Zurück   Trojaner-Board > Malware entfernen > Plagegeister aller Art und deren Bekämpfung

Plagegeister aller Art und deren Bekämpfung: Internetanbieter-Popup mit Hinweis auf Überwachung

Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen.

Thema geschlossen
Alt 24.01.2021, 10:33   #1
CC200
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung



Werte Community,

Ich habe gestern ein Popup meines Internetanbieters (?) erhalten. Die Meldung in etwa: Ihre Verbindungen werden von der Bundespolizei überwacht.

In der Kopfzeile war der Name meines Internetanbieters, was mich etwas stutzig macht.

Ist das ernst zu nehmen, oder nur eine Art personalisiertes Spam-Popup?

Vielen Dank für eure Hilfe!

Alt 24.01.2021, 12:49   #2
M-K-D-B
/// TB-Ausbilder
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung







Mein Name ist Matthias und ich werde dir bei der Analyse und der eventuell notwendigen Bereinigung deines Computers helfen.




Einen Screenshot davon hast du nicht zufällig gemacht?
Ich hätte das gerne gesehen...

Es klingt wie der Besuch einer modifizierten Seite, von der Schadsoftware auf den Rechner kommen kann (z.B. Drive-By-Infektion).
Du hast das Pop-Up geschlossen und die temporären Browserdaten gelöscht? Dann könntest du Glück gehabt haben.

Wir können gerne zur Sicherheit einen Blick auf dein System werfen. Wenn du daran Interesse hast, bitte die Anleitung durchlesen und abarbeiten.

Bitte beachten - Unsere Regeln bei der Bereinigung - Welche Informationen wir benötigen:
Für alle Hilfesuchenden! Was muss ich vor der Eröffnung eines Themas beachten?
__________________


Alt 24.01.2021, 14:07   #3
CC200
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung



Vielen Dank für die schnelle Antwort.

Habe das Popup erst später bemerkt, da es im Hintergrund geöffnet wurde. Dann alles geschlossen und CCleaner laufen lassen.
Hier die Logdaten von FRST.

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 24-01-2021
durchgeführt von ***** (Administrator) auf *****-PC (ASUS All Series) (24-01-2021 13:31:41)
Gestartet von C:\Users\*****\Downloads
Geladene Profile: *****
Platform: Windows 10 Pro Version 1909 18363.1316 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(D-Link Corporation -> ) C:\Program Files (x86)\D-Link Computer Inc\D-Link DWA-140\WPSHWPBC.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\113.4.507\QtWebEngineProcess.exe <3>
(Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert] C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe
(Focusrite Audio Engineering, Ltd.) [Datei ist nicht signiert] C:\Program Files\FocusriteUSB\Focusrite Notifier.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <10>
(GoPro Media, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(ManyCam -> Visicom Media Inc.) C:\ProgramData\ManyCam\Service\ManyCamService.exe
(Media Gobbler, Inc) [Datei ist nicht signiert] C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe
(Media Gobbler, Inc. -> Media Gobbler, Inc) C:\Program Files (x86)\Media Gobbler, Inc\User Agent\GobblerTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe
(PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Sonarworks) [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\Reference 4 Systemwide.exe <4>

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-09-09] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\FocusriteUSB\Focusrite Notifier.exe [5029376 2020-06-02] (Focusrite Audio Engineering, Ltd.) [Datei ist nicht signiert]
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [705728 2020-11-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-10-07] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-12] (Adobe Inc. -> )
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [GobblerTray] => C:\Program Files (x86)\Media Gobbler, Inc\User Agent\GobblerTray.exe [1520664 2017-06-09] (Media Gobbler, Inc. -> Media Gobbler, Inc)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91585088 2020-03-31] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [20569056 2020-04-17] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [680712 2021-01-12] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Reference 4 Systemwide.exe] => C:\Program Files\Sonarworks\Reference 4\Systemwide\Reference 4 Systemwide.exe [20951552 2020-10-28] (Sonarworks) [Datei ist nicht signiert]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Update Plus Player] => C:\Program Files\VLC Plus Player\vlc.exe [157808 2020-10-16] (Aller Media e.K. -> Aller Media e.K.) <==== ACHTUNG
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [] => [X]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\MountPoints2: {059b684f-8e30-11e9-af07-eb7f887a18cb} - "H:\pushinst.exe" 
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-11] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FASUSBAudio Control Panel Autostart.lnk [2019-10-26]
ShortcutTarget: FASUSBAudio Control Panel Autostart.lnk -> C:\Program Files\Fractal Audio Systems\USB Audio Driver\FASUSBAudioCplApp.exe () [Datei ist nicht signiert]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NIHardwareAccessibilityHelper.exe.lnk [2020-09-24]
ShortcutTarget: NIHardwareAccessibilityHelper.exe.lnk -> C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe (Native Instruments GmbH -> Native Instruments GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NTKDaemon.lnk [2020-09-24]
ShortcutTarget: NTKDaemon.lnk -> C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe (Native Instruments GmbH -> Native Instruments GmbH)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {00ACD064-B95F-43B7-8522-523411BC77C9} - \Microsoft\Windows\Setup\EOSNotify2 -> Keine Datei <==== ACHTUNG
Task: {04ED0FF3-CD2B-43BC-9825-0F3EE68D8F55} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2649200 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {08816F2B-466E-4FE3-9F12-545B214DA227} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0A36A40A-D75B-4D2B-BE86-FA81E53C3712} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1549F9D2-D2BA-438A-B7DF-FF7324AECF79} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {1F65BEF6-A760-40E9-A5DF-AB3291D03627} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {20E1D964-8096-47AC-93BA-2B726DEEA533} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {24FCAD7E-E24C-4F34-ABA9-174AAA48CEF5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {2BE9CB56-5E46-4B39-9736-1F60D4CEC65E} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2EA746C2-5568-45C2-95F4-9B01E5779FDA} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {47C288D5-536E-465E-80EA-FB0BA85192B4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {49341165-1B6B-45C7-ABF2-A3B640F53DBF} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {519635D2-71EB-43C8-9AA3-BE241C7EA18E} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [233184 2020-12-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {5243B0C2-0B7B-4788-8A6B-F97D940D4730} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {56D6D699-50AC-4EB6-A3BF-02EDA376C31F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {58790F3C-6275-4CB5-81D8-D0DB1B542A37} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {63380CEF-92CD-4BB6-9AB8-B9A59E599B72} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {69C36DAE-085C-40F4-9849-B2E0FE18D4BA} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [338944 2019-10-11] (Microsoft Corporation) [Datei ist nicht signiert]
Task: {6AB8B963-6C84-449C-A34E-0ECE08EB928B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6B245F80-328E-4A5D-A742-C248AC5D110B} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [338944 2019-10-11] (Microsoft Corporation) [Datei ist nicht signiert]
Task: {6BA6E02B-A8A5-4184-8F31-2942CDB730C5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6FD91224-319A-46F1-9CB2-5B61DBC1EA04} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {716C0580-417F-4FF5-A46D-677A198C362A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-14] (Google Inc -> Google LLC)
Task: {7462ED58-6153-4699-B1A9-EB5F38371F00} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [29934096 2020-12-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {7505CBB5-02EF-4A57-8272-C6455DFDBC73} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7A59E56D-1217-4E9E-9011-85A300C5DAD0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-14] (Google Inc -> Google LLC)
Task: {8074D696-01CB-4875-BFAD-3AA17CBCD98A} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {8C2E91F0-6595-4C62-A613-FE0347891625} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8C48E64A-7587-456F-9118-89CF810285E9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {93FCC8B5-6888-46E6-8052-2CF35BB526E2} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {95FF5E5B-A522-415A-829D-ADAF443330BC} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {9CD56F43-5335-4FD2-8364-0B4CB0FDAA2A} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
Task: {9F4617EB-E670-4470-88C3-3C7CDDE2CE90} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AEEF9A97-9F0C-48BC-BD7E-BFF24E0F97C0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {C49552A6-68FA-4FD0-A08E-40EB4B2729F3} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D37BDBE0-C394-4F31-AA2A-FE007EFF3C63} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D6797B3C-F8A3-416A-8CC6-DE80CE64C91A} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {DA4C95B5-2FE4-4E27-BF0C-D24FFB116A51} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {E05E2A2F-EAA3-46D9-819E-397664C896D6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E3D8BAFC-FBC4-4E70-A9E5-66E36A287B1F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {FCA9990E-712C-4A77-B03F-F0634F1235EB} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {FE11A46E-94AC-4EC6-A12B-03A80EA7EE2A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{575D7A83-715E-402A-8358-05F22E7EAEBB}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{8d2143b0-6a87-4525-a322-6f9cf338fe0a}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{b7894936-f7ed-4463-810c-998843d6282f}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{C80A8C93-9511-46B8-8B52-E06CB37D59DE}: [DhcpNameServer] 192.168.178.1

Edge: 
=======
Edge Profile: C:\Users\*****\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-24]

FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-137335120-3890803558-813276337-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\*****\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-20] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default [2021-01-24]
CHR Extension: (Präsentationen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-14]
CHR Extension: (Docs) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-14]
CHR Extension: (Google Drive) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-14]
CHR Extension: (Avira Safe Shopping) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2021-01-19]
CHR Extension: (Tabellen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-14]
CHR Extension: (Avira Browserschutz) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2020-12-02]
CHR Extension: (Google Docs Offline) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-16]
CHR Extension: (Google Mail) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-08]
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-01-24]
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-24]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-10-07] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1205960 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [537472 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483432 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483432 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [573960 2021-01-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-09] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936456 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [636592 2020-11-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [384360 2020-12-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [244888 2020-12-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [161072 2020-12-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44064 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 ElfoService; C:\Program Files (x86)\ElsterFormular Update Service\bin\elfoService.exe [1113864 2020-06-03] (Bayerisches Landesamt fuer Steuern -> )
R2 Focusrite Control Server; C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe [1554432 2020-06-02] (Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert]
R2 gobblerproxy; C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe [15872 2017-06-09] (Media Gobbler, Inc) [Datei ist nicht signiert]
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> )
R2 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (ManyCam -> Visicom Media Inc.)
R2 NIHostIntegrationAgent; C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe [18761336 2020-05-14] (Native Instruments GmbH -> Native Instruments GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WPSHWPBC_DWA_130; C:\Program Files (x86)\D-Link Computer Inc\D-Link DWA-140\WPSHWPBC.exe [317576 2018-10-15] (D-Link Corporation -> )
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15368 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-12-26] (Microsoft Windows Early Launch Anti-Malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [207424 2020-11-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199752 2020-05-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 avmeject; C:\WINDOWS\System32\drivers\avmeject.sys [14120 2010-10-04] (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 bomebus; C:\WINDOWS\System32\drivers\bomebus.sys [56376 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 bomemidi; C:\WINDOWS\system32\drivers\bomemidi.sys [50744 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-10-07] (Microsoft Corporation) [Datei ist nicht signiert]
R3 Focusriteusb; C:\WINDOWS\System32\drivers\Focusriteusb.sys [123456 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteusbSwRoot; C:\WINDOWS\System32\drivers\FocusriteusbSwRoot.sys [92568 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 Focusriteusb_AUDIO; C:\WINDOWS\system32\drivers\FocusriteusbAudio.sys [87912 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 Focusriteusb_MIDI; C:\WINDOWS\system32\drivers\FocusriteusbMidi.sys [49808 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
S3 fwlanusb4; C:\WINDOWS\system32\DRIVERS\fwlanusb4.sys [1293824 2010-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVM GmbH)
R3 iLokDrvr; C:\WINDOWS\System32\drivers\iLokDrvr.sys [25808 2019-06-22] (PACE Anti-Piracy, Inc. -> )
R3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-29] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
S3 nikksm2midi; C:\WINDOWS\System32\Drivers\nikksm2midi.sys [340312 2017-07-20] (Native Instruments GmbH -> Native Instruments GmbH)
S3 nikksm2usb; C:\WINDOWS\System32\drivers\nikksm2usb.sys [88016 2017-07-20] (Native Instruments GmbH -> Native Instruments GmbH)
S3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 sonarworks_VirtualDevice; C:\WINDOWS\System32\drivers\sonarworks.sys [442416 2020-10-23] (SIA Sonarworks -> Sonarworks)
R3 synusb64; C:\WINDOWS\System32\drivers\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH -> Steinberg Media Technologies GmbH)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2019-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win10.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-01-24 13:31 - 2021-01-24 13:32 - 000032785 _____ C:\Users\*****\Downloads\FRST.txt
2021-01-24 13:31 - 2021-01-24 13:31 - 000000000 ____D C:\FRST
2021-01-24 13:29 - 2021-01-24 13:30 - 002297344 _____ (Farbar) C:\Users\*****\Downloads\FRST64.exe
2021-01-23 00:18 - 2021-01-23 00:20 - 063068276 _____ C:\Users\*****\Desktop\GreenMachine - BMB - Videoversion - WAV 24bit 48kHz.wav
2021-01-22 12:01 - 2021-01-22 12:01 - 000010079 _____ C:\Users\*****\Downloads\DHL-Paketmarke_NU7G4GDKFUQS_1_Flatout_Suspension_e.K..pdf
2021-01-21 20:25 - 2021-01-21 20:25 - 000051498 _____ C:\Users\*****\Downloads\Service Formular 2020.xlsx
2021-01-20 18:26 - 2021-01-20 18:26 - 000079265 _____ C:\Users\*****\Desktop\Harm. minor riff - 7 String.pdf
2021-01-20 10:43 - 2021-01-20 10:52 - 000010673 _____ C:\Users\*****\Desktop\Bio M1.odt
2021-01-20 10:31 - 2021-01-20 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-01-19 22:25 - 2021-01-19 22:25 - 000060186 _____ C:\Users\*****\Desktop\RG1527_DiMarzioCL.pdf
2021-01-17 21:00 - 2021-01-17 21:29 - 008132388 _____ C:\Users\*****\Desktop\Hatebreed-Logo.tif
2021-01-17 20:52 - 2021-01-17 21:28 - 003109760 _____ C:\Users\*****\Desktop\Hatebreed-Logo.psd
2021-01-15 17:36 - 2021-01-15 17:36 - 001477747 _____ C:\Users\*****\Downloads\rv-398al.zip
2021-01-15 10:24 - 2021-01-15 10:29 - 000048781 _____ C:\Users\*****\Desktop\Workout 2021.pdf
2021-01-14 13:56 - 2021-01-15 10:28 - 000015456 _____ C:\Users\*****\Desktop\Workout 2021.odt
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000044064 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-01-13 13:13 - 2021-01-13 13:13 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 13:13 - 2021-01-13 13:13 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 13:13 - 2021-01-13 13:13 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000151040 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000094720 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000053248 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 002590720 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 001101312 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 13:12 - 2021-01-13 13:12 - 000331264 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000266752 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000208384 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000186368 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-01-13 13:11 - 2021-01-13 13:11 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 13:11 - 2021-01-13 13:11 - 000453632 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 13:11 - 2021-01-13 13:11 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 13:11 - 2021-01-13 13:11 - 000164864 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 13:11 - 2021-01-13 13:11 - 000061440 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-12 16:06 - 2021-01-12 16:06 - 000046667 _____ C:\Users\*****\Downloads\deep_purple-smoke_on_the_water_6.gp5
2021-01-09 22:05 - 2021-01-12 20:05 - 000015350 _____ C:\Users\*****\Desktop\Stundenplan Online 2021 NEU.odt
2021-01-09 16:56 - 2021-01-23 00:22 - 000000000 ____D C:\Users\*****\Desktop\GreenMachine
2021-01-08 18:02 - 2021-01-08 18:03 - 000139052 _____ C:\Users\*****\Downloads\64371333.pdf
2021-01-08 17:13 - 2021-01-08 17:32 - 000014775 _____ C:\Users\*****\Desktop\Stundenplan Online 2021.odt
2021-01-05 14:02 - 2021-01-05 14:02 - 000058051 _____ C:\Users\*****\Downloads\statement (12).pdf
2021-01-05 14:01 - 2021-01-05 14:01 - 000090118 _____ C:\Users\*****\Downloads\statement (11).pdf
2021-01-05 14:00 - 2021-01-05 14:00 - 000089704 _____ C:\Users\*****\Downloads\statement (10).pdf
2021-01-05 13:59 - 2021-01-05 13:59 - 000069482 _____ C:\Users\*****\Downloads\statement (9).pdf
2021-01-05 13:58 - 2021-01-05 13:58 - 000068658 _____ C:\Users\*****\Downloads\statement (8).pdf
2021-01-02 21:58 - 2021-01-17 00:21 - 000000000 ____D C:\Users\*****\AppData\Roaming\dvdcss
2021-01-02 21:49 - 2021-01-17 00:21 - 000000000 ____D C:\Users\*****\AppData\Roaming\vlc
2021-01-02 21:46 - 2021-01-02 21:46 - 000000000 ____D C:\Program Files\VLC Plus Player
2021-01-02 21:42 - 2021-01-02 21:44 - 041206272 _____ C:\Users\Sascha\Downloads\vlc-3.0.11-win64.exe
2020-12-30 23:55 - 2020-12-30 23:56 - 030536752 _____ (Piriform Software Ltd) C:\Users\*****\Downloads\ccsetup575.exe

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-01-24 13:27 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2021-01-24 13:22 - 2020-12-11 21:44 - 000000000 ___RD C:\Users\*****\iCloudDrive
2021-01-24 13:22 - 2019-06-19 20:45 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-01-24 13:22 - 2019-06-14 18:36 - 000000000 __SHD C:\Users\*****\IntelGraphicsProfiles
2021-01-24 11:45 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-24 11:44 - 2019-06-19 20:30 - 000000000 ____D C:\Program Files\CCleaner
2021-01-23 20:26 - 2019-12-26 15:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-23 19:54 - 2020-02-19 08:46 - 000000000 ____D C:\Users\*****\AppData\Local\CrashDumps
2021-01-23 14:29 - 2020-07-05 19:13 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-23 14:29 - 2020-06-20 22:10 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-01-22 23:20 - 2020-06-20 22:13 - 000000000 ___RD C:\Users\*****\Creative Cloud Files
2021-01-22 20:15 - 2019-12-26 15:42 - 000004274 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-22 20:15 - 2019-12-26 15:42 - 000004042 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-01-22 20:15 - 2019-11-11 10:01 - 000001214 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-01-22 20:15 - 2019-11-11 10:01 - 000001210 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-01-21 19:52 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-21 19:52 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-21 18:44 - 2020-04-20 13:36 - 000000000 ____D C:\Users\*****\Desktop\Unterricht
2021-01-21 13:07 - 2019-12-26 15:40 - 001930288 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-21 13:07 - 2019-03-19 13:16 - 000821544 _____ C:\WINDOWS\system32\perfh007.dat
2021-01-21 13:07 - 2019-03-19 13:16 - 000183316 _____ C:\WINDOWS\system32\perfc007.dat
2021-01-21 13:01 - 2019-12-26 15:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-21 00:16 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-20 10:31 - 2019-11-11 10:01 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-01-18 14:08 - 2020-04-18 18:27 - 000000000 ____D C:\Users\*****\AppData\Local\ManyCam
2021-01-18 14:08 - 2020-04-18 18:26 - 000000000 ____D C:\Users\*****\AppData\Roaming\ManyCam
2021-01-18 00:35 - 2019-12-26 15:40 - 000000000 ____D C:\Users\*****
2021-01-18 00:22 - 2020-01-16 09:18 - 000000000 ____D C:\WINDOWS\Minidump
2021-01-17 21:53 - 2020-07-05 19:13 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-17 21:53 - 2020-07-05 19:13 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-17 19:39 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-15 21:41 - 2020-09-03 09:30 - 000000000 ____D C:\Users\Public\Security Sessions
2021-01-15 21:19 - 2019-12-26 15:42 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-14 13:49 - 2020-11-01 09:16 - 000000000 ____D C:\Users\Sascha\AppData\Roaming\Archetype Nolly
2021-01-14 10:07 - 2019-12-26 15:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-14 10:07 - 2019-12-26 15:42 - 000000000 ___RD C:\Users\*****\3D Objects
2021-01-14 10:07 - 2019-12-26 15:38 - 000293784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-14 10:07 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\IME
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 13:18 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-13 13:17 - 2019-06-20 21:46 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 13:15 - 2019-06-20 21:46 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-13 13:11 - 2019-12-26 15:39 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-12 13:53 - 2020-11-01 09:14 - 000000000 ____D C:\Users\*****\AppData\Roaming\Darkglass Ultra
2021-01-12 10:22 - 2020-06-20 22:06 - 000000000 ____D C:\Program Files\Adobe
2021-01-11 21:12 - 2019-06-14 00:21 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-09 16:56 - 2020-11-11 11:34 - 000000000 ____D C:\Users\*****\Desktop\Ablage
2021-01-09 16:53 - 2020-06-03 08:18 - 000018355 _____ C:\Users\*****\Desktop\Kostenaufstellung.ods
2021-01-08 17:59 - 2020-01-03 15:46 - 000000000 ____D C:\Users\*****\Documents\CleanerReg
2021-01-07 11:36 - 2020-01-13 21:22 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-01-07 10:58 - 2019-06-22 13:13 - 000004096 _____ C:\Users\*****\PaceKeyChain
2021-01-02 14:03 - 2020-09-03 09:24 - 000003706 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2020-12-29 22:01 - 2020-09-03 09:25 - 000003776 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupUpdate
2020-12-29 22:01 - 2020-09-03 09:25 - 000000000 ____D C:\Users\Public\Speedup Sessions
2020-12-28 17:59 - 2019-07-01 08:56 - 000000000 ____D C:\ProgramData\Drum Leveler

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2020-04-19 12:21 - 2020-05-04 19:09 - 000004648 _____ () C:\Users\*****\AppData\Roaming\VoiceMeeterDefault.xml
2020-06-20 22:07 - 2020-06-20 22:07 - 000000410 _____ () C:\Users\*****\AppData\Local\oobelibMkey.log
2020-10-28 21:53 - 2020-10-28 21:53 - 000007597 _____ () C:\Users\*****\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
         
