAGServer; d:\altera\13.1\qprogrammer\bin64\jtagserver.exe [269312 2013-10-24] () [Datei ist nicht signiert]
R2 Killer Network Service x64; C:\Program Files\Killer Networking\Killer Control Center\KillerNetworkService.exe [2197696 2017-09-07] (Rivet Networks LLC -> Rivet Networks)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [11034760 2020-07-30] (Logitech Inc -> Logitech, Inc.)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6970968 2020-08-01] (Malwarebytes Inc -> Malwarebytes)
R2 MyMediaForAlexa; C:\Program Files\MyMediaForAlexa\MyMediaForAlexa.exe [3140280 2019-02-18] (bizmodeller Ltd -> bizmodeller Ltd)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2747312 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4583240 2020-04-26] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [940976 2019-09-04] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5930136 2020-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13088784 2020-05-25] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\NisSrv.exe [3630832 2019-09-25] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MsMpEng.exe [103168 2019-09-25] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AlteraUSBBlaster; C:\WINDOWS\system32\drivers\usbblstr.sys [70480 2013-10-24] (Altera Corporation -> FTDI Ltd.)
S3 asvpndrv; C:\WINDOWS\system32\DRIVERS\asvpndrv.sys [31744 2014-05-17] (Astrill -> Astrill)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-09-24] (Microsoft Corporation) [Datei ist nicht signiert]
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-01-26] (Microsoft Windows Hardware Compatibility Publisher -> www.winchiphead.com)
R3 cthda; C:\WINDOWS\system32\drivers\cthda.sys [1075600 2019-11-21] (Creative Technology Ltd -> Creative Technology Ltd)
R3 cthdb; C:\WINDOWS\system32\DRIVERS\cthdb.sys [43416 2019-11-21] (Creative Technology Ltd -> Creative Technology Ltd)
S3 CtxHdb; C:\WINDOWS\system32\DRIVERS\Ctxhdb.sys [48400 2017-06-22] (Creative Technology Ltd -> Creative Technology Ltd)
R3 e2xw10x64; C:\WINDOWS\System32\drivers\e2xw10x64.sys [165608 2017-09-06] (Rivet Networks LLC -> Qualcomm Atheros, Inc.)
R3 e60MZ0380.X64; C:\WINDOWS\System32\drivers\e60MZ0380.X64.SYS [4115832 2020-04-07] (Corsair Memory, Inc. -> )
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [159528 2020-07-10] (ESET, spol. s r.o. -> ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106640 2020-07-10] (ESET, spol. s r.o. -> ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15800 2019-06-03] (Microsoft Windows Early Launch Anti-malware Publisher -> ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [195456 2020-07-10] (ESET, spol. s r.o. -> ESET)
S3 ElgatoVAD; C:\WINDOWS\System32\drivers\ElgatoVAD.sys [39208 2019-05-23] (Elgato Systems LLC -> Elgato Systems GmbH)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [116488 2020-07-10] (ESET, spol. s r.o. -> ESET)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2020-08-01] (Malwarebytes Corporation -> Malwarebytes)
S3 FTDIBUS; C:\WINDOWS\system32\drivers\ftdibus.sys [74376 2011-03-18] (Future Technology Devices International Ltd -> FTDI Ltd.)
S3 FTSER2K; C:\WINDOWS\system32\drivers\ftser2k.sys [85384 2011-03-18] (Future Technology Devices International Ltd -> FTDI Ltd.)
S3 ipcamdriver; C:\WINDOWS\system32\DRIVERS\ipcamdriver64.sys [32784 2015-01-26] (Senstic -> Senstic)
S3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-05-27] (Intel CASE -> )
R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\61557\driver_cpu_temperature\logi_core_temp.sys [25448 2020-07-30] (Logitech Inc. -> Logitech)
S3 LGJoyXlCore; C:\WINDOWS\system32\drivers\LGJoyXlCore.sys [67736 2016-09-29] (Logitech Inc -> Logitech Inc.)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52832 2020-03-30] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [38136 2019-06-02] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [26672 2020-05-21] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66808 2019-06-02] (Logitech Inc -> Logitech)
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [49272 2014-12-29] (ManyCam -> Visicom Media Inc.)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216056 2020-08-01] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-08-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [197264 2020-08-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [73368 2020-08-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-08-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [131232 2020-08-01] (Malwarebytes Inc -> Malwarebytes)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
S3 NVFLASH; C:\WINDOWS\system32\drivers\nvflash.sys [14480 2015-01-16] (NVIDIA Corporation -> )
R0 pwdrvio; C:\WINDOWS\System32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\WINDOWS\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
R2 RfeCoSvc; C:\WINDOWS\system32\DRIVERS\RfeCo10X64.sys [129776 2017-09-07] (Rivet Networks LLC -> Rivet Networks, LLC.)
S3 ScpVBus; C:\WINDOWS\System32\drivers\ScpVBus.sys [39168 2013-05-19] (Bruce James -> Scarlet.Crush Productions)
S0 Spybot3ELAM; C:\WINDOWS\System32\drivers\Spybot3ELAM.sys [19904 2019-06-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Windows (R) Win 7 DDK provider)
R3 SteamStreamingMicrophone; C:\WINDOWS\system32\drivers\SteamStreamingMicrophone.sys [40736 2017-07-28] (Valve Corp. -> )
R3 SteamStreamingSpeakers; C:\WINDOWS\system32\drivers\SteamStreamingSpeakers.sys [40736 2017-07-21] (Valve Corp. -> )
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2017-07-17] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
R3 VBAudio100VMVAIO3MME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio364_win10.sys [71712 2019-07-31] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVACMME; C:\WINDOWS\System32\drivers\vbaudio_cable64_win7.sys [41192 2014-09-02] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMAUXVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmauxvaio64_win10.sys [71920 2019-05-27] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R3 VBAudioVMVAIOMME; C:\WINDOWS\System32\drivers\vbaudio_vmvaio64_win10.sys [71712 2019-05-25] (Vincent Burel -> Windows (R) Win 7 DDK provider)
R1 veracrypt; C:\WINDOWS\System32\drivers\veracrypt.sys [829320 2019-07-29] (IDRIX -> IDRIX)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-09-25] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [346336 2019-09-25] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-09-25] (Microsoft Windows -> Microsoft Corporation)
S3 XSplit_Dummy; C:\WINDOWS\system32\drivers\xspltspk.sys [26200 2016-06-15] (Splitmedialabs Limited -> SplitmediaLabs Limited)
R3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [51536 2018-07-19] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2020-08-01 03:00 - 2020-08-01 03:01 - 000000000 ____D C:\FRST
2020-08-01 02:53 - 2020-08-01 02:53 - 000197264 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2020-08-01 02:53 - 2020-08-01 02:53 - 000131232 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2020-08-01 02:53 - 2020-08-01 02:53 - 000073368 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2020-08-01 01:51 - 2019-03-11 13:02 - 000450913 _____ C:\WINDOWS\system32\Drivers\etc\hosts.20200801-015152.backup
2020-08-01 01:50 - 2020-08-01 01:50 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\Safer-Networking Ltd
2020-08-01 01:49 - 2020-08-01 01:49 - 000001471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2020-08-01 01:49 - 2020-08-01 01:49 - 000001459 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2020-08-01 01:49 - 2020-08-01 01:49 - 000001459 _____ C:\ProgramData\Desktop\Spybot-S&D Start Center.lnk
2020-08-01 01:49 - 2020-08-01 01:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2020-08-01 01:49 - 2019-06-21 08:34 - 000019904 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\Spybot3ELAM.sys
2020-08-01 01:49 - 2018-02-06 19:04 - 000032168 _____ (Safer-Networking Ltd.) C:\WINDOWS\system32\sdnclean64.exe
2020-08-01 01:29 - 2020-08-01 01:29 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-08-01 01:29 - 2020-08-01 01:29 - 000216056 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-08-01 01:29 - 2020-08-01 01:29 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-08-01 01:29 - 2020-08-01 01:29 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-08-01 01:29 - 2020-08-01 01:29 - 000002000 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2020-08-01 01:29 - 2020-08-01 01:29 - 000001988 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-08-01 01:29 - 2020-08-01 01:29 - 000001988 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-08-01 01:29 - 2020-08-01 01:29 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\mbam
2020-08-01 01:29 - 2020-08-01 01:29 - 000000000 ____D C:\Program Files\Malwarebytes
2020-08-01 01:24 - 2020-08-01 01:25 - 000000000 ____D C:\AdwCleaner
2020-08-01 01:22 - 2020-08-01 01:22 - 000109362 _____ C:\TDSSKiller.3.1.0.28_01.08.2020_01.22.17_log.txt
2020-08-01 01:16 - 2020-08-01 01:16 - 000000830 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-08-01 01:16 - 2020-08-01 01:16 - 000000830 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-07-31 18:00 - 2020-07-31 18:00 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2020-07-31 18:00 - 2020-07-31 18:00 - 000000650 _____ C:\ProgramData\Desktop\Logitech G HUB.lnk
2020-07-31 18:00 - 2020-07-31 18:00 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2020-07-31 18:00 - 2020-07-31 18:00 - 000000000 ____D C:\Program Files\LGHUB
2020-07-21 22:24 - 2020-07-21 22:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-07-21 19:25 - 2020-07-26 23:33 - 000001456 _____ C:\Users\Jan Behrens\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2020-07-20 14:20 - 2020-07-20 14:20 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-07-20 14:20 - 2020-07-20 14:20 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-07-20 14:20 - 2020-07-20 14:20 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-07-20 14:20 - 2020-07-20 14:20 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx.sys
2020-07-20 14:20 - 2020-07-20 14:20 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2020-07-19 17:55 - 2020-07-19 17:55 - 000000000 ____D C:\Program Files\SpoonUninstall
2020-07-19 12:34 - 2020-07-19 19:32 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\LioranBoard_Stream_Deck
2020-07-19 11:32 - 2020-07-25 03:06 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\LioranBoard
2020-07-18 20:55 - 2020-08-01 02:56 - 000000000 ____D C:\Program Files\MyMediaForAlexa
2020-07-18 20:55 - 2020-07-24 18:56 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\MyMediaForAlexa
2020-07-18 20:55 - 2020-07-18 20:55 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\My Media for Alexa
2020-07-17 14:10 - 2020-07-17 14:10 - 000001290 _____ C:\Users\Jan Behrens\AppData\Local\recently-used.xbel
2020-07-17 05:20 - 2020-07-17 05:20 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\FXHOME Helper
2020-07-17 05:19 - 2020-07-17 05:19 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\gtk-3.0
2020-07-17 05:19 - 2020-07-17 05:19 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\FXHOME
2020-07-17 03:13 - 2020-07-17 14:04 - 000000000 ____D C:\Users\Jan Behrens\.dbus-keyrings
2020-07-17 03:13 - 2020-07-17 03:14 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\inkscape
2020-07-17 03:13 - 2020-07-17 03:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HitFilm Express
2020-07-17 03:12 - 2020-07-17 05:20 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\HitFilm Express Activation
2020-07-17 03:12 - 2020-07-17 03:12 - 000000000 ____D C:\ProgramData\FXHOME
2020-07-17 03:12 - 2020-07-17 03:12 - 000000000 ____D C:\ProgramData\BorisFX
2020-07-17 03:12 - 2020-07-17 03:12 - 000000000 ____D C:\Program Files\FXHOME
2020-07-17 03:12 - 2020-07-17 03:12 - 000000000 ____D C:\Program Files\Common Files\OFX
2020-07-17 03:12 - 2020-07-17 03:12 - 000000000 ____D C:\Program Files\BorisFX
2020-07-17 03:07 - 2020-07-17 03:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Inkscape
2020-07-17 03:07 - 2020-07-17 03:07 - 000000000 ____D C:\Program Files\Inkscape
2020-07-17 02:33 - 2020-07-17 02:33 - 002510856 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2020-07-16 14:02 - 2020-07-23 08:37 - 000003372 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4111253365-1997517826-1648085879-1001
2020-07-16 14:02 - 2020-07-23 08:37 - 000002408 _____ C:\Users\Jan Behrens\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-07-16 14:01 - 2020-07-16 14:01 - 000002508 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2020-07-16 14:01 - 2020-07-16 14:01 - 000002504 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2020-07-16 14:01 - 2020-07-16 14:01 - 000002483 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2020-07-16 14:01 - 2020-07-16 14:01 - 000002461 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2020-07-16 14:01 - 2020-07-16 14:01 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2020-07-16 14:01 - 2020-07-16 14:01 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2020-07-16 14:01 - 2020-07-16 14:01 - 000002394 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2020-07-16 14:01 - 2020-07-16 14:01 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-07-16 14:01 - 2020-07-16 14:01 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2020-07-16 13:57 - 2020-07-16 13:57 - 000000000 ____D C:\Program Files\Microsoft Office 15
2020-07-15 17:24 - 2020-07-15 17:23 - 000193704 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-64.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 025902592 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 022641664 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 019851776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 019812864 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramWorld.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 018031104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 017792512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 014820352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 009931576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 008015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 007917408 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 007850288 _____ (Microsoft Corporation) C:\WINDOWS\system32\OneCoreUAPCommonProxyStub.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 007823912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 007604584 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 007297536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 007269376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 007268640 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 007012864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 006523856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 006437376 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 006292992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 006233080 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 006169088 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 006089512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 005946368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 005765648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 005111808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 005099384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 004625192 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 004565264 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 004129424 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 004014592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Bluetooth.Service.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 003980800 _____ (Microsoft Corporation) C:\WINDOWS\system32\tellib.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 003974368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 003800576 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 003748352 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 003743048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OneCoreUAPCommonProxyStub.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 003727360 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-07-14 23:52 - 2020-07-14 23:52 - 003712000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 003084800 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002799104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-07-14 23:52 - 2020-07-14 23:52 - 002768984 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002737664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-07-14 23:52 - 2020-07-14 23:52 - 002576896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002552120 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002505496 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002494744 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002467840 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallService.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002448712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002357248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Perception.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002285056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.3D.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002264064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002237096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002161664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.PointOfService.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002087168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002074112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ISM.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 002060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdprt.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001991592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001952880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001946144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomp.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001918464 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001885184 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001877504 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001827328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001821696 _____ (Microsoft Corporation) C:\WINDOWS\system32\CoreShell.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001787392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001764336 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001745728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContentDeliveryManager.Utilities.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001743680 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001737728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallService.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001723392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Wpc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001697792 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001665728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001658368 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001656904 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001655472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001654304 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001640448 _____ (Microsoft Corporation) C:\WINDOWS\system32\TaskFlowDataEngine.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001612800 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001610240 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001604608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001581568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Perception.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001550336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.3D.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001540608 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowManagement.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001512960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cdprt.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001500160 _____ (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001495040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001486848 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocoreworker.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 001484384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001477632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dcomp.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001463808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.PointOfService.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001420328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001397568 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 001392128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.FaceAnalysis.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001385696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001374208 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001371136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Wpc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001357824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Globalization.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001346048 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloSI.PCShell.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001344512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Audio.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001337856 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnapps.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001335296 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiver.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001307136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Audio.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001306944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ContentDeliveryManager.Utilities.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001290192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\werconcpl.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001284608 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001271296 _____ (Microsoft Corporation) C:\WINDOWS\system32\SEMgrSvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001265152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001247232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001223168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.FaceAnalysis.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001195008 _____ (Microsoft Corporation) C:\WINDOWS\system32\sdengin2.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001183744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001159168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MbaeApiPublic.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001151304 _____ (Microsoft Corporation) C:\WINDOWS\system32\InputHost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001149712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 001125376 _____ (Microsoft Corporation) C:\WINDOWS\system32\CBDHSvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001121792 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001100800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001086776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001081344 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001077048 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 001068544 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001055232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.AccountsControl.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001048992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001028336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Perception.Stub.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001014784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnapps.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001009152 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001008960 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 001007616 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000995840 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000967680 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebcamUi.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000958608 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppContracts.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000950272 _____ (Microsoft Corporation) C:\WINDOWS\system32\rasapi32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000949760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Ocr.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000945176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Sensors.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000931840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000922624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Service.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000919880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.OnlineId.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000913408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000912896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiver.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000904192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000899584 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000898048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000895600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000892928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MbaeApiPublic.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000891392 _____ (Microsoft Corporation) C:\WINDOWS\system32\HolographicExtensions.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000889416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000882184 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000882176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ShareHost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000875008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rasapi32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000867840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000865280 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000848384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.BackgroundTransfer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000844096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CloudExperienceHostCommon.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000827904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Import.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000822200 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000821232 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.applicationmodel.datatransfer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000815616 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebcamUi.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000814080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000809984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Input.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000797448 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000793320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputHost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000783488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000782848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000779080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000778872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppContracts.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000750592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000750080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.OnlineId.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000742712 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000737792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Launcher.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000733184 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.immersiveshell.serviceprovider.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000727040 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntime.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000722072 _____ (Microsoft Corporation) C:\WINDOWS\system32\kernel32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000717824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.AccountsControl.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000716288 _____ (Microsoft Corporation) C:\WINDOWS\system32\agentactivationruntimewindows.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000695208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000694784 _____ (Microsoft Corporation) C:\WINDOWS\system32\gpprefcl.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000692224 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Search.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000687104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Ocr.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000685384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000684864 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHCore.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000678720 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000673448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000669184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000656696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2020-07-14 23:52 - 2020-07-14 23:52 - 000653824 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000651264 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicesFlowBroker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000639488 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000638464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.appcore.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000630784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000628416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kernel32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000628024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000624640 _____ (Microsoft Corporation) C:\WINDOWS\system32\TileDataRepository.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000616960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.LowLevel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\efswrt.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000614912 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofmsvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SmartCards.Phone.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000605896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sechost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000602112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Payments.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000600064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000596992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000594992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Perception.Stub.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000593408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000584704 _____ (Microsoft Corporation) C:\WINDOWS\system32\PlayToManager.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000582056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.applicationmodel.datatransfer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Import.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000565248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Input.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000564736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gpprefcl.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-07-14 23:52 - 2020-07-14 23:52 - 000549048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.MediaControl.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usosvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000542288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000538664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SHCore.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000534016 _____ (Microsoft Corporation) C:\WINDOWS\system32\schannel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000533504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000526848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000524784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Enumeration.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000522240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Launcher.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000521728 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinBioDataModel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000518656 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000518464 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFault.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000513024 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Activities.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000512000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Cortana.Desktop.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.appcore.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000502784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFiDirect.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000501760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\werui.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000495616 _____ (Microsoft Corporation) C:\WINDOWS\system32\RTMediaFrame.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000490496 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\MixedReality.Broker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000478296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sechost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000477184 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudDomainJoinDataModelServer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000476160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountWAMExtension.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000475136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000467960 _____ (Microsoft Corporation) C:\WINDOWS\system32\Faultrep.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Picker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000467456 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000466432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000462848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schannel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000461112 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.ConversationalAgent.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000456704 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnphost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000453944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFault.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000452096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TileDataRepository.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhsettingsprovider.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000444416 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000442368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.AllJoyn.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000442096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.MediaControl.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000434176 _____ (Microsoft Corporation) C:\WINDOWS\system32\MicrosoftAccountExtension.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Midi.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000432128 _____ (Microsoft Corporation) C:\WINDOWS\system32\WalletService.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000430592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werui.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000419328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.NetworkOperators.ESim.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000416768 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000412672 _____ (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000411640 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000411136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PlayToManager.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000410112 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SmartCards.Phone.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Enumeration.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000406992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000405944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Faultrep.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000403968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Payments.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000399672 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DataModel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000397824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Lights.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000395264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Gaming.Preview.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000392504 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000388096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.LowLevel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000387584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.LockScreen.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000382976 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000381152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManager.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000380224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000375296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.System.Diagnostics.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PickerPlatform.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000371712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Geolocation.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000361472 _____ (Microsoft Corporation) C:\WINDOWS\system32\QuickActionsDataModel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000358912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.WiFiDirect.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnclient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000355840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicSvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConsoleLogon.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000354816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\RTMediaFrame.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000353792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000352256 _____ (Microsoft Corporation) C:\WINDOWS\system32\APHostService.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000345560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000340328 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000338944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Picker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000335360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MicrosoftAccountWAMExtension.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000334336 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Cortana.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000329728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnphost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000328192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.internal.shellcommon.shareexperience.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-07-14 23:52 - 2020-07-14 23:52 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Midi.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\SyncSettings.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000311608 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostBroker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000311440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.CredDialogController.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000295936 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\CXHProvisioningServer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wpnclient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000292864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.System.Diagnostics.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultcli.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000287744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Gaming.Preview.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicCapsule.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000283648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.NetworkOperators.ESim.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000281600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000280576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Usb.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Lights.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Identity.Provider.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000272384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PickerPlatform.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000268552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000266552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemSettings.DataModel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000265728 _____ (Microsoft Corporation) C:\WINDOWS\system32\netman.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000261632 _____ (Microsoft Corporation) C:\WINDOWS\system32\bthprops.cpl
2020-07-14 23:52 - 2020-07-14 23:52 - 000260288 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoncli.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000256000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ConsoleLogon.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\PasswordEnrollmentManager.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000247864 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000242688 _____ (Microsoft Corporation) C:\WINDOWS\system32\CapabilityAccessManagerClient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000241152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.CredDialogController.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000239928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Workplace.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.Desktop.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\psmsrv.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000237056 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\HoloShellRuntime.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wersvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\netprofm.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncSettings.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWWIN.EXE
2020-07-14 23:52 - 2020-07-14 23:52 - 000220992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000220672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MtcModel.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000219136 _____ (Microsoft Corporation) C:\WINDOWS\system32\wdigest.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bthprops.cpl
2020-07-14 23:52 - 2020-07-14 23:52 - 000217600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Core.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000215552 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\PeopleBand.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagSvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000211256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcbloader.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000210944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\useractivitybroker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000204608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spacedump.sys
2020-07-14 23:52 - 2020-07-14 23:52 - 000200704 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Internal.Input.ExpressiveInput.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000199496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000196096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000195584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AarSvc.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000193600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\weretw.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000190056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\logoncli.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Identity.Provider.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000188928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.HumanInterfaceDevice.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000186880 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWWIN.EXE
2020-07-14 23:52 - 2020-07-14 23:52 - 000186368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wdigest.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Energy.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialserver.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Clipboard.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000179512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2020-07-14 23:52 - 2020-07-14 23:52 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowService.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000179200 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppExtension.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000176952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Management.Workplace.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\HoloShellRuntime.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dialclient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000172032 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.CapturePicker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000165840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WerFaultSecure.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000165376 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000162816 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ErrorDetails.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000162304 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\UserDeviceRegistration.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CapabilityAccessManagerClient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000159744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Core.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000157184 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWSDAHost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000152064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\useractivitybroker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWSD.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.SerialCommunication.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000150336 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WerFaultSecure.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Client.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000146232 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyServer.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000144384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentActivation.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000143360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000141312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowService.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000140800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Energy.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayEnhancementManagement.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppExtension.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000132408 _____ (Microsoft Corporation) C:\WINDOWS\system32\offlinelsa.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairingExperienceMEM.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredDialogBroker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorageUsage.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\CameraCaptureUI.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\CaptureService.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000127488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWSD.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000124928 _____ (Microsoft Corporation) C:\WINDOWS\system32\wercplsupport.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000121856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWSDAHost.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000118272 _____ (Microsoft Corporation) C:\WINDOWS\system32\EaseOfAccessDialog.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000115712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppointmentActivation.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstSv.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000110040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000107520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.SerialCommunication.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\utcutil.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\sethc.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000100864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Family.Authentication.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000100352 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticInvoker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000099328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000094720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CameraCaptureUI.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EaseOfAccessDialog.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000093184 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlaapi.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000092672 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsqmcons.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\keyiso.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000089600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Background.SystemEventsBroker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000089328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicAgent.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000086272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Credentials.UI.CredentialPicker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemUWPLauncher.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkInternalPS.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\Print.Workflow.Source.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000079360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sethc.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000076952 _____ (Microsoft Corporation) C:\WINDOWS\system32\CredentialEnrollmentManagerForUser.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000075776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DiagnosticInvoker.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000071168 _____ (Microsoft Corporation) C:\WINDOWS\system32\MiracastReceiverExt.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000070248 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourcePolicyClient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000068096 _____ (Microsoft Corporation) C:\WINDOWS\system32\udhisapi.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\keyiso.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\iemigplugin.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemUWPLauncher.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iemigplugin.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000061952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Print.Workflow.Source.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf3216.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\AxInstUI.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\udhisapi.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000058368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MiracastReceiverExt.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000052152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ResourcePolicyClient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000050688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf3216.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\npmproxy.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\werdiagcontroller.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000040960 _____ (Microsoft Corporation) C:\WINDOWS\system32\upnpcont.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000040248 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFrameworkPS.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000038912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIMgrBroker.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000035328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\upnpcont.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerClient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmproxy.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\WaaSMedicPS.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintWorkflowProxy.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\CSystemEventsBrokerClient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000021504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SystemEventsBrokerClient.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlmsprep.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintWorkflowProxy.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dciman32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIManagerBrokerps.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Printing.Workflow.Native.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteFXvGPUDisablement.exe
2020-07-14 23:52 - 2020-07-14 23:52 - 000011776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dciman32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\msimg32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000007168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msimg32.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\lpk.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6r.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\lpk.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000002560 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6r.dll
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2020-07-14 23:52 - 2020-07-14 23:52 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2020-07-14 23:48 - 2020-07-14 23:48 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-07-14 23:48 - 2020-07-14 23:48 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-07-12 23:27 - 2020-07-12 23:27 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StreamFX for OBS Studio
2020-07-12 19:25 - 2020-07-12 19:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\obs-websocket
2020-07-09 15:37 - 2020-07-09 15:37 - 000000000 ____D C:\Program Files (x86)\OBS Studio - FTL

