Trojaner-Board - TR/Trash.Gen

Code:

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2020

durchgeführt von User (Administrator) auf DESKTOP-KR5I533 (Hewlett-Packard HP ProBook 470 G2) (15-01-2020 17:29:41)

Gestartet von C:\Users\User\Downloads

Geladene Profile: User (Verfügbare Profile: defaultuser0 & User & Administrator)

Platform: Windows 10 Pro Version 1909 18363.592 (X64) Sprache: Deutsch (Deutschland)

Standard-Browser: FF

Start-Modus: Normal

Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
 

==================== Prozesse (Nicht auf der Ausnahmeliste) =================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
 

() [Datei ist nicht signiert] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe

(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe

(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe

(Acronis International GmbH -> Acronis) C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe

(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe

(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe

(Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSettings.exe

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0333024.inf_amd64_4abeb3e4ae07dc5e\B333018\atieclxx.exe

(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\DriverStore\FileRepository\c0333024.inf_amd64_4abeb3e4ae07dc5e\B333018\atiesrxx.exe

(Buhl Data Service GmbH -> Buhl Data Service GmbH) C:\Program Files (x86)\Buhl\WISO Konto Online 365\Buhl.MeinGeld.UpdateService.exe

(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe

(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe

(Hewlett-Packard -> HP) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe

(HP Inc. -> HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe

(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_8598cf7f18c538c5\HotKeyServiceUWP.exe

(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_8598cf7f18c538c5\HPHotkeyNotification.exe

(HP Inc. -> HP Inc.) C:\Windows\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_8598cf7f18c538c5\LanWlanWwanSwitchingServiceUWP.exe

(HP Inc. -> HP) C:\Program Files (x86)\HP\Shared\hpqwmiex.exe

(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe

(Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe

(Intel Corporation -> ) C:\Windows\System32\igfxTray.exe

(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe

(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxEM.exe

(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe

(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe

(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe

(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe

(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe

(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe

(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

(Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files\Windows Sidebar\sidebar.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServices.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe

(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11912.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe

(Microsoft Windows Hardware Compatibility Publisher -> ) C:\Windows\System32\fpCSEvtSvc.exe

(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe

(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe

(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe

(Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.) C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe

(SMA Solar Technology AG -> Microsoft) C:\Program Files (x86)\SMA\Sunny Explorer\SMA.Multicasting.IGMP.QuerierService.exe

(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe

(Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

(Vigyanlabs Innovations Private Limited -> Vigyanlabs Innovation Pvt. Ltd.) C:\Program Files (x86)\Vigyanlabs\IPMPLUS\bin\IPMPlusAgentSe.exe

(Vigyanlabs Innovations Private Limited -> Vigyanlabs Innovation Pvt. Ltd.) C:\Program Files (x86)\Vigyanlabs\IPMPLUS\bin\IPMPlusService.exe

(Vigyanlabs Innovations Private Limited -> Vigyanlabs Innovation Pvt. Ltd.) C:\Program Files (x86)\Vigyanlabs\IPMPLUS\bin\IPMPlusUserInteract.exe

(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe

(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe

(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe

(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe

(Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.) C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe

(Wolters Kluwer Deutschland GmbH -> ) C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe
 

==================== Registry (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9277528 2019-08-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [323040 2015-11-17] (Intel(R) Rapid Storage Technology -> Intel Corporation)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

HKLM\...\Run: [Acronis Scheduler2 Service] => C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [571192 2014-08-14] (Acronis International GmbH -> Acronis)

HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163640 2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]

HKLM\...\Run: [] => [X]

HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [225256 2019-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)

HKLM-x32\...\Run: [IPMPlusConsoleSE] => C:\Program Files (x86)\Vigyanlabs\IPMPLUS\bin\IPMPlusConsoleSE.exe [1989288 2015-06-19] (Vigyanlabs Innovations Private Limited -> Vigyanlabs Innovation Pvt. Ltd.)

HKLM-x32\...\Run: [IPMPlusUserInteract] => C:\Program Files (x86)\Vigyanlabs\IPMPLUS\bin\IPMPlusUserInteract.exe [154280 2015-06-19] (Vigyanlabs Innovations Private Limited -> Vigyanlabs Innovation Pvt. Ltd.)

HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard Company -> Hewlett-Packard)

HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Datei ist nicht signiert]

HKLM-x32\...\Run: [AdobeCS5.5ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS5.5ServiceManager\CS5.5ServiceManager.exe [1523360 2011-01-12] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrobat_sl.exe [41360 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Acrotray.exe [840592 2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [6261760 2020-01-07] (Dropbox, Inc -> Dropbox, Inc.)

HKLM-x32\...\Run: [TrueImageMonitor.exe] => C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [5380368 2015-07-20] (Acronis International GmbH -> Acronis)

HKLM-x32\...\Run: [AcronisTibMounterMonitor] => C:\Program Files (x86)\Common Files\Acronis\TibMounter\TibMounterMonitor.exe [693336 2015-07-19] (Acronis International GmbH -> Acronis International GmbH)

HKLM-x32\...\Run: [CanonQuickMenu] => C:\Program Files (x86)\Canon\Quick Menu\CNQMMAIN.EXE [1279120 2012-09-27] (Canon Inc. -> CANON INC.)

HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452272 2012-08-31] (Canon Inc. -> CANON INC.)

HKLM-x32\...\Run: [DriveUtilitiesHelper] => C:\Program Files (x86)\Western Digital\WD Utilities\WDDriveUtilitiesHelper.exe [1852264 2014-05-23] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)

HKLM-x32\...\Run: [WD Drive Unlocker] => C:\Program Files (x86)\Western Digital\WD Security\WDDriveAutoUnlock.exe [1694048 2014-05-23] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)

HKLM-x32\...\Run: [WD Quick View] => C:\Program Files (x86)\Western Digital\WD Quick View\WDDMStatus.exe [5562736 2014-07-22] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)

HKLM-x32\...\Run: [] => [X]

HKLM\...\RunServicesOnce: [WISO Finanz Update] => C:\ProgramData\Buhl Data Service GmbH\WISO Konto Online Plus 365\Download\WISOFinanz365Update_25.1.1.197.exe [213923792 2019-10-15] (Buhl Data Service GmbH -> Buhl Data Service GmbH)

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\Run: [gStart] => C:\Program Files (x86)\Garmin\Training Center\gStart.exe [1891416 2008-08-13] (Garmin International -> GARMIN Corp.) [Datei ist nicht signiert]

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832264 2017-10-10] (Skype Software Sarl -> Skype Technologies S.A.)

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\Run: [] => [X]

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\Run: [Viber] => C:\Users\User\AppData\Local\Viber\Viber.exe [39016008 2019-12-16] (Viber Media S.à r.l. -> Viber Media S.Ã* r.l.)

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\MountPoints2: {8991df25-7cc0-11e6-81c7-b46d83944ce6} - "D:\WD Drive Unlock.exe" autoplay=true

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [38400 2019-03-19] (Microsoft Windows -> Microsoft Corporation)

HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.117\Installer\chrmstp.exe [2020-01-10] (Google LLC -> Google LLC)

Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2019-01-21]

ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)

Startup: C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Sidebar282.lnk [2020-01-15]

ShortcutTarget: Sidebar282.lnk -> C:\Program Files\Windows Sidebar\sidebar.exe (Microsoft Corporation) [Datei ist nicht signiert]

FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
 

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

Task: {0456D6B8-448D-4C15-B909-535741DCDF6D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)

Task: {120498B6-7F53-45F0-9449-1431B766ABDA} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)

Task: {18178ED7-DD29-4557-BE3E-3A8F1C0BF24D} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MpCmdRun.exe [470176 2019-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {1D71DC54-43B5-4454-B15D-40CF331E994A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-03-14] (Google Inc -> Google Inc.)

Task: {263697A6-B2A9-43A8-8169-CF91C050D94B} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [1506680 2019-06-14] (HP Inc. -> HP Inc.)

