FRST
FRST Logfile: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 14-03-2021
durchgeführt von Andreas Ebner (Administrator) auf LAPTOP-CQ0D7NOI (Acer Predator PH517-51) (16-03-2021 09:50:08)
Gestartet von I:\
Geladene Profile: Andreas Ebner
Platform: Windows 10 Home Version 20H2 19042.867 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\PredatorSense Service\PSAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\PredatorSense Service\PSAgent.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel(R) Software Development Products -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\sgx_psw.inf_amd64_62a0e7f4cd3e6c99\aesm_service.exe
(Intel(R) Trust Services -> Intel(R) Corporation) C:\Windows\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\SocketHeciServer.exe
(KeepSolid Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe
(Malwarebytes Corporation -> Malwarebytes) C:\ProgramData\MB3Install\MBAMIService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [768448 2018-07-13] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [WavesSvc] => C:\WINDOWS\SYSTEM32\DRIVERSTORE\FILEREPOSITORY\WAVESAPO77AC.INF_AMD64_1C72DFBD7A8B521F\WAVESSVC64.EXE [1287440 2018-05-30] (Waves Inc -> Waves Audio Ltd.)
HKLM\...\Run: [iTunesHelper] => D:\Program Files\iTunes\iTunesHelper.exe [337720 2020-11-12] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Open-Shell Start Menu] => C:\Program Files\Open-Shell\StartMenu.exe [224768 2019-10-26] (Open-Shell) [Datei ist nicht signiert]
HKLM-x32\...\Run: [GXT155gmmouseRun] => C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\GXT155mon.exe [3435520 2018-06-11] () [Datei ist nicht signiert]
HKLM-x32\...\Run: [Syncios device service] => C:\Program Files (x86)\Anvsoft\Syncios\SynciosDeviceService.exe [2944120 2019-07-11] (Anvsoft Inc. -> )
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe [2133216 2017-03-23] (Wondershare Technology Co.,Ltd -> Wondershare)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [Folder Size] => C:\Program Files\FolderSize\FolderSize.exe [169472 2013-02-12] (Brio) [Datei ist nicht signiert]
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [AppleIEDAV] => C:\Program Files (x86)\Common Files\Apple\Internet Services\AppleIEDAV.exe [68408 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [Amazon Music Helper] => C:\Users\Andreas Ebner\AppData\Local\Amazon Music\Amazon Music Helper.exe [2107848 2020-05-23] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [AnyTransToolHelper] => C:\Program Files (x86)\iMobie\AnyTrans\AnyTransToolHelper.exe [492032 2019-11-25] (iMobie Inc. -> iMobie Inc.)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [Amazon Music] => C:\Users\Andreas Ebner\AppData\Local\Amazon Music\Amazon Music.exe [20373448 2020-05-23] (Amazon.com Services LLC -> Amazon.com Services LLC)
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKLM\...\Windows x64\Print Processors\Canon TS8200 series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDEK.DLL [482816 2018-11-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor TS8200 series: C:\Windows\system32\CNMLMEK.DLL [904192 2018-11-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP B111 Status Monitor: C:\Windows\system32\hpinkstsB111LM.dll [331664 2012-06-13] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> "C:\Program Files (x86)\Google\Chrome\Application\89.0.4389.82\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --channel
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Control Center.lnk [2019-09-19]
ShortcutTarget: Killer Control Center.lnk -> C:\Program Files\Killer Networking\Killer Control Center\KillerControlCenter.exe (Rivet Networks LLC -> Rivet Networks)
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0DBE97F8-6C00-413B-9880-CEF0C3E3144F} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {143C69E5-5FD5-4558-A6BA-99056575EC72} - \Microsoft\Windows\Windows Error Reporting\SysInfo -> Keine Datei <==== ACHTUNG
Task: {1C71DCDF-E249-4B96-9C87-81E7B1B18336} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe
Task: {27B5F7F6-0E1C-499F-9969-B3C9A7176502} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [7071000 2019-08-29] (Nero AG -> Nero AG)
Task: {28519E13-FAD4-4EB3-90E6-F16C060A8576} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {2AE11AF1-8D11-47DA-8F01-468864E5458B} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2BED9E85-9FFF-4456-80F4-C0DD0A0DC905} - System32\Tasks\dmci => C:\Users\ANDREA~1\dmci\ohxobu.exe -> C:\Users\ANDREA~1\dmci\fnnd.ssm
Task: {2C20BB6A-F3DD-4ED3-B288-D13FC87029EF} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {332D52C9-E8FE-45B0-9732-35E8270ED02A} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646896 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {36972BE7-3BA2-4B90-8F44-1472DE441194} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {37ACB099-7453-41AA-9C67-00F332364B07} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {4045B47F-B3BA-4D17-AE11-A97AB0CC7FED} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on login if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226024 2018-01-25] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {48C1D5D3-51A8-40F5-91A6-E91D933AAADB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4B980566-1FA1-4317-9B56-39FA8CA885AD} - \PC Cleaner repairing -> Keine Datei <==== ACHTUNG
Task: {4C79F391-64E0-4EEB-A0C5-EAC4C3953168} - System32\Tasks\IMF_SkipUAC_Andreas Ebner => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
Task: {4DCF3553-E408-48F8-967A-ED143F919B23} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service when hardware is detected => sc.exe start ThunderboltService
Task: {509B46F4-E139-4699-9E8F-7032C6F7B533} - System32\Tasks\Trojan Remover => C:\Program Files\Loaris Trojan Remover\ltr.exe [17908736 2021-01-07] (Loaris Inc.) [Datei ist nicht signiert]
Task: {5413A72E-71CB-47EE-B77C-DBA6849DAD87} - System32\Tasks\IMF_SkipUAC_adm => C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe
Task: {622E3556-B0D5-4FE0-A048-8C16AEAF86D6} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application on switch user if service is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226024 2018-01-25] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {63A780BE-553B-4160-8F75-3933807C6F94} - System32\Tasks\BlueStacksHelper => D:\BlueStacks\Client\Helper\BlueStacksHelper.exe [754104 2021-01-07] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {669D58B1-FD25-4C91-BD10-8682412158A5} - System32\Tasks\Norton Security Scan for Andreas Ebner => C:\PROGRA~2\NORTON~2\Engine\461~1.150\Nss.exe
Task: {670B7F97-D28A-49D5-A25C-83B58E6DFE93} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {67C67D30-C919-448D-B9C5-4EBDECAD47C0} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistant => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {6A067CC0-C766-4833-84BA-142539FAE128} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-21] (Microsoft Corporation -> Microsoft Corporation)
Task: {6E5E9A48-2165-4040-ABB1-AF7673845C61} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt service on boot if driver is up => C:\Program Files (x86)\Intel\Thunderbolt Software\\tbtsvc.exe [2302184 2018-01-25] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {7E2D93D1-98CA-4313-8091-AEFCE59ADE76} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1127664 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {875096B5-CC77-4225-9C3F-0F5B8E826ECA} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [906480 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8B45FE22-1046-47F6-A071-2E6F58937F53} - System32\Tasks\Intel\Thunderbolt\Start Thunderbolt application when hardware is detected => C:\Program Files (x86)\Intel\Thunderbolt Software\\ConditionalAppStarter.exe [226024 2018-01-25] (Intel(R) Client Connectivity Division SW -> Intel Corporation)
Task: {8DEF72EB-E500-44BF-9302-FBF0034816DE} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2021-01-11] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {8F0C014E-4FF3-4186-9948-151E434BA141} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Andreas Ebner\Desktop\esetonlinescanner_enu.exe
Task: {8F476193-8984-4554-96FB-E3927F6404A0} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302128 2021-01-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {92E1468D-5693-4592-80AD-D3BBFB38B6A4} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantCalendarRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {9966559E-E12A-4EB0-931D-8365FD62F8A9} - System32\Tasks\PredatorSense UI => C:\Program Files\Acer\PredatorSense Service\PSLauncher.exe [580888 2019-10-09] (Acer Incorporated -> Acer Incorporated)
Task: {C54F7330-639B-4617-9A81-CDB32055B55C} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [694256 2021-03-13] (Mozilla Corporation -> Mozilla Foundation)
Task: {C8F8901B-498B-4DA8-94E0-904BCD0E96EF} - System32\Tasks\PredatorSense => C:\Program Files\Acer\PredatorSense Service\PSLauncher.exe [580888 2019-10-09] (Acer Incorporated -> Acer Incorporated)
Task: {CEB723EE-D84D-49A9-AB75-9F95C2A08945} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantAllUsersRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {D0720991-C887-41BE-A650-4A090FA84E12} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [91440 2017-09-26] (Acer Incorporated -> Microsoft)
Task: {D4EE7AFA-FEBC-4C0D-A7B9-4D612AC01FB9} - System32\Tasks\UAC => C:\Users\Andreas [Argument = Ebner\AppData\Roaming\NsMiner\IMG001.exe]
Task: {D9E6FBB8-8C39-4FF2-84F6-EA9A619CB4E7} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\UpdateAssistantWakeupRun => C:\WINDOWS\UpdateAssistant\UpdateAssistant.exe
Task: {DAF737BA-4855-4070-B610-E9D128DFE022} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4274780374-310312604-1853351802-500 => C:\Users\Andreas Ebner\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {DEF9ABC2-8F13-40AD-A0F7-2B3621169028} - System32\Tasks\OneDrive Standalone Update Task v2 => C:\Users\Andreas Ebner\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {E113C8C6-B2C3-413F-B2A3-3FCABE397FA4} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Andreas Ebner\Desktop\esetonlinescanner_enu.exe
Task: {F59C6A1E-869F-4078-A9DC-B166C143FE04} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473880 2019-10-09] (Acer Incorporated -> Acer Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\UAC.job => C:\Users\Andreas)Ebner\AppData\Roaming\NsMiner\IMG001.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{046a620e-7093-4d77-b616-2ef61dd65007}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{759d83ac-f5e0-c89b-38c2-ca581e218a0c}: [NameServer] 10.100.0.1
Edge:
=======
Edge Extension: (Amazon Assistant) -> xxx_AmazoncomAmazonAssistant_343d40qqvtj1t => C:\Program Files\WindowsApps\Amazon.com.AmazonAssistant_10.1910.9.0_neutral__343d40qqvtj1t [2021-03-15]
Edge DefaultProfile: Default
Edge Profile: C:\Users\Andreas Ebner\AppData\Local\Microsoft\Edge\User Data\Default [2021-03-16]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: dwreqduu.default
FF DefaultProfile: e28ier59.default-1548431725211
FF ProfilePath: C:\Users\Andreas Ebner\AppData\Roaming\Waterfox\Profiles\dwreqduu.default [2020-11-11]
FF ProfilePath: C:\Users\Andreas Ebner\AppData\Roaming\Waterfox\Profiles\biqe5yt2.68-edition-default [2021-03-04]
FF ProfilePath: C:\Users\Andreas Ebner\AppData\Roaming\Mozilla\Firefox\Profiles\e28ier59.default-1548431725211 [2021-03-16]
FF DownloadDir: D:\Downloads
FF Session Restore: Mozilla\Firefox\Profiles\e28ier59.default-1548431725211 -> ist aktiviert.
