| alouette | 05.02.2021 20:52 |
Dankeschön cosinus!
Anbei die beiden Dateien
FRST Logfile: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 04-02-2021
durchgeführt von Geschwister Biner (Administrator) auf ANTEC_1 (05-02-2021 20:25:26)
Gestartet von C:\Users\Geschwister Biner\Desktop
Geladene Profile: Geschwister Biner
Platform: Windows 10 Pro Version 20H2 19042.746 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Edge
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files (x86)\FreeStyle Libre\FreeStyle Libre\MAS.FreeStyleLibre.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Intel Corporation -> ) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20566.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.13426.20566.0_x64__8wekyb3d8bbwe\HxTsr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CredentialEnrollmentManager.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.SecHealthUI_cw5n1h2txyewy\SecHealthUI.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2011.6-0\NisSrv.exe
(Mixbyte Inc -> ) C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
(Mixbyte Inc -> Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lkads.exe
(National Instruments Corporation -> National Instruments Corporation) C:\Windows\SysWOW64\lktsrv.exe
(National Instruments Corporation -> National Instruments, Inc.) C:\Windows\SysWOW64\lkcitdl.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 6\creator\common\creator-ws.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 6\updater-ws.exe
(pdfforge GmbH -> pdfforge GmbH) C:\Program Files\PDF Architect 6\ws.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler.exe
(Piriform Software Ltd -> Piriform Software) C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\CCleanerBrowserCrashHandler64.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Synology Inc. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-09-09] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12446824 2012-01-31] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM-x32\...\Run: [FreeStyleLibreautorunexe] => C:\Program Files (x86)\FreeStyle Libre\FreeStyle Libre\MASLaunchClient.FreeStyleLibre.exe [81408 2016-01-19] () [Datei ist nicht signiert]
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-02-03] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [241448 2020-04-22] (Mixbyte Inc -> )
HKU\S-1-5-21-653253039-3667840127-3969234710-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-653253039-3667840127-3969234710-1000\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31164320 2021-01-26] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKLM\...\Print\Monitors\KM Language Monitor: C:\WINDOWS\system32\KMPJL64.DLL [80384 2010-06-28] (Microsoft Windows Hardware Compatibility Publisher -> KYOCERA MITA Corporation)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [116736 2019-02-18] (pdfforge GmbH) [Datei ist nicht signiert]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{052EB454-9F19-CB42-7875-807F79F311C4}] -> C:\Program Files (x86)\CCleaner Browser\Application\88.0.7846.107\Installer\chrmstp.exe [2021-02-04] (Piriform Software Ltd -> Piriform Software)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Startup: C:\Users\Geschwister Biner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\CLX.PayPen.lnk [2020-11-23]
ShortcutTarget: CLX.PayPen.lnk -> C:\Program Files (x86)\CLX.PayPen II\Clx.Epayment.Reader.exe (CREALOGIX E-Payment AG -> Crealogix AG)
Startup: C:\Users\Geschwister Biner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Lookeen.lnk [2016-10-08]
ShortcutTarget: Lookeen.lnk -> C:\Program Files (x86)\Axonic\Lookeen\LookeenDesktopSearch.exe (Axonic Informationssysteme GmbH -> )
GroupPolicy\User: Beschränkung ? <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0579D044-1010-426B-8061-6400F3F1A49A} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {0731CF1A-21CB-433A-B140-8211F24C7810} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {08237D28-A2C8-4BB0-AD35-C154AC198D1F} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0DB6C32F-652F-4FE7-B74D-14004020283A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {0DE86298-D760-4471-AF3B-F339C86AED46} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {17C8416C-E196-41C3-96B3-8D28A3AEA58E} - \Microsoft\Windows\Setup\gwx\rundetector -> Keine Datei <==== ACHTUNG
Task: {2049C6A1-610A-43FB-B276-E2D521D2AD8C} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {20D9B8E3-5BB7-444C-8B41-4A4C2F851E4A} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Keine Datei <==== ACHTUNG
Task: {23792E2E-DA74-47F1-850D-0310D1E7C0E7} - System32\Tasks\PostponeDeviceSetupToast_S-1-5-21-653253039-3667840127-3969234710-1000_1 => {5ded83ef-1e99-48cf-bf83-676d2a6db408} C:\Windows\System32\oobe\UserOOBE.dll [411648 2021-01-13] (Microsoft Windows -> Microsoft Corporation)
Task: {2412251C-704C-415B-96C0-844D06690841} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {27142685-3C3E-46B0-A2CB-3DAF8A3CAA2A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {272A418C-0035-4C96-B691-AB8870DC2967} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {27AD1C0B-3F2D-4BA3-ACAF-41342280F69F} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {2D1AA04F-D35E-4A56-A956-FD45DA5DCC80} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {30FFCB61-716A-4488-9764-099170570AB1} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-28] (Dropbox, Inc -> Dropbox, Inc.)
Task: {387AB0E2-5C8F-4EF4-A3EE-8B3C9FECD130} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3B9D7C3D-E215-442D-A655-257C4B9649F5} - System32\Tasks\CCleaner Browser Heartbeat Task (Logon) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2212528 2021-01-26] (Piriform Software Ltd -> Piriform Software)
Task: {3C6ABE93-A472-43A8-A988-9AD32F6F86BD} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {3ED6D38A-7A61-4DB4-A03C-F143732AC87A} - \Microsoft\Windows\Setup\EOONotify -> Keine Datei <==== ACHTUNG
Task: {4188D7C3-D3CD-473A-8068-EC7AFC912A26} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {4212BE83-59F7-43E4-9D38-04236E2E24B8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {489E1854-3E6B-4AF3-89A0-A5BB29091CEF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {4EE17908-8F30-41D0-BCDA-68D4612070AB} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {54406E2E-E04E-4003-A567-D28E937A71C6} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5C60B1C9-C9C4-4474-825E-9FD21A121B3E} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6964E86A-025F-4AEA-8B04-575169629A8C} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {6966133B-E596-4EBA-AB9C-3F0D5C65CF58} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {72EF9EE0-EE1C-40DE-A7C3-C05AD7DCDD02} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233224 2011-11-25] (Intel® Services Manager -> Intel Corporation)
Task: {739DC0AD-C4E2-4B4F-884C-7FCD53D1422E} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {7632731A-B857-46C9-9248-02D617CCE67C} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40864 2021-01-26] (Garmin International, Inc. -> )
Task: {7AA568BE-E861-4BE5-921A-AEEE04DDFDDE} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-28] (Dropbox, Inc -> Dropbox, Inc.)
Task: {82ADD3A2-DE6B-4CE0-8A2E-F971FD62F67A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8955E00E-9B8E-4C05-B2B7-9DF2BC2C6944} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {92092906-41AF-4A97-980C-0732B56FA6DB} - System32\Tasks\CCleaner Browser Heartbeat Task (Hourly) => C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe [2212528 2021-01-26] (Piriform Software Ltd -> Piriform Software)
Task: {977ADF8A-3744-4C80-A6B8-0D63583992C5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9950880C-9C8E-443F-AC33-B4ED97FB4F34} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9DBEC122-C490-49AC-84BD-DAC013D09AD6} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {9E1F0320-3741-4B6C-BCAC-2E9EE63E0D6E} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {A06073BD-726A-4597-A377-2918E2ABD570} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {A34E710A-53F9-4038-955A-C487B621841B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {A49D5F4A-F950-4327-8386-E7CA4CBC0020} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {A5D42881-7B9D-4FA3-BA97-F86325FD7903} - System32\Tasks\CCleanerUpdateTaskMachineCore => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-08-06] (Piriform Software Ltd -> Piriform Software)
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {BE186F8E-DDBD-4AC9-985C-8B0F93903288} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {C1AAA5AA-764C-4E38-A7E7-11CE1DE3C9B5} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {C40170ED-5BE7-4DCF-8B3A-6B4484D75333} - System32\Tasks\CCleanerUpdateTaskMachineUA => C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-08-06] (Piriform Software Ltd -> Piriform Software)
Task: {C7B5048C-92D4-41C2-95CF-CF85592E25E4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {C8810D41-2B74-4A15-B276-61F1324470C3} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CA790CA0-E43B-4EFC-B333-7C5A526EEFCE} - System32\Tasks\Microsoft_Hardware_Launch_rundll32_exe => rundll32.exe url.dll,OpenURL hxxp://go.microsoft.com/fwlink/?LinkID=130644
Task: {CDC62F4D-4289-474B-9E78-C3BD1304E500} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {D023D77A-3FE2-4C36-8B83-E7385201D098} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {D05D107D-0B81-4921-B3A4-4E78AD1D3CBF} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D21ADD18-3676-471E-A202-AA05D27C07BB} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {D4288A18-099D-4416-BA08-A2DE035DE42C} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D5E2056B-6DC9-44EB-953E-7E6144A6D553} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {DA0EC435-2175-4CF9-B185-BBC8DCA8A52A} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {DC1263C6-C7C4-4FA0-ACCC-3E89DF5A05AE} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E03BE45A-28D1-481E-B146-43E2D70A17F4} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {E0AF6939-4E38-4A73-A2E5-BC3BBBF15172} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {E9B58570-85EA-4D09-A01E-5B00C5C396FF} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {EFFF81EA-9E27-4779-A9CF-B8BB71F72074} - System32\Tasks\AdobeAAMUpdater-1.0-Antec_1-Geschwister Biner => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508128 2016-03-22] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {F07932FE-BD06-409C-9598-1B927EF34BA7} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {F447585C-6823-4AC2-8C18-7477A3C76C72} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {F664FE96-DBE8-4AF0-B449-C2AB988E49EF} - System32\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe [233224 2011-11-25] (Intel® Services Manager -> Intel Corporation)
Task: {F7EE100A-629C-474A-A1D1-8789161D8377} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {FCC3439E-F8B4-48D5-9479-0228349599EE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {FEED1EFD-EA1B-457A-B4A2-CDEEA123CF2C} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MpCmdRun.exe [545704 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
Task: C:\WINDOWS\Tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job => C:\Program Files (x86)\Intel\Intel(R) ME FW Recovery Agent\bin\Bootstrap.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\..\Interfaces\{005a78a6-dfdb-410d-ab41-7c9b6ef2cb01}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{55b5fc17-69f5-400e-b278-9b99490890d5}: [NameServer] 192.168.2.1
Tcpip\..\Interfaces\{596202ae-300a-4691-bb88-4fa6392f207a}: [DhcpNameServer] 172.20.10.1
Edge:
=======
DownloadDir: C:\Users\Geschwister Biner\Downloads
Edge Profile: C:\Users\Geschwister Biner\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-05]
Edge DownloadDir: C:\Users\Geschwister Biner\Downloads
Edge StartupUrls: Default -> "hxxp://www.startpage.com/"
Edge Extension: (Malwarebytes Browser Guard) - C:\Users\Geschwister Biner\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2021-02-03]
Edge Extension: (AdBlock*– der beste Ad-Blocker) - C:\Users\Geschwister Biner\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ndcileolkflehcjpmjnfbnaibdcgglog [2021-01-15]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF ProfilePath: C:\Users\Geschwister Biner\AppData\Roaming\Prism\Profiles\isvmtkl1.default [2017-05-15]
FF Homepage: Prism\Profiles\isvmtkl1.default -> hxxp://127.0.0.1:8081/glucolog/splash.jsp
FF ProfilePath: C:\Users\Geschwister Biner\AppData\Roaming\Mozilla\Firefox\Profiles\unir1ao4.default [2021-02-05]
FF Extension: (Avira Browser Safety) - C:\Users\Geschwister Biner\AppData\Roaming\Mozilla\Firefox\Profiles\unir1ao4.default\Extensions\abs@avira.com [2015-07-15] [] [ist nicht signiert]
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Programme\PDF Viewer\npPDFXCviewNPPlugin.dll [Keine Datei]
FF Plugin: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Programme\PDF Viewer\npPDFXCviewNPPlugin.dll [Keine Datei]
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-04-07] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Programme\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [Keine Datei]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-01-06] (Intel® Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll [2010-04-26] (Microsoft Corporation -> Microsoft Corp.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Programme\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [Keine Datei]
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=3 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-08-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: @update.ccleanerbrowser.com/CCleaner Browser;version=9 -> C:\Program Files (x86)\CCleaner Browser\Update\1.8.1067.0\npCCleanerBrowserUpdate3.dll [2020-08-06] (Piriform Software Ltd -> Piriform Software)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-04-07] (Adobe Systems Incorporated -> Adobe Systems)
FF Plugin HKU\S-1-5-21-653253039-3667840127-3969234710-1000: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> C:\Programme\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [Keine Datei]
Chrome:
=======
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S4 a2AntiMalware; C:\Program Files (x86)\Emsisoft Anti-Malware\a2service.exe [11433080 2016-06-01] (Emsisoft Ltd -> Emsisoft Ltd)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [694464 2016-04-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
S4 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2021592 2016-04-05] (Adobe Systems Incorporated -> Adobe Systems, Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-09] (Apple Inc. -> Apple Inc.)