Task: {27F7F697-2E81-408B-9CB8-5FDB51DD5E0C} - System32\Tasks\{FB5BB14B-2327-402F-B57E-7A000C0DAD02} => C:\Windows\system32\pcalua.exe -a "C:\Zylom Games\Sudoku\sudoku.exe" -d "C:\Zylom Games\Sudoku\"

Task: {32BFD7FC-7E28-42C7-B65A-C4FD2DC1ECD5} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)

Task: {468EF00E-436B-4570-93BA-E1339A064A7A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

Task: {49CB525F-5925-4D68-96E9-2DE4D5177110} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1114488 2020-01-07] (HP Inc. -> HP Inc.)

Task: {4A283D1B-1C06-44F5-9749-6D0DBB844A78} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\dvrcmd.exe [69512 2018-08-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

Task: {4EB0A933-49EB-455C-9669-097C16D747CF} - System32\Tasks\Hewlett-Packard\HP Support Assistant\WarrantyChecker_DeviceScan => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPWarrantyCheck\HPWarrantyChecker.exe [1114488 2020-01-07] (HP Inc. -> HP Inc.)

Task: {59692260-8EFE-47BD-BAE6-AE02BC61DD76} - System32\Tasks\{8755CBF7-30F4-47D3-8CFF-D89C71FCEFF5} => C:\Windows\system32\pcalua.exe -a C:\Users\User\Downloads\clock\setup.exe -d C:\Users\User\Downloads\clock

Task: {5D61A413-AE06-4C53-8FFB-82F19F8CED54} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MpCmdRun.exe [470176 2019-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {7333C8A5-8B7D-45E7-848B-DBE84FCAC9EE} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [49544 2018-08-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

Task: {7B70D001-CD8E-4DED-911C-D93C83860747} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2872400 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)

Task: {852CB5CA-FAD5-4FA5-9887-1FB6A7F68D55} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153752 2017-03-14] (Google Inc -> Google Inc.)

Task: {85A32760-4657-4749-8D42-C13DBADB648A} - System32\Tasks\Hewlett-Packard\HP Diagnostics\HPDIAGS-2b96ba5d-7130-4356-a2b0-f9d75fb140f8 => C:\Program Files (x86)\HP\HpHwDiag\HpHwDiagA.exe [62200496 2019-07-19] (HP Inc. -> )

Task: {92477D71-FA93-4263-A559-FA5260F3FBB6} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Opt-in For HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF_Utils.exe [62840 2019-11-28] (HP Inc. -> HP Inc.)

Task: {A21BE13D-C27A-4802-8E3E-A97F9D573E57} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [1626328 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

Task: {A280BD99-1D69-4433-A872-82F3CA607DF4} - \{F6412043-37DE-4352-94D0-D1F7E2ACB541} -> Keine Datei <==== ACHTUNG

Task: {AE2C5366-BA2C-4F97-9234-D4DC87B3ED5A} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc -> Dropbox, Inc.)

Task: {B2301904-2CF2-4C59-B0BA-F11B5AF9261B} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MpCmdRun.exe [470176 2019-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)

Task: {C3774113-07D2-4803-81DD-19C91A230B1D} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1240656 2019-09-10] (Adobe Inc. -> Adobe Systems)

Task: {C67D643E-8630-4194-BB9C-B68F87AA12A6} - System32\Tasks\HPCeeScheduleForUser => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [97656 2019-05-17] (HP Inc. -> HP Inc.)

Task: {C7C6E5BE-198A-44FE-B096-4879D6A44766} - System32\Tasks\Western Digital\SmartWare\____Volume_5aec62f4_b830_48c1_8f10_40fae6809f13______Volume_1b3b842a_0000_0000_0000_100000000000__ => C:\Program Files (x86)\Western Digital\WD SmartWare\BackupTask.exe [425840 2014-07-22] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)

Task: {CBF90D92-B836-4F80-88D8-695A908794CA} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1112576 2016-11-23] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)

Task: {D03A2DF7-09EF-4AE1-BA5D-683DA4D1C408} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)

Task: {D0619A93-4FFE-40F0-9B45-80DBD5A1F6A1} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-jo@neunert.net => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated -> Adobe Systems Incorporated)

Task: {D100F88A-010C-4C00-9DE3-0EE102AEC3EB} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG

Task: {D28E88CD-6D29-476E-AEA8-61CD11220366} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - Resources => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [655736 2019-07-31] (HP Inc. -> HP Inc.)

Task: {D924D6B9-6AF1-4CB1-81A3-47C82E5A8890} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [145272 2019-10-31] (HP Inc. -> HP Inc.)

Task: {E0532FD4-04B4-4537-8E6A-E1E29C3C94D6} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [376496 2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

Task: {F089454C-1459-476C-9D5B-1762F40FBAD8} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc -> Dropbox, Inc.)

Task: {FA5526CD-8CE0-440D-BFE6-4B8C44E03540} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [277880 2019-11-22] (HP Inc. -> HP Inc.)

Task: {FD258602-A579-4FCE-8E2D-1618F714AB74} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1906.3-0\MpCmdRun.exe [470176 2019-07-08] (Microsoft Windows Publisher -> Microsoft Corporation)
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
 

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe

Task: C:\WINDOWS\Tasks\HPCeeScheduleForUser.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
 

==================== Internet (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
 

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1

Tcpip\..\Interfaces\{8ec97f77-159c-48ec-ab18-b853cdbe290c}: [DhcpNameServer] 192.168.178.1

Tcpip\..\Interfaces\{b197fe68-ff28-495e-839b-9107d53d5c68}: [DhcpNameServer] 213.55.96.148 213.55.96.166
 

Internet Explorer:

==================

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\Software\Microsoft\Internet Explorer\Main,Start Page = 

BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)

BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]

BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)

BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)

BHO: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2017-10-27] (HP Inc. -> HP Inc.)

BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]

BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)

BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]

BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2018-07-18] (Microsoft Corporation -> Microsoft Corporation)

BHO-x32: HP Network Check Helper -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2017-10-27] (HP Inc. -> HP Inc.)

BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]

BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)

Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]

Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)

Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)

Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]

Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2019-08-19] (Microsoft Corporation -> Microsoft Corporation)
 

FireFox:

========

FF DefaultProfile: k2b597sj.default-1559479579927

FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\k2b597sj.default-1559479579927 [2020-01-15]

FF Homepage: Mozilla\Firefox\Profiles\k2b597sj.default-1559479579927 -> hxxp://www.t-online.de/

FF Extension: (Avast Online Security) - C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\k2b597sj.default-1559479579927\Extensions\wrc@avast.com.xpi [2019-10-05] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json]

FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn

FF Extension: (Adobe Acrobat - Create PDF) - C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Browser\WCFirefoxExtn [2016-09-18] [] [ist nicht signiert]

FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)

FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Keine Datei]

FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [Keine Datei]

FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)

FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2011-11-30] (CANON INC.) [Datei ist nicht signiert]

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)

FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)

FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)

FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office15\NPSPWRAP.DLL [2014-01-22] (Microsoft Corporation -> Microsoft Corporation)

FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)

FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-13] (Google LLC -> Google LLC)

FF Plugin-x32: @videolan.org/vlc,version=2.2.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]

FF Plugin-x32: @videolan.org/vlc,version=3.0.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]

FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]

FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]

FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Air\nppdf32.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems Incorporated -> Adobe Systems)
 

Chrome: 

=======

CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2020-01-15]

CHR Extension: (Präsentationen) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-03-22]

CHR Extension: (Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-03-22]

CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-03-22]

CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-03-22]

CHR Extension: (Tabellen) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-03-22]

CHR Extension: (Avira Browserschutz) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-09-20]

CHR Extension: (Google Docs Offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2019-03-22]

CHR Extension: (Avast Online Security) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2019-09-20]

CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-03-22]

CHR Extension: (Google Mail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-06-02]

CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-20]

CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]

CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki]
 

==================== Dienste (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

R2 AAV UpdateService; C:\Program Files (x86)\Akademische Arbeitsgemeinschaft\AAVUpdateManager\aavus.exe [128296 2008-10-24] (Wolters Kluwer Deutschland GmbH -> )

R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3147344 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2914896 2019-10-08] (Adobe Inc. -> Adobe Systems, Incorporated)

R2 AMD External Events Utility; C:\WINDOWS\System32\DriverStore\FileRepository\c0333024.inf_amd64_4abeb3e4ae07dc5e\B333018\atiesrxx.exe [481768 2018-09-07] (Advanced Micro Devices, Inc. -> AMD)

S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc -> Dropbox, Inc.)