JayAwesome 01.08.2020 02:29
FRST.txt (Teil 2)
Code:
==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2020-08-01 03:01 - 2017-04-16 18:56 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\discord
2020-08-01 03:00 - 2019-09-27 21:41 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\OpenShell
2020-08-01 02:59 - 2019-09-24 22:36 - 001725172 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-08-01 02:59 - 2019-03-19 14:16 - 000743888 _____ C:\WINDOWS\system32\perfh007.dat
2020-08-01 02:59 - 2019-03-19 14:16 - 000150212 _____ C:\WINDOWS\system32\perfc007.dat
2020-08-01 02:59 - 2019-03-19 06:50 - 000000000 ____D C:\WINDOWS\INF
2020-08-01 02:55 - 2017-08-11 20:02 - 000000000 ____D C:\ProgramData\NVIDIA
2020-08-01 02:54 - 2019-06-02 03:48 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\LGHUB
2020-08-01 02:54 - 2019-02-14 23:27 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\LGHUB
2020-08-01 02:53 - 2019-09-24 22:37 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-08-01 02:53 - 2019-03-19 06:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-08-01 02:53 - 2019-03-19 06:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2020-08-01 02:53 - 2019-01-10 12:01 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2020-08-01 02:53 - 2017-10-07 20:37 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2020-08-01 02:53 - 2017-10-07 20:37 - 000000000 __SHD C:\Users\Jan Behrens\IntelGraphicsProfiles
2020-08-01 02:53 - 2016-10-11 19:46 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-08-01 02:52 - 2019-08-01 01:22 - 000059889 _____ C:\Users\Jan Behrens\AppData\Roaming\VoiceMeeterPotatoDefault.xml
2020-08-01 02:43 - 2019-09-24 22:28 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-08-01 01:49 - 2016-10-11 19:46 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2020-08-01 01:47 - 2018-06-09 00:00 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\D3DSCache
2020-08-01 01:38 - 2019-05-23 00:28 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\LOOT
2020-08-01 01:38 - 2015-01-14 21:47 - 000000000 ____D C:\ProgramData\Package Cache
2020-08-01 01:29 - 2019-03-19 06:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-08-01 01:29 - 2015-08-02 11:14 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-08-01 01:16 - 2019-09-24 22:37 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-08-01 01:10 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-08-01 00:58 - 2019-08-05 23:24 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\Spotify
2020-08-01 00:20 - 2019-08-05 23:24 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\Spotify
2020-07-31 17:39 - 2020-06-19 18:27 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-07-31 01:21 - 2019-05-01 23:43 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\WhatsApp
2020-07-31 00:34 - 2019-05-01 23:43 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\WhatsApp
2020-07-30 21:15 - 2019-03-19 06:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-07-30 01:20 - 2017-09-09 17:36 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\obs-studio
2020-07-30 01:20 - 2015-03-12 22:20 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\CrashDumps
2020-07-29 23:33 - 2014-11-15 20:22 - 000002300 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-07-27 20:09 - 2019-06-16 21:22 - 000000000 ____D C:\WINDOWS\MZ0380
2020-07-26 23:20 - 2015-01-10 21:05 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\vlc
2020-07-26 00:06 - 2019-05-27 18:28 - 000000000 ____D C:\Program Files\Elgato
2020-07-26 00:06 - 2019-05-25 15:48 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\Elgato
2020-07-26 00:00 - 2015-07-11 22:29 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\ElevatedDiagnostics
2020-07-25 17:23 - 2014-11-15 22:45 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\JDownloader v2.0
2020-07-25 17:21 - 2016-09-16 17:22 - 000001236 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2020-07-25 17:21 - 2016-09-16 17:22 - 000001232 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2020-07-25 16:29 - 2019-05-27 18:28 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Elgato
2020-07-25 16:27 - 2020-03-28 14:18 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\AdiIRC
2020-07-24 18:48 - 2019-09-24 22:37 - 000004296 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2020-07-24 18:48 - 2019-09-24 22:37 - 000004064 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2020-07-23 19:12 - 2014-11-16 18:38 - 000000000 ___RD C:\Users\Jan Behrens\Dropbox
2020-07-23 08:37 - 2015-08-02 21:29 - 000000000 ___RD C:\Users\Jan Behrens\OneDrive
2020-07-21 22:24 - 2016-09-16 17:22 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-07-21 19:24 - 2014-11-15 20:14 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\Adobe
2020-07-17 17:57 - 2017-04-16 18:56 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\SquirrelTemp
2020-07-17 13:49 - 2019-09-24 22:28 - 000471472 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-07-17 03:13 - 2019-09-24 22:30 - 000000000 ____D C:\Users\Jan Behrens
2020-07-17 02:42 - 2015-10-24 22:50 - 000000000 ____D C:\Users\Jan Behrens\AppData\Local\NVIDIA Corporation
2020-07-17 02:36 - 2019-09-24 22:30 - 000000000 ____D C:\Users\Administrator
2020-07-17 02:34 - 2019-03-19 06:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-07-16 14:01 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2020-07-16 14:01 - 2014-11-16 01:05 - 000000000 ____D C:\Program Files\Microsoft Office
2020-07-15 17:24 - 2019-12-06 12:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-07-15 17:24 - 2019-12-06 12:25 - 000000000 ____D C:\Program Files\Java
2020-07-15 17:24 - 2014-11-15 23:28 - 000000000 ____D C:\Program Files (x86)\Java
2020-07-15 17:23 - 2019-12-06 12:26 - 000193704 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2020-07-15 17:23 - 2019-12-06 12:25 - 000166056 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-07-15 17:16 - 2017-11-02 22:23 - 000000000 ___RD C:\Users\Jan Behrens\3D Objects
2020-07-15 17:16 - 2014-11-16 00:19 - 000000000 __RHD C:\Users\Public\AccountPictures
2020-07-15 02:55 - 2019-03-19 06:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2020-07-15 02:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-07-15 02:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-07-15 02:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-07-15 02:55 - 2019-03-19 06:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-07-15 02:55 - 2019-03-19 06:52 - 000000000 ____D C:\Program Files\Common Files\System
2020-07-14 23:52 - 2013-08-22 17:44 - 000410842 __RSH C:\bootmgr
2020-07-12 23:27 - 2017-09-09 17:36 - 000000000 ____D C:\Program Files (x86)\obs-studio
2020-07-12 11:45 - 2020-06-19 18:27 - 000003698 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-07-12 11:45 - 2020-06-19 18:27 - 000003574 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-07-10 16:06 - 2018-01-19 16:32 - 000116488 _____ (ESET) C:\WINDOWS\system32\Drivers\epfwwfp.sys
2020-07-10 16:06 - 2017-11-01 23:19 - 000195456 _____ (ESET) C:\WINDOWS\system32\Drivers\ehdrv.sys
2020-07-10 16:06 - 2017-11-01 23:19 - 000159528 _____ (ESET) C:\WINDOWS\system32\Drivers\eamonm.sys
2020-07-10 16:06 - 2017-11-01 23:19 - 000106640 _____ (ESET) C:\WINDOWS\system32\Drivers\edevmon.sys
2020-07-10 09:55 - 2015-02-01 02:31 - 000000000 ____D C:\Users\Jan Behrens\AppData\Roaming\Skype
2020-07-09 20:24 - 2019-09-24 22:37 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-07-09 20:24 - 2015-11-01 23:44 - 000002143 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2019-06-02 13:45 - 2019-06-02 13:45 - 000000559 _____ () C:\Program Files\Uninstall FolderSort.bat
2019-05-27 20:31 - 2019-08-02 00:44 - 000034128 _____ () C:\Users\Jan Behrens\AppData\Roaming\VoiceMeeterBananaDefault.xml
2019-05-25 20:02 - 2019-06-07 16:08 - 000004699 _____ () C:\Users\Jan Behrens\AppData\Roaming\VoiceMeeterDefault.xml
2019-08-01 01:22 - 2020-08-01 02:52 - 000059889 _____ () C:\Users\Jan Behrens\AppData\Roaming\VoiceMeeterPotatoDefault.xml
2019-06-13 14:28 - 2019-06-14 00:04 - 000000600 _____ () C:\Users\Jan Behrens\AppData\Roaming\winscp.rnd
2020-07-21 19:25 - 2020-07-26 23:33 - 000001456 _____ () C:\Users\Jan Behrens\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2020-04-11 21:06 - 2020-04-11 21:06 - 000000000 _____ () C:\Users\Jan Behrens\AppData\Local\D272E0.tmp
2020-04-18 21:17 - 2020-04-18 21:17 - 000000000 _____ () C:\Users\Jan Behrens\AppData\Local\D27E44.tmp
2020-04-11 13:12 - 2020-04-11 13:12 - 000000000 _____ () C:\Users\Jan Behrens\AppData\Local\D2954C.tmp
2017-01-15 18:53 - 2017-01-15 18:53 - 000000000 _____ () C:\Users\Jan Behrens\AppData\Local\Driver_LOM_8161Present.flag
2019-05-13 19:24 - 2019-08-13 17:25 - 000001230 _____ () C:\Users\Jan Behrens\AppData\Local\oobelibMkey.log
2017-08-02 23:56 - 2019-11-02 16:46 - 000000128 _____ () C:\Users\Jan Behrens\AppData\Local\PUTTY.RND
2020-07-17 14:10 - 2020-07-17 14:10 - 000001290 _____ () C:\Users\Jan Behrens\AppData\Local\recently-used.xbel
2017-02-19 13:36 - 2017-02-19 13:36 - 000007605 _____ () C:\Users\Jan Behrens\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
Addition.txt
FRST Additions Logfile:
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 29-07-2020
durchgeführt von Jan Behrens (01-08-2020 03:02:08)
Gestartet von D:\Users\Jan Behrens\Downloads
Windows 10 Pro Version 1909 18363.959 (X64) (2019-09-24 20:37:48)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-4111253365-1997517826-1648085879-500 - Administrator - Disabled) => C:\Users\Administrator
DefaultAccount (S-1-5-21-4111253365-1997517826-1648085879-503 - Limited - Disabled)
Gast (S-1-5-21-4111253365-1997517826-1648085879-501 - Limited - Disabled)
Jan Behrens (S-1-5-21-4111253365-1997517826-1648085879-1001 - Administrator - Enabled) => C:\Users\Jan Behrens
WDAGUtilityAccount (S-1-5-21-4111253365-1997517826-1648085879-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Spybot - Search and Destroy (Enabled - Up to date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: ESET Security (Enabled - Up to date) {885D845F-AF19-0124-FECE-FFF49D00F440}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

