| |
| |||||||
Alles rund um Windows: Windows 10 Defender lässt sich nich mehr aktivierenWindows 7 Hilfe zu allen Windows-Betriebssystemen: Windows XP, Windows Vista, Windows 7, Windows 8(.1) und Windows 10 / Windows 11- als auch zu sämtlicher Windows-Software. Alles zu Windows 10 ist auch gerne willkommen. Bitte benenne etwaige Fehler oder Bluescreens unter Windows mit dem Wortlaut der Fehlermeldung und Fehlercode. Erste Schritte für Hilfe unter Windows. |
 |
16.03.2021, 10:41
| #16 |
| /// Winkelfunktion /// TB-Süch-Tiger™   |  Windows 10 Defender lässt sich nich mehr aktivieren [gelöst] Scripting/Repair mit FRST64 WARNUNG AN ALLE MITLESER !!! Dieses FRST-Script ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System angewendet werden!
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
16.03.2021, 11:35
| #17 |
 | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst]Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-03-2021
durchgeführt von Andreas Ebner (16-03-2021 11:30:26) Run:1
Gestartet von I:\
Geladene Profile: Andreas Ebner & Administrator
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
CloseProcesses:
Folder: C:\Users\Andreas Ebner\AppData\Roaming\sysvar
AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
Task: {143C69E5-5FD5-4558-A6BA-99056575EC72} - \Microsoft\Windows\Windows Error Reporting\SysInfo -> Keine Datei <==== ACHTUNG
Task: {4B980566-1FA1-4317-9B56-39FA8CA885AD} - \PC Cleaner repairing -> Keine Datei <==== ACHTUNG
S2 SecurityServiceMonitor; C:\Program Files (x86)\TotalAV\SecurityService.exe --monitor [X] <==== ACHTUNG
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
FCheck: C:\WINDOWS\SysWOW64\version_IObitDel.dll [2020-11-11] <==== ACHTUNG
C:\Users\Andreas Ebner\AppData\Local\IIIQF
C:\WINDOWS\system32\Tasks\McAfee
C:\Users\Administrator\AppData\Roaming\IObit
C:\Users\Andreas Ebner\RegSvcs.exe
C:\Program Files (x86)\gruppe.txt
C:\Users\Andreas Ebner\AppData\Roaming\57194d7fac3eeb8711f0ca1082e7e000
C:\Users\Andreas Ebner\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad
C:\Program Files\KMSpico
C:\ProgramData\NTUSER.pol
C:\Program Files (x86)\TotalAV
C:\WINDOWS\SysWOW64\version_IObitDel.dll
cmd: reg query "HKCU\Environment"
cmd: reg query "HKCU\Software"
cmd: netsh advfirewall reset
hosts:
emptytemp:
*****************
Prozesse erfolgreich geschlossen.
========================= Folder: C:\Users\Andreas Ebner\AppData\Roaming\sysvar ========================
C:\Users\Andreas Ebner\AppData\Roaming\sysvar = Datei
====== Ende von Folder: ======
"AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}" => erfolgreich entfernt
"C:\ProgramData\NTUSER.pol" => nicht gefunden
HKLM\SOFTWARE\Policies\Mozilla => nicht gefunden
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{143C69E5-5FD5-4558-A6BA-99056575EC72}" => nicht gefunden
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Windows Error Reporting\SysInfo" => nicht gefunden
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4B980566-1FA1-4317-9B56-39FA8CA885AD}" => nicht gefunden
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\PC Cleaner repairing" => nicht gefunden
HKLM\System\CurrentControlSet\Services\SecurityServiceMonitor => erfolgreich entfernt
SecurityServiceMonitor => Dienst erfolgreich entfernt
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avg => nicht gefunden
"C:\WINDOWS\SysWOW64\version_IObitDel.dll" => nicht gefunden
"C:\Users\Andreas Ebner\AppData\Local\IIIQF" => nicht gefunden
"C:\WINDOWS\system32\Tasks\McAfee" => nicht gefunden
"C:\Users\Administrator\AppData\Roaming\IObit" => nicht gefunden
"C:\Users\Andreas Ebner\RegSvcs.exe" => nicht gefunden
"C:\Program Files (x86)\gruppe.txt" => nicht gefunden
"C:\Users\Andreas Ebner\AppData\Roaming\57194d7fac3eeb8711f0ca1082e7e000" => nicht gefunden
"C:\Users\Andreas Ebner\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad" => nicht gefunden
"C:\Program Files\KMSpico" => nicht gefunden
"C:\ProgramData\NTUSER.pol" => nicht gefunden
"C:\Program Files (x86)\TotalAV" => nicht gefunden
"C:\WINDOWS\SysWOW64\version_IObitDel.dll" => nicht gefunden
========= reg query "HKCU\Environment" =========
HKEY_CURRENT_USER\Environment
JD2_HOME REG_SZ C:\Users\Andreas Ebner\AppData\Local\JDownloader 2.0
OneDrive REG_EXPAND_SZ C:\Users\Andreas Ebner\OneDrive
Path REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Microsoft\WindowsApps;
SNE REG_SZ C:\Users\Andreas Ebner\AppData\Local\app"
TEMP REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Temp
TMP REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Temp
========= Ende von CMD: =========
========= reg query "HKCU\Software" =========
HKEY_CURRENT_USER\Software
jSZDIWjiv+w5xR4RsRLPIQ== REG_SZ 9/YD2PKyZPpizpkc22Vnqlq+mOzZvFvHKCf/SFliRxQ=
EkQ3Sn0J5nIivY/ko/wOrA== REG_SZ utyXMUg2+dAGi6c2WiUICQ==
/gmQvTGYi5AxFAVitd8coQ== REG_SZ IQ/Tj3Y+MdEj8T1L0E6Hrnr/PNuWlorJmmaokp+92+M=
{c2bb7625-9318-a78a-103c-3f4b723d4137} REG_SZ 001
{a78b0a27-d469-f595-925f-db7cb5548136} REG_SZ 001
CPKInstall REG_SZ 1
HKEY_CURRENT_USER\Software\3DX Games
HKEY_CURRENT_USER\Software\3uTools
HKEY_CURRENT_USER\Software\4A-Games
HKEY_CURRENT_USER\Software\6811d8ec-23f6-5ad3-9bb7-0e515c178d2a
HKEY_CURRENT_USER\Software\7-Zip
HKEY_CURRENT_USER\Software\8457e380-8acb-5e7f-a000-5966971ba7cc
HKEY_CURRENT_USER\Software\a08c1d96-b808-42fe-af09-7318aa76ffa5
HKEY_CURRENT_USER\Software\Acer
HKEY_CURRENT_USER\Software\Adobe
HKEY_CURRENT_USER\Software\Aephrosi
HKEY_CURRENT_USER\Software\AIDeX
HKEY_CURRENT_USER\Software\AltStore LLC
HKEY_CURRENT_USER\Software\AM
HKEY_CURRENT_USER\Software\Amazon
HKEY_CURRENT_USER\Software\Amazon.com Services LLC
HKEY_CURRENT_USER\Software\Apowersoft
HKEY_CURRENT_USER\Software\AppDataLow
HKEY_CURRENT_USER\Software\Apple Computer, Inc.
HKEY_CURRENT_USER\Software\Apple Inc.
HKEY_CURRENT_USER\Software\ASProtect
HKEY_CURRENT_USER\Software\AtomicGirlDev
HKEY_CURRENT_USER\Software\AvastAdSDK
HKEY_CURRENT_USER\Software\AVG
HKEY_CURRENT_USER\Software\AVS4YOU
HKEY_CURRENT_USER\Software\azantar
HKEY_CURRENT_USER\Software\BaZnGa M3U Editor
HKEY_CURRENT_USER\Software\BeWilder
HKEY_CURRENT_USER\Software\Bigasoft
HKEY_CURRENT_USER\Software\Blizzard Entertainment
HKEY_CURRENT_USER\Software\Blu-ray Master
HKEY_CURRENT_USER\Software\BlueStacksInstaller
HKEY_CURRENT_USER\Software\Brio
HKEY_CURRENT_USER\Software\by redamz
HKEY_CURRENT_USER\Software\Canon
HKEY_CURRENT_USER\Software\CanonBJ
HKEY_CURRENT_USER\Software\CDDB
HKEY_CURRENT_USER\Software\Chairi
HKEY_CURRENT_USER\Software\Cheat Engine
HKEY_CURRENT_USER\Software\ChrisPC VideoTube
HKEY_CURRENT_USER\Software\Chromium
HKEY_CURRENT_USER\Software\Cisco
HKEY_CURRENT_USER\Software\Clients
HKEY_CURRENT_USER\Software\Code Sector
HKEY_CURRENT_USER\Software\CoffeeGirl Works
HKEY_CURRENT_USER\Software\Cygnus Solutions
HKEY_CURRENT_USER\Software\Darth Smut
HKEY_CURRENT_USER\Software\Datastead
HKEY_CURRENT_USER\Software\DefaultCompany
HKEY_CURRENT_USER\Software\DigiFlix LLC
HKEY_CURRENT_USER\Software\DirectShow
HKEY_CURRENT_USER\Software\DonDimon
HKEY_CURRENT_USER\Software\Dream Company
HKEY_CURRENT_USER\Software\DropboxUpdate
HKEY_CURRENT_USER\Software\DuoDevelopers
HKEY_CURRENT_USER\Software\DVDFab
HKEY_CURRENT_USER\Software\EaseUS
HKEY_CURRENT_USER\Software\Eek
HKEY_CURRENT_USER\Software\Eidos Montreal
HKEY_CURRENT_USER\Software\ej-technologies
HKEY_CURRENT_USER\Software\ElAmigos
HKEY_CURRENT_USER\Software\Elecard
HKEY_CURRENT_USER\Software\Electronic Arts
HKEY_CURRENT_USER\Software\EndlessTaboo
HKEY_CURRENT_USER\Software\Enterbrain
HKEY_CURRENT_USER\Software\Epic Games
HKEY_CURRENT_USER\Software\Eromancer
HKEY_CURRENT_USER\Software\Eroniverse
HKEY_CURRENT_USER\Software\EurekaLab
HKEY_CURRENT_USER\Software\Faerin
HKEY_CURRENT_USER\Software\fee38e36-bd5c-5f8c-a4c4-29d7f942a22c
HKEY_CURRENT_USER\Software\FFMPEG Addon
HKEY_CURRENT_USER\Software\FlashFXP
HKEY_CURRENT_USER\Software\FlyRenders
HKEY_CURRENT_USER\Software\FonePaw
HKEY_CURRENT_USER\Software\FreeGrabApp
HKEY_CURRENT_USER\Software\FWFS
HKEY_CURRENT_USER\Software\geissplugin
HKEY_CURRENT_USER\Software\GetFLV
HKEY_CURRENT_USER\Software\Ghisler
HKEY_CURRENT_USER\Software\GKC ElectroSoft
HKEY_CURRENT_USER\Software\Glk Applications
HKEY_CURRENT_USER\Software\Google
HKEY_CURRENT_USER\Software\GreonoGames
HKEY_CURRENT_USER\Software\GXT155gmmouse
HKEY_CURRENT_USER\Software\Gzwo
HKEY_CURRENT_USER\Software\Helmsman
HKEY_CURRENT_USER\Software\HoneyTalesFactory
HKEY_CURRENT_USER\Software\https://www.patreon.com/Milfarion
HKEY_CURRENT_USER\Software\HYBRIDWEB.de
HKEY_CURRENT_USER\Software\Hypnotube
HKEY_CURRENT_USER\Software\i-FunBox.com
HKEY_CURRENT_USER\Software\Icecream
HKEY_CURRENT_USER\Software\Illusion
HKEY_CURRENT_USER\Software\IM Providers
HKEY_CURRENT_USER\Software\iMazing
HKEY_CURRENT_USER\Software\Infonautics
HKEY_CURRENT_USER\Software\Insexsity
HKEY_CURRENT_USER\Software\IO Interactive
HKEY_CURRENT_USER\Software\IvoSoft
HKEY_CURRENT_USER\Software\iwqggaa
HKEY_CURRENT_USER\Software\JavaSoft
HKEY_CURRENT_USER\Software\Jihosoft
HKEY_CURRENT_USER\Software\Kamo
HKEY_CURRENT_USER\Software\KeepSolid Inc.
HKEY_CURRENT_USER\Software\Kodi
HKEY_CURRENT_USER\Software\KsTgames
HKEY_CURRENT_USER\Software\Lamantine
HKEY_CURRENT_USER\Software\LazingInTheHaze
HKEY_CURRENT_USER\Software\Leawo Software
HKEY_CURRENT_USER\Software\Lesson of Passion
HKEY_CURRENT_USER\Software\Lewdlab
HKEY_CURRENT_USER\Software\Licenses
HKEY_CURRENT_USER\Software\LinuxLive
HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications
HKEY_CURRENT_USER\Software\LockHunter
HKEY_CURRENT_USER\Software\Macromedia
HKEY_CURRENT_USER\Software\madzeal
HKEY_CURRENT_USER\Software\Magix
HKEY_CURRENT_USER\Software\MaliXe Games
HKEY_CURRENT_USER\Software\Malwarebytes
HKEY_CURRENT_USER\Software\ManiacTools
HKEY_CURRENT_USER\Software\Martin Prikryl
HKEY_CURRENT_USER\Software\MeshedVR
HKEY_CURRENT_USER\Software\meybohm
HKEY_CURRENT_USER\Software\Microsoft
HKEY_CURRENT_USER\Software\MipMip
HKEY_CURRENT_USER\Software\Mirage
HKEY_CURRENT_USER\Software\Movavi
HKEY_CURRENT_USER\Software\Mozilla
HKEY_CURRENT_USER\Software\MP3ToIpodAudioBookConverter
HKEY_CURRENT_USER\Software\Mr.Z
HKEY_CURRENT_USER\Software\MultimediaTools
HKEY_CURRENT_USER\Software\NameMyTVSeries
HKEY_CURRENT_USER\Software\NaughtyLabs
HKEY_CURRENT_USER\Software\NCH Software
HKEY_CURRENT_USER\Software\NCH Swift Sound
HKEY_CURRENT_USER\Software\Netscape
HKEY_CURRENT_USER\Software\No Reply Games
HKEY_CURRENT_USER\Software\NoName
HKEY_CURRENT_USER\Software\NTRMAN
HKEY_CURRENT_USER\Software\NVIDIA Corporation
HKEY_CURRENT_USER\Software\nwjs
HKEY_CURRENT_USER\Software\Obsidium
HKEY_CURRENT_USER\Software\ODBC
HKEY_CURRENT_USER\Software\OEM
HKEY_CURRENT_USER\Software\OpenShell
HKEY_CURRENT_USER\Software\OppaiComics
HKEY_CURRENT_USER\Software\Playvideo
HKEY_CURRENT_USER\Software\Policies
HKEY_CURRENT_USER\Software\Populus manducare non animalibus
HKEY_CURRENT_USER\Software\Project Coup
HKEY_CURRENT_USER\Software\Pyorgara
HKEY_CURRENT_USER\Software\QtProject
HKEY_CURRENT_USER\Software\RapidSolution
HKEY_CURRENT_USER\Software\Realtek
HKEY_CURRENT_USER\Software\RegisteredApplications
HKEY_CURRENT_USER\Software\Respawn Entertainment
HKEY_CURRENT_USER\Software\RileyTestut
HKEY_CURRENT_USER\Software\Rockstar Games
HKEY_CURRENT_USER\Software\Ruffleneck
HKEY_CURRENT_USER\Software\Safer Networking Limited
HKEY_CURRENT_USER\Software\SaliaCoel
HKEY_CURRENT_USER\Software\Sand Lust Games
HKEY_CURRENT_USER\Software\Sandlust Games Ltd
HKEY_CURRENT_USER\Software\SaurikIT
HKEY_CURRENT_USER\Software\screen-capture-recorder
HKEY_CURRENT_USER\Software\SexGameDevil
HKEY_CURRENT_USER\Software\SoftwareOK
HKEY_CURRENT_USER\Software\Someguy
HKEY_CURRENT_USER\Software\Sony Creative Software
HKEY_CURRENT_USER\Software\SplitmediaLabs
HKEY_CURRENT_USER\Software\Spoon
HKEY_CURRENT_USER\Software\SteamMover
HKEY_CURRENT_USER\Software\Steganos
HKEY_CURRENT_USER\Software\Stratovarius
HKEY_CURRENT_USER\Software\Super Alex
HKEY_CURRENT_USER\Software\Symantec
HKEY_CURRENT_USER\Software\Syncios
HKEY_CURRENT_USER\Software\Sysinternals
HKEY_CURRENT_USER\Software\TeamK17
HKEY_CURRENT_USER\Software\TelegramDesktop
HKEY_CURRENT_USER\Software\The Architect
HKEY_CURRENT_USER\Software\Tid
HKEY_CURRENT_USER\Software\Trolltech
HKEY_CURRENT_USER\Software\Udecide
HKEY_CURRENT_USER\Software\Ultimate Taskbar Controller
HKEY_CURRENT_USER\Software\Ultimate Windows Tweaker
HKEY_CURRENT_USER\Software\Unity
HKEY_CURRENT_USER\Software\UpdateDownloadTool
HKEY_CURRENT_USER\Software\Valve
HKEY_CURRENT_USER\Software\Velvet Paradise Games
HKEY_CURRENT_USER\Software\VincenzoM
HKEY_CURRENT_USER\Software\VNGINE
HKEY_CURRENT_USER\Software\VS Revo Group
HKEY_CURRENT_USER\Software\WalkiusGames
HKEY_CURRENT_USER\Software\Waterfox
HKEY_CURRENT_USER\Software\Winamp
HKEY_CURRENT_USER\Software\WinRAR
HKEY_CURRENT_USER\Software\WinRAR SFX
HKEY_CURRENT_USER\Software\Winterfire
HKEY_CURRENT_USER\Software\Wondershare
HKEY_CURRENT_USER\Software\Wow6432Node
HKEY_CURRENT_USER\Software\{#AppName}
HKEY_CURRENT_USER\Software\Classes
========= Ende von CMD: =========
========= netsh advfirewall reset =========
Fehler beim Herstellen der Verbindung mit dem Windows Defender Firewall-Dienst. Stellen Sie sicher, dass der Dienst ausgefhrt wird, und wiederholen Sie die Anforderung.