S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2016-09-19] (Dropbox, Inc -> Dropbox, Inc.)

R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [44552 2020-01-07] (Dropbox, Inc -> Dropbox, Inc.)

R2 fpCsEvtSvc; C:\WINDOWS\System32\fpCSEvtSvc.exe [22424 2019-05-05] (Microsoft Windows Hardware Compatibility Publisher -> )

R2 GamingServices; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServices.exe [21640 2019-12-11] (Microsoft Corporation -> Microsoft Corporation)

R2 GamingServicesNet; C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe\GamingServicesNet.exe [21640 2019-12-11] (Microsoft Corporation -> Microsoft Corporation)

R2 HotKeyServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_8598cf7f18c538c5\HotKeyServiceUWP.exe [819856 2019-05-14] (HP Inc. -> HP Inc.)

R3 hpqcaslwmiex; C:\Program Files (x86)\HP\Shared\hpqwmiex.exe [1149480 2018-06-07] (HP Inc. -> HP)

R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [361848 2019-12-06] (HP Inc. -> HP Inc.)

R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [370840 2018-11-27] (Intel Corporation -> Intel Corporation)

S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel® Trusted Connect Service -> Intel(R) Corporation)

S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]

R2 IPMPLUS; C:\Program Files (x86)\Vigyanlabs\IPMPLUS\bin\IPMPlusService.exe [169128 2015-06-19] (Vigyanlabs Innovations Private Limited -> Vigyanlabs Innovation Pvt. Ltd.)

R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]

R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223008 2015-06-24] (Intel Corporation - Embedded Subsystems and IP Blocks Group -> Intel Corporation)

R2 LanWlanWwanSwitchingServiceUWP; C:\WINDOWS\System32\DriverStore\FileRepository\hpqkbsoftwarecompnent.inf_amd64_8598cf7f18c538c5\LanWlanWwanSwitchingServiceUWP.exe [731072 2019-05-14] (HP Inc. -> HP Inc.)

R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6960640 2020-01-15] (Malwarebytes Inc -> Malwarebytes)

S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [310880 2018-09-05] (Intel Corporation -> )

R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]

R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [Datei ist nicht signiert]

R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [267552 2019-08-22] (Realtek Semiconductor Corp. -> Realtek Semiconductor)

S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5796168 2019-09-14] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 SMA.Multicasting.IGMP.QuerierService.exe; C:\Program Files (x86)\SMA\Sunny Explorer\SMA.Multicasting.IGMP.QuerierService.exe [21152 2016-06-07] (SMA Solar Technology AG -> Microsoft)

S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [Datei ist nicht signiert]

R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [268376 2016-11-22] (Synaptics Incorporated -> Synaptics Incorporated)

R2 valWBFPolicyService; C:\WINDOWS\System32\valWBFPolicyService.exe [91032 2019-05-05] (Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated)

R2 WDBackup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-07-22] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)

R2 WDDriveService; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-05-23] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)

R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2020-01-15] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2020-01-15] (Microsoft Windows Publisher -> Microsoft Corporation)

R2 WISOKontoOnlinePlus365Updatedienst; C:\Program Files (x86)\Buhl\WISO Konto Online 365\Buhl.MeinGeld.UpdateService.exe [121848 2019-09-30] (Buhl Data Service GmbH -> Buhl Data Service GmbH)

R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [4059744 2018-09-05] (Intel Corporation -> Intel® Corporation)
 

===================== Treiber (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

R3 Accelerometer; C:\WINDOWS\System32\drivers\Accelerometer.sys [53904 2019-07-22] (HP Inc. -> HP)

R3 amdkmdag; C:\WINDOWS\System32\DriverStore\FileRepository\c0333024.inf_amd64_4abeb3e4ae07dc5e\B333018\atikmdag.sys [44688360 2018-09-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

R3 amdkmdap; C:\WINDOWS\System32\DriverStore\FileRepository\c0333024.inf_amd64_4abeb3e4ae07dc5e\B333018\atikmpag.sys [553448 2018-09-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [35936 2013-04-10] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

S3 ampa; C:\Windows\system32\ampa.sys [38320 2016-12-25] (CHENGDU AOMEI Tech Co., Ltd. -> )

S3 ew_usbccgpfilter; C:\WINDOWS\System32\drivers\ew_usbccgpfilter.sys [18944 2018-08-23] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)

R0 file_tracker; C:\WINDOWS\System32\DRIVERS\file_tracker.sys [296736 2016-10-07] (Acronis International GmbH -> Acronis International GmbH)

R3 gameflt; C:\WINDOWS\System32\DriverStore\FileRepository\gameflt.inf_amd64_1b1c9965dc1c6f0f\gameflt.sys [71000 2019-12-11] (Microsoft Windows -> Microsoft Corporation)

R0 hpdskflt; C:\WINDOWS\System32\drivers\hpdskflt.sys [41104 2019-07-22] (HP Inc. -> HP)

R3 HpqKbFiltr; C:\WINDOWS\System32\drivers\HpqKbFiltr.sys [50752 2019-05-14] (HP Inc. -> HP Inc.)

R3 ibtusb; C:\WINDOWS\system32\DRIVERS\ibtusb.sys [239392 2019-04-23] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)

R3 ikbevent; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [21408 2013-08-13] (Intel(R) Smart Connect software -> )

R3 imsevent; C:\WINDOWS\system32\DRIVERS\imsevent.sys [21920 2013-08-13] (Intel(R) Smart Connect software -> )

R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-10-21] (Intel CASE -> )

R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [216544 2020-01-05] (Malwarebytes Inc -> Malwarebytes)

S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-01-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)

R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-01-15] (Malwarebytes Inc -> Malwarebytes)

R3 MEIx64; C:\WINDOWS\System32\DriverStore\FileRepository\heci.inf_amd64_84dfa9390100e6bc\x64\TeeDriverW8x64.sys [253840 2019-06-09] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)

R3 NETwNb64; C:\WINDOWS\system32\DRIVERS\Netwbw02.sys [3521016 2019-04-30] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)

S3 pccsmcfd; C:\WINDOWS\system32\DRIVERS\pccsmcfdx64.sys [26112 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)

S3 RSP2STOR; C:\WINDOWS\System32\DRIVERS\RtsP2Stor.sys [329184 2019-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)

R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1158944 2019-07-18] (Realtek Semiconductor Corp. -> Realtek )

R3 RTSPER; C:\WINDOWS\system32\DRIVERS\RtsPer.sys [781792 2019-12-09] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)

U5 RTSUER; C:\Windows\System32\Drivers\RTSUER.sys [419296 2019-12-09] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)

R3 rtsuvc; C:\WINDOWS\system32\DRIVERS\rtsuvc.sys [3241960 2019-12-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor Corp.)

R3 seehcri; C:\WINDOWS\System32\drivers\seehcri.sys [34032 2008-01-09] (Sony Ericsson Mobile Communications AB -> Sony Ericsson Mobile Communications)

S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [35784 2016-08-31] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)

R2 tib; C:\WINDOWS\system32\DRIVERS\tib.sys [1058632 2016-10-07] (Acronis International GmbH -> Acronis International GmbH)

R2 tib_mounter; C:\WINDOWS\system32\DRIVERS\tib_mounter.sys [248648 2016-10-07] (Acronis International GmbH -> Acronis International GmbH)

S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2020-01-15] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)

R3 WDC_SAM; C:\WINDOWS\System32\drivers\wdcsam64.sys [26880 2015-11-12] (WDKTestCert wdclab,130885612892544312 -> Western Digital Technologies, Inc.)