AdiIRC (HKLM-x32\...\AdiIRC) (Version: 3.8 - Per Amundsen)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.009.20074 - Adobe Systems Incorporated)
Adobe After Effects 2019 (HKLM-x32\...\AEFT_16_1_2) (Version: 16.1.2 - Adobe Systems Incorporated)
Adobe Lightroom Classic (HKLM-x32\...\LTRM_8_3_1) (Version: 8.3.1 - Adobe Systems Incorporated)
Adobe Photoshop CC 2019 (HKLM-x32\...\PHSP_20_0_5) (Version: 20.0.5 - Adobe Systems Incorporated)
Adobe Premiere Pro 2020 (HKLM-x32\...\PPRO_14_0_1) (Version: 14.0.1 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\{4487064C-F31E-4499-A1EF-9B8E809A0358}) (Version: 12.3.5.205 - Adobe, Inc)
AIDA64 Extreme v5.80 (HKLM-x32\...\AIDA64 Extreme_is1) (Version: 5.80 - FinalWire Ltd.)
Allgemeine Runtime Files (x86) (HKLM\...\{1F6D1DB5-82B5-41A4-85A2-0A382C142A35}_is1) (Version: 1.0.5.1 - Sereby Corporation)
Audacity 2.3.3 (HKLM-x32\...\Audacity_is1) (Version: 2.3.3 - Audacity Team)
Autodesk Fusion 360 (HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\73e72ada57b7480280f7a6f4a289729f) (Version: 2.0.8624 - Autodesk, Inc.)
balenaEtcher 1.5.59 (HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\d2f3b6c7-6f49-59e2-b8a5-f72e33900c2b) (Version: 1.5.59 - Balena Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version:  - Blizzard Entertainment)
Call of Duty Modern Warfare (HKLM-x32\...\Call of Duty Modern Warfare) (Version:  - Blizzard Entertainment)
CCleaner (HKLM\...\CCleaner) (Version: 5.69 - Piriform)
ClockPro 1.2.1 (HKLM-x32\...\ClockPro) (Version: 1.2.1 - Texas Instruments Inc.)
Core Temp 1.13 (HKLM\...\{086D343F-8E78-4AFC-81AC-D6D414AFD8AC}_is1) (Version: 1.13 - ALCPU)
CPUID CPU-Z 1.86 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.86 - CPUID, Inc.)
CPUID HWMonitor 1.41 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.41 - CPUID, Inc.)
D3DX10 (HKLM-x32\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
dBpoweramp (HKLM-x32\...\dBpoweramp) (Version: Release 15.3 - Illustrate)
dBpoweramp DSP Effects (HKLM-x32\...\dBpoweramp DSP Effects) (Version: Release 11 - Illustrate)
dBpoweramp Ogg Vorbis Codec (HKLM-x32\...\dBpoweramp Ogg Vorbis Codec) (Version: Release 26 (Vorbis v1.3.6) - Illustrate)
Destiny 2 (HKLM-x32\...\Destiny 2) (Version:  - Blizzard Entertainment)
Diablo II (HKLM-x32\...\Diablo II) (Version: 0.0.0.0 - Blizzard Entertainment)
Diablo III (HKLM-x32\...\Diablo III) (Version:  - Blizzard Entertainment)
Discord (HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\Discord) (Version: 0.0.306 - Discord Inc.)
Dolby Digital Live Pack (HKLM-x32\...\Dolby Digital Live Pack) (Version: 3.03 - Creative Technology Limited)
Dropbox (HKLM-x32\...\Dropbox) (Version: 102.4.431 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.335.1 - Dropbox, Inc.) Hidden
DTS Connect Pack (HKLM-x32\...\DTS Connect Pack) (Version: 1.00 - Creative Technology Limited)
Elgato Stream Deck (HKLM\...\{3AC2CBFE-1D7D-4CE2-B578-94B684D706AA}) (Version: 4.8.1.13027 - Elgato Systems GmbH)
ElsterFormular (HKLM-x32\...\ElsterFormular) (Version: 20.1 - Thüringer Landesfinanzdirektion)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Equalizer APO (HKLM\...\EqualizerAPO) (Version: 1.2.1 - )
ESET Security (HKLM\...\{B489BC2D-0079-4631-97BF-CA2378299D43}) (Version: 13.2.16.0 - ESET, spol. s r.o.)
eXtreme Burner - AVR 1.4.2 (HKLM\...\{420475CC-5F81-421A-86A8-42FC1E147679}_is1) (Version: 1.4.2 - eXtreme Electronics, India.)
FAKEFACTORY Cinematic Mod 2013 (HKLM-x32\...\FAKEFACTORY CM2013beta 1) (Version: beta 1 - FAKEFACTORY)
FileZilla Client 3.46.3 (HKLM-x32\...\FileZilla Client) (Version: 3.46.3 - Tim Kosse)
Fotogalerie (HKLM-x32\...\{41BF4A3B-D60A-4E92-883F-C88C8C157261}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Game Capture HD60 Pro v1.1.0.185 (HKLM-x32\...\Software_Elgato_Game Capture HD60 Pro) (Version: 1.1.0.185 - Elgato Systems)
GerberLogix (HKLM-x32\...\{EDF2B212-F0B4-4313-BB9F-294CB9CF79EA}) (Version: 3.5 - EasyLogix)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 84.0.4147.105 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HD2 Toolkit Version 4.1 (HKLM-x32\...\{12EE0B2A-84C6-494E-A7AC-6771E898F6A0}_is1) (Version: 4.1 - Kaushal Subedi (KSubedi))
Hearthstone (HKLM-x32\...\Hearthstone) (Version:  - Blizzard Entertainment)
HitFilm Express (HKLM\...\{9878FC34-063A-4B70-BAC5-2D188AC11678}) (Version: 14.3.9931.38452 - FXHOME)
IGdm 3.0.1 (HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\1ead4f81-c61a-5fa6-9e81-7a8c0c868952) (Version: 3.0.1 - ifedapo olarewaju)
Image Resizer for Windows (64 bit) (HKLM\...\{2A1F3759-5792-469B-B895-7E29680F02F1}) (Version: 3.1.1.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{92916BDF-74CB-479C-B69E-32EACB074FFE}) (Version: 3.1.1.0 - Brice Lambson) Hidden
Image Resizer for Windows (HKLM-x32\...\{c624f5da-779e-4ccb-9ce1-34bc5ef0a6b9}) (Version: 3.1.1.0 - Brice Lambson)
Inkscape (HKLM-x32\...\Inkscape) (Version: 1.0.0- - Inkscape)
Intel(R) C++ Redistributables on Intel(R) 64 (HKLM-x32\...\{F70BCE36-25F2-4475-A918-6209B3D85BF3}) (Version: 15.0.179 - Intel Corporation)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1158 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.4624 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.5.0.1081 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{c7f54569-0018-439c-809a-48046a4d4ebc}) (Version: 10.1.1.9 - Intel(R) Corporation) Hidden
Java 8 Update 261 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
Java 8 Update 261 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180261F0}) (Version: 8.0.2610.12 - Oracle Corporation)
JDownloader 2 (HKLM\...\jdownloader2) (Version: 2.0 - AppWork GmbH)
Killer Performance Driver Suite (HKLM\...\{409DA386-33A4-4341-A320-359F0B8C003B}) (Version: 1.4.1492 - Rivet Networks)
Killer Performance Suite (HKLM-x32\...\{91E64D64-B120-4A10-9C70-AD39A1D9DFD3}) (Version: 1.1.65.1752 - Rivet Networks)
Last Year: The Nightmare (HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\478637764565401630) (Version:  - )
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Logitech G HUB (HKLM\...\{521c89be-637f-4274-a840-baaf7460c2b2}) (Version:  - Logitech)
Malwarebytes version 4.1.2.73 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.2.73 - Malwarebytes)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 84.0.522.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.133.5 - )
Microsoft Office Professional Plus 2019 - de-de (HKLM\...\ProPlus2019Retail - de-de) (Version: 16.0.13001.20384 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\OneDriveSetup.exe) (Version: 20.114.0607.0002 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61135 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61135 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61135 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61135 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61135 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{49e969a1-2990-464d-92b5-25f6f34573c6}) (Version: 12.0.40664.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{d2c8df0e-f15d-4426-9e51-f13f329f9cb4}) (Version: 12.0.40664.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual J# 2.0 Redistributable Package - SE (x64) (HKLM\...\Microsoft Visual J# 2.0 Redistributable Package - SE (x64)) (Version:  - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
MiniTool Partition Wizard Free 10.3 (HKLM\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version:  - MiniTool Software Limited)
Movie Maker (HKLM-x32\...\{70C91B91-61E8-4D06-86D6-A9DCC291983A}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Movie Maker (HKLM-x32\...\{DD67BE4B-7E62-4215-AFA3-F123A800A389}) (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
My Media for Alexa (64-bit) (HKLM\...\{BB60469F-2B55-4683-B6BD-BD8E5C8EB5CD}) (Version: 1.3.122.0 - bizmodeller)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.6.6 - Notepad++ Team)
NVAPI Monitor plugin for NvContainer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NvContainer.NvapiMonitor) (Version: 1.19 - NVIDIA Corporation) Hidden
NVIDIA GeForce Experience 3.20.2.34 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.20.2.34 - NVIDIA Corporation)
NVIDIA Grafiktreiber 441.66 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 441.66 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.21 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 21.1.2 - OBS Project)
obs-websocket version 4.8.0 (HKLM-x32\...\{117EE44F-48E1-49E5-A381-CC8D9195CF35}_is1) (Version: 4.8.0 - Stephane Lepin)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.13001.20144 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.13001.20384 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.13001.20144 - Microsoft Corporation) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
Open-Shell (HKLM\...\{FD722BB1-4960-455F-89C6-EFAEB79527EF}) (Version: 4.4.131 - The Open-Shell Team)
Overwatch (HKLM-x32\...\Overwatch) (Version:  - Blizzard Entertainment)
Project64 version 2.3.2.202 (HKLM-x32\...\{BEB5FB69-4080-466F-96C4-F15DF271718B}_is1) (Version: 2.3.2.202 - )
PuTTY release 0.73 (64-bit) (HKLM\...\{44F7642C-AB7E-4468-B028-E8D08A0CBB0E}) (Version: 0.73.0.0 - Simon Tatham)
Quartus II Programmer and SignalTap II 13.1.0.162 (HKLM-x32\...\Quartus II Programmer and SignalTap II 13.1.0.162) (Version: 13.1 - Altera Corporation)
ReaPlugs/x64 (HKLM\...\ReaPlugs) (Version:  - )
RetroArch 2020-01-15 (HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\RetroArch) (Version: 2020-01-15 - libretro)
ScummVM 1.7.0 (HKLM-x32\...\ScummVM_is1) (Version:  - The ScummVM Team)
SDFormatter (HKLM-x32\...\{179324FF-7B16-4BA8-9836-055CAAEE4F08}) (Version: 4.0.0 - SD Association)
Skype Version 8.53 (HKLM-x32\...\Skype_is1) (Version: 8.53 - Skype Technologies S.A.)
Skype™ 7.23 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.23.105 - Skype Technologies S.A.)
Snaz Version 1.12.7.0 (HKLM-x32\...\{70A76031-FDC6-4F9B-BB5C-33776703F45A}_is1) (Version: 1.12.7.0 - JimsApps)
Sound Blaster Z-Series (HKLM-x32\...\{0DF9A219-C781-49A7-B77F-F648698F54AD}) (Version: 1.01.05 - Creative Technology Limited)
Sound Blaster Z-Series Extras (HKLM-x32\...\{9D9DB4BA-E352-4AC8-AD2B-B10104F5AB80}) (Version: 1.0 - Creative Technology Limited)
Spotify (HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\Spotify) (Version: 1.1.38.558.g4b100958 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.8.68.0 - Safer-Networking Ltd.)
StarCraft (HKLM-x32\...\StarCraft) (Version:  - Blizzard Entertainment)
StarCraft II (HKLM-x32\...\StarCraft II) (Version:  - Blizzard Entertainment)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
StreamElements OBS.Live (HKLM-x32\...\StreamElements OBS.Live) (Version: 20.5.3.629 - StreamElements)
StreamFX for OBS Studio version 0.8.0.0 (HKLM-x32\...\{DE56A03A-C8A4-474B-83B0-CFD270262D38}}_is1) (Version: 0.8.0.0 - Xaymars Technology Workshop)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer (HKLM-x32\...\TeamViewer) (Version: 15.6.7 - TeamViewer)
Trillian (HKLM-x32\...\Trillian) (Version: 6.3.0.5 - Cerulean Studios, LLC)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
VBCABLE, The Virtual Audio Cable (HKLM\...\VB:VBCABLE {87459874-1236-4469}) (Version:  - VB-Audio Software)
VeraCrypt (HKLM-x32\...\VeraCrypt) (Version: 1.23-Hotfix-2 - IDRIX)
VLC media player (HKLM-x32\...\VLC media player) (Version: 3.0.8 - VideoLAN)
Voicemeeter, The Virtual Mixing Console (HKLM-x32\...\VB:Voicemeeter {17359A74-1236-5467}) (Version:  - VB-Audio Software)
WhatsApp (HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\WhatsApp) (Version: 2.2031.4 - WhatsApp)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.71 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
WinSCP 5.15.2 (HKLM-x32\...\winscp3_is1) (Version: 5.15.2 - Martin Prikryl)