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 24-01-2021
durchgeführt von ***** (24-01-2021 13:33:28)
Gestartet von C:\Users\*****\Downloads
Windows 10 Pro Version 1909 18363.1316 (X64) (2019-12-26 14:42:42)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-137335120-3890803558-813276337-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-137335120-3890803558-813276337-503 - Limited - Disabled)
Guest (S-1-5-21-137335120-3890803558-813276337-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-137335120-3890803558-813276337-1002 - Limited - Enabled)
***** (S-1-5-21-137335120-3890803558-813276337-1000 - Administrator - Enabled) => C:\Users\Sascha
WDAGUtilityAccount (S-1-5-21-137335120-3890803558-813276337-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546}
AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.1.470 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2) (Version: 21.2.0.225 - Adobe Inc.)
AirEQ Premium (HKLM\...\Eiosis AirEQ Premium_is1) (Version: 1.1.11.3 - Eiosis)
Apple Application Support (32-Bit) (HKLM-x32\...\{5C028510-A6A1-409A-A2BF-4DCB43B21EF9}) (Version: 7.6 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{5C7D4FCF-80C5-4520-9934-D50532AAC59C}) (Version: 7.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2504ACC6-F5B6-4F18-B4A9-2AAF48D89D85}) (Version: 14.0.0.29 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Archetype Nolly (HKLM\...\{923A067F-9829-4DC4-AEF5-86E1DE61201B}) (Version: 2.0.0 - Neural DSP)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.6.0000 - Asmedia Technology)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.24.0 - Asmedia Technology)
Avira (HKLM-x32\...\{161e6084-b0f5-43e8-86d8-09eda5c0893d}) (Version: 1.2.153.30452 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{426D1710-5DFD-45E9-B11D-464792C5AD35}) (Version: 1.2.153.30452 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.2101.2069 - Avira Operations GmbH & Co. KG) Hidden
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.37.1.24458 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.0.42.14101 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\AviraSecurityUninstaller) (Version:  - Avira Operations GmbH & Co. KG;)
Avira Software Updater (HKLM-x32\...\{9F45C615-6D95-47B5-BB0C-D78F6D15DE21}) (Version: 2.0.6.42639 - Avira Operations GmbH & Co. KG) Hidden
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.9.0.11050 - Avira Operations GmbH & Co. KG) Hidden
Blackmagic RAW Common Components (HKLM\...\{B5ABFF44-9702-4CA1-A7D8-DBA659709C49}) (Version: 1.7 - Blackmagic Design)
Bome Virtual MIDI 2.1.0.44 (HKLM\...\BMIDI_Driver1.0.0.11_is1) (Version:  - Bome Software GmbH & Co. KG)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Cab-Lab 3.5.0 Plugin (x64) (HKLM\...\{44BB3A6F-C381-4E64-8B48-095CFCDA4A91}_is1) (Version:  - Fractal Audio)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
Darkglass Ultra (HKLM\...\{488AFDC5-1070-47D0-B77E-B354E4BEB5E4}) (Version: 3.0.0 - Neural DSP)
DaVinci Resolve (HKLM\...\{7BBE7103-A702-41A6-814B-406FD26184B6}) (Version: 16.2.3015 - Blackmagic Design)
DaVinci Resolve Keyboards (HKLM\...\{04F776FB-37A2-4116-84F2-6CF3D731999D}) (Version: 1.0.0.0 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{567706B7-1501-43BC-81AB-C7E306B40C73}) (Version: 1.3.2.0 - Blackmagic Design)
D-Link DWA-140 (HKLM-x32\...\{09828F4D-CE2E-403A-8708-A02E53495F3D}) (Version: 1.00.00 - D-Link Computer Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 113.4.507 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Drum Leveler version 1.1.2 (HKLM\...\{94B8FDA3-877B-4EB8-A3E9-5D476329F15D}_is1) (Version: 1.1.2 - Sound Radix)
E2Deesser (HKLM\...\Eiosis E2Deesser_is1) (Version: 1.0.9.3 - Eiosis)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.9.2.1179 - Steinberg Media Technologies GmbH)
ElsterFormular (HKLM-x32\...\{0F35BEE6-976E-4324-9AA2-35B156664F92}) (Version: 21.2 - Thüringer Landesamt für Finanzen)
EZbass (HKLM\...\{10E45B55-3F6B-4ADB-9B70-A3D42D17BDCC}) (Version: 1.0.0 - Toontrack)
EZbass Software Update (HKLM\...\{40E37FB4-7F5A-497A-87D8-6FC9BA5524A7}) (Version: 1.0.6 - Toontrack)
EZkeys Grand Piano 64-bit (HKLM\...\{23CA8D91-FD3B-4EE6-BBDF-B5924E7E44EB}) (Version: 1.0.4 - Toontrack)
EZkeys Software Player 64-bit (HKLM\...\{C8262E88-3041-4C66-9857-8F41FCB29628}) (Version: 1.3.0 - Toontrack)
EZkeys Studio Grand 64-bit (HKLM\...\{40DF1E34-5039-4245-8C73-21E20E7D4027}) (Version: 1.0.0 - Toontrack)
FabFilter Pro-C 2.08 (64-bit) (HKLM-x32\...\FabFilter Pro-C 2.08 (64-bit)) (Version:  - )
FabFilter Pro-DS 1.12 (64-bit) (HKLM-x32\...\FabFilter Pro-DS 1.12 (64-bit)) (Version:  - )
FabFilter Pro-G 1.22 (64-bit) (HKLM-x32\...\FabFilter Pro-G 1.22 (64-bit)) (Version:  - )
FabFilter Pro-L 1.26 (64-bit) (HKLM-x32\...\FabFilter Pro-L 1.26 (64-bit)) (Version:  - )
FabFilter Pro-MB 1.19 (64-bit) (HKLM-x32\...\FabFilter Pro-MB 1.19 (64-bit)) (Version:  - )
FabFilter Pro-Q 2.16 (64-bit) (HKLM-x32\...\FabFilter Pro-Q 2.16 (64-bit)) (Version:  - )
FabFilter Saturn 1.20 (64-bit) (HKLM-x32\...\FabFilter Saturn 1.20 (64-bit)) (Version:  - )
FabFilter Timeless 2.30 (64-bit) (HKLM-x32\...\FabFilter Timeless 2.30 (64-bit)) (Version:  - )
FabFilter Total Bundle (64-bit) (HKLM-x32\...\FabFilter Total Bundle (64-bit)) (Version:  - )
FabFilter Twin 2.30 (64-bit) (HKLM-x32\...\FabFilter Twin 2.30 (64-bit)) (Version:  - )
FabFilter Volcano 2.30 (64-bit) (HKLM-x32\...\FabFilter Volcano 2.30 (64-bit)) (Version:  - )
FG-X (HKLM\...\Slate Digital FG-X_is1) (Version:  - Slate Digital)
Focusrite Control 3.6.0.1822 (HKLM\...\Focusrite Control_is1) (Version: 3.6.0.1822 - Focusrite Audio Engineering Ltd.)
Focusrite Usb 4.65.5.658 (HKLM\...\Focusrite Usb_is1) (Version: 4.65.5.658 - Focusrite Audio Engineering, Ltd.)
Fractal Audio Systems USB Audio Driver v2.23.0 (HKLM-x32\...\Fractal Audio Systems USB Audio Driver v2.23.0) (Version: 2.23.0 - Fractal Audio Systems)
Fractal Audio Systems USB Driver Package 2014.06.06 (HKLM\...\{E992CC59-71FD-4199-B04E-6274F7439EA0}_is1) (Version: 2014.06.06 - Fractal Audio Systems)
Gobbler (HKLM\...\{49C3123D-9497-434D-A988-A9B389B1E189}) (Version: 2.2.2.263 - Media Gobbler, Inc.) Hidden
Gobbler (HKLM-x32\...\{1a80729d-d49d-4d81-9991-b785c110295b}) (Version: 2.2.2.263 - Media Gobbler, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
GoPro Quik (HKLM\...\{AA5F7FCE-311C-46D8-B93A-ABF4DDCAB832}) (Version: 0.1.945 - GoPro, Inc.) Hidden
GoPro Quik (HKLM-x32\...\{a23df978-67ca-4fe3-a740-a7b5ae7ec82f}) (Version: 2.7.0.945 - GoPro, Inc.)
Guitar Pro 6 (HKLM-x32\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version:  - Arobas Music)
HOFA-Plugins Uninstall (HKLM-x32\...\HOFA-Plugins) (Version:  - HOFA-Plugins)
iCloud Outlook (HKLM\...\{F8D8BAB3-5CBA-48FF-A39B-6D13C7EE83F5}) (Version: 11.5.0.28 - Apple Inc.)
Infinity EQ (HKLM\...\Slate Digital Infinity EQ_is1) (Version: 1.0.4.1 - Slate Digital)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4206 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{153A88D8-E890-4F36-A10F-2C87071F70AD}) (Version: 12.10.9.3 - Apple Inc.)
iZotope Relay (HKLM\...\Relay) (Version: 1.0.4 - iZotope, Inc.)
iZotope Tonal Balance Control 2 (HKLM\...\Tonal Balance Control 2) (Version: 2.2.0 - iZotope, Inc.)
JST Clip version 1.0.4 (HKLM\...\JST Clip_is1) (Version: 1.0.4 - )
Lustrous Plates version 1.0.0 (HKLM\...\{39AAAED0-CFDF-22E3-AEC7-FBBBA7CE0713}_is1) (Version: 1.0.0 - LiquidSonics)
ManyCam 7.2.0 (HKLM-x32\...\ManyCam) (Version: 7.2.0 - Visicom Media Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft OneDrive (HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Native Instruments Absynth 5 (HKLM-x32\...\Native Instruments Absynth 5) (Version: 5.3.1.1628 - Native Instruments)
Native Instruments Battery 4 (HKLM-x32\...\Native Instruments Battery 4) (Version: 4.1.6.27 - Native Instruments)
Native Instruments Battery 4 Factory Library (HKLM-x32\...\Native Instruments Battery 4 Factory Library) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Blocks Base (HKLM-x32\...\Native Instruments Blocks Base) (Version: 1.0.1.1 - Native Instruments)
Native Instruments Blocks Primes (HKLM-x32\...\Native Instruments Blocks Primes) (Version: 1.0.1.1 - Native Instruments)
Native Instruments Choral (HKLM-x32\...\Native Instruments Choral) (Version: 1.1.0.47 - Native Instruments)
Native Instruments Chromatic Fire (HKLM-x32\...\Native Instruments Chromatic Fire) (Version: 1.0.1.1 - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 2.6.0.513 - Native Instruments)
Native Instruments Creator Tools (HKLM-x32\...\Native Instruments Creator Tools) (Version: 1.2.0.0 - Native Instruments)
Native Instruments Deep Matter (HKLM-x32\...\Native Instruments Deep Matter) (Version: 2.0.1.1 - Native Instruments)
Native Instruments Driver (HKLM-x32\...\Native Instruments Driver) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Elastic Thump (HKLM-x32\...\Native Instruments Elastic Thump) (Version: 2.0.1.4 - Native Instruments)
Native Instruments Flair (HKLM-x32\...\Native Instruments Flair) (Version: 1.1.0.47 - Native Instruments)
Native Instruments FM8 (HKLM-x32\...\Native Instruments FM8) (Version: 1.4.1.1599 - Native Instruments)
Native Instruments Form (HKLM-x32\...\Native Instruments Form) (Version: 1.1.2.1 - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.2.8 - Native Instruments)
Native Instruments Halcyon Sky (HKLM-x32\...\Native Instruments Halcyon Sky) (Version: 2.0.2.1 - Native Instruments)
Native Instruments Komplete Kontrol (HKLM-x32\...\Native Instruments Komplete Kontrol) (Version: 2.4.0.195 - Native Instruments)
Native Instruments Komplete Kontrol Driver (HKLM-x32\...\Native Instruments Komplete Kontrol Driver) (Version:  - Native Instruments)
Native Instruments Komplete Kontrol MK2 Driver (HKLM-x32\...\Native Instruments Komplete Kontrol MK2 Driver) (Version:  - Native Instruments)
Native Instruments Kontakt (HKLM-x32\...\Native Instruments Kontakt) (Version: 6.4.2.93 - Native Instruments)
Native Instruments Kontour (HKLM-x32\...\Native Instruments Kontour) (Version: 1.0.0.6 - Native Instruments)
Native Instruments London Grit (HKLM-x32\...\Native Instruments London Grit) (Version: 2.0.1.1 - Native Instruments)
Native Instruments Lucid Mission (HKLM-x32\...\Native Instruments Lucid Mission) (Version: 2.0.1.1 - Native Instruments)
Native Instruments Maschine 2 (HKLM-x32\...\Native Instruments Maschine 2) (Version: 2.11.1.848 - Native Instruments)
Native Instruments Maschine 2 Factory Selection (HKLM-x32\...\Native Instruments Maschine 2 Factory Selection) (Version: 1.0.0.14 - Native Instruments)
Native Instruments Maschine Controller MK2 Driver (HKLM-x32\...\Native Instruments Maschine Controller MK2 Driver) (Version:  - Native Instruments)
Native Instruments Maschine Jam Driver (HKLM-x32\...\Native Instruments Maschine Jam Driver) (Version:  - Native Instruments)
Native Instruments Maschine Mikro Driver (HKLM-x32\...\Native Instruments Maschine Mikro Driver) (Version:  - Native Instruments)
Native Instruments Maschine Mikro MK2 Driver (HKLM-x32\...\Native Instruments Maschine Mikro MK2 Driver) (Version:  - Native Instruments)
Native Instruments Maschine MK3 Driver (HKLM-x32\...\Native Instruments Maschine MK3 Driver) (Version:  - Native Instruments)
Native Instruments Maschine Studio Driver (HKLM-x32\...\Native Instruments Maschine Studio Driver) (Version:  - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.5.5.22 - Native Instruments)
Native Instruments Massive X (HKLM-x32\...\Native Instruments Massive X) (Version: 1.3.1.213 - Native Instruments)
Native Instruments Massive X Factory Library (HKLM-x32\...\Native Instruments Massive X Factory Library) (Version: 1.3.0.1 - Native Instruments)
Native Instruments Middle East (HKLM-x32\...\Native Instruments Middle East) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Molten Veil (HKLM-x32\...\Native Instruments Molten Veil) (Version: 2.0.2.1 - Native Instruments)
Native Instruments Monark (HKLM-x32\...\Native Instruments Monark) (Version: 1.3.1.4 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.12.2.132 - Native Instruments)
Native Instruments Native Browser Preview Library (HKLM-x32\...\Native Instruments Native Browser Preview Library) (Version: 1.1.0.28 - Native Instruments)
Native Instruments Neon Drive (HKLM-x32\...\Native Instruments Neon Drive) (Version: 2.0.1.4 - Native Instruments)
Native Instruments NIHostIntegrationAgent (HKLM-x32\...\Native Instruments NIHostIntegrationAgent) (Version: 1.10.1.152 - Native Instruments)
Native Instruments NTKDaemon (HKLM-x32\...\Native Instruments NTKDaemon) (Version: 1.0.2.1 - Native Instruments)
Native Instruments Phasis (HKLM-x32\...\Native Instruments Phasis) (Version: 1.1.0.47 - Native Instruments)
Native Instruments Polyplex (HKLM-x32\...\Native Instruments Polyplex) (Version: 1.1.0.3 - Native Instruments)
Native Instruments Queensbridge Story (HKLM-x32\...\Native Instruments Queensbridge Story) (Version: 2.0.1.1 - Native Instruments)
Native Instruments Rammfire (HKLM-x32\...\Native Instruments Rammfire) (Version: 2.0.0.5 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.4.0.2 - Native Instruments)
Native Instruments Reaktor Blocks (HKLM-x32\...\Native Instruments Reaktor Blocks) (Version: 1.3.0.5 - Native Instruments)
Native Instruments Reaktor Blocks Wired (HKLM-x32\...\Native Instruments Reaktor Blocks Wired) (Version: 1.0.2.1 - Native Instruments)
Native Instruments Reaktor Factory Library (HKLM-x32\...\Native Instruments Reaktor Factory Library) (Version: 1.1.0.3 - Native Instruments)
Native Instruments Reaktor Factory Selection R2 (HKLM-x32\...\Native Instruments Reaktor Factory Selection R2) (Version: 1.0.1.7 - Native Instruments)
Native Instruments Reaktor Prism (HKLM-x32\...\Native Instruments Reaktor Prism) (Version: 1.6.0.6 - Native Instruments)
Native Instruments Reaktor Spark R2 (HKLM-x32\...\Native Instruments Reaktor Spark R2) (Version: 1.4.0.4 - Native Instruments)
Native Instruments Reflektor (HKLM-x32\...\Native Instruments Reflektor) (Version: 2.0.0.8 - Native Instruments)
Native Instruments Replika (HKLM-x32\...\Native Instruments Replika) (Version: 1.4.0.47 - Native Instruments)
Native Instruments Rounds (HKLM-x32\...\Native Instruments Rounds) (Version: 1.2.0.3 - Native Instruments)
Native Instruments Solid Bus Comp FX (HKLM-x32\...\Native Instruments Solid Bus Comp FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Solid Dynamics FX (HKLM-x32\...\Native Instruments Solid Dynamics FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Solid EQ FX (HKLM-x32\...\Native Instruments Solid EQ FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Supercharger (HKLM-x32\...\Native Instruments Supercharger) (Version: 1.3.1.45 - Native Instruments)
Native Instruments The Finger R2 (HKLM-x32\...\Native Instruments The Finger R2) (Version: 1.3.0.3 - Native Instruments)
Native Instruments Traktors 12 (HKLM-x32\...\Native Instruments Traktors 12) (Version: 2.0.0.8 - Native Instruments)
Native Instruments Transient Master FX (HKLM-x32\...\Native Instruments Transient Master FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments TRK-01 (HKLM-x32\...\Native Instruments TRK-01) (Version: 1.1.1.1 - Native Instruments)
Native Instruments TRK-01 Bass (HKLM-x32\...\Native Instruments TRK-01 Bass) (Version: 1.0.0.10 - Native Instruments)
Native Instruments TRK-01 Kick (HKLM-x32\...\Native Instruments TRK-01 Kick) (Version: 1.0.1.8 - Native Instruments)
Native Instruments Velvet Lounge (HKLM-x32\...\Native Instruments Velvet Lounge) (Version: 2.0.1.2 - Native Instruments)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.6 (HKLM-x32\...\{3651624F-019F-4B39-8AE4-A2423CE1986F}) (Version: 4.16.9790 - Apache Software Foundation)
Ozone 9 Advanced (HKLM\...\Ozone 9) (Version: 9.1.0 - iZotope, Inc.)
PACE License Support Win64 (HKLM\...\{52F54766-2321-4841-A523-CA0C8261E26D}) (Version: 5.0.3.2569 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{52F54766-2321-4841-A523-CA0C8261E26D}) (Version: 5.0.3.2569 - PACE Anti-Piracy, Inc.)
PreSonus Universal Control 1.7.2 (HKLM\...\PreSonus Universal Control_is1) (Version: 1.7.2 - PreSonus Audio Electronics)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Reference 4 VST plugin (64-bit) (HKLM\...\{5F524C89-B8AE-49DB-9828-D5233294CCDD}) (Version: 4.4.6.20 - Sonarworks)
Repeater (64bit) (HKLM\...\{9E73E488-A73C-4213-8493-FC24668564DE}) (Version: 1.1.6.0 - D16 Group Audio Software)
Skype Version 8.58 (HKLM-x32\...\Skype_is1) (Version: 8.58 - Skype Technologies S.A.)
Slate Digital Fresh Air (HKLM\...\{af2fe7e8-08f8-4c81-b875-ec4c7a97a204}Slate Digi~4955043A_is1) (Version: 1.0.3.0 - Slate Digital)
Sonarworks Reference 4 Systemwide (HKLM\...\{8760905F-8968-46EF-ADF3-7CFF91CE9952}) (Version: 4.4.6.20 - Sonarworks)
soothe2 audio processor version 1.1.1 (HKLM-x32\...\{8E8F4A61-FA08-4CAB-8F5A-AF25CEE4F3FE}_is1) (Version: 1.1.1 - oeksound)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steinberg Content Updater (HKLM-x32\...\{23BAFE62-0AF0-4D71-98C2-47286139DC45}) (Version: 2.0.0 - Steinberg Media Technologies GmbH)
Steinberg Cubase 8.5 64bit (HKLM\...\{81643F2F-C292-46B7-AFB4-8ED2F1FF8AAA}) (Version: 8.5.30 - Steinberg Media Technologies GmbH)
Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 2.0.0.0 - Steinberg Media Technologies GmbH)
Steinberg EDM Toolbox MIDI Loops (HKLM-x32\...\{8C9B2EA8-9A30-4347-95E9-10E919C4F32E}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Allen Morgan Signature Drums (HKLM-x32\...\{611A7035-0172-4B9B-8BB6-5046F6867D8A}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Vintage Beatboxes (HKLM-x32\...\{DBF4BC99-53F1-4C97-84C3-7557D103E182}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE 64bit (HKLM\...\{A5AB0D21-21BD-4DB8-F097-02E8FC8C486A}) (Version: 4.2.30 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE Acoustic Agent (HKLM-x32\...\{F34EA13C-F078-4003-AE21-43EAB2680EC5}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE Content (HKLM-x32\...\{AFC9D1CE-F050-437C-35A5-62DEDB262DC7}) (Version: 1.2.20 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE Rock Pop Toolbox Drums (HKLM-x32\...\{E9BFA009-DD72-4F2A-84CB-6DF46472B563}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 2.0.2 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE Content (HKLM-x32\...\{A5051ABF-A497-4C3C-85EA-F7A4D5C19B82}) (Version: 2.0.1 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 2.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content 2 (HKLM-x32\...\{88C337F0-4CF2-4098-BDC0-D94859ECA2B4}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Midi Loop Library (HKLM-x32\...\{89DE2651-6DD9-4C15-AC94-8348362D456C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Padshop 64bit (HKLM\...\{75F15019-C0C2-4047-AA45-97B4BD313719}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg Retrologue 64bit (HKLM\...\{4D65ECE6-131D-4B5F-8470-2750D3161619}) (Version: 2.0.10 - Steinberg Media Technologies GmbH)
Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 2.0.1.000 - Steinberg Media Technologies GmbH)
Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.2 - Steinberg Media Technologies GmbH)
Steinberg VST Amp Rack Content 01 (HKLM-x32\...\{8CBA7E47-48DA-47DC-8E98-6984BA830295}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Steinberg VST Bass Amp Content (HKLM-x32\...\{A2FC1750-B90F-4948-9D6E-DDDA155C6EC8}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg VST Transit 64bit (HKLM\...\{FF1A114C-0F88-11E5-A6C0-1697F925EC7B}) (Version: 1.0.13 - Steinberg Media Technologies GmbH)
Superior Drummer 3 (HKLM\...\{54399DF4-5143-49DE-93BA-59F88660BE2B}) (Version: 3.2.2 - Toontrack)
Superior Drummer 64-bit (HKLM\...\{0E54CF79-AE40-409E-9253-9563418C730C}) (Version: 2.4.4 - Toontrack)
TH-U Slate (HKLM\...\{DF6C5D5F-EF02-41e4-85F0-A19397A664C3}_is1) (Version: 1.0.11 - Overloud)
Toontrack Audio Sender (HKLM\...\{6915D5CF-4040-436A-940E-37D27C5512C5}) (Version: 1.0.4 - Toontrack)
Toontrack Product Manager (HKLM-x32\...\{5BAE101A-4AF5-4FBA-99E6-1CE2825F8993}) (Version: 1.0.7 - Toontrack)
Verbiage version 3.0.3 (HKLM\...\Verbiage_is1) (Version: 3.0.3 - Stillwell Audio LLC)
VerbSuite Classics (HKLM\...\Slate Digital VerbSuite Classics_is1) (Version: 1.0.11.1 - Slate Digital)
VerbSuite Classics FG-224 Expansion (HKLM\...\Slate Digital VerbSuite Classics FG-224 Expansion_is1) (Version: 1.0.0.6 - Slate Digital)
VerbSuite Classics FG-3000 & FG-3500 Expansion (HKLM\...\Slate Digital VerbSuite Classics FG-3000 & FG-35~ACE4A30F_is1) (Version: 1.0.0.4 - Slate Digital)
Virtual Buss Compressors (HKLM\...\Slate Digital Virtual Buss Compressors_is1) (Version: 1.2.14.5 - Slate Digital)
VLC Plus Player (HKLM\...\VLC Plus Player) (Version: 3.0.11 - Aller Media e.K.) <==== ACHTUNG
VMR Complete Bundle (HKLM\...\Slate Digital VMR Complete Bundle_is1) (Version: 2.5.2.1 - Slate Digital)
Waves Central (HKLM\...\{ab507e17-892b-5203-838d-d58d8d09c50f}) (Version: 11.0.50 - Waves Audio Ltd)
Windows 10-Update-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22925 - Microsoft Corporation)
Windows-Treiberpaket - Focusrite USB 2.0 Audio Driver (03/17/2014 2.5.128.1) (HKLM\...\D86E353566ECB4A7ADA159C02FE46D0BACC4FA6B) (Version: 03/17/2014 2.5.128.1 - Focusrite)
Windows-Treiberpaket - Fractal Audio Systems (axefx2load) USB  (05/15/2011 1.0.0.9) (HKLM\...\6AEB8A42A154DE456DE5E467C01A582911CB5C6A) (Version: 05/15/2011 1.0.0.9 - Fractal Audio Systems)
WinRAR 5.71 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-07-10] (Adobe Systems Incorporated)
iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa [2020-12-16] (Apple Inc.) [Startup Task]
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-06-20] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-12-31] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-12-31] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-14] (Microsoft Studios) [MS Ad]
My MP4 to MP3 Converter -> C:\Program Files\WindowsApps\32573MMSoftware.MyMP4toMP3Converter_1.5.1.0_x64__xky5rpyx4kdm4 [2020-11-16] (M&amp;MSoftware) [MS Ad]

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-55C862CCA6D1} -> [Creative Cloud Files] => C:\Users\*****\Creative Cloud Files [2020-06-20 22:13]
CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{D34481A6-8E8A-4D01-9CCA-0ECF25A7F59F} -> [iCloud Drive] => C:\Users\*****\iCloudDrive [2020-12-11 21:44]
CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\*****\Dropbox [2019-11-11 10:12]
CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{EDDAACE3-1665-4373-B216-F3282C5437E3} -> [iCloud-Fotos] => C:\Users\*****\Pictures\iCloud Photos\Photos [2020-12-11 21:44]
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> )
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-12-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-12-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Keine Datei
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-12-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> )
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2019-10-26 12:45 - 2014-05-16 02:35 - 000219136 _____ () [Datei ist nicht signiert] c:\program files\fractal audio systems\usb audio driver\fasusbaudioasio_x64.dll
2020-10-28 13:33 - 2020-10-28 13:33 - 097685504 _____ () [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\libcef.dll
2020-10-28 13:33 - 2020-10-28 13:33 - 000093696 _____ () [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\libegl.dll
2020-10-28 13:33 - 2020-10-28 13:33 - 004308992 _____ () [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\libglesv2.dll
2019-12-26 15:45 - 2021-01-21 13:01 - 000040592 _____ (ASUSTeK Computer Inc. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2020-01-03 16:07 - 2020-06-02 15:35 - 000168448 _____ (Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert] c:\program files\focusriteusb\focusriteusbasio64.dll
2017-06-09 19:54 - 2017-06-09 19:54 - 001167872 _____ (Media Gobbler, Inc) [Datei ist nicht signiert] C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxy.dll
2017-06-09 19:53 - 2017-06-09 19:53 - 004856320 _____ (Media Gobbler, Inc) [Datei ist nicht signiert] C:\Program Files (x86)\Media Gobbler, Inc\User Agent\gobblersdk.dll
2015-11-02 12:16 - 2015-11-02 12:16 - 000173056 _____ (Steinberg Media Technologies) [Datei ist nicht signiert] c:\program files\steinberg\asio\asioglld.dll
2020-10-28 13:33 - 2020-10-28 13:33 - 000548864 _____ (The Chromium Authors) [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\chrome_elf.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)

AlternateDataStreams: C:\ProgramData\PACE:2FCF06B808429657 [1]

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========

HKU\S-1-5-21-137335120-3890803558-813276337-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-137335120-3890803558-813276337-1000\Control Panel\Desktop\\Wallpaper -> f:\eigene bilder\wallpaper\lake_sunrise-wallpaper-1920x1080.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
 ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: Reference 4 Systemwide => C:\Program Files\Sonarworks\Reference 4\Systemwide\Reference 4 Systemwide.exe --hide-systemwide
HKLM\...\StartupApproved\StartupFolder: => "FASUSBAudio Control Panel Autostart.lnk"
HKLM\...\StartupApproved\StartupFolder: => "NIHardwareAccessibilityHelper.exe.lnk"
HKLM\...\StartupApproved\StartupFolder: => "NTKDaemon.lnk"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AVMWlanClient"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "Reference 4 Systemwide"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "ManyCam"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "Update Plus Player"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{2A4EF6D6-4354-4318-8524-9057B051CF2E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{F9EE887B-C400-4A58-B7DE-10315CA53C4D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation)
FirewallRules: [{CECF91DB-7D8F-4777-B5BB-991388D2E34E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{02FBA0FD-12D9-4AB8-A6C0-599C3B0E156D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{153342F2-F364-4D6A-BCA6-0176B0733731}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{A80463C9-161C-4151-B2F8-68F0CBAA02A8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6926C643-CE06-40D0-A4E4-235112D8F2C7}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{F849E264-7ACF-4FE5-B030-40C40B59291B}] => (Allow) C:\Program Files\Steinberg\Cubase 8.5\Cubase8.5.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies)
FirewallRules: [{05254A08-1803-4060-A959-833F921F23DD}] => (Allow) LPort=51113
FirewallRules: [{107B02AF-6ED3-444F-819D-46A00847568F}] => (Allow) LPort=51112
FirewallRules: [{104396F3-62E5-43CC-8CE3-BCDF21D42939}] => (Allow) LPort=51111
FirewallRules: [{B154A1D9-CFD2-4158-B30B-B351F99EDF4F}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro Quik.exe (GoPro Media, Inc. -> )
FirewallRules: [{6627CFF8-7CB6-4A24-A43A-9E2BEEDBC77A}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe (GoPro Media, Inc. -> )
FirewallRules: [{D0D3A024-4265-44EA-BB81-8F99B2CC4610}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe (GoPro Media, Inc. -> )
FirewallRules: [{26E3B6F7-14E3-47F4-BD1C-AC944043CE7D}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe (GoPro Media, Inc. -> )
FirewallRules: [TCP Query User{27164585-4D01-4A9B-AAED-405AEF3D8069}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{4E7595BE-42BB-4FBD-B6FF-061FC37A3615}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{0FD53B3E-40B7-46B4-A78B-A57FCACBE5D3}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{5296E16B-45B0-4BBB-B331-58DC89CFDDF9}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{C227E197-5EB6-4F55-98BC-2F71D11673BA}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Block) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{6E6ECCBE-14E6-4DD4-92BB-065B62108F0F}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Block) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{DF00A8ED-41ED-46EB-A018-E8F1F314FDAF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{FF28FB38-4A67-43E7-BC5E-8C120E382508}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{F899BB8C-36A9-43C6-8F45-2BA5CB2F18C7}C:\program files (x86)\manycam\manycam.exe] => (Allow) C:\program files (x86)\manycam\manycam.exe (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
FirewallRules: [UDP Query User{C2654268-ABBA-4EC2-A64F-5EF106E83235}C:\program files (x86)\manycam\manycam.exe] => (Allow) C:\program files (x86)\manycam\manycam.exe (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
FirewallRules: [TCP Query User{F03A193B-DB3B-4E19-B461-6C5366A3587B}C:\program files (x86)\manycam\manycam.exe] => (Allow) C:\program files (x86)\manycam\manycam.exe (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
FirewallRules: [UDP Query User{7BB205E7-C1C5-42C2-8203-90E348BE66BD}C:\program files (x86)\manycam\manycam.exe] => (Allow) C:\program files (x86)\manycam\manycam.exe (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
FirewallRules: [TCP Query User{88400D28-108E-469F-9A0C-6CD647E90152}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [UDP Query User{E1568907-F83A-4557-96B2-2248E673C479}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{195E216C-A5CB-4505-BA8E-9BA611513065}] => (Allow) C:\Users\*****\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{44F88688-B95C-45D0-8370-4884AD4C3C73}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{760FECE1-0058-4289-9FB4-D783039D889F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{6D7EEDC6-C876-4DCF-BC03-C87DEE9FF584}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{E873C322-E1F4-4258-A114-B54070BBEEC9}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{B7426DCC-C8CE-44C1-9674-7763B7E059DB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{4A9DE2A7-0A75-40DF-8E22-C1BCA341647A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{6CE73B8F-4425-4DC7-A38D-BF470E59D128}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{DCDB0DC0-644D-4E2F-8E3C-2423637785AF}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{2701E31F-6D29-4870-A89F-4EA81D156910}] => (Allow) C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe (Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert]
FirewallRules: [{DE169108-1EBB-4F57-A293-E1BF1D5803DA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{68D21B49-FF55-4747-B197-1B1F8072B918}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{98D28B4F-2A56-42BC-959A-A3E523C93D06}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{C208234B-2143-431E-8F3F-46E456825083}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6A6B0239-58E5-4026-BB7C-F45B1B74D8AE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{429595C1-A96D-44AE-B00B-C71414A7D0FE}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{43DDF6EA-DA2B-4D93-B504-58ECD74F51C3}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{6D41DBB3-5E2D-47AE-AEEB-E76ED175F7A7}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{773026C8-5875-4C04-8F8C-51E41CD283C5}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Wiederherstellungspunkte =========================

09-01-2021 16:26:49 Geplanter Prüfpunkt
13-01-2021 13:07:02 Windows Update
22-01-2021 21:01:23 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager ============

Name: High Definition Audio-Controller
Description: High Definition Audio-Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HDAudBus
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: ManyCam Virtual Microphone
Description: ManyCam Virtual Microphone
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Visicom Media Inc.
Service: mcaudrv_simple
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (01/24/2021 01:27:30 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (12072,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/24/2021 11:29:46 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7780,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/23/2021 11:28:12 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (11504,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/23/2021 11:17:09 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (7992,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/23/2021 11:08:13 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (17148,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/23/2021 10:31:06 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (17048,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/23/2021 09:49:00 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (14572,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/23/2021 09:04:40 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (13328,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


Systemfehler:
=============
Error: (01/24/2021 01:32:18 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/24/2021 01:30:48 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/24/2021 01:29:54 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/24/2021 01:28:21 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/24/2021 01:26:28 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/24/2021 01:23:14 PM) (Source: DCOM) (EventID: 10010) (User: *****-PC)
Description: Der Server "Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c!App.AppXtwmqn4em5r5dpafgj4t4yyxgjfe0hr50.mca" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.

Error: (01/24/2021 11:44:59 AM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/24/2021 11:44:55 AM) (Source: DCOM) (EventID: 10010) (User: *****-PC)
Description: Der Server "{AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.