R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2020-01-15] (Microsoft Windows -> Microsoft Corporation)

R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2020-01-15] (Microsoft Windows -> Microsoft Corporation)

R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30384 2015-06-23] (Hewlett-Packard Company -> HP Inc.)

R3 Xvdd; C:\WINDOWS\System32\DriverStore\FileRepository\xvdd.inf_amd64_4beca0218f643d77\xvdd.sys [478256 2019-10-24] (Microsoft Windows -> Microsoft Corporation)

U3 aswbdisk; kein ImagePath

S3 phantomtap; \SystemRoot\System32\drivers\phantomtap.sys [X]
 

==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 
 

==================== Ein Monat (erstellte) ===================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2020-01-15 17:29 - 2020-01-15 17:30 - 000046236 _____ C:\Users\User\Downloads\FRST.txt

2020-01-15 17:29 - 2020-01-15 17:30 - 000000000 ____D C:\FRST

2020-01-15 17:28 - 2020-01-15 17:28 - 002573312 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe

2020-01-15 17:23 - 2020-01-15 17:23 - 000002305 ____C C:\Users\User\Desktop\AdwCleaner[C00].txt

2020-01-15 17:21 - 2020-01-15 17:21 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys

2020-01-15 17:17 - 2020-01-15 17:20 - 000000000 ____D C:\AdwCleaner

2020-01-15 17:16 - 2020-01-15 17:16 - 008237744 _____ (Malwarebytes) C:\Users\User\Downloads\adwcleaner_8.0.1.exe

2020-01-15 17:14 - 2020-01-15 17:14 - 001883976 _____ (Malwarebytes) C:\Users\User\Downloads\MBSetup.exe

2020-01-15 16:50 - 2020-01-15 16:50 - 000001094 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk

2020-01-15 16:50 - 2020-01-15 16:50 - 000001094 _____ C:\ProgramData\Desktop\Revo Uninstaller.lnk

2020-01-15 13:33 - 2020-01-15 13:33 - 000000000 ____D C:\WINDOWS\system32\MpEngineStore

2020-01-15 13:25 - 2020-01-15 13:25 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys

2020-01-15 13:25 - 2020-01-15 13:25 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys

2020-01-15 13:25 - 2020-01-15 13:25 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys

2020-01-15 13:25 - 2020-01-15 13:25 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys

2020-01-15 13:25 - 2020-01-15 13:25 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys

2020-01-15 13:25 - 2020-01-15 13:25 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys

2020-01-15 13:25 - 2020-01-15 13:25 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\tssrvlic.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tsusbhub.sys

2020-01-15 13:25 - 2020-01-15 13:25 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe

2020-01-15 13:25 - 2020-01-15 13:25 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LSCSHostPolicy.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\lstelemetry.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WSDScan.sys

2020-01-15 13:25 - 2020-01-15 13:25 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll

2020-01-15 13:25 - 2020-01-15 13:25 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll

2020-01-15 13:16 - 2020-01-15 13:16 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe

2020-01-15 13:16 - 2020-01-15 13:16 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe

2020-01-12 12:24 - 2020-01-12 12:24 - 000239609 _____ C:\Users\User\Downloads\RG100067103735.pdf

2020-01-12 12:24 - 2020-01-12 12:24 - 000073853 _____ C:\Users\User\Downloads\RG150597002997.pdf

2020-01-09 10:33 - 2020-01-09 10:33 - 000498164 _____ C:\Users\User\Downloads\opti_2020_Ausstellausweise_kostenlos_ExhibitorOrder_fa9f8fe1-bca9-42c9-9938-28d661417074_618073.pdf

2020-01-09 10:19 - 2020-01-09 10:19 - 000636317 _____ C:\Users\User\Downloads\Raumplan - opti 2020 C6 opti CHARITY 20112019 EDB.pdf

2020-01-09 10:11 - 2020-01-09 10:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox

2020-01-08 11:43 - 2020-01-08 11:44 - 001122080 _____ C:\Users\User\Documents\IMG_20200108_0002.pdf

2020-01-08 11:25 - 2020-01-08 11:48 - 011992436 ____C C:\Users\User\Documents\IMG_20200108_0001.pdf

2020-01-07 14:21 - 2020-01-07 14:21 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys

2020-01-07 14:21 - 2020-01-07 14:21 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys

2020-01-07 14:21 - 2020-01-07 14:21 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys

2020-01-07 14:21 - 2020-01-07 14:21 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe

2020-01-05 09:57 - 2020-01-05 09:57 - 000216544 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys

2020-01-04 11:45 - 2020-01-04 11:45 - 000113045 _____ C:\Users\User\Downloads\Kontakte.vcf

2020-01-01 09:52 - 2020-01-01 09:52 - 024578944 _____ (Piriform Software Ltd) C:\Users\User\Downloads\ccsetup563(1).exe

2019-12-26 18:45 - 2019-12-31 19:21 - 000000000 _____ C:\WINDOWS\system32\last.dump

2019-12-23 10:57 - 2019-12-23 10:57 - 000000000 ___DC C:\Users\User\Documents\ViberDownloads

2019-12-23 09:46 - 2019-12-23 09:46 - 000000000 ___DC C:\Users\User\AppData\Local\Viber

2019-12-22 19:22 - 2019-12-22 19:22 - 000000128 _____ C:\Users\User\AppData\Roaming\PUTTY.RND

2019-12-22 10:50 - 2019-12-22 10:50 - 026099710 _____ C:\Users\User\Downloads\20191222104938.zip

2019-12-21 17:55 - 2019-12-21 17:55 - 033896571 _____ C:\Users\User\Downloads\phpgedview-svn-r7242-trunk-phpGedView.zip

2019-12-20 18:39 - 2019-12-20 18:39 - 008004040 _____ (Tim Kosse) C:\Users\User\Downloads\FileZilla_3.46.2_win64-setup.exe

2019-12-19 16:12 - 2019-12-19 16:13 - 000309709 ____C C:\Users\User\Documents\Weihnachtsgeschichte.pdf
 

==================== Ein Monat (geänderte) ==================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
 

2020-01-15 17:29 - 2017-05-19 08:34 - 000000000 ___DC C:\Users\User\AppData\LocalLow\Mozilla

2020-01-15 17:23 - 2016-09-15 14:32 - 000141129 _____ C:\Users\Public\Documents\UserIPMUserLog.txt

2020-01-15 17:22 - 2019-07-24 14:15 - 000008192 _____ C:\WINDOWS\SysWOW64\WDPABKP.dat

2020-01-15 17:21 - 2019-12-08 20:41 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat

2020-01-15 17:21 - 2019-08-06 20:24 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT

2020-01-15 17:21 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

2020-01-15 17:21 - 2019-03-19 05:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI

2020-01-15 17:21 - 2016-09-15 11:52 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles

2020-01-15 17:20 - 2016-12-18 20:37 - 000000000 ___DC C:\Users\User\AppData\Local\Lavasoft

2020-01-15 17:16 - 2019-07-22 19:26 - 000002036 _____ C:\Users\Public\Desktop\Malwarebytes.lnk

2020-01-15 17:16 - 2019-07-22 19:26 - 000002036 _____ C:\ProgramData\Desktop\Malwarebytes.lnk

2020-01-15 17:16 - 2018-01-07 15:14 - 000000000 ___DC C:\Users\User\AppData\Local\cache

2020-01-15 17:15 - 2019-07-22 19:26 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys

2020-01-15 17:15 - 2019-07-22 19:25 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys

2020-01-15 17:13 - 2018-05-12 17:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd

2020-01-15 17:12 - 2019-08-06 20:18 - 001725108 _____ C:\WINDOWS\system32\PerfStringBackup.INI

2020-01-15 17:12 - 2019-03-19 13:16 - 000745142 _____ C:\WINDOWS\system32\perfh007.dat

2020-01-15 17:12 - 2019-03-19 13:16 - 000150430 _____ C:\WINDOWS\system32\perfc007.dat

2020-01-15 17:12 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF

2020-01-15 17:06 - 2016-10-05 08:32 - 000000000 ____D C:\Program Files (x86)\Avira