========= Ende von CMD: =========
C:\Windows\System32\Drivers\etc\hosts => erfolgreich verschoben
Hosts erfolgreich wiederhergestellt.
=========== EmptyTemp: ==========
BITS transfer queue => 11558912 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 6306816 B
Java, Flash, Steam htmlcache => 0 B
|
|
16.03.2021, 11:52
| #18 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst] Wir brauchen noch einen Fix:
__________________Scripting/Repair mit FRST64 WARNUNG AN ALLE MITLESER !!! Dieses FRST-Script ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System angewendet werden!
__________________ |
|
16.03.2021, 12:05
| #19 |
| | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst]Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-03-2021
durchgeführt von Andreas Ebner (16-03-2021 11:55:32) Run:1
Gestartet von I:\
Geladene Profile: Andreas Ebner & Administrator
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
CloseProcesses:
DeleteKey: HKLM\Software\AVG
DeleteKey: HKCU\Software\AVG
DeleteKey: HKLM\Software\Safer Networking Limited
DeleteKey: HKCU\Software\Safer Networking Limited
DeleteKey: HKCU\Software\iwqggaa
DeleteKey: HKCU\Software\6811d8ec-23f6-5ad3-9bb7-0e515c178d2a
DeleteKey: HKCU\Software\8457e380-8acb-5e7f-a000-5966971ba7cc
DeleteKey: HKCU\Software\a08c1d96-b808-42fe-af09-7318aa76ffa5
DeleteKey: HKCU\Software\fee38e36-bd5c-5f8c-a4c4-29d7f942a22c
DeleteValue: HKCU\Software | jSZDIWjiv+w5xR4RsRLPIQ==
DeleteValue: HKCU\Software | EkQ3Sn0J5nIivY/ko/wOrA==
DeleteValue: HKCU\Software | /gmQvTGYi5AxFAVitd8coQ==
DeleteValue: HKCU\Software | {c2bb7625-9318-a78a-103c-3f4b723d4137}
DeleteValue: HKCU\Software | {a78b0a27-d469-f595-925f-db7cb5548136}
DeleteValue: HKCU\Software | CPKInstall
cmd: reg query "HKCU\Environment"
cmd: reg query "HKCU\Software"
cmd: reg query "HKLM\Software"
emptytemp:
*****************
Prozesse erfolgreich geschlossen.
HKLM\Software\AVG => erfolgreich entfernt
HKCU\Software\AVG => erfolgreich entfernt
HKLM\Software\Safer Networking Limited => erfolgreich entfernt
HKCU\Software\Safer Networking Limited => erfolgreich entfernt
HKCU\Software\iwqggaa => erfolgreich entfernt
HKCU\Software\6811d8ec-23f6-5ad3-9bb7-0e515c178d2a => erfolgreich entfernt
HKCU\Software\8457e380-8acb-5e7f-a000-5966971ba7cc => erfolgreich entfernt
HKCU\Software\a08c1d96-b808-42fe-af09-7318aa76ffa5 => erfolgreich entfernt
HKCU\Software\fee38e36-bd5c-5f8c-a4c4-29d7f942a22c => erfolgreich entfernt
"HKCU\Software \\ jSZDIWjiv+w5xR4RsRLPIQ==" => nicht gefunden
"HKCU\Software \\ EkQ3Sn0J5nIivY/ko/wOrA==" => nicht gefunden
"HKCU\Software \\ /gmQvTGYi5AxFAVitd8coQ==" => nicht gefunden
"HKCU\Software \\ {c2bb7625-9318-a78a-103c-3f4b723d4137}" => nicht gefunden
"HKCU\Software \\ {a78b0a27-d469-f595-925f-db7cb5548136}" => nicht gefunden
"HKCU\Software \\ CPKInstall" => nicht gefunden
========= reg query "HKCU\Environment" =========
HKEY_CURRENT_USER\Environment
JD2_HOME REG_SZ C:\Users\Andreas Ebner\AppData\Local\JDownloader 2.0
OneDrive REG_EXPAND_SZ C:\Users\Andreas Ebner\OneDrive
Path REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Microsoft\WindowsApps;
SNE REG_SZ C:\Users\Andreas Ebner\AppData\Local\app"
TEMP REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Temp
TMP REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Temp
========= Ende von CMD: =========
========= reg query "HKCU\Software" =========
HKEY_CURRENT_USER\Software
jSZDIWjiv+w5xR4RsRLPIQ== REG_SZ 9/YD2PKyZPpizpkc22Vnqlq+mOzZvFvHKCf/SFliRxQ=
EkQ3Sn0J5nIivY/ko/wOrA== REG_SZ utyXMUg2+dAGi6c2WiUICQ==
/gmQvTGYi5AxFAVitd8coQ== REG_SZ IQ/Tj3Y+MdEj8T1L0E6Hrnr/PNuWlorJmmaokp+92+M=
{c2bb7625-9318-a78a-103c-3f4b723d4137} REG_SZ 001
{a78b0a27-d469-f595-925f-db7cb5548136} REG_SZ 001
CPKInstall REG_SZ 1
HKEY_CURRENT_USER\Software\3DX Games
HKEY_CURRENT_USER\Software\3uTools
HKEY_CURRENT_USER\Software\4A-Games
HKEY_CURRENT_USER\Software\7-Zip
HKEY_CURRENT_USER\Software\Acer
HKEY_CURRENT_USER\Software\Adobe
HKEY_CURRENT_USER\Software\Aephrosi
HKEY_CURRENT_USER\Software\AIDeX
HKEY_CURRENT_USER\Software\AltStore LLC
HKEY_CURRENT_USER\Software\AM
HKEY_CURRENT_USER\Software\Amazon
HKEY_CURRENT_USER\Software\Amazon.com Services LLC
HKEY_CURRENT_USER\Software\Apowersoft
HKEY_CURRENT_USER\Software\AppDataLow
HKEY_CURRENT_USER\Software\Apple Computer, Inc.
HKEY_CURRENT_USER\Software\Apple Inc.
HKEY_CURRENT_USER\Software\ASProtect
HKEY_CURRENT_USER\Software\AtomicGirlDev
HKEY_CURRENT_USER\Software\AvastAdSDK
HKEY_CURRENT_USER\Software\AVS4YOU
HKEY_CURRENT_USER\Software\azantar
HKEY_CURRENT_USER\Software\BaZnGa M3U Editor
HKEY_CURRENT_USER\Software\BeWilder
HKEY_CURRENT_USER\Software\Bigasoft
HKEY_CURRENT_USER\Software\Blizzard Entertainment
HKEY_CURRENT_USER\Software\Blu-ray Master
HKEY_CURRENT_USER\Software\BlueStacksInstaller
HKEY_CURRENT_USER\Software\Brio
HKEY_CURRENT_USER\Software\by redamz
HKEY_CURRENT_USER\Software\Canon
HKEY_CURRENT_USER\Software\CanonBJ
HKEY_CURRENT_USER\Software\CDDB
HKEY_CURRENT_USER\Software\Chairi
HKEY_CURRENT_USER\Software\Cheat Engine
HKEY_CURRENT_USER\Software\ChrisPC VideoTube
HKEY_CURRENT_USER\Software\Chromium
HKEY_CURRENT_USER\Software\Cisco
HKEY_CURRENT_USER\Software\Clients
HKEY_CURRENT_USER\Software\Code Sector
HKEY_CURRENT_USER\Software\CoffeeGirl Works
HKEY_CURRENT_USER\Software\Cygnus Solutions
HKEY_CURRENT_USER\Software\Darth Smut
HKEY_CURRENT_USER\Software\Datastead
HKEY_CURRENT_USER\Software\DefaultCompany
HKEY_CURRENT_USER\Software\DigiFlix LLC
HKEY_CURRENT_USER\Software\DirectShow
HKEY_CURRENT_USER\Software\DonDimon
HKEY_CURRENT_USER\Software\Dream Company
HKEY_CURRENT_USER\Software\DropboxUpdate
HKEY_CURRENT_USER\Software\DuoDevelopers
HKEY_CURRENT_USER\Software\DVDFab
HKEY_CURRENT_USER\Software\EaseUS
HKEY_CURRENT_USER\Software\Eek
HKEY_CURRENT_USER\Software\Eidos Montreal
HKEY_CURRENT_USER\Software\ej-technologies
HKEY_CURRENT_USER\Software\ElAmigos
HKEY_CURRENT_USER\Software\Elecard
HKEY_CURRENT_USER\Software\Electronic Arts
HKEY_CURRENT_USER\Software\EndlessTaboo
HKEY_CURRENT_USER\Software\Enterbrain
HKEY_CURRENT_USER\Software\Epic Games
HKEY_CURRENT_USER\Software\Eromancer
HKEY_CURRENT_USER\Software\Eroniverse
HKEY_CURRENT_USER\Software\EurekaLab
HKEY_CURRENT_USER\Software\Faerin
HKEY_CURRENT_USER\Software\FFMPEG Addon
HKEY_CURRENT_USER\Software\FlashFXP
HKEY_CURRENT_USER\Software\FlyRenders
HKEY_CURRENT_USER\Software\FonePaw
HKEY_CURRENT_USER\Software\FreeGrabApp
HKEY_CURRENT_USER\Software\FWFS
HKEY_CURRENT_USER\Software\geissplugin
HKEY_CURRENT_USER\Software\GetFLV
HKEY_CURRENT_USER\Software\Ghisler
HKEY_CURRENT_USER\Software\GKC ElectroSoft
HKEY_CURRENT_USER\Software\Glk Applications
HKEY_CURRENT_USER\Software\Google
HKEY_CURRENT_USER\Software\GreonoGames
HKEY_CURRENT_USER\Software\GXT155gmmouse
HKEY_CURRENT_USER\Software\Gzwo
HKEY_CURRENT_USER\Software\Helmsman
HKEY_CURRENT_USER\Software\HoneyTalesFactory
HKEY_CURRENT_USER\Software\https://www.patreon.com/Milfarion
HKEY_CURRENT_USER\Software\HYBRIDWEB.de
HKEY_CURRENT_USER\Software\Hypnotube
HKEY_CURRENT_USER\Software\i-FunBox.com
HKEY_CURRENT_USER\Software\Icecream
HKEY_CURRENT_USER\Software\Illusion
HKEY_CURRENT_USER\Software\IM Providers
HKEY_CURRENT_USER\Software\iMazing
HKEY_CURRENT_USER\Software\Infonautics
HKEY_CURRENT_USER\Software\Insexsity
HKEY_CURRENT_USER\Software\IO Interactive
HKEY_CURRENT_USER\Software\IvoSoft
HKEY_CURRENT_USER\Software\JavaSoft
HKEY_CURRENT_USER\Software\Jihosoft
HKEY_CURRENT_USER\Software\Kamo
HKEY_CURRENT_USER\Software\KeepSolid Inc.
HKEY_CURRENT_USER\Software\Kodi
HKEY_CURRENT_USER\Software\KsTgames
HKEY_CURRENT_USER\Software\Lamantine
HKEY_CURRENT_USER\Software\LazingInTheHaze
HKEY_CURRENT_USER\Software\Leawo Software
HKEY_CURRENT_USER\Software\Lesson of Passion
HKEY_CURRENT_USER\Software\Lewdlab
HKEY_CURRENT_USER\Software\Licenses
HKEY_CURRENT_USER\Software\LinuxLive
HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications
HKEY_CURRENT_USER\Software\LockHunter
HKEY_CURRENT_USER\Software\Macromedia
HKEY_CURRENT_USER\Software\madzeal
HKEY_CURRENT_USER\Software\Magix
HKEY_CURRENT_USER\Software\MaliXe Games
HKEY_CURRENT_USER\Software\Malwarebytes
HKEY_CURRENT_USER\Software\ManiacTools
HKEY_CURRENT_USER\Software\Martin Prikryl
HKEY_CURRENT_USER\Software\MeshedVR
HKEY_CURRENT_USER\Software\meybohm
HKEY_CURRENT_USER\Software\Microsoft
HKEY_CURRENT_USER\Software\MipMip
HKEY_CURRENT_USER\Software\Mirage
HKEY_CURRENT_USER\Software\Movavi
HKEY_CURRENT_USER\Software\Mozilla
HKEY_CURRENT_USER\Software\MP3ToIpodAudioBookConverter
HKEY_CURRENT_USER\Software\Mr.Z
HKEY_CURRENT_USER\Software\MultimediaTools
HKEY_CURRENT_USER\Software\NameMyTVSeries
HKEY_CURRENT_USER\Software\NaughtyLabs
HKEY_CURRENT_USER\Software\NCH Software
HKEY_CURRENT_USER\Software\NCH Swift Sound
HKEY_CURRENT_USER\Software\Netscape
HKEY_CURRENT_USER\Software\No Reply Games
HKEY_CURRENT_USER\Software\NoName
HKEY_CURRENT_USER\Software\NTRMAN
HKEY_CURRENT_USER\Software\NVIDIA Corporation
HKEY_CURRENT_USER\Software\nwjs
HKEY_CURRENT_USER\Software\Obsidium
HKEY_CURRENT_USER\Software\ODBC
HKEY_CURRENT_USER\Software\OEM
HKEY_CURRENT_USER\Software\OpenShell
HKEY_CURRENT_USER\Software\OppaiComics
HKEY_CURRENT_USER\Software\Playvideo
HKEY_CURRENT_USER\Software\Policies
HKEY_CURRENT_USER\Software\Populus manducare non animalibus
HKEY_CURRENT_USER\Software\Project Coup
HKEY_CURRENT_USER\Software\Pyorgara
HKEY_CURRENT_USER\Software\QtProject
HKEY_CURRENT_USER\Software\RapidSolution
HKEY_CURRENT_USER\Software\Realtek
HKEY_CURRENT_USER\Software\RegisteredApplications
HKEY_CURRENT_USER\Software\Respawn Entertainment
HKEY_CURRENT_USER\Software\RileyTestut
HKEY_CURRENT_USER\Software\Rockstar Games
HKEY_CURRENT_USER\Software\Ruffleneck
HKEY_CURRENT_USER\Software\SaliaCoel
HKEY_CURRENT_USER\Software\Sand Lust Games
HKEY_CURRENT_USER\Software\Sandlust Games Ltd
HKEY_CURRENT_USER\Software\SaurikIT
HKEY_CURRENT_USER\Software\screen-capture-recorder
HKEY_CURRENT_USER\Software\SexGameDevil
HKEY_CURRENT_USER\Software\SoftwareOK
HKEY_CURRENT_USER\Software\Someguy
HKEY_CURRENT_USER\Software\Sony Creative Software
HKEY_CURRENT_USER\Software\SplitmediaLabs
HKEY_CURRENT_USER\Software\Spoon
HKEY_CURRENT_USER\Software\SteamMover
HKEY_CURRENT_USER\Software\Steganos
HKEY_CURRENT_USER\Software\Stratovarius
HKEY_CURRENT_USER\Software\Super Alex
HKEY_CURRENT_USER\Software\Symantec
HKEY_CURRENT_USER\Software\Syncios
HKEY_CURRENT_USER\Software\Sysinternals
HKEY_CURRENT_USER\Software\TeamK17
HKEY_CURRENT_USER\Software\TelegramDesktop
HKEY_CURRENT_USER\Software\The Architect
HKEY_CURRENT_USER\Software\Tid
HKEY_CURRENT_USER\Software\Trolltech
HKEY_CURRENT_USER\Software\Udecide
HKEY_CURRENT_USER\Software\Ultimate Taskbar Controller
HKEY_CURRENT_USER\Software\Ultimate Windows Tweaker
HKEY_CURRENT_USER\Software\Unity
HKEY_CURRENT_USER\Software\UpdateDownloadTool
HKEY_CURRENT_USER\Software\Valve
HKEY_CURRENT_USER\Software\Velvet Paradise Games
HKEY_CURRENT_USER\Software\VincenzoM
HKEY_CURRENT_USER\Software\VNGINE
HKEY_CURRENT_USER\Software\VS Revo Group
HKEY_CURRENT_USER\Software\WalkiusGames
HKEY_CURRENT_USER\Software\Waterfox
HKEY_CURRENT_USER\Software\Winamp
HKEY_CURRENT_USER\Software\WinRAR
HKEY_CURRENT_USER\Software\WinRAR SFX
HKEY_CURRENT_USER\Software\Winterfire
HKEY_CURRENT_USER\Software\Wondershare
HKEY_CURRENT_USER\Software\Wow6432Node
HKEY_CURRENT_USER\Software\{#AppName}
HKEY_CURRENT_USER\Software\Classes
========= Ende von CMD: =========
========= reg query "HKLM\Software" =========
HKEY_LOCAL_MACHINE\Software\7-Zip
HKEY_LOCAL_MACHINE\Software\Acronis
HKEY_LOCAL_MACHINE\Software\AGEIA Technologies
HKEY_LOCAL_MACHINE\Software\Apple Computer, Inc.