CodeIntegrity:
===================================

Date: 2020-10-01 12:47:14.364
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-09-22 11:37:46.016
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-09-01 09:54:11.878
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-16 21:42:59.380
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-14 21:06:45.736
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-05 16:04:55.364
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-07-15 10:14:38.873
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-05-23 21:50:52.128
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Speicherinformationen =========================== 

BIOS: American Megatrends Inc. 2012 09/30/2014
Hauptplatine: ASUSTeK COMPUTER INC. Z97-PRO
Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 18%
Installierter physikalischer RAM: 32450.31 MB
Verfügbarer physikalischer RAM: 26574.32 MB
Summe virtueller Speicher: 65218.31 MB
Verfügbarer virtueller Speicher: 59054.38 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:222.9 GB) (Free:12.49 GB) NTFS
Drive e: (Storage) (Fixed) (Total:931.51 GB) (Free:428.86 GB) NTFS
Drive f: (Media) (Fixed) (Total:1862.89 GB) (Free:1060.55 GB) NTFS
Drive g: (Samples) (Fixed) (Total:465.76 GB) (Free:8.85 GB) NTFS

\\?\Volume{af2c7491-8e79-11e9-a2b5-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{0fabf2a0-0000-0000-0000-40c037000000}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2AF0E084)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 0FABF2A0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=222.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=578 MB) - (Type=27)

==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FB81F6B0)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt =======================
         
__________________

Geändert von CC200 (24.01.2021 um 15:06 Uhr)

Alt 24.01.2021, 14:11   #4
M-K-D-B
/// TB-Ausbilder
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung



Du solltest besser auf deine Downloadquellen achten!


Downloadquellen
Lade keine Software von Chip.de, Softonic.de, sourceforge.net, openoffice.de, VLC.de, audacity.de, gimp24.de oder updatestar.com.
Die dort angebotene Software wird häufig mit einem sog. "Installer" verteilt, mit dem man sich nur unerwünschte Software (Potentially Unwanted Programs, kurz PUP) oder Adware installiert.
Auf manchen Seiten wird direkt PUP / Adware zum Download angeboten.

Für Windows gibt es seit einiger Zeit einen brauchbaren Paketmanager, der mit einfachen Befehlen es erlaubt, automatisiert Software herunterzuladen und zu installieren. Das erspart eine Menge Arbeit, denn ohne einen Paketmanager muss man jedes Programm selbst prüfen und separat manuell updaten, vorher manuell noch runterladen etc. pp. - siehe auch --> chocolatey Paketmanager für Windows

Wir empfehlen dringend, alle Programme, sofern verfügbar, über chocolatey zu installieren. Falls du schon mit Linux zu tun hattest, wird dir die Syntax sehr vertraut sein.
Die FAQs zu choco findest du da --> Chocolatey: Häufig gestellte Fragen (englisch)
Selbstverständlich darfst du auch Fragen zu chocolatey im o.g. Thread zu chocolatey stellen.


Für den seltenen Fall, dass du das benötigte Programm nicht im repository von chocolatey findest: Lade diese Software immer direkt beim jeweiligen Hersteller / Entwickler.






Schritt 1
Die folgenden Programme sind veraltet, stören die Bereinigung oder es handelt sich um Werbesoftware bzw. unerwünschte Software (Adware, PUP) und müssen entfernt werden.
  • Deinstalliere über Start > Einstellungen > Apps bzw. Start > Systemsteuerung > Programme deinstallieren die folgenden Programme:
    • VLC Plus Player
  • Starte den Rechner im Anschluss neu auf.
  • Gib eine kurze Rückmeldung, ob die Deinstallation erfolgreich war.





Schritt 2
Führe AdwCleaner gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei.





Schritt 3
  • Starte FRST erneut. Vergewissere dich, dass vor Addition.txt ein Haken gesetzt ist und drücke auf Untersuchen.
  • FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.





Bitte poste mit deiner nächsten Antwort:
  • eine Rückmeldung bezüglich der Deinstallationen
  • die Logdatei von AdwCleaner
  • die beiden neuen Logdateien von FRST (FRST.txt und Addition.txt)

Alt 24.01.2021, 15:03   #5
CC200
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung



Hier die neuen Logdaten vom AdwCleaner und FRST:

Code:
ATTFilter
# -------------------------------
# Malwarebytes AdwCleaner 8.0.9.1
# -------------------------------
# Build:    01-20-2021
# Database: 2021-01-11.1 (Cloud)
# Support:  https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start:    01-24-2021
# Duration: 00:00:01
# OS:       Windows 10 Pro
# Cleaned:  4
# Failed:   0


***** [ Services ] *****

No malicious services cleaned.

***** [ Folders ] *****

No malicious folders cleaned.

***** [ Files ] *****

Deleted       C:\Users\*****\Desktop\..\Downloads\RECUVA - CHIP-INSTALLER.EXE

***** [ DLL ] *****

No malicious DLLs cleaned.

***** [ WMI ] *****

No malicious WMI cleaned.

***** [ Shortcuts ] *****

No malicious shortcuts cleaned.

***** [ Tasks ] *****

No malicious tasks cleaned.

***** [ Registry ] *****

Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Update Plus Player
Deleted       HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Update Plus Player
Deleted       HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Reference 4 Systemwide

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries cleaned.

***** [ Chromium URLs ] *****

No malicious Chromium URLs cleaned.

***** [ Firefox (and derivatives) ] *****

No malicious Firefox entries cleaned.

***** [ Firefox URLs ] *****

No malicious Firefox URLs cleaned.

***** [ Hosts File Entries ] *****

No malicious hosts file entries cleaned.

***** [ Preinstalled Software ] *****

No Preinstalled Software cleaned.


*************************

[+] Delete Tracing Keys
[+] Reset Winsock

*************************

AdwCleaner[S00].txt - [1782 octets] - [24/01/2021 14:28:59]

########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
         




Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 24-01-2021
durchgeführt von ***** (Administrator) auf *****-PC (ASUS All Series) (24-01-2021 14:46:28)
Gestartet von C:\Users\*****\Downloads
Geladene Profile: *****
Platform: Windows 10 Pro Version 1909 18363.1316 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(D-Link Corporation -> ) C:\Program Files (x86)\D-Link Computer Inc\D-Link DWA-140\WPSHWPBC.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\113.4.507\QtWebEngineProcess.exe <3>
(Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert] C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe
(Focusrite Audio Engineering, Ltd.) [Datei ist nicht signiert] C:\Program Files\FocusriteUSB\Focusrite Notifier.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(GoPro Media, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(ManyCam -> Visicom Media Inc.) C:\ProgramData\ManyCam\Service\ManyCamService.exe
(Media Gobbler, Inc) [Datei ist nicht signiert] C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe
(Media Gobbler, Inc. -> Media Gobbler, Inc) C:\Program Files (x86)\Media Gobbler, Inc\User Agent\GobblerTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe
(PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Sonarworks) [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\Reference 4 Systemwide.exe <4>

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-09-09] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\FocusriteUSB\Focusrite Notifier.exe [5029376 2020-06-02] (Focusrite Audio Engineering, Ltd.) [Datei ist nicht signiert]
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [705728 2020-11-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-10-07] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-12] (Adobe Inc. -> )
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [GobblerTray] => C:\Program Files (x86)\Media Gobbler, Inc\User Agent\GobblerTray.exe [1520664 2017-06-09] (Media Gobbler, Inc. -> Media Gobbler, Inc)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91585088 2020-03-31] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [20569056 2020-04-17] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [680712 2021-01-12] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Reference 4 Systemwide.exe] => C:\Program Files\Sonarworks\Reference 4\Systemwide\Reference 4 Systemwide.exe [20951552 2020-10-28] (Sonarworks) [Datei ist nicht signiert]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [] => [X]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\MountPoints2: {059b684f-8e30-11e9-af07-eb7f887a18cb} - "H:\pushinst.exe" 
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-11] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FASUSBAudio Control Panel Autostart.lnk [2019-10-26]
ShortcutTarget: FASUSBAudio Control Panel Autostart.lnk -> C:\Program Files\Fractal Audio Systems\USB Audio Driver\FASUSBAudioCplApp.exe () [Datei ist nicht signiert]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NIHardwareAccessibilityHelper.exe.lnk [2020-09-24]
ShortcutTarget: NIHardwareAccessibilityHelper.exe.lnk -> C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe (Native Instruments GmbH -> Native Instruments GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NTKDaemon.lnk [2020-09-24]
ShortcutTarget: NTKDaemon.lnk -> C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe (Native Instruments GmbH -> Native Instruments GmbH)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {00ACD064-B95F-43B7-8522-523411BC77C9} - \Microsoft\Windows\Setup\EOSNotify2 -> Keine Datei <==== ACHTUNG
Task: {04ED0FF3-CD2B-43BC-9825-0F3EE68D8F55} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2649200 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {08816F2B-466E-4FE3-9F12-545B214DA227} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0A36A40A-D75B-4D2B-BE86-FA81E53C3712} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1549F9D2-D2BA-438A-B7DF-FF7324AECF79} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {1F65BEF6-A760-40E9-A5DF-AB3291D03627} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {20E1D964-8096-47AC-93BA-2B726DEEA533} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {24FCAD7E-E24C-4F34-ABA9-174AAA48CEF5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {2BE9CB56-5E46-4B39-9736-1F60D4CEC65E} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2EA746C2-5568-45C2-95F4-9B01E5779FDA} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {47C288D5-536E-465E-80EA-FB0BA85192B4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {49341165-1B6B-45C7-ABF2-A3B640F53DBF} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {519635D2-71EB-43C8-9AA3-BE241C7EA18E} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [233184 2020-12-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {5243B0C2-0B7B-4788-8A6B-F97D940D4730} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {56D6D699-50AC-4EB6-A3BF-02EDA376C31F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {58790F3C-6275-4CB5-81D8-D0DB1B542A37} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {63380CEF-92CD-4BB6-9AB8-B9A59E599B72} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {69C36DAE-085C-40F4-9849-B2E0FE18D4BA} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [338944 2019-10-11] (Microsoft Corporation) [Datei ist nicht signiert]
Task: {6AB8B963-6C84-449C-A34E-0ECE08EB928B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6B245F80-328E-4A5D-A742-C248AC5D110B} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [338944 2019-10-11] (Microsoft Corporation) [Datei ist nicht signiert]
Task: {6BA6E02B-A8A5-4184-8F31-2942CDB730C5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6FD91224-319A-46F1-9CB2-5B61DBC1EA04} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {716C0580-417F-4FF5-A46D-677A198C362A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-14] (Google Inc -> Google LLC)
Task: {7462ED58-6153-4699-B1A9-EB5F38371F00} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [29934096 2020-12-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {7505CBB5-02EF-4A57-8272-C6455DFDBC73} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7A59E56D-1217-4E9E-9011-85A300C5DAD0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-14] (Google Inc -> Google LLC)
Task: {8074D696-01CB-4875-BFAD-3AA17CBCD98A} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {8C2E91F0-6595-4C62-A613-FE0347891625} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8C48E64A-7587-456F-9118-89CF810285E9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {93FCC8B5-6888-46E6-8052-2CF35BB526E2} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {95FF5E5B-A522-415A-829D-ADAF443330BC} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {9CD56F43-5335-4FD2-8364-0B4CB0FDAA2A} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
Task: {9F4617EB-E670-4470-88C3-3C7CDDE2CE90} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AEEF9A97-9F0C-48BC-BD7E-BFF24E0F97C0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {C49552A6-68FA-4FD0-A08E-40EB4B2729F3} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D37BDBE0-C394-4F31-AA2A-FE007EFF3C63} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D6797B3C-F8A3-416A-8CC6-DE80CE64C91A} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {DA4C95B5-2FE4-4E27-BF0C-D24FFB116A51} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {E05E2A2F-EAA3-46D9-819E-397664C896D6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E3D8BAFC-FBC4-4E70-A9E5-66E36A287B1F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {FCA9990E-712C-4A77-B03F-F0634F1235EB} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {FE11A46E-94AC-4EC6-A12B-03A80EA7EE2A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{575D7A83-715E-402A-8358-05F22E7EAEBB}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{8d2143b0-6a87-4525-a322-6f9cf338fe0a}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{b7894936-f7ed-4463-810c-998843d6282f}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{C80A8C93-9511-46B8-8B52-E06CB37D59DE}: [DhcpNameServer] 192.168.178.1

Edge: 
=======
Edge Profile: C:\Users\*****\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-24]

FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-137335120-3890803558-813276337-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\*****\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-20] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default [2021-01-24]
CHR Extension: (Präsentationen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-14]
CHR Extension: (Docs) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-14]
CHR Extension: (Google Drive) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-14]
CHR Extension: (Avira Safe Shopping) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2021-01-19]
CHR Extension: (Tabellen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-14]
CHR Extension: (Avira Browserschutz) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2020-12-02]
CHR Extension: (Google Docs Offline) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-16]
CHR Extension: (Google Mail) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-08]
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-01-24]
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-24]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-10-07] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1205960 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [537472 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483432 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483432 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [573960 2021-01-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-09] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936456 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [636592 2020-11-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [384360 2020-12-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [244888 2020-12-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [161072 2020-12-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44064 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 ElfoService; C:\Program Files (x86)\ElsterFormular Update Service\bin\elfoService.exe [1113864 2020-06-03] (Bayerisches Landesamt fuer Steuern -> )
R2 Focusrite Control Server; C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe [1554432 2020-06-02] (Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert]
R2 gobblerproxy; C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe [15872 2017-06-09] (Media Gobbler, Inc) [Datei ist nicht signiert]
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> )
R2 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (ManyCam -> Visicom Media Inc.)
R2 NIHostIntegrationAgent; C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe [18761336 2020-05-14] (Native Instruments GmbH -> Native Instruments GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WPSHWPBC_DWA_130; C:\Program Files (x86)\D-Link Computer Inc\D-Link DWA-140\WPSHWPBC.exe [317576 2018-10-15] (D-Link Corporation -> )
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15368 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-12-26] (Microsoft Windows Early Launch Anti-Malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [207424 2020-11-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199752 2020-05-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 avmeject; C:\WINDOWS\System32\drivers\avmeject.sys [14120 2010-10-04] (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 bomebus; C:\WINDOWS\System32\drivers\bomebus.sys [56376 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 bomemidi; C:\WINDOWS\system32\drivers\bomemidi.sys [50744 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-10-07] (Microsoft Corporation) [Datei ist nicht signiert]
R3 Focusriteusb; C:\WINDOWS\System32\drivers\Focusriteusb.sys [123456 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteusbSwRoot; C:\WINDOWS\System32\drivers\FocusriteusbSwRoot.sys [92568 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 Focusriteusb_AUDIO; C:\WINDOWS\system32\drivers\FocusriteusbAudio.sys [87912 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 Focusriteusb_MIDI; C:\WINDOWS\system32\drivers\FocusriteusbMidi.sys [49808 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
S3 fwlanusb4; C:\WINDOWS\system32\DRIVERS\fwlanusb4.sys [1293824 2010-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVM GmbH)
R3 iLokDrvr; C:\WINDOWS\System32\drivers\iLokDrvr.sys [25808 2019-06-22] (PACE Anti-Piracy, Inc. -> )
R3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-29] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
S3 nikksm2midi; C:\WINDOWS\System32\Drivers\nikksm2midi.sys [340312 2017-07-20] (Native Instruments GmbH -> Native Instruments GmbH)
S3 nikksm2usb; C:\WINDOWS\System32\drivers\nikksm2usb.sys [88016 2017-07-20] (Native Instruments GmbH -> Native Instruments GmbH)
S3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 sonarworks_VirtualDevice; C:\WINDOWS\System32\drivers\sonarworks.sys [442416 2020-10-23] (SIA Sonarworks -> Sonarworks)
R3 synusb64; C:\WINDOWS\System32\drivers\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH -> Steinberg Media Technologies GmbH)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2019-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win10.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-01-24 14:46 - 2021-01-24 14:46 - 000032587 _____ C:\Users\*****\Downloads\FRST.txt
2021-01-24 14:28 - 2021-01-24 14:33 - 000000000 ____D C:\AdwCleaner
2021-01-24 14:22 - 2021-01-24 14:22 - 008457584 _____ (Malwarebytes) C:\Users\*****\Downloads\adwcleaner_8.0.9.1.exe
2021-01-24 13:31 - 2021-01-24 14:46 - 000000000 ____D C:\FRST
2021-01-24 13:29 - 2021-01-24 13:30 - 002297344 _____ (Farbar) C:\Users\*****\Downloads\FRST64.exe
2021-01-23 00:18 - 2021-01-23 00:20 - 063068276 _____ C:\Users\*****\Desktop\GreenMachine - BMB - Videoversion - WAV 24bit 48kHz.wav
2021-01-22 12:01 - 2021-01-22 12:01 - 000010079 _____ C:\Users\*****\Downloads\DHL-Paketmarke_NU7G4GDKFUQS_1_Flatout_Suspension_e.K..pdf
2021-01-21 20:25 - 2021-01-21 20:25 - 000051498 _____ C:\Users\*****\Downloads\Service Formular 2020.xlsx
2021-01-20 18:26 - 2021-01-20 18:26 - 000079265 _____ C:\Users\*****\Desktop\Harm. minor riff - 7 String.pdf
2021-01-20 10:43 - 2021-01-20 10:52 - 000010673 _____ C:\Users\*****\Desktop\Bio M1.odt
2021-01-20 10:31 - 2021-01-20 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-01-19 22:25 - 2021-01-19 22:25 - 000060186 _____ C:\Users\*****\Desktop\RG1527_DiMarzioCL.pdf
2021-01-17 21:00 - 2021-01-17 21:29 - 008132388 _____ C:\Users\*****\Desktop\Hatebreed-Logo.tif
2021-01-17 20:52 - 2021-01-17 21:28 - 003109760 _____ C:\Users\*****\Desktop\Hatebreed-Logo.psd
2021-01-15 17:36 - 2021-01-15 17:36 - 001477747 _____ C:\Users\*****\Downloads\rv-398al.zip
2021-01-15 10:24 - 2021-01-15 10:29 - 000048781 _____ C:\Users\*****\Desktop\Workout 2021.pdf
2021-01-14 13:56 - 2021-01-15 10:28 - 000015456 _____ C:\Users\*****\Desktop\Workout 2021.odt
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000044064 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-01-13 13:13 - 2021-01-13 13:13 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 13:13 - 2021-01-13 13:13 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 13:13 - 2021-01-13 13:13 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000151040 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000094720 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000053248 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 002590720 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 001101312 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 13:12 - 2021-01-13 13:12 - 000331264 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000266752 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000208384 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000186368 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-01-13 13:11 - 2021-01-13 13:11 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 13:11 - 2021-01-13 13:11 - 000453632 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 13:11 - 2021-01-13 13:11 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 13:11 - 2021-01-13 13:11 - 000164864 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 13:11 - 2021-01-13 13:11 - 000061440 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-12 16:06 - 2021-01-12 16:06 - 000046667 _____ C:\Users\*****\Downloads\deep_purple-smoke_on_the_water_6.gp5
2021-01-09 22:05 - 2021-01-12 20:05 - 000015350 _____ C:\Users\*****\Desktop\Stundenplan Online 2021 NEU.odt
2021-01-09 16:56 - 2021-01-23 00:22 - 000000000 ____D C:\Users\*****\Desktop\GreenMachine
2021-01-08 18:02 - 2021-01-08 18:03 - 000139052 _____ C:\Users\*****\Downloads\64371333.pdf
2021-01-08 17:13 - 2021-01-08 17:32 - 000014775 _____ C:\Users\*****\Desktop\Stundenplan Online 2021.odt
2021-01-05 14:02 - 2021-01-05 14:02 - 000058051 _____ C:\Users\*****\Downloads\statement (12).pdf
2021-01-05 14:01 - 2021-01-05 14:01 - 000090118 _____ C:\Users\*****\Downloads\statement (11).pdf
2021-01-05 14:00 - 2021-01-05 14:00 - 000089704 _____ C:\Users\*****\Downloads\statement (10).pdf
2021-01-05 13:59 - 2021-01-05 13:59 - 000069482 _____ C:\Users\*****\Downloads\statement (9).pdf
2021-01-05 13:58 - 2021-01-05 13:58 - 000068658 _____ C:\Users\*****\Downloads\statement (8).pdf
2021-01-02 21:58 - 2021-01-17 00:21 - 000000000 ____D C:\Users\*****\AppData\Roaming\dvdcss
2021-01-02 21:42 - 2021-01-02 21:44 - 041206272 _____ C:\Users\*****\Downloads\vlc-3.0.11-win64.exe
2020-12-30 23:55 - 2020-12-30 23:56 - 030536752 _____ (Piriform Software Ltd) C:\Users\*****\Downloads\ccsetup575.exe

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-01-24 14:46 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-24 14:40 - 2019-12-26 15:40 - 001930288 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-24 14:40 - 2019-03-19 13:16 - 000821544 _____ C:\WINDOWS\system32\perfh007.dat
2021-01-24 14:40 - 2019-03-19 13:16 - 000183316 _____ C:\WINDOWS\system32\perfc007.dat
2021-01-24 14:40 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2021-01-24 14:36 - 2019-06-19 20:30 - 000000000 ____D C:\Program Files\CCleaner
2021-01-24 14:34 - 2020-12-11 21:44 - 000000000 ___RD C:\Users\*****\iCloudDrive
2021-01-24 14:34 - 2019-12-26 15:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-24 14:34 - 2019-06-19 20:45 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-01-24 14:34 - 2019-06-14 18:36 - 000000000 __SHD C:\Users\*****\IntelGraphicsProfiles
2021-01-24 14:33 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-24 14:25 - 2019-11-11 10:01 - 000001214 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-01-24 14:25 - 2019-11-11 10:01 - 000001210 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-01-24 14:19 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-23 20:26 - 2019-12-26 15:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-23 19:54 - 2020-02-19 08:46 - 000000000 ____D C:\Users\*****\AppData\Local\CrashDumps
2021-01-23 14:29 - 2020-07-05 19:13 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-23 14:29 - 2020-06-20 22:10 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-01-22 23:20 - 2020-06-20 22:13 - 000000000 ___RD C:\Users\*****\Creative Cloud Files
2021-01-22 20:15 - 2019-12-26 15:42 - 000004274 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-22 20:15 - 2019-12-26 15:42 - 000004042 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-01-21 19:52 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-21 18:44 - 2020-04-20 13:36 - 000000000 ____D C:\Users\*****\Desktop\Unterricht
2021-01-20 10:31 - 2019-11-11 10:01 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-01-18 14:08 - 2020-04-18 18:27 - 000000000 ____D C:\Users\*****\AppData\Local\ManyCam
2021-01-18 14:08 - 2020-04-18 18:26 - 000000000 ____D C:\Users\*****\AppData\Roaming\ManyCam
2021-01-18 00:35 - 2019-12-26 15:40 - 000000000 ____D C:\Users\*****
2021-01-18 00:22 - 2020-01-16 09:18 - 000000000 ____D C:\WINDOWS\Minidump
2021-01-17 21:53 - 2020-07-05 19:13 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-17 21:53 - 2020-07-05 19:13 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-17 19:39 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-15 21:41 - 2020-09-03 09:30 - 000000000 ____D C:\Users\Public\Security Sessions
2021-01-15 21:19 - 2019-12-26 15:42 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-14 13:49 - 2020-11-01 09:16 - 000000000 ____D C:\Users\*****\AppData\Roaming\Archetype Nolly
2021-01-14 10:07 - 2019-12-26 15:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-14 10:07 - 2019-12-26 15:42 - 000000000 ___RD C:\Users\*****\3D Objects
2021-01-14 10:07 - 2019-12-26 15:38 - 000293784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-14 10:07 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\IME
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 13:18 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-13 13:17 - 2019-06-20 21:46 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 13:15 - 2019-06-20 21:46 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-13 13:11 - 2019-12-26 15:39 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-12 13:53 - 2020-11-01 09:14 - 000000000 ____D C:\Users\*****\AppData\Roaming\Darkglass Ultra
2021-01-12 10:22 - 2020-06-20 22:06 - 000000000 ____D C:\Program Files\Adobe
2021-01-11 21:12 - 2019-06-14 00:21 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-09 16:56 - 2020-11-11 11:34 - 000000000 ____D C:\Users\*****\Desktop\Ablage
2021-01-09 16:53 - 2020-06-03 08:18 - 000018355 _____ C:\Users\*****\Desktop\Kostenaufstellung.ods
2021-01-08 17:59 - 2020-01-03 15:46 - 000000000 ____D C:\Users\*****\Documents\CleanerReg
2021-01-07 11:36 - 2020-01-13 21:22 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-01-07 10:58 - 2019-06-22 13:13 - 000004096 _____ C:\Users\*****\PaceKeyChain
2021-01-02 14:03 - 2020-09-03 09:24 - 000003706 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2020-12-29 22:01 - 2020-09-03 09:25 - 000003776 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupUpdate
2020-12-29 22:01 - 2020-09-03 09:25 - 000000000 ____D C:\Users\Public\Speedup Sessions
2020-12-28 17:59 - 2019-07-01 08:56 - 000000000 ____D C:\ProgramData\Drum Leveler

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2020-04-19 12:21 - 2020-05-04 19:09 - 000004648 _____ () C:\Users\*****\AppData\Roaming\VoiceMeeterDefault.xml
2020-06-20 22:07 - 2020-06-20 22:07 - 000000410 _____ () C:\Users\*****\AppData\Local\oobelibMkey.log
2020-10-28 21:53 - 2020-10-28 21:53 - 000007597 _____ () C:\Users\*****\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
         


Alt 24.01.2021, 18:43   #6
CC200
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung



Und hier noch Addition:

Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 24-01-2021
durchgeführt von
FRST Logfile:
Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 24-01-2021
durchgeführt von ***** (Administrator) auf *****-PC (ASUS All Series) (24-01-2021 14:46:28)
Gestartet von C:\Users\*****\Downloads
Geladene Profile: *****
Platform: Windows 10 Pro Version 1909 18363.1316 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(D-Link Corporation -> ) C:\Program Files (x86)\D-Link Computer Inc\D-Link DWA-140\WPSHWPBC.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\113.4.507\QtWebEngineProcess.exe <3>
(Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert] C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe
(Focusrite Audio Engineering, Ltd.) [Datei ist nicht signiert] C:\Program Files\FocusriteUSB\Focusrite Notifier.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(GoPro Media, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(ManyCam -> Visicom Media Inc.) C:\ProgramData\ManyCam\Service\ManyCamService.exe
(Media Gobbler, Inc) [Datei ist nicht signiert] C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe
(Media Gobbler, Inc. -> Media Gobbler, Inc) C:\Program Files (x86)\Media Gobbler, Inc\User Agent\GobblerTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe
(PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Sonarworks) [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\Reference 4 Systemwide.exe <4>