2020-01-15 17:06 - 2016-09-15 14:30 - 000000000 ____D C:\ProgramData\Package Cache

2020-01-15 17:02 - 2019-06-24 10:02 - 000000000 ___DC C:\Users\User\AppData\Local\AVAST Software

2020-01-15 17:02 - 2018-04-23 09:20 - 000000000 ____D C:\ProgramData\AVAST Software

2020-01-15 17:01 - 2016-09-16 13:26 - 000748816 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

2020-01-15 16:58 - 2016-09-15 13:17 - 000000000 ____D C:\Program Files (x86)\Adobe

2020-01-15 16:53 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness

2020-01-15 16:50 - 2019-03-22 18:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller

2020-01-15 15:39 - 2018-05-24 09:14 - 000000000 ___DC C:\Users\User\AppData\Local\D3DSCache

2020-01-15 15:33 - 2019-08-06 20:12 - 005106632 _____ C:\WINDOWS\system32\FNTCACHE.DAT

2020-01-15 15:33 - 2019-08-06 20:12 - 000000000 ____D C:\WINDOWS\system32\SleepStudy

2020-01-15 15:32 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP

2020-01-15 15:32 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources

2020-01-15 15:32 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences

2020-01-15 15:32 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr

2020-01-15 15:31 - 2017-03-24 13:22 - 000000000 ___DC C:\Users\User\AppData\Roaming\WhatsApp

2020-01-15 13:30 - 2016-10-12 09:47 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013

2020-01-15 13:30 - 2016-09-16 20:27 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

2020-01-15 13:30 - 2016-09-16 20:27 - 000000000 ____D C:\WINDOWS\system32\MRT

2020-01-15 13:28 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp

2020-01-15 11:19 - 2019-12-08 19:21 - 000000000 ____D C:\Users\Administrator

2020-01-15 11:19 - 2019-08-06 20:16 - 000000000 ____D C:\Users\defaultuser0

2020-01-15 11:12 - 2019-06-24 10:42 - 000000000 ___DC C:\Users\User\AppData\Roaming\Telegram Desktop

2020-01-15 10:58 - 2016-10-07 18:12 - 000000000 ___DC C:\Users\User\Documents\Sicherungen

2020-01-15 10:57 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports

2020-01-15 10:57 - 2016-09-16 20:05 - 000000000 ___DC C:\Users\User\AppData\Local\CrashDumps

2020-01-15 10:49 - 2019-12-09 10:51 - 000000360 _____ C:\WINDOWS\Tasks\HPCeeScheduleForUser.job

2020-01-15 10:49 - 2019-12-05 15:58 - 000000000 ____D C:\Program Files\Mozilla Firefox

2020-01-15 10:49 - 2016-09-19 08:44 - 000001242 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job

2020-01-15 10:49 - 2016-09-19 08:44 - 000001238 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job

2020-01-15 10:49 - 2016-09-15 13:22 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2020-01-15 10:36 - 2016-09-16 18:15 - 000000000 ___DC C:\Users\User\AppData\Local\Adobe

2020-01-15 00:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\NDF

2020-01-15 00:33 - 2019-08-06 20:24 - 000004210 _____ C:\WINDOWS\system32\Tasks\CCleaner Update

2020-01-14 11:06 - 2016-09-15 16:42 - 000000000 ___DC C:\Users\User\Documents\WISO Konto Online

2020-01-14 10:54 - 2018-01-07 15:14 - 000000000 ___DC C:\Users\User\AppData\Roaming\ViberPC

2020-01-14 00:37 - 2019-12-09 10:51 - 000002794 _____ C:\WINDOWS\system32\Tasks\HPCeeScheduleForUser

2020-01-14 00:37 - 2019-12-08 19:28 - 000002854 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4175727407-727869766-3184556376-500

2020-01-14 00:37 - 2019-12-06 14:46 - 000002202 _____ C:\WINDOWS\system32\Tasks\StartCN

2020-01-14 00:37 - 2019-12-06 14:46 - 000002116 _____ C:\WINDOWS\system32\Tasks\StartDVR

2020-01-14 00:37 - 2019-10-03 16:05 - 000002608 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0

2020-01-14 00:37 - 2019-08-06 20:24 - 000003756 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineUA

2020-01-14 00:37 - 2019-08-06 20:24 - 000003560 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA

2020-01-14 00:37 - 2019-08-06 20:24 - 000003532 _____ C:\WINDOWS\system32\Tasks\DropboxUpdateTaskMachineCore

2020-01-14 00:37 - 2019-08-06 20:24 - 000003482 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task

2020-01-14 00:37 - 2019-08-06 20:24 - 000003336 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore

2020-01-14 00:37 - 2019-08-06 20:24 - 000002858 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-4175727407-727869766-3184556376-1001

2020-01-14 00:37 - 2019-08-06 20:24 - 000002792 _____ C:\WINDOWS\system32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-jo@neunert.net

2020-01-14 00:37 - 2019-08-06 20:24 - 000002532 _____ C:\WINDOWS\system32\Tasks\SamsungMagician

2020-01-14 00:37 - 2019-08-06 20:24 - 000002286 _____ C:\WINDOWS\system32\Tasks\{8755CBF7-30F4-47D3-8CFF-D89C71FCEFF5}

2020-01-14 00:37 - 2019-08-06 20:24 - 000002266 _____ C:\WINDOWS\system32\Tasks\{FB5BB14B-2327-402F-B57E-7A000C0DAD02}

2020-01-14 00:37 - 2019-08-06 20:24 - 000002218 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC

2020-01-13 23:58 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps

2020-01-10 22:36 - 2016-09-16 19:58 - 000000000 ___DC C:\Users\User\AppData\Local\ElevatedDiagnostics

2020-01-10 15:34 - 2019-10-03 16:05 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData

2020-01-10 15:32 - 2018-12-03 18:22 - 000002308 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk

2020-01-09 10:11 - 2016-09-17 10:21 - 000000000 ____D C:\Program Files (x86)\Dropbox

2020-01-09 10:09 - 2016-09-15 13:22 - 000001020 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk

2020-01-08 10:47 - 2018-01-20 16:40 - 000000000 ___DC C:\Users\User\AppData\Local\Packages

2020-01-01 12:32 - 2016-09-15 13:47 - 000000878 _____ C:\Users\Public\Desktop\CCleaner.lnk

2020-01-01 12:32 - 2016-09-15 13:47 - 000000878 _____ C:\ProgramData\Desktop\CCleaner.lnk

2019-12-30 20:30 - 2018-01-20 17:11 - 000000000 ___DC C:\Users\User\AppData\Local\PlaceholderTileLogoFolder

2019-12-30 20:10 - 2018-05-12 17:26 - 000000000 ___DC C:\Users\User\AppData\Local\Microsoft Help

2019-12-26 21:13 - 2017-02-06 16:11 - 000000000 ___DC C:\Users\User\AppData\Roaming\FileZilla

2019-12-26 20:15 - 2017-02-06 16:17 - 000000128 ____C C:\Users\User\AppData\Local\PUTTY.RND

2019-12-25 11:58 - 2016-09-15 17:02 - 000000000 ____D C:\Users\User\Wein

2019-12-23 09:44 - 2018-01-07 15:14 - 000001049 ____C C:\Users\User\Desktop\Viber.lnk

2019-12-20 18:39 - 2019-01-24 00:15 - 000002177 _____ C:\Users\Public\Desktop\FileZilla Client.lnk

2019-12-20 18:39 - 2019-01-24 00:15 - 000002177 _____ C:\ProgramData\Desktop\FileZilla Client.lnk

2019-12-20 18:39 - 2017-02-06 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client

2019-12-20 18:39 - 2017-02-06 16:11 - 000000000 ____D C:\Program Files (x86)\FileZilla FTP Client

2019-12-19 18:23 - 2016-09-15 16:43 - 000000000 ____D C:\Users\User\Finanzen
 

==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
 

2017-08-30 18:48 - 2018-12-19 18:25 - 000037327 ____C () C:\Users\User\AppData\Roaming\Durch Trennzeichen getrennte Werte.ADR