S2 ccleaner; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-08-06] (Piriform Software Ltd -> Piriform Software)
S3 CCleanerBrowserElevationService; C:\Program Files (x86)\CCleaner Browser\Application\88.0.7846.107\elevation_service.exe [1455312 2021-01-26] (Piriform Software Ltd -> Piriform Software)
S3 ccleanerm; C:\Program Files (x86)\CCleaner Browser\Update\CCleanerBrowserUpdate.exe [200928 2020-08-06] (Piriform Software Ltd -> Piriform Software)
S4 cFosSpeedS; C:\Program Files\ASRock\XFast LAN\spd.exe [395136 2011-10-19] (cFos Software GmbH -> cFos Software GmbH)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-28] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-08-28] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44064 2021-02-03] (Dropbox, Inc -> Dropbox, Inc.)
S4 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [3647992 2014-05-14] (devolo AG -> devolo AG)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [82216 2020-04-22] (Mixbyte Inc -> Freemake)
R2 FreeStyleLibre MAS Server; C:\Program Files (x86)\FreeStyle Libre\FreeStyle Libre\MAS.FreeStyleLibre.exe [285184 2016-01-19] () [Datei ist nicht signiert]
R2 LkCitadelServer; C:\WINDOWS\SysWOW64\lkcitdl.exe [695136 2011-05-06] (National Instruments Corporation -> National Instruments, Inc.)
R2 lkClassAds; C:\WINDOWS\SysWOW64\lkads.exe [50328 2012-06-05] (National Instruments Corporation -> National Instruments Corporation)
R2 lkTimeSync; C:\WINDOWS\SysWOW64\lktsrv.exe [60568 2012-06-05] (National Instruments Corporation -> National Instruments Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-01-01] (Malwarebytes Inc -> Malwarebytes)
S4 NetDrive2_Service_NetDrive2; C:\Program Files\NetDrive2\nd2svc.exe [839736 2015-09-09] (Bdrive Inc. -> ) [Datei ist nicht signiert]
R2 NIApplicationWebServer; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [53960 2012-05-22] (National Instruments Corporation -> National Instruments Corporation)
S4 NIApplicationWebServer64; C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [76488 2012-05-22] (National Instruments Corporation -> National Instruments Corporation)
R2 NIDomainService; C:\Program Files (x86)\National Instruments\Shared\Security\nidmsrv.exe [370328 2012-06-05] (National Instruments Corporation -> National Instruments Corporation)
R2 niLXIDiscovery; C:\Program Files (x86)\IVI Foundation\VISA\WinNT\NIvisa\niLxiDiscovery.exe [236768 2012-06-06] (National Instruments Corporation -> National Instruments Corporation)
R2 nimDNSResponder; C:\Program Files (x86)\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [258776 2012-05-31] (National Instruments Corporation -> National Instruments Corporation)
R2 niSvcLoc; C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe [53952 2012-05-22] (National Instruments Corporation -> National Instruments Corporation)
R3 PDF Architect 6; C:\Program Files\PDF Architect 6\ws.exe [2569976 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 6 Creator; C:\Program Files\PDF Architect 6\creator\common\creator-ws.exe [832248 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
R2 PDF Architect 6 Update Service; C:\Program Files\PDF Architect 6\updater-ws.exe [1665272 2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248704 2013-04-30] (Synology Inc. -> ) [Datei ist nicht signiert]
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppService.exe [493792 2017-11-07] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R1 AsrAppCharger; C:\WINDOWS\System32\DRIVERS\AsrAppCharger.sys [17192 2011-05-10] (ASROCK Incorporation -> Windows (R) Win 7 DDK provider)
R0 AsrRamDisk; C:\WINDOWS\System32\drivers\AsrRamDisk.sys [31016 2012-01-13] (ASROCK Incorporation -> ASRock Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [55776 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
R1 cbfs5; C:\Windows\system32\drivers\cbfs5.sys [421568 2015-08-24] (EldoS Corporation -> EldoS Corporation)
S1 cfosspeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [1632128 2011-07-04] (cFos Software GmbH -> cFos Software GmbH)
R1 epp; C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\epp.sys [126280 2016-06-03] (Emsisoft Ltd -> Emsisoft Ltd)
R1 FNETURPX; C:\WINDOWS\System32\drivers\FNETURPX.SYS [15936 2012-06-10] (FNet Co., Ltd. -> FNet Co., Ltd.)
R1 fwwfp; C:\Program Files (x86)\Emsisoft Anti-Malware\fwwfp764.sys [576984 2016-02-24] (Emsisoft Ltd -> )
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220600 2021-02-04] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-01-01] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-01-28] (Malwarebytes Inc -> Malwarebytes)
S3 nidimk; C:\WINDOWS\system32\drivers\nidimkl.sys [13000 2012-06-28] (National Instruments Corporation -> National Instruments Corporation)
S3 niorbk; C:\WINDOWS\system32\drivers\niorbkl.sys [12992 2012-06-28] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalfwedl; C:\WINDOWS\System32\drivers\nipalfwedl.sys [12520 2012-06-27] (National Instruments Corporation -> National Instruments Corporation)
R0 NIPALK; C:\WINDOWS\System32\drivers\nipalk.sys [915136 2012-06-27] (National Instruments Corporation -> National Instruments Corporation)
S3 nipalusbedl; C:\WINDOWS\System32\drivers\nipalusbedl.sys [12520 2012-06-27] (National Instruments Corporation -> National Instruments Corporation)
R0 nipbcfk; C:\WINDOWS\System32\drivers\nipbcfk.sys [16984 2012-01-12] (National Instruments Corporation -> National Instruments Corporation)
S3 NiViPciK; C:\WINDOWS\System32\drivers\NiViPciKl.sys [13008 2012-06-06] (National Instruments Corporation -> National Instruments Corporation)
R2 NiViPxiK; C:\WINDOWS\System32\drivers\NiViPxiKl.sys [13008 2012-06-06] (National Instruments Corporation -> National Instruments Corporation)
R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [34048 2013-03-04] (devolo AG -> CACE Technologies)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-02-05 20:25 - 2021-02-05 20:26 - 000035035 _____ C:\Users\Geschwister Biner\Desktop\FRST.txt
2021-02-05 20:21 - 2021-02-05 20:23 - 000000232 _____ C:\Users\Geschwister Biner\Documents\Profilordner umbennen.txt
2021-02-05 19:56 - 2021-02-05 19:57 - 000000000 ____D C:\Users\Geschwister Biner\Desktop\Applikationen Verknüpfung
2021-02-05 19:55 - 2021-02-05 19:58 - 000000000 ____D C:\Users\Geschwister Biner\Desktop\Desktop aktuell
2021-02-05 16:43 - 2021-02-05 16:43 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-02-05 14:11 - 2021-02-05 14:11 - 000000000 ____D C:\Users\Geschwister Biner\Documents\Add-in Express
2021-02-05 12:15 - 2021-02-05 12:16 - 002297856 _____ (Farbar) C:\Users\Geschwister Biner\Desktop\FRST64.exe
2021-02-04 17:52 - 2021-02-04 17:52 - 000220600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-02-03 16:21 - 2021-02-03 16:21 - 000004036 _____ C:\WINDOWS\system32\Tasks\PostponeDeviceSetupToast_S-1-5-21-653253039-3667840127-3969234710-1000_1
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000044064 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-01-28 21:43 - 2021-01-28 21:43 - 000000000 ____D C:\Users\Geschwister Biner\AppData\Local\OneDrive
2021-01-28 20:45 - 2021-01-28 20:45 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-01-20 02:01 - 2021-01-20 02:01 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6c87b585bef33
2021-01-13 05:31 - 2021-01-13 05:31 - 000095744 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 05:30 - 2021-01-13 05:30 - 000729600 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 05:30 - 2021-01-13 05:30 - 000595968 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 05:30 - 2021-01-13 05:30 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 05:30 - 2021-01-13 05:30 - 000575488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 05:30 - 2021-01-13 05:30 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 05:30 - 2021-01-13 05:30 - 000469504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 05:30 - 2021-01-13 05:30 - 000467968 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-13 05:30 - 2021-01-13 05:30 - 000446976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 05:30 - 2021-01-13 05:30 - 000304128 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 05:30 - 2021-01-13 05:30 - 000234496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 05:30 - 2021-01-13 05:30 - 000178688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 05:30 - 2021-01-13 05:30 - 000170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 05:30 - 2021-01-13 05:30 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-13 05:30 - 2021-01-13 05:30 - 000138056 _____ C:\WINDOWS\system32\HvsiManagementApi.dll
2021-01-13 05:30 - 2021-01-13 05:30 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 05:30 - 2021-01-13 05:30 - 000101704 _____ C:\WINDOWS\SysWOW64\HvsiManagementApi.dll