HKEY_LOCAL_MACHINE\Software\Apple Inc.
HKEY_LOCAL_MACHINE\Software\AVS4YOU
HKEY_LOCAL_MACHINE\Software\BlueStacks
HKEY_LOCAL_MACHINE\Software\BlueStacksInstaller
HKEY_LOCAL_MACHINE\Software\Canon
HKEY_LOCAL_MACHINE\Software\Chromium
HKEY_LOCAL_MACHINE\Software\Classes
HKEY_LOCAL_MACHINE\Software\Clients
HKEY_LOCAL_MACHINE\Software\Code Sector
HKEY_LOCAL_MACHINE\Software\CPUID
HKEY_LOCAL_MACHINE\Software\CVSM
HKEY_LOCAL_MACHINE\Software\DefaultUserEnvironment
HKEY_LOCAL_MACHINE\Software\Dolby
HKEY_LOCAL_MACHINE\Software\dotnet
HKEY_LOCAL_MACHINE\Software\DownloadHelper
HKEY_LOCAL_MACHINE\Software\DTS
HKEY_LOCAL_MACHINE\Software\DVDFab
HKEY_LOCAL_MACHINE\Software\EA Games
HKEY_LOCAL_MACHINE\Software\ej-technologies
HKEY_LOCAL_MACHINE\Software\FileZilla 3
HKEY_LOCAL_MACHINE\Software\Fortemedia
HKEY_LOCAL_MACHINE\Software\Ghisler
HKEY_LOCAL_MACHINE\Software\Google
HKEY_LOCAL_MACHINE\Software\Hewlett-Packard
HKEY_LOCAL_MACHINE\Software\Intel
HKEY_LOCAL_MACHINE\Software\IrfanView
HKEY_LOCAL_MACHINE\Software\JreMetrics
HKEY_LOCAL_MACHINE\Software\Khronos
HKEY_LOCAL_MACHINE\Software\Knowles
HKEY_LOCAL_MACHINE\Software\Loaris
HKEY_LOCAL_MACHINE\Software\Macromedia
HKEY_LOCAL_MACHINE\Software\Malwarebytes
HKEY_LOCAL_MACHINE\Software\Martin Prikryl
HKEY_LOCAL_MACHINE\Software\MegaTrainerUltimate
HKEY_LOCAL_MACHINE\Software\Micron
HKEY_LOCAL_MACHINE\Software\Microsoft
HKEY_LOCAL_MACHINE\Software\Mozilla
HKEY_LOCAL_MACHINE\Software\mozilla.org
HKEY_LOCAL_MACHINE\Software\MozillaPlugins
HKEY_LOCAL_MACHINE\Software\NeoSmart Technologies
HKEY_LOCAL_MACHINE\Software\Nuance
HKEY_LOCAL_MACHINE\Software\NVIDIA Corporation
HKEY_LOCAL_MACHINE\Software\ODBC
HKEY_LOCAL_MACHINE\Software\OEM
HKEY_LOCAL_MACHINE\Software\OpenShell
HKEY_LOCAL_MACHINE\Software\OpenSSH
HKEY_LOCAL_MACHINE\Software\Oracle
HKEY_LOCAL_MACHINE\Software\Partner
HKEY_LOCAL_MACHINE\Software\Piriform
HKEY_LOCAL_MACHINE\Software\Policies
HKEY_LOCAL_MACHINE\Software\RapidSolution
HKEY_LOCAL_MACHINE\Software\Realtek
HKEY_LOCAL_MACHINE\Software\RegisteredApplications
HKEY_LOCAL_MACHINE\Software\RivetNetworks
HKEY_LOCAL_MACHINE\Software\Rockstar Games
HKEY_LOCAL_MACHINE\Software\SonicFocus
HKEY_LOCAL_MACHINE\Software\Sony Creative Software
HKEY_LOCAL_MACHINE\Software\SoundResearch
HKEY_LOCAL_MACHINE\Software\Spyshelter
HKEY_LOCAL_MACHINE\Software\SRS Labs
HKEY_LOCAL_MACHINE\Software\TV-Browser
HKEY_LOCAL_MACHINE\Software\TV-Browser4.2
HKEY_LOCAL_MACHINE\Software\VideoLAN
HKEY_LOCAL_MACHINE\Software\Volatile
HKEY_LOCAL_MACHINE\Software\Waterfox
HKEY_LOCAL_MACHINE\Software\waterfox.net
HKEY_LOCAL_MACHINE\Software\Waves Audio
HKEY_LOCAL_MACHINE\Software\Windows
HKEY_LOCAL_MACHINE\Software\WinRAR
HKEY_LOCAL_MACHINE\Software\Wintun
HKEY_LOCAL_MACHINE\Software\WOW6432Node
HKEY_LOCAL_MACHINE\Software\Yamaha APO
========= Ende von CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 12083200 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 17855216 B
Java, Flash, Steam htmlcache => 0 B
|
|
16.03.2021, 12:10
| #20 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst] Also da sind einige sehr komische Einträge bei dir in der Reg. Öffne mal bitte regedit und navigiere zu HKEY_CURRENT_USER\Software Findest du dort diese Einträge: Code:
ATTFilter jSZDIWjiv+w5xR4RsRLPIQ==
EkQ3Sn0J5nIivY/ko/wOrA==
/gmQvTGYi5AxFAVitd8coQ==
{c2bb7625-9318-a78a-103c-3f4b723d4137}
{a78b0a27-d469-f595-925f-db7cb5548136}
CPKInstall
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.03.2021, 12:17
| #21 |
| | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst] Ja wenn ich direkt auf Software gehe dann finde ich diese.... |
|
16.03.2021, 12:35
| #22 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst] Lösch die mal. Dann neue FRST-LOgs.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.03.2021, 12:45
| #23 |
| | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst]Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 14-03-2021
durchgeführt von Andreas Ebner (Administrator) auf LAPTOP-CQ0D7NOI (Acer Predator PH517-51) (16-03-2021 12:39:20)
Gestartet von I:\
Geladene Profile: Andreas Ebner
Platform: Windows 10 Home Version 20H2 19042.867 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\GXT155mon.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\PredatorSense Service\PSAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\PredatorSense Service\PSAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\PredatorSense Service\PSSvc.exe
(Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe
(Amazon.com Services LLC -> Amazon.com Services LLC) C:\Users\Andreas Ebner\AppData\Local\Amazon Music\Amazon Music Helper.exe
(Anvsoft Inc. -> ) C:\Program Files (x86)\Anvsoft\Syncios\devicenotifier.exe
(Anvsoft Inc. -> ) C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Brio) [Datei ist nicht signiert] C:\Program Files\FolderSize\FolderSizeSvc.exe
(Code Sector -> Code Sector) C:\Program Files\TeraCopy\TeraCopyService.exe
(Eastern Times Technology Co.,Ltd -> ) C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\ETGMSrv.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iaahcic.inf_amd64_c52b34f1b30918c5\RstMwService.exe
(Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_62a0e7f4cd3e6c99\aesm_service.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\SocketHeciServer.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(KeepSolid Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe
(Malwarebytes Corporation -> Malwarebytes) C:\ProgramData\MB3Install\MBAMIService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\regedit.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Hardware Compatibility Publisher -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Open-Shell) [Datei ist nicht signiert] C:\Program Files\Open-Shell\StartMenu.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Rivet Networks LLC -> Rivet Networks) C:\Program Files\Killer Networking\Killer Control Center\KillerControlCenter.exe
(Shenzhen Moyea Software -> Leawo Software) C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe
(VideoLAN -> VideoLAN) C:\Program Files\VideoLAN\VLC\vlc.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_1c72dfbd7a8b521f\WavesSvc64.exe
(Waves Inc -> Waves Audio Ltd.) C:\Windows\System32\DriverStore\FileRepository\wavesapo77ac.inf_amd64_1c72dfbd7a8b521f\WavesSysSvc64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [768448 2018-07-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\SYSTEM32\DRIVERSTORE\FILEREPOSITORY\WAVESAPO77AC.INF_AMD64_1C72DFBD7A8B521F\WAVESSVC64.EXE [1287440 2018-05-30] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [iTunesHelper] => D:\Program Files\iTunes\iTunesHelper.exe [337720 2020-11-12] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [224768 2019-10-26] (Open-Shell) [Datei ist nicht signiert]
HKLM-x32\...\Run: [GXT155gmmouseRun] => C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\GXT155mon.exe [3435520 2018-06-11] () [Datei ist nicht signiert]
HKLM-x32\...\Run: [Syncios device service] => C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe [2944120 2019-07-11] (Anvsoft Inc. -> )
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [Folder Size] => C:\Program Files\FolderSize\FolderSize.exe [169472 2013-02-12] (Brio) [Datei ist nicht signiert]
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [68408 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [Amazon Music Helper] => C:\Users\Andreas Ebner\AppData\Local\Amazon Music\Amazon Music Helper.exe [2107848 2020-05-23] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [AnyTransToolHelper] => C:\Program Files (x86)\iMobie\AnyTrans\AnyTransToolHelper.exe [492032 2019-11-25] (iMobie Inc. -> iMobie Inc.)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [Amazon Music] => C:\Users\Andreas Ebner\AppData\Local\Amazon Music\Amazon Music.exe [20373448 2020-05-23] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKLM\...\Windows x64\Print Processors\Canon TS8200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEK.DLL [482816 2018-11-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS8200 series: C:\Windows\system32\CNMLMEK.DLL [904192 2018-11-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP B111 Status Monitor: C:\Windows\system32\hpinkstsB111LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.82\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Control Center.lnk [2019-09-19]
ShortcutTarget: Killer Control Center.lnk -> C:\Program Files\Killer Networking\Killer Control Center\KillerControlCenter.exe (Rivet Networks LLC -> Rivet Networks)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0DBE97F8-6C00-413B-9880-CEF0C3E3144F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1C71DCDF-E249-4B96-9C87-81E7B1B18336} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {27B5F7F6-0E1C-499F-9969-B3C9A7176502} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [7071000 2019-08-29] (Nero AG -> Nero AG)
Task: {28519E13-FAD4-4EB3-90E6-F16C060A8576} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {2AE11AF1-8D11-47DA-8F01-468864E5458B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2BED9E85-9FFF-4456-80F4-C0DD0A0DC905} - System32\Tasks\dmci => C:\Users\ANDREA~1\dmci\ohxobu.exe -> C:\Users\ANDREA~1\dmci\fnnd.ssm
Task: {2C20BB6A-F3DD-4ED3-B288-D13FC87029EF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {332D52C9-E8FE-45B0-9732-35E8270ED02A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {36972BE7-3BA2-4B90-8F44-1472DE441194} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {37ACB099-7453-41AA-9C67-00F332364B07} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {4045B47F-B3BA-4D17-AE11-A97AB0CC7FED} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226024 2018-01-25] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {48C1D5D3-51A8-40F5-91A6-E91D933AAADB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4C79F391-64E0-4EEB-A0C5-EAC4C3953168} - System32\Tasks\IMF_SkipUAC_Andreas Ebner => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
Task: {4DCF3553-E408-48F8-967A-ED143F919B23} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService
Task: {509B46F4-E139-4699-9E8F-7032C6F7B533} - System32\Tasks\Trojan Remover => C:\Program Files\Loaris Trojan Remover\ltr.exe [17908736 2021-01-07] (Loaris Inc.) [Datei ist nicht signiert]
Task: {5413A72E-71CB-47EE-B77C-DBA6849DAD87} - System32\Tasks\IMF_SkipUAC_adm => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
Task: {622E3556-B0D5-4FE0-A048-8C16AEAF86D6} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on switch user if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226024 2018-01-25] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {63A780BE-553B-4160-8F75-3933807C6F94} - System32\Tasks\BlueStacksHelper => D:\BlueStacks\Client\Helper\BlueStacksHelper.exe [754104 2021-01-07] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {669D58B1-FD25-4C91-BD10-8682412158A5} - System32\Tasks\Norton Security Scan for Andreas Ebner => C:\PROGRA~2\NORTON~2\Engine\461~1.150\Nss.exe
Task: {670B7F97-D28A-49D5-A25C-83B58E6DFE93} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {67C67D30-C919-448D-B9C5-4EBDECAD47C0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {6A067CC0-C766-4833-84BA-142539FAE128} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {6E5E9A48-2165-4040-ABB1-AF7673845C61} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\tbtsvc.exe [2302184 2018-01-25] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {7E2D93D1-98CA-4313-8091-AEFCE59ADE76} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {875096B5-CC77-4225-9C3F-0F5B8E826ECA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B45FE22-1046-47F6-A071-2E6F58937F53} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226024 2018-01-25] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {8DEF72EB-E500-44BF-9302-FBF0034816DE} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {8F0C014E-4FF3-4186-9948-151E434BA141} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Andreas Ebner\Desktop\esetonlinescanner_enu.exe
Task: {8F476193-8984-4554-96FB-E3927F6404A0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {92E1468D-5693-4592-80AD-D3BBFB38B6A4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {9966559E-E12A-4EB0-931D-8365FD62F8A9} - System32\Tasks\PredatorSense UI => C:\Program Files\Acer\PredatorSense Service\PSLauncher.exe [580888 2019-10-09] (Acer Incorporated -> Acer Incorporated)
Task: {C54F7330-639B-4617-9A81-CDB32055B55C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [694256 2021-03-13] (Mozilla Corporation -> Mozilla Foundation)
Task: {C8F8901B-498B-4DA8-94E0-904BCD0E96EF} - System32\Tasks\PredatorSense => C:\Program Files\Acer\PredatorSense Service\PSLauncher.exe [580888 2019-10-09] (Acer Incorporated -> Acer Incorporated)
Task: {CEB723EE-D84D-49A9-AB75-9F95C2A08945} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantAllUsersRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {D0720991-C887-41BE-A650-4A090FA84E12} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [91440 2017-09-26] (Acer Incorporated -> Microsoft)
Task: {D4EE7AFA-FEBC-4C0D-A7B9-4D612AC01FB9} - System32\Tasks\UAC => C:\Users\Andreas [Argument = Ebner\AppData\Roaming\NsMiner\IMG001.exe]
Task: {D9E6FBB8-8C39-4FF2-84F6-EA9A619CB4E7} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantWakeupRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {DAF737BA-4855-4070-B610-E9D128DFE022} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4274780374-310312604-1853351802-500 => C:\Users\Andreas Ebner\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {DEF9ABC2-8F13-40AD-A0F7-2B3621169028} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Andreas Ebner\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {E113C8C6-B2C3-413F-B2A3-3FCABE397FA4} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Andreas Ebner\Desktop\esetonlinescanner_enu.exe
Task: {F59C6A1E-869F-4078-A9DC-B166C143FE04} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2019-10-09] (Acer Incorporated -> Acer Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\UAC.job => C:\Users\Andreas)Ebner\AppData\Roaming\NsMiner\IMG001.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{046a620e-7093-4d77-b616-2ef61dd65007}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{759d83ac-f5e0-c89b-38c2-ca581e218a0c}: [NameServer] 10.100.0.1
Edge:
=======
Edge Extension: (Amazon Assistant) -> xxx_AmazoncomAmazonAssistant_343d40qqvtj1t => C:\Program Files\WindowsApps\Amazon.com.AmazonAssistant_10.1910.9.0_neutral__343d40qqvtj1t [2021-03-15]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Andreas Ebner\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-16]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: dwreqduu.default
FF DefaultProfile: e28ier59.default-1548431725211
FF ProfilePath: C:\Users\Andreas Ebner\AppData\Roaming\Waterfox\Profiles\dwreqduu.default [2020-11-11]
FF ProfilePath: C:\Users\Andreas Ebner\AppData\Roaming\Waterfox\Profiles\biqe5yt2.68-edition-default [2021-03-04]
FF ProfilePath: C:\Users\Andreas Ebner\AppData\Roaming\Mozilla\Firefox\Profiles\e28ier59.default-1548431725211 [2021-03-16]
FF DownloadDir: D:\Downloads
FF Session Restore: Mozilla\Firefox\Profiles\e28ier59.default-1548431725211 -> ist aktiviert.