Packages:
=========
@{Microsoft.Wasserburg_1.81.7678.2_x64__8wekyb3d8bbwe?ms-resource://Microsoft.Wasserburg/Resources/PackageName} -> C:\Program Files\WindowsApps\Microsoft.Wasserburg_1.81.7678.2_x64__8wekyb3d8bbwe [2019-03-13] (0)
Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_42.0.2.0_neutral__8xx8rvfyw5nnt [2019-12-19] (Instagram)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-20] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.7162.0_x64__8wekyb3d8bbwe [2020-07-22] (Microsoft Studios) [MS Ad]
Minecraft for Windows 10 -> C:\Program Files\WindowsApps\Microsoft.MinecraftUWP_1.16.1002.0_x64__8wekyb3d8bbwe [2020-07-22] (Microsoft Studios)
MPEG-2-Videoerweiterung -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-01-03] (Microsoft Corporation)
MSN Finanzen -> C:\Program Files\WindowsApps\Microsoft.BingFinance_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Reisen -> C:\Program Files\WindowsApps\Microsoft.BingTravel_3.0.4.336_x64__8wekyb3d8bbwe [2015-08-02] (Microsoft Corporation) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
MSN Wetter -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-25] (Microsoft Corporation) [MS Ad]
Player for YouTube HD -> C:\Program Files\WindowsApps\42731GoodMediaGroup.SimplePlayerforYouTube_1.1.17.0_x64__wzw6dymc89v9p [2020-01-28] (Good Media Group) [MS Ad]
Xbox Insider Hub -> C:\Program Files\WindowsApps\Microsoft.FlightDashboard_474.2007.28001.0_x64__8wekyb3d8bbwe [2020-07-30] (Microsoft Corporation)
Xbox Zubehör -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_300.1911.1001.0_x64__8wekyb3d8bbwe [2019-11-23] (Microsoft Corporation)

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001_Classes\CLSID\{a3d7e084-b0df-4d14-8e0a-27a572a6332c}\localserver32 -> "C:\Program Files\Sony\Imaging Edge Desktop\ied.exe" -ToastActivated => Keine Datei
CustomCLSID: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001_Classes\CLSID\{C4F0910E-E0B4-4E68-8086-452730C7A26A}\InprocServer32 -> C:\Users\Jan Behrens\AppData\Local\Autodesk\webdeploy\production\d329faf365c350668f1b0d009520835a9e1834a8\NPreview10.dll (Autodesk, Inc. -> )
CustomCLSID: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Jan Behrens\Dropbox [2014-11-16 18:38]
CustomCLSID: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1B} -> [JayAwesome87 Dropbox] => C:\Users\Jan Behrens\JayAwesome87 Dropbox0
ShellIconOverlayIdentifiers: [  DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [  DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Open-Shell\ClassicExplorer64.dll [2018-08-18] (Open-Shell) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers-x32: [  DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [  DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Open-Shell\ClassicExplorer64.dll [2018-08-18] (Open-Shell) [Datei ist nicht signiert]
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Keine Datei
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => C:\Program Files (x86)\Notepad++\NppShell_06.dll [2019-01-27] (Notepad++ -> )
ContextMenuHandlers1: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Keine Datei
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2020-07-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers1: [Image Resizer] -> {51B4D7E5-7568-4234-B4BB-47FB3C016A69} => C:\Program Files\Image Resizer for Windows\ShellExtensions.dll [2018-05-26] (Open Source Developer, Brice Lambson -> Brice Lambson)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2020-07-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [{4A7C4306-57E0-4C0C-83A9-78C1528F618C}] -> {4A7C4306-57E0-4C0C-83A9-78C1528F618C} =>  -> Keine Datei
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} =>  -> Keine Datei
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.43.0.dll [2020-07-08] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2017-03-17] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2019-12-07] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [BriefcaseMenu] -> {85BBD920-42A0-1069-A2E4-08002B30309D} =>  -> Keine Datei
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET NOD32 Antivirus\shellExt.dll [2020-07-30] (ESET, spol. s r.o. -> ESET)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-08-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2019-04-15] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2018-08-18] (Open-Shell) [Datei ist nicht signiert]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

==================== Verknüpfungen & WMI ========================

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2020-03-28 14:18 - 2020-03-28 14:18 - 000440320 ____N () [Datei ist nicht signiert] [Datei wird verwendet] C:\Users\Jan Behrens\AppData\Local\Temp\e713f5b240042fc8d8e9b43ad49e386d\aa72afbbe68477755587acf4c7ad99ab.dll
2020-05-21 00:00 - 2020-05-21 00:00 - 000118272 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Trillian\libexpat.dll
2020-05-21 00:00 - 2020-05-21 00:00 - 000014848 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Trillian\libgif.dll
2020-05-21 00:00 - 2020-05-21 00:00 - 000195072 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Trillian\libpng16.dll
2020-05-21 00:00 - 2020-05-21 00:00 - 000072192 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Trillian\libtinyxml2.dll
2020-05-21 00:00 - 2020-05-21 00:00 - 000074240 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Trillian\zlib.dll
2019-07-31 19:10 - 2019-07-31 19:10 - 000454656 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\VB\Voicemeeter\mp3lame\lame_enc.dll
2020-05-22 18:38 - 2020-05-22 18:38 - 000038400 _____ () [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\giflib5.dll
2020-05-22 18:38 - 2020-05-22 18:38 - 000098816 _____ () [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\QtZeroConf.dll
2020-05-22 18:38 - 2020-05-22 18:38 - 000720384 _____ () [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\turbojpeg.dll
2019-06-10 13:21 - 2019-06-10 13:21 - 000668160 _____ () [Datei ist nicht signiert] C:\Program Files\EqualizerAPO\EqualizerAPO.dll
2017-07-08 12:52 - 2017-07-08 12:52 - 002983917 _____ () [Datei ist nicht signiert] C:\Program Files\EqualizerAPO\libfftw3f-3.dll
2015-11-22 22:05 - 2015-11-22 22:05 - 001530880 _____ () [Datei ist nicht signiert] C:\Program Files\EqualizerAPO\libsndfile-1.dll
2016-04-29 14:22 - 2016-04-29 14:22 - 000009728 _____ () [Datei ist nicht signiert] c:\users\jan behrens\appdata\roaming\trillian\languages\de\buddy.dll
2016-04-29 14:22 - 2016-04-29 14:22 - 000006144 _____ () [Datei ist nicht signiert] c:\users\jan behrens\appdata\roaming\trillian\languages\de\talk.dll
2016-04-29 14:22 - 2016-04-29 14:22 - 000001536 _____ () [Datei ist nicht signiert] c:\users\jan behrens\appdata\roaming\trillian\languages\de\toolkit.dll
2012-11-28 09:21 - 2012-11-28 09:21 - 000005632 _____ () [Datei ist nicht signiert] c:\users\jan behrens\appdata\roaming\trillian\languages\de\trillian.dll
2020-03-29 23:27 - 2013-10-24 04:25 - 000032768 _____ () [Datei ist nicht signiert] d:\altera\13.1\qprogrammer\bin64\ccl_ver.dll
2020-03-29 23:27 - 2013-10-24 03:21 - 000879616 _____ () [Datei ist nicht signiert] d:\altera\13.1\qprogrammer\bin64\dinkum_alt.dll
2019-08-13 18:55 - 2009-03-18 16:00 - 000151552 ____N (Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\ShareDLL\CADI\CTCadiEP.dll
2014-07-03 17:22 - 2014-07-03 17:22 - 000555008 _____ (Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\CTAudEp.dll
2011-09-16 17:04 - 2011-09-16 17:04 - 000238080 _____ (Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\CTLoadRs.dll
2013-02-27 11:29 - 2013-02-27 11:29 - 000251904 _____ (Creative Technology Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Creative\Sound Blaster Z-Series\Sound Blaster Z-Series Control Panel\HKDetect.dll
2020-05-21 00:00 - 2020-05-21 00:00 - 000439808 _____ (hxxp://hunspell.github.io/) [Datei ist nicht signiert] C:\Program Files (x86)\Trillian\libhunspell.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000285696 _____ (Intel Corporation) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\PsiData.dll
2015-06-23 16:00 - 2015-06-23 16:00 - 000562688 _____ (Intel Corporation) [Datei ist nicht signiert] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ISDI2.dll
2020-07-16 14:00 - 2020-07-16 14:00 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2020-07-16 14:00 - 2020-07-16 14:00 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2018-08-18 23:57 - 2018-08-18 23:57 - 000880128 _____ (Open-Shell) [Datei ist nicht signiert] C:\Program Files\Open-Shell\ClassicExplorer64.dll
2018-08-18 23:57 - 2018-08-18 23:57 - 003447808 _____ (Open-Shell) [Datei ist nicht signiert] C:\Program Files\Open-Shell\StartMenuDLL.dll
2018-08-18 23:57 - 2018-08-18 23:57 - 000301568 _____ (Open-Shell) [Datei ist nicht signiert] C:\WINDOWS\system32\StartMenuHelper64.dll
2017-09-07 20:26 - 2017-09-07 20:26 - 000097792 _____ (Rivet Networks) [Datei ist nicht signiert] C:\Program Files\Killer Networking\Killer Control Center\KillerNetworkServicePS.dll
2020-05-22 18:38 - 2020-05-22 18:38 - 001742848 _____ (SQLite Development Team) [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\sqlite3.dll
2020-05-21 00:00 - 2020-05-21 00:00 - 000242688 _____ (The Independent JPEG Group) [Datei ist nicht signiert] C:\Program Files (x86)\Trillian\libjpeg.dll
2020-05-21 00:00 - 2020-05-21 00:00 - 002542592 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Trillian\libcrypto-1_1.dll
2020-05-21 00:00 - 2020-05-21 00:00 - 000534528 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Trillian\libssl-1_1.dll
2020-05-22 18:38 - 2020-05-22 18:38 - 002696704 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\libcrypto-1_1-x64.dll
2020-05-22 18:38 - 2020-05-22 18:38 - 000642560 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files\Elgato\StreamDeck\libssl-1_1-x64.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\.DEFAULT\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\.DEFAULT\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\.DEFAULT\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\.DEFAULT\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\.DEFAULT\...\123simsen.com -> www.123simsen.com