FF Notifications: Mozilla\Firefox\Profiles\e28ier59.default-1548431725211 -> hxxps://crackwatch.com; hxxps://www.instagram.com
FF Extension: (MyJDownloader Browser Erweiterung) - C:\Users\Andreas Ebner\AppData\Roaming\Mozilla\Firefox\Profiles\e28ier59.default-1548431725211\Extensions\jid1-OY8Xu5BsKZQa6A@jetpack.xpi [2021-02-25] [UpdateUrl:hxxps://my.jdownloader.org/extensions/firefox.json]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Andreas Ebner\AppData\Roaming\Mozilla\Firefox\Profiles\e28ier59.default-1548431725211\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2021-02-02]
FF Extension: (Dark Fox) - C:\Users\Andreas Ebner\AppData\Roaming\Mozilla\Firefox\Profiles\e28ier59.default-1548431725211\Extensions\{e7fe4ffe-f256-4f85-906d-072fdd698585}.xpi [2021-02-02]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2020-09-24] (Apple Inc. -> Apple Inc.)
S2 CdRomAccessAgentService; C:\Program Files (x86)\Common Files\cdagtsvc\cdagtsvc_v1.0.0_x86.exe [96152 2020-10-02] (Shenzhen Moyea Software -> Leawo Software)
S2 ETGMGlcsSrv; C:\Program Files (x86)\Trust GXT 155 Gaming Mouse\ETGMSrv.exe [1181544 2012-04-24] (Eastern Times Technology Co.,Ltd -> )
S2 FolderSize; C:\Program Files\FolderSize\FolderSizeSvc.exe [163840 2013-02-12] (Brio) [Datei ist nicht signiert]
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [410864 2021-01-25] (NVIDIA Corporation -> NVIDIA)
S2 Killer Network Service; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2319320 2018-04-26] (Microsoft Windows Hardware Compatibility Publisher -> Rivet Networks)
R2 MBAMIService; C:\ProgramData\MB3Install\MBAMIService.exe [231120 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-02-22] (Malwarebytes Inc -> Malwarebytes)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2535000 2021-02-24] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3480152 2021-02-24] (Electronic Arts, Inc. -> Electronic Arts)
S3 PSSvc; C:\Program Files\Acer\PredatorSense Service\PSSvc.exe [979736 2019-10-09] (Acer Incorporated -> Acer Incorporated)
S3 Rockstar Service; D:\Rockstar Games Launcher\RockstarService.exe [474256 2019-12-05] (Rockstar Games, Inc. -> Rockstar Games)
S2 TeraCopyService; C:\Program Files\TeraCopy\TeraCopyService.exe [110416 2017-05-05] (Code Sector -> Code Sector)
R2 VPNUnlimitedService; C:\Program Files (x86)\VPN Unlimited\vpn-unlimited-daemon.exe [47616 2020-12-24] (KeepSolid Inc.) [Datei ist nicht signiert]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WireGuardTunnel$VPNUWireguard; C:\Program Files (x86)\VPN Unlimited\WireVPNUImpl.exe [17920 2020-10-12] () [Datei ist nicht signiert]
S2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-07-09] (Wondershare Technology Co.,Ltd -> Wondershare)
S2 SecurityServiceMonitor; C:\Program Files (x86)\TotalAV\SecurityService.exe --monitor [X] <==== ACHTUNG
S3 VBoxSDS; "C:\Program Files\Oracle\VirtualBox\VBoxSDS.exe" [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R2 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv_bgp.sys [315976 2020-10-04] (Bluestack Systems, Inc -> Bluestack System Inc.)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2020-11-11] (Martin Malik - REALiX -> REALiX(tm))
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220616 2021-03-15] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2020-12-14] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-03-14] (Malwarebytes Inc -> Malwarebytes)
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R3 RfeCoSvc; C:\WINDOWS\System32\drivers\RivetNetworks\Killer\RfeCo10X64.sys [150152 2018-04-26] (Rivet Networks LLC -> Rivet Networks, LLC.)
S1 RrNetCapFilterDriver; C:\WINDOWS\system32\DRIVERS\RrNetCapFilterDriver.sys [25256 2015-07-09] (Audials AG -> Audials AG)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (The OpenVPN Project) [Datei ist nicht signiert]
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] (Empty Loop -> )
S3 usbglcs1100302; C:\WINDOWS\system32\drivers\usbglcs1100302.sys [25600 2014-06-11] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 VBoxNetAdp; C:\WINDOWS\system32\DRIVERS\VBoxNetAdp6.sys [239872 2021-01-07] (Oracle Corporation -> Oracle Corporation)
R1 VBoxNetLwf; C:\WINDOWS\system32\DRIVERS\VBoxNetLwf.sys [249776 2021-01-07] (Oracle Corporation -> Oracle Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [35584 2018-02-26] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 wintun; C:\WINDOWS\system32\DRIVERS\wintun.sys [38176 2020-08-21] (WireGuard LLC -> WireGuard LLC)
U4 ekrn; kein ImagePath
S3 semav6msr64; \??\C:\WINDOWS\system32\drivers\semav6msr64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-03-16 09:13 - 2021-03-16 09:13 - 008463216 _____ (Malwarebytes) C:\Users\Andreas Ebner\Desktop\adwcleaner_8.1.exe
2021-03-16 01:34 - 2021-03-16 01:34 - 000000000 ___RD C:\Users\Andreas Ebner\iCloudDrive
2021-03-16 01:05 - 2021-03-16 01:05 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\IIIQF
2021-03-16 01:04 - 2021-03-16 01:04 - 000000000 ____D C:\ProgramData\ProductData
2021-03-15 22:19 - 2021-03-16 09:50 - 000000000 ____D C:\FRST
2021-03-15 22:11 - 2021-03-15 22:11 - 000002328 _____ C:\Users\Administrator\Desktop\Google Chrome.lnk
2021-03-15 21:40 - 2021-03-15 21:40 - 000000000 ____D C:\Users\Andreas Ebner\RevoUninstallerProPortable
2021-03-15 21:37 - 2021-03-15 21:41 - 000000000 ____D C:\Users\Andreas Ebner\Desktop\Topf
2021-03-15 20:35 - 2021-03-15 20:35 - 000003840 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onLogOn
2021-03-15 20:35 - 2021-03-15 20:35 - 000003398 _____ C:\WINDOWS\system32\Tasks\EOSv3 Scheduler onTime
2021-03-15 20:05 - 2021-03-15 20:07 - 000000804 _____ C:\Users\Andreas Ebner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2021-03-15 20:05 - 2021-03-15 20:05 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\ESET
2021-03-15 19:43 - 2021-03-15 19:54 - 000000000 ____D C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2021-03-15 19:43 - 2021-03-15 19:43 - 000255928 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\214197E3.sys
2021-03-15 19:21 - 2021-03-15 19:35 - 000000000 ___HD C:\$WINDOWS.~BT
2021-03-15 16:07 - 2021-03-15 17:25 - 000000000 ____D C:\ProgramData\HitmanPro
2021-03-15 15:52 - 2021-03-15 17:25 - 000000000 ____D C:\Users\Andreas Ebner\AppData\LocalLow\IGDump
2021-03-15 15:19 - 2021-03-15 15:19 - 000000000 ____D C:\WINDOWS\system32\Tasks\McAfee
2021-03-15 13:50 - 2021-01-07 10:18 - 001037824 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxDrv.sys
2021-03-15 13:50 - 2021-01-07 10:18 - 000187888 _____ (Oracle Corporation) C:\WINDOWS\system32\Drivers\VBoxUSBMon.sys
2021-03-15 13:32 - 2021-03-15 13:32 - 000000000 ___HD C:\$Windows.~WS
2021-03-15 09:17 - 2021-03-15 09:18 - 000000000 ____D C:\ProgramData\EaseUS Todo PCTrans
2021-03-15 09:16 - 2021-03-15 09:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EaseUS Todo PCTrans
2021-03-15 08:59 - 2021-03-15 08:59 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\DontSleep
2021-03-15 01:30 - 2021-03-15 01:30 - 000220616 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-03-15 00:48 - 2021-03-15 00:48 - 000000000 ____D C:\MATS
2021-03-14 23:11 - 2021-03-14 23:11 - 000002936 _____ C:\WINDOWS\system32\Tasks\IMF_SkipUAC_adm
2021-03-14 23:09 - 2021-03-15 22:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\OpenShell
2021-03-14 23:09 - 2021-03-14 23:11 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\IObit
2021-03-14 23:09 - 2021-03-14 23:09 - 000000020 ___SH C:\Users\Administrator\ntuser.ini
2021-03-14 23:09 - 2021-03-14 23:09 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\OpenShell
2021-03-14 19:02 - 2021-03-15 17:25 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\wureset
2021-03-14 19:02 - 2021-03-14 19:02 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Reset Windows Update Tool
2021-03-14 19:02 - 2021-03-14 19:02 - 000000000 ____D C:\Program Files\wureset
2021-03-14 18:51 - 2021-03-14 18:51 - 000000000 ___RD C:\Users\Andreas Ebner\Documents\Scanned Documents
2021-03-14 18:51 - 2021-03-14 18:51 - 000000000 ____D C:\Users\Andreas Ebner\Documents\Fax
2021-03-14 18:19 - 2021-03-14 18:19 - 000214174 _____ C:\Users\Andreas Ebner\Downloads\WindowsFirewall.diagcab
2021-03-14 17:24 - 2021-03-14 17:24 - 000002956 _____ C:\WINDOWS\system32\Tasks\IMF_SkipUAC_Andreas Ebner
2021-03-14 16:56 - 2021-03-14 16:56 - 008823656 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\Netwtw08.sys
2021-03-14 16:56 - 2021-03-14 16:56 - 002673724 _____ C:\WINDOWS\system32\Drivers\Netwfw08.dat
2021-03-14 16:56 - 2021-03-14 16:56 - 001058152 _____ (Intel Corporation) C:\WINDOWS\system32\IntelIHVRouter08.dll
2021-03-14 16:55 - 2021-03-14 16:55 - 006161712 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\ibtusb.sys
2021-03-14 16:55 - 2021-03-14 16:55 - 000539440 _____ (Intel Corporation) C:\WINDOWS\system32\ibtsiva.exe
2021-03-14 16:55 - 2021-03-14 16:55 - 000441648 _____ (Intel Corporation) C:\WINDOWS\system32\ibtproppage.dll
2021-03-14 16:26 - 2021-03-14 16:26 - 000000000 ___HD C:\$SysReset
2021-03-14 13:16 - 2021-03-14 13:16 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2021-03-14 13:16 - 2021-03-14 13:16 - 000000000 ____D C:\Program Files\iPod