2018-12-13 18:30 - 2018-12-13 19:09 - 000013059 ____C () C:\Users\User\AppData\Roaming\Durch Trennzeichen getrennte Werte.CAL

2019-01-20 16:03 - 2019-01-20 18:47 - 000004416 ____C () C:\Users\User\AppData\Roaming\Durch Trennzeichen getrennte Werte.NOT

2019-12-22 19:22 - 2019-12-22 19:22 - 000000128 _____ () C:\Users\User\AppData\Roaming\PUTTY.RND

2019-06-12 16:49 - 2019-06-12 16:49 - 000000000 ____C () C:\Users\User\AppData\Local\oobelibMkey.log

2017-02-06 16:17 - 2019-12-26 20:15 - 000000128 ____C () C:\Users\User\AppData\Local\PUTTY.RND

2018-01-23 20:20 - 2018-05-24 09:19 - 000007597 ____C () C:\Users\User\AppData\Local\resmon.resmoncfg

2019-04-09 17:55 - 2019-04-09 17:56 - 000000000 ____C () C:\Users\User\AppData\Local\{160B4890-C59A-427F-848B-49E087542AC9}
 

==================== SigCheck ============================
 

(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
 

==================== Ende von FRST.txt ========================

Code:

Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-01-2020

durchgeführt von User (15-01-2020 17:32:04)

Gestartet von C:\Users\User\Downloads

Windows 10 Pro Version 1909 18363.592 (X64) (2019-08-06 19:25:02)

Start-Modus: Normal

==========================================================
 
 

==================== Konten: =============================
 

Administrator (S-1-5-21-4175727407-727869766-3184556376-500 - Administrator - Enabled) => C:\Users\Administrator

DefaultAccount (S-1-5-21-4175727407-727869766-3184556376-503 - Limited - Disabled)

defaultuser0 (S-1-5-21-4175727407-727869766-3184556376-1000 - Limited - Disabled) => C:\Users\defaultuser0

Gast (S-1-5-21-4175727407-727869766-3184556376-501 - Limited - Disabled)

HomeGroupUser$ (S-1-5-21-4175727407-727869766-3184556376-1005 - Limited - Enabled)

User (S-1-5-21-4175727407-727869766-3184556376-1001 - Administrator - Enabled) => C:\Users\User

WDAGUtilityAccount (S-1-5-21-4175727407-727869766-3184556376-504 - Limited - Disabled)
 

==================== Sicherheits-Center ========================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
 

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Avira Antivirus (Enabled - Up to date) {33CF8AA2-FA06-4AD4-98AB-332D53DD7FFB}

AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

AS: Avast Antivirus (Disabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
 

==================== Installierte Programme ======================
 

(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
 

64 Bit HP CIO Components Installer (HKLM\...\{FF21C3E6-97FD-474F-9518-8DCBE94C2854}) (Version: 7.2.8 - Hewlett-Packard) Hidden

8GadgetPack (HKLM-x32\...\{35C86AEB-A4C6-49E3-90B7-245F2C7FDEC7}) (Version: 21.0.0 - 8GadgetPack.net)

AAVUpdateManager (HKLM-x32\...\{AFA42FE1-A5C3-485F-9180-BFCF5BF1F1C3}) (Version: 18.00.0000 - Wolters Kluwer Deutschland GmbH)

Acronis True Image 2015 (HKLM-x32\...\{2F70A6E6-2F71-4907-8441-BDC5D300310B}) (Version: 18.0.6613 - Acronis) Hidden

Acronis True Image 2015 (HKLM-x32\...\{2F70A6E6-2F71-4907-8441-BDC5D300310B}Visible) (Version: 18.0.6613 - Acronis)

Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)

Adobe Creative Suite 5.5 Design Standard (HKLM-x32\...\{53CF3920-648B-4F99-8D05-6A6C5298F57B}) (Version: 5.5 - Adobe Systems Incorporated)

AMD Settings (HKLM\...\WUCCCApp) (Version: 2018.0831.228.2610 - Advanced Micro Devices, Inc.)

AOMEI Partition Assistant Standard Edition 6.6 (HKLM-x32\...\{02F850ED-FD0E-4ED1-BE0B-54981f5BD3D4}_is1) (Version:  - AOMEI Technology Co., Ltd.)

C7200 (HKLM-x32\...\{A6C660D2-1380-4885-A1C5-2F9A9761F68F}) (Version: 140.0.425.000 - Hewlett-Packard) Hidden

C7200_Help (HKLM-x32\...\{c600ab3d-8b64-41df-bf36-b3d87ce0706b}) (Version: 100.0.206.000 - Hewlett-Packard) Hidden

Canon Easy-WebPrint EX (HKLM-x32\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)

Canon IJ Network Scanner Selector EX (HKLM-x32\...\Canon_IJ_Network_Scanner_Selector_EX) (Version:  - Canon Inc.)

Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.2.0 - Canon Inc.)

Canon IJ Scan Utility (HKLM-x32\...\Canon_IJ_Scan_Utility) (Version:  - Canon Inc.)

Canon Kurzwahlprogramm (HKLM-x32\...\Speed Dial Utility) (Version: 1.3.0 - Canon Inc.)

Canon MX920 series Benutzerregistrierung (HKLM-x32\...\Canon MX920 series Benutzerregistrierung) (Version:  - *Canon Inc.)

Canon MX920 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MX920_series) (Version: 1.01 - Canon Inc.)

Canon MX920 series On-screen Manual (HKLM-x32\...\Canon MX920 series On-screen Manual) (Version: 7.6.0 - Canon Inc.)

Canon My Image Garden (HKLM-x32\...\Canon My Image Garden) (Version: 1.1.2 - Canon Inc.)

Canon My Image Garden Design Files (HKLM-x32\...\Canon My Image Garden Design Files) (Version: 1.0.1 - Canon Inc.)

Canon My Printer (HKLM-x32\...\CanonMyPrinter) (Version: 3.1.0 - Canon Inc.)

Canon Quick Menu (HKLM-x32\...\CanonQuickMenu) (Version: 2.1.0 - Canon Inc.)

CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)

Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)

Dropbox (HKLM-x32\...\Dropbox) (Version: 88.4.172 - Dropbox, Inc.)

Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.241.1 - Dropbox, Inc.) Hidden

FileZilla Client 3.46.2 (HKLM-x32\...\FileZilla Client) (Version: 3.46.2 - Tim Kosse)

Garmin BaseCamp (HKLM-x32\...\{23A4DBD1-D847-4957-995D-8B1CC527E2E2}) (Version: 4.6.2.0 - Garmin Ltd or its subsidiaries)

Garmin Training Center (HKLM-x32\...\{7D542452-84EB-47C0-97BA-735C523AB555}) (Version: 3.6.5 - Garmin Ltd or its subsidiaries)

Garmin USB Drivers (HKLM-x32\...\{510D2239-6C2E-457B-9590-485EC552D94D}) (Version: 2.3.0.0 - Garmin Ltd or its subsidiaries)

Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.117 - Google LLC)

Google Earth Pro (HKLM\...\{70A0F34E-564B-4F93-ADD6-3BAEC6E44075}) (Version: 7.3.2.5776 - Google)

Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden

HP PC Hardware Diagnostics Windows (HKLM-x32\...\{3EC04ABB-D60E-44B6-9403-0D9DE44F56D9}) (Version: 1.6.0.0 - HP Inc.)

HP Photosmart All-In-One Driver Software (HKLM\...\{A96C5DB7-40F9-46DD-B36F-9E657D1D9E04}) (Version: 14.0 - HP)

HP SoftPaq Download Manager (HKLM-x32\...\{92db00b4-c4ee-4893-bc4e-8be6548b2742}) (Version: 4.3.4.0 - HP)

HP Software Framework (HKLM-x32\...\{71E18A14-1BDB-4B58-A67F-1BCDA12462FD}) (Version: 7.1.15.1 - HP)

HP Support Assistant (HKLM-x32\...\{33A0B67A-CF04-4F31-B3D0-EEEEDEF7078E}) (Version: 8.8.24.33 - HP Inc.)