2021-01-13 05:30 - 2021-01-13 05:30 - 000087552 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 05:30 - 2021-01-13 05:30 - 000084992 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 05:30 - 2021-01-13 05:30 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 05:30 - 2021-01-13 05:30 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 05:30 - 2021-01-13 05:30 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 05:30 - 2021-01-13 05:30 - 000053760 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 05:30 - 2021-01-13 05:30 - 000010894 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-01-13 05:29 - 2021-01-13 05:29 - 002260992 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 05:29 - 2021-01-13 05:29 - 002254336 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 05:29 - 2021-01-13 05:29 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 05:29 - 2021-01-13 05:29 - 001162240 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-01-13 05:29 - 2021-01-13 05:29 - 000643072 _____ C:\WINDOWS\system32\WindowManagementAPI.dll
2021-01-13 05:29 - 2021-01-13 05:29 - 000544768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 05:29 - 2021-01-13 05:29 - 000455680 _____ C:\WINDOWS\SysWOW64\WindowManagementAPI.dll
2021-01-13 05:29 - 2021-01-13 05:29 - 000422912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 05:29 - 2021-01-13 05:29 - 000330752 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 05:29 - 2021-01-13 05:29 - 000306688 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 05:29 - 2021-01-13 05:29 - 000238592 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 05:29 - 2021-01-13 05:29 - 000235520 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 05:29 - 2021-01-13 05:29 - 000190976 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 05:29 - 2021-01-13 05:29 - 000182272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 05:29 - 2021-01-13 05:29 - 000152064 _____ C:\WINDOWS\system32\EoAExperiences.exe
2021-01-13 05:28 - 2021-01-13 05:28 - 000562688 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 05:28 - 2021-01-13 05:28 - 000455168 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 05:28 - 2021-01-13 05:28 - 000243200 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 05:28 - 2021-01-13 05:28 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 05:28 - 2021-01-13 05:28 - 000074240 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-02-05 20:26 - 2015-07-14 17:18 - 000000000 ____D C:\FRST
2021-02-05 20:24 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-05 20:06 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-02-05 20:05 - 2017-01-14 08:06 - 000000000 ____D C:\Program Files\CCleaner
2021-02-05 19:52 - 2020-12-02 08:13 - 002012618 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-05 19:52 - 2019-12-07 15:51 - 000856668 _____ C:\WINDOWS\system32\perfh007.dat
2021-02-05 19:52 - 2019-12-07 15:51 - 000192920 _____ C:\WINDOWS\system32\perfc007.dat
2021-02-05 19:51 - 2020-12-02 08:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-05 16:43 - 2017-08-28 18:40 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-02-05 16:41 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-05 16:41 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-05 14:05 - 2012-06-10 10:27 - 000000000 ___RD C:\Users\Geschwister Biner\Bilder
2021-02-05 11:28 - 2016-07-29 06:12 - 000000000 __SHD C:\Users\Geschwister Biner\IntelGraphicsProfiles
2021-02-04 22:12 - 2020-12-02 08:24 - 000004178 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{7DA1803C-BBC0-499F-8DF0-4476CCAB06BA}
2021-02-04 20:30 - 2020-08-06 08:24 - 000002379 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner Browser.lnk
2021-02-04 20:30 - 2020-08-06 08:23 - 000000000 ____D C:\Program Files (x86)\CCleaner Browser
2021-02-04 17:53 - 2020-07-27 21:14 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-04 17:53 - 2020-07-27 21:14 - 000002274 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-02-04 17:53 - 2020-07-27 21:14 - 000002274 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-02-04 17:52 - 2020-12-02 08:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-04 17:52 - 2020-12-02 08:12 - 000602816 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-02-04 17:52 - 2020-12-02 08:12 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-04 17:52 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ServiceState
2021-02-04 17:52 - 2019-12-07 10:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-02-04 17:52 - 2017-08-28 18:41 - 000001252 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-02-04 17:52 - 2017-08-28 18:41 - 000001248 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-02-04 17:51 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-02-04 16:00 - 2015-06-01 16:12 - 000000000 ____D C:\Users\Geschwister Biner\AppData\Local\CrashDumps
2021-02-03 21:15 - 2016-10-08 12:54 - 000000000 ____D C:\Users\Geschwister Biner\AppData\Local\Lookeen
2021-01-30 06:46 - 2020-12-02 08:24 - 000003624 _____ C:\WINDOWS\system32\Tasks\GarminUpdaterTask
2021-01-30 06:46 - 2015-04-11 02:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2021-01-30 06:46 - 2015-01-08 17:59 - 000000000 ____D C:\ProgramData\Package Cache
2021-01-30 06:46 - 2015-01-08 17:59 - 000000000 ____D C:\ProgramData\Garmin
2021-01-30 06:46 - 2015-01-08 17:59 - 000000000 ____D C:\Program Files (x86)\Garmin
2021-01-29 14:47 - 2017-12-15 20:30 - 000000000 ____D C:\Users\Geschwister Biner\AppData\Local\Packages
2021-01-23 03:24 - 2020-09-30 23:10 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-01-22 19:35 - 2020-12-02 08:24 - 000004312 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-22 19:35 - 2020-12-02 08:24 - 000004080 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-01-22 14:09 - 2010-11-21 04:27 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-01-20 02:01 - 2020-12-02 08:24 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-15 16:17 - 2020-12-02 08:24 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-13 20:28 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 20:28 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-13 20:28 - 2019-12-07 15:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\IME
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-13 20:28 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 20:27 - 2020-12-02 08:13 - 000000000 ____D C:\Users\Geschwister Biner
2021-01-13 05:28 - 2020-12-02 08:12 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-13 05:19 - 2013-08-16 02:00 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 05:15 - 2012-06-16 10:20 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-07 15:02 - 2012-06-10 12:05 - 000123736 _____ C:\Users\Geschwister Biner\AppData\Local\GDIPFONTCACHEV1.DAT
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2016-10-10 09:37 - 2016-10-10 09:37 - 000000000 _____ () C:\Users\Geschwister Biner\Desktop.exe
2019-05-19 15:48 - 2019-05-19 15:48 - 000001229 _____ () C:\Users\Geschwister Biner\AppData\Local\recently-used.xbel
2015-09-09 09:15 - 2016-04-13 13:36 - 000007658 _____ () C:\Users\Geschwister Biner\AppData\Local\Resmon.ResmonCfg
2012-06-10 12:04 - 2012-06-10 12:04 - 000000003 _____ () C:\Users\Geschwister Biner\AppData\Local\user_data.ini
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
--- --- --- Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 04-02-2021
durchgeführt von Geschwister Biner (05-02-2021 20:28:56)
Gestartet von C:\Users\Geschwister Biner\Desktop
Windows 10 Pro Version 20H2 19042.746 (X64) (2020-12-02 07:24:57)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-653253039-3667840127-3969234710-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-653253039-3667840127-3969234710-503 - Limited - Disabled)
Gast (S-1-5-21-653253039-3667840127-3969234710-501 - Limited - Disabled)
Geschwister Biner (S-1-5-21-653253039-3667840127-3969234710-1000 - Administrator - Enabled) => C:\Users\Geschwister Biner
WDAGUtilityAccount (S-1-5-21-653253039-3667840127-3969234710-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.7.0.2090 - Adobe Systems Incorporated)
Adobe Bridge CC (64 Bit) (HKLM-x32\...\{359F8007-6486-429C-A8C5-D67F6897C88C}) (Version: 6.2 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.6.0.248 - Adobe Systems Incorporated)
Adobe Download Assistant (HKLM-x32\...\com.adobe.downloadassistant.AdobeDownloadAssistant) (Version: 1.2.9 - Adobe Systems Incorporated)
Adobe Lightroom (HKLM-x32\...\{8048A5DF-8A70-5BE1-954B-E0FDE1BD0D0D}) (Version: 6.5.1 - Adobe Systems Incorporated)
ANT Drivers Installer x64 (HKLM\...\{67A5544A-B62C-4A12-869F-A2A11B57FA84}) (Version: 2.3.4 - Garmin Ltd or its subsidiaries) Hidden
Apple Application Support (32-Bit) (HKLM-x32\...\{9738288C-21BC-4F54-AB4F-72F059339376}) (Version: 8.6 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{DEB339C1-2687-43AB-816A-8714F3E26846}) (Version: 8.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2504ACC6-F5B6-4F18-B4A9-2AAF48D89D85}) (Version: 14.0.0.29 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.10.1.0 - Asmedia Technology)
ASRock App Charger v1.0.5 (HKLM\...\ASRock App Charger_is1) (Version: - ASRock Inc.)