2021-03-13 09:38 - 2021-03-13 09:38 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-03-11 16:58 - 2021-03-11 16:58 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-03-11 16:58 - 2021-03-11 16:58 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-03-11 16:58 - 2021-03-11 16:58 - 001822272 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-03-11 16:58 - 2021-03-11 16:58 - 001394024 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-03-11 16:58 - 2021-03-11 16:58 - 001314128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-03-11 16:58 - 2021-03-11 16:58 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-03-11 16:58 - 2021-03-11 16:58 - 000707016 _____ C:\WINDOWS\system32\TextShaping.dll
2021-03-11 16:58 - 2021-03-11 16:58 - 000611952 _____ C:\WINDOWS\SysWOW64\TextShaping.dll
2021-03-11 16:58 - 2021-03-11 16:58 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-03-11 16:58 - 2021-03-11 16:58 - 000091136 _____ C:\WINDOWS\system32\Drivers\cimfs.sys
2021-03-11 16:58 - 2021-03-11 16:58 - 000011359 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-02-27 21:35 - 2021-02-24 13:53 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2021-02-27 21:35 - 2021-02-24 13:53 - 001855208 _____ C:\WINDOWS\system32\vulkaninfo.exe
2021-02-27 21:35 - 2021-02-24 13:53 - 001452336 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2021-02-27 21:35 - 2021-02-24 13:53 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-02-27 21:35 - 2021-02-24 13:53 - 001435880 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2021-02-27 21:35 - 2021-02-24 13:53 - 001191728 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2021-02-27 21:35 - 2021-02-24 13:53 - 001094888 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2021-02-27 21:35 - 2021-02-24 13:53 - 001094888 _____ C:\WINDOWS\system32\vulkan-1.dll
2021-02-27 21:35 - 2021-02-24 13:53 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2021-02-27 21:35 - 2021-02-24 13:53 - 000948968 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2021-02-27 21:35 - 2021-02-24 13:51 - 000678704 _____ C:\WINDOWS\system32\nvofapi64.dll
2021-02-27 21:35 - 2021-02-24 13:51 - 000546096 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 002102576 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 001587504 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 001511192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 001163544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 000811824 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 000671512 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 000655664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2021-02-27 21:35 - 2021-02-24 13:50 - 000556816 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 008260880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 007391512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 004610320 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 002729776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 001730864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6446172.dll
2021-02-27 21:35 - 2021-02-24 13:49 - 001490200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6446172.dll
2021-02-27 21:35 - 2021-02-24 13:42 - 006072896 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2021-02-24 14:49 - 2021-02-24 14:49 - 000162958 _____ C:\FolderDescriptions.reg
2021-02-24 14:35 - 2021-02-24 14:35 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\LockHunter
2021-02-24 14:35 - 2021-02-24 14:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LockHunter
2021-02-24 14:35 - 2021-02-24 14:35 - 000000000 ____D C:\Program Files\LockHunter
2021-02-24 11:28 - 2021-02-24 14:26 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FileBot
2021-02-24 10:54 - 2021-02-24 10:54 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\FreeGrabApp
2021-02-24 10:54 - 2021-02-24 10:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeGrabApp
2021-02-24 10:54 - 2021-02-24 10:54 - 000000000 ____D C:\ProgramData\FreeGrabApp
2021-02-24 10:54 - 2021-02-24 10:54 - 000000000 ____D C:\Program Files (x86)\FreeGrabApp
2021-02-22 12:02 - 2021-02-22 12:02 - 000000000 ____D C:\Program Files\Malwarebytes
2021-02-22 11:46 - 2021-02-22 11:46 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\GUI.Win
2021-02-21 10:13 - 2021-02-24 17:12 - 000000000 ____D C:\Program Files\Loaris Trojan Remover
2021-02-21 10:13 - 2021-02-21 10:13 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Loaris Trojan Remover
2021-02-16 08:58 - 2021-02-16 08:58 - 000000000 ____D C:\Users\Andreas Ebner\Downloads\kann_man_bei_tvnow_herunterladen
2021-02-16 08:57 - 2021-02-16 08:57 - 000001877 _____ C:\Users\Andreas Ebner\Downloads\kann_man_bei_tvnow_herunterladen.zip
2021-02-14 13:01 - 2021-02-14 13:01 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\WhatsApp
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-03-16 09:50 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-03-16 09:30 - 2019-01-31 09:12 - 000000000 ____D C:\ProgramData\Mozilla
2021-03-16 09:29 - 2019-01-08 13:19 - 000000000 ____D C:\Users\Andreas Ebner\AppData\LocalLow\Mozilla
2021-03-16 09:20 - 2019-01-08 12:58 - 000000000 ____D C:\ProgramData\NVIDIA
2021-03-16 09:20 - 2018-10-26 19:00 - 000000000 ____D C:\ProgramData\Acer
2021-03-16 09:18 - 2019-01-08 15:04 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\JDownloader 2.0
2021-03-16 09:11 - 2020-09-27 06:50 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-03-16 08:57 - 2019-12-07 10:13 - 000000000 ____D C:\WINDOWS\INF
2021-03-16 07:46 - 2020-11-10 18:49 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\OpenShell
2021-03-16 05:40 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-03-16 05:25 - 2019-01-08 16:04 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\CrashDumps
2021-03-16 02:27 - 2019-01-11 17:36 - 000000000 ____D C:\Program Files\KMSpico
2021-03-16 01:41 - 2020-11-10 18:46 - 001733632 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-03-16 01:41 - 2019-12-07 15:50 - 000748644 _____ C:\WINDOWS\system32\perfh007.dat
2021-03-16 01:41 - 2019-12-07 15:50 - 000151474 _____ C:\WINDOWS\system32\perfc007.dat
2021-03-16 01:34 - 2020-11-10 18:15 - 000000000 ____D C:\Users\Andreas Ebner
2021-03-16 01:34 - 2020-09-27 08:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-03-16 01:34 - 2020-09-27 06:50 - 000008192 ___SH C:\DumpStack.log.tmp
2021-03-16 01:34 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-03-16 01:34 - 2019-11-27 00:25 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\Apple Inc
2021-03-16 01:33 - 2019-12-07 10:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2021-03-16 01:05 - 2020-08-16 22:53 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\Google
2021-03-16 01:05 - 2020-01-18 08:30 - 000000000 ____D C:\Program Files (x86)\Google
2021-03-16 01:04 - 2020-11-11 11:06 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\IObit
2021-03-16 01:04 - 2020-11-11 11:06 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 8
2021-03-16 01:03 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Macromed
2021-03-16 01:02 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2021-03-16 01:02 - 2019-01-09 10:13 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-03-16 01:02 - 2018-10-26 18:59 - 000000000 ____D C:\ProgramData\OEM
2021-03-16 01:02 - 2018-10-26 18:59 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acer
2021-03-16 01:02 - 2018-10-26 18:59 - 000000000 ____D C:\Program Files\Acer
2021-03-16 01:00 - 2020-11-10 18:44 - 000000000 ____D C:\WINDOWS\system32\Tasks\CareCenter
2021-03-16 01:00 - 2019-01-08 21:55 - 000000000 ___HD C:\OEM
2021-03-15 22:27 - 2020-11-10 18:44 - 000004186 _____ C:\WINDOWS\system32\Tasks\User_Feed_Synchronization-{59980136-2A6A-449B-A722-C0892DAA3EB4}
2021-03-15 22:13 - 2019-03-23 09:24 - 000000000 ____D C:\Users\Administrator\AppData\Local\Packages
2021-03-15 22:12 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-03-15 21:48 - 2019-07-18 19:28 - 000000000 ___HD C:\Program Files\Common Files\EAInstaller
2021-03-15 20:47 - 2020-09-27 08:53 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-03-15 20:12 - 2020-09-28 17:40 - 000000000 ____D C:\Users\Andreas Ebner\Documents\VlcpVideoV1.0.1
2021-03-15 19:43 - 2021-02-01 23:35 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-03-15 19:37 - 2020-11-11 11:06 - 000000000 ____D C:\ProgramData\IObit
2021-03-15 19:37 - 2020-11-11 11:06 - 000000000 ____D C:\Program Files (x86)\IObit
2021-03-15 19:21 - 2020-11-10 18:43 - 000001890 _____ C:\WINDOWS\diagwrn.xml
2021-03-15 19:21 - 2020-11-10 18:43 - 000001890 _____ C:\WINDOWS\diagerr.xml
2021-03-15 19:21 - 2020-11-10 17:42 - 000000000 ___DC C:\WINDOWS\Panther
2021-03-15 19:14 - 2020-01-22 11:59 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\vlc
2021-03-15 17:25 - 2020-11-10 18:15 - 000000000 ____D C:\Users\Administrator
2021-03-15 17:25 - 2020-04-15 14:58 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ChrisPC VideoTube Downloader Pro