Da befinden sich 7942 mehr Seiten.

IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\123simsen.com -> www.123simsen.com

Da befinden sich 7946 mehr Seiten.


==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2016-05-15 14:05 - 2020-08-01 01:51 - 000455119 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1        www.007guard.com
127.0.0.1        007guard.com
127.0.0.1        008i.com
127.0.0.1        www.008k.com
127.0.0.1        008k.com
127.0.0.1        www.00hq.com
127.0.0.1        00hq.com
127.0.0.1        010402.com
127.0.0.1        www.032439.com
127.0.0.1        032439.com
127.0.0.1        www.0scan.com
127.0.0.1        0scan.com
127.0.0.1        1000gratisproben.com
127.0.0.1        www.1000gratisproben.com
127.0.0.1        1001namen.com
127.0.0.1        www.1001namen.com
127.0.0.1        100888290cs.com
127.0.0.1        www.100888290cs.com
127.0.0.1        www.100sexlinks.com
127.0.0.1        100sexlinks.com
127.0.0.1        10sek.com
127.0.0.1        www.10sek.com
127.0.0.1        www.1-2005-search.com
127.0.0.1        1-2005-search.com
127.0.0.1        123fporn.info
127.0.0.1        www.123fporn.info
127.0.0.1        123haustiereundmehr.com
127.0.0.1        www.123haustiereundmehr.com
127.0.0.1        123moviedownload.com
127.0.0.1        www.123moviedownload.com

Da befinden sich 15620 zusätzliche Einträge.