HP Support Solutions Framework (HKLM-x32\...\{D549B5E2-DBE8-4190-ABA5-71106264398C}) (Version: 12.14.49.15 - HP Inc.)

HP System Default Settings (HKLM-x32\...\{E570B9C2-9A83-4938-BBD5-0A8C068083C1}) (Version: 1.2.1.4 - Hewlett-Packard Company)

HP System Software Manager (HKLM-x32\...\{0654A5BE-4E69-4F93-88B2-A81B13A7960C}) (Version: 3.2.4.1 - Hewlett-Packard Company)

HP Universal Camera Driver (HKLM-x32\...\{E399A5B3-ED53-4DEA-AF04-8011E1EB1EAC}) (Version: 10.0.15063.11290 - Realtek Semiconductor Corp.)

HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)

HP Wireless Button Driver (HKLM-x32\...\{EFA01423-3857-468C-B7B6-F30AA08E50BC}) (Version: 1.1.5.1 - Hewlett-Packard Company)

Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.0.1153 - Intel Corporation)

Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 20.19.15.5063 - Intel Corporation)

Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 14.8.1.1043 - Intel Corporation)

Intel(R) Smart Connect Technology (HKLM\...\{8B4EA042-9E21-46FB-8286-225F4D51CC52}) (Version: 4.2.41.2710 - Intel Corporation)

Intel(R) Wireless Bluetooth(R) (HKLM-x32\...\{EA877F2C-A0FB-4379-83D0-734540686C80}) (Version: 17.1.1531.1764 - Intel Corporation)

Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{a2d9fda8-65eb-4c06-81ef-31e0a4daa335}) (Version: 10.1.1.11 - Intel(R) Corporation) Hidden

Intel® PROSet/Wireless Software (HKLM-x32\...\{f8c930bd-0a68-425f-8c11-87723d1e2c97}) (Version: 20.90.0 - Intel Corporation)

Intel® Security Assist (HKLM-x32\...\{4B230374-6475-4A73-BA6E-41015E9C5013}) (Version: 1.0.0.532 - Intel Corporation)

IPMPLUS (HKLM-x32\...\{9F99F3B7-3A87-4FCE-BC85-CA56C1E178AE}) (Version: 1.8.18.0 - Vigyanlabs)

IrfanView 4.52 (32-bit) (HKLM-x32\...\IrfanView) (Version: 4.52 - Irfan Skiljan)

Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)

Microsoft Access Runtime 2010 (HKLM-x32\...\Office14.AccessRT) (Version: 14.0.7015.1000 - Microsoft Corporation)

Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version:  - Microsoft)

Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)

Microsoft Office Professional Plus 2007 (HKLM-x32\...\PROPLUS) (Version: 12.0.6612.1000 - Microsoft Corporation)

Microsoft Office Standard 2013 (HKLM\...\Office15.STANDARD) (Version: 15.0.4569.1506 - Microsoft Corporation)

Microsoft OneDrive (HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\OneDriveSetup.exe) (Version: 19.192.0926.0012 - Microsoft Corporation)

Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)

Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729 (HKLM\...\{D285FC5F-3021-32E9-9C59-24CA325BDC5C}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 (HKLM-x32\...\{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}) (Version: 9.0.30411 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)

Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)

Microsoft Visual C++ 2010  x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.51106 (HKLM-x32\...\{6e8f74e0-43bd-4dce-8477-6ff6828acc07}) (Version: 11.0.51106.1 - Microsoft Corporation)

Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.51106 (HKLM-x32\...\{8e70e4e1-06d7-470b-9f74-a51bef21088e}) (Version: 11.0.51106.1 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)

Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24123 (HKLM-x32\...\{2cbcedbb-f38c-48a3-a3e1-6c6fd821a7f4}) (Version: 14.0.24123.0 - Microsoft Corporation)

Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)

Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)

Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.50903 - Microsoft Corporation)

Mozilla Firefox 72.0.1 (x64 de) (HKLM\...\Mozilla Firefox 72.0.1 (x64 de)) (Version: 72.0.1 - Mozilla)

Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.3.0 - Mozilla)

Mozilla Thunderbird 68.3.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 68.3.0 (x86 de)) (Version: 68.3.0 - Mozilla)

MSVC80_x64_v2 (HKLM\...\{4D668D4F-FAA2-4726-834C-31F4614F312E}) (Version: 1.0.3.0 - Nokia) Hidden

MSVC80_x86_v2 (HKLM-x32\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden

MSVC90_x64 (HKLM\...\{AB071C8B-873C-459F-ACA9-9EBE03C3E89B}) (Version: 1.0.1.2 - Nokia) Hidden

MSVC90_x86 (HKLM-x32\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden

OpenOffice 4.1.6 Language Pack (German) (HKLM-x32\...\{1BDA0114-2E24-4C2B-8162-5304167D7F63}) (Version: 4.16.9790 - Apache Software Foundation)

OpenOffice 4.1.7 (HKLM-x32\...\{81D7585D-3E44-4984-B99B-911492419D3E}) (Version: 4.17.9800 - Apache Software Foundation)

Outils de vérification linguistique 2013 de Microsoft Office*- Français (HKLM\...\{90150000-001F-040C-1000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden

PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)

PDF Settings CS5 (HKLM-x32\...\{A78FE97A-C0C8-49CE-89D0-EDD524A17392}) (Version: 10.0 - Adobe Systems Incorporated) Hidden

PS_AIO_02_ProductContext (HKLM-x32\...\{720C16FC-5423-47B3-A249-5C05FB376E9A}) (Version: 140.0.425.000 - Hewlett-Packard) Hidden

PS_AIO_02_Software (HKLM-x32\...\{97AD3490-480B-42B2-8001-326621AF34AC}) (Version: 140.0.425.000 - Hewlett-Packard) Hidden

PS_AIO_02_Software_Min (HKLM-x32\...\{7AB63BFD-91C6-4C21-B2C6-D33A1FC8DE8F}) (Version: 140.0.425.000 - Hewlett-Packard) Hidden

Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.370.146 - Realtek Semiconductor Corp.)

Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.8773.1 - Realtek Semiconductor Corp.)

Revo Uninstaller 2.1.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.1.1 - VS Revo Group, Ltd.)

Saal Design Software (HKLM-x32\...\{0C52FDB3-C8A1-E686-5A87-85F3EC2259D4}) (Version: 4.0 - Saal Digital Fotoservice GmbH) Hidden

Saal Design Software (HKLM-x32\...\SaalDesignSoftware) (Version: 4.0 - Saal Digital Fotoservice GmbH)

Service Pack 1 for Microsoft Office 2013 (KB2850036) 64-Bit Edition (HKLM\...\{90150000-0012-0000-1000-0000000FF1CE}_Office15.STANDARD_{D82063A8-7C8C-4C3B-A9BB-95138CA55D26}) (Version:  - Microsoft)

Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-001C-0000-0000-0000000FF1CE}_Office14.AccessRT_{54846D1D-E5D5-4A28-AA6D-7208259007EA}) (Version:  - Microsoft)

Shark007 ADVANCED Codecs (HKLM-x32\...\{8C0CAA7A-3272-4991-A808-2C7559DE3409}) (Version: 6.4.8 - Shark007)

Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.104 - Skype Technologies S.A.)