ASRock eXtreme Tuner v0.1.193 (HKLM-x32\...\ASRock eXtreme Tuner_is1) (Version: - )
ASRock InstantBoot v1.29 (HKLM-x32\...\ASRock InstantBoot_is1) (Version: - )
ASRock XFast RAM v2.0.9 (HKLM\...\ASRock XFast RAM_is1) (Version: - ASRock Inc.)
aXbo research 3.0.12 (HKLM-x32\...\3914-4662-2767-1873) (Version: 3.0.12 - aXbo Ltd.)
aXbo up2date (HKLM-x32\...\{41E6D887-D412-40F2-B51F-06BADAE88D45}) (Version: 1.2.4 - MEDS)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Broadcom NetLink Controller (HKLM\...\{C91DCB72-F5BB-410D-A91A-314F5D1B4284}) (Version: 14.8.5.1 - Broadcom Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
CCleaner Browser (HKLM-x32\...\CCleaner Browser) (Version: 88.0.7846.107 - Die CCleaner Browser-Autoren)
CCleaner Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.8.1067.0 - Piriform Software) Hidden
CDBurnerXP (HKLM-x32\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.4.4852 - CDBurnerXP)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
CLX.PayPen II (HKLM-x32\...\{88F1C78A-2326-4FF9-AF08-9ABE40954A27}) (Version: 4.0.8 - Crealogix AG)
cnlabSpeedTest (HKU\S-1-5-21-653253039-3667840127-3969234710-1000\...\{fxApplication}}_is1) (Version: 1.5.0 - cnlab AG)
CoCreate OneSpace Drafting 2007 (HKLM-x32\...\{DDD95C1F-033E-4E7B-8DAD-6BB633D1A4F4}) (Version: 15.00.60905 - CoCreate)
Compatibility Pack für 2007 Office System (HKLM-x32\...\{90120000-0020-0407-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
darktable (HKLM\...\darktable) (Version: 2.6.2 - the darktable project)
DaVinci Resolve (HKLM\...\{5D6009B3-E646-463A-805A-D5B95D0E36A2}) (Version: 12.5.5026 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{6FC8261F-6046-4ABB-851B-12FC923D0724}) (Version: 1.0.0.0 - Blackmagic Design)
devolo Cockpit (HKLM-x32\...\dlancockpit) (Version: 4.2.2.0 - devolo AG)
dLAN Cockpit (HKLM-x32\...\{450CFD4D-7E60-3839-D0FA-56DB08675447}) (Version: 3.2.28 - devolo AG) Hidden
Dropbox (HKLM-x32\...\Dropbox) (Version: 115.4.601 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Elevated Installer (HKLM-x32\...\{C913E211-2AC5-4BA8-8AC3-4B2814371BD3}) (Version: 7.3.0.0 - Garmin Ltd or its subsidiaries) Hidden
Emsisoft Anti-Malware (HKLM-x32\...\{5502032C-88C1-4303-99FE-B5CBD7684CEA}_is1) (Version: 10.0 - Emsisoft Ltd.)
Extended Asian Language font pack for Adobe Acrobat Reader DC (HKLM-x32\...\{AC76BA86-7AD7-2530-0000-AC13154E5A00}) (Version: 19.021.20058 - Adobe Systems Incorporated)
FastPictureViewer Professional 1.9.358.0 (64-bit) (HKLM\...\{76678923-7871-4E7D-9996-C397E2E03229}) (Version: 1.9.358.0 - Axel Rietschin Software Developments)
FastStone Capture 8.3 (HKLM-x32\...\FastStone Capture) (Version: 8.3 - FastStone Soft)
FastStone Image Viewer 5.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.5 - FastStone Soft)
FileZilla Client 3.47.2.1 (HKLM-x32\...\FileZilla Client) (Version: 3.47.2.1 - Tim Kosse)
Free Download Manager 3.9.4 (HKLM-x32\...\Free Download Manager_is1) (Version: - FreeDownloadManager.ORG)
Freemake Video Converter Version 4.1.11 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.11 - Mixbyte Inc.)
FreeStyle Libre (HKLM-x32\...\FreeStyle Libre 1.0) (Version: 1.0 - Abbott Diabetes Care)
Garmin Express (HKLM-x32\...\{3EF3A6E8-CCBF-492E-B179-28838182B8F0}) (Version: 7.3.0.0 - Garmin Ltd or its subsidiaries) Hidden
Garmin Express (HKLM-x32\...\{e174e9f0-1f1d-4284-b0d1-238b43f8ac1b}) (Version: 7.3.0.0 - Garmin Ltd or its subsidiaries)
Garmin MapInstall (HKLM-x32\...\{F0D44E64-51EE-4888-A1FD-F13108B75A43}) (Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Garmin Training Center (HKLM-x32\...\{7D542452-84EB-47C0-97BA-735C523AB555}) (Version: 3.6.5 - Garmin Ltd or its subsidiaries)
Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)
GlucoLog (HKLM-x32\...\GlucoLog) (Version: - )
ImageBadger Image Converter (HKU\S-1-5-21-653253039-3667840127-3969234710-1000\...\ImageBadger Image Converter) (Version: 04.00.00.00 - Kristanix Software)
inSSIDer Home (HKLM-x32\...\{9E54E4AE-B67A-4925-8E92-0E1F9817FD73}) (Version: 3.1.2.1 - MetaGeek, LLC)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Manageability Engine Firmware Recovery Agent (HKLM-x32\...\{A6C48A9F-694A-4234-B3AA-62590B668927}) (Version: 1.0.0.35342 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.3.1427 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2618 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.4.220 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{09536BA1-E498-4CC3-B834-D884A67D7E34}) (Version: 1.23.605.1 - Intel Corporation)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
iTunes (HKLM\...\{153A88D8-E890-4F36-A10F-2C87071F70AD}) (Version: 12.10.9.3 - Apple Inc.)
KM-NET for Direct Printing (HKLM-x32\...\{4D9E5F6A-2A13-47E0-8557-ABD2C1D72EAB}) (Version: 2.3.1113 - KYOCERA MITA Corporation) Hidden
KM-NET for Direct Printing (HKLM-x32\...\InstallShield_{4D9E5F6A-2A13-47E0-8557-ABD2C1D72EAB}) (Version: 2.3.1113 - KYOCERA MITA Corporation)
KYOCERA Net Viewer (HKLM\...\KYOCERA Net Viewer) (Version: 5.4.0902 - KYOCERA Document Solutions Inc.)
Kyocera Product Library (HKLM\...\Kyocera Product Library) (Version: 2.0.0713 - Kyocera Mita Corporation)
Lookeen Desktop Search (HKLM-x32\...\6D7E910F-716D-41E2-98A4-29691C352C1A_is1) (Version: 10.1.1.6084 - Axonic)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft Data Access Components 2.8 SDK (HKLM-x32\...\{DB29456E-BB83-42EE-9BD8-75A821560FBE}) (Version: 1.00.1425.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.56 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft Expression Web 4 (HKLM-x32\...\Web_4.0.1460.0) (Version: 4.0.1460.0 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Live Add-in 1.5 (HKLM-x32\...\{F40BBEC7-C2A4-4A00-9B24-7A055A2C5262}) (Version: 2.0.4024.1 - Microsoft Corporation)
Microsoft Office Small Business Edition 2003 (HKLM-x32\...\{91CA0407-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-653253039-3667840127-3969234710-1000\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Report Viewer Redistributable 2005 (HKLM-x32\...\Microsoft Report Viewer Redistributable 2005) (Version: - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{143E35D3-F0A4-4E90-96C9-B1B72F11343A}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM-x32\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
National Instruments - Software (HKLM-x32\...\NI Uninstaller) (Version: - National Instruments)
NetDrive2 (HKLM-x32\...\NetDrive2) (Version: 2.5.0.0 - Bdrive Inc.)