FF Notifications: Mozilla\Firefox\Profiles\e28ier59.default-1548431725211 -> hxxps://crackwatch.com; hxxps://www.instagram.com
FF Extension: (MyJDownloader Browser Erweiterung) - C:\Users\Andreas Ebner\AppData\Roaming\Mozilla\Firefox\Profiles\e28ier59.default-1548431725211\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2021-02-25] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Andreas Ebner\AppData\Roaming\Mozilla\Firefox\Profiles\e28ier59.default-1548431725211\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-02-02]
FF Extension: (Dark Fox) - C:\Users\Andreas Ebner\AppData\Roaming\Mozilla\Firefox\Profiles\e28ier59.default-1548431725211\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2021-02-02]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
R2 CdRomAccessAgentService; C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe [96152 2020-10-02] (Shenzhen Moyea Software -> Leawo Software)
R2 ETGMGlcsSrv; C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\ETGMSrv.exe [1181544 2012-04-24] (Eastern Times Technology Co.,Ltd -> )
R2 FolderSize; C:\Program Files\FolderSize\FolderSizeSvc.exe [163840 2013-02-12] (Brio) [Datei ist nicht signiert]
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA)
R2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2319320 2018-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Rivet Networks)
R2 MBAMIService; C:\ProgramData\MB3Install\MBAMIService.exe [231120 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-02-22] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2535000 2021-02-24] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3480152 2021-02-24] (Electronic Arts, Inc. -> Electronic Arts)
R3 PSSvc; C:\Program Files\Acer\PredatorSense Service\PSSvc.exe [979736 2019-10-09] (Acer Incorporated -> Acer Incorporated)
S3 Rockstar Service; D:\Rockstar Games Launcher\RockstarService.exe [474256 2019-12-05] (Rockstar Games, Inc. -> Rockstar Games)
R2 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [110416 2017-05-05] (Code Sector -> Code Sector)
R2 VPNUnlimitedService; C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe [47616 2020-12-24] (KeepSolid Inc.) [Datei ist nicht signiert]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WireGuardTunnel$VPNUWireguard; C:\Program Files (x86)\VPN Unlimited\WireVPNUImpl.exe [17920 2020-10-12] () [Datei ist nicht signiert]
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-07-09] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 SecurityServiceMonitor; C:\Program Files (x86)\TotalAV\SecurityService.exe --monitor [X] <==== ACHTUNG
S3 VBoxSDS; "C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-11-11] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220616 2021-03-15] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-14] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-03-14] (Malwarebytes Inc -> Malwarebytes)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 RfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\RfeCo10X64.sys [150152 2018-04-26] (Rivet Networks LLC -> Rivet Networks, LLC.)
S1 RrNetCapFilterDriver; C:\WINDOWS\system32\DRIVERS\RrNetCapFilterDriver.sys [25256 2015-07-09] (Audials AG -> Audials AG)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (The OpenVPN Project) [Datei ist nicht signiert]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
S3 usbglcs1100302; C:\WINDOWS\system32\drivers\usbglcs1100302.sys [25600 2014-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [239872 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [249776 2021-01-07] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [38176 2020-08-21] (WireGuard LLC -> WireGuard LLC)
U4 ekrn; kein ImagePath
S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-03-16 09:13 - 2021-03-16 09:13 - 008463216 _____ (Malwarebytes) C:\Users\Andreas Ebner\Desktop\adwcleaner_8.1.exe
2021-03-16 01:34 - 2021-03-16 12:03 - 000000000 ___RD C:\Users\Andreas Ebner\iCloudDrive
2021-03-16 01:04 - 2021-03-16 01:04 - 000000000 ____D C:\ProgramData\ProductData
2021-03-15 22:19 - 2021-03-16 12:39 - 000000000 ____D C:\FRST
2021-03-15 22:11 - 2021-03-15 22:11 - 000002328 _____ C:\Users\Administrator\Desktop\Google Chrome.lnk
2021-03-15 21:40 - 2021-03-15 21:40 - 000000000 ____D C:\Users\Andreas Ebner\RevoUninstallerProPortable
2021-03-15 21:37 - 2021-03-15 21:41 - 000000000 ____D C:\Users\Andreas Ebner\Desktop\Topf
2021-03-15 20:35 - 2021-03-15 20:35 - 000003840 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2021-03-15 20:35 - 2021-03-15 20:35 - 000003398 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2021-03-15 20:05 - 2021-03-15 20:07 - 000000804 _____ C:\Users\Andreas Ebner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-03-15 20:05 - 2021-03-15 20:05 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\ESET
2021-03-15 19:43 - 2021-03-15 19:54 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2021-03-15 19:43 - 2021-03-15 19:43 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\214197E3.sys
2021-03-15 19:21 - 2021-03-15 19:35 - 000000000 ___HD C:\$WINDOWS.~BT
2021-03-15 16:07 - 2021-03-15 17:25 - 000000000 ____D C:\ProgramData\HitmanPro
2021-03-15 15:52 - 2021-03-15 17:25 - 000000000 ____D C:\Users\Andreas Ebner\AppData\LocalLow\IGDump
2021-03-15 13:50 - 2021-01-07 10:18 - 001037824 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2021-03-15 13:50 - 2021-01-07 10:18 - 000187888 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2021-03-15 13:32 - 2021-03-15 13:32 - 000000000 ___HD C:\$Windows.~WS
2021-03-15 09:17 - 2021-03-15 09:18 - 000000000 ____D C:\ProgramData\EaseUS Todo PCTrans
2021-03-15 09:16 - 2021-03-15 09:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo PCTrans
2021-03-15 08:59 - 2021-03-15 08:59 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\DontSleep
2021-03-15 01:30 - 2021-03-15 01:30 - 000220616 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-03-15 00:48 - 2021-03-15 00:48 - 000000000 ____D C:\MATS
2021-03-14 23:11 - 2021-03-14 23:11 - 000002936 _____ C:\WINDOWS\system32\Tasks\IMF_SkipUAC_adm
2021-03-14 23:09 - 2021-03-15 22:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\OpenShell
2021-03-14 23:09 - 2021-03-14 23:09 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2021-03-14 23:09 - 2021-03-14 23:09 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\OpenShell
2021-03-14 19:02 - 2021-03-15 17:25 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\wureset
2021-03-14 19:02 - 2021-03-14 19:02 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Reset Windows Update Tool
2021-03-14 19:02 - 2021-03-14 19:02 - 000000000 ____D C:\Program Files\wureset
2021-03-14 18:51 - 2021-03-14 18:51 - 000000000 ___RD C:\Users\Andreas Ebner\Documents\Scanned Documents
2021-03-14 18:51 - 2021-03-14 18:51 - 000000000 ____D C:\Users\Andreas Ebner\Documents\Fax
2021-03-14 18:19 - 2021-03-14 18:19 - 000214174 _____ C:\Users\Andreas Ebner\Downloads\WindowsFirewall.diagcab
2021-03-14 17:24 - 2021-03-14 17:24 - 000002956 _____ C:\WINDOWS\system32\Tasks\IMF_SkipUAC_Andreas Ebner
2021-03-14 16:56 - 2021-03-14 16:56 - 008823656 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw08.sys
2021-03-14 16:56 - 2021-03-14 16:56 - 002673724 _____ C:\WINDOWS\system32\Drivers\Netwfw08.dat
2021-03-14 16:56 - 2021-03-14 16:56 - 001058152 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter08.dll
2021-03-14 16:55 - 2021-03-14 16:55 - 006161712 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\ibtusb.sys
2021-03-14 16:55 - 2021-03-14 16:55 - 000539440 _____ (Intel Corporation) C:\WINDOWS\system32\ibtsiva.exe
2021-03-14 16:55 - 2021-03-14 16:55 - 000441648 _____ (Intel Corporation) C:\WINDOWS\system32\ibtproppage.dll
2021-03-14 16:26 - 2021-03-14 16:26 - 000000000 ___HD C:\$SysReset
2021-03-14 13:16 - 2021-03-14 13:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2021-03-14 13:16 - 2021-03-14 13:16 - 000000000 ____D C:\Program Files\iPod
2021-03-13 09:38 - 2021-03-13 09:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-03-11 16:58 - 2021-03-11 16:58 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-03-11 16:58 - 2021-03-11 16:58 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-11 16:58 - 2021-03-11 16:58 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-03-11 16:58 - 2021-03-11 16:58 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-03-11 16:58 - 2021-03-11 16:58 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-03-11 16:58 - 2021-03-11 16:58 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-11 16:58 - 2021-03-11 16:58 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-11 16:58 - 2021-03-11 16:58 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-03-11 16:58 - 2021-03-11 16:58 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-03-11 16:58 - 2021-03-11 16:58 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-03-11 16:58 - 2021-03-11 16:58 - 000011359 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-27 21:35 - 2021-02-24 13:53 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-02-27 21:35 - 2021-02-24 13:53 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-02-27 21:35 - 2021-02-24 13:53 - 001452336 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-02-27 21:35 - 2021-02-24 13:53 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-02-27 21:35 - 2021-02-24 13:53 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-02-27 21:35 - 2021-02-24 13:53 - 001191728 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-02-27 21:35 - 2021-02-24 13:53 - 001094888 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-02-27 21:35 - 2021-02-24 13:53 - 001094888 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-02-27 21:35 - 2021-02-24 13:53 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-02-27 21:35 - 2021-02-24 13:53 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-02-27 21:35 - 2021-02-24 13:51 - 000678704 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-02-27 21:35 - 2021-02-24 13:51 - 000546096 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 002102576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 001587504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 001511192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 001163544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 000811824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 000671512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 000655664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 000556816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 008260880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 007391512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 004610320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 002729776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 001730864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6446172.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 001490200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6446172.dll
2021-02-27 21:35 - 2021-02-24 13:42 - 006072896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-02-24 14:49 - 2021-02-24 14:49 - 000162958 _____ C:\FolderDescriptions.reg
2021-02-24 14:35 - 2021-02-24 14:35 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\LockHunter
2021-02-24 14:35 - 2021-02-24 14:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LockHunter
2021-02-24 14:35 - 2021-02-24 14:35 - 000000000 ____D C:\Program Files\LockHunter
2021-02-24 11:28 - 2021-02-24 14:26 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileBot
2021-02-24 10:54 - 2021-02-24 10:54 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\FreeGrabApp
2021-02-24 10:54 - 2021-02-24 10:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeGrabApp
2021-02-24 10:54 - 2021-02-24 10:54 - 000000000 ____D C:\ProgramData\FreeGrabApp
2021-02-24 10:54 - 2021-02-24 10:54 - 000000000 ____D C:\Program Files (x86)\FreeGrabApp
2021-02-22 12:02 - 2021-02-22 12:02 - 000000000 ____D C:\Program Files\Malwarebytes
2021-02-22 11:46 - 2021-02-22 11:46 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\GUI.Win
2021-02-21 10:13 - 2021-02-24 17:12 - 000000000 ____D C:\Program Files\Loaris Trojan Remover
2021-02-21 10:13 - 2021-02-21 10:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Loaris Trojan Remover
2021-02-16 08:58 - 2021-02-16 08:58 - 000000000 ____D C:\Users\Andreas Ebner\Downloads\kann_man_bei_tvnow_herunterladen
2021-02-16 08:57 - 2021-02-16 08:57 - 000001877 _____ C:\Users\Andreas Ebner\Downloads\kann_man_bei_tvnow_herunterladen.zip
2021-02-14 13:01 - 2021-02-14 13:01 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\WhatsApp
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-03-16 12:40 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-16 12:37 - 2020-11-10 18:49 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\OpenShell
2021-03-16 12:25 - 2019-01-08 12:58 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-16 12:20 - 2020-01-22 11:59 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\vlc
2021-03-16 12:09 - 2020-11-10 18:46 - 001733632 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-16 12:09 - 2019-12-07 15:50 - 000748644 _____ C:\WINDOWS\system32\perfh007.dat
2021-03-16 12:09 - 2019-12-07 15:50 - 000151474 _____ C:\WINDOWS\system32\perfc007.dat
2021-03-16 12:09 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-16 12:04 - 2019-01-31 09:12 - 000000000 ____D C:\ProgramData\Mozilla
2021-03-16 12:03 - 2019-01-08 13:19 - 000000000 ____D C:\Users\Andreas Ebner\AppData\LocalLow\Mozilla
2021-03-16 12:02 - 2020-09-27 08:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-16 12:02 - 2020-09-27 06:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-16 12:02 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-16 11:32 - 2019-01-08 15:04 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\JDownloader 2.0
2021-03-16 11:29 - 2018-10-26 19:00 - 000000000 ____D C:\ProgramData\Acer
2021-03-16 11:28 - 2020-11-10 18:15 - 000000000 ____D C:\Users\Andreas Ebner
2021-03-16 11:25 - 2020-09-27 06:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-16 05:40 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-16 05:25 - 2019-01-08 16:04 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\CrashDumps
2021-03-16 01:34 - 2019-11-27 00:25 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\Apple Inc
2021-03-16 01:33 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-03-16 01:05 - 2020-08-16 22:53 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\Google
2021-03-16 01:05 - 2020-01-18 08:30 - 000000000 ____D C:\Program Files (x86)\Google
2021-03-16 01:04 - 2020-11-11 11:06 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\IObit