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-09-09] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\FocusriteUSB\Focusrite Notifier.exe [5029376 2020-06-02] (Focusrite Audio Engineering, Ltd.) [Datei ist nicht signiert]
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [705728 2020-11-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-10-07] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-12] (Adobe Inc. -> )
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [GobblerTray] => C:\Program Files (x86)\Media Gobbler, Inc\User Agent\GobblerTray.exe [1520664 2017-06-09] (Media Gobbler, Inc. -> Media Gobbler, Inc)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91585088 2020-03-31] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [20569056 2020-04-17] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [680712 2021-01-12] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Reference 4 Systemwide.exe] => C:\Program Files\Sonarworks\Reference 4\Systemwide\Reference 4 Systemwide.exe [20951552 2020-10-28] (Sonarworks) [Datei ist nicht signiert]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [] => [X]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\MountPoints2: {059b684f-8e30-11e9-af07-eb7f887a18cb} - "H:\pushinst.exe" 
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-11] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FASUSBAudio Control Panel Autostart.lnk [2019-10-26]
ShortcutTarget: FASUSBAudio Control Panel Autostart.lnk -> C:\Program Files\Fractal Audio Systems\USB Audio Driver\FASUSBAudioCplApp.exe () [Datei ist nicht signiert]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NIHardwareAccessibilityHelper.exe.lnk [2020-09-24]
ShortcutTarget: NIHardwareAccessibilityHelper.exe.lnk -> C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe (Native Instruments GmbH -> Native Instruments GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NTKDaemon.lnk [2020-09-24]
ShortcutTarget: NTKDaemon.lnk -> C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe (Native Instruments GmbH -> Native Instruments GmbH)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {00ACD064-B95F-43B7-8522-523411BC77C9} - \Microsoft\Windows\Setup\EOSNotify2 -> Keine Datei <==== ACHTUNG
Task: {04ED0FF3-CD2B-43BC-9825-0F3EE68D8F55} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2649200 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {08816F2B-466E-4FE3-9F12-545B214DA227} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0A36A40A-D75B-4D2B-BE86-FA81E53C3712} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1549F9D2-D2BA-438A-B7DF-FF7324AECF79} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {1F65BEF6-A760-40E9-A5DF-AB3291D03627} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {20E1D964-8096-47AC-93BA-2B726DEEA533} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {24FCAD7E-E24C-4F34-ABA9-174AAA48CEF5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {2BE9CB56-5E46-4B39-9736-1F60D4CEC65E} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2EA746C2-5568-45C2-95F4-9B01E5779FDA} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {47C288D5-536E-465E-80EA-FB0BA85192B4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {49341165-1B6B-45C7-ABF2-A3B640F53DBF} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {519635D2-71EB-43C8-9AA3-BE241C7EA18E} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [233184 2020-12-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {5243B0C2-0B7B-4788-8A6B-F97D940D4730} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {56D6D699-50AC-4EB6-A3BF-02EDA376C31F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {58790F3C-6275-4CB5-81D8-D0DB1B542A37} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {63380CEF-92CD-4BB6-9AB8-B9A59E599B72} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {69C36DAE-085C-40F4-9849-B2E0FE18D4BA} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [338944 2019-10-11] (Microsoft Corporation) [Datei ist nicht signiert]
Task: {6AB8B963-6C84-449C-A34E-0ECE08EB928B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6B245F80-328E-4A5D-A742-C248AC5D110B} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [338944 2019-10-11] (Microsoft Corporation) [Datei ist nicht signiert]
Task: {6BA6E02B-A8A5-4184-8F31-2942CDB730C5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6FD91224-319A-46F1-9CB2-5B61DBC1EA04} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {716C0580-417F-4FF5-A46D-677A198C362A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-14] (Google Inc -> Google LLC)
Task: {7462ED58-6153-4699-B1A9-EB5F38371F00} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [29934096 2020-12-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {7505CBB5-02EF-4A57-8272-C6455DFDBC73} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7A59E56D-1217-4E9E-9011-85A300C5DAD0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-14] (Google Inc -> Google LLC)
Task: {8074D696-01CB-4875-BFAD-3AA17CBCD98A} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {8C2E91F0-6595-4C62-A613-FE0347891625} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8C48E64A-7587-456F-9118-89CF810285E9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {93FCC8B5-6888-46E6-8052-2CF35BB526E2} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {95FF5E5B-A522-415A-829D-ADAF443330BC} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {9CD56F43-5335-4FD2-8364-0B4CB0FDAA2A} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
Task: {9F4617EB-E670-4470-88C3-3C7CDDE2CE90} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AEEF9A97-9F0C-48BC-BD7E-BFF24E0F97C0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {C49552A6-68FA-4FD0-A08E-40EB4B2729F3} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D37BDBE0-C394-4F31-AA2A-FE007EFF3C63} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D6797B3C-F8A3-416A-8CC6-DE80CE64C91A} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {DA4C95B5-2FE4-4E27-BF0C-D24FFB116A51} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {E05E2A2F-EAA3-46D9-819E-397664C896D6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E3D8BAFC-FBC4-4E70-A9E5-66E36A287B1F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {FCA9990E-712C-4A77-B03F-F0634F1235EB} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {FE11A46E-94AC-4EC6-A12B-03A80EA7EE2A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{575D7A83-715E-402A-8358-05F22E7EAEBB}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{8d2143b0-6a87-4525-a322-6f9cf338fe0a}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{b7894936-f7ed-4463-810c-998843d6282f}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{C80A8C93-9511-46B8-8B52-E06CB37D59DE}: [DhcpNameServer] 192.168.178.1

Edge: 
=======
Edge Profile: C:\Users\*****\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-24]

FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-137335120-3890803558-813276337-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\*****\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-20] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default [2021-01-24]
CHR Extension: (Präsentationen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-14]
CHR Extension: (Docs) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-14]
CHR Extension: (Google Drive) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-14]
CHR Extension: (Avira Safe Shopping) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2021-01-19]
CHR Extension: (Tabellen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-14]
CHR Extension: (Avira Browserschutz) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2020-12-02]
CHR Extension: (Google Docs Offline) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-16]
CHR Extension: (Google Mail) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-08]
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-01-24]
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-24]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-10-07] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1205960 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [537472 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483432 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483432 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [573960 2021-01-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-09] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936456 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [636592 2020-11-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [384360 2020-12-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [244888 2020-12-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [161072 2020-12-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44064 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 ElfoService; C:\Program Files (x86)\ElsterFormular Update Service\bin\elfoService.exe [1113864 2020-06-03] (Bayerisches Landesamt fuer Steuern -> )
R2 Focusrite Control Server; C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe [1554432 2020-06-02] (Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert]
R2 gobblerproxy; C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe [15872 2017-06-09] (Media Gobbler, Inc) [Datei ist nicht signiert]
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> )
R2 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (ManyCam -> Visicom Media Inc.)
R2 NIHostIntegrationAgent; C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe [18761336 2020-05-14] (Native Instruments GmbH -> Native Instruments GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WPSHWPBC_DWA_130; C:\Program Files (x86)\D-Link Computer Inc\D-Link DWA-140\WPSHWPBC.exe [317576 2018-10-15] (D-Link Corporation -> )
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15368 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-12-26] (Microsoft Windows Early Launch Anti-Malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [207424 2020-11-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199752 2020-05-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 avmeject; C:\WINDOWS\System32\drivers\avmeject.sys [14120 2010-10-04] (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 bomebus; C:\WINDOWS\System32\drivers\bomebus.sys [56376 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 bomemidi; C:\WINDOWS\system32\drivers\bomemidi.sys [50744 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-10-07] (Microsoft Corporation) [Datei ist nicht signiert]
R3 Focusriteusb; C:\WINDOWS\System32\drivers\Focusriteusb.sys [123456 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteusbSwRoot; C:\WINDOWS\System32\drivers\FocusriteusbSwRoot.sys [92568 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 Focusriteusb_AUDIO; C:\WINDOWS\system32\drivers\FocusriteusbAudio.sys [87912 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 Focusriteusb_MIDI; C:\WINDOWS\system32\drivers\FocusriteusbMidi.sys [49808 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
S3 fwlanusb4; C:\WINDOWS\system32\DRIVERS\fwlanusb4.sys [1293824 2010-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVM GmbH)
R3 iLokDrvr; C:\WINDOWS\System32\drivers\iLokDrvr.sys [25808 2019-06-22] (PACE Anti-Piracy, Inc. -> )
R3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-29] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
S3 nikksm2midi; C:\WINDOWS\System32\Drivers\nikksm2midi.sys [340312 2017-07-20] (Native Instruments GmbH -> Native Instruments GmbH)
S3 nikksm2usb; C:\WINDOWS\System32\drivers\nikksm2usb.sys [88016 2017-07-20] (Native Instruments GmbH -> Native Instruments GmbH)
S3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 sonarworks_VirtualDevice; C:\WINDOWS\System32\drivers\sonarworks.sys [442416 2020-10-23] (SIA Sonarworks -> Sonarworks)
R3 synusb64; C:\WINDOWS\System32\drivers\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH -> Steinberg Media Technologies GmbH)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2019-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)
U3 idsvc; kein ImagePath
S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win10.sys [X]

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-01-24 14:46 - 2021-01-24 14:46 - 000032587 _____ C:\Users\*****\Downloads\FRST.txt
2021-01-24 14:28 - 2021-01-24 14:33 - 000000000 ____D C:\AdwCleaner
2021-01-24 14:22 - 2021-01-24 14:22 - 008457584 _____ (Malwarebytes) C:\Users\*****\Downloads\adwcleaner_8.0.9.1.exe
2021-01-24 13:31 - 2021-01-24 14:46 - 000000000 ____D C:\FRST
2021-01-24 13:29 - 2021-01-24 13:30 - 002297344 _____ (Farbar) C:\Users\*****\Downloads\FRST64.exe
2021-01-23 00:18 - 2021-01-23 00:20 - 063068276 _____ C:\Users\*****\Desktop\GreenMachine - BMB - Videoversion - WAV 24bit 48kHz.wav
2021-01-22 12:01 - 2021-01-22 12:01 - 000010079 _____ C:\Users\*****\Downloads\DHL-Paketmarke_NU7G4GDKFUQS_1_Flatout_Suspension_e.K..pdf
2021-01-21 20:25 - 2021-01-21 20:25 - 000051498 _____ C:\Users\*****\Downloads\Service Formular 2020.xlsx
2021-01-20 18:26 - 2021-01-20 18:26 - 000079265 _____ C:\Users\*****\Desktop\Harm. minor riff - 7 String.pdf
2021-01-20 10:43 - 2021-01-20 10:52 - 000010673 _____ C:\Users\*****\Desktop\Bio M1.odt
2021-01-20 10:31 - 2021-01-20 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-01-19 22:25 - 2021-01-19 22:25 - 000060186 _____ C:\Users\*****\Desktop\RG1527_DiMarzioCL.pdf
2021-01-17 21:00 - 2021-01-17 21:29 - 008132388 _____ C:\Users\*****\Desktop\Hatebreed-Logo.tif
2021-01-17 20:52 - 2021-01-17 21:28 - 003109760 _____ C:\Users\*****\Desktop\Hatebreed-Logo.psd
2021-01-15 17:36 - 2021-01-15 17:36 - 001477747 _____ C:\Users\*****\Downloads\rv-398al.zip
2021-01-15 10:24 - 2021-01-15 10:29 - 000048781 _____ C:\Users\*****\Desktop\Workout 2021.pdf
2021-01-14 13:56 - 2021-01-15 10:28 - 000015456 _____ C:\Users\*****\Desktop\Workout 2021.odt
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000044064 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-01-13 13:13 - 2021-01-13 13:13 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 13:13 - 2021-01-13 13:13 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 13:13 - 2021-01-13 13:13 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000151040 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000094720 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000053248 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 002590720 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 001101312 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 13:12 - 2021-01-13 13:12 - 000331264 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000266752 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000208384 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000186368 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-01-13 13:11 - 2021-01-13 13:11 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 13:11 - 2021-01-13 13:11 - 000453632 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 13:11 - 2021-01-13 13:11 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 13:11 - 2021-01-13 13:11 - 000164864 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 13:11 - 2021-01-13 13:11 - 000061440 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-12 16:06 - 2021-01-12 16:06 - 000046667 _____ C:\Users\*****\Downloads\deep_purple-smoke_on_the_water_6.gp5
2021-01-09 22:05 - 2021-01-12 20:05 - 000015350 _____ C:\Users\*****\Desktop\Stundenplan Online 2021 NEU.odt
2021-01-09 16:56 - 2021-01-23 00:22 - 000000000 ____D C:\Users\*****\Desktop\GreenMachine
2021-01-08 18:02 - 2021-01-08 18:03 - 000139052 _____ C:\Users\*****\Downloads\64371333.pdf
2021-01-08 17:13 - 2021-01-08 17:32 - 000014775 _____ C:\Users\*****\Desktop\Stundenplan Online 2021.odt
2021-01-05 14:02 - 2021-01-05 14:02 - 000058051 _____ C:\Users\*****\Downloads\statement (12).pdf
2021-01-05 14:01 - 2021-01-05 14:01 - 000090118 _____ C:\Users\*****\Downloads\statement (11).pdf
2021-01-05 14:00 - 2021-01-05 14:00 - 000089704 _____ C:\Users\*****\Downloads\statement (10).pdf
2021-01-05 13:59 - 2021-01-05 13:59 - 000069482 _____ C:\Users\*****\Downloads\statement (9).pdf
2021-01-05 13:58 - 2021-01-05 13:58 - 000068658 _____ C:\Users\*****\Downloads\statement (8).pdf
2021-01-02 21:58 - 2021-01-17 00:21 - 000000000 ____D C:\Users\*****\AppData\Roaming\dvdcss
2021-01-02 21:42 - 2021-01-02 21:44 - 041206272 _____ C:\Users\*****\Downloads\vlc-3.0.11-win64.exe
2020-12-30 23:55 - 2020-12-30 23:56 - 030536752 _____ (Piriform Software Ltd) C:\Users\*****\Downloads\ccsetup575.exe

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-01-24 14:46 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-24 14:40 - 2019-12-26 15:40 - 001930288 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-24 14:40 - 2019-03-19 13:16 - 000821544 _____ C:\WINDOWS\system32\perfh007.dat
2021-01-24 14:40 - 2019-03-19 13:16 - 000183316 _____ C:\WINDOWS\system32\perfc007.dat
2021-01-24 14:40 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2021-01-24 14:36 - 2019-06-19 20:30 - 000000000 ____D C:\Program Files\CCleaner
2021-01-24 14:34 - 2020-12-11 21:44 - 000000000 ___RD C:\Users\*****\iCloudDrive
2021-01-24 14:34 - 2019-12-26 15:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-24 14:34 - 2019-06-19 20:45 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-01-24 14:34 - 2019-06-14 18:36 - 000000000 __SHD C:\Users\*****\IntelGraphicsProfiles
2021-01-24 14:33 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-24 14:25 - 2019-11-11 10:01 - 000001214 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-01-24 14:25 - 2019-11-11 10:01 - 000001210 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-01-24 14:19 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-23 20:26 - 2019-12-26 15:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-23 19:54 - 2020-02-19 08:46 - 000000000 ____D C:\Users\*****\AppData\Local\CrashDumps
2021-01-23 14:29 - 2020-07-05 19:13 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-23 14:29 - 2020-06-20 22:10 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-01-22 23:20 - 2020-06-20 22:13 - 000000000 ___RD C:\Users\*****\Creative Cloud Files
2021-01-22 20:15 - 2019-12-26 15:42 - 000004274 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-22 20:15 - 2019-12-26 15:42 - 000004042 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-01-21 19:52 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-21 18:44 - 2020-04-20 13:36 - 000000000 ____D C:\Users\*****\Desktop\Unterricht
2021-01-20 10:31 - 2019-11-11 10:01 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-01-18 14:08 - 2020-04-18 18:27 - 000000000 ____D C:\Users\*****\AppData\Local\ManyCam
2021-01-18 14:08 - 2020-04-18 18:26 - 000000000 ____D C:\Users\*****\AppData\Roaming\ManyCam
2021-01-18 00:35 - 2019-12-26 15:40 - 000000000 ____D C:\Users\*****
2021-01-18 00:22 - 2020-01-16 09:18 - 000000000 ____D C:\WINDOWS\Minidump
2021-01-17 21:53 - 2020-07-05 19:13 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-17 21:53 - 2020-07-05 19:13 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-17 19:39 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-15 21:41 - 2020-09-03 09:30 - 000000000 ____D C:\Users\Public\Security Sessions
2021-01-15 21:19 - 2019-12-26 15:42 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-14 13:49 - 2020-11-01 09:16 - 000000000 ____D C:\Users\*****\AppData\Roaming\Archetype Nolly
2021-01-14 10:07 - 2019-12-26 15:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-14 10:07 - 2019-12-26 15:42 - 000000000 ___RD C:\Users\*****\3D Objects
2021-01-14 10:07 - 2019-12-26 15:38 - 000293784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-14 10:07 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\IME
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 13:18 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-13 13:17 - 2019-06-20 21:46 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 13:15 - 2019-06-20 21:46 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-13 13:11 - 2019-12-26 15:39 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-12 13:53 - 2020-11-01 09:14 - 000000000 ____D C:\Users\*****\AppData\Roaming\Darkglass Ultra
2021-01-12 10:22 - 2020-06-20 22:06 - 000000000 ____D C:\Program Files\Adobe
2021-01-11 21:12 - 2019-06-14 00:21 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-09 16:56 - 2020-11-11 11:34 - 000000000 ____D C:\Users\*****\Desktop\Ablage
2021-01-09 16:53 - 2020-06-03 08:18 - 000018355 _____ C:\Users\*****\Desktop\Kostenaufstellung.ods
2021-01-08 17:59 - 2020-01-03 15:46 - 000000000 ____D C:\Users\*****\Documents\CleanerReg
2021-01-07 11:36 - 2020-01-13 21:22 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-01-07 10:58 - 2019-06-22 13:13 - 000004096 _____ C:\Users\*****\PaceKeyChain
2021-01-02 14:03 - 2020-09-03 09:24 - 000003706 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2020-12-29 22:01 - 2020-09-03 09:25 - 000003776 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupUpdate
2020-12-29 22:01 - 2020-09-03 09:25 - 000000000 ____D C:\Users\Public\Speedup Sessions
2020-12-28 17:59 - 2019-07-01 08:56 - 000000000 ____D C:\ProgramData\Drum Leveler

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2020-04-19 12:21 - 2020-05-04 19:09 - 000004648 _____ () C:\Users\*****\AppData\Roaming\VoiceMeeterDefault.xml
2020-06-20 22:07 - 2020-06-20 22:07 - 000000410 _____ () C:\Users\*****\AppData\Local\oobelibMkey.log
2020-10-28 21:53 - 2020-10-28 21:53 - 000007597 _____ () C:\Users\*****\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
         