2021-03-15 17:25 - 2019-12-07 10:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-03-15 17:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Catroot2.bak
2021-03-15 17:25 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\AppLocker
2021-03-15 17:25 - 2019-11-25 22:50 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\Backuptrans Android iPhone WhatsApp Transfer + (x64)
2021-03-15 17:25 - 2019-04-10 06:57 - 000000000 ____D C:\Users\Andreas Ebner\Desktop\RevoUninstallerProPortable
2021-03-15 17:25 - 2019-01-08 14:06 - 000000000 ____D C:\Program Files\Common Files\AV
2021-03-15 17:25 - 2018-10-26 19:10 - 000000000 ____D C:\ProgramData\Norton
2021-03-15 17:22 - 2020-11-10 17:20 - 000000000 ____D C:\WINDOWS\SoftwareDistribution.bak
2021-03-15 17:22 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\registration
2021-03-15 17:22 - 2019-01-11 17:16 - 000000000 __RHD C:\MSOCache
2021-03-15 16:40 - 2019-12-07 10:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-03-15 15:33 - 2019-01-08 13:09 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\Packages
2021-03-15 14:05 - 2020-09-27 08:54 - 000000000 ____D C:\ProgramData\Packages
2021-03-15 14:05 - 2019-01-08 13:16 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\PlaceholderTileLogoFolder
2021-03-15 13:40 - 2020-08-10 15:52 - 000000000 ____D C:\ESD
2021-03-15 10:51 - 2019-01-11 09:19 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\D3DSCache
2021-03-15 10:49 - 2019-03-05 13:34 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\ElevatedDiagnostics
2021-03-15 10:22 - 2020-11-10 17:37 - 000000000 ___HD C:\$GetCurrent
2021-03-15 09:16 - 2019-04-14 19:23 - 000000000 ____D C:\ProgramData\SystemAcCrux
2021-03-15 08:40 - 2019-01-08 20:42 - 131005360 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-03-15 01:21 - 2019-02-20 10:53 - 000000306 __RSH C:\ProgramData\ntuser.pol
2021-03-15 00:48 - 2019-01-08 20:37 - 000000000 ____D C:\Program Files\rempl
2021-03-15 00:32 - 2020-11-10 18:44 - 000000276 _____ C:\WINDOWS\WindowsUpdate.log.bak
2021-03-15 00:12 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-03-15 00:12 - 2019-03-23 09:58 - 000000000 ____D C:\Users\Administrator\AppData\Local\CrashDumps
2021-03-14 23:13 - 2019-06-28 23:34 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\Origin
2021-03-14 23:13 - 2019-01-09 00:06 - 000000000 ____D C:\ProgramData\Origin
2021-03-14 23:09 - 2019-03-23 09:24 - 000000000 ___RD C:\Users\Administrator\3D Objects
2021-03-14 17:35 - 2020-12-14 12:27 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-03-14 16:55 - 2019-08-30 17:35 - 000164600 _____ (Qualcomm Atheros, Inc.) C:\WINDOWS\system32\Drivers\e2xw10x64.sys
2021-03-14 15:14 - 2019-02-14 12:40 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\Apple Computer
2021-03-14 13:26 - 2018-10-26 18:47 - 001755928 _____ C:\WINDOWS\SysWOW64\PerfStringBackup.INI
2021-03-14 13:01 - 2021-01-29 10:20 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-03-14 13:01 - 2019-01-08 14:53 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-03-14 04:27 - 2020-09-08 22:51 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\TeraCopy
2021-03-13 09:38 - 2019-01-08 14:53 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-03-11 17:11 - 2020-08-12 09:54 - 000000000 ____D C:\Users\Andreas Ebner\.fontconfig
2021-03-11 17:09 - 2020-09-27 06:50 - 000668760 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-03-11 17:04 - 2019-12-07 10:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-03-11 16:54 - 2019-01-08 20:42 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-03-11 16:51 - 2019-02-04 17:42 - 000000000 ____D C:\Program Files\dotnet
2021-03-11 16:51 - 2019-01-11 17:17 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2021-03-11 16:51 - 2018-10-26 18:30 - 000000000 ____D C:\ProgramData\Package Cache
2021-03-11 15:50 - 2020-08-20 00:43 - 000000000 ___HD C:\$WinREAgent
2021-03-10 23:12 - 2020-10-01 13:21 - 000000128 _____ C:\Users\Andreas Ebner\AppData\Roaming\winscp.rnd
2021-03-10 22:45 - 2019-01-08 15:08 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\NVIDIA
2021-03-09 22:05 - 2017-09-29 14:46 - 000000167 _____ C:\WINDOWS\win.ini
2021-03-08 19:34 - 2021-01-04 21:42 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\TunePat Netflix Video Downloader
2021-03-04 06:42 - 2020-11-28 07:58 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b788ddf1b3e0
2021-03-04 06:42 - 2020-09-27 08:52 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-03-03 19:20 - 2019-07-18 19:07 - 000000000 ____D C:\Program Files (x86)\Origin
2021-02-28 16:47 - 2020-12-29 07:59 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\TuneCable Spotify Downloader
2021-02-24 13:42 - 2020-10-15 14:51 - 007117744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2021-02-24 11:28 - 2020-09-28 22:09 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\FileBot
2021-02-24 02:51 - 2020-10-15 14:51 - 000061257 _____ C:\WINDOWS\system32\nvinfo.pb
2021-02-23 22:53 - 2020-04-03 22:36 - 005627248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2021-02-23 22:53 - 2020-04-03 22:36 - 002635632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2021-02-23 22:53 - 2020-04-03 22:36 - 001758064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2021-02-23 22:53 - 2020-04-03 22:36 - 000990064 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2021-02-23 22:53 - 2020-04-03 22:36 - 000120176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2021-02-23 22:53 - 2020-04-03 22:36 - 000082288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2021-02-23 01:14 - 2020-06-13 20:25 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\SFDL.NET 3
2021-02-22 12:03 - 2021-02-01 23:36 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-02-20 23:19 - 2020-08-15 02:05 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-02-15 13:46 - 2019-05-02 10:09 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\RenPy
2021-02-14 14:58 - 2020-03-05 14:41 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\WhatsApp
2021-02-14 13:01 - 2020-03-05 14:41 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2021-02-14 13:01 - 2020-03-05 14:41 - 000000000 ____D C:\Users\Andreas Ebner\AppData\Local\SquirrelTemp
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2019-05-12 08:39 - 2018-09-15 08:29 - 000045136 ___SH (Microsoft Corporation) C:\Users\Andreas Ebner\RegSvcs.exe
2019-03-26 22:06 - 2019-03-26 22:06 - 000000648 _____ () C:\Program Files (x86)\gruppe.txt
2020-03-17 14:24 - 2020-03-17 14:24 - 000000012 _____ () C:\Users\Andreas Ebner\AppData\Roaming\57194d7fac3eeb8711f0ca1082e7e000
2020-03-17 14:20 - 2020-03-17 14:20 - 000000171 _____ () C:\Users\Andreas Ebner\AppData\Roaming\822f02e4-9e9a-4077-a765-71edfca16ad0
2019-04-28 21:44 - 2019-10-28 10:49 - 000000047 _____ () C:\Users\Andreas Ebner\AppData\Roaming\sysvar
2020-10-01 13:21 - 2021-03-10 23:12 - 000000128 _____ () C:\Users\Andreas Ebner\AppData\Roaming\winscp.rnd
2019-10-09 10:44 - 2019-12-16 12:38 - 000000458 _____ () C:\Users\Andreas Ebner\AppData\Local\Tempcheckcoverage_cookie.txt
==================== FCheck ================================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
FCheck: C:\WINDOWS\SysWOW64\version_IObitDel.dll [2020-11-11] <==== ACHTUNG (Null Byte Datei/Ordner)
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ======================== --- --- --- Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-03-2021
durchgeführt von Andreas Ebner (16-03-2021 09:51:09)
Gestartet von I:\
Windows 10 Home Version 20H2 19042.867 (X64) (2020-11-10 17:44:26)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-4274780374-310312604-1853351802-500 - Administrator - Enabled) => C:\Users\Administrator
Andreas Ebner (S-1-5-21-4274780374-310312604-1853351802-1001 - Administrator - Enabled) => C:\Users\Andreas Ebner
DefaultAccount (S-1-5-21-4274780374-310312604-1853351802-503 - Limited - Disabled)
Gast (S-1-5-21-4274780374-310312604-1853351802-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-4274780374-310312604-1853351802-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Spybot - Search and Destroy (Disabled - Out of date) {F77C7796-45C4-531E-0DAE-B4A8229B11C8}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
AltServer (HKLM-x32\...\{F6FFD3DD-A872-4F18-BD81-334A52EF9BFE}) (Version: 1.4.1 - Riley Testut)
Amazon Music (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Amazon Amazon Music) (Version: 7.12.0.2203 - Amazon.com Services LLC)
Anti-Twin (Installation 04.03.2019) (HKLM-x32\...\Anti-Twin 2019-03-04 18.17.18) (Version: - Joerg Rosenthal, Germany)
AnyTrans (HKLM-x32\...\AnyTrans) (Version: 8.1.0.0 - iMobie Inc.)
Apple Application Support (32-Bit) (HKLM-x32\...\{CCA8C50D-785B-4896-8675-FFE0C4ECCBC3}) (Version: 8.7 - Apple Inc.)
Apple Application Support (64-Bit) (HKLM\...\{75BEF7E8-4370-4D42-94F3-B5AA77057965}) (Version: 8.7 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{F9CEF01A-3907-4614-824F-CF5D3E4675EF}) (Version: 14.1.0.35 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A3985C05-7386-411F-A4BF-32A73F37EB44}) (Version: 2.6.3.1 - Apple Inc.)
Auto FTP Manager 7 (HKLM-x32\...\Auto FTP Manager 7_is1) (Version: - DeskShare Inc.)