NI Authentication 12.0.0 (64-bit) (HKLM\...\{B618335B-11D2-4780-B5CE-AA2D111DB693}) (Version: 12.0.367.0 - National Instruments) Hidden
NI Authentication 12.0.0 (HKLM-x32\...\{E9592CCE-3058-4308-B52A-5AEA08E54F13}) (Version: 12.0.367.0 - National Instruments) Hidden
NI Certificates Deployment Support (HKLM-x32\...\{44ABC0C0-CB66-4120-BBA5-70514745109F}) (Version: 1.03.49152 - National Instruments) Hidden
NI Curl 12.0.0 (64-bit) (HKLM\...\{AFE7987B-E282-42CE-AD5A-E333BE31E204}) (Version: 12.0.412.0 - National Instruments) Hidden
NI Curl 12.0.0 (HKLM-x32\...\{59DA8C21-C667-47D0-A259-AA942C9A9717}) (Version: 12.0.412.0 - National Instruments) Hidden
NI DataSocket 5.0 (64-bit) (HKLM\...\{DCEF4AB3-3E07-4517-9A92-9599C903E32B}) (Version: 5.0.115.0 - National Instruments) Hidden
NI DataSocket 5.0 (HKLM-x32\...\{80FB7EBE-F006-41D4-A288-FA960645E6C0}) (Version: 5.0.115.0 - National Instruments) Hidden
NI EulaDepot (HKLM-x32\...\{C574D5B8-AAF5-431D-BAE3-BF89EAF4BDFC}) (Version: 3.10.389 - National Instruments) Hidden
NI GMP Windows 32-bit Installer 12.0.0 (HKLM-x32\...\{EAC44648-E378-45C7-BEF3-3DD68980E465}) (Version: 12.0.46.0 - National Instruments) Hidden
NI GMP Windows 64-bit Installer 12.0.0 (HKLM\...\{00606A59-716C-484A-AE64-5F7E3F23B3BD}) (Version: 12.0.46.0 - National Instruments) Hidden
NI LabVIEW Real-Time FIFO for Runtime (HKLM-x32\...\{6E605604-E2CE-4331-AA19-5FEF273F3CFD}) (Version: 8.5.264.0 - National Instruments) Hidden
NI LabVIEW Run-Time Engine 8.5 (HKLM-x32\...\{47FFFF8E-A6E7-4C9A-AB7B-1BE0FE29A95A}) (Version: 8.5.186.0 - National Instruments) Hidden
NI Logos 5.4 (64-bit) (HKLM\...\{8CF8CB9F-1FF7-4029-8B3D-9A40100B4A09}) (Version: 5.4.303.0 - National Instruments) Hidden
NI Logos 5.4 (HKLM-x32\...\{39E63436-773B-4294-9C19-E4E5941A6C69}) (Version: 5.4.303.0 - National Instruments) Hidden
NI Logos XT Support (HKLM-x32\...\{88A77AEA-B52C-4D59-858E-51DD450848DE}) (Version: 5.4.295.0 - National Instruments) Hidden
NI Logos64 XT Support (HKLM\...\{5A59ABAE-5F06-4241-B607-6376C29F9F31}) (Version: 5.4.295.0 - National Instruments) Hidden
NI Math Kernel Libraries (HKLM-x32\...\{DB2C5648-700D-4AEF-83E1-70C72F0C34FA}) (Version: 1.0.861.0 - National Instruments) Hidden
NI MDF Support (HKLM-x32\...\{0B5A281E-677E-4F61-9A82-964FCAFDFF2F}) (Version: 3.10.389 - National Instruments) Hidden
NI mDNS Responder 2.1 for Windows 64-bit (HKLM\...\{4DD08E99-6FC1-4188-9A2E-0AF968279E41}) (Version: 2.10.49152 - National Instruments) Hidden
NI mDNS Responder 2.1.0 (HKLM-x32\...\{6F7B933C-55A2-4F8A-BFA5-BF98CBD61C24}) (Version: 2.10.49152 - National Instruments) Hidden
NI SSL Support (64-bit) (HKLM\...\{ACA45A9D-5C68-429F-AE87-0F2917136FCC}) (Version: 12.0.408.0 - National Instruments) Hidden
NI SSL Support (HKLM-x32\...\{526FED3E-499E-4989-B9F9-207E2FE425AA}) (Version: 12.0.408.0 - National Instruments) Hidden
NI System State Publisher (64-bit) (HKLM\...\{197B80EB-D791-4DA4-9398-B5F029738E22}) (Version: 12.0.218.0 - National Instruments) Hidden
NI System State Publisher (HKLM-x32\...\{AED17FC7-86C3-47BE-84F9-9F078F522770}) (Version: 12.0.358.0 - National Instruments) Hidden
NI System Web Server 12.0 (HKLM-x32\...\{570AFAC0-96B1-4491-B24B-6D251C52AFA4}) (Version: 12.0.414.0 - National Instruments) Hidden
NI System Web Server Base 12.0.0 (64-bit) (HKLM\...\{9C10623C-BF56-4D66-8F1F-B2D667E44986}) (Version: 12.0.407.0 - National Instruments) Hidden
NI System Web Server Base 12.0.0 (HKLM-x32\...\{C9690FF6-AD3E-43B0-A7FD-6D8A4C929D2C}) (Version: 12.0.407.0 - National Instruments) Hidden
NI TDM Streaming 2.4 (64-bit) (HKLM\...\{000A570E-F926-4808-956C-A57EE91B75F6}) (Version: 2.4.55.0 - National Instruments) Hidden
NI TDM Streaming 2.4 (HKLM-x32\...\{5A6C68D9-FDCB-4675-A95A-CD908D103614}) (Version: 2.4.55.0 - National Instruments) Hidden
NI Trace Engine (64-bit) (HKLM\...\{BD432073-6A5D-4F0F-8952-43B3C21A31C3}) (Version: 12.0.401.0 - National Instruments) Hidden
NI Trace Engine (HKLM-x32\...\{4C7AB285-CE33-459F-AB26-0E2DBCCDA2D7}) (Version: 12.0.401.0 - National Instruments) Hidden
NI Uninstaller (HKLM-x32\...\{BABFD9C0-6596-4460-AD25-9866304230E2}) (Version: 3.10.389 - National Instruments) Hidden
NI VC2008MSMs x64 (HKLM\...\{07E00E94-7A78-40FA-9BEF-71C190E98041}) (Version: 9.0.401 - National Instruments) Hidden
NI VC2008MSMs x86 (HKLM-x32\...\{E84997A1-4D6F-4C0B-B60D-F85B360D2666}) (Version: 9.0.401 - National Instruments) Hidden
NI Web Application Server 12.0 (64-bit) (HKLM\...\{3F7CDE88-3B1B-42C1-ACDF-05720E0B04BB}) (Version: 12.0.422.0 - National Instruments) Hidden
NI Web Application Server 12.0 (HKLM-x32\...\{036C09F0-1423-4097-9720-D9E034CFF50A}) (Version: 12.0.422.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.3 (HKLM-x32\...\{E6068691-1FBC-4EF0-87E8-609CDB32038A}) (Version: 2.7.180.0 - National Instruments) Hidden
NI Xerces Delay Load 2.7.3 64-bit (HKLM\...\{50B2D9D8-87B6-49EE-BC5C-874119FD6B7B}) (Version: 2.7.190.0 - National Instruments) Hidden
NI-DIM 3.0.0f0 (HKLM-x32\...\{24E75860-8DFB-4420-B22A-DBA52F5C521D}) (Version: 3.00.49152 - National Instruments) Hidden
NI-DIM 3.0.0f0 for 64 Bit Windows (HKLM\...\{FE22D7F1-040E-4900-A03B-230EBB590836}) (Version: 3.00.49152 - National Instruments) Hidden
NI-ORB 3.0 (HKLM-x32\...\{3DFE81D3-F8A9-4746-BC91-1C219EDEC95A}) (Version: 3.00.49152 - National Instruments) Hidden
NI-ORB 3.0 for 64-bit Windows (HKLM\...\{AC599511-CD0C-4B9E-9DC1-C0D3C87D6FCA}) (Version: 3.00.49152 - National Instruments) Hidden
NI-PAL 2.9 64-Bit Error Files (HKLM\...\{C54BD62F-DD9E-4BDF-863B-6BD9DA95945E}) (Version: 2.90.49152 - National Instruments) Hidden
NI-PAL 2.9 Error Files (HKLM-x32\...\{F4439A5D-D097-4FC1-8E29-8A77AAA8EE77}) (Version: 2.90.49152 - National Instruments) Hidden
NI-PAL 2.9.0f0 (HKLM-x32\...\{23F2FE39-9979-408C-BB18-16EE58C561A5}) (Version: 10.100.49152 - National Instruments) Hidden
NI-PAL 2.9.0f0 for 64 Bit Windows (HKLM\...\{3D622E97-44A1-4D81-8FD0-812B919CD207}) (Version: 10.100.49152 - National Instruments) Hidden
NI-RPC 4.3.0f0 (HKLM-x32\...\{97A47220-6DF7-45A5-A766-59EF36E1F600}) (Version: 4.30.49152 - National Instruments) Hidden
NI-RPC 4.3.0f0 for 64 Bit Windows (HKLM\...\{774510C7-E6AC-4ECB-ACEF-D5284FED4D0A}) (Version: 4.30.49152 - National Instruments) Hidden
NI-VISA Runtime 5.2.0 (HKLM-x32\...\{B4F17552-FEA2-40BC-82CA-4F1DF61FF1A8}) (Version: 5.20.49152 - National Instruments) Hidden
NI-VISA x64 support 5.2.0 (HKLM\...\{CC23C5E3-CF4A-43BB-BE54-B5DB77BDD732}) (Version: 5.20.49152 - National Instruments) Hidden
OLYMPUS Digital Camera Updater (HKLM-x32\...\{BD107100-E418-4805-B08D-30E098741A95}) (Version: 2.1.3 - Olympus Corporation)
OLYMPUS Viewer 3 (HKLM-x32\...\{B8737126-7348-4F84-93BF-D4A82E653CA7}) (Version: 1.1.0 - OLYMPUS IMAGING CORP.)
Olympus Workspace (HKLM-x32\...\{7FBF5669-B60F-402B-9A08-7F7FF7FBC538}) (Version: 1.0.0 - Olympus Corporation)
OpenShot Video Editor Version 2.2.0 (HKLM\...\{4BB0DCDC-BC24-49EC-8937-72956C33A470}_is1) (Version: 2.2.0 - OpenShot Studios, LLC)
PDF Architect 6 (HKLM-x32\...\PDF Architect 6) (Version: 6.1.19.842 - pdfforge GmbH)
PDF Architect 6 Create Module (HKLM\...\{A0ACB885-7CDD-4E43-9109-E49CF70E4039}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Architect 6 Edit Module (HKLM\...\{FC39343C-732F-433E-9929-F9D08BA73792}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDF Architect 6 View Module (HKLM\...\{7FFD0E0F-478A-4393-BBB0-4B20FAF5F3B7}) (Version: 6.1.24.1862 - pdfforge GmbH) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 3.4.0 - pdfforge GmbH)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6559 - Realtek Semiconductor Corp.)
REALTEK Wireless LAN Driver (HKLM-x32\...\{9D3D8C60-A55F-4fed-B2B9-173F09590E16}) (Version: 1.00.0154 - REALTEK Semiconductor Corp.)
SonyEditor (remove only) (HKLM-x32\...\SonyEditor) (Version: - )
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: - )
TimePunch 1.92.811.1 (HKLM-x32\...\TimePunch_is1) (Version: - Gerhard Stephan Softwareentwicklung)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{F814D094-197F-43C8-87FA-3210BB780486}) (Version: 2.53.0.0 - Microsoft Corporation)
VISA Shared Components 64-Bit (HKLM\...\{198160F3-1387-4173-A50C-B9977140E258}) (Version: 1.4.0 - IVI Foundation Inc.) Hidden
VISA Shared Components 64-Bit (HKLM-x32\...\VISASharedComponents) (Version: - )
VSTax 2015 (HKLM-x32\...\{170E004A-4A39-4F00-8B9E-F2C965D85AB2}) (Version: 1.0.12 - Abraxas Informatik AG)
VSTax 2016 (HKLM-x32\...\{51C360FB-C966-412B-94FA-FF58A0909342}) (Version: 2.0.2 - Abraxas Informatik AG)
VSTax 2017 (HKLM-x32\...\{79548657-8EB1-4040-9677-2DE273D76BDA}) (Version: 1.0.17 - Abraxas Informatik AG)
VSTax 2018 (HKLM-x32\...\{CA723CBE-75D0-40E2-BCA4-5DDEF837921E}) (Version: 1.0.8 - Abraxas Informatik AG)
VSTax 2019 (HKLM-x32\...\{1D29F48B-4823-4C86-AF06-4CFF6B6CC4BE}) (Version: 1.0.10 - Abraxas Informatik AG)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (04/19/2012 2.3.1.0) (HKLM\...\98157A226B40B173301B0F53C8E98C47805D5152) (Version: 04/19/2012 2.3.1.0 - Garmin)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)
Windows-Treiberpaket - Dynastream Innovations, Inc. ANT LibUSB Drivers (04/11/2012 1.2.40.201) (HKLM\...\F9D2A789F9CFF8CEC36B544F53877C80F1F73C46) (Version: 04/11/2012 1.2.40.201 - Dynastream Innovations, Inc.)