2021-03-16 01:04 - 2020-11-11 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 8
2021-03-16 01:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-03-16 01:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-03-16 01:02 - 2019-01-09 10:13 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-03-16 01:02 - 2018-10-26 18:59 - 000000000 ____D C:\ProgramData\OEM
2021-03-16 01:02 - 2018-10-26 18:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2021-03-16 01:02 - 2018-10-26 18:59 - 000000000 ____D C:\Program Files\Acer
2021-03-16 01:00 - 2020-11-10 18:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\CareCenter
2021-03-16 01:00 - 2019-01-08 21:55 - 000000000 ___HD C:\OEM
2021-03-15 22:27 - 2020-11-10 18:44 - 000004186 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{59980136-2A6A-449B-A722-C0892DAA3EB4}
2021-03-15 22:13 - 2019-03-23 09:24 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2021-03-15 22:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-03-15 21:48 - 2019-07-18 19:28 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2021-03-15 20:47 - 2020-09-27 08:53 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-15 20:12 - 2020-09-28 17:40 - 000000000 ____D C:\Users\Andreas Ebner\Documents\VlcpVideoV1.0.1
2021-03-15 19:43 - 2021-02-01 23:35 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-03-15 19:37 - 2020-11-11 11:06 - 000000000 ____D C:\ProgramData\IObit
2021-03-15 19:37 - 2020-11-11 11:06 - 000000000 ____D C:\Program Files (x86)\IObit
2021-03-15 19:21 - 2020-11-10 18:43 - 000001890 _____ C:\WINDOWS\diagwrn.xml
2021-03-15 19:21 - 2020-11-10 18:43 - 000001890 _____ C:\WINDOWS\diagerr.xml
2021-03-15 19:21 - 2020-11-10 17:42 - 000000000 ___DC C:\WINDOWS\Panther
2021-03-15 17:25 - 2020-11-10 18:15 - 000000000 ____D C:\Users\Administrator
2021-03-15 17:25 - 2020-04-15 14:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ChrisPC VideoTube Downloader Pro
2021-03-15 17:25 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-03-15 17:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Catroot2.bak
2021-03-15 17:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2021-03-15 17:25 - 2019-11-25 22:50 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\Backuptrans Android iPhone WhatsApp Transfer + (x64)
2021-03-15 17:25 - 2019-04-10 06:57 - 000000000 ____D C:\Users\Andreas Ebner\Desktop\RevoUninstallerProPortable
2021-03-15 17:25 - 2019-01-08 14:06 - 000000000 ____D C:\Program Files\Common Files\AV
2021-03-15 17:25 - 2018-10-26 19:10 - 000000000 ____D C:\ProgramData\Norton
2021-03-15 17:22 - 2020-11-10 17:20 - 000000000 ____D C:\WINDOWS\SoftwareDistribution.bak
2021-03-15 17:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2021-03-15 17:22 - 2019-01-11 17:16 - 000000000 __RHD C:\MSOCache
2021-03-15 16:40 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-15 15:33 - 2019-01-08 13:09 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\Packages
2021-03-15 14:05 - 2020-09-27 08:54 - 000000000 ____D C:\ProgramData\Packages
2021-03-15 14:05 - 2019-01-08 13:16 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\PlaceholderTileLogoFolder
2021-03-15 13:40 - 2020-08-10 15:52 - 000000000 ____D C:\ESD
2021-03-15 10:51 - 2019-01-11 09:19 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\D3DSCache
2021-03-15 10:49 - 2019-03-05 13:34 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\ElevatedDiagnostics
2021-03-15 10:22 - 2020-11-10 17:37 - 000000000 ___HD C:\$GetCurrent
2021-03-15 09:16 - 2019-04-14 19:23 - 000000000 ____D C:\ProgramData\SystemAcCrux
2021-03-15 08:40 - 2019-01-08 20:42 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-15 00:48 - 2019-01-08 20:37 - 000000000 ____D C:\Program Files\rempl
2021-03-15 00:32 - 2020-11-10 18:44 - 000000276 _____ C:\WINDOWS\WindowsUpdate.log.bak
2021-03-15 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-03-15 00:12 - 2019-03-23 09:58 - 000000000 ____D C:\Users\Administrator\AppData\Local\CrashDumps
2021-03-14 23:13 - 2019-06-28 23:34 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\Origin
2021-03-14 23:13 - 2019-01-09 00:06 - 000000000 ____D C:\ProgramData\Origin
2021-03-14 23:09 - 2019-03-23 09:24 - 000000000 ___RD C:\Users\Administrator\3D Objects
2021-03-14 17:35 - 2020-12-14 12:27 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-03-14 16:55 - 2019-08-30 17:35 - 000164600 _____ (Qualcomm Atheros, Inc.) C:\WINDOWS\system32\Drivers\e2xw10x64.sys
2021-03-14 15:14 - 2019-02-14 12:40 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\Apple Computer
2021-03-14 13:26 - 2018-10-26 18:47 - 001755928 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2021-03-14 13:01 - 2021-01-29 10:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-03-14 13:01 - 2019-01-08 14:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-03-14 04:27 - 2020-09-08 22:51 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\TeraCopy
2021-03-13 09:38 - 2019-01-08 14:53 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-03-11 17:11 - 2020-08-12 09:54 - 000000000 ____D C:\Users\Andreas Ebner\.fontconfig
2021-03-11 17:09 - 2020-09-27 06:50 - 000668760 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-03-11 16:54 - 2019-01-08 20:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-11 16:51 - 2019-02-04 17:42 - 000000000 ____D C:\Program Files\dotnet
2021-03-11 16:51 - 2019-01-11 17:17 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-03-11 16:51 - 2018-10-26 18:30 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-11 15:50 - 2020-08-20 00:43 - 000000000 ___HD C:\$WinREAgent
2021-03-10 23:12 - 2020-10-01 13:21 - 000000128 _____ C:\Users\Andreas Ebner\AppData\Roaming\winscp.rnd
2021-03-10 22:45 - 2019-01-08 15:08 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\NVIDIA
2021-03-09 22:05 - 2017-09-29 14:46 - 000000167 _____ C:\WINDOWS\win.ini
2021-03-08 19:34 - 2021-01-04 21:42 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\TunePat Netflix Video Downloader
2021-03-04 06:42 - 2020-11-28 07:58 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b788ddf1b3e0
2021-03-04 06:42 - 2020-09-27 08:52 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-03 19:20 - 2019-07-18 19:07 - 000000000 ____D C:\Program Files (x86)\Origin
2021-02-28 16:47 - 2020-12-29 07:59 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\TuneCable Spotify Downloader
2021-02-24 13:42 - 2020-10-15 14:51 - 007117744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-02-24 11:28 - 2020-09-28 22:09 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\FileBot
2021-02-24 02:51 - 2020-10-15 14:51 - 000061257 _____ C:\WINDOWS\system32\nvinfo.pb
2021-02-23 22:53 - 2020-04-03 22:36 - 005627248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-02-23 22:53 - 2020-04-03 22:36 - 002635632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2021-02-23 22:53 - 2020-04-03 22:36 - 001758064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2021-02-23 22:53 - 2020-04-03 22:36 - 000990064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2021-02-23 22:53 - 2020-04-03 22:36 - 000120176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2021-02-23 22:53 - 2020-04-03 22:36 - 000082288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2021-02-23 01:14 - 2020-06-13 20:25 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\SFDL.NET 3
2021-02-22 12:03 - 2021-02-01 23:36 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-02-20 23:19 - 2020-08-15 02:05 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-15 13:46 - 2019-05-02 10:09 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\RenPy
2021-02-14 14:58 - 2020-03-05 14:41 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\WhatsApp
2021-02-14 13:01 - 2020-03-05 14:41 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2021-02-14 13:01 - 2020-03-05 14:41 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\SquirrelTemp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2020-03-17 14:20 - 2020-03-17 14:20 - 000000171 _____ () C:\Users\Andreas Ebner\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2019-04-28 21:44 - 2019-10-28 10:49 - 000000047 _____ () C:\Users\Andreas Ebner\AppData\Roaming\sysvar
2020-10-01 13:21 - 2021-03-10 23:12 - 000000128 _____ () C:\Users\Andreas Ebner\AppData\Roaming\winscp.rnd
2019-10-09 10:44 - 2019-12-16 12:38 - 000000458 _____ () C:\Users\Andreas Ebner\AppData\Local\Tempcheckcoverage_cookie.txt
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-03-2021
durchgeführt von Andreas Ebner (16-03-2021 12:40:26)
Gestartet von I:\
Windows 10 Home Version 20H2 19042.867 (X64) (2020-11-10 17:44:26)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-4274780374-310312604-1853351802-500 - Administrator - Enabled) => C:\Users\Administrator
Andreas Ebner (S-1-5-21-4274780374-310312604-1853351802-1001 - Administrator - Enabled) => C:\Users\Andreas Ebner
DefaultAccount (S-1-5-21-4274780374-310312604-1853351802-503 - Limited - Disabled)
Gast (S-1-5-21-4274780374-310312604-1853351802-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-4274780374-310312604-1853351802-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
AltServer (HKLM-x32\...\{F6FFD3DD-A872-4F18-BD81-334A52EF9BFE}) (Version: 1.4.1 - Riley Testut)
Amazon Music (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Amazon Amazon Music) (Version: 7.12.0.2203 - Amazon.com Services LLC)
Anti-Twin (Installation 04.03.2019) (HKLM-x32\...\Anti-Twin 2019-03-04 18.17.18) (Version: - Joerg Rosenthal, Germany)
AnyTrans (HKLM-x32\...\AnyTrans) (Version: 8.1.0.0 - iMobie Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{CCA8C50D-785B-4896-8675-FFE0C4ECCBC3}) (Version: 8.7 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{75BEF7E8-4370-4D42-94F3-B5AA77057965}) (Version: 8.7 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{F9CEF01A-3907-4614-824F-CF5D3E4675EF}) (Version: 14.1.0.35 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Auto FTP Manager 7 (HKLM-x32\...\Auto FTP Manager 7_is1) (Version: - DeskShare Inc.)
Avidemux VC++ 64bits (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\{8a390b8c-33a4-488b-adb2-1c204cadb2b7}) (Version: 2.7.5 - Mean)
AVS Audio Converter 9.1.2 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 9.1.2.600 - Online Media Technologies Ltd.)
Backuptrans Android iPhone WhatsApp Transfer + (x64) 3.2.129 (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Backuptrans Android iPhone WhatsApp Transfer + (x64)) (Version: 3.2.129 - Backuptrans)
BaZnGa IPTV M3U Editor version 1.2.0.60 (HKLM-x32\...\{24E17CFF-94B3-46A8-B7A6-2EDACB841E03}_is1) (Version: 1.2.0.60 - BaZnGa IPTV)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.260.0.1032 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon Easy-PhotoPrint Editor (HKLM-x32\...\Canon Easy-PhotoPrint Editor) (Version: 1.5.5 - Canon Inc.)
Canon PosterArtist Lite (HKLM-x32\...\{6C3D298C-B03A-49B9-863E-8E6D182033BB}) (Version: 2.99.00.001 - Ihr Firmenname) Hidden
Canon PosterArtist Lite (HKLM-x32\...\Canon PosterArtist Lite) (Version: 3.20.00 - Canon Inc.)
ChrisPC VideoTube Downloader Pro 12.03.31 (HKLM-x32\...\{6006089C-84B5-4F18-8113-9876543210ED}_is1) (Version: - Chris P.C. srl)
CopyTrans Control Center nur deinstallieren (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\CopyTrans Suite) (Version: 4.100 - WindSolutions)
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
Crucial Storage Executive (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Crucial Storage Executive 3.60.082018.04) (Version: 3.60.082018.04 - Crucial)
Directory List & Print (Pro) (HKLM-x32\...\{6336F23D-1D20-4E02-9FBD-20B3A8210E4D}_is1) (Version: 4.11 - Infonautics GmbH, Switzerland)
Directory List & Print Pro 4.11 (HKLM-x32\...\Directory List & Print Pro 4.11) (Version: 4.11 - Infonautics)
EaseUS Todo PCTrans 11.8 (HKLM-x32\...\EaseUS Todo PCTrans_is1) (Version: - EaseUS)
ExifCleaner 3.1.0 (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\8457e380-8acb-5e7f-a000-5966971ba7cc) (Version: 3.1.0 - szTheory)
FFMPEG Addon (HKLM-x32\...\{111124AF-1ED4-44EF-B674-111111985342}_is1) (Version: 1.00 - FFMPEG)
FileBot (HKLM\...\{3154A34A-121F-49A4-92E3-BB977772C397}) (Version: 4.9.3 - Reinhard Pointner)
FileZilla Client 3.50.0 (HKLM-x32\...\FileZilla Client) (Version: 3.50.0 - Tim Kosse)
FlixGrab version 5.1.11.217 (HKLM-x32\...\FlixGrab_is1) (Version: 5.1.11.217 - FreeGrabApp Ltd)
FLV-Media-Player (HKLM-x32\...\{AB7A5DBA-BC45-489A-B4D2-2E8F8CABB9EA}) (Version: 2.0.3.2532 - HYBRIDWEB.de)
Folder Size (64-bit) (HKLM\...\{F24FF688-7138-4CCF-A83F-71E9FB01170E}) (Version: 2.6 - Brio)
FonePaw 6.2.0 (HKLM-x32\...\{77B09C3A-839E-4ea7-81BA-E5864F6BF388}_is1) (Version: 6.2.0 - FonePaw)
Free M4a to MP3 Converter 9.7 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version: - ManiacTools.com)
GetFLV 13.8558.858 (HKLM-x32\...\GetFLV_is1) (Version: - GetFLV, Inc.)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.1868.0 - Rockstar Games)
H2rename (HKLM-x32\...\H2rename) (Version: 0.7.4 - c't Magazin für Computertechnik)
iCloud (HKLM\...\{8808B208-87D1-4725-8192-76D257E9DEAE}) (Version: 7.21.0.23 - Apple Inc.)
IJ Network Device Setup Utility (HKLM-x32\...\IJ Network Device Setup Utility) (Version: 1.10.0 - Canon Inc.)
iMazing 2.7.5.0 (HKLM\...\iMazing_is1) (Version: 2.7.5.0 - DigiDNA)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1805.12.0.1097 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000000-0210-1031-84C8-B8D95FA3C8C3}) (Version: 21.00.0.4 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{ed99f619-885c-48d6-b971-0bc85013cd92}) (Version: 10.1.18010.8141 - Intel(R) Corporation)
IP-TV Player 49.4 (HKLM-x32\...\IP-TV_Player) (Version: 49.4 - ADSL Club Co Ltd)
IPTV Smarters Player 3.0.0 (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\fee38e36-bd5c-5f8c-a4c4-29d7f942a22c) (Version: 3.0.0 - IPTV Smarters Player)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
ISO to USB (HKLM-x32\...\{D08A30AC-A663-4EA8-8D81-B98E17F19F1C}_is1) (Version: - isotousb.com)
iTunes (HKLM\...\{DE0F48FE-04C1-4646-AA58-2BE7A1A58742}) (Version: 12.11.0.26 - Apple Inc.)
Jihosoft iTunes Backup Unlocker version 3.0.4.0 (HKLM-x32\...\{3274F1E0-E2AC-4CA5-883C-6DF994D4C172}_is1) (Version: 3.0.4.0 - Jihosoft Studio)
Killer Performance Driver Suite (HKLM\...\{CF4699BC-19FA-4FDC-A16F-E2A340622F8A}) (Version: 1.5.1852 - Rivet Networks)
Kodi (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Kodi) (Version: - XBMC-Foundation)
Leawo Blu-ray Player Version 2.2.0.0 (HKLM-x32\...\{CF7F52BF-DEE0-44CD-A7E1-AADD5CCECCDD}_is1) (Version: 2.2.0.0 - Leawo Software)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Loaris Trojan Remover 3.1.60 (HKLM\...\{29988DC6-9C4A-49B2-AC86-5C380B29ADB9}_is1) (Version: 3.1.60 - Loaris Inc.)