Avidemux VC++ 64bits (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\{8a390b8c-33a4-488b-adb2-1c204cadb2b7}) (Version: 2.7.5 - Mean)
AVS Audio Converter 9.1.2 (HKLM-x32\...\AVS Audio Converter_is1) (Version: 9.1.2.600 - Online Media Technologies Ltd.)
Backuptrans Android iPhone WhatsApp Transfer + (x64) 3.2.129 (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Backuptrans Android iPhone WhatsApp Transfer + (x64)) (Version: 3.2.129 - Backuptrans)
BaZnGa IPTV M3U Editor version 1.2.0.60 (HKLM-x32\...\{24E17CFF-94B3-46A8-B7A6-2EDACB841E03}_is1) (Version: 1.2.0.60 - BaZnGa IPTV)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.260.0.1032 - BlueStack Systems, Inc.)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
Canon Easy-PhotoPrint Editor (HKLM-x32\...\Canon Easy-PhotoPrint Editor) (Version: 1.5.5 - Canon Inc.)
Canon PosterArtist Lite (HKLM-x32\...\{6C3D298C-B03A-49B9-863E-8E6D182033BB}) (Version: 2.99.00.001 - Ihr Firmenname) Hidden
Canon PosterArtist Lite (HKLM-x32\...\Canon PosterArtist Lite) (Version: 3.20.00 - Canon Inc.)
ChrisPC VideoTube Downloader Pro 12.03.31 (HKLM-x32\...\{6006089C-84B5-4F18-8113-9876543210ED}_is1) (Version: - Chris P.C. srl)
CopyTrans Control Center nur deinstallieren (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\CopyTrans Suite) (Version: 4.100 - WindSolutions)
CPUID CPU-Z 1.87 (HKLM\...\CPUID CPU-Z_is1) (Version: 1.87 - CPUID, Inc.)
Crucial Storage Executive (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Crucial Storage Executive 3.60.082018.04) (Version: 3.60.082018.04 - Crucial)
Directory List & Print (Pro) (HKLM-x32\...\{6336F23D-1D20-4E02-9FBD-20B3A8210E4D}_is1) (Version: 4.11 - Infonautics GmbH, Switzerland)
Directory List & Print Pro 4.11 (HKLM-x32\...\Directory List & Print Pro 4.11) (Version: 4.11 - Infonautics)
EaseUS Todo PCTrans 11.8 (HKLM-x32\...\EaseUS Todo PCTrans_is1) (Version: - EaseUS)
ExifCleaner 3.1.0 (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\8457e380-8acb-5e7f-a000-5966971ba7cc) (Version: 3.1.0 - szTheory)
FFMPEG Addon (HKLM-x32\...\{111124AF-1ED4-44EF-B674-111111985342}_is1) (Version: 1.00 - FFMPEG)
FileBot (HKLM\...\{3154A34A-121F-49A4-92E3-BB977772C397}) (Version: 4.9.3 - Reinhard Pointner)
FileZilla Client 3.50.0 (HKLM-x32\...\FileZilla Client) (Version: 3.50.0 - Tim Kosse)
FlixGrab version 5.1.11.217 (HKLM-x32\...\FlixGrab_is1) (Version: 5.1.11.217 - FreeGrabApp Ltd)
FLV-Media-Player (HKLM-x32\...\{AB7A5DBA-BC45-489A-B4D2-2E8F8CABB9EA}) (Version: 2.0.3.2532 - HYBRIDWEB.de)
Folder Size (64-bit) (HKLM\...\{F24FF688-7138-4CCF-A83F-71E9FB01170E}) (Version: 2.6 - Brio)
FonePaw 6.2.0 (HKLM-x32\...\{77B09C3A-839E-4ea7-81BA-E5864F6BF388}_is1) (Version: 6.2.0 - FonePaw)
Free M4a to MP3 Converter 9.7 (HKLM-x32\...\Free M4a to MP3 Converter_is1) (Version: - ManiacTools.com)
GetFLV 13.8558.858 (HKLM-x32\...\GetFLV_is1) (Version: - GetFLV, Inc.)
Grand Theft Auto V (HKLM-x32\...\{5EFC6C07-6B87-43FC-9524-F9E967241741}) (Version: 1.0.1868.0 - Rockstar Games)
H2rename (HKLM-x32\...\H2rename) (Version: 0.7.4 - c't Magazin für Computertechnik)
iCloud (HKLM\...\{8808B208-87D1-4725-8192-76D257E9DEAE}) (Version: 7.21.0.23 - Apple Inc.)
IJ Network Device Setup Utility (HKLM-x32\...\IJ Network Device Setup Utility) (Version: 1.10.0 - Canon Inc.)
iMazing 2.7.5.0 (HKLM\...\iMazing_is1) (Version: 2.7.5.0 - DigiDNA)
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1805.12.0.1097 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{00000000-0210-1031-84C8-B8D95FA3C8C3}) (Version: 21.00.0.4 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{ed99f619-885c-48d6-b971-0bc85013cd92}) (Version: 10.1.18010.8141 - Intel(R) Corporation)
IP-TV Player 49.4 (HKLM-x32\...\IP-TV_Player) (Version: 49.4 - ADSL Club Co Ltd)
IPTV Smarters Player 3.0.0 (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\fee38e36-bd5c-5f8c-a4c4-29d7f942a22c) (Version: 3.0.0 - IPTV Smarters Player)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
ISO to USB (HKLM-x32\...\{D08A30AC-A663-4EA8-8D81-B98E17F19F1C}_is1) (Version: - isotousb.com)
iTunes (HKLM\...\{DE0F48FE-04C1-4646-AA58-2BE7A1A58742}) (Version: 12.11.0.26 - Apple Inc.)
Jihosoft iTunes Backup Unlocker version 3.0.4.0 (HKLM-x32\...\{3274F1E0-E2AC-4CA5-883C-6DF994D4C172}_is1) (Version: 3.0.4.0 - Jihosoft Studio)
Killer Performance Driver Suite (HKLM\...\{CF4699BC-19FA-4FDC-A16F-E2A340622F8A}) (Version: 1.5.1852 - Rivet Networks)
Kodi (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Kodi) (Version: - XBMC-Foundation)
Leawo Blu-ray Player Version 2.2.0.0 (HKLM-x32\...\{CF7F52BF-DEE0-44CD-A7E1-AADD5CCECCDD}_is1) (Version: 2.2.0.0 - Leawo Software)
LinuxLive USB Creator (HKLM-x32\...\LinuxLive USB Creator) (Version: 2.9 - Thibaut Lauziere)
Loaris Trojan Remover 3.1.60 (HKLM\...\{29988DC6-9C4A-49B2-AC86-5C380B29ADB9}_is1) (Version: 3.1.60 - Loaris Inc.)
LockHunter 3.3, 32/64 bit (HKLM\...\LockHunter_is1) (Version: - Crystal Rich Ltd)
Malwarebytes version 4.3.0.98 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.3.0.98 - Malwarebytes)
Microsoft .NET Core SDK 2.2.103 (x64) (HKLM-x32\...\{730ee99f-7165-41f7-b107-ced51cbb0c19}) (Version: 2.2.103 - Microsoft Corporation)
Microsoft ASP.NET MVC 4 Runtime (HKLM-x32\...\{3FE312D5-B862-40CE-8E4E-A6D8ABF62736}) (Version: 4.0.40804.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 89.0.774.54 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM-x32\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-4274780374-310312604-1853351802-500\...\OneDriveSetup.exe) (Version: 20.134.0705.0008 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{99FAF70F-9B61-4AB0-9EC0-B31F98FFDC4A}) (Version: 2.75.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 (HKLM-x32\...\{95716cce-fc71-413f-8ad5-56c2892d4b3a}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.27.29112 (HKLM-x32\...\{be826f5f-eda5-45a2-a3fe-c2cb5c1b9842}) (Version: 14.27.29112.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Windows Desktop Runtime - 3.1.13 (x64) (HKLM-x32\...\{df32638d-0722-47cb-b084-3dd851b1146e}) (Version: 3.1.13.29816 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Movavi Video Converter 20 Premium (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\Movavi Video Converter 20 Premium) (Version: 20.2.1 - Movavi)
Mozilla Firefox 86.0.1 (x64 de) (HKLM\...\Mozilla Firefox 86.0.1 (x64 de)) (Version: 86.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 85.0.2 - Mozilla)
Mp3tag v3.02 (HKLM-x32\...\Mp3tag) (Version: 3.02 - Florian Heidenreich)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
NVIDIA FrameView SDK 1.1.4923.29548709 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.1.4923.29548709 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.21.0.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.21.0.36 - NVIDIA Corporation)
NVIDIA Grafiktreiber 461.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 461.72 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.38.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.38.40 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.19.0218 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.19.0218 - NVIDIA Corporation)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Open-Shell (HKLM\...\{1CAB353D-D3F9-4C5D-A305-33D7BF270F1B}) (Version: 4.4.142 - The Open-Shell Team)
Oracle VM VirtualBox 6.1.18 (HKLM\...\{B1B2878D-9F1A-4403-84E7-6378D7D43C83}) (Version: 6.1.18 - Oracle Corporation)
Origin (HKLM-x32\...\Origin) (Version: 10.5.94.46774 - Electronic Arts, Inc.)
Outils de vérification linguistique 2013 de Microsoft Office*- Français (HKLM-x32\...\{90150000-001F-040C-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
PassFab iPhone Unlocker 2.1.4.8 (HKLM-x32\...\{PassFab iPhone Unlocker}_is1) (Version: 2.1.4.8 - PassFab, Inc.)
PhotoStage Diashow-Programm (HKLM-x32\...\PhotoStage) (Version: 7.09 - NCH Software)
Pixillion Bildkonverter (HKLM-x32\...\Pixillion) (Version: 7.25 - NCH Software)
PredatorSense Service (HKLM\...\{8D399C7A-8693-4BDE-9D22-D43CBB8BBF62}) (Version: 3.00.3136 - Acer Incorporated)
Reset Windows Update Tool (HKLM\...\Reset Windows Update Tool11.0.0.9) (Version: 11.0.0.9 - Manuel Gil)
Revo Uninstaller Pro (HKLM\...\Revo Uninstaller Pro) (Version: - VS Revo Group)
Revo Uninstaller Pro 4.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 4.0.5 - VS Revo Group, Ltd.)