Windows-Treiberpaket - OLYMPUS IMAGING CORP. Camera Communication Driver Package (09/09/2009 1.0.0.0) (HKLM\...\2C1C2F29FADF39F533CEEE67B90F07A5306A4BDB) (Version: 09/09/2009 1.0.0.0 - OLYMPUS IMAGING CORP.)
Windows-Treiberpaket - Silicon Labs Software (DSI_SiUSBXp_3_1) USB (02/06/2007 3.1) (HKLM\...\D1506E0025B5A3F9EB8270FE81C1EEDD9388B8A2) (Version: 02/06/2007 3.1 - Silicon Labs Software)
Wondershare Recoverit(Build 7.1.4.2) (HKLM-x32\...\{829555DC-31E5-4FEA-B350-8FCF24CECD95}_is1) (Version: 7.1.4.2 - Wondershare Software Co.,Ltd.)
XFast LAN v6.61 (HKLM\...\XFast LAN) (Version: 6.61 - cFos Software GmbH, Bonn)
XFastUSB (HKLM-x32\...\XFastUSB) (Version: 3.02.30 - ASRock Inc.)
XML Notepad 2007 (HKLM-x32\...\{FC7BACF0-1FFA-4605-B3B4-A66AB382752D}) (Version: 2.3.0.0 - Microsoft Corporation)
Packages:
=========
Candy Crush Soda Saga -> C:\Program Files\WindowsApps\king.com.CandyCrushSodaSaga_1.186.200.0_x86__kgqvnymyfvs32 [2021-02-03] (king.com)
KYOCERA Print Center -> C:\Program Files\WindowsApps\A97ECD55.KYOCERAPrintCenter_2.4.31103.0_x64__kqmhh0ktdt7dg [2020-11-13] (KYOCERA Document Solutions Inc)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-18] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1252.0_x64__8wekyb3d8bbwe [2021-02-01] (Microsoft Studios) [MS Ad]
MSN Sport -> C:\Program Files\WindowsApps\Microsoft.BingSports_4.36.20714.0_x64__8wekyb3d8bbwe [2020-03-24] (Microsoft Corporation) [MS Ad]
Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-08] (Twitter Inc.)
Viewer for Excel + -> C:\Program Files\WindowsApps\3538OpenOffice.OpenOfficeExcel_1.25.0.2_neutral__nmw6e14cfhspc [2017-04-06] (Open PDF, Word, Excel)
WindowsDVDPlayer -> C:\Program Files\WindowsApps\Microsoft.WindowsDVDPlayer_3.6.13291.0_x64__8wekyb3d8bbwe [2016-08-01] (Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-653253039-3667840127-3969234710-1000_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation)
CustomCLSID: HKU\S-1-5-21-653253039-3667840127-3969234710-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\Geschwister Biner\Dropbox [2017-08-28 18:44]
CustomCLSID: HKU\S-1-5-21-653253039-3667840127-3969234710-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems Incorporated -> Adobe Systems)
SSODL: EldosMountNotificator-cbfs5 - {D63A2C7A-8ECF-4229-907B-0EC9A3438E20} - C:\Windows\system32\cbfsMntNtf5.dll (EldoS Corporation -> EldoS Corporation)
SSODL-x32: EldosMountNotificator-cbfs5 - {D63A2C7A-8ECF-4229-907B-0EC9A3438E20} - C:\Windows\SysWOW64\cbfsMntNtf5.dll (EldoS Corporation -> EldoS Corporation)
ShellServiceObjects: Virtual Storage Mount Notification -> {D63A2C7A-8ECF-4229-907B-0EC9A3438E20} => C:\Windows\system32\cbfsMntNtf5.dll [2015-08-24] (EldoS Corporation -> EldoS Corporation)
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {D63A2C7A-8ECF-4229-907B-0EC9A3438E20} => C:\Windows\SysWOW64\cbfsMntNtf5.dll [2015-08-24] (EldoS Corporation -> EldoS Corporation)
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] (Adobe Systems Incorporated -> )
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs5] -> {A7FC0EB9-44F1-4F32-83D6-4BCEC8A27E55} => C:\Windows\system32\cbfsMntNtf5.dll [2015-08-24] (EldoS Corporation -> EldoS Corporation)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs5] -> {A7FC0EB9-44F1-4F32-83D6-4BCEC8A27E55} => C:\Windows\system32\cbfsMntNtf5.dll [2015-08-24] (EldoS Corporation -> EldoS Corporation)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] (Adobe Systems Incorporated -> )
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [ImageBadgerShell] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ImageBadger\extib.dll [2009-09-15] () [Datei ist nicht signiert]
ContextMenuHandlers1: [PDFArchitect6_ManagerExt] -> {6508EEA0-C540-4420-AF21-64937A1536D0} => C:\Program Files\PDF Architect 6\context-menu.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers1: [PDFCreator.ShellContextMenu] -> {d9cea52e-100d-4159-89ea-76e845bc13e1} => C:\Program Files\PDFCreator\PDFCreatorShell.DLL [2018-11-13] (pdfforge GmbH -> pdfforge GmbH)
ContextMenuHandlers2: [ARSD.FastPictureViewer] -> {B4F3C99C-6099-4617-8052-82ABF04C2F6E} => C:\Program Files\FastPictureViewer\FastPictureViewer.dll [2016-08-15] (Axel Rietschin -> Axel Rietschin Software Developments)
ContextMenuHandlers2-x32: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} => C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2contmenu.dll [2015-11-13] (Emsisoft Ltd -> Emsisoft Ltd)
ContextMenuHandlers2: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-11-13] (Emsisoft Ltd -> Emsisoft Ltd)
ContextMenuHandlers3-x32: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} => C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2contmenu.dll [2015-11-13] (Emsisoft Ltd -> Emsisoft Ltd)
ContextMenuHandlers3: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-11-13] (Emsisoft Ltd -> Emsisoft Ltd)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [ARSD.FastPictureViewer] -> {B4F3C99C-6099-4617-8052-82ABF04C2F6E} => C:\Program Files\FastPictureViewer\FastPictureViewer.dll [2016-08-15] (Axel Rietschin -> Axel Rietschin Software Developments)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Keine Datei
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-05-03] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-04-01] (Adobe Systems Incorporated -> )
ContextMenuHandlers6-x32: [Emsisoft Shell Extension] -> {AB77609F-2178-4E6F-9C4B-44AC179D937A} => C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\a2contmenu.dll [2015-11-13] (Emsisoft Ltd -> Emsisoft Ltd)
ContextMenuHandlers6: [Emsisoft Shell Extension x64] -> {E3F21FC7-6D65-48E7-B62B-E9ED8200C764} => C:\PROGRAM FILES (X86)\EMSISOFT ANTI-MALWARE\A2CONTMENU64.DLL [2015-11-13] (Emsisoft Ltd -> Emsisoft Ltd)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\Geschwister Biner\Desktop\Applikationen Verknüpfung\GlucoLog.lnk -> C:\Program Files (x86)\glucolog\glucolog.bat ()
Shortcut: C:\Users\Geschwister Biner\AppData\Roaming\Microsoft\Windows\Network Shortcuts\Z_Meine Websites auf MSN\target.lnk -> hxxp://www.msnusers.co
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2009-09-15 03:08 - 2009-09-15 03:08 - 000176640 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ImageBadger\extib.dll
2010-04-26 00:37 - 2010-04-26 00:37 - 000440320 _____ (KYOCERA MITA) [Datei ist nicht signiert] C:\WINDOWS\system32\spool\DRIVERS\x64\3\KAUU35FV.DLL
2002-01-05 07:03 - 2002-01-05 07:03 - 000176128 _____ (Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MSDBG2.DLL
2012-06-05 13:21 - 2012-06-05 13:21 - 000540160 _____ (National Instruments Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\National Instruments\Shared\LogosXT\nilxtcor.dll
2012-05-21 19:55 - 2012-05-21 19:55 - 000254464 _____ (National Instruments Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\National Instruments\Shared\NI WebServer\libappweb.dll
2012-05-21 20:07 - 2012-05-21 20:07 - 000013824 _____ (National Instruments Corporation) [Datei ist nicht signiert] c:\program files (x86)\national instruments\shared\ni webserver\libcopyModule.dll
2012-05-21 20:07 - 2012-05-21 20:07 - 000024064 _____ (National Instruments Corporation) [Datei ist nicht signiert] c:\program files (x86)\national instruments\shared\ni webserver\libdirModule.dll
2012-05-21 20:09 - 2012-05-21 20:09 - 000058880 _____ (National Instruments Corporation) [Datei ist nicht signiert] c:\program files (x86)\national instruments\shared\ni webserver\libespModule.dll
2012-05-23 13:42 - 2012-05-23 13:42 - 000168448 _____ (National Instruments Corporation) [Datei ist nicht signiert] c:\program files (x86)\national instruments\shared\ni webserver\libniauthModule.dll
2012-05-23 13:44 - 2012-05-23 13:44 - 000183296 _____ (National Instruments Corporation) [Datei ist nicht signiert] c:\program files (x86)\national instruments\shared\ni webserver\libregSvcModule.dll
2012-05-22 08:47 - 2012-05-22 08:47 - 000068608 _____ (National Instruments Corporation) [Datei ist nicht signiert] c:\program files (x86)\national instruments\shared\ni webserver\svclocmodule.dll
2012-05-30 08:48 - 2012-05-30 08:48 - 000667648 _____ (National Instruments Corporation) [Datei ist nicht signiert] c:\program files (x86)\national instruments\shared\ni webserver\ws_runtime.dll
2012-05-23 13:30 - 2012-05-23 13:30 - 000455168 _____ (National Instruments Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\National Instruments\Shared\NIAuth\niauth.dll
2012-05-23 12:52 - 2012-05-23 12:52 - 000240128 _____ (National Instruments Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\National Instruments\Shared\NIAuth\niPortableRegistry.dll
2012-05-23 12:57 - 2012-05-23 12:57 - 000329216 _____ (National Instruments Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\National Instruments\Shared\NIAuth\niPortableRegistryRemote.dll
2012-06-05 13:08 - 2012-06-05 13:08 - 000227328 _____ (National Instruments Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\National Instruments\Shared\Security\nidm_client_thinauth.dll
2012-05-17 09:08 - 2012-05-17 09:08 - 000090112 _____ (National Instruments Corporation) [Datei ist nicht signiert] C:\Program Files (x86)\National Instruments\Shared\TraceEngine\ni_traceengine.dll
2012-05-30 09:02 - 2012-05-30 09:02 - 000128512 _____ (National Instruments Corporation) [Datei ist nicht signiert] C:\ProgramData\National Instruments\WebServices\NI\LVWSAuthSvc\niauthsvc.dll
2012-05-30 08:59 - 2012-05-30 08:59 - 000057856 _____ (National Instruments Corporation) [Datei ist nicht signiert] C:\ProgramData\National Instruments\WebServices\NI\LVWSDeploySvc\deploysvc.dll