LockHunter 3.3, 32/64 bit (HKLM\...\LockHunter_is1) (Version: - Crystal Rich Ltd)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft .NET Core SDK 2.2.103 (x64) (HKLM-x32\...\{730ee99f-7165-41f7-b107-ced51cbb0c19}) (Version: 2.2.103 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.54 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4274780374-310312604-1853351802-500\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29112 (HKLM-x32\...\{be826f5f-eda5-45a2-a3fe-c2cb5c1b9842}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.13 (x64) (HKLM-x32\...\{df32638d-0722-47cb-b084-3dd851b1146e}) (Version: 3.1.13.29816 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Movavi Video Converter 20 Premium (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Movavi Video Converter 20 Premium) (Version: 20.2.1 - Movavi)
Mozilla Firefox 86.0.1 (x64 de) (HKLM\...\Mozilla Firefox 86.0.1 (x64 de)) (Version: 86.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 85.0.2 - Mozilla)
Mp3tag v3.02 (HKLM-x32\...\Mp3tag) (Version: 3.02 - Florian Heidenreich)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
NVIDIA FrameView SDK 1.1.4923.29548709 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29548709 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.21.0.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.21.0.36 - NVIDIA Corporation)
NVIDIA Grafiktreiber 461.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.72 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Open-Shell (HKLM\...\{1CAB353D-D3F9-4C5D-A305-33D7BF270F1B}) (Version: 4.4.142 - The Open-Shell Team)
Oracle VM VirtualBox 6.1.18 (HKLM\...\{B1B2878D-9F1A-4403-84E7-6378D7D43C83}) (Version: 6.1.18 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.94.46774 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PassFab iPhone Unlocker 2.1.4.8 (HKLM-x32\...\{PassFab iPhone Unlocker}_is1) (Version: 2.1.4.8 - PassFab, Inc.)
PhotoStage Diashow-Programm (HKLM-x32\...\PhotoStage) (Version: 7.09 - NCH Software)
Pixillion Bildkonverter (HKLM-x32\...\Pixillion) (Version: 7.25 - NCH Software)
PredatorSense Service (HKLM\...\{8D399C7A-8693-4BDE-9D22-D43CBB8BBF62}) (Version: 3.00.3136 - Acer Incorporated)
Reset Windows Update Tool (HKLM\...\Reset Windows Update Tool11.0.0.9) (Version: 11.0.0.9 - Manuel Gil)
Revo Uninstaller Pro (HKLM\...\Revo Uninstaller Pro) (Version: - VS Revo Group)
Revo Uninstaller Pro 4.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.5 - VS Revo Group, Ltd.)
RGSS-RTP Standard (HKLM-x32\...\{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}) (Version: 1.0.0 - Enterbrain)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.17.199 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
SopCast 4.2.0 (HKLM-x32\...\SopCast) (Version: 4.2.0 - www.sopcast.com)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.7.55254 - Electronic Arts)
Sticky Password 8.2.3.43 (HKLM-x32\...\Sticky Password_is1) (Version: 8.2 - Lamantine Software)
Telegram Desktop version 2.5.1 (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.5.1 - Telegram FZ-LLC)
TeraCopy version 3.4 beta (HKLM\...\TeraCopy_is1) (Version: 3.4 beta - Code Sector)
Thunderbolt™ Software (HKLM-x32\...\{6ECDE40C-4023-419A-8A4E-50FB71275876}) (Version: 17.3.73.350 - Intel Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52 - Ghisler Software GmbH)
Trust GXT 155 Gaming Mouse version 1.2 (HKLM-x32\...\{A523DAD0-3DF2-4FFB-9B36-58A4C2600EDD}_is1) (Version: 1.2 - TRUST)
TuneCable Spotify Downloader 1.2.0 (HKLM-x32\...\TuneCable Spotify Downloader) (Version: 1.2.0 - TuneCable)
TunePat Amazon Music Converter version 1.34 (HKLM-x32\...\{51244439-F4C9-2020-6666-90091911AAA}_is1) (Version: 1.34 - )
TunePat Netflix Video Downloader 1.4.1 (HKLM-x32\...\TunePat Netflix Video Downloader) (Version: 1.4.1 - TunePat)
TunSetupVPNU (HKLM\...\{3E4BC5B7-104F-40B3-BEC4-9CEF0BCD0EF8}) (Version: 1.0.0 - Keepsolid Inc.)
TV-Browser 4.2 (HKLM\...\tvbrowser-full) (Version: 4.2 - TV-Browser Team)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0407-0000-0000000FF1CE}_Office15.PROPLUS_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
VEGAS Pro 17.0 (HKLM\...\{8D4A5730-17CF-11EA-B57F-00155D6302F2}) (Version: 17.0.387 - VEGAS)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
VLC media player 3.0.8 (64-bit) (HKLM\...\{34A66242-34A2-4049-9808-1A693370FACE}) (Version: 3.0.8.0 - VideoLAN)
VPN Unlimited 8.3.1 (HKLM-x32\...\{DC24521E-872B-41AF-93EA-FE477902D6FB}_is1) (Version: 8.3.1 - KeepSolid Inc.)
WATCHED 0.18.0 (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\6811d8ec-23f6-5ad3-9bb7-0e515c178d2a) (Version: 0.18.0 - WATCHED AG)
WhatsApp (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\WhatsApp) (Version: 2.2102.9 - WhatsApp)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinRAR 5.91 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinSCP 5.17.9 (HKLM-x32\...\winscp3_is1) (Version: 5.17.9 - Martin Prikryl)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
Wondershare UniConverter(Build 11.7.0.3) (HKLM-x32\...\UniConverter_is1) (Version: 11.7.0.3 - Wondershare Software)
Packages:
=========
@{Microsoft.XboxDevices_300.1809.28002.0_x64__8wekyb3d8bbwe?ms-resource://Microsoft.XboxDevices/Resources/LandingPageTitle/Text} -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_300.1809.28002.0_x64__8wekyb3d8bbwe [2019-03-23] (0)
Acer Collection -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCollection_1.1.3013.0_x64__48frkmn4z8aw4 [2021-03-15] (Acer Incorporated)
Acer Product Registration -> C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4 [2021-03-15] (Acer Incorporated)
Amazon Assistant -> C:\Program Files\WindowsApps\Amazon.com.AmazonAssistant_10.1910.9.0_neutral__343d40qqvtj1t [2021-03-15] (Amazon.com)
Best Player -> C:\Program Files\WindowsApps\2949193320E78.BestPlayer8.1_7.1.5.0_x64__pg6a145mvhp7p [2021-03-15] (marios g.)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2021-03-15] (Canon Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.7.337.0_x64__rz1tebttyb220 [2021-03-15] (Dolby Laboratories)
Dolby Atmos for Headphones -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAtmosforHeadphones_2.3.303.0_x64__rz1tebttyb220 [2021-03-15] (Dolby Laboratories)
DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2020.4.45.0_x64__t5j2fzbtdg37r [2021-03-15] (DTS, Inc.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2021-03-15] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-15] (Microsoft Corporation) [MS Ad]
Microsoft-Remotedesktop -> C:\Program Files\WindowsApps\Microsoft.RemoteDesktop_10.2.1701.0_x64__8wekyb3d8bbwe [2021-03-15] (Microsoft Corporation)
MyIPTV Player -> C:\Program Files\WindowsApps\41879VbfnetApps.MyIPTVPlayer_4.2.5.0_x64__7casf8sqhfy78 [2021-03-15] (Vbfnet Apps) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-03-15] (Netflix, Inc.)
Netzkino -> C:\Program Files\WindowsApps\35124netzkino.Netzkino_3.3.1.1_neutral__843rhjq2hbnd4 [2021-03-15] (netzkino) [MS Ad]
PDF Reader - Ansehen, Kommentieren, Teilen -> C:\Program Files\WindowsApps\0D9A1B2D.PDFReaderUWP_1.11.0.0_x64__jhretta7p24aw [2021-03-15] (Kdan Mobile Software Ltd.)
PhotoDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PhotoDirectorforacerDesktop_8.0.5229.0_x64__ypz87dpxkv292 [2021-03-15] (CYBERLINK COM CORP)
PowerDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PowerDirectorforacerDesktop_14.0.4304.0_x64__ypz87dpxkv292 [2021-03-15] (CYBERLINK COM CORP)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2021-03-16] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0 [2021-03-15] (Spotify AB) [Startup Task]
Übersetzer -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2021-03-16] (Microsoft Corporation)
Waves MaxxAudio For Acer -> C:\Program Files\WindowsApps\WavesAudio.20761030F5EAC_1.0.67.0_x64__fh4rh281wavaa [2021-03-15] (Waves Audio)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-4274780374-310312604-1853351802-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Keine Datei
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Open-Shell\ClassicExplorer64.dll [2019-10-26] (Open-Shell) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Open-Shell\ClassicExplorer64.dll [2019-10-26] (Open-Shell) [Datei ist nicht signiert]
ContextMenuHandlers1: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2021-01-04] (Loaris, LLC -> Loaris Inc.)
ContextMenuHandlers1: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2019-11-29] (Crystal Rich Ltd -> TODO: <Company name>)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [Datei ist nicht signiert]
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2020-09-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2017-12-18] (Online Media Technologies Ltd. -> Online Media Technologies Ltd.) [Datei ist nicht signiert]
ContextMenuHandlers1: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => c:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2021-01-04] (Loaris, LLC -> Loaris Inc.)
ContextMenuHandlers2: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2019-11-29] (Crystal Rich Ltd -> TODO: <Company name>)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Keine Datei
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [Datei ist nicht signiert]
ContextMenuHandlers2: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => c:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-22] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> )
ContextMenuHandlers4: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2021-01-04] (Loaris, LLC -> Loaris Inc.)
ContextMenuHandlers4: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2019-11-29] (Crystal Rich Ltd -> TODO: <Company name>)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [Datei ist nicht signiert]
ContextMenuHandlers4: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => c:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2021-02-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2021-01-04] (Loaris, LLC -> Loaris Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-22] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2019-10-26] (Open-Shell) [Datei ist nicht signiert]
ContextMenuHandlers6: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => c:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\system32\xvidvfw.dll [139264 2004-07-03] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\system32\lagarith.dll [216064 2011-12-07] () [Datei ist nicht signiert]
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\Andreas Ebner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Reset Windows Update Tool\reset-settings.lnk -> C:\Program Files\wureset\wureset\bin\reset-settings.bat ()
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2019-07-24 02:15 - 2019-07-24 02:15 - 000100352 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\driverMgr4Transfer.dll
2019-06-26 07:07 - 2019-06-26 07:07 - 001515008 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\DuiLib.dll
2018-03-15 01:55 - 2018-03-15 01:55 - 001487360 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\exiv2.dll
2018-03-15 01:55 - 2018-03-15 01:55 - 000104448 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\expat.dll
2019-07-23 10:11 - 2019-07-23 10:11 - 000034304 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\generalFunc.dll
2018-12-29 03:51 - 2018-12-29 03:51 - 001042432 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libandroidrecovery.dll
2018-12-26 09:00 - 2018-12-26 09:00 - 004554857 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libexiv2.dll
2018-12-26 09:00 - 2018-12-26 09:00 - 000121524 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libgcc_s_dw2-1.dll
2019-04-09 04:02 - 2019-04-09 04:02 - 013525412 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libheic.dll
2017-10-30 01:42 - 2017-10-30 01:42 - 001970688 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libplist.dll
2018-12-26 09:00 - 2018-12-26 09:00 - 000594944 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libsscan.dll
2018-12-26 09:00 - 2018-12-26 09:00 - 001544523 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libstdc++-6.dll
2019-07-09 07:09 - 2019-07-09 07:09 - 000791552 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\sqlite3.dll
2017-10-30 01:41 - 2017-10-30 01:41 - 000066048 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\zlib1.dll
2020-08-21 19:48 - 2020-12-24 12:48 - 001980928 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\VPN Unlimited\vpnu_private_sdk.dll
2020-08-16 22:22 - 2018-03-08 02:48 - 002286592 _____ (Digia Plc and/or its subsidiary(-ies)) [Datei ist nicht signiert] C:\Users\Andreas Ebner\AppData\Local\Amazon Music\QtCore4.dll
2020-08-16 22:22 - 2018-03-08 02:52 - 006324224 _____ (Digia Plc and/or its subsidiary(-ies)) [Datei ist nicht signiert] C:\Users\Andreas Ebner\AppData\Local\Amazon Music\QtGui4.dll
2020-08-16 22:22 - 2018-03-08 02:49 - 000808448 _____ (Digia Plc and/or its subsidiary(-ies)) [Datei ist nicht signiert] C:\Users\Andreas Ebner\AppData\Local\Amazon Music\QtNetwork4.dll
2020-07-11 10:28 - 2020-07-11 10:28 - 000398336 _____ (Florian Heidenreich) [Datei ist nicht signiert] C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll
2017-10-30 09:06 - 2017-10-30 09:06 - 000065693 _____ (MingW-W64 Project. All rights reserved.) [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libwinpthread-1.dll
2018-12-26 09:00 - 2018-12-26 09:00 - 000086070 _____ (Open Source Software community project) [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\pthreadVC2.dll
2019-10-26 18:31 - 2019-10-26 18:31 - 003388928 _____ (Open-Shell) [Datei ist nicht signiert] C:\Program Files\Open-Shell\StartMenuDLL.dll
2019-10-26 18:31 - 2019-10-26 18:31 - 000312832 _____ (Open-Shell) [Datei ist nicht signiert] C:\WINDOWS\system32\StartMenuHelper64.dll
2017-10-30 01:39 - 2017-10-30 01:39 - 001374720 _____ (Pizzolato Davide - www.xdp.it) [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\cximage.dll
2018-12-26 09:00 - 2018-12-26 09:00 - 000360448 _____ (The curl library, hxxps://curl.haxx.se/) [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libcurl.dll
2020-08-21 19:48 - 2020-10-12 13:23 - 000361984 _____ (The curl library, hxxps://curl.haxx.se/) [Datei ist nicht signiert] C:\Program Files (x86)\VPN Unlimited\libcurl.dll
2018-12-26 09:00 - 2018-12-26 09:00 - 002106880 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libcrypto-1_1.dll
2018-12-26 09:00 - 2018-12-26 09:00 - 000370176 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\libssl-1_1.dll
2020-09-15 22:58 - 2020-10-29 20:22 - 001282048 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\LIBEAY32.dll
2020-09-15 23:00 - 2020-10-29 20:22 - 000279040 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\ssleay32.dll
2020-08-21 19:48 - 2020-10-12 13:23 - 002516480 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\VPN Unlimited\libcrypto-1_1.dll
2020-08-21 19:48 - 2020-10-12 13:23 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\VPN Unlimited\libssl-1_1.dll
2020-09-15 22:59 - 2020-10-29 20:22 - 001611264 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\platforms\qwindows.dll
2021-03-03 19:20 - 2020-10-29 20:22 - 005487104 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Core.dll
2021-03-03 19:20 - 2020-10-29 20:22 - 005841920 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Gui.dll
2021-03-03 19:20 - 2020-10-29 20:22 - 001179136 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Network.dll
2021-03-03 19:20 - 2020-10-29 20:22 - 000146432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5WebSockets.dll
2021-03-03 19:20 - 2020-10-29 20:22 - 005089792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Widgets.dll
2021-03-03 19:20 - 2020-10-29 20:22 - 000184832 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files (x86)\Origin\Qt5Xml.dll
2019-07-26 02:39 - 2019-07-26 02:39 - 001324544 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\androidSyncCore.dll
2019-07-23 10:11 - 2019-07-23 10:11 - 000016896 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\Program Files (x86)\Anvsoft\Syncios\geneLog.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
HKU\S-1-5-21-4274780374-310312604-1853351802-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-4274780374-310312604-1853351802-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-4274780374-310312604-1853351802-1001 -> DefaultScope {4EEB31BA-3146-4404-A4BB-0DC2183D439F} URL =
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\download.microsoft.com -> hxxp://download.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\download.windowsupdate.com -> hxxp://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\download.windowsupdate.com -> hxxps://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\microsoft.com -> hxxp://ntservicepack.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\ntservicepack.microsoft.com -> hxxp://ntservicepack.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\update.microsoft.com -> hxxp://update.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\update.microsoft.com -> hxxps://update.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\windows.com -> hxxp://wustat.windows.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\windowsupdate.com -> hxxp://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\windowsupdate.com -> hxxps://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\windowsupdate.microsoft.com -> hxxp://windowsupdate.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\ws.microsoft.com -> hxxp://ws.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\ws.microsoft.com -> hxxps://ws.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\wustat.windows.com -> hxxp://wustat.windows.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2017-09-29 14:46 - 2021-03-16 11:30 - 000000027 _____ C:\WINDOWS\system32\drivers\etc\hosts
2019-02-15 09:10 - 2019-03-28 20:19 - 000000575 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
137.1 LAPTOP-CQ0D7NOI.mshome.net # 2024 2 3 14 21 53 0 667
67
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\;D:\Program Files\Crucial\Crucial Storage Executive;D:\Program Files\FileBot\;C:\Program Files\wureset
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Acer01.jpg
HKU\S-1-5-21-4274780374-310312604-1853351802-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 0) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
mpsdrv => Firewall Dienst läuft nicht.