==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Common Files\Intel\Shared Libraries\redist\intel64\compiler;c:\windows\system32;c:\windows;c:\windows\system32\wbem;c:\windows\system32\windowspowershell\v1.0\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Program Files (x86)\Skype\Phone\;C:\WINDOWS\system32;C:\WINDOWS;C:\WINDOWS\System32\Wbem;C:\WINDOWS\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Windows Live\Shared;C:\WINDOWS\System32\OpenSSH\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\PuTTY\
HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
 ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\StartupApproved\Run: => "SpybotPostWindows10UpgradeReInstall"
HKU\S-1-5-21-4111253365-1997517826-1648085879-1001\...\StartupApproved\Run: => "PretzelSaltHelper"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{CC63D06C-D2A4-426D-9B37-8F0A08E00F15}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{37C85557-60F2-4D6E-B54D-46CEF3DB8AB0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [UDP Query User{30989385-8E6B-4F11-985F-B43C8C9B235B}C:\users\jan behrens\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jan behrens\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [TCP Query User{C995642A-94D6-48BE-ABA4-013937DD385E}C:\users\jan behrens\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\jan behrens\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{E9B1321A-55A0-4A76-AA18-72DD69053409}C:\program files (x86)\vb\voicemeeter\voicemeeter8.exe] => (Allow) C:\program files (x86)\vb\voicemeeter\voicemeeter8.exe (Vincent Burel -> VB-AUDIO Software)
FirewallRules: [TCP Query User{063D01BD-BC43-4175-8832-FE9B32FB6E8F}C:\program files (x86)\vb\voicemeeter\voicemeeter8.exe] => (Allow) C:\program files (x86)\vb\voicemeeter\voicemeeter8.exe (Vincent Burel -> VB-AUDIO Software)
FirewallRules: [UDP Query User{14CE444A-C95C-4571-A5CE-5C75AA43E858}C:\program files (x86)\vb\voicemeeter\voicemeetermacrobuttons.exe] => (Allow) C:\program files (x86)\vb\voicemeeter\voicemeetermacrobuttons.exe (Vincent Burel -> Audio Mechanic & Sound Breeder)
FirewallRules: [TCP Query User{E32A6A67-7C0F-46C8-97BE-424C666352D9}C:\program files (x86)\vb\voicemeeter\voicemeetermacrobuttons.exe] => (Allow) C:\program files (x86)\vb\voicemeeter\voicemeetermacrobuttons.exe (Vincent Burel -> Audio Mechanic & Sound Breeder)
FirewallRules: [UDP Query User{42BD249F-FD52-4855-9754-A93D6CFE1143}D:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) D:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [TCP Query User{A95E7AE7-D278-4B9B-8D86-4237964FACB8}D:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) D:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{76C60B48-55E8-4EFE-9EE7-D7E41C6E6528}C:\users\jan behrens\appdata\roaming\usbhelperlauncher\patched.exe] => (Allow) C:\users\jan behrens\appdata\roaming\usbhelperlauncher\patched.exe => Keine Datei
FirewallRules: [TCP Query User{D5274235-5195-4B02-B66D-04C6B975C8C3}C:\users\jan behrens\appdata\roaming\usbhelperlauncher\patched.exe] => (Allow) C:\users\jan behrens\appdata\roaming\usbhelperlauncher\patched.exe => Keine Datei
FirewallRules: [UDP Query User{1A1C26FE-1E3A-4E8F-A0DE-1B737DC66038}C:\users\jan behrens\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe] => (Allow) C:\users\jan behrens\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe => Keine Datei
FirewallRules: [TCP Query User{6820B4C5-7595-4552-A5C0-671939E7BFF4}C:\users\jan behrens\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe] => (Allow) C:\users\jan behrens\appdata\roaming\usbhelperlauncher\usbhelperlauncher.exe => Keine Datei
FirewallRules: [UDP Query User{AC759003-7AC9-447A-9DE9-C02F206E08B9}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{4B64E5FD-1191-4748-9CE1-2E83AABE5D53}C:\program files\lghub\lghub_agent.exe] => (Block) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{4EF2DE46-3825-491E-94DD-C7554CFC7715}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [TCP Query User{CD6AA33A-2597-4DE8-9F8B-1B0BD9D96656}C:\program files\lghub\lghub_agent.exe] => (Allow) C:\program files\lghub\lghub_agent.exe (Logitech Inc -> Logitech, Inc.)
FirewallRules: [UDP Query User{EA8B0863-C415-468A-9391-FBBAA65C5B7D}D:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe => Keine Datei
FirewallRules: [TCP Query User{F14468D5-B593-4144-9410-D2C5CE8963B2}D:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\fallout 4\fallout4.exe => Keine Datei
FirewallRules: [{E9BF252B-A45F-4656-9472-0ED12A436806}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Ori\ori.exe () [Datei ist nicht signiert]
FirewallRules: [{1CB6D3B4-1588-4C74-93F4-CD10BE823C53}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Ori\ori.exe () [Datei ist nicht signiert]
FirewallRules: [{D4F4303D-6AE3-4DE8-9CD9-03292316E911}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Ori DE\oriDE.exe () [Datei ist nicht signiert]
FirewallRules: [{B20B62D8-BA86-42E4-B945-55066C9D944A}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Ori DE\oriDE.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{22E70544-874D-4B2F-8F3E-C29C88C5E787}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe => Keine Datei
FirewallRules: [TCP Query User{D881959E-FD8C-4630-8114-F88C00FA546F}C:\program files\streamlabs obs\streamlabs obs.exe] => (Allow) C:\program files\streamlabs obs\streamlabs obs.exe => Keine Datei
FirewallRules: [{5E0B6D60-CC43-477A-98BA-5A3940B52C39}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{0E209FCD-9D4F-4D06-8D4C-69C13BB6BA1A}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\launcher.exe (Kristjan Skutta -> )
FirewallRules: [{C1705AFA-6576-4AD2-BB81-F46694C745BF}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{A3C22F3E-5629-46D7-880D-7E70707C794F}] => (Allow) D:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{E081C067-7DD9-494A-BA8E-622B54DE58D2}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{B21CCA18-0658-4E26-A783-3F15DC8A71DD}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{77318A92-D253-4361-8433-632E5DAF000B}C:\program files (x86)\trillian\trillian.exe] => (Allow) C:\program files (x86)\trillian\trillian.exe (Cerulean Studios, LLC -> Cerulean Studios)
FirewallRules: [TCP Query User{24643D4D-A5A7-4BCC-99BF-14E1F566473C}C:\program files (x86)\trillian\trillian.exe] => (Allow) C:\program files (x86)\trillian\trillian.exe (Cerulean Studios, LLC -> Cerulean Studios)
FirewallRules: [{4E693FB7-60CE-4D0E-AF4D-88F8DDB62C24}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2\hl2.exe (Valve -> )
FirewallRules: [{F56714E9-486F-4D91-8A5E-97B626BEEE7D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Half-Life 2\hl2.exe (Valve -> )
FirewallRules: [{88E8803E-0FBB-4603-B310-B634B1344316}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{18704BE4-A7C7-4158-8D5D-9DEE1B9314B6}] => (Allow) D:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{44A2B9A8-797B-4F5F-BD95-8655BEF413DA}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{164EC7BF-EC73-43C6-AAD0-D46220509E14}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{8F963E4A-63BC-4550-856B-A4C9CE9B9223}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{F15F0A9B-9183-4811-8338-3D5834C8D243}] => (Allow) LPort=2869
FirewallRules: [{AA042E52-E4CE-4C90-842B-6617C5B4DD53}] => (Allow) LPort=1900
FirewallRules: [{9EFB8C19-937C-44D9-984B-9722435B5FB0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{E8C463D6-66A4-4150-9460-46D1771FBF66}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{068AA092-48D9-45B1-B16E-5BB2581CEEEE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{2A16A022-9AC8-4687-B476-E2515AD93077}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{27F600CC-3C04-4BBA-BAB2-4EB22B1C96FF}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tricky Towers\TrickyTowers.exe () [Datei ist nicht signiert]
FirewallRules: [{A31DDF9C-8FD0-40F6-A37E-57591B12D185}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Tricky Towers\TrickyTowers.exe () [Datei ist nicht signiert]
FirewallRules: [{92D32821-9DDF-4F6B-8DC0-890BF1D3DFF3}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D8486DEF-1224-4DC0-BFF2-62397E2B7C05}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D037A973-FF45-44E2-A58A-16E3E3CC5CE0}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{12AA8834-E016-4E7E-887E-18588D1A27F8}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{4F8A8E27-DFDF-4820-B3BE-410B2FA7E38F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Black Mesa\bms.exe () [Datei ist nicht signiert]
FirewallRules: [{6A3AF3A8-5C45-419F-B865-17AA1BE0692F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Black Mesa\bms.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{9989DA63-D9FE-4F64-ACE4-FCBBD78FE4F5}C:\users\jan behrens\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\jan behrens\appdata\local\jdownloader v2.0\jdownloader2.exe (AppWork GmbH -> AppWork GmbH)
FirewallRules: [UDP Query User{C01474C2-3745-411E-A360-CE94286B74AB}C:\users\jan behrens\appdata\local\jdownloader v2.0\jdownloader2.exe] => (Allow) C:\users\jan behrens\appdata\local\jdownloader v2.0\jdownloader2.exe (AppWork GmbH -> AppWork GmbH)
FirewallRules: [TCP Query User{3CD1F1B9-4366-40E7-8DEC-D6CC0F3D3034}D:\program files (x86)\premierepro\adobe premiere pro 2020\dvaaudiofilterscan.exe] => (Block) D:\program files (x86)\premierepro\adobe premiere pro 2020\dvaaudiofilterscan.exe (Adobe Inc. -> Adobe)
FirewallRules: [UDP Query User{8783C470-19EB-4ED5-BE31-54520C78F3BC}D:\program files (x86)\premierepro\adobe premiere pro 2020\dvaaudiofilterscan.exe] => (Block) D:\program files (x86)\premierepro\adobe premiere pro 2020\dvaaudiofilterscan.exe (Adobe Inc. -> Adobe)
FirewallRules: [TCP Query User{EB9FCAC3-7A99-4E26-9B55-4FD74B97F994}C:\users\jan behrens\appdata\local\temp\jivexviewer\jre\bin\jivex dicom cd viewer] => (Allow) C:\users\jan behrens\appdata\local\temp\jivexviewer\jre\bin\jivex dicom cd viewer => Keine Datei
FirewallRules: [UDP Query User{8AEF5196-45D4-43EC-97A1-7CC992E826E3}C:\users\jan behrens\appdata\local\temp\jivexviewer\jre\bin\jivex dicom cd viewer] => (Allow) C:\users\jan behrens\appdata\local\temp\jivexviewer\jre\bin\jivex dicom cd viewer => Keine Datei
FirewallRules: [{85E04ADB-1476-40D8-B706-F90B2CF3B6F8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Ori and the Will of the Wisps\oriwotw.exe () [Datei ist nicht signiert]
FirewallRules: [{03E78677-F31A-49DF-AFB4-EC6E5954861D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Ori and the Will of the Wisps\oriwotw.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{777EC042-A488-4C28-99DE-BDF996AACB65}C:\program files\adiirc\adiirc.exe] => (Allow) C:\program files\adiirc\adiirc.exe (AdiIRC.com) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{978421B8-6867-4A80-81E1-A2188A8FA665}C:\program files\adiirc\adiirc.exe] => (Allow) C:\program files\adiirc\adiirc.exe (AdiIRC.com) [Datei ist nicht signiert]
FirewallRules: [{AC86590F-8238-46CC-B54A-5B65547CCC27}] => (Allow) D:\altera\13.1\qprogrammer\bin64\jtagserver.exe () [Datei ist nicht signiert]
FirewallRules: [{5ABF1005-0C81-49E8-BB05-C8FE2458D38B}] => (Allow) D:\altera\13.1\qprogrammer\bin64\jtagserver.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{3FF8F49B-7070-4433-B1B8-D70C1CC057E9}D:\altera\13.1\qprogrammer\bin\quartus_pgmw.exe] => (Allow) D:\altera\13.1\qprogrammer\bin\quartus_pgmw.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{AD709627-FD48-430D-A522-758842562E88}D:\altera\13.1\qprogrammer\bin\quartus_pgmw.exe] => (Allow) D:\altera\13.1\qprogrammer\bin\quartus_pgmw.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{B93251DD-16D4-4E8D-9B12-DD961A899950}D:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [UDP Query User{3A6BD7A4-6A6F-4A29-A33F-2CC45505EF22}D:\program files (x86)\call of duty modern warfare\modernwarfare.exe] => (Allow) D:\program files (x86)\call of duty modern warfare\modernwarfare.exe (Activision Publishing Inc -> Activision)
FirewallRules: [{6E27FD2C-352E-4091-A5C6-5811E2AE1A7A}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Duke Nukem 3D Twentieth Anniversary World Tour\duke3d.exe () [Datei ist nicht signiert]
FirewallRules: [{167C2060-68A4-451D-8FB8-40644A791654}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Duke Nukem 3D Twentieth Anniversary World Tour\duke3d.exe () [Datei ist nicht signiert]
FirewallRules: [{E7782F32-FC19-4399-A23D-89AD0A52D675}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Bloodstained Ritual of the Night\BloodstainedRotN.exe () [Datei ist nicht signiert]
FirewallRules: [{454A3697-D7A0-44D5-A142-5CF97ED62AA8}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Bloodstained Ritual of the Night\BloodstainedRotN.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{F451130F-E5B2-4EF6-B44C-CBA6A8E49AF3}D:\program files (x86)\steam\steamapps\common\bloodstained ritual of the night\bloodstainedrotn\binaries\win64\bloodstainedrotn-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\bloodstained ritual of the night\bloodstainedrotn\binaries\win64\bloodstainedrotn-win64-shipping.exe (ArtPlay) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{D1240888-38FC-4AF7-A84B-1DF5996A184F}D:\program files (x86)\steam\steamapps\common\bloodstained ritual of the night\bloodstainedrotn\binaries\win64\bloodstainedrotn-win64-shipping.exe] => (Allow) D:\program files (x86)\steam\steamapps\common\bloodstained ritual of the night\bloodstainedrotn\binaries\win64\bloodstainedrotn-win64-shipping.exe (ArtPlay) [Datei ist nicht signiert]
FirewallRules: [{186E0A29-5A44-4A00-9B74-1A564EB4FCB6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{DDEC404C-150C-4A2B-85C1-7317231466FC}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{6D43DD66-38C9-4220-B8F6-B381FDEA1A74}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{10D7479E-BAA4-4764-A475-E877082A7601}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{F8EE4958-3E1C-4CDD-A9BA-B94D0C6F4590}D:\users\jan behrens\downloads\downloader_diablo2_lord_of_destruction_dede.exe] => (Allow) D:\users\jan behrens\downloads\downloader_diablo2_lord_of_destruction_dede.exe => Keine Datei
FirewallRules: [UDP Query User{9914CA3B-10EF-4B3E-88C0-EF3F133C3E2C}D:\users\jan behrens\downloads\downloader_diablo2_lord_of_destruction_dede.exe] => (Allow) D:\users\jan behrens\downloads\downloader_diablo2_lord_of_destruction_dede.exe => Keine Datei
FirewallRules: [TCP Query User{74E807B5-C8E2-494E-9319-26BA1A82851A}D:\users\jan behrens\downloads\downloader_diablo2_dede.exe] => (Allow) D:\users\jan behrens\downloads\downloader_diablo2_dede.exe => Keine Datei
FirewallRules: [UDP Query User{9875B469-C39D-4B80-9490-20093C5C9C49}D:\users\jan behrens\downloads\downloader_diablo2_dede.exe] => (Allow) D:\users\jan behrens\downloads\downloader_diablo2_dede.exe => Keine Datei
FirewallRules: [TCP Query User{5FBFD9B1-3B89-4A35-9293-E44A0986424A}D:\users\jan behrens\downloads\v4.6_portable\v4.6_portable\arduino ide portable\java\bin\javaw.exe] => (Allow) D:\users\jan behrens\downloads\v4.6_portable\v4.6_portable\arduino ide portable\java\bin\javaw.exe
FirewallRules: [UDP Query User{EF704ECC-3C7A-4281-8038-C12E6B458494}D:\users\jan behrens\downloads\v4.6_portable\v4.6_portable\arduino ide portable\java\bin\javaw.exe] => (Allow) D:\users\jan behrens\downloads\v4.6_portable\v4.6_portable\arduino ide portable\java\bin\javaw.exe
FirewallRules: [{A77EE76B-2C95-428E-8814-7DC80387F2FC}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe (Valve -> )
FirewallRules: [{97201482-DE52-4C0F-8E0B-CC74D3DD6C4F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Portal\hl2.exe (Valve -> )
FirewallRules: [{60A62741-E8DE-4A1A-B2E0-122C99E899C7}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [{D19C470A-6A72-4E8F-BFAD-679FB8D7A93C}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Portal 2\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [{EF3FA96C-8D0D-4487-BBB6-9D0E6389E338}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Thinking with Time Machine\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [{5A0A8BFC-DE1F-4B0A-9D2E-B17B8B4A1553}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Thinking with Time Machine\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [{2924D19F-B709-44A5-9BC8-32A602F754B4}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Thinking with Time Machine\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{36F5FEB1-001A-4E41-8793-F138488E49B7}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Thinking with Time Machine\bin\SDKLauncher.exe (Valve -> )
FirewallRules: [{643FE428-671A-493D-BC84-EE8C49C41372}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Datei ist nicht signiert]
FirewallRules: [{063B1061-FE8D-41B8-BC7A-3430FF116B53}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\The Witcher 3\bin\x64\witcher3.exe (CD Projekt Red) [Datei ist nicht signiert]
FirewallRules: [{2B2CA9F9-13AB-4363-9406-0D4B5A09B54D}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe () [Datei ist nicht signiert]
FirewallRules: [{6857BE75-7527-480E-818E-360A23705953}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Left 4 Dead 2\left4dead2.exe () [Datei ist nicht signiert]
FirewallRules: [{C47FAE29-D66C-4D18-A963-B7AE3C23497E}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{0C0A39E6-8645-4DAA-8801-E5217D3F9160}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{8C8CE388-827E-4726-B738-794D1E0F67E6}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{A0713B89-CBBA-48BE-A53B-E428CE2C2F4C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
FirewallRules: [{6BB7E49E-A924-49C8-816A-EEB24F055059}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Doom 64\DOOM64_x64.exe () [Datei ist nicht signiert]
FirewallRules: [{24DBE8E4-F9E4-4BD5-8D31-17E3F14DBC4F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\Doom 64\DOOM64_x64.exe () [Datei ist nicht signiert]
FirewallRules: [{25054CCC-93C8-40A0-8B22-DD1B09F997BA}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\DOOMEternal\idTechLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{AABAF89A-D5E8-4820-8AF2-1BCF853F870F}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\DOOMEternal\idTechLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{8A2E8115-9C7E-4A11-965A-E0D49249654F}] => (Allow) C:\Program Files\Elgato\StreamDeck\StreamDeck.exe (Corsair Memory, Inc. -> Corsair Memory, Inc)
FirewallRules: [{6D2B02ED-2E82-4508-8A49-0EFF979C66FF}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{504F8B24-34F1-43CC-AA47-D5EA586DB208}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{2450E9C3-8F04-46F5-BD14-E06FFC06B4B0}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D0FCE70B-6913-4758-82A7-9902D26B81E8}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{36561211-36F5-4CC6-8D2E-60ED97574995}C:\program files (x86)\obs-studio\bin\64bit\obs64.exe] => (Allow) C:\program files (x86)\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [UDP Query User{69EEDCF9-5835-41CB-82E7-652E9EEBCD44}C:\program files (x86)\obs-studio\bin\64bit\obs64.exe] => (Allow) C:\program files (x86)\obs-studio\bin\64bit\obs64.exe (Hugh Bailey -> OBS)
FirewallRules: [{15B6B7E3-6A63-4235-AA98-B12CE98287F4}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{E735FFEC-6D4C-4DA7-BBD0-00B8E47B8759}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7B5BFC28-1CFD-41EF-9960-B5BC342C39AA}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{AFAB72F4-1F79-4A4B-9BA4-067E8450F405}] => (Allow) LPort=52050
FirewallRules: [{D9385404-4469-46DB-8920-04055D301B49}] => (Allow) LPort=52050
FirewallRules: [{044D31F4-43FF-4FB2-84E7-2A626EC3EC57}] => (Allow) LPort=52050
FirewallRules: [{BD3A2157-A081-4BAC-BF9C-8B645B8612D7}] => (Allow) LPort=52051
FirewallRules: [{20BD9AEB-6133-418C-8139-CAEE53FC5C3E}] => (Allow) LPort=52051
FirewallRules: [{AFA9777B-543F-4542-8C60-D63BDE9C81B4}] => (Allow) LPort=52051
FirewallRules: [TCP Query User{FD6FBD83-FA75-4B37-8C76-87DCEB7D050B}D:\users\jan behrens\downloads\lioranboard\lioranboard receiver(pc)\lioranboard receiver.exe] => (Allow) D:\users\jan behrens\downloads\lioranboard\lioranboard receiver(pc)\lioranboard receiver.exe => Keine Datei
FirewallRules: [UDP Query User{D6DE876C-72A4-4EA8-A83E-70717816C6D4}D:\users\jan behrens\downloads\lioranboard\lioranboard receiver(pc)\lioranboard receiver.exe] => (Allow) D:\users\jan behrens\downloads\lioranboard\lioranboard receiver(pc)\lioranboard receiver.exe => Keine Datei
FirewallRules: [TCP Query User{0DB31AAF-A2DF-45D6-B9B5-6CCE7A4E8DA2}D:\twitch\lioranboard\lioranboard receiver(pc)\lioranboard receiver.exe] => (Allow) D:\twitch\lioranboard\lioranboard receiver(pc)\lioranboard receiver.exe (Lioran) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{3E91C729-B51C-4806-A4C7-A0CC7B792BED}D:\twitch\lioranboard\lioranboard receiver(pc)\lioranboard receiver.exe] => (Allow) D:\twitch\lioranboard\lioranboard receiver(pc)\lioranboard receiver.exe (Lioran) [Datei ist nicht signiert]
FirewallRules: [{59BDF4BF-37DD-4BCD-BCDD-88C0CE783DC2}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [{438D5EC2-8C48-430D-AE80-F5DA3BD11F96}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{83D3B86F-419D-451F-905E-785BC3FD7A7C}] => (Allow) D:\Program Files (x86)\Steam\SteamApps\common\wallpaper_engine\bin\diagnostics32.exe (Kristjan Skutta -> )
FirewallRules: [{8752A4A6-62DD-45CB-B57D-0E7F72E4E28A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service

==================== Wiederherstellungspunkte =========================

ACHTUNG: Systemwiederherstellung ist deaktiviert (Total:118.38 GB) (Free:27.48 GB) (23%)

==================== Fehlerhafte Geräte im Gerätemanager ============


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (08/01/2020 02:54:29 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: Alpha)
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (08/01/2020 02:52:56 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]

Error: (08/01/2020 02:48:56 AM) (Source: Microsoft-Windows-PerfNet) (EventID: 2004) (User: Alpha)
Description: Das Serverdienst-Leistungsobjekt kann nicht geöffnet werden. Die ersten vier Bytes (DWORD) des Datenabschnitts enthalten den Statuscode.

Error: (08/01/2020 02:47:29 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.

Error: (08/01/2020 02:47:29 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]

Error: (08/01/2020 02:47:29 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.

Error: (08/01/2020 02:47:29 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]

Error: (08/01/2020 02:45:08 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4912,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\syswow64\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


Systemfehler:
=============
Error: (08/01/2020 02:57:13 AM) (Source: DCOM) (EventID: 10010) (User: Alpha)
Description: Der Server "Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (08/01/2020 02:53:39 AM) (Source: DCOM) (EventID: 10010) (User: Alpha)
Description: Der Server "Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (08/01/2020 02:50:06 AM) (Source: DCOM) (EventID: 10010) (User: Alpha)
Description: Der Server "Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (08/01/2020 02:48:24 AM) (Source: DCOM) (EventID: 10010) (User: Alpha)
Description: Der Server "Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (08/01/2020 02:18:43 AM) (Source: DCOM) (EventID: 10010) (User: NT-AUTORITÄT)
Description: Der Server "{F3B4E234-7A68-4E43-B813-E4BA55A065F6}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (08/01/2020 02:05:10 AM) (Source: DCOM) (EventID: 10010) (User: Alpha)
Description: Der Server "Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (08/01/2020 02:04:57 AM) (Source: DCOM) (EventID: 10010) (User: Alpha)
Description: Der Server "Microsoft.SkypeApp_15.61.100.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (08/01/2020 01:50:02 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Spybot Security Center Integration Service" wurde aufgrund folgenden Fehlers nicht gestartet:
Die digitale Signatur dieser Datei kann nicht überprüft werden. Möglicherweise wurde durch eine kürzlich durchgeführte Hardware- oder Softwareänderung eine falsch signierte oder beschädigte Datei oder eine Datei, bei der es sich um böswillige Software aus einer unbekannten Quelle handelt, installiert.