--- --- --- (24-01-2021 14:47:50) Gestartet von C:\Users\*****\Downloads Windows 10 Pro Version 1909 18363.1316 (X64) (2019-12-26 14:42:42) Start-Modus: Normal ========================================================== ==================== Konten: ============================= Administrator (S-1-5-21-137335120-3890803558-813276337-500 - Administrator - Disabled) DefaultAccount (S-1-5-21-137335120-3890803558-813276337-503 - Limited - Disabled) Guest (S-1-5-21-137335120-3890803558-813276337-501 - Limited - Disabled) HomeGroupUser$ (S-1-5-21-137335120-3890803558-813276337-1002 - Limited - Enabled) ***** (S-1-5-21-137335120-3890803558-813276337-1000 - Administrator - Enabled) => C:\Users\***** WDAGUtilityAccount (S-1-5-21-137335120-3890803558-813276337-504 - Limited - Disabled) ==================== Sicherheits-Center ======================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546} AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F} AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32} AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} ==================== Installierte Programme ====================== (Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.) Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated) Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.1.470 - Adobe Inc.) Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2) (Version: 21.2.0.225 - Adobe Inc.) AirEQ Premium (HKLM\...\Eiosis AirEQ Premium_is1) (Version: 1.1.11.3 - Eiosis) Apple Application Support (32-Bit) (HKLM-x32\...\{5C028510-A6A1-409A-A2BF-4DCB43B21EF9}) (Version: 7.6 - Apple Inc.) Apple Application Support (64-Bit) (HKLM\...\{5C7D4FCF-80C5-4520-9934-D50532AAC59C}) (Version: 7.6 - Apple Inc.) Apple Mobile Device Support (HKLM\...\{2504ACC6-F5B6-4F18-B4A9-2AAF48D89D85}) (Version: 14.0.0.29 - Apple Inc.) Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.) Archetype Nolly (HKLM\...\{923A067F-9829-4DC4-AEF5-86E1DE61201B}) (Version: 2.0.0 - Neural DSP) Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.6.0000 - Asmedia Technology) Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.24.0 - Asmedia Technology) Avira (HKLM-x32\...\{161e6084-b0f5-43e8-86d8-09eda5c0893d}) (Version: 1.2.153.30452 - Avira Operations GmbH & Co. KG) Hidden Avira (HKLM-x32\...\{426D1710-5DFD-45E9-B11D-464792C5AD35}) (Version: 1.2.153.30452 - Avira Operations GmbH & Co. KG) Hidden Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.2101.2069 - Avira Operations GmbH & Co. KG) Hidden Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.37.1.24458 - Avira Operations GmbH & Co. KG) Hidden Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.0.42.14101 - Avira Operations GmbH & Co. KG) Hidden Avira Security (HKLM-x32\...\AviraSecurityUninstaller) (Version: - Avira Operations GmbH & Co. KG;) Avira Software Updater (HKLM-x32\...\{9F45C615-6D95-47B5-BB0C-D78F6D15DE21}) (Version: 2.0.6.42639 - Avira Operations GmbH & Co. KG) Hidden Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.9.0.11050 - Avira Operations GmbH & Co. KG) Hidden Blackmagic RAW Common Components (HKLM\...\{B5ABFF44-9702-4CA1-A7D8-DBA659709C49}) (Version: 1.7 - Blackmagic Design) Bome Virtual MIDI 2.1.0.44 (HKLM\...\BMIDI_Driver1.0.0.11_is1) (Version: - Bome Software GmbH & Co. KG) Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.) Cab-Lab 3.5.0 Plugin (x64) (HKLM\...\{44BB3A6F-C381-4E64-8B48-095CFCDA4A91}_is1) (Version: - Fractal Audio) CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform) Darkglass Ultra (HKLM\...\{488AFDC5-1070-47D0-B77E-B354E4BEB5E4}) (Version: 3.0.0 - Neural DSP) DaVinci Resolve (HKLM\...\{7BBE7103-A702-41A6-814B-406FD26184B6}) (Version: 16.2.3015 - Blackmagic Design) DaVinci Resolve Keyboards (HKLM\...\{04F776FB-37A2-4116-84F2-6CF3D731999D}) (Version: 1.0.0.0 - Blackmagic Design) DaVinci Resolve Panels (HKLM\...\{567706B7-1501-43BC-81AB-C7E306B40C73}) (Version: 1.3.2.0 - Blackmagic Design) D-Link DWA-140 (HKLM-x32\...\{09828F4D-CE2E-403A-8708-A02E53495F3D}) (Version: 1.00.00 - D-Link Computer Inc) Dropbox (HKLM-x32\...\Dropbox) (Version: 113.4.507 - Dropbox, Inc.) Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden Drum Leveler version 1.1.2 (HKLM\...\{94B8FDA3-877B-4EB8-A3E9-5D476329F15D}_is1) (Version: 1.1.2 - Sound Radix) E2Deesser (HKLM\...\Eiosis E2Deesser_is1) (Version: 1.0.9.3 - Eiosis) eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.9.2.1179 - Steinberg Media Technologies GmbH) ElsterFormular (HKLM-x32\...\{0F35BEE6-976E-4324-9AA2-35B156664F92}) (Version: 21.2 - Thüringer Landesamt für Finanzen) EZbass (HKLM\...\{10E45B55-3F6B-4ADB-9B70-A3D42D17BDCC}) (Version: 1.0.0 - Toontrack) EZbass Software Update (HKLM\...\{40E37FB4-7F5A-497A-87D8-6FC9BA5524A7}) (Version: 1.0.6 - Toontrack) EZkeys Grand Piano 64-bit (HKLM\...\{23CA8D91-FD3B-4EE6-BBDF-B5924E7E44EB}) (Version: 1.0.4 - Toontrack) EZkeys Software Player 64-bit (HKLM\...\{C8262E88-3041-4C66-9857-8F41FCB29628}) (Version: 1.3.0 - Toontrack) EZkeys Studio Grand 64-bit (HKLM\...\{40DF1E34-5039-4245-8C73-21E20E7D4027}) (Version: 1.0.0 - Toontrack) FabFilter Pro-C 2.08 (64-bit) (HKLM-x32\...\FabFilter Pro-C 2.08 (64-bit)) (Version: - ) FabFilter Pro-DS 1.12 (64-bit) (HKLM-x32\...\FabFilter Pro-DS 1.12 (64-bit)) (Version: - ) FabFilter Pro-G 1.22 (64-bit) (HKLM-x32\...\FabFilter Pro-G 1.22 (64-bit)) (Version: - ) FabFilter Pro-L 1.26 (64-bit) (HKLM-x32\...\FabFilter Pro-L 1.26 (64-bit)) (Version: - ) FabFilter Pro-MB 1.19 (64-bit) (HKLM-x32\...\FabFilter Pro-MB 1.19 (64-bit)) (Version: - ) FabFilter Pro-Q 2.16 (64-bit) (HKLM-x32\...\FabFilter Pro-Q 2.16 (64-bit)) (Version: - ) FabFilter Saturn 1.20 (64-bit) (HKLM-x32\...\FabFilter Saturn 1.20 (64-bit)) (Version: - ) FabFilter Timeless 2.30 (64-bit) (HKLM-x32\...\FabFilter Timeless 2.30 (64-bit)) (Version: - ) FabFilter Total Bundle (64-bit) (HKLM-x32\...\FabFilter Total Bundle (64-bit)) (Version: - ) FabFilter Twin 2.30 (64-bit) (HKLM-x32\...\FabFilter Twin 2.30 (64-bit)) (Version: - ) FabFilter Volcano 2.30 (64-bit) (HKLM-x32\...\FabFilter Volcano 2.30 (64-bit)) (Version: - ) FG-X (HKLM\...\Slate Digital FG-X_is1) (Version: - Slate Digital) Focusrite Control 3.6.0.1822 (HKLM\...\Focusrite Control_is1) (Version: 3.6.0.1822 - Focusrite Audio Engineering Ltd.) Focusrite Usb 4.65.5.658 (HKLM\...\Focusrite Usb_is1) (Version: 4.65.5.658 - Focusrite Audio Engineering, Ltd.) Fractal Audio Systems USB Audio Driver v2.23.0 (HKLM-x32\...\Fractal Audio Systems USB Audio Driver v2.23.0) (Version: 2.23.0 - Fractal Audio Systems) Fractal Audio Systems USB Driver Package 2014.06.06 (HKLM\...\{E992CC59-71FD-4199-B04E-6274F7439EA0}_is1) (Version: 2014.06.06 - Fractal Audio Systems) Gobbler (HKLM\...\{49C3123D-9497-434D-A988-A9B389B1E189}) (Version: 2.2.2.263 - Media Gobbler, Inc.) Hidden Gobbler (HKLM-x32\...\{1a80729d-d49d-4d81-9991-b785c110295b}) (Version: 2.2.2.263 - Media Gobbler, Inc.) Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC) Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden GoPro Quik (HKLM\...\{AA5F7FCE-311C-46D8-B93A-ABF4DDCAB832}) (Version: 0.1.945 - GoPro, Inc.) Hidden GoPro Quik (HKLM-x32\...\{a23df978-67ca-4fe3-a740-a7b5ae7ec82f}) (Version: 2.7.0.945 - GoPro, Inc.) Guitar Pro 6 (HKLM-x32\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version: - Arobas Music) HOFA-Plugins Uninstall (HKLM-x32\...\HOFA-Plugins) (Version: - HOFA-Plugins) iCloud Outlook (HKLM\...\{F8D8BAB3-5CBA-48FF-A39B-6D13C7EE83F5}) (Version: 11.5.0.28 - Apple Inc.) Infinity EQ (HKLM\...\Slate Digital Infinity EQ_is1) (Version: 1.0.4.1 - Slate Digital) Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4206 - Intel Corporation) Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden iTunes (HKLM\...\{153A88D8-E890-4F36-A10F-2C87071F70AD}) (Version: 12.10.9.3 - Apple Inc.) iZotope Relay (HKLM\...\Relay) (Version: 1.0.4 - iZotope, Inc.) iZotope Tonal Balance Control 2 (HKLM\...\Tonal Balance Control 2) (Version: 2.2.0 - iZotope, Inc.) JST Clip version 1.0.4 (HKLM\...\JST Clip_is1) (Version: 1.0.4 - ) Lustrous Plates version 1.0.0 (HKLM\...\{39AAAED0-CFDF-22E3-AEC7-FBBBA7CE0713}_is1) (Version: 1.0.0 - LiquidSonics) ManyCam 7.2.0 (HKLM-x32\...\ManyCam) (Version: 7.2.0 - Visicom Media Inc.) Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.50 - Microsoft Corporation) Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - ) Microsoft OneDrive (HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation) Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation) Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation) Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation) Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation) Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation) Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation) Native Instruments Absynth 5 (HKLM-x32\...\Native Instruments Absynth 5) (Version: 5.3.1.1628 - Native Instruments) Native Instruments Battery 4 (HKLM-x32\...\Native Instruments Battery 4) (Version: 4.1.6.27 - Native Instruments) Native Instruments Battery 4 Factory Library (HKLM-x32\...\Native Instruments Battery 4 Factory Library) (Version: 1.1.0.2 - Native Instruments) Native Instruments Blocks Base (HKLM-x32\...\Native Instruments Blocks Base) (Version: 1.0.1.1 - Native Instruments) Native Instruments Blocks Primes (HKLM-x32\...\Native Instruments Blocks Primes) (Version: 1.0.1.1 - Native Instruments) Native Instruments Choral (HKLM-x32\...\Native Instruments Choral) (Version: 1.1.0.47 - Native Instruments) Native Instruments Chromatic Fire (HKLM-x32\...\Native Instruments Chromatic Fire) (Version: 1.0.1.1 - Native Instruments) Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 2.6.0.513 - Native Instruments) Native Instruments Creator Tools (HKLM-x32\...\Native Instruments Creator Tools) (Version: 1.2.0.0 - Native Instruments) Native Instruments Deep Matter (HKLM-x32\...\Native Instruments Deep Matter) (Version: 2.0.1.1 - Native Instruments) Native Instruments Driver (HKLM-x32\...\Native Instruments Driver) (Version: 1.3.1.45 - Native Instruments) Native Instruments Elastic Thump (HKLM-x32\...\Native Instruments Elastic Thump) (Version: 2.0.1.4 - Native Instruments) Native Instruments Flair (HKLM-x32\...\Native Instruments Flair) (Version: 1.1.0.47 - Native Instruments) Native Instruments FM8 (HKLM-x32\...\Native Instruments FM8) (Version: 1.4.1.1599 - Native Instruments) Native Instruments Form (HKLM-x32\...\Native Instruments Form) (Version: 1.1.2.1 - Native Instruments) Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.2.8 - Native Instruments) Native Instruments Halcyon Sky (HKLM-x32\...\Native Instruments Halcyon Sky) (Version: 2.0.2.1 - Native Instruments) Native Instruments Komplete Kontrol (HKLM-x32\...\Native Instruments Komplete Kontrol) (Version: 2.4.0.195 - Native Instruments) Native Instruments Komplete Kontrol Driver (HKLM-x32\...\Native Instruments Komplete Kontrol Driver) (Version: - Native Instruments) Native Instruments Komplete Kontrol MK2 Driver (HKLM-x32\...\Native Instruments Komplete Kontrol MK2 Driver) (Version: - Native Instruments) Native Instruments Kontakt (HKLM-x32\...\Native Instruments Kontakt) (Version: 6.4.2.93 - Native Instruments) Native Instruments Kontour (HKLM-x32\...\Native Instruments Kontour) (Version: 1.0.0.6 - Native Instruments) Native Instruments London Grit (HKLM-x32\...\Native Instruments London Grit) (Version: 2.0.1.1 - Native Instruments) Native Instruments Lucid Mission (HKLM-x32\...\Native Instruments Lucid Mission) (Version: 2.0.1.1 - Native Instruments) Native Instruments Maschine 2 (HKLM-x32\...\Native Instruments Maschine 2) (Version: 2.11.1.848 - Native Instruments) Native Instruments Maschine 2 Factory Selection (HKLM-x32\...\Native Instruments Maschine 2 Factory Selection) (Version: 1.0.0.14 - Native Instruments) Native Instruments Maschine Controller MK2 Driver (HKLM-x32\...\Native Instruments Maschine Controller MK2 Driver) (Version: - Native Instruments) Native Instruments Maschine Jam Driver (HKLM-x32\...\Native Instruments Maschine Jam Driver) (Version: - Native Instruments) Native Instruments Maschine Mikro Driver (HKLM-x32\...\Native Instruments Maschine Mikro Driver) (Version: - Native Instruments) Native Instruments Maschine Mikro MK2 Driver (HKLM-x32\...\Native Instruments Maschine Mikro MK2 Driver) (Version: - Native Instruments) Native Instruments Maschine MK3 Driver (HKLM-x32\...\Native Instruments Maschine MK3 Driver) (Version: - Native Instruments) Native Instruments Maschine Studio Driver (HKLM-x32\...\Native Instruments Maschine Studio Driver) (Version: - Native Instruments) Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.5.5.22 - Native Instruments) Native Instruments Massive X (HKLM-x32\...\Native Instruments Massive X) (Version: 1.3.1.213 - Native Instruments) Native Instruments Massive X Factory Library (HKLM-x32\...\Native Instruments Massive X Factory Library) (Version: 1.3.0.1 - Native Instruments) Native Instruments Middle East (HKLM-x32\...\Native Instruments Middle East) (Version: 1.1.0.2 - Native Instruments) Native Instruments Molten Veil (HKLM-x32\...\Native Instruments Molten Veil) (Version: 2.0.2.1 - Native Instruments) Native Instruments Monark (HKLM-x32\...\Native Instruments Monark) (Version: 1.3.1.4 - Native Instruments) Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.12.2.132 - Native Instruments) Native Instruments Native Browser Preview Library (HKLM-x32\...\Native Instruments Native Browser Preview Library) (Version: 1.1.0.28 - Native Instruments) Native Instruments Neon Drive (HKLM-x32\...\Native Instruments Neon Drive) (Version: 2.0.1.4 - Native Instruments) Native Instruments NIHostIntegrationAgent (HKLM-x32\...\Native Instruments NIHostIntegrationAgent) (Version: 1.10.1.152 - Native Instruments) Native Instruments NTKDaemon (HKLM-x32\...\Native Instruments NTKDaemon) (Version: 1.0.2.1 - Native Instruments) Native Instruments Phasis (HKLM-x32\...\Native Instruments Phasis) (Version: 1.1.0.47 - Native Instruments) Native Instruments Polyplex (HKLM-x32\...\Native Instruments Polyplex) (Version: 1.1.0.3 - Native Instruments) Native Instruments Queensbridge Story (HKLM-x32\...\Native Instruments Queensbridge Story) (Version: 2.0.1.1 - Native Instruments) Native Instruments Rammfire (HKLM-x32\...\Native Instruments Rammfire) (Version: 2.0.0.5 - Native Instruments) Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.4.0.2 - Native Instruments) Native Instruments Reaktor Blocks (HKLM-x32\...\Native Instruments Reaktor Blocks) (Version: 1.3.0.5 - Native Instruments) Native Instruments Reaktor Blocks Wired (HKLM-x32\...\Native Instruments Reaktor Blocks Wired) (Version: 1.0.2.1 - Native Instruments) Native Instruments Reaktor Factory Library (HKLM-x32\...\Native Instruments Reaktor Factory Library) (Version: 1.1.0.3 - Native Instruments) Native Instruments Reaktor Factory Selection R2 (HKLM-x32\...\Native Instruments Reaktor Factory Selection R2) (Version: 1.0.1.7 - Native Instruments) Native Instruments Reaktor Prism (HKLM-x32\...\Native Instruments Reaktor Prism) (Version: 1.6.0.6 - Native Instruments) Native Instruments Reaktor Spark R2 (HKLM-x32\...\Native Instruments Reaktor Spark R2) (Version: 1.4.0.4 - Native Instruments) Native Instruments Reflektor (HKLM-x32\...\Native Instruments Reflektor) (Version: 2.0.0.8 - Native Instruments) Native Instruments Replika (HKLM-x32\...\Native Instruments Replika) (Version: 1.4.0.47 - Native Instruments) Native Instruments Rounds (HKLM-x32\...\Native Instruments Rounds) (Version: 1.2.0.3 - Native Instruments) Native Instruments Solid Bus Comp FX (HKLM-x32\...\Native Instruments Solid Bus Comp FX) (Version: 1.3.1.45 - Native Instruments) Native Instruments Solid Dynamics FX (HKLM-x32\...\Native Instruments Solid Dynamics FX) (Version: 1.3.1.45 - Native Instruments) Native Instruments Solid EQ FX (HKLM-x32\...\Native Instruments Solid EQ FX) (Version: 1.3.1.45 - Native Instruments) Native Instruments Supercharger (HKLM-x32\...\Native Instruments Supercharger) (Version: 1.3.1.45 - Native Instruments) Native Instruments The Finger R2 (HKLM-x32\...\Native Instruments The Finger R2) (Version: 1.3.0.3 - Native Instruments) Native Instruments Traktors 12 (HKLM-x32\...\Native Instruments Traktors 12) (Version: 2.0.0.8 - Native Instruments) Native Instruments Transient Master FX (HKLM-x32\...\Native Instruments Transient Master FX) (Version: 1.3.1.45 - Native Instruments) Native Instruments TRK-01 (HKLM-x32\...\Native Instruments TRK-01) (Version: 1.1.1.1 - Native Instruments) Native Instruments TRK-01 Bass (HKLM-x32\...\Native Instruments TRK-01 Bass) (Version: 1.0.0.10 - Native Instruments) Native Instruments TRK-01 Kick (HKLM-x32\...\Native Instruments TRK-01 Kick) (Version: 1.0.1.8 - Native Instruments) Native Instruments Velvet Lounge (HKLM-x32\...\Native Instruments Velvet Lounge) (Version: 2.0.1.2 - Native Instruments) OpenAL (HKLM-x32\...\OpenAL) (Version: - ) OpenOffice 4.1.6 (HKLM-x32\...\{3651624F-019F-4B39-8AE4-A2423CE1986F}) (Version: 4.16.9790 - Apache Software Foundation) Ozone 9 Advanced (HKLM\...\Ozone 9) (Version: 9.1.0 - iZotope, Inc.) PACE License Support Win64 (HKLM\...\{52F54766-2321-4841-A523-CA0C8261E26D}) (Version: 5.0.3.2569 - PACE Anti-Piracy, Inc.) Hidden PACE License Support Win64 (HKLM-x32\...\InstallShield_{52F54766-2321-4841-A523-CA0C8261E26D}) (Version: 5.0.3.2569 - PACE Anti-Piracy, Inc.) PreSonus Universal Control 1.7.2 (HKLM\...\PreSonus Universal Control_is1) (Version: 1.7.2 - PreSonus Audio Electronics) Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform) Reference 4 VST plugin (64-bit) (HKLM\...\{5F524C89-B8AE-49DB-9828-D5233294CCDD}) (Version: 4.4.6.20 - Sonarworks) Repeater (64bit) (HKLM\...\{9E73E488-A73C-4213-8493-FC24668564DE}) (Version: 1.1.6.0 - D16 Group Audio Software) Skype Version 8.58 (HKLM-x32\...\Skype_is1) (Version: 8.58 - Skype Technologies S.A.) Slate Digital Fresh Air (HKLM\...\{af2fe7e8-08f8-4c81-b875-ec4c7a97a204}Slate Digi~4955043A_is1) (Version: 1.0.3.0 - Slate Digital) Sonarworks Reference 4 Systemwide (HKLM\...\{8760905F-8968-46EF-ADF3-7CFF91CE9952}) (Version: 4.4.6.20 - Sonarworks) soothe2 audio processor version 1.1.1 (HKLM-x32\...\{8E8F4A61-FA08-4CAB-8F5A-AF25CEE4F3FE}_is1) (Version: 1.1.1 - oeksound) Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation) Steinberg Content Updater (HKLM-x32\...\{23BAFE62-0AF0-4D71-98C2-47286139DC45}) (Version: 2.0.0 - Steinberg Media Technologies GmbH) Steinberg Cubase 8.5 64bit (HKLM\...\{81643F2F-C292-46B7-AFB4-8ED2F1FF8AAA}) (Version: 8.5.30 - Steinberg Media Technologies GmbH) Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 2.0.0.0 - Steinberg Media Technologies GmbH) Steinberg EDM Toolbox MIDI Loops (HKLM-x32\...\{8C9B2EA8-9A30-4347-95E9-10E919C4F32E}) (Version: 1.1.0 - Steinberg Media Technologies GmbH) Steinberg Groove Agent ONE Allen Morgan Signature Drums (HKLM-x32\...\{611A7035-0172-4B9B-8BB6-5046F6867D8A}) (Version: 1.0.0 - Steinberg Media Technologies GmbH) Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH) Steinberg Groove Agent ONE Vintage Beatboxes (HKLM-x32\...\{DBF4BC99-53F1-4C97-84C3-7557D103E182}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH) Steinberg Groove Agent SE 64bit (HKLM\...\{A5AB0D21-21BD-4DB8-F097-02E8FC8C486A}) (Version: 4.2.30 - Steinberg Media Technologies GmbH) Steinberg Groove Agent SE Acoustic Agent (HKLM-x32\...\{F34EA13C-F078-4003-AE21-43EAB2680EC5}) (Version: 1.0.1 - Steinberg Media Technologies GmbH) Steinberg Groove Agent SE Content (HKLM-x32\...\{AFC9D1CE-F050-437C-35A5-62DEDB262DC7}) (Version: 1.2.20 - Steinberg Media Technologies GmbH) Steinberg Groove Agent SE Rock Pop Toolbox Drums (HKLM-x32\...\{E9BFA009-DD72-4F2A-84CB-6DF46472B563}) (Version: 1.0.1 - Steinberg Media Technologies GmbH) Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 2.0.2 - Steinberg Media Technologies GmbH) Steinberg HALion Sonic SE Content (HKLM-x32\...\{A5051ABF-A497-4C3C-85EA-F7A4D5C19B82}) (Version: 2.0.1 - Steinberg Media Technologies GmbH) Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 2.0.0.000 - Steinberg Media Technologies GmbH) Steinberg LoopMash Content 2 (HKLM-x32\...\{88C337F0-4CF2-4098-BDC0-D94859ECA2B4}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH) Steinberg Midi Loop Library (HKLM-x32\...\{89DE2651-6DD9-4C15-AC94-8348362D456C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH) Steinberg Padshop 64bit (HKLM\...\{75F15019-C0C2-4047-AA45-97B4BD313719}) (Version: 1.1.0 - Steinberg Media Technologies GmbH) Steinberg Retrologue 64bit (HKLM\...\{4D65ECE6-131D-4B5F-8470-2750D3161619}) (Version: 2.0.10 - Steinberg Media Technologies GmbH) Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 2.0.1.000 - Steinberg Media Technologies GmbH) Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.2 - Steinberg Media Technologies GmbH) Steinberg VST Amp Rack Content 01 (HKLM-x32\...\{8CBA7E47-48DA-47DC-8E98-6984BA830295}) (Version: 1.0.1 - Steinberg Media Technologies GmbH) Steinberg VST Bass Amp Content (HKLM-x32\...\{A2FC1750-B90F-4948-9D6E-DDDA155C6EC8}) (Version: 1.0.0 - Steinberg Media Technologies GmbH) Steinberg VST Transit 64bit (HKLM\...\{FF1A114C-0F88-11E5-A6C0-1697F925EC7B}) (Version: 1.0.13 - Steinberg Media Technologies GmbH) Superior Drummer 3 (HKLM\...\{54399DF4-5143-49DE-93BA-59F88660BE2B}) (Version: 3.2.2 - Toontrack) Superior Drummer 64-bit (HKLM\...\{0E54CF79-AE40-409E-9253-9563418C730C}) (Version: 2.4.4 - Toontrack) TH-U Slate (HKLM\...\{DF6C5D5F-EF02-41e4-85F0-A19397A664C3}_is1) (Version: 1.0.11 - Overloud) Toontrack Audio Sender (HKLM\...\{6915D5CF-4040-436A-940E-37D27C5512C5}) (Version: 1.0.4 - Toontrack) Toontrack Product Manager (HKLM-x32\...\{5BAE101A-4AF5-4FBA-99E6-1CE2825F8993}) (Version: 1.0.7 - Toontrack) Verbiage version 3.0.3 (HKLM\...\Verbiage_is1) (Version: 3.0.3 - Stillwell Audio LLC) VerbSuite Classics (HKLM\...\Slate Digital VerbSuite Classics_is1) (Version: 1.0.11.1 - Slate Digital) VerbSuite Classics FG-224 Expansion (HKLM\...\Slate Digital VerbSuite Classics FG-224 Expansion_is1) (Version: 1.0.0.6 - Slate Digital) VerbSuite Classics FG-3000 & FG-3500 Expansion (HKLM\...\Slate Digital VerbSuite Classics FG-3000 & FG-35~ACE4A30F_is1) (Version: 1.0.0.4 - Slate Digital) Virtual Buss Compressors (HKLM\...\Slate Digital Virtual Buss Compressors_is1) (Version: 1.2.14.5 - Slate Digital) VMR Complete Bundle (HKLM\...\Slate Digital VMR Complete Bundle_is1) (Version: 2.5.2.1 - Slate Digital) Waves Central (HKLM\...\{ab507e17-892b-5203-838d-d58d8d09c50f}) (Version: 11.0.50 - Waves Audio Ltd) Windows 10-Update-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22925 - Microsoft Corporation) Windows-Treiberpaket - Focusrite USB 2.0 Audio Driver (03/17/2014 2.5.128.1) (HKLM\...\D86E353566ECB4A7ADA159C02FE46D0BACC4FA6B) (Version: 03/17/2014 2.5.128.1 - Focusrite) Windows-Treiberpaket - Fractal Audio Systems (axefx2load) USB (05/15/2011 1.0.0.9) (HKLM\...\6AEB8A42A154DE456DE5E467C01A582911CB5C6A) (Version: 05/15/2011 1.0.0.9 - Fractal Audio Systems) WinRAR 5.71 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH) Zoom (HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.) Packages: ========= Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-07-10] (Adobe Systems Incorporated) iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa [2020-12-16] (Apple Inc.) [Startup Task] Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-06-20] (Microsoft Corporation) Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-12-31] (Microsoft Corporation) [MS Ad] Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-12-31] (Microsoft Corporation) [MS Ad] Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-14] (Microsoft Studios) [MS Ad] My MP4 to MP3 Converter -> C:\Program Files\WindowsApps\32573MMSoftware.MyMP4toMP3Converter_1.5.1.0_x64__xky5rpyx4kdm4 [2020-11-16] (M&amp;MSoftware) [MS Ad] ==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ============== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-55C862CCA6D1} -> [Creative Cloud Files] => C:\Users\*****\Creative Cloud Files [2020-06-20 22:13] CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{D34481A6-8E8A-4D01-9CCA-0ECF25A7F59F} -> [iCloud Drive] => C:\Users\*****\iCloudDrive [2020-12-11 21:44] CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\*****\Dropbox [2019-11-11 10:12] CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems) CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{EDDAACE3-1665-4373-B216-F3282C5437E3} -> [iCloud-Fotos] => C:\Users\*****\Pictures\iCloud Photos\Photos [2020-12-11 21:44] ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> ) ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> ) ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-12-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-12-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.) ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Keine Datei ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-12-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> ) ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd) ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal) ==================== Codecs (Nicht auf der Ausnahmeliste) ==================== ==================== Verknüpfungen & WMI ======================== (Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.) WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\":: WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99] WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate] ==================== Geladene Module (Nicht auf der Ausnahmeliste) ============= 2019-10-26 12:45 - 2014-05-16 02:35 - 000219136 _____ () [Datei ist nicht signiert] c:\program files\fractal audio systems\usb audio driver\fasusbaudioasio_x64.dll 2020-10-28 13:33 - 2020-10-28 13:33 - 097685504 _____ () [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\libcef.dll 2020-10-28 13:33 - 2020-10-28 13:33 - 000093696 _____ () [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\libegl.dll 2020-10-28 13:33 - 2020-10-28 13:33 - 004308992 _____ () [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\libglesv2.dll 2019-12-26 15:45 - 2021-01-24 14:34 - 000040592 _____ (ASUSTeK Computer Inc. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll 2020-01-03 16:07 - 2020-06-02 15:35 - 000168448 _____ (Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert] c:\program files\focusriteusb\focusriteusbasio64.dll 2017-06-09 19:54 - 2017-06-09 19:54 - 001167872 _____ (Media Gobbler, Inc) [Datei ist nicht signiert] C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxy.dll 2017-06-09 19:53 - 2017-06-09 19:53 - 004856320 _____ (Media Gobbler, Inc) [Datei ist nicht signiert] C:\Program Files (x86)\Media Gobbler, Inc\User Agent\gobblersdk.dll 2015-11-02 12:16 - 2015-11-02 12:16 - 000173056 _____ (Steinberg Media Technologies) [Datei ist nicht signiert] c:\program files\steinberg\asio\asioglld.dll 2020-10-28 13:33 - 2020-10-28 13:33 - 000548864 _____ (The Chromium Authors) [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\chrome_elf.dll ==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.) AlternateDataStreams: C:\ProgramData\PACE:2FCF06B808429657 [1] ==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ================== ==================== Verknüpfungen (Nicht auf der Ausnahmeliste) ================= ==================== Internet Explorer (Nicht auf der Ausnahmeliste) ========== HKU\S-1-5-21-137335120-3890803558-813276337-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp ==================== Hosts Inhalt: ========================= (Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.) 2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts ==================== Andere Bereiche =========================== (Aktuell gibt es keinen automatisierten Fix für diesen Bereich.) HKU\S-1-5-21-137335120-3890803558-813276337-1000\Control Panel\Desktop\\Wallpaper -> f:\eigene bilder\wallpaper\lake_sunrise-wallpaper-1920x1080.jpg DNS Servers: 192.168.178.1 HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1) HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: ) HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei) ist aktiviert. ==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge == (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.) MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe" HKLM\...\StartupApproved\StartupFolder: => "FASUSBAudio Control Panel Autostart.lnk" HKLM\...\StartupApproved\StartupFolder: => "NIHardwareAccessibilityHelper.exe.lnk" HKLM\...\StartupApproved\StartupFolder: => "NTKDaemon.lnk" HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0" HKLM\...\StartupApproved\Run: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run: => "iTunesHelper" HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess" HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud" HKLM\...\StartupApproved\Run32: => "AVMWlanClient" HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0" HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "OneDrive" HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "Steam" HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "Reference 4 Systemwide" HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "ManyCam" HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "Skype for Desktop" HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "CCXProcess" HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning" ==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================ (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) FirewallRules: [{2A4EF6D6-4354-4318-8524-9057B051CF2E}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{F9EE887B-C400-4A58-B7DE-10315CA53C4D}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve -> Valve Corporation) FirewallRules: [{CECF91DB-7D8F-4777-B5BB-991388D2E34E}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{02FBA0FD-12D9-4AB8-A6C0-599C3B0E156D}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{153342F2-F364-4D6A-BCA6-0176B0733731}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{A80463C9-161C-4151-B2F8-68F0CBAA02A8}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{6926C643-CE06-40D0-A4E4-235112D8F2C7}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{F849E264-7ACF-4FE5-B030-40C40B59291B}] => (Allow) C:\Program Files\Steinberg\Cubase 8.5\Cubase8.5.exe (Steinberg Media Technologies GmbH -> Steinberg Media Technologies) FirewallRules: [{05254A08-1803-4060-A959-833F921F23DD}] => (Allow) LPort=51113 FirewallRules: [{107B02AF-6ED3-444F-819D-46A00847568F}] => (Allow) LPort=51112 FirewallRules: [{104396F3-62E5-43CC-8CE3-BCDF21D42939}] => (Allow) LPort=51111 FirewallRules: [{B154A1D9-CFD2-4158-B30B-B351F99EDF4F}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoPro Quik.exe (GoPro Media, Inc. -> ) FirewallRules: [{6627CFF8-7CB6-4A24-A43A-9E2BEEDBC77A}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProMsgBus.exe (GoPro Media, Inc. -> ) FirewallRules: [{D0D3A024-4265-44EA-BB81-8F99B2CC4610}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProIDService.exe (GoPro Media, Inc. -> ) FirewallRules: [{26E3B6F7-14E3-47F4-BD1C-AC944043CE7D}] => (Allow) C:\Program Files\GoPro\GoPro Desktop App\GoProLauncher.exe (GoPro Media, Inc. -> ) FirewallRules: [TCP Query User{27164585-4D01-4A9B-AAED-405AEF3D8069}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [UDP Query User{4E7595BE-42BB-4FBD-B6FF-061FC37A3615}C:\program files\blackmagic design\davinci resolve\fuscript.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\fuscript.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [TCP Query User{0FD53B3E-40B7-46B4-A78B-A57FCACBE5D3}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [UDP Query User{5296E16B-45B0-4BBB-B331-58DC89CFDDF9}C:\program files\blackmagic design\davinci resolve\resolve.exe] => (Allow) C:\program files\blackmagic design\davinci resolve\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [TCP Query User{C227E197-5EB6-4F55-98BC-2F71D11673BA}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Block) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [UDP Query User{6E6ECCBE-14E6-4DD4-92BB-065B62108F0F}C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe] => (Block) C:\program files\blackmagic design\davinci resolve\davincipaneldaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{DF00A8ED-41ED-46EB-A018-E8F1F314FDAF}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{FF28FB38-4A67-43E7-BC5E-8C120E382508}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [TCP Query User{F899BB8C-36A9-43C6-8F45-2BA5CB2F18C7}C:\program files (x86)\manycam\manycam.exe] => (Allow) C:\program files (x86)\manycam\manycam.exe (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.) FirewallRules: [UDP Query User{C2654268-ABBA-4EC2-A64F-5EF106E83235}C:\program files (x86)\manycam\manycam.exe] => (Allow) C:\program files (x86)\manycam\manycam.exe (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.) FirewallRules: [TCP Query User{F03A193B-DB3B-4E19-B461-6C5366A3587B}C:\program files (x86)\manycam\manycam.exe] => (Allow) C:\program files (x86)\manycam\manycam.exe (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.) FirewallRules: [UDP Query User{7BB205E7-C1C5-42C2-8203-90E348BE66BD}C:\program files (x86)\manycam\manycam.exe] => (Allow) C:\program files (x86)\manycam\manycam.exe (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.) FirewallRules: [TCP Query User{88400D28-108E-469F-9A0C-6CD647E90152}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [UDP Query User{E1568907-F83A-4557-96B2-2248E673C479}C:\program files (x86)\microsoft\skype for desktop\skype.exe] => (Allow) C:\program files (x86)\microsoft\skype for desktop\skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{195E216C-A5CB-4505-BA8E-9BA611513065}] => (Allow) C:\Users\*****\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.) FirewallRules: [{44F88688-B95C-45D0-8370-4884AD4C3C73}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.) FirewallRules: [{760FECE1-0058-4289-9FB4-D783039D889F}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\bmdpaneld.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{6D7EEDC6-C876-4DCF-BC03-C87DEE9FF584}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DaVinciPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{E873C322-E1F4-4258-A114-B54070BBEEC9}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\JLCooperPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{B7426DCC-C8CE-44C1-9674-7763B7E059DB}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\EuphonixPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{4A9DE2A7-0A75-40DF-8E22-C1BCA341647A}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\TangentPanelDaemon.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{6CE73B8F-4425-4DC7-A38D-BF470E59D128}] => (Allow) C:\Program Files\Blackmagic Design\DaVinci Resolve\DPDecoder.exe (Blackmagic Design Pty Ltd -> ) FirewallRules: [{DCDB0DC0-644D-4E2F-8E3C-2423637785AF}] => (Allow) C:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.) FirewallRules: [{2701E31F-6D29-4870-A89F-4EA81D156910}] => (Allow) C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe (Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert] FirewallRules: [{DE169108-1EBB-4F57-A293-E1BF1D5803DA}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{68D21B49-FF55-4747-B197-1B1F8072B918}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{98D28B4F-2A56-42BC-959A-A3E523C93D06}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{C208234B-2143-431E-8F3F-46E456825083}] => (Allow) C:\Program Files\WindowsApps\Microsoft.SkypeApp_15.67.99.0_x86__kzf8qxf38zg5c\Skype\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.) FirewallRules: [{6A6B0239-58E5-4026-BB7C-F45B1B74D8AE}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) FirewallRules: [{773026C8-5875-4C04-8F8C-51E41CD283C5}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.) FirewallRules: [{CBE61AE6-FE58-41A7-9946-267000FCDB9E}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) FirewallRules: [{738E6C82-83B8-41D9-BCDA-AB600954B278}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) FirewallRules: [{8C65C32F-F5D5-4DDE-9819-F042DAFCD47D}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) ==================== Wiederherstellungspunkte ========================= 09-01-2021 16:26:49 Geplanter Prüfpunkt 13-01-2021 13:07:02 Windows Update 22-01-2021 21:01:23 Geplanter Prüfpunkt ==================== Fehlerhafte Geräte im Gerätemanager ============ Name: High Definition Audio-Controller Description: High Definition Audio-Controller Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318} Manufacturer: Microsoft Service: HDAudBus Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. Name: ManyCam Virtual Microphone Description: ManyCam Virtual Microphone Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318} Manufacturer: Visicom Media Inc. Service: mcaudrv_simple Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions. ==================== Fehlereinträge in der Ereignisanzeige: ======================== Applikationsfehler: ================== Error: (01/24/2021 02:43:12 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3560,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/24/2021 02:33:32 PM) (Source: VSS) (EventID: 8193) (User: ) Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren. . Error: (01/24/2021 02:33:32 PM) (Source: VSS) (EventID: 13) (User: ) Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren. ] Error: (01/24/2021 02:33:09 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (3492,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/24/2021 02:25:17 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: NT-AUTORITÄT) Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\WINDOWS\system32\sysmain.dll" nicht laden (Win32-Fehlercode 126). Error: (01/24/2021 02:24:33 PM) (Source: VSS) (EventID: 13) (User: ) Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren. ] Error: (01/24/2021 02:11:03 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (18240,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Error: (01/24/2021 01:27:30 PM) (Source: ESENT) (EventID: 455) (User: ) Description: svchost (12072,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log. Systemfehler: ============= Error: (01/24/2021 02:46:02 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT) Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat. Error: (01/24/2021 02:45:44 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT) Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat. Error: (01/24/2021 02:43:35 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT) Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat. Error: (01/24/2021 02:41:05 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT) Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat. Error: (01/24/2021 02:39:49 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT) Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat. Error: (01/24/2021 02:38:07 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT) Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat. Error: (01/24/2021 02:37:47 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT) Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat. Error: (01/24/2021 02:37:44 PM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT) Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat. CodeIntegrity: =================================== Date: 2020-10-01 12:47:14.364 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-09-22 11:37:46.016 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-09-01 09:54:11.878 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-08-16 21:42:59.380 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-08-14 21:06:45.736 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-08-05 16:04:55.364 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-07-15 10:14:38.873 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. Date: 2020-05-23 21:50:52.128 Description: Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements. ==================== Speicherinformationen =========================== BIOS: American Megatrends Inc. 2012 09/30/2014 Hauptplatine: ASUSTeK COMPUTER INC. Z97-PRO Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz Prozentuale Nutzung des RAM: 15% Installierter physikalischer RAM: 32450.31 MB Verfügbarer physikalischer RAM: 27321.82 MB Summe virtueller Speicher: 65218.31 MB Verfügbarer virtueller Speicher: 59952.18 MB ==================== Laufwerke ================================ Drive c: () (Fixed) (Total:222.9 GB) (Free:12.44 GB) NTFS Drive e: (Storage) (Fixed) (Total:931.51 GB) (Free:428.86 GB) NTFS Drive f: (Media) (Fixed) (Total:1862.89 GB) (Free:1060.55 GB) NTFS Drive g: (Samples) (Fixed) (Total:465.76 GB) (Free:8.85 GB) NTFS \\?\Volume{af2c7491-8e79-11e9-a2b5-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS \\?\Volume{0fabf2a0-0000-0000-0000-40c037000000}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS ==================== MBR & Partitionstabelle ==================== ========================================================== Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000) Partition: GPT. ========================================================== Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2AF0E084) Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS) ========================================================== Disk: 2 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 0FABF2A0) Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS) Partition 2: (Not Active) - (Size=222.9 GB) - (Type=07 NTFS) Partition 3: (Not Active) - (Size=578 MB) - (Type=27) ========================================================== Disk: 3 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FB81F6B0) Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS) ==================== Ende von Addition.txt =======================
Sorry, noch vergessen: Die vorherige Deinstallation von VLC verlief erfolgreich.