RGSS-RTP Standard (HKLM-x32\...\{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}) (Version: 1.0.0 - Enterbrain)
Rockstar Games Launcher (HKLM-x32\...\Rockstar Games Launcher) (Version: 1.0.17.199 - Rockstar Games)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 2.0.4.3 - Rockstar Games)
SopCast 4.2.0 (HKLM-x32\...\SopCast) (Version: 4.2.0 - www.sopcast.com)
STAR WARS™ Battlefront™ II (HKLM-x32\...\{8a882ce0-0c0b-4eb2-850c-28ebadab4f50}) (Version: 1.1.7.55254 - Electronic Arts)
Sticky Password 8.2.3.43 (HKLM-x32\...\Sticky Password_is1) (Version: 8.2 - Lamantine Software)
Telegram Desktop version 2.5.1 (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 2.5.1 - Telegram FZ-LLC)
TeraCopy version 3.4 beta (HKLM\...\TeraCopy_is1) (Version: 3.4 beta - Code Sector)
Thunderbolt™ Software (HKLM-x32\...\{6ECDE40C-4023-419A-8A4E-50FB71275876}) (Version: 17.3.73.350 - Intel Corporation)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52 - Ghisler Software GmbH)
Trust GXT 155 Gaming Mouse version 1.2 (HKLM-x32\...\{A523DAD0-3DF2-4FFB-9B36-58A4C2600EDD}_is1) (Version: 1.2 - TRUST)
TuneCable Spotify Downloader 1.2.0 (HKLM-x32\...\TuneCable Spotify Downloader) (Version: 1.2.0 - TuneCable)
TunePat Amazon Music Converter version 1.34 (HKLM-x32\...\{51244439-F4C9-2020-6666-90091911AAA}_is1) (Version: 1.34 - )
TunePat Netflix Video Downloader 1.4.1 (HKLM-x32\...\TunePat Netflix Video Downloader) (Version: 1.4.1 - TunePat)
TunSetupVPNU (HKLM\...\{3E4BC5B7-104F-40B3-BEC4-9CEF0BCD0EF8}) (Version: 1.0.0 - Keepsolid Inc.)
TV-Browser 4.2 (HKLM\...\tvbrowser-full) (Version: 4.2 - TV-Browser Team)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM-x32\...\{90150000-0011-0000-0000-0000000FF1CE}_Office15.PROPLUS_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM-x32\...\{90150000-002A-0000-1000-0000000FF1CE}_Office15.PROPLUS_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB4484289) 32-Bit Edition (HKLM-x32\...\{90150000-012B-0407-0000-0000000FF1CE}_Office15.PROPLUS_{F97B139A-D8BF-46FF-A6F6-50710FED8644}) (Version: - Microsoft)
UpdateAssistant (HKLM\...\{52C1DD03-104E-4AC6-9DC6-21D585721ED1}) (Version: 1.19.0.0 - Microsoft Corporation) Hidden
VEGAS Pro 17.0 (HKLM\...\{8D4A5730-17CF-11EA-B57F-00155D6302F2}) (Version: 17.0.387 - VEGAS)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.12 - VideoLAN)
VLC media player 3.0.8 (64-bit) (HKLM\...\{34A66242-34A2-4049-9808-1A693370FACE}) (Version: 3.0.8.0 - VideoLAN)
VPN Unlimited 8.3.1 (HKLM-x32\...\{DC24521E-872B-41AF-93EA-FE477902D6FB}_is1) (Version: 8.3.1 - KeepSolid Inc.)
WATCHED 0.18.0 (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\6811d8ec-23f6-5ad3-9bb7-0e515c178d2a) (Version: 0.18.0 - WATCHED AG)
WhatsApp (HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\WhatsApp) (Version: 2.2102.9 - WhatsApp)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
WinRAR 5.91 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.91.0 - win.rar GmbH)
WinSCP 5.17.9 (HKLM-x32\...\winscp3_is1) (Version: 5.17.9 - Martin Prikryl)
Wondershare Helper Compact 2.5.3 (HKLM-x32\...\{5363CE84-5F09-48A1-8B6C-6BB590FFEDF2}_is1) (Version: 2.5.3 - Wondershare)
Wondershare UniConverter(Build 11.7.0.3) (HKLM-x32\...\UniConverter_is1) (Version: 11.7.0.3 - Wondershare Software)
Packages:
=========
@{Microsoft.XboxDevices_300.1809.28002.0_x64__8wekyb3d8bbwe?ms-resource://Microsoft.XboxDevices/Resources/LandingPageTitle/Text} -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_300.1809.28002.0_x64__8wekyb3d8bbwe [2019-03-23] (0)
Acer Collection -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCollection_1.1.3013.0_x64__48frkmn4z8aw4 [2021-03-15] (Acer Incorporated)
Acer Product Registration -> C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3024.0_x64__48frkmn4z8aw4 [2021-03-15] (Acer Incorporated)
Amazon Assistant -> C:\Program Files\WindowsApps\Amazon.com.AmazonAssistant_10.1910.9.0_neutral__343d40qqvtj1t [2021-03-15] (Amazon.com)
Best Player -> C:\Program Files\WindowsApps\2949193320E78.BestPlayer8.1_7.1.5.0_x64__pg6a145mvhp7p [2021-03-15] (marios g.)
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2021-03-15] (Canon Inc.)
Dolby Access -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAccess_3.7.337.0_x64__rz1tebttyb220 [2021-03-15] (Dolby Laboratories)
Dolby Atmos for Headphones -> C:\Program Files\WindowsApps\DolbyLaboratories.DolbyAtmosforHeadphones_2.3.303.0_x64__rz1tebttyb220 [2021-03-15] (Dolby Laboratories)
DTS Sound Unbound -> C:\Program Files\WindowsApps\DTSInc.DTSSoundUnbound_2020.4.45.0_x64__t5j2fzbtdg37r [2021-03-15] (DTS, Inc.)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2021-03-15] (LinkedIn)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2021-03-15] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2021-03-15] (Microsoft Corporation) [MS Ad]
Microsoft-Remotedesktop -> C:\Program Files\WindowsApps\Microsoft.RemoteDesktop_10.2.1701.0_x64__8wekyb3d8bbwe [2021-03-15] (Microsoft Corporation)
MyIPTV Player -> C:\Program Files\WindowsApps\41879VbfnetApps.MyIPTVPlayer_4.2.5.0_x64__7casf8sqhfy78 [2021-03-15] (Vbfnet Apps) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.97.752.0_x64__mcm4njqhnhss8 [2021-03-15] (Netflix, Inc.)
Netzkino -> C:\Program Files\WindowsApps\35124netzkino.Netzkino_3.3.1.1_neutral__843rhjq2hbnd4 [2021-03-15] (netzkino) [MS Ad]
PDF Reader - Ansehen, Kommentieren, Teilen -> C:\Program Files\WindowsApps\0D9A1B2D.PDFReaderUWP_1.11.0.0_x64__jhretta7p24aw [2021-03-15] (Kdan Mobile Software Ltd.)
PhotoDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PhotoDirectorforacerDesktop_8.0.5229.0_x64__ypz87dpxkv292 [2021-03-15] (CYBERLINK COM CORP)
PowerDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PowerDirectorforacerDesktop_14.0.4304.0_x64__ypz87dpxkv292 [2021-03-15] (CYBERLINK COM CORP)
Realtek Audio Control -> C:\Program Files\WindowsApps\RealtekSemiconductorCorp.RealtekAudioControl_1.1.137.0_x64__dt26b99r8h8gj [2021-03-16] (Realtek Semiconductor Corp)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0 [2021-03-15] (Spotify AB) [Startup Task]
Übersetzer -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2021-03-16] (Microsoft Corporation)
Waves MaxxAudio For Acer -> C:\Program Files\WindowsApps\WavesAudio.20761030F5EAC_1.0.67.0_x64__fh4rh281wavaa [2021-03-15] (Waves Audio)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-4274780374-310312604-1853351802-1001_Classes\CLSID\{233525e0-5434-46ef-b464-fd7e45e2e145}\localserver32 -> "C:\Program Files (x86)\Intel\Driver and Support Assistant\DSATray.exe" -ToastActivated => Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Keine Datei
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Keine Datei
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Open-Shell\ClassicExplorer64.dll [2019-10-26] (Open-Shell) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => -> Keine Datei
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Open-Shell\ClassicExplorer64.dll [2019-10-26] (Open-Shell) [Datei ist nicht signiert]
ContextMenuHandlers1: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2021-01-04] (Loaris, LLC -> Loaris Inc.)
ContextMenuHandlers1: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2019-11-29] (Crystal Rich Ltd -> TODO: <Company name>)
ContextMenuHandlers1: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [Datei ist nicht signiert]
ContextMenuHandlers1: [PhotoStreamsExt] -> {89D984B3-813B-406A-8298-118AFA3A22AE} => C:\Program Files\Common Files\Apple\Internet Services\ShellStreams64.dll [2020-09-08] (Apple Inc. -> Apple Inc.)
ContextMenuHandlers1: [ShellConverter] -> {30A4E07E-068A-4d91-8F05-691283A1336B} => C:\Program Files (x86)\Common Files\AVSMedia\ActiveX\AVSShellConverter64.dll [2017-12-18] (Online Media Technologies Ltd. -> Online Media Technologies Ltd.) [Datei ist nicht signiert]
ContextMenuHandlers1: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => c:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers2: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2021-01-04] (Loaris, LLC -> Loaris Inc.)
ContextMenuHandlers2: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2019-11-29] (Crystal Rich Ltd -> TODO: <Company name>)
ContextMenuHandlers2: [MEGA (Context menu)] -> {0229E5E7-09E9-45CF-9228-0228EC7D5F17} => -> Keine Datei
ContextMenuHandlers2: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [Datei ist nicht signiert]
ContextMenuHandlers2: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => c:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-22] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers3: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> )
ContextMenuHandlers4: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2021-01-04] (Loaris, LLC -> Loaris Inc.)