Windows Defender:
===================================
Date: 2019-09-26 00:08:51.911
Description:
Windows Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Adware:JS/InjectorAd.A&threatid=258409&enterprise=0
Name: Adware:JS/InjectorAd.A
ID: 258409
Schweregrad: Hoch
Kategorie: Adware
Pfad: file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005ee8; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f00; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f0a; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f4a; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f4b; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f6f; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f74; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f76; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f7f; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f83; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f8e; file:_C:\Users\Jan Behrens\AppData\Local\Goo
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
Sicherheitsversion: AV: 1.303.147.0, AS: 1.303.147.0, NIS: 1.303.147.0
Modulversion: AM: 1.1.16400.2, NIS: 1.1.16400.2

Date: 2019-09-26 00:05:29.483
Description:
Windows Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Adware:JS/InjectorAd.A&threatid=258409&enterprise=0
Name: Adware:JS/InjectorAd.A
ID: 258409
Schweregrad: Hoch
Kategorie: Adware
Pfad: file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005ee8; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f00; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f0a; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f4a; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f4b; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f6f; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f74; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f76; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f7f; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f83; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f8e; file:_C:\Users\Jan Behrens\AppData\Local\Goo
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
Sicherheitsversion: AV: 1.303.147.0, AS: 1.303.147.0, NIS: 1.303.147.0
Modulversion: AM: 1.1.16400.2, NIS: 1.1.16400.2

Date: 2019-09-25 23:57:25.931
Description:
Windows Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Adware:JS/InjectorAd.A&threatid=258409&enterprise=0
Name: Adware:JS/InjectorAd.A
ID: 258409
Schweregrad: Hoch
Kategorie: Adware
Pfad: file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005ee8; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f00; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f0a; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f4a; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f4b; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f6f; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f74; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f76; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f7f; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f83; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f8e; file:_C:\Users\Jan Behrens\AppData\Local\Goo
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
Sicherheitsversion: AV: 1.303.147.0, AS: 1.303.147.0, NIS: 1.303.147.0
Modulversion: AM: 1.1.16400.2, NIS: 1.1.16400.2

Date: 2019-09-25 23:57:24.617
Description:
Windows Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Adware:JS/InjectorAd.A&threatid=258409&enterprise=0
Name: Adware:JS/InjectorAd.A
ID: 258409
Schweregrad: Hoch
Kategorie: Adware
Pfad: file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005ee8; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f00; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f0a; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f4a; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f4b; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f6f; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f74; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f76; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f7f; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f83; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f8e; file:_C:\Users\Jan Behrens\AppData\Local\Goo
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
Sicherheitsversion: AV: 1.303.147.0, AS: 1.303.147.0, NIS: 1.303.147.0
Modulversion: AM: 1.1.16400.2, NIS: 1.1.16400.2

Date: 2019-09-25 23:57:18.474
Description:
Windows Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Adware:JS/InjectorAd.A&threatid=258409&enterprise=0
Name: Adware:JS/InjectorAd.A
ID: 258409
Schweregrad: Hoch
Kategorie: Adware
Pfad: file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005ee8; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f00; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f0a; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f4a; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f4b; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f6f; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f74; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f76; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f7f; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f83; file:_C:\Users\Jan Behrens\AppData\Local\Google\Chrome\User Data\Default\Cache\f_005f8e; file:_C:\Users\Jan Behrens\AppData\Local\Goo
Erkennungsursprung: Unbekannt
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: NT-AUTORITÄT\SYSTEM
Prozessname: C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
Sicherheitsversion: AV: 1.303.147.0, AS: 1.303.147.0, NIS: 1.303.147.0
Modulversion: AM: 1.1.16400.2, NIS: 1.1.16400.2

CodeIntegrity:
===================================

Date: 2020-08-01 03:03:29.968
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Program Files\ESET\ESET NOD32 Antivirus\eamsi.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2020-08-01 02:59:35.539
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-01 02:59:35.536
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-01 02:59:35.533
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-01 02:59:34.601
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-01 02:59:34.597
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-01 02:59:34.595
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-01 02:59:19.779
Description:
Code Integrity determined that a process (\Device\HarddiskVolume1\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume1\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Speicherinformationen ===========================

BIOS: American Megatrends Inc. V1.13 02/16/2016
Hauptplatine: MSI Z97 GAMING 5 (MS-7917)
Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 47%
Installierter physikalischer RAM: 15818.59 MB
Verfügbarer physikalischer RAM: 8352.78 MB
Summe virtueller Speicher: 22730.59 MB
Verfügbarer virtueller Speicher: 13933.23 MB

==================== Laufwerke ================================

Drive c: (Windows) (Fixed) (Total:118.38 GB) (Free:27.48 GB) NTFS ==>[Laufwerk mit Startkomponenten (eingeholt von BCD)]
Drive d: (Daten) (Fixed) (Total:931.51 GB) (Free:119.52 GB) NTFS
Drive e: (Datengrab) (Fixed) (Total:1397.26 GB) (Free:1268.17 GB) NTFS

\\?\Volume{1980bbb7-0000-0000-0000-80981d000000}\ () (Fixed) (Total:0.86 GB) (Free:0.4 GB) NTFS

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 119.2 GB) (Disk ID: 1980BBB7)
Partition 1: (Active) - (Size=118.4 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=878 MB) - (Type=27)

==========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 4A6EC672)
Partition 1: (Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1397.3 GB) (Disk ID: 05CEE7F6)
Partition 1: (Active) - (Size=1397.3 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt =======================
--- --- ---

cosinus 01.08.2020 15:01
Zitat:
Ich habe also meinen Antivirus (NOD32) und Spybot durchlaufen und Probleme beheben lassen.
Solche Nacherzählungen helfen in keinster Weise weiter. Bei Funden immer die Logs dazu posten.

JayAwesome 02.08.2020 01:27
Logs kommen natürlich. :) Und bis ich weiter irgendwelche Programme drüberlaufen lasse, warte ich erstmal auf eure Hilfe! :)

NOD32:

Code:
<?xml version="1.0" encoding="utf-8" ?>
<ESET>
  <LOG>
    <RECORD>
      <COLUMN NAME="Zeit">13.05.2020 19:10:18</COLUMN>
      <COLUMN NAME="Scanner">JavaScript-Scanner</COLUMN>
      <COLUMN NAME="Objekttyp">Datei</COLUMN>
      <COLUMN NAME="Objekt">https://keto.bestpill.icu/keto-pills.php?affname=&amp;keyword=&amp;key=eyJ0aW1lc3RhbXAiOiIxNTg5Mzg5ODE2IiwiaGFzaCI6Ijk1YWQyNzQwNjhmZTQ2ZDdkZTg1OGM3MmU0MjcxMDE1MTRhNzAyMzgifQ==&amp;bemobdata=c=2c917040-b786-4bec-9814-d91cb09c8cba..f=3fd26ba2-76c0-4674-8f3e-bf9de21526b1..a=0..b=1..r=https%3A%2F%2Fwww.google.com%2F</COLUMN>
      <COLUMN NAME="Erkennung">JS/Adware.Agent.AF Anwendung</COLUMN>
      <COLUMN NAME="Aktion">blockiert</COLUMN>
      <COLUMN NAME="Benutzer">Alpha\Jan Behrens</COLUMN>
      <COLUMN NAME="Information">Ein Ereignis ist aufgetreten, als die folgende Anwendung versucht hat, auf das Internet zuzugreifen: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (784ADEE709B6056B1EE337B7E1D1E2537B4A1A3E).</COLUMN>
      <COLUMN NAME="Hash">3F8228C0BC6C0DF8201EC5C2C48715159F7A3A68</COLUMN>
      <COLUMN NAME="Zuerst hier gesehen"></COLUMN>
    </RECORD>
    <RECORD>
      <COLUMN NAME="Zeit">01.08.2020 01:16:12</COLUMN>
      <COLUMN NAME="Scanner">Echtzeit-Dateischutz</COLUMN>
      <COLUMN NAME="Objekttyp">Datei</COLUMN>
      <COLUMN NAME="Objekt">D:\Users\Jan Behrens\Downloads\589b6ad7-d245-4b82-ba88-d2e0c66442e0.tmp</COLUMN>
      <COLUMN NAME="Erkennung">Win32/CCleaner potenziell unsichere Anwendung</COLUMN>
      <COLUMN NAME="Aktion">Gesäubert durch Löschen (nach dem nächsten Neustart)</COLUMN>
      <COLUMN NAME="Benutzer">Alpha\Jan Behrens</COLUMN>
      <COLUMN NAME="Information">Ereignis beim Bearbeiten einer Datei durch die Anwendung: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (EE608B5EE032C5A704D04E997A4F16CE0F1EDFE9).</COLUMN>
      <COLUMN NAME="Hash">589BA00EF28503DCA9BD36CDCA5DC435802CE856</COLUMN>
      <COLUMN NAME="Zuerst hier gesehen"></COLUMN>
    </RECORD>
 </LOG>
</ESET>
Spybot
Code:
Search results from Spybot - Search & Destroy

01.08.2020 02:16:01
Scan took 00:23:06.
57 items found.

PU.DownloadAdmin: [SBI $ED59426F] Settings (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Internet Explorer\DOMStorage\betrad.com
  Category=PUPS
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Log: [SBI $ASBRHIST]  Install: setupact.log (File, nothing done)
  C:\WINDOWS\setupact.log
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54
  Properties.size=11190
  Properties.md5=4BB112F4262DE4BABF3BAB72C1DCAA75
  Properties.filedate=1595697678
  Properties.filedatetext=2020-07-25 17:21:18

dBpowerAMP: [SBI $27FCE0CA] Last used codec (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Illustrate\dBpowerAMP\dMCLastCodec
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

dBpowerAMP: [SBI $E0ADCCD2] Last conversion folder #0 (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Illustrate\dBpowerAMP\dMCLastFolder0
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

dBpowerAMP: [SBI $16A3FAEB] Last conversion folder #1 (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Illustrate\dBpowerAMP\dMCLastFolder1
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

dBpowerAMP: [SBI $D7C0A6E1] Last conversion folder #2 (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Illustrate\dBpowerAMP\dMCLastFolder2
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

dBpowerAMP: [SBI $21CE90D8] Last conversion folder #3 (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Illustrate\dBpowerAMP\dMCLastFolder3
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

dBpowerAMP: [SBI $760418D8] Last MP3 user folder (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Illustrate\dBpowerAMP\dMCCodec\Mp3 (Lame)\DMCUserFolderStr
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\TypedURLs
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\TypedURLs
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Internet Explorer: [SBI $1E8157BE] Typed URL list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Internet Explorer\TypedURLs
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
  HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
  HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
  HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Internet Explorer: [SBI $0BC7B918] User agent (Registry Change, nothing done)
  HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings\User Agent
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS Management Console: [SBI $ECD50EAD] Recent command list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Microsoft Management Console\Recent File List
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS Media Player: [SBI $5C51E349] Client ID (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\MediaPlayer\Player\Settings\Client ID
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS Direct3D: [SBI $7FB7B83F] Most recent application (Registry Change, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Direct3D\MostRecentApplication\Name
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS DirectDraw: [SBI $EB49D5AF] Most recent application (Registry Change, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DirectDraw\MostRecentApplication\Name
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS DirectInput: [SBI $9A063C91] Most recent application (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\DirectInput\MostRecentApplication\Name
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS DirectInput: [SBI $7B184199] Most recent application ID (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\DirectInput\MostRecentApplication\Id
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS Paint: [SBI $07867C39] Recent file list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Paint\Recent File List
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS Paint: [SBI $07867C39] Recent file list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Applets\Paint\Recent File List
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS Regedit: [SBI $C3B62FC1] Recent open key (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Applets\Regedit\LastKey
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

MS Regedit: [SBI $C3B62FC1] Recent open key (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Applets\Regedit\LastKey
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows: [SBI $1E4E2003] Drivers installation paths (Registry Change, nothing done)
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup\Installation Sources
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $D479745D] Open with list - .AEP extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AEP\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $D479745D] Open with list - .AEP extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AEP\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $F6D91293] Open with list - .AI extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AI\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $F6D91293] Open with list - .AI extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AI\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $CDE7D0A6] Open with list - .ASX extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ASX\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $CDE7D0A6] Open with list - .ASX extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ASX\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $F7204896] Open with list - .AVI extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $F7204896] Open with list - .AVI extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.AVI\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $691C1B44] Open with list - .BIN extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BIN\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $691C1B44] Open with list - .BIN extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BIN\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $A1C94E79] Open with list - .BMP extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BMP\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $A1C94E79] Open with list - .BMP extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.BMP\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $ECC28BDF] Open with list - .CSV extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CSV\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $F34FE1D0] Open with list - .CUE extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CUE\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows.OpenWith: [SBI $F34FE1D0] Open with list - .CUE extension (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.CUE\OpenWithList
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows Explorer: [SBI $7308A845] Run history (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows Explorer: [SBI $7308A845] Run history (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Explorer\RunMRU
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Windows Explorer: [SBI $D20DA0AD] Recent file global history (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-500\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

WinRAR: [SBI $0B56E92B] Recent file list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\WinRAR\ArcHistory
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

WinRAR: [SBI $A59A1C0A] Recent exe file list (Registry Key, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\WinRAR\DialogEditHistory\ArcName
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

WinRAR: [SBI $B84F9965] Last used directory (Registry Change, nothing done)
  HKEY_USERS\S-1-5-21-4111253365-1997517826-1648085879-1001\Software\WinRAR\General\LastFolder
  Category=Tracks
  ThreatLevel=2
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Cookie: [SBI $BCOOKIES] Browser: Cookie (9) (Browser: Cookie, nothing done)
 