2012-05-30 09:07 - 2012-05-30 09:07 - 000226816 _____ (National Instruments Corporation) [Datei ist nicht signiert] C:\ProgramData\National Instruments\WebServices\NI\LVWSSysAdmin\sysadminsvc.dll
2018-09-03 14:59 - 2017-09-27 16:30 - 000489984 _____ (Newtonsoft) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\Newtonsoft.Json.dll
2019-02-18 11:35 - 2019-02-18 11:35 - 000116736 _____ (pdfforge GmbH) [Datei ist nicht signiert] C:\WINDOWS\System32\pdfcmon.dll
2018-03-09 04:20 - 2018-03-09 04:20 - 000427520 _____ (The curl library, hxxps://curl.haxx.se/) [Datei ist nicht signiert] C:\Program Files\PDF Architect 6\libcurl.dll
2018-09-03 14:59 - 2017-11-07 15:37 - 000088064 _____ (Wondershare) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppCollect.dll
2018-09-03 14:59 - 2017-11-07 15:37 - 000200192 _____ (Wondershare) [Datei ist nicht signiert] [Datei wird verwendet] C:\Program Files (x86)\Wondershare\WAF\2.4.3.233\WsAppCommon.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\ProgramData\TEMP:029666E0 [131]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKU\S-1-5-21-653253039-3667840127-3969234710-1000\Software\Microsoft\Internet Explorer\Main,Start Page = about:Tabs
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: PDF Architect 6 Helper -> {9FD094B1-A4BF-415A-82AE-8C2845D0B769} -> C:\Program Files\PDF Architect 6\creator\plugins\IEAddin\creator-ie-helper.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: PDF Architect 6 Helper -> {9FD094B1-A4BF-415A-82AE-8C2845D0B769} -> C:\Program Files (x86)\PDF Architect 6\creator\plugins\IEAddin\creator-ie-helper.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
BHO-x32: Free Download Manager -> {CC59E0F9-7E43-44FA-9FAA-8377850BF205} -> C:\Program Files (x86)\Free Download Manager\iefdm2.dll [2014-04-29] (FreeDownloadManager.ORG) [Datei ist nicht signiert]
Toolbar: HKLM - PDF Architect 6 Toolbar - {E8536605-CA24-4DFF-B1BC-316EE27F6DF7} - C:\Program Files\PDF Architect 6\creator\plugins\IEAddin\creator-ie-plugin.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
Toolbar: HKLM-x32 - PDF Architect 6 Toolbar - {E8536605-CA24-4DFF-B1BC-316EE27F6DF7} - C:\Program Files (x86)\PDF Architect 6\creator\plugins\IEAddin\creator-ie-plugin.dll [2018-10-23] (pdfforge GmbH -> pdfforge GmbH)
Toolbar: HKU\S-1-5-21-653253039-3667840127-3969234710-1000 -> Kein Name - {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - Keine Datei
Handler-x32: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files (x86)\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation) [Datei ist nicht signiert]
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x86;C:\Program Files (x86)\Intel\OpenCL SDK\2.0\bin\x64;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\Bin\;C:\Program Files\IVI Foundation\VISA\Win64\Bin\;C:\Program Files (x86)\IVI Foundation\VISA\WinNT\Bin;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-653253039-3667840127-3969234710-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
ist aktiviert.
Network Binding:
=============
LAN-Verbindung: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
Drahtlosnetzwerkverbindung: cFosSpeed for faster Internet connections (NDIS 6) -> cfosspeed (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
MSCONFIG\Services: a2AntiMalware => 3
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AdobeUpdateService => 3
MSCONFIG\Services: AGSService => 3
MSCONFIG\Services: Apple Mobile Device Service => 2
MSCONFIG\Services: Bonjour Service => 3
MSCONFIG\Services: bthserv => 3
MSCONFIG\Services: cFosSpeedS => 3
MSCONFIG\Services: dbupdate => 2
MSCONFIG\Services: dbupdatem => 3
MSCONFIG\Services: DbxSvc => 2
MSCONFIG\Services: DevoloNetworkService => 3
MSCONFIG\Services: Garmin Device Interaction Service => 3
MSCONFIG\Services: iPod Service => 3
MSCONFIG\Services: IswSvc => 2
MSCONFIG\Services: NetDrive2_Service_NetDrive2 => 3
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^MyPen Pro.lnk => C:\Windows\pss\MyPen Pro.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Geschwister Biner^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^CLX.PayPen.lnk => C:\Windows\pss\CLX.PayPen.lnk.Startup
MSCONFIG\startupreg: Adobe Creative Cloud => "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeBridge =>
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: emsisoft anti-malware => "c:\program files (x86)\emsisoft anti-malware\a2guard.exe" /d=60
MSCONFIG\startupreg: FreeStyleLibreautorunexe => C:\Program Files (x86)\FreeStyle Libre\MASLaunchClient.FreeStyleLibre.exe
MSCONFIG\startupreg: GarminExpressTrayApp => "C:\Program Files (x86)\Garmin\Express Tray\ExpressTray.exe"
MSCONFIG\startupreg: IAStorIcon => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe "C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
MSCONFIG\startupreg: ISW => C:\Program Files\CheckPoint\ZAForceField\ForceField.exe /icon="hidden"
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: NetDrive2 => "C:\Program Files\NetDrive2\NetDrive2.exe" -tray
MSCONFIG\startupreg: ProductUpdater => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
MSCONFIG\startupreg: USB3MON => "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
MSCONFIG\startupreg: XFast LAN => C:\Program Files\ASRock\XFast LAN\cFosSpeed.exe
MSCONFIG\startupreg: XFastUSB => "C:\Program Files (x86)\XFastUSB\XFastUsb.exe"
MSCONFIG\startupreg: ZoneAlarm Installer => "C:\Program Files (x86)\CheckPoint\Install\Launcher.exe" "C:\Program Files (x86)\CheckPoint\Install\Install.exe" /r config /c "C:\Program Files (x86)\CheckPoint\Install\Install.xml" /w
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "FreeStyleLibreautorunexe"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-653253039-3667840127-3969234710-1000\...\StartupApproved\StartupFolder: => "CLX.PayPen.lnk"
HKU\S-1-5-21-653253039-3667840127-3969234710-1000\...\StartupApproved\StartupFolder: => "Lookeen.lnk"
HKU\S-1-5-21-653253039-3667840127-3969234710-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-653253039-3667840127-3969234710-1000\...\StartupApproved\Run: => "GarminExpress"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{E08AD381-A8BB-4081-90D4-59F7F4B3446D}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{0DE55447-998E-466A-9AC3-0710AA4F602C}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{321F8973-D549-40A3-984E-0BA4339059B0}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{B6F4B3E8-88A6-461D-958A-6F804B55AD6D}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (devolo AG -> devolo AG)
FirewallRules: [{909F7521-136A-48CB-ADAC-E63FA9FEB499}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (devolo AG -> devolo AG)
FirewallRules: [TCP Query User{FFB25581-1AEC-45D2-BDEB-5D485CF3A80B}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{64BD4D66-9822-4AC0-98D6-DC2AB2944FB6}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [{8525802B-7AB0-43ED-86CE-FF28AFC1A161}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (devolo AG -> devolo AG)
FirewallRules: [{13A10147-F88B-4114-9A99-EFFD4624A98C}] => (Allow) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe (devolo AG -> devolo AG)
FirewallRules: [{8519C964-CA2F-4609-91B2-A6D0684EEF72}] => (Allow) C:\Program Files\NetDrive2\nd2svc.exe (Bdrive Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [{6EDA3A2E-2A3D-4EF1-9FFB-5090094B2197}] => (Allow) C:\Program Files\NetDrive2\nd2svc.exe (Bdrive Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [{77545ADF-C7F0-45F0-8257-A0BA4EE6CA7E}] => (Allow) C:\Program Files\NetDrive2\NetDrive2.exe (Bdrive Inc. -> Bdrive Inc) [Datei ist nicht signiert]
FirewallRules: [{BACD24C1-E2F0-4D7D-9FE7-A11359B24E7F}] => (Allow) C:\Program Files\NetDrive2\NetDrive2.exe (Bdrive Inc. -> Bdrive Inc) [Datei ist nicht signiert]
FirewallRules: [{1CC4F1B1-13F2-4809-960C-3BCDD8C2AFD9}] => (Allow) C:\Program Files\NetDrive2\nd2cmd.exe (Bdrive Inc. -> Bdrive Inc) [Datei ist nicht signiert]
FirewallRules: [{5E061979-B52B-47DC-B732-8D07834B5045}] => (Allow) C:\Program Files\NetDrive2\nd2cmd.exe (Bdrive Inc. -> Bdrive Inc) [Datei ist nicht signiert]
FirewallRules: [{A37E6B6F-55F8-4929-87D7-C26584825CE3}] => (Allow) C:\Program Files\NetDrive2\nd2svc.exe (Bdrive Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [{7F7DF316-969C-4ECD-836B-244205C08CD5}] => (Allow) C:\Program Files\NetDrive2\nd2svc.exe (Bdrive Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [{269AF1C3-03A1-43BB-8C42-13330D271672}] => (Allow) C:\Program Files\NetDrive2\NetDrive2.exe (Bdrive Inc. -> Bdrive Inc) [Datei ist nicht signiert]
FirewallRules: [{D941603D-1B2B-4B33-A2DB-DB1137D11335}] => (Allow) C:\Program Files\NetDrive2\NetDrive2.exe (Bdrive Inc. -> Bdrive Inc) [Datei ist nicht signiert]
FirewallRules: [{BF146FE2-9E3A-463A-B727-B4B977985E00}] => (Allow) C:\Program Files\NetDrive2\nd2cmd.exe (Bdrive Inc. -> Bdrive Inc) [Datei ist nicht signiert]
FirewallRules: [{4D83812F-0BE5-42C1-B05A-DE0CAB4DD42D}] => (Allow) C:\Program Files\NetDrive2\nd2cmd.exe (Bdrive Inc. -> Bdrive Inc) [Datei ist nicht signiert]
FirewallRules: [{BCF75935-262F-4446-97B6-1812583B9EB6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8CDA327F-1595-4640-AAA3-A5A567167278}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6F78F927-0CBF-4D5B-A43B-C7F2F19F544F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{EFCE889C-B78B-4637-8437-BF08E15E5CA9}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [TCP Query User{991E07BF-2F1E-438D-9837-C03D2B3FA734}C:\program files\openshot video editor\launch.exe] => (Block) C:\program files\openshot video editor\launch.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{F7687C57-7C70-4CD9-BD80-366301DBFD74}C:\program files\openshot video editor\launch.exe] => (Block) C:\program files\openshot video editor\launch.exe () [Datei ist nicht signiert]