ContextMenuHandlers4: [LockHunterShellExt] -> {0BB27CDA-7029-4C0E-9C56-D922B229F0EB} => C:\Program Files\LockHunter\LHShellExt64.dll [2019-11-29] (Crystal Rich Ltd -> TODO: <Company name>)
ContextMenuHandlers4: [Mp3tagShell] -> {6351E20C-35FA-4BE3-98FB-4CABF1363E12} => C:\Program Files (x86)\Mp3tag\Mp3tagShell64.dll [2020-07-11] (Florian Heidenreich) [Datei ist nicht signiert]
ContextMenuHandlers4: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => c:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2021-02-23] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Loaris Trojan Remover] -> {4B884539-D34B-4F5B-B008-3A6F3B213E5C} => C:\Program Files\Loaris Trojan Remover\shellext.dll [2021-01-04] (Loaris, LLC -> Loaris Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2021-02-22] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2019-03-29] (VS Revo Group Ltd. -> VS Revo Group)
ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2019-10-26] (Open-Shell) [Datei ist nicht signiert]
ContextMenuHandlers6: [TeraCopy] -> {A8005AF0-D6E8-48AF-8DFA-023B1CF660A7} => c:\Program Files\TeraCopy\TeraCopyExt.dll [2016-12-07] (Code Sector -> )
ContextMenuHandlers6: [UnlockerShellExtension] -> {DDE4BEEB-DDE6-48fd-8EB5-035C09923F83} => C:\Program Files\Unlocker\UnlockerCOM.dll [2010-07-15] (Empty Loop -> )
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2020-06-25] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [msacm.voxacm160] => C:\Windows\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.scg726] => C:\Windows\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.alf2cd] => C:\Windows\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.ac3acm] => C:\Windows\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Datei ist nicht signiert]
HKLM\...\Drivers32: [msacm.lame] => C:\Windows\system32\lame.ax [245760 2005-08-01] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.dvsd] => C:\Windows\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.mpg4] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.mp42] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.mp43] => C:\Windows\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.xvid] => C:\Windows\system32\xvidvfw.dll [139264 2004-07-03] () [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.DIVX] => C:\Windows\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP60] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP61] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.VP62] => C:\Windows\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]
HKLM\...\Drivers32: [vidc.LAGS] => C:\Windows\system32\lagarith.dll [216064 2011-12-07] () [Datei ist nicht signiert]
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\Users\Andreas Ebner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Reset Windows Update Tool\reset-settings.lnk -> C:\Program Files\wureset\wureset\bin\reset-settings.bat ()
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2020-08-21 19:48 - 2020-12-24 12:48 - 001980928 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\VPN Unlimited\vpnu_private_sdk.dll
2020-09-08 22:51 - 2017-03-14 14:51 - 001714688 _____ () [Datei ist nicht signiert] C:\Program Files\TeraCopy\TeraCopy64.dll
2019-10-26 18:30 - 2019-10-26 18:30 - 000872960 _____ (Open-Shell) [Datei ist nicht signiert] C:\Program Files\Open-Shell\ClassicExplorer64.dll
2019-10-26 18:31 - 2019-10-26 18:31 - 003388928 _____ (Open-Shell) [Datei ist nicht signiert] C:\Program Files\Open-Shell\StartMenuDLL.dll
2020-08-21 19:48 - 2020-10-12 13:23 - 000361984 _____ (The curl library, hxxps://curl.haxx.se/) [Datei ist nicht signiert] C:\Program Files (x86)\VPN Unlimited\libcurl.dll
2020-08-21 19:48 - 2020-10-12 13:23 - 002516480 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\VPN Unlimited\libcrypto-1_1.dll
2020-08-21 19:48 - 2020-10-12 13:23 - 000530944 _____ (The OpenSSL Project, hxxps://www.openssl.org/) [Datei ist nicht signiert] C:\Program Files (x86)\VPN Unlimited\libssl-1_1.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://go.microsoft.com
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://go.microsoft.com
HKU\S-1-5-21-4274780374-310312604-1853351802-500\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://acer17win10.msn.com/?pc=ACTE
HKU\S-1-5-21-4274780374-310312604-1853351802-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
SearchScopes: HKU\S-1-5-21-4274780374-310312604-1853351802-1001 -> DefaultScope {4EEB31BA-3146-4404-A4BB-0DC2183D439F} URL =
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\download.microsoft.com -> hxxp://download.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\download.windowsupdate.com -> hxxp://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\download.windowsupdate.com -> hxxps://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\microsoft.com -> hxxp://ntservicepack.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\ntservicepack.microsoft.com -> hxxp://ntservicepack.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\update.microsoft.com -> hxxp://update.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\update.microsoft.com -> hxxps://update.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\windows.com -> hxxp://wustat.windows.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\windowsupdate.com -> hxxp://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\windowsupdate.com -> hxxps://download.windowsupdate.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\windowsupdate.microsoft.com -> hxxp://windowsupdate.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\ws.microsoft.com -> hxxp://ws.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\ws.microsoft.com -> hxxps://ws.microsoft.com
IE trusted site: HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\wustat.windows.com -> hxxp://wustat.windows.com
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2017-09-29 14:46 - 2021-02-21 11:42 - 000001096 ____R C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 hxxp://www.driver-soft.com
127.0.0.1 www.webrip.audials.com
127.0.0.1 www.dialog.audials.com
127.0.0.1 www.geoip.audials.com
0.0.0.0 telemetry.malwarebytes.com
2019-02-15 09:10 - 2019-03-28 20:19 - 000000575 _____ C:\WINDOWS\system32\drivers\etc\hosts.ics
137.1 LAPTOP-CQ0D7NOI.mshome.net # 2024 2 3 14 21 53 0 667
67
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\NVIDIA Corporation\NVIDIA NvDLISR;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\dotnet\;D:\Program Files\Crucial\Crucial Storage Executive;D:\Program Files\FileBot\;C:\Program Files\wureset
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Acer01.jpg
HKU\S-1-5-21-4274780374-310312604-1853351802-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 0) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: Off)
mpsdrv => Firewall Dienst läuft nicht.
MpsSvc => Firewall Dienst läuft nicht.
Network Binding:
=============
VirtualBox Host-Only Network: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
WLAN: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
Ethernet: VirtualBox NDIS6 Bridged Networking Driver -> oracle_VBoxNetLwf (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\StartupFolder: => "WSAndroidAppHelper.lnk"
HKLM\...\StartupApproved\StartupFolder: => "WSAppHelper.lnk"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKLM\...\StartupApproved\Run32: => "HP Software Update"
HKLM\...\StartupApproved\Run32: => "SecurityHealth"
HKLM\...\StartupApproved\Run32: => "Updater"
HKLM\...\StartupApproved\Run32: => "FonePaw iPhone Data RecoveryAppService"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKLM\...\StartupApproved\Run32: => "Intel Driver & Support Assistant"
HKLM\...\StartupApproved\Run32: => "IObit Malware Fighter"
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\StartupApproved\StartupFolder: => "MEGAsync.lnk"
HKU\S-1-5-21-4274780374-310312604-1853351802-1001\...\StartupApproved\Run: => "iFunBox"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [UDP Query User{504402C0-952F-43EF-8E92-3F7B494941C6}C:\users\andreas ebner\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\andreas ebner\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [TCP Query User{F321F72E-D15F-4012-BD26-99FC953B991F}C:\users\andreas ebner\appdata\local\jdownloader 2.0\jdownloader2.exe] => (Allow) C:\users\andreas ebner\appdata\local\jdownloader 2.0\jdownloader2.exe (Appwork GmbH -> AppWork GmbH)
FirewallRules: [{C308C176-7726-472E-A6D3-4D14FF86E95B}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{C9C87789-19DD-4CEB-8199-2324C1D34A74}] => (Allow) C:\Program Files (x86)\Sticky Password\stpass.exe (Lamantine Software a.s. -> Lamantine Software a.s.)
FirewallRules: [{7F5E33CD-D8FE-4335-B002-28A1AA13F765}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{974B154B-686B-4BFF-B8F8-D5059C942E48}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\lync.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7EA265A9-CD3A-4A75-A653-065FDECEDEF0}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FA82174D-2136-48A4-93AF-464DEAE2A526}] => (Allow) C:\Program Files (x86)\Microsoft Office\Office15\UcMapi.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{CDB1787E-2228-4DE9-816A-1D10D10ED1C6}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{B1AA56EC-038D-4AEC-BDF9-D8E4FCD372FC}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7F9595A6-5D8E-419E-B44A-10CFC3FAAC76}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{7DC9EFC8-BCAE-4351-9F5F-5E698AC8DFDB}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{85049C95-D2F1-4C35-BDEF-E6AC2E2B81D3}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{C1ED1D87-8906-4CBF-A6F8-D2C6BD0D7CCD}] => (Allow) D:\Program Files\iTunes\iTunes.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{6421B682-71C8-4C87-8E94-BCDD8774E943}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9C2B70AD-2599-41B0-900E-BC9CA4BDA98A}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{230044A1-D40D-4D65-90A9-B1C04DA2488C}D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe] => (Allow) D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe (DeskShare, Inc. -> Deskshare) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{93ED4EA9-752A-4658-8C2C-DBCAB7FAFD5D}D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe] => (Allow) D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe (DeskShare, Inc. -> Deskshare) [Datei ist nicht signiert]
FirewallRules: [{D8F6F522-01F6-41C5-8F04-D445521655B4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{471A910C-1C07-45DC-9282-7F3C817F7676}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{AD9F8D1C-551C-452B-A140-7EB8AA6885E1}C:\users\andreas ebner\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\andreas ebner\appdata\roaming\spotify\spotify.exe => Keine Datei
FirewallRules: [UDP Query User{09A405AF-CECE-48DF-9E23-424BFBD7A102}C:\users\andreas ebner\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\andreas ebner\appdata\roaming\spotify\spotify.exe => Keine Datei
FirewallRules: [TCP Query User{77348E8A-FECF-47A0-926C-A8F2E1D71D82}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [UDP Query User{0606A3BD-8835-415D-8230-684493986A4C}C:\program files (x86)\winamp\winamp.exe] => (Allow) C:\program files (x86)\winamp\winamp.exe (Nullsoft Inc. -> Nullsoft, Inc.)