  Category=Browser
  ThreatLevel=1
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Cache: [SBI $BCACHE00] Browser: Cache (39) (Browser: Cache, nothing done)
 
  Category=Browser
  ThreatLevel=1
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Verlauf: [SBI $BHISTORY] Browser: History (342) (Browser: History, nothing done)
 
  Category=Browser
  ThreatLevel=1
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Cookie: [SBI $BCOOKIES] Browser: Cookie (2273) (Browser: Cookie, nothing done)
 
  Category=Browser
  ThreatLevel=1
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Cookie: [SBI $BCOOKIES] Browser: Cookie (27) (Browser: Cookie, nothing done)
 
  Category=Browser
  ThreatLevel=1
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54

Cache: [SBI $BCACHE00] Browser: Cache (112) (Browser: Cache, nothing done)
 
  Category=Browser
  ThreatLevel=1
  Weblink=hxxp://forums.spybot.info/forumdisplay.php?54


--- Spybot - Search & Destroy version: 2.8.68.132  DLL (build: 20200426) ---

2019-03-19 blindman.exe (2.8.67.152)
2020-04-26 explorer.exe (2.8.68.193)
2019-03-19 SDBootCD.exe (2.8.67.109)
2019-03-19 SDCleaner.exe (2.8.67.110)
2019-03-19 SDDelFile.exe (2.8.67.94)
2020-04-26 SDFiles.exe (2.8.68.138)
2020-04-26 SDFileScanHelper.exe (2.8.68.8)
2020-04-26 SDFSSvc.exe (2.8.68.220)
2019-03-19 SDHelp.exe (2.8.67.1)
2017-11-28 SDHookHelper.exe (2.6.46.2)
2017-11-28 SDHookInst32.exe (2.6.46.2)
2017-11-28 SDHookInst64.exe (2.6.46.2)
2019-09-04 SDImmunize.exe (2.8.67.133)
2020-03-24 SDLicense.exe (2.8.67.3)
2019-03-19 SDLogReport.exe (2.8.67.107)
2017-11-28 SDOnAccess.exe (2.6.46.11)
2019-03-19 SDPESetup.exe (2.8.67.3)
2019-03-19 SDPEStart.exe (2.8.67.86)
2019-03-19 SDPhoneScan.exe (2.8.67.29)
2019-03-19 SDPRE.exe (2.8.67.22)
2019-03-19 SDPrepPos.exe (2.8.67.15)
2019-03-19 SDQuarantine.exe (2.8.67.103)
2019-03-19 SDRootAlyzer.exe (2.8.67.116)
2019-03-19 SDSBIEdit.exe (2.8.67.39)
2020-04-26 SDScan.exe (2.8.68.193)
2019-03-19 SDScript.exe (2.8.67.54)
2020-03-04 SDSettings.exe (2.8.67.140)
2019-03-19 SDShell.exe (2.8.67.2)
2019-03-19 SDShred.exe (2.8.67.108)
2020-04-26 SDSpybotLab.exe (2.8.68.0)
2019-03-19 SDSysRepair.exe (2.8.67.102)
2019-03-19 SDTools.exe (2.8.67.157)
2019-03-19 SDTray.exe (2.8.67.129)
2020-04-26 SDUpdate.exe (2.8.68.100)
2020-04-26 SDUpdSvc.exe (2.8.68.83)
2018-08-08 SDUpgrade.exe (2.7.65.0)
2020-04-26 SDWelcome.exe (2.8.67.138)
2019-09-04 SDWSCSvc.exe (2.8.66.0)
2018-09-03 Spybot3.LicenseInstaller.exe
2019-07-31 Spybot3ELAMSetupConsole.exe (3.4.0.0)
2020-01-15 spybotsd2-install-bdcore-update-2020a.exe (2.8.67.0)
2016-05-02 spybotsd2-install-iefreezefix.exe (2.4.40.0)
2014-08-25 spybotsd2-translation-hux2.exe
2014-10-01 spybotsd2-translation-nlx2.exe
2016-09-21 spybotsd2-updater-update.exe (2.6.52.0)
2015-07-28 spybotsd2-windows-upgrade-installer.exe (1.4.0.0)
2020-08-01 unins000.exe (51.1052.0.0)
2017-11-28 xcacls.exe
2017-11-28 borlndmm.dll (10.0.2288.42451)
2018-01-29 DelZip190.dll (1.9.0.119)
2018-01-29 DelZip192.dll (1.9.2.136)
2018-01-29 libeay32.dll (1.0.2.14)
2017-11-28 libssl32.dll (1.0.0.4)
2019-03-19 NotificationSpreader.dll (2.8.67.4)
2019-03-19 SDAdvancedCheckLibrary.dll (2.8.67.98)
2020-04-26 SDAV.dll (2.4.40.7)
2019-03-19 SDECon32.dll (2.8.67.114)
2019-04-15 SDECon64.dll (2.8.67.113)
2019-03-19 SDEvents.dll (2.8.67.2)
2020-04-26 SDFileScanLibrary.dll (2.8.68.25)
2017-11-28 SDHook32.dll (2.6.46.2)
2017-11-28 SDHook64.dll (2.6.46.2)
2019-09-04 SDImmunizeLibrary.dll (2.8.67.5)
2019-03-19 SDLicense.dll (2.8.67.3)
2019-03-19 SDLists.dll (2.8.67.8)
2020-03-24 SDResources.dll (2.8.67.10)
2020-04-26 SDScanLibrary.dll (2.8.68.132)
2019-03-19 SDTasks.dll (2.8.67.15)
2019-03-19 SDWinLogon.dll (2.8.67.0)
2018-01-29 sqlite3.dll (3.22.0.0)
2018-01-29 ssleay32.dll (1.0.2.14)
2019-03-19 Tools.dll (2.8.67.36)
2019-07-03 Includes\Adware-000.sbi (*)
2018-09-24 Includes\Adware-001.sbi (*)
2018-09-24 Includes\Adware-002.sbi (*)
2018-09-24 Includes\Adware-003.sbi (*)
2020-07-29 Includes\Adware-C.sbi (*)
2014-01-13 Includes\Adware.sbi (*)
2014-01-13 Includes\AdwareC.sbi (*)
2010-08-13 Includes\Cookies.sbi (*)
2014-11-14 Includes\Dialer-000.sbi (*)
2014-11-14 Includes\Dialer-001.sbi (*)
2018-06-20 Includes\Dialer-C.sbi (*)
2014-01-13 Includes\Dialer.sbi (*)
2014-01-13 Includes\DialerC.sbi (*)
2014-01-09 Includes\Fraud-000.sbi (*)
2017-01-30 Includes\Fraud-001.sbi (*)
2014-03-31 Includes\Fraud-002.sbi (*)
2016-07-06 Includes\Fraud-003.sbi (*)
2013-04-11 Includes\HeavyDuty.sbi (*)
2014-11-14 Includes\Hijackers-000.sbi (*)
2014-11-14 Includes\Hijackers-001.sbi (*)
2018-04-04 Includes\Hijackers-C.sbi (*)
2014-01-13 Includes\Hijackers.sbi (*)
2014-01-13 Includes\HijackersC.sbi (*)
2014-01-08 Includes\iPhone-000.sbi (*)
2014-01-08 Includes\iPhone.sbi (*)
2016-05-27 Includes\Keyloggers-000.sbi (*)
2020-04-01 Includes\Keyloggers-C.sbi (*)
2014-01-13 Includes\Keyloggers.sbi (*)
2014-01-13 Includes\KeyloggersC.sbi (*)
2004-11-29 Includes\LSP.sbi (*)
2019-08-30 Includes\Malware-000.sbi (*)
2019-05-08 Includes\Malware-001.sbi (*)
2018-04-12 Includes\Malware-002.sbi (*)
2019-11-20 Includes\Malware-003.sbi (*)
2018-04-13 Includes\Malware-004.sbi (*)
2018-08-16 Includes\Malware-005.sbi (*)
2018-09-04 Includes\Malware-006.sbi (*)
2018-12-10 Includes\Malware-007.sbi (*)
2020-07-22 Includes\Malware-C.sbi (*)
2014-01-13 Includes\Malware.sbi (*)
2014-01-13 Includes\MalwareC.sbi (*)
2018-05-02 Includes\PUPS-000.sbi (*)
2018-05-02 Includes\PUPS-001.sbi (*)
2018-05-02 Includes\PUPS-002.sbi (*)
2018-05-02 Includes\PUPS-003.sbi (*)
2018-05-02 Includes\PUPS-004.sbi (*)
2020-07-29 Includes\PUPS-C.sbi (*)
2014-01-13 Includes\PUPS.sbi (*)
2014-01-13 Includes\PUPSC.sbi (*)
2010-01-25 Includes\Revision.sbi (*)
2014-01-08 Includes\Security-000.sbi (*)
2018-08-01 Includes\Security-C.sbi (*)
2014-01-21 Includes\Security.sbi (*)
2014-01-21 Includes\SecurityC.sbi (*)
2008-06-03 Includes\Spybots.sbi (*)
2008-06-03 Includes\SpybotsC.sbi (*)
2015-11-11 Includes\Spyware-000.sbi (*)
2015-05-06 Includes\Spyware-001.sbi (*)
2020-07-29 Includes\Spyware-C.sbi (*)
2014-01-21 Includes\Spyware.sbi (*)
2014-01-21 Includes\SpywareC.sbi (*)
2011-06-07 Includes\Tracks.sbi (*)
2012-11-19 Includes\Tracks.uti (*)
2018-07-13 Includes\Trojans-000.sbi (*)
2018-07-03 Includes\Trojans-001.sbi (*)
2018-04-13 Includes\Trojans-002.sbi (*)
2018-09-21 Includes\Trojans-003.sbi (*)
2018-11-28 Includes\Trojans-004.sbi (*)
2018-11-19 Includes\Trojans-005.sbi (*)
2018-08-16 Includes\Trojans-006.sbi (*)
2018-11-06 Includes\Trojans-007.sbi (*)
2018-09-21 Includes\Trojans-008.sbi (*)
2018-11-28 Includes\Trojans-009.sbi (*)
2018-06-21 Includes\Trojans-010.sbi (*)
2020-07-29 Includes\Trojans-C.sbi (*)
2016-02-02 Includes\Trojans-OG-000.sbi (*)
2018-11-21 Includes\Trojans-TD-000.sbi (*)
2014-01-15 Includes\Trojans-VM-000.sbi (*)
2014-01-15 Includes\Trojans-VM-001.sbi (*)
2014-01-15 Includes\Trojans-VM-002.sbi (*)
2014-01-15 Includes\Trojans-VM-003.sbi (*)
2014-01-15 Includes\Trojans-VM-004.sbi (*)
2014-01-15 Includes\Trojans-VM-005.sbi (*)
2014-01-15 Includes\Trojans-VM-006.sbi (*)
2014-01-15 Includes\Trojans-VM-007.sbi (*)
2014-01-15 Includes\Trojans-VM-008.sbi (*)
2018-11-20 Includes\Trojans-VM-009.sbi (*)
2014-01-15 Includes\Trojans-VM-010.sbi (*)
2014-01-15 Includes\Trojans-VM-011.sbi (*)
2014-01-15 Includes\Trojans-VM-012.sbi (*)
2014-01-15 Includes\Trojans-VM-013.sbi (*)
2014-01-15 Includes\Trojans-VM-014.sbi (*)
2014-01-15 Includes\Trojans-VM-015.sbi (*)
2014-01-15 Includes\Trojans-VM-016.sbi (*)
2014-01-15 Includes\Trojans-VM-017.sbi (*)
2014-01-15 Includes\Trojans-VM-018.sbi (*)
2014-01-15 Includes\Trojans-VM-019.sbi (*)
2014-01-15 Includes\Trojans-VM-020.sbi (*)
2014-01-15 Includes\Trojans-VM-021.sbi (*)
2014-01-15 Includes\Trojans-VM-022.sbi (*)
2014-01-15 Includes\Trojans-VM-023.sbi (*)
2014-01-15 Includes\Trojans-VM-024.sbi (*)
2015-11-09 Includes\Trojans-ZB-000.sbi (*)
2018-04-06 Includes\Trojans-ZL-000.sbi (*)
2014-01-09 Includes\Trojans.sbi (*)
2014-01-16 Includes\TrojansC-01.sbi (*)
2014-01-16 Includes\TrojansC-02.sbi (*)
2014-01-16 Includes\TrojansC-03.sbi (*)
2014-01-16 Includes\TrojansC-04.sbi (*)
2014-01-16 Includes\TrojansC-05.sbi (*)
2014-01-09 Includes\TrojansC.sbi (*)

cosinus 02.08.2020 16:09
Also was da gefunden wurde ist schon ziemlich lächerlich. Das hat garantiert nichts zu tun mit dem Lauftsträrkemixer. Das ist ein Bug im Programm. Also bitte nicht immer sofort die Ursache in irgendwelchen Schädlingen suchen.

Trotzdem gibt es was an deinem Rechner zu tun. Google Chrome musst du durch Mozilla Firefox ersetzen, ESET und Spybot sind komplett unnötig. Das hier bitte über Programme und Features (appwiz.cpl) deinstallieren:


Adobe Acrobat Reader DC
Adobe Shockwave Player 12.3
CCleaner
ESET Security
Spybot - Search & Destroy
VLC media player 3.0.8
WinRAR 5.71 (64-bit)

JayAwesome 02.08.2020 19:20
Super, danke für das durchsehen meiner Logs!

Die Programme habe ich soeben deinstalliert. Gibt es irgendwo Infos darüber, warum ausgerechnet diese Programme deinstalliert werden sollten? Kommt Windows mittlerweile ohne Antivirus (bzw. mit dem Defender) klar?

cosinus 02.08.2020 19:31
Da steht in meiner Signatur extra was zu Virenscanner.
Die Programme solltest du deinstallieren weil sei unnötig oder veraltet waren.


adwCleaner

Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei in CODE-Tags.

cosinus 25.08.2020 12:48
Fehlende Rückmeldung

Dieser Thread wird wegen fehlender Rückmeldung tonniert.


Alle Zeitangaben in WEZ +1. Es ist jetzt 19:07 Uhr.

Copyright ©2000-2025, Trojaner-Board


Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131