MpsSvc => Firewall Dienst läuft nicht.
Network Binding:
=============
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
WLAN: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\StartupFolder: => "WSAndroidAppHelper.lnk"
HKLM\...\StartupApproved\StartupFolder: => "WSAppHelper.lnk"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "Updater"
HKLM\...\StartupApproved\Run32: => "FonePaw iPhone Data RecoveryAppService"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant"
HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\StartupApproved\Run: => "iFunBox"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{504402C0-952F-43EF-8E92-3F7B494941C6}C:\users\andreas ebner\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\andreas ebner\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [TCP Query User{F321F72E-D15F-4012-BD26-99FC953B991F}C:\users\andreas ebner\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\andreas ebner\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{C308C176-7726-472E-A6D3-4D14FF86E95B}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{C9C87789-19DD-4CEB-8199-2324C1D34A74}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{7F5E33CD-D8FE-4335-B002-28A1AA13F765}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{974B154B-686B-4BFF-B8F8-D5059C942E48}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7EA265A9-CD3A-4A75-A653-065FDECEDEF0}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FA82174D-2136-48A4-93AF-464DEAE2A526}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CDB1787E-2228-4DE9-816A-1D10D10ED1C6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B1AA56EC-038D-4AEC-BDF9-D8E4FCD372FC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7F9595A6-5D8E-419E-B44A-10CFC3FAAC76}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7DC9EFC8-BCAE-4351-9F5F-5E698AC8DFDB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{85049C95-D2F1-4C35-BDEF-E6AC2E2B81D3}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C1ED1D87-8906-4CBF-A6F8-D2C6BD0D7CCD}] => (Allow) D:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6421B682-71C8-4C87-8E94-BCDD8774E943}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9C2B70AD-2599-41B0-900E-BC9CA4BDA98A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{230044A1-D40D-4D65-90A9-B1C04DA2488C}D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe] => (Allow) D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe (DeskShare, Inc. -> Deskshare) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{93ED4EA9-752A-4658-8C2C-DBCAB7FAFD5D}D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe] => (Allow) D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe (DeskShare, Inc. -> Deskshare) [Datei ist nicht signiert]
FirewallRules: [{D8F6F522-01F6-41C5-8F04-D445521655B4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{471A910C-1C07-45DC-9282-7F3C817F7676}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{AD9F8D1C-551C-452B-A140-7EB8AA6885E1}C:\users\andreas ebner\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\andreas ebner\appdata\roaming\spotify\spotify.exe => Keine Datei
FirewallRules: [UDP Query User{09A405AF-CECE-48DF-9E23-424BFBD7A102}C:\users\andreas ebner\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\andreas ebner\appdata\roaming\spotify\spotify.exe => Keine Datei
FirewallRules: [TCP Query User{77348E8A-FECF-47A0-926C-A8F2E1D71D82}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{0606A3BD-8835-415D-8230-684493986A4C}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{D2CC1932-B4DE-4FB4-95C2-50DA9BEF0C82}] => (Allow) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe (KeepSolid Inc.) [Datei ist nicht signiert]
FirewallRules: [{034B9D54-D114-480C-985A-A06AC78A31A9}] => (Allow) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe (KeepSolid Inc.) [Datei ist nicht signiert]
FirewallRules: [{0D59503D-DABC-4F18-9B62-A11125322336}] => (Allow) C:\Program Files (x86)\VPN Unlimited\openvpn.exe (The OpenVPN Project) [Datei ist nicht signiert]
FirewallRules: [{0BE3BD1D-CEB0-4486-8ED8-B8277AF819C2}] => (Allow) C:\Program Files (x86)\VPN Unlimited\openvpn.exe (The OpenVPN Project) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{9BB26EA8-81AF-4DCA-A450-40F08F4B3501}D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe] => (Allow) D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe (DeskShare, Inc. -> Deskshare) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{1F58E78B-56C4-484C-B201-879918FE2CEC}D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe] => (Allow) D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe (DeskShare, Inc. -> Deskshare) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{F3A83457-800B-42CB-8F4E-F8221A16B471}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{FA909C65-FD5D-4D63-801F-906C19524937}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{EF7EE8BF-BA7A-4589-8BE3-D95C8F63670D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DC01363B-1D0C-4BC9-812B-12C937672184}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A271A209-5186-48DA-A04E-962F42AD35C8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DFA3C712-AEA9-4951-BC85-D6149F0A6045}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EE212E3E-1AB9-4E16-87E1-234CA36CF825}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0DFF5CD9-7E6C-450C-B563-E2C3877AB4AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{387B5492-B444-4EB0-93C4-C529C69C7574}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9E0B902D-DF22-469E-85E6-A8CB3C5F828E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1D5F0B76-73F3-46B3-971F-7ABE1B5FEE73}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{BA76399B-5053-4C70-B6E9-51F9B00E58A7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe => Keine Datei
FirewallRules: [{9E81686D-01A4-48A0-ADD8-0ACF4CFC74B4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{18CA7050-E930-454E-8066-AE8D9A220381}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B8A3BD51-9E47-48B3-B927-6C01AE14439F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{532B3716-B10F-42C1-95D1-0AEFC089EEBF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{B0B12BF1-ACA2-471F-8BDF-CBBE8F3D69E8}E:\musik\stick kodi lastship destiny\kodi\kodi.exe] => (Allow) E:\musik\stick kodi lastship destiny\kodi\kodi.exe => Keine Datei
FirewallRules: [UDP Query User{E2EA3F2A-793B-46C4-8021-01F186EA13F5}E:\musik\stick kodi lastship destiny\kodi\kodi.exe] => (Allow) E:\musik\stick kodi lastship destiny\kodi\kodi.exe => Keine Datei
==================== Wiederherstellungspunkte =========================
15-03-2021 19:36:56 Revo Uninstaller Pro's restore point - IObit Malware Fighter 8
15-03-2021 19:40:34 Revo Uninstaller Pro's restore point - Java 8 Update 281 (64-bit)
15-03-2021 19:40:45 Removed Java 8 Update 281 (64-bit)
15-03-2021 19:56:49 JRT Pre-Junkware Removal
15-03-2021 21:43:10 Revo Uninstaller Pro's restore point - MegaTrainer Ultimate Version 2.4.2.1
15-03-2021 21:43:58 Revo Uninstaller Pro's restore point - Audials 2020
15-03-2021 21:45:44 Revo Uninstaller Pro's restore point - Audacity 2.3.3
15-03-2021 21:47:13 Revo Uninstaller Pro's restore point - TAP-Windows 9.21.2
15-03-2021 21:48:00 Revo Uninstaller Pro's restore point - Need for Speed™ Heat
15-03-2021 21:48:48 Revo Uninstaller Pro's restore point - MediaMonkey 4.1
15-03-2021 21:50:21 Revo Uninstaller Pro's restore point - VdhCoApp 1.3.0
15-03-2021 21:51:02 Revo Uninstaller Pro's restore point - Office 2019 KMS Activator Ultimate 1.5
16-03-2021 01:00:38 Removed Acer Configuration Manager
16-03-2021 01:01:20 Removed Acer Jumpstart
16-03-2021 01:02:30 Removed Adobe Acrobat Reader DC - Deutsch.
16-03-2021 09:20:23 AdwCleaner_BeforeCleaning_16/03/2021_09:20:22
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Intel High Definition DSP
Description: Intel High Definition DSP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (03/16/2021 12:02:12 PM) (Source: MBAMIService) (EventID: 0) (User: )
Description: Event-ID 0
Error: (03/16/2021 12:02:12 PM) (Source: MBAMIService) (EventID: 0) (User: )
Description: Event-ID 0
Error: (03/16/2021 11:32:07 AM) (Source: MBAMIService) (EventID: 0) (User: )
Description: Event-ID 0
Error: (03/16/2021 11:32:07 AM) (Source: MBAMIService) (EventID: 0) (User: )
Description: Event-ID 0
Error: (03/16/2021 11:28:39 AM) (Source: MBAMIService) (EventID: 0) (User: )
Description: Event-ID 0
Error: (03/16/2021 11:28:39 AM) (Source: MBAMIService) (EventID: 0) (User: )
Description: Event-ID 0
Error: (03/16/2021 09:28:46 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm firefox.exe Version 86.0.1.7739 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 18a0
Startzeit: 01d71a3d6fdff073
Beendigungszeit: 4294967295
Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe
Bericht-ID: 12cdbc44-db6d-4572-a0b6-84110a1843ec
Vollständiger Name des fehlerhaften Pakets:
Relative Anwendungs-ID des fehlerhaften Pakets:
Absturztyp: Top level window is idle
Error: (03/16/2021 09:19:14 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm firefox.exe Version 86.0.1.7739 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 276c
Startzeit: 01d719fc23afcf82
Beendigungszeit: 4294967295
Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe
Bericht-ID: 0ea72782-433d-4409-9b32-44a3f4221944
Vollständiger Name des fehlerhaften Pakets:
Relative Anwendungs-ID des fehlerhaften Pakets:
Absturztyp: Top level window is idle
Systemfehler:
=============
Error: (03/16/2021 12:02:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "SecurityServiceMonitor" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (03/16/2021 12:01:59 PM) (Source: iaStorAC) (EventID: 4102) (User: )
Description: Error log: Smart event occured on disk :98DKSETUS
Error: (03/16/2021 12:02:11 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 16.03.2021 um 11:32:06 unerwartet heruntergefahren.
Error: (03/16/2021 11:32:07 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "SecurityServiceMonitor" wurde aufgrund folgenden Fehlers nicht gestartet:
Das System kann die angegebene Datei nicht finden.
Error: (03/16/2021 11:31:55 AM) (Source: iaStorAC) (EventID: 4102) (User: )
Description: Error log: Smart event occured on disk :98DKSETUS
Error: (03/16/2021 11:32:06 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Das System wurde zuvor am 16.03.2021 um 11:28:38 unerwartet heruntergefahren.
Error: (03/16/2021 11:30:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Predator Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (03/16/2021 11:30:27 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Extreme Tuning Utility Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
CodeIntegrity:
===============
Date: 2021-03-16 12:34:31
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.
Date: 2021-03-16 12:20:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume5\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume5\Program Files\Bonjour\mdnsNSP.dll that did not meet the Microsoft signing level requirements.
==================== Speicherinformationen ===========================
BIOS: Insyde Corp. V1.16 10/24/2018
Hauptplatine: CFL Cayman_CFS
Prozessor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 39%
Installierter physikalischer RAM: 16287.8 MB
Verfügbarer physikalischer RAM: 9933.97 MB
Summe virtueller Speicher: 18719.8 MB
Verfügbarer virtueller Speicher: 9381.87 MB
==================== Laufwerke ================================
Drive c: (Acer) (Fixed) (Total:237.36 GB) (Free:112.36 GB) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:578.21 GB) NTFS
Drive i: (Stick) (Removable) (Total:32 GB) (Free:31.93 GB) NTFS
Drive s: (Spiele SSD) (Fixed) (Total:465.75 GB) (Free:289.21 GB) NTFS
\\?\Volume{0a075890-a07c-4d91-9b23-ccfd1567f38f}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.5 GB) NTFS
\\?\Volume{ef626c3c-fed6-49d9-913d-dee05596b177}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 2 (Size: 238.5 GB) (Disk ID: 065D8751)
Partition: GPT.
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 58.4 GB) (Disk ID: AAAA903F)
Partition 1: (Active) - (Size=32 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt =======================
|
|
16.03.2021, 14:20
| #24 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst] Scripting/Repair mit FRST64 WARNUNG AN ALLE MITLESER !!! Dieses FRST-Script ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System angewendet werden!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.03.2021, 14:58
| #25 |
| | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst]Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-03-2021
durchgeführt von Andreas Ebner (16-03-2021 14:51:42) Run:1
Gestartet von I:\
Geladene Profile: Andreas Ebner & Administrator
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
CloseProcesses:
C:\Users\Andreas Ebner\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
C:\Users\Andreas Ebner\AppData\Roaming\sysvar
S2 SecurityServiceMonitor; C:\Program Files (x86)\TotalAV\SecurityService.exe --monitor [X] <==== ACHTUNG
C:\Program Files (x86)\TotalAV
cmd: reg query "HKCU\Environment"
cmd: reg query "HKCU\Software"
emptytemp:
*****************
|
|
16.03.2021, 22:02
| #26 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst] Log ist unvollständig!
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.03.2021, 22:14
| #27 |
| | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst]Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-03-2021
durchgeführt von Andreas Ebner (16-03-2021 22:10:00) Run:2
Gestartet von I:\
Geladene Profile: Andreas Ebner & Administrator
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
CloseProcesses:
C:\Users\Andreas Ebner\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
C:\Users\Andreas Ebner\AppData\Roaming\sysvar
S2 SecurityServiceMonitor; C:\Program Files (x86)\TotalAV\SecurityService.exe --monitor [X] <==== ACHTUNG
C:\Program Files (x86)\TotalAV
cmd: reg query "HKCU\Environment"
cmd: reg query "HKCU\Software"
emptytemp:
*****************
Prozesse erfolgreich geschlossen.
"C:\Users\Andreas Ebner\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0" => nicht gefunden
"C:\Users\Andreas Ebner\AppData\Roaming\sysvar" => nicht gefunden
HKLM\System\CurrentControlSet\Services\SecurityServiceMonitor => erfolgreich entfernt
SecurityServiceMonitor => Dienst erfolgreich entfernt
"C:\Program Files (x86)\TotalAV" => nicht gefunden
========= reg query "HKCU\Environment" =========
HKEY_CURRENT_USER\Environment
JD2_HOME REG_SZ C:\Users\Andreas Ebner\AppData\Local\JDownloader 2.0
OneDrive REG_EXPAND_SZ C:\Users\Andreas Ebner\OneDrive
Path REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Microsoft\WindowsApps;
SNE REG_SZ C:\Users\Andreas Ebner\AppData\Local\app"
TEMP REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Temp
TMP REG_EXPAND_SZ %USERPROFILE%\AppData\Local\Temp
========= Ende von CMD: =========
========= reg query "HKCU\Software" =========
HKEY_CURRENT_USER\Software\3DX Games
HKEY_CURRENT_USER\Software\3uTools
HKEY_CURRENT_USER\Software\4A-Games
HKEY_CURRENT_USER\Software\7-Zip
HKEY_CURRENT_USER\Software\Acer
HKEY_CURRENT_USER\Software\Adobe
HKEY_CURRENT_USER\Software\Aephrosi
HKEY_CURRENT_USER\Software\AIDeX
HKEY_CURRENT_USER\Software\AltStore LLC
HKEY_CURRENT_USER\Software\AM
HKEY_CURRENT_USER\Software\Amazon
HKEY_CURRENT_USER\Software\Amazon.com Services LLC
HKEY_CURRENT_USER\Software\Apowersoft
HKEY_CURRENT_USER\Software\AppDataLow
HKEY_CURRENT_USER\Software\Apple Computer, Inc.
HKEY_CURRENT_USER\Software\Apple Inc.