FirewallRules: [{D2CC1932-B4DE-4FB4-95C2-50DA9BEF0C82}] => (Allow) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe (KeepSolid Inc.) [Datei ist nicht signiert]
FirewallRules: [{034B9D54-D114-480C-985A-A06AC78A31A9}] => (Allow) C:\Program Files (x86)\VPN Unlimited\vpn-unlimited.exe (KeepSolid Inc.) [Datei ist nicht signiert]
FirewallRules: [{0D59503D-DABC-4F18-9B62-A11125322336}] => (Allow) C:\Program Files (x86)\VPN Unlimited\openvpn.exe (The OpenVPN Project) [Datei ist nicht signiert]
FirewallRules: [{0BE3BD1D-CEB0-4486-8ED8-B8277AF819C2}] => (Allow) C:\Program Files (x86)\VPN Unlimited\openvpn.exe (The OpenVPN Project) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{9BB26EA8-81AF-4DCA-A450-40F08F4B3501}D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe] => (Allow) D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe (DeskShare, Inc. -> Deskshare) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{1F58E78B-56C4-484C-B201-879918FE2CEC}D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe] => (Allow) D:\program files (x86)\deskshare\auto ftp manager 7\auto ftp manager.exe (DeskShare, Inc. -> Deskshare) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{F3A83457-800B-42CB-8F4E-F8221A16B471}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{FA909C65-FD5D-4D63-801F-906C19524937}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{EF7EE8BF-BA7A-4589-8BE3-D95C8F63670D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DC01363B-1D0C-4BC9-812B-12C937672184}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{A271A209-5186-48DA-A04E-962F42AD35C8}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{DFA3C712-AEA9-4951-BC85-D6149F0A6045}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{EE212E3E-1AB9-4E16-87E1-234CA36CF825}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{0DFF5CD9-7E6C-450C-B563-E2C3877AB4AC}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{387B5492-B444-4EB0-93C4-C529C69C7574}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{9E0B902D-DF22-469E-85E6-A8CB3C5F828E}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.151.380.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{1D5F0B76-73F3-46B3-971F-7ABE1B5FEE73}] => (Allow) C:\Program Files\BlueStacks\HD-Player.exe (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
FirewallRules: [{BA76399B-5053-4C70-B6E9-51F9B00E58A7}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe => Keine Datei
FirewallRules: [{9E81686D-01A4-48A0-ADD8-0ACF4CFC74B4}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{18CA7050-E930-454E-8066-AE8D9A220381}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{B8A3BD51-9E47-48B3-B927-6C01AE14439F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{532B3716-B10F-42C1-95D1-0AEFC089EEBF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [TCP Query User{B0B12BF1-ACA2-471F-8BDF-CBBE8F3D69E8}E:\musik\stick kodi lastship destiny\kodi\kodi.exe] => (Allow) E:\musik\stick kodi lastship destiny\kodi\kodi.exe => Keine Datei
FirewallRules: [UDP Query User{E2EA3F2A-793B-46C4-8021-01F186EA13F5}E:\musik\stick kodi lastship destiny\kodi\kodi.exe] => (Allow) E:\musik\stick kodi lastship destiny\kodi\kodi.exe => Keine Datei
==================== Wiederherstellungspunkte =========================
15-03-2021 19:19:10 Revo Uninstaller Pro's restore point - Oracle VM VirtualBox
15-03-2021 19:36:56 Revo Uninstaller Pro's restore point - IObit Malware Fighter 8
15-03-2021 19:40:34 Revo Uninstaller Pro's restore point - Java 8 Update 281 (64-bit)
15-03-2021 19:40:45 Removed Java 8 Update 281 (64-bit)
15-03-2021 19:56:49 JRT Pre-Junkware Removal
15-03-2021 21:43:10 Revo Uninstaller Pro's restore point - MegaTrainer Ultimate Version 2.4.2.1
15-03-2021 21:43:58 Revo Uninstaller Pro's restore point - Audials 2020
15-03-2021 21:45:44 Revo Uninstaller Pro's restore point - Audacity 2.3.3
15-03-2021 21:47:13 Revo Uninstaller Pro's restore point - TAP-Windows 9.21.2
15-03-2021 21:48:00 Revo Uninstaller Pro's restore point - Need for Speed™ Heat
15-03-2021 21:48:48 Revo Uninstaller Pro's restore point - MediaMonkey 4.1
15-03-2021 21:50:21 Revo Uninstaller Pro's restore point - VdhCoApp 1.3.0
15-03-2021 21:51:02 Revo Uninstaller Pro's restore point - Office 2019 KMS Activator Ultimate 1.5
16-03-2021 01:00:38 Removed Acer Configuration Manager
16-03-2021 01:01:20 Removed Acer Jumpstart
16-03-2021 01:02:30 Removed Adobe Acrobat Reader DC - Deutsch.
16-03-2021 09:20:23 AdwCleaner_BeforeCleaning_16/03/2021_09:20:22
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Intel High Definition DSP
Description: Intel High Definition DSP
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (03/16/2021 09:28:46 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm firefox.exe Version 86.0.1.7739 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 18a0
Startzeit: 01d71a3d6fdff073
Beendigungszeit: 4294967295
Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe
Bericht-ID: 12cdbc44-db6d-4572-a0b6-84110a1843ec
Vollständiger Name des fehlerhaften Pakets:
Relative Anwendungs-ID des fehlerhaften Pakets:
Absturztyp: Top level window is idle
Error: (03/16/2021 09:19:14 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Das Programm firefox.exe Version 86.0.1.7739 hat die Interaktion mit Windows beendet und wurde geschlossen. Überprüfen Sie den Problemverlauf in der Systemsteuerung "Sicherheit und Wartung", um nach weiteren Informationen zum Problem zu suchen.
Prozess-ID: 276c
Startzeit: 01d719fc23afcf82
Beendigungszeit: 4294967295
Anwendungspfad: C:\Program Files\Mozilla Firefox\firefox.exe
Bericht-ID: 0ea72782-433d-4409-9b32-44a3f4221944
Vollständiger Name des fehlerhaften Pakets:
Relative Anwendungs-ID des fehlerhaften Pakets:
Absturztyp: Top level window is idle
Error: (03/16/2021 05:25:53 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: MyIPTV.exe, Version: 1.0.0.0, Zeitstempel: 0x5f1c30bf
Name des fehlerhaften Moduls: d3d11.dll, Version: 10.0.19041.746, Zeitstempel: 0xfc177b9d
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000000a7f7
ID des fehlerhaften Prozesses: 0x2728
Startzeit der fehlerhaften Anwendung: 0x01d719fe3c58b7b1
Pfad der fehlerhaften Anwendung: C:\Program Files\WindowsApps\41879VbfnetApps.MyIPTVPlayer_4.2.5.0_x64__7casf8sqhfy78\MyIPTV.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\SYSTEM32\d3d11.dll
Berichtskennung: 3c08e60a-0b5e-4129-8a32-b8106f4582c0
Vollständiger Name des fehlerhaften Pakets: 41879VbfnetApps.MyIPTVPlayer_4.2.5.0_x64__7casf8sqhfy78
Anwendungs-ID, die relativ zum fehlerhaften Paket ist: App
Error: (03/16/2021 01:34:05 AM) (Source: MBAMIService) (EventID: 0) (User: )
Description: Event-ID 0
Error: (03/16/2021 01:34:05 AM) (Source: MBAMIService) (EventID: 0) (User: )
Description: Event-ID 0
Error: (03/16/2021 01:33:10 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.
Error: (03/16/2021 01:33:10 AM) (Source: VSS) (EventID: 13) (User: )
Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.
]
Error: (03/16/2021 01:33:10 AM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.
.
Systemfehler:
=============
Error: (03/16/2021 09:20:32 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Intel® SGX AESM" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (03/16/2021 09:20:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (03/16/2021 09:20:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Killer Network Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (03/16/2021 09:20:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Origin Web Helper Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (03/16/2021 09:20:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Predator Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (03/16/2021 09:20:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Capability Licensing Service TCP IP Interface" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (03/16/2021 09:20:32 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (03/16/2021 09:20:32 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Waves Audio Services" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
CodeIntegrity:
===============
Date: 2021-03-16 09:50:23
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume7\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2021-03-16 09:48:21
Description:
Code Integrity determined that a process (\Device\HarddiskVolume7\Windows\System32\svchost.exe) attempted to load \Device\HarddiskVolume7\Program Files\Bonjour\mdnsNSP.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: Insyde Corp. V1.16 10/24/2018
Hauptplatine: CFL Cayman_CFS
Prozessor: Intel(R) Core(TM) i7-8750H CPU @ 2.20GHz
Prozentuale Nutzung des RAM: 38%
Installierter physikalischer RAM: 16287.8 MB
Verfügbarer physikalischer RAM: 10063.71 MB
Summe virtueller Speicher: 18719.8 MB
Verfügbarer virtueller Speicher: 8890.87 MB
==================== Laufwerke ================================
Drive c: (Acer) (Fixed) (Total:237.36 GB) (Free:110.85 GB) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:578.21 GB) NTFS
Drive e: (Filme/Serien) (Fixed) (Total:1863 GB) (Free:1798.72 GB) NTFS
Drive i: (Stick) (Removable) (Total:32 GB) (Free:31.93 GB) NTFS
Drive s: (Spiele SSD) (Fixed) (Total:465.75 GB) (Free:289.21 GB) NTFS
\\?\Volume{0a075890-a07c-4d91-9b23-ccfd1567f38f}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.5 GB) NTFS
\\?\Volume{ef626c3c-fed6-49d9-913d-dee05596b177}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 065D87BF)
Partition: GPT.
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 00CC3198)
Partition: GPT.
==========================================================
Disk: 2 (Size: 238.5 GB) (Disk ID: 065D8751)
Partition: GPT.
==========================================================
Disk: 3 (Protective MBR) (Size: 1863 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 4 (MBR Code: Windows 7/8/10) (Size: 58.4 GB) (Disk ID: AAAA903F)
Partition 1: (Active) - (Size=32 GB) - (Type=07 NTFS)
==================== Ende von Addition.txt ======================= FRST |