Alt 24.01.2021, 21:01   #7
M-K-D-B
/// TB-Ausbilder
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung



Gut gemacht!
Wir entfernen noch verweiste Einträge und spühren evtl. vorhandene Reste auf.





Schritt 1
  • Speichere deine Arbeiten und schließe alle offenen Programme, damit keine Daten verloren gehen.
  • Kopiere den gesamten Inhalt der folgenden Code-Box:
    Code:
    ATTFilter
    Start::
    HKLM\...\Run: [] => [X]
    HKLM-x32\...\Run: [] => [X]
    HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [] => [X]
    HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
    Task: {00ACD064-B95F-43B7-8522-523411BC77C9} - \Microsoft\Windows\Setup\EOSNotify2 -> Keine Datei <==== ACHTUNG
    Task: {9CD56F43-5335-4FD2-8364-0B4CB0FDAA2A} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
    U3 idsvc; kein ImagePath
    S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win10.sys [X]
    AlternateDataStreams: C:\ProgramData\PACE:2FCF06B808429657 [1]
    ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} =>  -> Keine Datei
    ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Keine Datei
    CMD: ipconfig /flushdns
    CMD: netsh winsock reset
    CMD: netsh advfirewall reset
    CMD: netsh advfirewall set allprofiles state ON
    CMD: Bitsadmin /Reset /Allusers
    powershell: Set-MpPreference -PUAProtection Enabled
    Hosts:
    RemoveProxy:
    SystemRestore: On 
    EmptyTemp:
    End::
             
  • Starte nun FRST und klicke direkt den Reparieren Button.
    Wichtig: Du brauchst den Inhalt der Code-Box nirgends einfügen, da sich FRST den Code aus der Zwischenablage holt!
  • Das Tool führt die gewünschten Schritte aus und erstellt eine fixlog.txt im selben Verzeichnis, in dem sich FRST befindet.
  • Gegebenenfalls muss dein Rechner neu gestartet werden.
  • Poste mir den Inhalt der fixlog.txt mit deiner nächsten Antwort.





Schritt 2
  • Starte FRST erneut. Kopiere den Inhalt der folgenden Code-Box oben in das Suchfeld:
    Code:
    ATTFilter
    SearchAll: Update Plus Player;UpdatePlusPlayer;VLC Plus Player;VLCPlusPlayer;Aller Media;AllerMedia
             
  • Klicke auf den Button Datei-Suche.
  • FRST beginnt mit dem Suchlauf. Das kann einige Zeit dauern, bitte gedulde dich!
  • Am Ende wird eine Textdatei Search.txt erstellt.
  • Poste mir deren Inhalt mit deiner nächsten Antwort.





Schritt 3
  • Starte FRST erneut. Vergewissere dich, dass vor Addition.txt ein Haken gesetzt ist und drücke auf Untersuchen.
  • FRST erstellt wieder zwei Logdateien (FRST.txt und Addition.txt).
  • Poste mir beide Logdateien mit deiner nächsten Antwort.





Bitte poste mit deiner nächsten Antwort:
  • die Logdatei des FRST-Fix (fixlog.txt)
  • die Logdatei des FRST-Suchlaufs (Search.txt)
  • die beiden neuen Logdateien von FRST (FRST.txt und Addition.txt)

Alt 26.01.2021, 11:24   #8
CC200
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung



Hallo, hier fixlog und search:

Code:
ATTFilter
Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 24-01-2021 01
durchgeführt von ***** (26-01-2021 10:56:24) Run:1
Gestartet von C:\Users\*****\Downloads
Geladene Profile: *****
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [] => [X]
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
Task: {00ACD064-B95F-43B7-8522-523411BC77C9} - \Microsoft\Windows\Setup\EOSNotify2 -> Keine Datei <==== ACHTUNG
Task: {9CD56F43-5335-4FD2-8364-0B4CB0FDAA2A} - \Microsoft\Windows\Setup\EOSNotify -> Keine Datei <==== ACHTUNG
U3 idsvc; kein ImagePath
S3 VBAudioVMVAIOMME; \SystemRoot\System32\drivers\vbaudio_vmvaio64_win10.sys [X]
AlternateDataStreams: C:\ProgramData\PACE:2FCF06B808429657 [1]
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Keine Datei
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
CMD: ipconfig /flushdns
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: Bitsadmin /Reset /Allusers
powershell: Set-MpPreference -PUAProtection Enabled
Hosts:
RemoveProxy:
SystemRestore: On
EmptyTemp:

*****************

"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\" => erfolgreich entfernt
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => erfolgreich entfernt
"HKU\S-1-5-21-137335120-3890803558-813276337-1000\Software\Microsoft\Windows\CurrentVersion\Run\\" => erfolgreich entfernt
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{503739d0-4c5e-4cfd-b3ba-d881334f0df2}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{00ACD064-B95F-43B7-8522-523411BC77C9}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{00ACD064-B95F-43B7-8522-523411BC77C9}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\EOSNotify2" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{9CD56F43-5335-4FD2-8364-0B4CB0FDAA2A}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{9CD56F43-5335-4FD2-8364-0B4CB0FDAA2A}" => erfolgreich entfernt
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\EOSNotify" => erfolgreich entfernt
HKLM\System\CurrentControlSet\Services\idsvc => erfolgreich entfernt
idsvc => Dienst erfolgreich entfernt
HKLM\System\CurrentControlSet\Services\VBAudioVMVAIOMME => erfolgreich entfernt
VBAudioVMVAIOMME => Dienst erfolgreich entfernt
C:\ProgramData\PACE => ":2FCF06B808429657" ADS erfolgreich entfernt
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\Gadgets => erfolgreich entfernt
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\igfxcui => erfolgreich entfernt

========= ipconfig /flushdns =========


Windows-IP-Konfiguration

Der DNS-Aufl”sungscache wurde geleert.

========= Ende von CMD: =========


========= netsh winsock reset =========


Der Winsock-Katalog wurde zurckgesetzt.
Sie mssen den Computer neu starten, um den Vorgang abzuschlieáen.


========= Ende von CMD: =========


========= netsh advfirewall reset =========

OK.


========= Ende von CMD: =========


========= netsh advfirewall set allprofiles state ON =========

OK.


========= Ende von CMD: =========


========= Bitsadmin /Reset /Allusers =========


BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.

{53EAC758-9AFE-4E11-99AB-99AF300C66F3} canceled.
{53FFB8C0-B215-45C5-9B46-AEF5955FA852} canceled.
2 out of 2 jobs canceled.

========= Ende von CMD: =========


========= Set-MpPreference -PUAProtection Enabled =========

Set-MpPreference : Fehler beim Vorgang: 0x800106ba. Vorgang: Set-MpPreference. Ziel: PUAProtection.
In C:\FRST\tmp.ps1:1 Zeichen:1
+ Set-MpPreference -PUAProtection Enabled
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    + CategoryInfo          : NotSpecified: (MSFT_MpPreference:root\Microsoft\...FT_MpPreference) [Set-MpPreference],  
   CimException
    + FullyQualifiedErrorId : HRESULT 0x800106ba,Set-MpPreference
 

========= Ende von Powershell: =========

Konnte nicht verschoben werden "C:\Windows\System32\Drivers\etc\hosts" => ist geplant bei Neustart verschoben zu werden.

========= RemoveProxy: =========

"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
"HKU\S-1-5-21-137335120-3890803558-813276337-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\S-1-5-21-137335120-3890803558-813276337-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt


========= Ende von RemoveProxy: =========

SystemRestore: On => Fehler -> 5%

=========== EmptyTemp: ==========

BITS transfer queue => 10772480 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 13713270 B
Java, Flash, Steam htmlcache => 27592531 B
Windows/system/drivers => 0 B
Edge => 0 B
Chrome => 8804746 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4508 B
NetworkService => 4508 B
***** => 6055451 B

RecycleBin => 163602 B
EmptyTemp: => 64 MB temporäre Dateien entfernt.

================================

Ergebnis der geplanten Datei-Verschiebungen (Start-Modus: Normal) (Datum&Uhrzeit: 26-01-2021 10:57:38)

C:\Windows\System32\Drivers\etc\hosts => Konnte nicht verschoben werden
Konnte nicht wiederhergestellt werden Hosts.

==== Ende vom Fixlog 10:57:38 ====
         

Code:
ATTFilter
Farbar Recovery Scan Tool (x64) Version: 24-01-2021 01
durchgeführt von ***** (26-01-2021 11:03:15)
Gestartet von C:\Users\*****\Downloads
Start-Modus: Normal

================== Datei-Suche: "SearchAll: Update Plus Player;UpdatePlusPlayer;VLC Plus Player;VLCPlusPlayer;Aller Media;AllerMedia" =============

Datei:
========

Ordner:
========

Registry:
========

===================== Suchergebnis für "Update Plus Player" ==========


===================== Suchergebnis für "UpdatePlusPlayer" ==========


===================== Suchergebnis für "VLC Plus Player" ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival]
"DefaultIcon"=""C:\Program Files\VLC Plus Player\vlc.exe",0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival]
"Provider"="Aller Media e.K. VLC Plus Player"

[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival]
"DefaultIcon"=""C:\Program Files\VLC Plus Player\vlc.exe",0"

[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival]
"Provider"="Aller Media e.K. VLC Plus Player"

[HKEY_USERS\S-1-5-21-137335120-3890803558-813276337-1000\Software\Microsoft\Internet Explorer\LowRegistry\Audio\PolicyConfig\PropertyStore\39555765_0]
""="{2}.\\?\root#media#{6994ad04-93ef-11d0-a3cc-00a0c9223196}\topology/00010001|\Device\HarddiskVolume6\Program Files\VLC Plus Player\vlc.exe%b{4533F59D-59EE-00C6-ADB2-C68B501A6655}"

[HKEY_USERS\S-1-5-21-137335120-3890803558-813276337-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FeatureUsage\AppSwitched]
"{6D809377-6AF0-444B-8957-A3773F02200E}\VLC Plus Player\vlc.exe"="1"

[HKEY_USERS\S-1-5-21-137335120-3890803558-813276337-1000\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Program Files\VLC Plus Player\vlc.exe"="0x5341435001000000000000000700000028000000706802001F64030001000000000000000000000600010000631F6E6F0EDED4010000000000000000020000002800000000000000000000000000000000000000000000000000000070188900000000000D0000000D000000"

[HKEY_USERS\S-1-5-21-137335120-3890803558-813276337-1000\Software\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Compatibility Assistant\Store]
"C:\Program Files\VLC Plus Player\uninstall.exe"="0x5341435001000000000000000700000028000000F06C03003698750201000000000000000000000A00210000631F6E6F0EDED40100000000000000000200000028000000000000000000004000000000000000000000000000000000265A0000000000000100000001000000"

[HKEY_USERS\S-1-5-21-137335120-3890803558-813276337-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Program Files\VLC Plus Player\vlc.exe.FriendlyAppName"="VLC Plus Player"

[HKEY_USERS\S-1-5-21-137335120-3890803558-813276337-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Program Files\VLC Plus Player\vlc.exe.ApplicationCompany"="Aller Media e.K."


===================== Suchergebnis für "VLCPlusPlayer" ==========


===================== Suchergebnis für "Aller Media" ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival]
"Provider"="Aller Media e.K. VLC Plus Player"

[HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival]
"Provider"="Aller Media e.K. VLC Plus Player"

[HKEY_USERS\S-1-5-21-137335120-3890803558-813276337-1000\Software\Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache]
"C:\Program Files\VLC Plus Player\vlc.exe.ApplicationCompany"="Aller Media e.K."


===================== Suchergebnis für "AllerMedia" ==========


====== Ende von Suche ======
         
und hier FRST und addition:

Code:
ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 24-01-2021 01
durchgeführt von ***** (Administrator) auf *****-PC (ASUS All Series) (26-01-2021 11:11:37)
Gestartet von C:\Users\*****\Downloads
Geladene Profile: *****
Platform: Windows 10 Pro Version 1909 18363.1316 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(D-Link Corporation -> ) C:\Program Files (x86)\D-Link Computer Inc\D-Link DWA-140\WPSHWPBC.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\113.4.507\QtWebEngineProcess.exe <3>
(Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert] C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe
(Focusrite Audio Engineering, Ltd.) [Datei ist nicht signiert] C:\Program Files\FocusriteUSB\Focusrite Notifier.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <8>
(GoPro Media, Inc. -> ) C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(ManyCam -> Visicom Media Inc.) C:\ProgramData\ManyCam\Service\ManyCamService.exe
(Media Gobbler, Inc) [Datei ist nicht signiert] C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe
(Media Gobbler, Inc. -> Media Gobbler, Inc) C:\Program Files (x86)\Media Gobbler, Inc\User Agent\GobblerTray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20122.11121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe
(PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Sonarworks) [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\Reference 4 Systemwide.exe <4>

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [331064 2020-09-09] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [Focusrite Notifier] => C:\Program Files\FocusriteUSB\Focusrite Notifier.exe [5029376 2020-06-02] (Focusrite Audio Engineering, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [705728 2020-11-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-10-07] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-12] (Adobe Inc. -> )
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [GobblerTray] => C:\Program Files (x86)\Media Gobbler, Inc\User Agent\GobblerTray.exe [1520664 2017-06-09] (Media Gobbler, Inc. -> Media Gobbler, Inc)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3288016 2019-12-16] (Valve -> Valve Corporation)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91585088 2020-03-31] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [ManyCam] => C:\Program Files (x86)\ManyCam\ManyCam.exe [20569056 2020-04-17] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [680712 2021-01-12] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [Reference 4 Systemwide.exe] => C:\Program Files\Sonarworks\Reference 4\Systemwide\Reference 4 Systemwide.exe [20951552 2020-10-28] (Sonarworks) [Datei ist nicht signiert]
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\MountPoints2: {059b684f-8e30-11e9-af07-eb7f887a18cb} - "H:\pushinst.exe" 
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\WINDOWS\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\87.0.4280.141\Installer\chrmstp.exe [2021-01-11] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FASUSBAudio Control Panel Autostart.lnk [2019-10-26]
ShortcutTarget: FASUSBAudio Control Panel Autostart.lnk -> C:\Program Files\Fractal Audio Systems\USB Audio Driver\FASUSBAudioCplApp.exe () [Datei ist nicht signiert]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NIHardwareAccessibilityHelper.exe.lnk [2020-09-24]
ShortcutTarget: NIHardwareAccessibilityHelper.exe.lnk -> C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe (Native Instruments GmbH -> Native Instruments GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NTKDaemon.lnk [2020-09-24]
ShortcutTarget: NTKDaemon.lnk -> C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe (Native Instruments GmbH -> Native Instruments GmbH)

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {04ED0FF3-CD2B-43BC-9825-0F3EE68D8F55} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2649200 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {08816F2B-466E-4FE3-9F12-545B214DA227} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {0A36A40A-D75B-4D2B-BE86-FA81E53C3712} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {1549F9D2-D2BA-438A-B7DF-FF7324AECF79} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {1F65BEF6-A760-40E9-A5DF-AB3291D03627} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {20E1D964-8096-47AC-93BA-2B726DEEA533} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {24FCAD7E-E24C-4F34-ABA9-174AAA48CEF5} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {2BE9CB56-5E46-4B39-9736-1F60D4CEC65E} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2EA746C2-5568-45C2-95F4-9B01E5779FDA} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {47C288D5-536E-465E-80EA-FB0BA85192B4} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47c2-B62A-B7C4CED925CB}
Task: {49341165-1B6B-45C7-ABF2-A3B640F53DBF} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDfE067B1}
Task: {519635D2-71EB-43C8-9AA3-BE241C7EA18E} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [233184 2020-12-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {5243B0C2-0B7B-4788-8A6B-F97D940D4730} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43da-BFD7-FBEEA2180A1E}
Task: {56D6D699-50AC-4EB6-A3BF-02EDA376C31F} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {58790F3C-6275-4CB5-81D8-D0DB1B542A37} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {63380CEF-92CD-4BB6-9AB8-B9A59E599B72} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {69C36DAE-085C-40F4-9849-B2E0FE18D4BA} - System32\Tasks\Microsoft\Windows\End Of Support\Notify1 => C:\WINDOWS\system32\sipnotify.exe [338944 2019-10-11] (Microsoft Corporation) [Datei ist nicht signiert]
Task: {6AB8B963-6C84-449C-A34E-0ECE08EB928B} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6B245F80-328E-4A5D-A742-C248AC5D110B} - System32\Tasks\Microsoft\Windows\End Of Support\Notify2 => C:\WINDOWS\system32\sipnotify.exe [338944 2019-10-11] (Microsoft Corporation) [Datei ist nicht signiert]
Task: {6BA6E02B-A8A5-4184-8F31-2942CDB730C5} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6FD91224-319A-46F1-9CB2-5B61DBC1EA04} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {716C0580-417F-4FF5-A46D-677A198C362A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-14] (Google Inc -> Google LLC)
Task: {7462ED58-6153-4699-B1A9-EB5F38371F00} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [29934096 2020-12-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {7505CBB5-02EF-4A57-8272-C6455DFDBC73} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7A59E56D-1217-4E9E-9011-85A300C5DAD0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-06-14] (Google Inc -> Google LLC)
Task: {8074D696-01CB-4875-BFAD-3AA17CBCD98A} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {8C2E91F0-6595-4C62-A613-FE0347891625} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {8C48E64A-7587-456F-9118-89CF810285E9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {93FCC8B5-6888-46E6-8052-2CF35BB526E2} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {95FF5E5B-A522-415A-829D-ADAF443330BC} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4f47-879B-29A80C355D61}
Task: {9F4617EB-E670-4470-88C3-3C7CDDE2CE90} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {AEEF9A97-9F0C-48BC-BD7E-BFF24E0F97C0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40b4-8963-D3C761B18371}
Task: {C49552A6-68FA-4FD0-A08E-40EB4B2729F3} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D37BDBE0-C394-4F31-AA2A-FE007EFF3C63} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {D6797B3C-F8A3-416A-8CC6-DE80CE64C91A} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {DA4C95B5-2FE4-4E27-BF0C-D24FFB116A51} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {E05E2A2F-EAA3-46D9-819E-397664C896D6} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {E3D8BAFC-FBC4-4E70-A9E5-66E36A287B1F} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {FCA9990E-712C-4A77-B03F-F0634F1235EB} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {FE11A46E-94AC-4EC6-A12B-03A80EA7EE2A} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{575D7A83-715E-402A-8358-05F22E7EAEBB}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{8d2143b0-6a87-4525-a322-6f9cf338fe0a}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{b7894936-f7ed-4463-810c-998843d6282f}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{C80A8C93-9511-46B8-8B52-E06CB37D59DE}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{f73cf238-a6f9-4884-b497-17278580583a}: [DhcpNameServer] 185.123.227.250

Edge: 
=======
Edge Profile: C:\Users\*****\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-26]

FireFox:
========
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-10-07] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-137335120-3890803558-813276337-1000: @zoom.us/ZoomVideoPlugin -> C:\Users\*****\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-05-20] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default [2021-01-26]
CHR Extension: (Präsentationen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-06-14]
CHR Extension: (Docs) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-06-14]
CHR Extension: (Google Drive) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-21]
CHR Extension: (YouTube) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-06-14]
CHR Extension: (Avira Safe Shopping) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2021-01-19]
CHR Extension: (Tabellen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-06-14]
CHR Extension: (Avira Browserschutz) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2020-12-02]
CHR Extension: (Google Docs Offline) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-10]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-16]
CHR Extension: (Google Mail) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-23]
CHR Extension: (Chrome Media Router) - C:\Users\*****\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-12-08]
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\Guest Profile [2021-01-26]
CHR Profile: C:\Users\*****\AppData\Local\Google\Chrome\User Data\System Profile [2021-01-26]
CHR HKLM\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

==================== Dienste (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-10-07] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1205960 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [537472 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483432 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483432 2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [573960 2021-01-14] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-09] (Apple Inc. -> Apple Inc.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\1.02.00\atkexComSvc.exe [936456 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [636592 2020-11-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [384360 2020-12-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [244888 2020-12-31] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [161072 2020-12-16] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2019-11-11] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44064 2021-01-14] (Dropbox, Inc -> Dropbox, Inc.)
S3 ElfoService; C:\Program Files (x86)\ElsterFormular Update Service\bin\elfoService.exe [1113864 2020-06-03] (Bayerisches Landesamt fuer Steuern -> )
R2 Focusrite Control Server; C:\Program Files\Focusrite\Focusrite Control\Server\ControlServer.exe [1554432 2020-06-02] (Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert]
R2 gobblerproxy; C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxyservice.exe [15872 2017-06-09] (Media Gobbler, Inc) [Datei ist nicht signiert]
R2 GoProDeviceDetectionService; C:\Program Files\GoPro\GoPro Desktop App\GoProDeviceDetection.exe [38328 2018-08-31] (GoPro Media, Inc. -> )
R2 ManyCam Service; C:\ProgramData\ManyCam\Service\ManyCamService.exe [544984 2016-03-31] (ManyCam -> Visicom Media Inc.)
R2 NIHostIntegrationAgent; C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe [18761336 2020-05-14] (Native Instruments GmbH -> Native Instruments GmbH)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 WPSHWPBC_DWA_130; C:\Program Files (x86)\D-Link Computer Inc\D-Link DWA-140\WPSHWPBC.exe [317576 2018-10-15] (D-Link Corporation -> )
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation

===================== Treiber (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [15368 2015-05-13] (Microsoft Windows Hardware Compatibility Publisher -> )
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-12-26] (Microsoft Windows Early Launch Anti-Malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [207424 2020-11-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199752 2020-05-05] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 avmeject; C:\WINDOWS\System32\drivers\avmeject.sys [14120 2010-10-04] (AVM Computersysteme Vertriebs GmbH -> AVM Berlin)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-12-26] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 bomebus; C:\WINDOWS\System32\drivers\bomebus.sys [56376 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 bomemidi; C:\WINDOWS\system32\drivers\bomemidi.sys [50744 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-10-07] (Microsoft Corporation) [Datei ist nicht signiert]
R3 Focusriteusb; C:\WINDOWS\System32\drivers\Focusriteusb.sys [123456 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 FocusriteusbSwRoot; C:\WINDOWS\System32\drivers\FocusriteusbSwRoot.sys [92568 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 Focusriteusb_AUDIO; C:\WINDOWS\system32\drivers\FocusriteusbAudio.sys [87912 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
R3 Focusriteusb_MIDI; C:\WINDOWS\system32\drivers\FocusriteusbMidi.sys [49808 2020-06-02] (WDKTestCert builds,132265248139626354 -> Focusrite Audio Engineering Ltd.)
S3 fwlanusb4; C:\WINDOWS\system32\DRIVERS\fwlanusb4.sys [1293824 2010-10-04] (Microsoft Windows Hardware Compatibility Publisher -> AVM GmbH)
R3 iLokDrvr; C:\WINDOWS\System32\drivers\iLokDrvr.sys [25808 2019-06-22] (PACE Anti-Piracy, Inc. -> )
R3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-29] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
S3 nikksm2midi; C:\WINDOWS\System32\Drivers\nikksm2midi.sys [340312 2017-07-20] (Native Instruments GmbH -> Native Instruments GmbH)
S3 nikksm2usb; C:\WINDOWS\System32\drivers\nikksm2usb.sys [88016 2017-07-20] (Native Instruments GmbH -> Native Instruments GmbH)
R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [50248 2020-12-01] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
S3 rtwlane_13; C:\WINDOWS\System32\drivers\rtwlane_13.sys [3717120 2019-03-19] (Microsoft Windows -> Realtek Semiconductor Corporation)
R3 sonarworks_VirtualDevice; C:\WINDOWS\System32\drivers\sonarworks.sys [442416 2020-10-23] (SIA Sonarworks -> Sonarworks)
R3 synusb64; C:\WINDOWS\System32\drivers\synusb64.sys [30352 2011-12-14] (Steinberg Media Technologies GmbH -> Steinberg Media Technologies GmbH)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2019-04-03] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
R3 WirelessKeyboardFilter; C:\WINDOWS\System32\drivers\WirelessKeyboardFilter.sys [49336 2018-03-11] (Microsoft Corporation -> Microsoft Corporation)

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)