HKEY_CURRENT_USER\Software\ASProtect
HKEY_CURRENT_USER\Software\AtomicGirlDev
HKEY_CURRENT_USER\Software\AvastAdSDK
HKEY_CURRENT_USER\Software\AVS4YOU
HKEY_CURRENT_USER\Software\azantar
HKEY_CURRENT_USER\Software\BaZnGa M3U Editor
HKEY_CURRENT_USER\Software\BeWilder
HKEY_CURRENT_USER\Software\Bigasoft
HKEY_CURRENT_USER\Software\Blizzard Entertainment
HKEY_CURRENT_USER\Software\Blu-ray Master
HKEY_CURRENT_USER\Software\BlueStacksInstaller
HKEY_CURRENT_USER\Software\Brio
HKEY_CURRENT_USER\Software\by redamz
HKEY_CURRENT_USER\Software\Canon
HKEY_CURRENT_USER\Software\CanonBJ
HKEY_CURRENT_USER\Software\CDDB
HKEY_CURRENT_USER\Software\Chairi
HKEY_CURRENT_USER\Software\Cheat Engine
HKEY_CURRENT_USER\Software\ChrisPC VideoTube
HKEY_CURRENT_USER\Software\Chromium
HKEY_CURRENT_USER\Software\Cisco
HKEY_CURRENT_USER\Software\Clients
HKEY_CURRENT_USER\Software\Code Sector
HKEY_CURRENT_USER\Software\CoffeeGirl Works
HKEY_CURRENT_USER\Software\Cygnus Solutions
HKEY_CURRENT_USER\Software\Darth Smut
HKEY_CURRENT_USER\Software\Datastead
HKEY_CURRENT_USER\Software\DefaultCompany
HKEY_CURRENT_USER\Software\DigiFlix LLC
HKEY_CURRENT_USER\Software\DirectShow
HKEY_CURRENT_USER\Software\DonDimon
HKEY_CURRENT_USER\Software\Dream Company
HKEY_CURRENT_USER\Software\DropboxUpdate
HKEY_CURRENT_USER\Software\DuoDevelopers
HKEY_CURRENT_USER\Software\DVDFab
HKEY_CURRENT_USER\Software\EaseUS
HKEY_CURRENT_USER\Software\Eek
HKEY_CURRENT_USER\Software\Eidos Montreal
HKEY_CURRENT_USER\Software\ej-technologies
HKEY_CURRENT_USER\Software\ElAmigos
HKEY_CURRENT_USER\Software\Elecard
HKEY_CURRENT_USER\Software\Electronic Arts
HKEY_CURRENT_USER\Software\EndlessTaboo
HKEY_CURRENT_USER\Software\Enterbrain
HKEY_CURRENT_USER\Software\Epic Games
HKEY_CURRENT_USER\Software\Eromancer
HKEY_CURRENT_USER\Software\Eroniverse
HKEY_CURRENT_USER\Software\EurekaLab
HKEY_CURRENT_USER\Software\Faerin
HKEY_CURRENT_USER\Software\FFMPEG Addon
HKEY_CURRENT_USER\Software\FlashFXP
HKEY_CURRENT_USER\Software\FlyRenders
HKEY_CURRENT_USER\Software\FonePaw
HKEY_CURRENT_USER\Software\FreeGrabApp
HKEY_CURRENT_USER\Software\FWFS
HKEY_CURRENT_USER\Software\geissplugin
HKEY_CURRENT_USER\Software\GetFLV
HKEY_CURRENT_USER\Software\Ghisler
HKEY_CURRENT_USER\Software\GKC ElectroSoft
HKEY_CURRENT_USER\Software\Glk Applications
HKEY_CURRENT_USER\Software\Google
HKEY_CURRENT_USER\Software\GreonoGames
HKEY_CURRENT_USER\Software\GXT155gmmouse
HKEY_CURRENT_USER\Software\Gzwo
HKEY_CURRENT_USER\Software\Helmsman
HKEY_CURRENT_USER\Software\HoneyTalesFactory
HKEY_CURRENT_USER\Software\https://www.patreon.com/Milfarion
HKEY_CURRENT_USER\Software\HYBRIDWEB.de
HKEY_CURRENT_USER\Software\Hypnotube
HKEY_CURRENT_USER\Software\i-FunBox.com
HKEY_CURRENT_USER\Software\Icecream
HKEY_CURRENT_USER\Software\Illusion
HKEY_CURRENT_USER\Software\IM Providers
HKEY_CURRENT_USER\Software\iMazing
HKEY_CURRENT_USER\Software\Infonautics
HKEY_CURRENT_USER\Software\Insexsity
HKEY_CURRENT_USER\Software\IO Interactive
HKEY_CURRENT_USER\Software\IvoSoft
HKEY_CURRENT_USER\Software\JavaSoft
HKEY_CURRENT_USER\Software\Jihosoft
HKEY_CURRENT_USER\Software\Kamo
HKEY_CURRENT_USER\Software\KeepSolid Inc.
HKEY_CURRENT_USER\Software\Kodi
HKEY_CURRENT_USER\Software\KsTgames
HKEY_CURRENT_USER\Software\Lamantine
HKEY_CURRENT_USER\Software\LazingInTheHaze
HKEY_CURRENT_USER\Software\Leawo Software
HKEY_CURRENT_USER\Software\Lesson of Passion
HKEY_CURRENT_USER\Software\Lewdlab
HKEY_CURRENT_USER\Software\Licenses
HKEY_CURRENT_USER\Software\LinuxLive
HKEY_CURRENT_USER\Software\Local AppWizard-Generated Applications
HKEY_CURRENT_USER\Software\LockHunter
HKEY_CURRENT_USER\Software\Macromedia
HKEY_CURRENT_USER\Software\madzeal
HKEY_CURRENT_USER\Software\Magix
HKEY_CURRENT_USER\Software\MaliXe Games
HKEY_CURRENT_USER\Software\Malwarebytes
HKEY_CURRENT_USER\Software\ManiacTools
HKEY_CURRENT_USER\Software\Martin Prikryl
HKEY_CURRENT_USER\Software\MeshedVR
HKEY_CURRENT_USER\Software\meybohm
HKEY_CURRENT_USER\Software\Microsoft
HKEY_CURRENT_USER\Software\MipMip
HKEY_CURRENT_USER\Software\Mirage
HKEY_CURRENT_USER\Software\Movavi
HKEY_CURRENT_USER\Software\Mozilla
HKEY_CURRENT_USER\Software\MP3ToIpodAudioBookConverter
HKEY_CURRENT_USER\Software\Mr.Z
HKEY_CURRENT_USER\Software\MultimediaTools
HKEY_CURRENT_USER\Software\NameMyTVSeries
HKEY_CURRENT_USER\Software\NaughtyLabs
HKEY_CURRENT_USER\Software\NCH Software
HKEY_CURRENT_USER\Software\NCH Swift Sound
HKEY_CURRENT_USER\Software\Netscape
HKEY_CURRENT_USER\Software\No Reply Games
HKEY_CURRENT_USER\Software\NoName
HKEY_CURRENT_USER\Software\NTRMAN
HKEY_CURRENT_USER\Software\NVIDIA Corporation
HKEY_CURRENT_USER\Software\nwjs
HKEY_CURRENT_USER\Software\Obsidium
HKEY_CURRENT_USER\Software\ODBC
HKEY_CURRENT_USER\Software\OEM
HKEY_CURRENT_USER\Software\OpenShell
HKEY_CURRENT_USER\Software\OppaiComics
HKEY_CURRENT_USER\Software\Playvideo
HKEY_CURRENT_USER\Software\Policies
HKEY_CURRENT_USER\Software\Populus manducare non animalibus
HKEY_CURRENT_USER\Software\Project Coup
HKEY_CURRENT_USER\Software\Pyorgara
HKEY_CURRENT_USER\Software\QtProject
HKEY_CURRENT_USER\Software\RapidSolution
HKEY_CURRENT_USER\Software\Realtek
HKEY_CURRENT_USER\Software\RegisteredApplications
HKEY_CURRENT_USER\Software\Respawn Entertainment
HKEY_CURRENT_USER\Software\RileyTestut
HKEY_CURRENT_USER\Software\Rockstar Games
HKEY_CURRENT_USER\Software\Ruffleneck
HKEY_CURRENT_USER\Software\SaliaCoel
HKEY_CURRENT_USER\Software\Sand Lust Games
HKEY_CURRENT_USER\Software\Sandlust Games Ltd
HKEY_CURRENT_USER\Software\SaurikIT
HKEY_CURRENT_USER\Software\screen-capture-recorder
HKEY_CURRENT_USER\Software\SexGameDevil
HKEY_CURRENT_USER\Software\SoftwareOK
HKEY_CURRENT_USER\Software\Someguy
HKEY_CURRENT_USER\Software\Sony Creative Software
HKEY_CURRENT_USER\Software\SplitmediaLabs
HKEY_CURRENT_USER\Software\Spoon
HKEY_CURRENT_USER\Software\SteamMover
HKEY_CURRENT_USER\Software\Steganos
HKEY_CURRENT_USER\Software\Stratovarius
HKEY_CURRENT_USER\Software\Super Alex
HKEY_CURRENT_USER\Software\Symantec
HKEY_CURRENT_USER\Software\Syncios
HKEY_CURRENT_USER\Software\Sysinternals
HKEY_CURRENT_USER\Software\TeamK17
HKEY_CURRENT_USER\Software\TelegramDesktop
HKEY_CURRENT_USER\Software\The Architect
HKEY_CURRENT_USER\Software\Tid
HKEY_CURRENT_USER\Software\Trolltech
HKEY_CURRENT_USER\Software\Udecide
HKEY_CURRENT_USER\Software\Ultimate Taskbar Controller
HKEY_CURRENT_USER\Software\Ultimate Windows Tweaker
HKEY_CURRENT_USER\Software\Unity
HKEY_CURRENT_USER\Software\UpdateDownloadTool
HKEY_CURRENT_USER\Software\Valve
HKEY_CURRENT_USER\Software\Velvet Paradise Games
HKEY_CURRENT_USER\Software\VincenzoM
HKEY_CURRENT_USER\Software\VNGINE
HKEY_CURRENT_USER\Software\VS Revo Group
HKEY_CURRENT_USER\Software\WalkiusGames
HKEY_CURRENT_USER\Software\Waterfox
HKEY_CURRENT_USER\Software\Winamp
HKEY_CURRENT_USER\Software\WinRAR
HKEY_CURRENT_USER\Software\WinRAR SFX
HKEY_CURRENT_USER\Software\Winterfire
HKEY_CURRENT_USER\Software\Wondershare
HKEY_CURRENT_USER\Software\Wow6432Node
HKEY_CURRENT_USER\Software\{#AppName}
HKEY_CURRENT_USER\Software\Classes
========= Ende von CMD: =========
=========== EmptyTemp: ==========
BITS transfer queue => 14966784 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 14756851 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 83605934 B
Edge => 0 B
Hoffe jetzt passt es |
|
16.03.2021, 22:25
| #28 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst] Kontrollscans mit MBAM und RK Wir sind fast fertig. Jetzt ist es an der Zeit für Kontrollscans mit Poste nach Abschluss der beiden Scans die Logs in CODE-Tags.
__________________ Logfiles bitte immer in CODE-Tags posten |
|
16.03.2021, 22:53
| #29 |
| | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst]Code:
ATTFilter Malwarebytes
www.malwarebytes.com
-Protokolldetails-
Scan-Datum: 16.03.21
Scan-Zeit: 22:35
Protokolldatei: 7763ac6a-869f-11eb-a568-d8c497ad9b82.json
-Softwaredaten-
Version: 4.3.0.98
Komponentenversion: 1.0.1217
Version des Aktualisierungspakets: 1.0.38259
Lizenz: Kostenlos
-Systemdaten-
Betriebssystem: Windows 10 (Build 19042.867)
CPU: x64
Dateisystem: NTFS
Benutzer: LAPTOP-CQ0D7NOI\Andreas Ebner
-Scan-Übersicht-
Scan-Typ: Bedrohungs-Scan
Scan gestartet von: Manuell
Ergebnis: Abgeschlossen
Gescannte Objekte: 406452
Erkannte Bedrohungen: 1
In die Quarantäne verschobene Bedrohungen: 1
Abgelaufene Zeit: 3 Min., 6 Sek.
-Scan-Optionen-
Speicher: Aktiviert
Start: Aktiviert
Dateisystem: Aktiviert
Archive: Aktiviert
Rootkits: Aktiviert
Heuristik: Aktiviert
PUP: Erkennung
PUM: Erkennung
-Scan-Details-
Prozess: 0
(keine bösartigen Elemente erkannt)
Modul: 0
(keine bösartigen Elemente erkannt)
Registrierungsschlüssel: 1
PUP.Optional.Reimage, HKU\S-1-5-21-4274780374-310312604-1853351802-1001\SOFTWARE\LOCAL APPWIZARD-GENERATED APPLICATIONS\Fixer - Windows Problem Relief., In Quarantäne, 393, 709541, 1.0.38259, , ame, , ,
Registrierungswert: 0
(keine bösartigen Elemente erkannt)
Registrierungsdaten: 0
(keine bösartigen Elemente erkannt)
Daten-Stream: 0
(keine bösartigen Elemente erkannt)
Ordner: 0
(keine bösartigen Elemente erkannt)
Datei: 0
(keine bösartigen Elemente erkannt)
Physischer Sektor: 0
(keine bösartigen Elemente erkannt)
WMI: 0
(keine bösartigen Elemente erkannt)
(end)
Code:
ATTFilter RogueKiller Anti-Malware V14.8.5.0 (x64) [Feb 12 2021] (Free) von Adlice Software Mail : https://adlice.com/contact/ Website : https://adlice.com/download/roguekiller/ Betriebssystem : Windows 10 (10.0.19042) 64 bits Gestartet in : Normaler Modus Benutzer : Andreas Ebner [Administrator] Gestartet von : C:\Users\Andreas Ebner\Desktop\RogueKiller_portable64.exe Signaturen : 20210315_102216, Treiber : Geladen Modus : Standard-Scan, Löschen -- Datum : 2021/03/16 22:48:46 (Dauer : 00:06:03) ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ Löschen ¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤¤ [PUP.Gen1 (Potenziell bösartig)] HKEY_USERS\.DEFAULT\Software\OCS -- -> Gelöscht [PUP.Gen1 (Potenziell bösartig)] HKEY_USERS\S-1-5-18\Software\OCS -- -> Gelöscht [PUP.HackTool (Potenziell bösartig)] SalFisher47 -- %programdata%\SalFisher47 -> Gelöscht => FH4_AutoUWP.ini -- C:\PROGRA~3\SALFIS~1\AUTOUW~1\FH4_AU~1.INI -> Gelöscht => developer_mode.reg -- C:\PROGRA~3\SALFIS~1\AUTOUW~1\USEDEV~1\DEVELO~1.REG -> Gelöscht => microsoft_store_apps.reg -- C:\PROGRA~3\SALFIS~1\AUTOUW~1\USEDEV~1\MICROS~1.REG -> Gelöscht => sideload_apps.reg -- C:\PROGRA~3\SALFIS~1\AUTOUW~1\USEDEV~1\SIDELO~1.REG -> Gelöscht => Use developer features -- C:\PROGRA~3\SALFIS~1\AUTOUW~1\USEDEV~1 -> Gelöscht => AutoUWP Launcher -- C:\PROGRA~3\SALFIS~1\AUTOUW~1 -> Gelöscht => RunFirst.exe -- C:\PROGRA~3\SALFIS~1\RunFirst\RunFirst.exe -> Gelöscht => RunFirst.txt -- C:\PROGRA~3\SALFIS~1\RunFirst\RunFirst.txt -> Gelöscht => RunFirst -- C:\PROGRA~3\SALFIS~1\RunFirst -> Gelöscht => _Forza Horizon 4.ini -- C:\PROGRA~3\SALFIS~1\UNIGAM~1\_FORZA~1.INI -> Gelöscht => UniGame Launcher -- C:\PROGRA~3\SALFIS~1\UNIGAM~1 -> Gelöscht |
|
16.03.2021, 22:58
| #30 | |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 10 Defender lässt sich nich mehr aktivieren [gelöst]Zitat:
__________________ Logfiles bitte immer in CODE-Tags posten |
|
| Themen zu Windows 10 Defender lässt sich nich mehr aktivieren |
| administrator, adobe, adobe flash player, browser, canon, defender, desktop, error, escan, fehlermeldung, firefox, flash player, geforce, home, internet, malware, mozilla, nvcontainer, nvcontainer.exe, nvidia, realtek, registry, scan, security, system, trojan, viren, virtualbox, windows |
Linear-Darstellung