FirewallRules: [{416AEF60-B263-4075-A3ED-966B8C456A33}] => (Allow) C:\Program Files\Blackmagic DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{F429DF6D-BC17-4302-9857-49D3D0335017}] => (Allow) C:\Program Files\Blackmagic DaVinci Resolve\bmdpaneld.exe () [Datei ist nicht signiert]
FirewallRules: [{C5A14CF7-5E6E-414F-8E73-2F735CACCE5C}] => (Allow) C:\Program Files\Blackmagic DaVinci Resolve\JLCooperPanelDaemon.exe () [Datei ist nicht signiert]
FirewallRules: [{BEE6D819-9D61-49EA-BF8C-AF4F0DA4667B}] => (Allow) C:\Program Files\Blackmagic DaVinci Resolve\EuphonixPanelDaemon.exe () [Datei ist nicht signiert]
FirewallRules: [{F1BB102A-DC48-4BD8-8CFE-A507B5BB36A6}] => (Allow) C:\Program Files\Blackmagic DaVinci Resolve\TangentPanelDaemon.exe () [Datei ist nicht signiert]
FirewallRules: [{DD3B0BA8-E34E-4E52-8D59-3AFA4DF052E2}] => (Allow) C:\Program Files\Blackmagic DaVinci Resolve\ElementsPanelDaemon.exe () [Datei ist nicht signiert]
FirewallRules: [{B1A36A9C-7E4C-4C08-B645-9A034F5ABD40}] => (Allow) C:\Program Files\Blackmagic DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{3B848BF1-A2CB-49D8-BEDD-6E15C4BDB929}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{22EC3136-CADE-4416-9D77-F40268D55AD2}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{C229CA86-D1D2-4089-A45B-2E31E803BAF1}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{4F08CF52-B016-4A68-944C-1304C9C0BE35}] => (Allow) C:\Program Files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{CD4A55A3-AC69-4910-B11D-11764353D2A1}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{E9F3CA92-CAD3-46F6-BDA4-C9D733553497}] => (Allow) C:\Program Files (x86)\National Instruments\Shared\NI WebServer\SystemWebServer.exe (National Instruments Corporation -> National Instruments Corporation)
FirewallRules: [{5D7E7697-04F6-478F-A18E-FEECD5ED7352}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B6231473-3472-46D3-A54E-51943297D22B}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{3E1C1797-2589-483C-9AB0-D0A5037E4334}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D312DE4A-9E5C-48A3-BE5A-8E7DB92C5255}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{64853C99-DCD9-48F1-B8D3-460E60D943B4}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.68.96.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{D52DF412-F84B-4653-B284-8FF253187E94}] => (Allow) C:\Program Files (x86)\CCleaner Browser\Application\CCleanerBrowser.exe (Piriform Software Ltd -> Piriform Software)
FirewallRules: [{A7585384-B070-4B60-A5A4-084DFBD0E631}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
==================== Wiederherstellungspunkte =========================
04-02-2021 17:51:28 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager ============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (02/05/2021 04:43:08 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) Das Objekt oder die Eigenschaft wurde nicht gefunden.
Error: (02/05/2021 04:43:08 PM) (Source: DbxSvc) (EventID: 281) (User: )
Description: CertFindCertificateInStore failed with: (-2146885628) Das Objekt oder die Eigenschaft wurde nicht gefunden.
Error: (02/04/2021 05:52:18 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.
Error: (02/04/2021 05:52:18 PM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]
Error: (02/04/2021 03:59:58 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Name des fehlerhaften Moduls: ucrtbase.dll, Version: 10.0.19041.546, Zeitstempel: 0x73123758
Ausnahmecode: 0xc0000409
Fehleroffset: 0x0009edbb
ID des fehlerhaften Prozesses: 0x200c
Startzeit der fehlerhaften Anwendung: 0x01d6fb062598b79c
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Microsoft Office\OFFICE11\WINWORD.EXE
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\ucrtbase.dll
Berichtskennung: 1cbd6345-fc58-4063-a4ae-307b5c0d00c9
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (02/04/2021 02:37:11 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: WINWORD.EXE, Version: 11.0.8411.0, Zeitstempel: 0x532a603f
Name des fehlerhaften Moduls: ucrtbase.dll, Version: 10.0.19041.546, Zeitstempel: 0x73123758
Ausnahmecode: 0xc0000409
Fehleroffset: 0x0009edbb
ID des fehlerhaften Prozesses: 0x1e30
Startzeit der fehlerhaften Anwendung: 0x01d6fad9da0a13ee
Pfad der fehlerhaften Anwendung: C:\Program Files (x86)\Microsoft Office\OFFICE11\WINWORD.EXE
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\ucrtbase.dll
Berichtskennung: 32e00c21-5bff-4e8d-8de7-3b406e45ffc2
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (02/04/2021 08:47:05 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf (F:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)
Error: (02/04/2021 08:47:04 AM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Volume (D:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)
Systemfehler:
=============
Error: (02/05/2021 08:06:34 PM) (Source: DCOM) (EventID: 10000) (User: Antec_1)
Description: Ein DCOM-Server konnte nicht gestartet werden: {0358B920-0AC7-461F-98F4-58E32CD89148}. Fehler:
"2147942767"
Aufgetreten beim Start dieses Befehls:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (02/04/2021 05:54:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80240017 fehlgeschlagen: 2021-02 Vorschau auf kumulatives Update für .NET Framework 3.5 und 4.8 für Windows 10 Version 2004 für x64 (KB4598299)
Error: (02/04/2021 05:52:44 PM) (Source: SNMP) (EventID: 1500) (User: )
Description: Beim Zugreifen auf den Registrierungsschlüssel SYSTEM\CurrentControlSet\Services\SNMP\Parameters\TrapConfiguration ist ein Fehler aufgetreten.
Error: (02/03/2021 09:24:19 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Error: (02/03/2021 04:15:24 PM) (Source: Schannel) (EventID: 4103) (User: NT-AUTORITÄT)
Description: Schwerwiegender Fehler beim Erstellen der Client-Anmeldeinformationen für TLS. Der interne Fehlerstatus ist 10013.
Error: (02/02/2021 02:02:36 PM) (Source: DCOM) (EventID: 10000) (User: Antec_1)
Description: Ein DCOM-Server konnte nicht gestartet werden: {0358B920-0AC7-461F-98F4-58E32CD89148}. Fehler:
"2147942767"
Aufgetreten beim Start dieses Befehls:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (02/01/2021 11:27:00 AM) (Source: DCOM) (EventID: 10000) (User: Antec_1)
Description: Ein DCOM-Server konnte nicht gestartet werden: {0358B920-0AC7-461F-98F4-58E32CD89148}. Fehler:
"2147942767"
Aufgetreten beim Start dieses Befehls:
C:\WINDOWS\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (02/01/2021 05:13:34 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4
Windows Defender:
===================================
Date: 2021-02-05 12:40:31.3600000Z
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {979A89FB-F3CA-4EF9-91A0-BACF7D9BD25E}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-02-04 08:46:55.6660000Z
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {C61F67CD-AF4C-46E6-86F8-3FF136224867}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-02-04 05:14:04.2760000Z
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {EE41584C-7BF5-4806-88A9-C123213BC3E2}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\Netzwerkdienst
Date: 2021-02-03 17:07:36.9380000Z
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {4ED27251-2C13-4969-982A-D449DB7D111E}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2021-02-03 17:07:32.2360000Z
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {764805C4-6C51-4036-9BDC-BFD69C0B1411}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\Netzwerkdienst
CodeIntegrity:
===================================
Date: 2021-01-15 16:57:48.9790000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-15 16:57:48.9430000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-15 16:57:48.8320000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-15 16:57:48.8180000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-15 16:57:46.5030000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-15 16:57:46.3630000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-15 16:54:13.7280000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.
Date: 2021-01-15 16:54:13.6810000Z
Description:
Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. P1.00 03/26/2012
Hauptplatine: ASRock Z77E-ITX
Prozessor: Intel(R) Core(TM) i7-3770S CPU @ 3.10GHz
Prozentuale Nutzung des RAM: 25%
Installierter physikalischer RAM: 16086.3 MB
Verfügbarer physikalischer RAM: 11907.5 MB
Summe virtueller Speicher: 32470.3 MB
Verfügbarer virtueller Speicher: 28079.56 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:237.88 GB) (Free:18.88 GB) NTFS
Drive d: (Volume) (Fixed) (Total:693.75 GB) (Free:384.44 GB) NTFS
Drive f: () (Fixed) (Total:4.88 GB) (Free:4.82 GB) NTFS
\\?\Volume{adaf342f-b2db-11e1-a35d-806e6f6e6963}\ (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{960b8df8-0000-0000-0000-e07e3b000000}\ () (Fixed) (Total:0.49 GB) (Free:0.05 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 238.5 GB) (Disk ID: 960B8DF8)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=237.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=503 MB) - (Type=27)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 698.6 GB) (Disk ID: 9DD925D0)
Partition 1: (Not Active) - (Size=693.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=4.9 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
|