==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-01-26 11:11 - 2021-01-26 11:12 - 000032481 _____ C:\Users\*****\Downloads\FRST.txt
2021-01-26 11:03 - 2021-01-26 11:10 - 000003968 _____ C:\Users\*****\Downloads\Search.txt
2021-01-26 10:56 - 2021-01-26 11:11 - 000006364 _____ C:\Users\*****\Downloads\Fixlog.txt
2021-01-26 10:55 - 2021-01-26 10:55 - 000000000 ____D C:\Users\*****\Downloads\FRST-OlderVersion
2021-01-25 21:08 - 2021-01-25 23:07 - 000000000 ____D C:\Users\*****\Desktop\bilder
2021-01-24 14:28 - 2021-01-24 14:33 - 000000000 ____D C:\AdwCleaner
2021-01-24 14:22 - 2021-01-24 14:22 - 008457584 _____ (Malwarebytes) C:\Users\*****\Downloads\adwcleaner_8.0.9.1.exe
2021-01-24 13:31 - 2021-01-26 11:11 - 000000000 ____D C:\FRST
2021-01-24 13:29 - 2021-01-26 10:55 - 002297344 _____ (Farbar) C:\Users\*****\Downloads\FRST64.exe
2021-01-23 00:18 - 2021-01-23 00:20 - 063068276 _____ C:\Users\*****\Desktop\GreenMachine - BMB - Videoversion - WAV 24bit 48kHz.wav
2021-01-22 12:01 - 2021-01-22 12:01 - 000010079 _____ C:\Users\*****\Downloads\DHL-Paketmarke_NU7G4GDKFUQS_1_Flatout_Suspension_e.K..pdf
2021-01-21 20:25 - 2021-01-21 20:25 - 000051498 _____ C:\Users\*****\Downloads\Service Formular 2020.xlsx
2021-01-20 18:26 - 2021-01-20 18:26 - 000079265 _____ C:\Users\*****\Desktop\Harm. minor riff - 7 String.pdf
2021-01-20 10:43 - 2021-01-20 10:52 - 000010673 _____ C:\Users\*****\Desktop\Bio M1.odt
2021-01-20 10:31 - 2021-01-20 10:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-01-19 22:25 - 2021-01-19 22:25 - 000060186 _____ C:\Users\*****\Desktop\RG1527_DiMarzioCL.pdf
2021-01-17 21:00 - 2021-01-17 21:29 - 008132388 _____ C:\Users\*****\Desktop\Hatebreed-Logo.tif
2021-01-17 20:52 - 2021-01-17 21:28 - 003109760 _____ C:\Users\*****\Desktop\Hatebreed-Logo.psd
2021-01-15 17:36 - 2021-01-15 17:36 - 001477747 _____ C:\Users\*****\Downloads\rv-398al.zip
2021-01-15 10:24 - 2021-01-15 10:29 - 000048781 _____ C:\Users\*****\Desktop\Workout 2021.pdf
2021-01-14 13:56 - 2021-01-15 10:28 - 000015456 _____ C:\Users\*****\Desktop\Workout 2021.odt
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2021-01-14 03:43 - 2021-01-14 03:43 - 000044064 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2021-01-13 13:13 - 2021-01-13 13:13 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-13 13:13 - 2021-01-13 13:13 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-13 13:13 - 2021-01-13 13:13 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000151040 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-13 13:13 - 2021-01-13 13:13 - 000094720 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-13 13:13 - 2021-01-13 13:13 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-13 13:13 - 2021-01-13 13:13 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-13 13:13 - 2021-01-13 13:13 - 000053248 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 002590720 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 001101312 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-13 13:12 - 2021-01-13 13:12 - 000331264 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000266752 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000208384 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000186368 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-13 13:12 - 2021-01-13 13:12 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-01-13 13:12 - 2021-01-13 13:12 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-01-13 13:11 - 2021-01-13 13:11 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-13 13:11 - 2021-01-13 13:11 - 000453632 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-13 13:11 - 2021-01-13 13:11 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-13 13:11 - 2021-01-13 13:11 - 000164864 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-13 13:11 - 2021-01-13 13:11 - 000061440 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-12 16:06 - 2021-01-12 16:06 - 000046667 _____ C:\Users\*****\Downloads\deep_purple-smoke_on_the_water_6.gp5
2021-01-09 22:05 - 2021-01-12 20:05 - 000015350 _____ C:\Users\*****\Desktop\Stundenplan Online 2021 NEU.odt
2021-01-09 16:56 - 2021-01-23 00:22 - 000000000 ____D C:\Users\*****\Desktop\GreenMachine
2021-01-08 18:02 - 2021-01-08 18:03 - 000139052 _____ C:\Users\*****\Downloads\64371333.pdf
2021-01-08 17:13 - 2021-01-08 17:32 - 000014775 _____ C:\Users\*****\Desktop\Stundenplan Online 2021.odt
2021-01-05 14:02 - 2021-01-05 14:02 - 000058051 _____ C:\Users\*****\Downloads\statement (12).pdf
2021-01-05 14:01 - 2021-01-05 14:01 - 000090118 _____ C:\Users\*****\Downloads\statement (11).pdf
2021-01-05 14:00 - 2021-01-05 14:00 - 000089704 _____ C:\Users\*****\Downloads\statement (10).pdf
2021-01-05 13:59 - 2021-01-05 13:59 - 000069482 _____ C:\Users\*****\Downloads\statement (9).pdf
2021-01-05 13:58 - 2021-01-05 13:58 - 000068658 _____ C:\Users\*****\Downloads\statement (8).pdf
2021-01-02 21:58 - 2021-01-17 00:21 - 000000000 ____D C:\Users\*****\AppData\Roaming\dvdcss
2021-01-02 21:42 - 2021-01-02 21:44 - 041206272 _____ C:\Users\*****\Downloads\vlc-3.0.11-win64.exe
2020-12-30 23:55 - 2020-12-30 23:56 - 030536752 _____ (Piriform Software Ltd) C:\Users\*****\Downloads\ccsetup575.exe

==================== Ein Monat (geänderte) ==================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)

2021-01-26 11:03 - 2019-12-26 15:40 - 001930288 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-01-26 11:03 - 2019-03-19 13:16 - 000821544 _____ C:\WINDOWS\system32\perfh007.dat
2021-01-26 11:03 - 2019-03-19 13:16 - 000183316 _____ C:\WINDOWS\system32\perfc007.dat
2021-01-26 11:03 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2021-01-26 11:00 - 2019-06-22 13:13 - 000005120 _____ C:\Users\*****\PaceKeyChain
2021-01-26 10:59 - 2019-06-19 20:30 - 000000000 ____D C:\Program Files\CCleaner
2021-01-26 10:57 - 2020-12-11 21:44 - 000000000 ___RD C:\Users\*****\iCloudDrive
2021-01-26 10:57 - 2019-12-26 15:42 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-01-26 10:57 - 2019-06-19 20:45 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2021-01-26 10:57 - 2019-06-14 18:36 - 000000000 __SHD C:\Users\*****\IntelGraphicsProfiles
2021-01-26 10:57 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-01-26 10:57 - 2019-03-19 05:37 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-01-26 10:56 - 2020-12-09 20:07 - 000000000 ____D C:\Users\*****\AppData\LocalLow\Temp
2021-01-26 10:43 - 2019-12-26 15:38 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-01-25 17:00 - 2019-12-26 15:42 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-25 11:48 - 2020-01-03 22:37 - 000000000 ____D C:\Users\*****\AppData\Local\D3DSCache
2021-01-24 14:25 - 2019-11-11 10:01 - 000001214 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job
2021-01-24 14:25 - 2019-11-11 10:01 - 000001210 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job
2021-01-24 14:19 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-01-23 19:54 - 2020-02-19 08:46 - 000000000 ____D C:\Users\*****\AppData\Local\CrashDumps
2021-01-23 14:29 - 2020-07-05 19:13 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-23 14:29 - 2020-06-20 22:10 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-01-22 23:20 - 2020-06-20 22:13 - 000000000 ___RD C:\Users\*****\Creative Cloud Files
2021-01-22 20:15 - 2019-12-26 15:42 - 000004274 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-22 20:15 - 2019-12-26 15:42 - 000004042 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore
2021-01-21 19:52 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-01-21 18:44 - 2020-04-20 13:36 - 000000000 ____D C:\Users\*****\Desktop\Unterricht
2021-01-20 10:31 - 2019-11-11 10:01 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-01-18 14:08 - 2020-04-18 18:27 - 000000000 ____D C:\Users\*****\AppData\Local\ManyCam
2021-01-18 14:08 - 2020-04-18 18:26 - 000000000 ____D C:\Users\*****\AppData\Roaming\ManyCam
2021-01-18 00:35 - 2019-12-26 15:40 - 000000000 ____D C:\Users\*****
2021-01-18 00:22 - 2020-01-16 09:18 - 000000000 ____D C:\WINDOWS\Minidump
2021-01-17 21:53 - 2020-07-05 19:13 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-17 21:53 - 2020-07-05 19:13 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-17 19:39 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-15 21:41 - 2020-09-03 09:30 - 000000000 ____D C:\Users\Public\Security Sessions
2021-01-14 13:49 - 2020-11-01 09:16 - 000000000 ____D C:\Users\*****\AppData\Roaming\Archetype Nolly
2021-01-14 10:07 - 2019-12-26 15:42 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-14 10:07 - 2019-12-26 15:42 - 000000000 ___RD C:\Users\*****\3D Objects
2021-01-14 10:07 - 2019-12-26 15:38 - 000293784 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-14 10:07 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-13 22:15 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\IME
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-13 22:15 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-13 13:18 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-13 13:17 - 2019-06-20 21:46 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-13 13:15 - 2019-06-20 21:46 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-13 13:11 - 2019-12-26 15:39 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-12 13:53 - 2020-11-01 09:14 - 000000000 ____D C:\Users\*****\AppData\Roaming\Darkglass Ultra
2021-01-12 10:22 - 2020-06-20 22:06 - 000000000 ____D C:\Program Files\Adobe
2021-01-11 21:12 - 2019-06-14 00:21 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-09 16:56 - 2020-11-11 11:34 - 000000000 ____D C:\Users\*****\Desktop\Ablage
2021-01-09 16:53 - 2020-06-03 08:18 - 000018355 _____ C:\Users\*****\Desktop\Kostenaufstellung.ods
2021-01-08 17:59 - 2020-01-03 15:46 - 000000000 ____D C:\Users\*****\Documents\CleanerReg
2021-01-07 11:36 - 2020-01-13 21:22 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-01-02 14:03 - 2020-09-03 09:24 - 000003706 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2020-12-29 22:01 - 2020-09-03 09:25 - 000003776 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupUpdate
2020-12-29 22:01 - 2020-09-03 09:25 - 000000000 ____D C:\Users\Public\Speedup Sessions
2020-12-28 17:59 - 2019-07-01 08:56 - 000000000 ____D C:\ProgramData\Drum Leveler

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========

2020-04-19 12:21 - 2020-05-04 19:09 - 000004648 _____ () C:\Users\*****\AppData\Roaming\VoiceMeeterDefault.xml
2020-06-20 22:07 - 2020-06-20 22:07 - 000000410 _____ () C:\Users\*****\AppData\Local\oobelibMkey.log
2020-10-28 21:53 - 2020-10-28 21:53 - 000007597 _____ () C:\Users\*****\AppData\Local\Resmon.ResmonCfg

==================== SigCheck ============================

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)

==================== Ende von FRST.txt ========================
         
Code:
ATTFilter
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 24-01-2021 01
durchgeführt von ***** (26-01-2021 11:13:17)
Gestartet von C:\Users\*****\Downloads
Windows 10 Pro Version 1909 18363.1316 (X64) (2019-12-26 14:42:42)
Start-Modus: Normal
==========================================================


==================== Konten: =============================

Administrator (S-1-5-21-137335120-3890803558-813276337-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-137335120-3890803558-813276337-503 - Limited - Disabled)
Guest (S-1-5-21-137335120-3890803558-813276337-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-137335120-3890803558-813276337-1002 - Limited - Enabled)
***** (S-1-5-21-137335120-3890803558-813276337-1000 - Administrator - Enabled) => C:\Users\*****
WDAGUtilityAccount (S-1-5-21-137335120-3890803558-813276337-504 - Limited - Disabled)

==================== Sicherheits-Center ========================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

AV: Avira Antivirus (Enabled - Up to date) {88AE6B46-DC3C-455A-A21B-085F285A3546}
AV: Avira Antivirus (Disabled - Up to date) {B3F630BD-538D-1B4A-14FA-14B63235278F}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avira Antivirus (Enabled - Up to date) {0897D159-75B7-14C4-2E4A-2FC449B26D32}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installierte Programme ======================

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)

Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.013.20074 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 5.3.1.470 - Adobe Inc.)
Adobe Photoshop 2020 (HKLM-x32\...\PHSP_21_2) (Version: 21.2.0.225 - Adobe Inc.)
AirEQ Premium (HKLM\...\Eiosis AirEQ Premium_is1) (Version: 1.1.11.3 - Eiosis)
Apple Application Support (32-Bit) (HKLM-x32\...\{5C028510-A6A1-409A-A2BF-4DCB43B21EF9}) (Version: 7.6 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{5C7D4FCF-80C5-4520-9934-D50532AAC59C}) (Version: 7.6 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{2504ACC6-F5B6-4F18-B4A9-2AAF48D89D85}) (Version: 14.0.0.29 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Archetype Nolly (HKLM\...\{923A067F-9829-4DC4-AEF5-86E1DE61201B}) (Version: 2.0.0 - Neural DSP)
Asmedia ASM106x SATA Host Controller Driver (HKLM-x32\...\{DF6C3726-7E53-4772-9763-E9F147769F51}) (Version: 3.1.6.0000 - Asmedia Technology)
Asmedia USB Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.24.0 - Asmedia Technology)
Avira (HKLM-x32\...\{161e6084-b0f5-43e8-86d8-09eda5c0893d}) (Version: 1.2.153.30452 - Avira Operations GmbH & Co. KG) Hidden
Avira (HKLM-x32\...\{426D1710-5DFD-45E9-B11D-464792C5AD35}) (Version: 1.2.153.30452 - Avira Operations GmbH & Co. KG) Hidden
Avira Antivirus (HKLM-x32\...\Avira Antivirus) (Version: 15.0.2101.2070 - Avira Operations GmbH & Co. KG) Hidden
Avira Phantom VPN (HKLM-x32\...\Avira Phantom VPN) (Version: 2.37.1.24458 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\Avira Security_is1) (Version: 1.0.42.14101 - Avira Operations GmbH & Co. KG) Hidden
Avira Security (HKLM-x32\...\AviraSecurityUninstaller) (Version:  - Avira Operations GmbH & Co. KG;)
Avira Software Updater (HKLM-x32\...\{9F45C615-6D95-47B5-BB0C-D78F6D15DE21}) (Version: 2.0.6.42639 - Avira Operations GmbH & Co. KG) Hidden
Avira System Speedup (HKLM-x32\...\Avira System Speedup_is1) (Version: 6.9.0.11050 - Avira Operations GmbH & Co. KG) Hidden
Blackmagic RAW Common Components (HKLM\...\{B5ABFF44-9702-4CA1-A7D8-DBA659709C49}) (Version: 1.7 - Blackmagic Design)
Bome Virtual MIDI 2.1.0.44 (HKLM\...\BMIDI_Driver1.0.0.11_is1) (Version:  - Bome Software GmbH & Co. KG)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Cab-Lab 3.5.0 Plugin (x64) (HKLM\...\{44BB3A6F-C381-4E64-8B48-095CFCDA4A91}_is1) (Version:  - Fractal Audio)
CCleaner (HKLM\...\CCleaner) (Version: 5.76 - Piriform)
Darkglass Ultra (HKLM\...\{488AFDC5-1070-47D0-B77E-B354E4BEB5E4}) (Version: 3.0.0 - Neural DSP)
DaVinci Resolve (HKLM\...\{7BBE7103-A702-41A6-814B-406FD26184B6}) (Version: 16.2.3015 - Blackmagic Design)
DaVinci Resolve Keyboards (HKLM\...\{04F776FB-37A2-4116-84F2-6CF3D731999D}) (Version: 1.0.0.0 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{567706B7-1501-43BC-81AB-C7E306B40C73}) (Version: 1.3.2.0 - Blackmagic Design)
D-Link DWA-140 (HKLM-x32\...\{09828F4D-CE2E-403A-8708-A02E53495F3D}) (Version: 1.00.00 - D-Link Computer Inc)
Dropbox (HKLM-x32\...\Dropbox) (Version: 113.4.507 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.415.1 - Dropbox, Inc.) Hidden
Drum Leveler version 1.1.2 (HKLM\...\{94B8FDA3-877B-4EB8-A3E9-5D476329F15D}_is1) (Version: 1.1.2 - Sound Radix)
E2Deesser (HKLM\...\Eiosis E2Deesser_is1) (Version: 1.0.9.3 - Eiosis)
eLicenser Control (HKLM-x32\...\eLicenser Control) (Version: 6.9.2.1179 - Steinberg Media Technologies GmbH)
ElsterFormular (HKLM-x32\...\{0F35BEE6-976E-4324-9AA2-35B156664F92}) (Version: 21.2 - Thüringer Landesamt für Finanzen)
EZbass (HKLM\...\{10E45B55-3F6B-4ADB-9B70-A3D42D17BDCC}) (Version: 1.0.0 - Toontrack)
EZbass Software Update (HKLM\...\{40E37FB4-7F5A-497A-87D8-6FC9BA5524A7}) (Version: 1.0.6 - Toontrack)
EZkeys Grand Piano 64-bit (HKLM\...\{23CA8D91-FD3B-4EE6-BBDF-B5924E7E44EB}) (Version: 1.0.4 - Toontrack)
EZkeys Software Player 64-bit (HKLM\...\{C8262E88-3041-4C66-9857-8F41FCB29628}) (Version: 1.3.0 - Toontrack)
EZkeys Studio Grand 64-bit (HKLM\...\{40DF1E34-5039-4245-8C73-21E20E7D4027}) (Version: 1.0.0 - Toontrack)
FabFilter Pro-C 2.08 (64-bit) (HKLM-x32\...\FabFilter Pro-C 2.08 (64-bit)) (Version:  - )
FabFilter Pro-DS 1.12 (64-bit) (HKLM-x32\...\FabFilter Pro-DS 1.12 (64-bit)) (Version:  - )
FabFilter Pro-G 1.22 (64-bit) (HKLM-x32\...\FabFilter Pro-G 1.22 (64-bit)) (Version:  - )
FabFilter Pro-L 1.26 (64-bit) (HKLM-x32\...\FabFilter Pro-L 1.26 (64-bit)) (Version:  - )
FabFilter Pro-MB 1.19 (64-bit) (HKLM-x32\...\FabFilter Pro-MB 1.19 (64-bit)) (Version:  - )
FabFilter Pro-Q 2.16 (64-bit) (HKLM-x32\...\FabFilter Pro-Q 2.16 (64-bit)) (Version:  - )
FabFilter Saturn 1.20 (64-bit) (HKLM-x32\...\FabFilter Saturn 1.20 (64-bit)) (Version:  - )
FabFilter Timeless 2.30 (64-bit) (HKLM-x32\...\FabFilter Timeless 2.30 (64-bit)) (Version:  - )
FabFilter Total Bundle (64-bit) (HKLM-x32\...\FabFilter Total Bundle (64-bit)) (Version:  - )
FabFilter Twin 2.30 (64-bit) (HKLM-x32\...\FabFilter Twin 2.30 (64-bit)) (Version:  - )
FabFilter Volcano 2.30 (64-bit) (HKLM-x32\...\FabFilter Volcano 2.30 (64-bit)) (Version:  - )
FG-X (HKLM\...\Slate Digital FG-X_is1) (Version:  - Slate Digital)
Focusrite Control 3.6.0.1822 (HKLM\...\Focusrite Control_is1) (Version: 3.6.0.1822 - Focusrite Audio Engineering Ltd.)
Focusrite Usb 4.65.5.658 (HKLM\...\Focusrite Usb_is1) (Version: 4.65.5.658 - Focusrite Audio Engineering, Ltd.)
Fractal Audio Systems USB Audio Driver v2.23.0 (HKLM-x32\...\Fractal Audio Systems USB Audio Driver v2.23.0) (Version: 2.23.0 - Fractal Audio Systems)
Fractal Audio Systems USB Driver Package 2014.06.06 (HKLM\...\{E992CC59-71FD-4199-B04E-6274F7439EA0}_is1) (Version: 2014.06.06 - Fractal Audio Systems)
Gobbler (HKLM\...\{49C3123D-9497-434D-A988-A9B389B1E189}) (Version: 2.2.2.263 - Media Gobbler, Inc.) Hidden
Gobbler (HKLM-x32\...\{1a80729d-d49d-4d81-9991-b785c110295b}) (Version: 2.2.2.263 - Media Gobbler, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 87.0.4280.141 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
GoPro Quik (HKLM\...\{AA5F7FCE-311C-46D8-B93A-ABF4DDCAB832}) (Version: 0.1.945 - GoPro, Inc.) Hidden
GoPro Quik (HKLM-x32\...\{a23df978-67ca-4fe3-a740-a7b5ae7ec82f}) (Version: 2.7.0.945 - GoPro, Inc.)
Guitar Pro 6 (HKLM-x32\...\{14A487F2-1259-4E6C-AE3C-3C888DDBCB60}_is1) (Version:  - Arobas Music)
HOFA-Plugins Uninstall (HKLM-x32\...\HOFA-Plugins) (Version:  - HOFA-Plugins)
iCloud Outlook (HKLM\...\{F8D8BAB3-5CBA-48FF-A39B-6D13C7EE83F5}) (Version: 11.5.0.28 - Apple Inc.)
Infinity EQ (HKLM\...\Slate Digital Infinity EQ_is1) (Version: 1.0.4.1 - Slate Digital)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.14.4206 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{60c073df-e736-4210-9c3a-5fc2b651cef3}) (Version: 10.1.1.7 - Intel(R) Corporation) Hidden
iTunes (HKLM\...\{153A88D8-E890-4F36-A10F-2C87071F70AD}) (Version: 12.10.9.3 - Apple Inc.)
iZotope Relay (HKLM\...\Relay) (Version: 1.0.4 - iZotope, Inc.)
iZotope Tonal Balance Control 2 (HKLM\...\Tonal Balance Control 2) (Version: 2.2.0 - iZotope, Inc.)
JST Clip version 1.0.4 (HKLM\...\JST Clip_is1) (Version: 1.0.4 - )
Lustrous Plates version 1.0.0 (HKLM\...\{39AAAED0-CFDF-22E3-AEC7-FBBBA7CE0713}_is1) (Version: 1.0.0 - LiquidSonics)
ManyCam 7.2.0 (HKLM-x32\...\ManyCam) (Version: 7.2.0 - Visicom Media Inc.)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 88.0.705.50 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.139.71 - )
Microsoft OneDrive (HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\OneDriveSetup.exe) (Version: 20.201.1005.0009 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{0BCA8FBE-0C1C-4C65-98A3-5D34AAF41737}) (Version: 2.70.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.25.28508 (HKLM-x32\...\{6913e92a-b64e-41c9-a5e6-cef39207fe89}) (Version: 14.25.28508.3 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.23.27820 (HKLM-x32\...\{45231ab4-69fd-486a-859d-7a59fcd11013}) (Version: 14.23.27820.0 - Microsoft Corporation)
Native Instruments Absynth 5 (HKLM-x32\...\Native Instruments Absynth 5) (Version: 5.3.1.1628 - Native Instruments)
Native Instruments Battery 4 (HKLM-x32\...\Native Instruments Battery 4) (Version: 4.1.6.27 - Native Instruments)
Native Instruments Battery 4 Factory Library (HKLM-x32\...\Native Instruments Battery 4 Factory Library) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Blocks Base (HKLM-x32\...\Native Instruments Blocks Base) (Version: 1.0.1.1 - Native Instruments)
Native Instruments Blocks Primes (HKLM-x32\...\Native Instruments Blocks Primes) (Version: 1.0.1.1 - Native Instruments)
Native Instruments Choral (HKLM-x32\...\Native Instruments Choral) (Version: 1.1.0.47 - Native Instruments)
Native Instruments Chromatic Fire (HKLM-x32\...\Native Instruments Chromatic Fire) (Version: 1.0.1.1 - Native Instruments)
Native Instruments Controller Editor (HKLM-x32\...\Native Instruments Controller Editor) (Version: 2.6.0.513 - Native Instruments)
Native Instruments Creator Tools (HKLM-x32\...\Native Instruments Creator Tools) (Version: 1.2.0.0 - Native Instruments)
Native Instruments Deep Matter (HKLM-x32\...\Native Instruments Deep Matter) (Version: 2.0.1.1 - Native Instruments)
Native Instruments Driver (HKLM-x32\...\Native Instruments Driver) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Elastic Thump (HKLM-x32\...\Native Instruments Elastic Thump) (Version: 2.0.1.4 - Native Instruments)
Native Instruments Flair (HKLM-x32\...\Native Instruments Flair) (Version: 1.1.0.47 - Native Instruments)
Native Instruments FM8 (HKLM-x32\...\Native Instruments FM8) (Version: 1.4.1.1599 - Native Instruments)
Native Instruments Form (HKLM-x32\...\Native Instruments Form) (Version: 1.1.2.1 - Native Instruments)
Native Instruments Guitar Rig 5 (HKLM-x32\...\Native Instruments Guitar Rig 5) (Version: 5.2.2.8 - Native Instruments)
Native Instruments Halcyon Sky (HKLM-x32\...\Native Instruments Halcyon Sky) (Version: 2.0.2.1 - Native Instruments)
Native Instruments Komplete Kontrol (HKLM-x32\...\Native Instruments Komplete Kontrol) (Version: 2.4.0.195 - Native Instruments)
Native Instruments Komplete Kontrol Driver (HKLM-x32\...\Native Instruments Komplete Kontrol Driver) (Version:  - Native Instruments)
Native Instruments Komplete Kontrol MK2 Driver (HKLM-x32\...\Native Instruments Komplete Kontrol MK2 Driver) (Version:  - Native Instruments)
Native Instruments Kontakt (HKLM-x32\...\Native Instruments Kontakt) (Version: 6.4.2.93 - Native Instruments)
Native Instruments Kontour (HKLM-x32\...\Native Instruments Kontour) (Version: 1.0.0.6 - Native Instruments)
Native Instruments London Grit (HKLM-x32\...\Native Instruments London Grit) (Version: 2.0.1.1 - Native Instruments)
Native Instruments Lucid Mission (HKLM-x32\...\Native Instruments Lucid Mission) (Version: 2.0.1.1 - Native Instruments)
Native Instruments Maschine 2 (HKLM-x32\...\Native Instruments Maschine 2) (Version: 2.11.1.848 - Native Instruments)
Native Instruments Maschine 2 Factory Selection (HKLM-x32\...\Native Instruments Maschine 2 Factory Selection) (Version: 1.0.0.14 - Native Instruments)
Native Instruments Maschine Controller MK2 Driver (HKLM-x32\...\Native Instruments Maschine Controller MK2 Driver) (Version:  - Native Instruments)
Native Instruments Maschine Jam Driver (HKLM-x32\...\Native Instruments Maschine Jam Driver) (Version:  - Native Instruments)
Native Instruments Maschine Mikro Driver (HKLM-x32\...\Native Instruments Maschine Mikro Driver) (Version:  - Native Instruments)
Native Instruments Maschine Mikro MK2 Driver (HKLM-x32\...\Native Instruments Maschine Mikro MK2 Driver) (Version:  - Native Instruments)
Native Instruments Maschine MK3 Driver (HKLM-x32\...\Native Instruments Maschine MK3 Driver) (Version:  - Native Instruments)
Native Instruments Maschine Studio Driver (HKLM-x32\...\Native Instruments Maschine Studio Driver) (Version:  - Native Instruments)
Native Instruments Massive (HKLM-x32\...\Native Instruments Massive) (Version: 1.5.5.22 - Native Instruments)
Native Instruments Massive X (HKLM-x32\...\Native Instruments Massive X) (Version: 1.3.1.213 - Native Instruments)
Native Instruments Massive X Factory Library (HKLM-x32\...\Native Instruments Massive X Factory Library) (Version: 1.3.0.1 - Native Instruments)
Native Instruments Middle East (HKLM-x32\...\Native Instruments Middle East) (Version: 1.1.0.2 - Native Instruments)
Native Instruments Molten Veil (HKLM-x32\...\Native Instruments Molten Veil) (Version: 2.0.2.1 - Native Instruments)
Native Instruments Monark (HKLM-x32\...\Native Instruments Monark) (Version: 1.3.1.4 - Native Instruments)
Native Instruments Native Access (HKLM-x32\...\Native Instruments Native Access) (Version: 1.12.2.132 - Native Instruments)
Native Instruments Native Browser Preview Library (HKLM-x32\...\Native Instruments Native Browser Preview Library) (Version: 1.1.0.28 - Native Instruments)
Native Instruments Neon Drive (HKLM-x32\...\Native Instruments Neon Drive) (Version: 2.0.1.4 - Native Instruments)
Native Instruments NIHostIntegrationAgent (HKLM-x32\...\Native Instruments NIHostIntegrationAgent) (Version: 1.10.1.152 - Native Instruments)
Native Instruments NTKDaemon (HKLM-x32\...\Native Instruments NTKDaemon) (Version: 1.0.2.1 - Native Instruments)
Native Instruments Phasis (HKLM-x32\...\Native Instruments Phasis) (Version: 1.1.0.47 - Native Instruments)
Native Instruments Polyplex (HKLM-x32\...\Native Instruments Polyplex) (Version: 1.1.0.3 - Native Instruments)
Native Instruments Queensbridge Story (HKLM-x32\...\Native Instruments Queensbridge Story) (Version: 2.0.1.1 - Native Instruments)
Native Instruments Rammfire (HKLM-x32\...\Native Instruments Rammfire) (Version: 2.0.0.5 - Native Instruments)
Native Instruments Reaktor 6 (HKLM-x32\...\Native Instruments Reaktor 6) (Version: 6.4.0.2 - Native Instruments)
Native Instruments Reaktor Blocks (HKLM-x32\...\Native Instruments Reaktor Blocks) (Version: 1.3.0.5 - Native Instruments)
Native Instruments Reaktor Blocks Wired (HKLM-x32\...\Native Instruments Reaktor Blocks Wired) (Version: 1.0.2.1 - Native Instruments)
Native Instruments Reaktor Factory Library (HKLM-x32\...\Native Instruments Reaktor Factory Library) (Version: 1.1.0.3 - Native Instruments)
Native Instruments Reaktor Factory Selection R2 (HKLM-x32\...\Native Instruments Reaktor Factory Selection R2) (Version: 1.0.1.7 - Native Instruments)
Native Instruments Reaktor Prism (HKLM-x32\...\Native Instruments Reaktor Prism) (Version: 1.6.0.6 - Native Instruments)
Native Instruments Reaktor Spark R2 (HKLM-x32\...\Native Instruments Reaktor Spark R2) (Version: 1.4.0.4 - Native Instruments)
Native Instruments Reflektor (HKLM-x32\...\Native Instruments Reflektor) (Version: 2.0.0.8 - Native Instruments)
Native Instruments Replika (HKLM-x32\...\Native Instruments Replika) (Version: 1.4.0.47 - Native Instruments)
Native Instruments Rounds (HKLM-x32\...\Native Instruments Rounds) (Version: 1.2.0.3 - Native Instruments)
Native Instruments Solid Bus Comp FX (HKLM-x32\...\Native Instruments Solid Bus Comp FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Solid Dynamics FX (HKLM-x32\...\Native Instruments Solid Dynamics FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Solid EQ FX (HKLM-x32\...\Native Instruments Solid EQ FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments Supercharger (HKLM-x32\...\Native Instruments Supercharger) (Version: 1.3.1.45 - Native Instruments)
Native Instruments The Finger R2 (HKLM-x32\...\Native Instruments The Finger R2) (Version: 1.3.0.3 - Native Instruments)
Native Instruments Traktors 12 (HKLM-x32\...\Native Instruments Traktors 12) (Version: 2.0.0.8 - Native Instruments)
Native Instruments Transient Master FX (HKLM-x32\...\Native Instruments Transient Master FX) (Version: 1.3.1.45 - Native Instruments)
Native Instruments TRK-01 (HKLM-x32\...\Native Instruments TRK-01) (Version: 1.1.1.1 - Native Instruments)
Native Instruments TRK-01 Bass (HKLM-x32\...\Native Instruments TRK-01 Bass) (Version: 1.0.0.10 - Native Instruments)
Native Instruments TRK-01 Kick (HKLM-x32\...\Native Instruments TRK-01 Kick) (Version: 1.0.1.8 - Native Instruments)
Native Instruments Velvet Lounge (HKLM-x32\...\Native Instruments Velvet Lounge) (Version: 2.0.1.2 - Native Instruments)
OpenAL (HKLM-x32\...\OpenAL) (Version:  - )
OpenOffice 4.1.6 (HKLM-x32\...\{3651624F-019F-4B39-8AE4-A2423CE1986F}) (Version: 4.16.9790 - Apache Software Foundation)
Ozone 9 Advanced (HKLM\...\Ozone 9) (Version: 9.1.0 - iZotope, Inc.)
PACE License Support Win64 (HKLM\...\{52F54766-2321-4841-A523-CA0C8261E26D}) (Version: 5.0.3.2569 - PACE Anti-Piracy, Inc.) Hidden
PACE License Support Win64 (HKLM-x32\...\InstallShield_{52F54766-2321-4841-A523-CA0C8261E26D}) (Version: 5.0.3.2569 - PACE Anti-Piracy, Inc.)
PreSonus Universal Control 1.7.2 (HKLM\...\PreSonus Universal Control_is1) (Version: 1.7.2 - PreSonus Audio Electronics)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Reference 4 VST plugin (64-bit) (HKLM\...\{5F524C89-B8AE-49DB-9828-D5233294CCDD}) (Version: 4.4.6.20 - Sonarworks)
Repeater (64bit) (HKLM\...\{9E73E488-A73C-4213-8493-FC24668564DE}) (Version: 1.1.6.0 - D16 Group Audio Software)
Skype Version 8.58 (HKLM-x32\...\Skype_is1) (Version: 8.58 - Skype Technologies S.A.)
Slate Digital Fresh Air (HKLM\...\{af2fe7e8-08f8-4c81-b875-ec4c7a97a204}Slate Digi~4955043A_is1) (Version: 1.0.3.0 - Slate Digital)
Sonarworks Reference 4 Systemwide (HKLM\...\{8760905F-8968-46EF-ADF3-7CFF91CE9952}) (Version: 4.4.6.20 - Sonarworks)
soothe2 audio processor version 1.1.1 (HKLM-x32\...\{8E8F4A61-FA08-4CAB-8F5A-AF25CEE4F3FE}_is1) (Version: 1.1.1 - oeksound)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Steinberg Content Updater (HKLM-x32\...\{23BAFE62-0AF0-4D71-98C2-47286139DC45}) (Version: 2.0.0 - Steinberg Media Technologies GmbH)
Steinberg Cubase 8.5 64bit (HKLM\...\{81643F2F-C292-46B7-AFB4-8ED2F1FF8AAA}) (Version: 8.5.30 - Steinberg Media Technologies GmbH)
Steinberg Drum Loop Expansion 01 (HKLM-x32\...\{490BF87E-1F75-4453-BF55-9F540543A3CA}) (Version: 2.0.0.0 - Steinberg Media Technologies GmbH)
Steinberg EDM Toolbox MIDI Loops (HKLM-x32\...\{8C9B2EA8-9A30-4347-95E9-10E919C4F32E}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Allen Morgan Signature Drums (HKLM-x32\...\{611A7035-0172-4B9B-8BB6-5046F6867D8A}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Content (HKLM-x32\...\{BD86F1AC-B594-46E4-85DC-1258AC9E2232}) (Version: 1.0.0.003 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent ONE Vintage Beatboxes (HKLM-x32\...\{DBF4BC99-53F1-4C97-84C3-7557D103E182}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE 64bit (HKLM\...\{A5AB0D21-21BD-4DB8-F097-02E8FC8C486A}) (Version: 4.2.30 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE Acoustic Agent (HKLM-x32\...\{F34EA13C-F078-4003-AE21-43EAB2680EC5}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE Content (HKLM-x32\...\{AFC9D1CE-F050-437C-35A5-62DEDB262DC7}) (Version: 1.2.20 - Steinberg Media Technologies GmbH)
Steinberg Groove Agent SE Rock Pop Toolbox Drums (HKLM-x32\...\{E9BFA009-DD72-4F2A-84CB-6DF46472B563}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE 64bit (HKLM\...\{B99C316B-C135-43B5-8E77-2BC5E241F964}) (Version: 2.0.2 - Steinberg Media Technologies GmbH)
Steinberg HALion Sonic SE Content (HKLM-x32\...\{A5051ABF-A497-4C3C-85EA-F7A4D5C19B82}) (Version: 2.0.1 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content (HKLM-x32\...\{4D454CF8-12FD-464D-B57B-B46FE27B78BB}) (Version: 2.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg LoopMash Content 2 (HKLM-x32\...\{88C337F0-4CF2-4098-BDC0-D94859ECA2B4}) (Version: 1.0.0.000 - Steinberg Media Technologies GmbH)
Steinberg Midi Loop Library (HKLM-x32\...\{89DE2651-6DD9-4C15-AC94-8348362D456C}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg Padshop 64bit (HKLM\...\{75F15019-C0C2-4047-AA45-97B4BD313719}) (Version: 1.1.0 - Steinberg Media Technologies GmbH)
Steinberg Retrologue 64bit (HKLM\...\{4D65ECE6-131D-4B5F-8470-2750D3161619}) (Version: 2.0.10 - Steinberg Media Technologies GmbH)
Steinberg REVerence Content 01 (HKLM-x32\...\{532B917B-8235-4FA5-BE36-643A8BB053A5}) (Version: 2.0.1.000 - Steinberg Media Technologies GmbH)
Steinberg Upload Manager (HKLM-x32\...\{88BBBD8F-4C19-4809-B84B-7A8F8238B48D}) (Version: 1.0.2 - Steinberg Media Technologies GmbH)
Steinberg VST Amp Rack Content 01 (HKLM-x32\...\{8CBA7E47-48DA-47DC-8E98-6984BA830295}) (Version: 1.0.1 - Steinberg Media Technologies GmbH)
Steinberg VST Bass Amp Content (HKLM-x32\...\{A2FC1750-B90F-4948-9D6E-DDDA155C6EC8}) (Version: 1.0.0 - Steinberg Media Technologies GmbH)
Steinberg VST Transit 64bit (HKLM\...\{FF1A114C-0F88-11E5-A6C0-1697F925EC7B}) (Version: 1.0.13 - Steinberg Media Technologies GmbH)
Superior Drummer 3 (HKLM\...\{54399DF4-5143-49DE-93BA-59F88660BE2B}) (Version: 3.2.2 - Toontrack)
Superior Drummer 64-bit (HKLM\...\{0E54CF79-AE40-409E-9253-9563418C730C}) (Version: 2.4.4 - Toontrack)
TH-U Slate (HKLM\...\{DF6C5D5F-EF02-41e4-85F0-A19397A664C3}_is1) (Version: 1.0.11 - Overloud)
Toontrack Audio Sender (HKLM\...\{6915D5CF-4040-436A-940E-37D27C5512C5}) (Version: 1.0.4 - Toontrack)
Toontrack Product Manager (HKLM-x32\...\{5BAE101A-4AF5-4FBA-99E6-1CE2825F8993}) (Version: 1.0.7 - Toontrack)
Verbiage version 3.0.3 (HKLM\...\Verbiage_is1) (Version: 3.0.3 - Stillwell Audio LLC)
VerbSuite Classics (HKLM\...\Slate Digital VerbSuite Classics_is1) (Version: 1.0.11.1 - Slate Digital)
VerbSuite Classics FG-224 Expansion (HKLM\...\Slate Digital VerbSuite Classics FG-224 Expansion_is1) (Version: 1.0.0.6 - Slate Digital)
VerbSuite Classics FG-3000 & FG-3500 Expansion (HKLM\...\Slate Digital VerbSuite Classics FG-3000 & FG-35~ACE4A30F_is1) (Version: 1.0.0.4 - Slate Digital)
Virtual Buss Compressors (HKLM\...\Slate Digital Virtual Buss Compressors_is1) (Version: 1.2.14.5 - Slate Digital)
VMR Complete Bundle (HKLM\...\Slate Digital VMR Complete Bundle_is1) (Version: 2.5.2.1 - Slate Digital)
Waves Central (HKLM\...\{ab507e17-892b-5203-838d-d58d8d09c50f}) (Version: 11.0.50 - Waves Audio Ltd)
Windows 10-Update-Assistent (HKLM-x32\...\{D5C69738-B486-402E-85AC-2456D98A64E4}) (Version: 1.4.9200.22925 - Microsoft Corporation)
Windows-Treiberpaket - Focusrite USB 2.0 Audio Driver (03/17/2014 2.5.128.1) (HKLM\...\D86E353566ECB4A7ADA159C02FE46D0BACC4FA6B) (Version: 03/17/2014 2.5.128.1 - Focusrite)
Windows-Treiberpaket - Fractal Audio Systems (axefx2load) USB  (05/15/2011 1.0.0.9) (HKLM\...\6AEB8A42A154DE456DE5E467C01A582911CB5C6A) (Version: 05/15/2011 1.0.0.9 - Fractal Audio Systems)
WinRAR 5.71 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
Zoom (HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)

Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc [2020-07-10] (Adobe Systems Incorporated)
iCloud -> C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa [2020-12-16] (Apple Inc.) [Startup Task]
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-06-20] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-12-31] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-12-31] (Microsoft Corporation) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.9.1102.0_x64__8wekyb3d8bbwe [2021-01-14] (Microsoft Studios) [MS Ad]
My MP4 to MP3 Converter -> C:\Program Files\WindowsApps\32573MMSoftware.MyMP4toMP3Converter_1.5.1.0_x64__xky5rpyx4kdm4 [2020-11-16] (M&amp;MSoftware) [MS Ad]

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-55C862CCA6D1} -> [Creative Cloud Files] => C:\Users\*****\Creative Cloud Files [2020-06-20 22:13]
CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{D34481A6-8E8A-4D01-9CCA-0ECF25A7F59F} -> [iCloud Drive] => C:\Users\*****\iCloudDrive [2020-12-11 21:44]
CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\*****\Dropbox [2019-11-11 10:12]
CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
CustomCLSID: HKU\S-1-5-21-137335120-3890803558-813276337-1000_Classes\CLSID\{EDDAACE3-1665-4373-B216-F3282C5437E3} -> [iCloud-Fotos] => C:\Users\*****\Pictures\iCloud Photos\Photos [2020-12-11 21:44]
ShellIconOverlayIdentifiers: [   AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> )
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [SystemSpeedupFilesMenu] -> {14cb2bd0-2375-3d10-9b5d-5e18865c8959} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-12-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers4: [SystemSpeedupFoldersMenu] -> {700866bb-c8e9-3e71-b359-abb28baed0e8} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-12-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2016-11-01] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [SystemSpeedupDesktopMenu] -> {0cab5786-30e8-3185-9b3b-ccefbf1b8afe} => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.UI.ShellExtension.DLL [2020-12-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2020-12-09] (Adobe Inc. -> )
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2016-06-06] (Piriform Ltd -> Piriform Ltd)
ContextMenuHandlers6: [Shell Extension for Malware scanning] -> {45AC2688-0253-4ED8-97DE-B5370FA7D48A} => C:\Program Files (x86)\Avira\Antivirus\shlext64.dll [2020-10-01] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

==================== Codecs (Nicht auf der Ausnahmeliste) ====================

==================== Verknüpfungen & WMI ========================

(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)

WMI:subscription\__FilterToConsumerBinding->CommandLineEventConsumer.Name=\"BVTConsumer\"",Filter="__EventFilter.Name=\"BVTFilter\"::
WMI:subscription\__EventFilter->BVTFilter::[Query => SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99]
WMI:subscription\CommandLineEventConsumer->BVTConsumer::[CommandLineTemplate => cscript KernCap.vbs][WorkingDirectory => C:\\tools\\kernrate]

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============

2019-10-26 12:45 - 2014-05-16 02:35 - 000219136 _____ () [Datei ist nicht signiert] c:\program files\fractal audio systems\usb audio driver\fasusbaudioasio_x64.dll
2020-10-28 13:33 - 2020-10-28 13:33 - 097685504 _____ () [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\libcef.dll
2020-10-28 13:33 - 2020-10-28 13:33 - 000093696 _____ () [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\libegl.dll
2020-10-28 13:33 - 2020-10-28 13:33 - 004308992 _____ () [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\libglesv2.dll
2019-12-26 15:45 - 2021-01-26 10:57 - 000040592 _____ (ASUSTeK Computer Inc. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\ASUS\AXSP\1.02.00\PEbiosinterface32.dll
2020-01-03 16:07 - 2020-06-02 15:35 - 000168448 _____ (Focusrite Audio Engineering Ltd.) [Datei ist nicht signiert] c:\program files\focusriteusb\focusriteusbasio64.dll
2017-06-09 19:54 - 2017-06-09 19:54 - 001167872 _____ (Media Gobbler, Inc) [Datei ist nicht signiert] C:\Program Files (x86)\Media Gobbler, Inc\Downstream Proxy\downstreamproxy.dll
2017-06-09 19:53 - 2017-06-09 19:53 - 004856320 _____ (Media Gobbler, Inc) [Datei ist nicht signiert] C:\Program Files (x86)\Media Gobbler, Inc\User Agent\gobblersdk.dll
2015-11-02 12:16 - 2015-11-02 12:16 - 000173056 _____ (Steinberg Media Technologies) [Datei ist nicht signiert] c:\program files\steinberg\asio\asioglld.dll
2020-10-28 13:33 - 2020-10-28 13:33 - 000548864 _____ (The Chromium Authors) [Datei ist nicht signiert] C:\Program Files\Sonarworks\Reference 4\Systemwide\chrome_elf.dll

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================

==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========

HKU\S-1-5-21-137335120-3890803558-813276337-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-de/?ocid=iehp

==================== Hosts Inhalt: =========================

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)

2009-07-14 03:34 - 2009-06-10 22:00 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts

==================== Andere Bereiche ===========================

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)

HKU\S-1-5-21-137335120-3890803558-813276337-1000\Control Panel\Desktop\\Wallpaper -> f:\eigene bilder\wallpaper\lake_sunrise-wallpaper-1920x1080.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
 ist aktiviert.

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)

MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
HKLM\...\StartupApproved\StartupFolder: => "FASUSBAudio Control Panel Autostart.lnk"
HKLM\...\StartupApproved\StartupFolder: => "NIHardwareAccessibilityHelper.exe.lnk"
HKLM\...\StartupApproved\StartupFolder: => "NTKDaemon.lnk"
HKLM\...\StartupApproved\Run: => "AdobeGCInvoker-1.0"
HKLM\...\StartupApproved\Run: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AVMWlanClient"
HKLM\...\StartupApproved\Run32: => "AdobeGCInvoker-1.0"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "Reference 4 Systemwide"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "ManyCam"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "CCXProcess"
HKU\S-1-5-21-137335120-3890803558-813276337-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

FirewallRules: [{8E0E41DF-6ACE-45AC-ABB2-3AA800604913}] => (Block) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{B785C14D-3C55-4B8A-B4E0-F9DC58BE16E8}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [{FA7CEB03-2C74-4D82-9F0F-FC591E5F276A}] => (Allow) C:\Program Files (x86)\Avira\SoftwareUpdater\avirasoftwareupdatertoastnotificationsbridge.exe (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
FirewallRules: [TCP Query User{F610D539-1B7E-432E-A653-CA6F64101AF9}C:\program files (x86)\dropbox\client\dropbox.exe] => (Allow) C:\program files (x86)\dropbox\client\dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
FirewallRules: [UDP Query User{7CC39F48-F597-4E1F-9143-631E3CC57E45}C:\program files (x86)\dropbox\client\dropbox.exe] => (Allow) C:\program files (x86)\dropbox\client\dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

==================== Wiederherstellungspunkte =========================

09-01-2021 16:26:49 Geplanter Prüfpunkt
13-01-2021 13:07:02 Windows Update
22-01-2021 21:01:23 Geplanter Prüfpunkt

==================== Fehlerhafte Geräte im Gerätemanager ============

Name: High Definition Audio-Controller
Description: High Definition Audio-Controller
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: HDAudBus
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: ManyCam Virtual Microphone
Description: ManyCam Virtual Microphone
Class Guid: {4d36e96c-e325-11ce-bfc1-08002be10318}
Manufacturer: Visicom Media Inc.
Service: mcaudrv_simple
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Fehlereinträge in der Ereignisanzeige: ========================

Applikationsfehler:
==================
Error: (01/26/2021 11:06:44 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (3472,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/26/2021 10:53:33 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5868,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/25/2021 11:24:44 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (14084,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/25/2021 11:05:23 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (8412,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/25/2021 10:35:29 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9240,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/25/2021 10:22:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (9492,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/25/2021 09:15:52 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10604,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.

Error: (01/25/2021 08:48:20 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (2524,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.


Systemfehler:
=============
Error: (01/26/2021 11:13:19 AM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/26/2021 11:12:18 AM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/26/2021 11:10:02 AM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/26/2021 11:09:00 AM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/26/2021 11:08:44 AM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/26/2021 11:07:44 AM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/26/2021 11:07:28 AM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.

Error: (01/26/2021 11:06:58 AM) (Source: Schannel) (EventID: 4113) (User: NT-AUTORITÄT)
Description: Das vom Remoteserver empfangene Zertifikat ist abgelaufen oder noch nicht gültig. Fehler bei der TLS-Verbindungsanforderung. Die angefügten Daten enthalten das Serverzertifikat.


CodeIntegrity:
===================================

Date: 2020-10-01 12:47:14.364
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-09-22 11:37:46.016
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-09-01 09:54:11.878
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-16 21:42:59.380
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-14 21:06:45.736
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-08-05 16:04:55.364
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-07-15 10:14:38.873
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2020-05-23 21:50:52.128
Description: 
Code Integrity determined that a process (\Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\avirasecuritycenteragent.exe) attempted to load \Device\HarddiskVolume6\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Speicherinformationen =========================== 

BIOS: American Megatrends Inc. 2012 09/30/2014
Hauptplatine: ASUSTeK COMPUTER INC. Z97-PRO
Prozessor: Intel(R) Core(TM) i7-4790K CPU @ 4.00GHz
Prozentuale Nutzung des RAM: 17%
Installierter physikalischer RAM: 32450.31 MB
Verfügbarer physikalischer RAM: 26856.83 MB
Summe virtueller Speicher: 65218.31 MB
Verfügbarer virtueller Speicher: 57985.52 MB

==================== Laufwerke ================================

Drive c: () (Fixed) (Total:222.9 GB) (Free:11.82 GB) NTFS
Drive e: (Storage) (Fixed) (Total:931.51 GB) (Free:428.86 GB) NTFS
Drive f: (Media) (Fixed) (Total:1862.89 GB) (Free:1060.55 GB) NTFS
Drive g: (Samples) (Fixed) (Total:465.76 GB) (Free:8.85 GB) NTFS

\\?\Volume{af2c7491-8e79-11e9-a2b5-806e6f6e6963}\ (System Reserved) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS
\\?\Volume{0fabf2a0-0000-0000-0000-40c037000000}\ () (Fixed) (Total:0.56 GB) (Free:0.08 GB) NTFS

==================== MBR & Partitionstabelle ====================

==========================================================
Disk: 0 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)

Partition: GPT.

==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: 2AF0E084)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 223.6 GB) (Disk ID: 0FABF2A0)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=222.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=578 MB) - (Type=27)

==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: FB81F6B0)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== Ende von Addition.txt =======================
         

Alt 26.01.2021, 11:39   #9
M-K-D-B
/// TB-Ausbilder
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung



Bis auf etwas PUP (Potentially Unwanted Program) ist nichts auf deinem System zu sehen, das auf Malware hindeutet.
Deine Windows 10 Version ist veraltet, die solltest du noch updaten. Mehr dazu weiter unten.







Schritt 1
  • Speichere deine Arbeiten und schließe alle offenen Programme, damit keine Daten verloren gehen.
  • Kopiere den gesamten Inhalt der folgenden Code-Box:
    Code:
    ATTFilter
    Start::
    DeleteValue: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival|DefaultIcon
    DeleteValue: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival|Provider
    DeleteValue: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival|DefaultIcon
    DeleteValue: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival|Provider
    DeleteQuarantine:
    Unlock: C:\FRST
    Reboot:
    End::
             
  • Starte nun FRST und klicke direkt den Reparieren Button.
    Wichtig: Du brauchst den Inhalt der Code-Box nirgends einfügen, da sich FRST den Code aus der Zwischenablage holt!
  • Das Tool führt die gewünschten Schritte aus und erstellt eine fixlog.txt im selben Verzeichnis, in dem sich FRST befindet.
  • Gegebenenfalls muss dein Rechner neu gestartet werden.
  • Poste mir den Inhalt der fixlog.txt mit deiner nächsten Antwort.





Schritt 2
Auf deinem Computer fehlt das aktuelle Funktionsupdate Version 20H2.
Zitat:
Platform: Windows 10 Pro Version 1909
  • Folge dem Pfad Start > Einstellungen > Update und Sicherheit > Windows Update und klicke auf Nach Updates suchen.
  • Wähle das Funktionsupdates aus, downloade und installiere es.
  • Alternativ kannst du auch mit dem Update Assistenten deine Windows-Version auf den neuesten Stand bringen.
    Klicke dazu auf Jetzt aktualisieren, lade dir den Update-Assistenten herunter und führe ihn aus.








Dann wären wir durch!
Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber.


Abschließend bitte noch einen Cleanup mit unserem TBCleanUpTool durchführen und unbedingt die Sicherheitsmaßnahmen lesen und umsetzen - beides ist in folgendem Lesestoff verlinkt:




Wenn Du möchtest, kannst Du hier sagen, ob du mit mir und meiner Hilfe zufrieden warst...
Vielleicht möchtest du das Forum mit einer kleinen Spende unterstützen.


Hinweis:
Bitte gib mir eine kurze Rückmeldung, sobald du die oben verlinkten Informationen gelesen hast, alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann.

Alt 27.01.2021, 13:11   #10
CC200
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung



Das System ist auf dem neuesten Stand und hier der Fixlog:

Code:
ATTFilter
Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 24-01-2021 01
durchgeführt von ***** (27-01-2021 12:54:30) Run:2
Gestartet von C:\Users\*****\Downloads
Geladene Profile: *****
Start-Modus: Normal
==============================================

fixlist Inhalt:
*****************
DeleteValue: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival|DefaultIcon
DeleteValue: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival|Provider
DeleteValue: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival|DefaultIcon
DeleteValue: HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival|Provider
DeleteQuarantine:
Unlock: C:\FRST
Reboot:

*****************

"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival\\DefaultIcon" => erfolgreich entfernt
"HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival\\Provider" => erfolgreich entfernt
"HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival\\DefaultIcon" => nicht gefunden
"HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Explorer\AutoplayHandlers\Handlers\VLCPlayBlurayOnArrival\\Provider" => nicht gefunden
"C:\FRST\Quarantine" => erfolgreich entfernt
"C:\FRST" => wurde entsperrt


Das System musste neu gestartet werden.

==== Ende von Fixlog 12:54:30 ====
         

Alt 27.01.2021, 14:28   #11
M-K-D-B
/// TB-Ausbilder
 
Internetanbieter-Popup mit Hinweis auf Überwachung - Standard

Internetanbieter-Popup mit Hinweis auf Überwachung



Wir sind froh, dass wir helfen konnten

Dieses Thema scheint erledigt und wird aus unseren Abos gelöscht. Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema.

Jeder andere bitte hier klicken und ein eigenes Thema erstellen.

Thema geschlossen

Themen zu Internetanbieter-Popup mit Hinweis auf Überwachung
bundespolizei, community, erhalte, ernst, gen, gestern, hilfe, hilfe!, hinweis, inter, interne, meldung, popup, verbindungen, werte




Ähnliche Themen: Internetanbieter-Popup mit Hinweis auf Überwachung


  1. Murofetweekly Virus, E-Mail Benachrichtigung durch Internetanbieter
    Log-Analyse und Auswertung - 06.11.2020 (16)
  2. Internetanbieter sperrt Leitung wegen Gootkit
    Log-Analyse und Auswertung - 28.10.2020 (9)
  3. Computerübernahme: Überwachung
    Log-Analyse und Auswertung - 14.09.2019 (4)
  4. Gootkit / Internetanbieter droht warnt mit Konsequenzen
    Diskussionsforum - 02.12.2016 (15)
  5. Überwachung unterbinden
    Überwachung, Datenschutz und Spam - 17.04.2016 (6)
  6. Windows 7: Internetanbieter meldet Trojaner wStLibG64
    Log-Analyse und Auswertung - 08.05.2015 (12)
  7. TR-069-Fernwartungslücke bei DSL-Routern: Deutsche Internetanbieter bezeichnen ihre Netze als sicher
    Nachrichten - 22.08.2014 (0)
  8. E-mail von Internetanbieter, dass mein PC mit Trojaner ZeuS infiziert ist!
    Plagegeister aller Art und deren Bekämpfung - 07.03.2012 (4)
  9. Überwachung am Arbeitsplatz?
    Überwachung, Datenschutz und Spam - 02.07.2011 (13)
  10. Popup-Werbung trotz Popup-Blocker
    Plagegeister aller Art und deren Bekämpfung - 04.01.2009 (4)
  11. Popup-Werbung trotz Popup-Blocker
    Mülltonne - 03.01.2009 (0)
  12. Internetanbieter sperrt meinen Zugang....
    Log-Analyse und Auswertung - 16.08.2006 (10)
  13. M$-Überwachung
    Überwachung, Datenschutz und Spam - 28.06.2006 (8)
  14. PC Überwachung bzw. Sperrung
    Überwachung, Datenschutz und Spam - 05.03.2006 (9)
  15. Überwachung Sub7
    Mülltonne - 29.01.2006 (2)
  16. ZA Antivir Überwachung
    Antiviren-, Firewall- und andere Schutzprogramme - 27.10.2004 (4)

Zum Thema Internetanbieter-Popup mit Hinweis auf Überwachung - Werte Community, Ich habe gestern ein Popup meines Internetanbieters (?) erhalten. Die Meldung in etwa: Ihre Verbindungen werden von der Bundespolizei überwacht. In der Kopfzeile war der Name meines Internetanbieters, - Internetanbieter-Popup mit Hinweis auf Überwachung...
Archiv
Du betrachtest: Internetanbieter-Popup mit Hinweis auf Überwachung auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.