Steuer-Ratgeber 2017-2018 (HKLM-x32\...\{076F25F6-485D-4E57-BA52-7D6138657CE7}) (Version: 17.11.4 - Wolters Kluwer Deutschland GmbH)

Steuer-Ratgeber 2018-2019 (HKLM-x32\...\{B96CAC3C-B7E7-4291-B422-0544096E217B}) (Version: 18.11.0 - Akademische Arbeitsgemeinschaft Verlagsgesellschaft mbH)

SteuerRatgeber 2019-2020 (HKLM-x32\...\{8D323537-9904-4A5A-BB0F-92B4B7EB512F}) (Version: 20.00.4 - Akademische Arbeitsgemeinschaft Verlagsgesellschaft mbH)

SteuerSparErklärung 2018 (HKLM-x32\...\{A1D1FDBD-02F9-49B6-9EB2-2DC6B1D37E16}) (Version: 23.39.56 - Akademische Arbeitsgemeinschaft Verlagsgesellschaft mbH)

SteuerSparErklärung 2019 (HKLM-x32\...\{C1274A30-7822-4CAE-A4C8-395E9E687107}) (Version: 24.33.129 - Akademische Arbeitsgemeinschaft Verlagsgesellschaft mbH)

SteuerSparErklärung 2020 (HKLM-x32\...\{E7E3F711-933D-4D9A-BA51-01F47179F23C}) (Version: 25.20.33 - Akademische Arbeitsgemeinschaft Verlagsgesellschaft mbH)

Sunny Explorer (HKLM-x32\...\{882EE31D-FFD2-4140-946F-E5704B3F8917}) (Version: 1.07.27.4 - SMA Solar Technology AG)

Sweet Home 3D version 5.7 (HKLM\...\Sweet Home 3D_is1) (Version: 5.7 - eTeks)

swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden

Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.2.5.28 - Synaptics Incorporated)

Synaptics WBF Fingerprint Reader (HKLM\...\{0A3B3699-C474-4173-B105-C3B9464F61C0}) (Version: 4.5.324.0 - Synaptics)

Telegram Desktop version 1.9.3 (HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 1.9.3 - Telegram FZ-LLC)

Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0011-0000-0000-0000000FF1CE}_PROPLUS_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version:  - Microsoft)

Update for Skype for Business 2015 (KB4475564) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.STANDARD_{CD0EE05F-11E6-46FA-BB7B-D2A28C47A4F3}) (Version:  - Microsoft)

Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{16AD6161-2E47-4BF1-AA77-0946EFE93E08}) (Version: 2.61.0.0 - Microsoft Corporation)

Update für Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0407-0000-0000000FF1CE}_PROPLUS_{BEC163EC-7A83-48A1-BFB6-3BF47CC2F8CF}) (Version:  - Microsoft)

Update für Microsoft Office Outlook 2007 Help (KB963677) (HKLM-x32\...\{90120000-001A-0407-0000-0000000FF1CE}_PROPLUS_{F6828576-6F79-470D-AB50-69D1BBADBD30}) (Version:  - Microsoft)

Update für Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0407-0000-0000000FF1CE}_PROPLUS_{EA160DA3-E9B5-4D03-A518-21D306665B96}) (Version:  - Microsoft)

Update für Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0407-0000-0000000FF1CE}_PROPLUS_{38472199-D7B6-4833-A949-10E4EE6365A1}) (Version:  - Microsoft)

UpdateAssistant (HKLM-x32\...\{B7AFAF92-D1C8-49A0-B34A-B5DAF9C9D5C6}) (Version: 1.9.0.0 - Microsoft Corporation) Hidden

VC80CRTRedist - 8.0.50727.6195 (HKLM-x32\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden

Viber (HKLM-x32\...\{38CA947D-5641-4084-BA7E-B18ABFA2AB1E}) (Version: 7.9.0.3 - Viber Media Inc.) Hidden

Viber (HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\{c3c2a21b-6d42-498c-9191-f0586b67f4cf}) (Version: 7.9.0.3 - Viber Media Inc.)

Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)

Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)

VSDC Free Video Editor Version 6.3.3.968 (HKLM\...\VSDC Free Video Editor_is1) (Version: 6.3.3.968 - Flash-Integro LLC)

WD Drive Utilities (HKLM-x32\...\{59E0381C-1047-45A3-B68A-57F586EAF3C2}) (Version: 1.1.0.51 - Western Digital Technologies, Inc.)

WD Security (HKLM-x32\...\{D338102B-BA1C-4CCA-B870-8690FA0F0433}) (Version: 1.1.0.51 - Western Digital Technologies, Inc.)

WD SmartWare (HKLM\...\{2A9937AF-6650-40D6-ADFA-EEB731B908DF}) (Version: 2.4.2.26 - Western Digital Technologies, Inc.)

WhatsApp (HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\WhatsApp) (Version: 0.3.9309 - WhatsApp)

WinDirStat 1.1.2 (HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\WinDirStat) (Version:  - )

Windows Driver Package - Garmin (grmnusb) GARMIN Devices  (06/03/2009 2.3.0.0) (HKLM\...\49CF605F02C7954F4E139D18828DE298CD59217C) (Version: 06/03/2009 2.3.0.0 - Garmin)

Windows-Treiberpaket - Nokia pccsmcfd LegacyDriver  (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)

WinRAR 5.71 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)

WISO Konto Online Plus 365 (HKLM-x32\...\{FF192B78-55F6-4B80-860F-33E428FA16E3}) (Version: 21.0.0.0 - Buhl Data Service GmbH) Hidden

WISO Konto Online Plus 365 (HKLM-x32\...\WISO Konto Online Plus 365) (Version:  - Buhl Data Service GmbH)

XAMPP (HKLM-x32\...\xampp) (Version: 7.3.2-2 - Bitnami)
 

Packages:

=========

Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.8.0.1_neutral__6e5tt8cgb93ep [2019-05-23] (Canon Inc.)

Classic Solitaire (Free) -> C:\Program Files\WindowsApps\470AlexeiGarbuzenko.ClassicSolitaireFree_2.1.0.0_x64__gd2qghq4jdjcm [2019-10-24] (Alexey Garbuzenko) [MS Ad]

DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x64__8wekyb3d8bbwe [2019-10-24] (Microsoft Corporation)

DirectX -> C:\Program Files\WindowsApps\Microsoft.DirectXRuntime_9.29.952.0_x86__8wekyb3d8bbwe [2019-10-24] (Microsoft Corporation)

Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2019-09-03] (Microsoft Corporation)

Gaming Services -> C:\Program Files\WindowsApps\Microsoft.GamingServices_1.35.26001.0_x64__8wekyb3d8bbwe [2019-12-11] (Microsoft Corporation)

HP System Information -> C:\Program Files\WindowsApps\AD2F1837.HPSystemInformation_7.0.15.0_x64__v10z8vjag6ke6 [2019-09-24] (HP Inc.)

Instagram -> C:\Program Files\WindowsApps\Facebook.InstagramBeta_41.1788.50991.0_x86__8xx8rvfyw5nnt [2018-07-24] (Instagram)

Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2019-09-16] (Microsoft Corporation)

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1808.3.0_x64__8wekyb3d8bbwe [2019-08-06] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]

Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-16] (Microsoft Corporation) [MS Ad]

Microsoft News – Nachrichten -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]

Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-29] (Microsoft Studios) [MS Ad]

MSN Wetter -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-18] (Microsoft Corporation) [MS Ad]

Twitter -> C:\Program Files\WindowsApps\9E2F88E3.Twitter_6.1.4.1000_neutral__wgeqdkkx372wm [2018-09-09] (Twitter Inc.)
 

==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

CustomCLSID: HKU\S-1-5-21-4175727407-727869766-3184556376-1001_Classes\CLSID\{07474513-7B58-45c7-B3E6-13A3669B1AFD}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\Windows Sidebar\Gadgets\IntelCoreSeries25.gadget\IntelDTSReader.dll (Orbmu2k) [Datei ist nicht signiert]

CustomCLSID: HKU\S-1-5-21-4175727407-727869766-3184556376-1001_Classes\CLSID\{083f5ae0-2b0a-11dd-bd0b-0800200c9a66}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\Windows Sidebar\Gadgets\All_CPU_Meter.gadget\CoreTempReader.dll (AddGadgets IT -> )

CustomCLSID: HKU\S-1-5-21-4175727407-727869766-3184556376-1001_Classes\CLSID\{0B7AD8D3-094A-44DE-A348-83C6C3FA347C}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Clipboarder.gadget\Release\Clipboarder64.dll (Helmut Buhler) [Datei ist nicht signiert]

CustomCLSID: HKU\S-1-5-21-4175727407-727869766-3184556376-1001_Classes\CLSID\{0E7BE950-4ACC-47CB-834B-41A8B96BBFF9}\InprocServer32 -> C:\Users\User\AppData\Local\Microsoft\Windows Sidebar\Gadgets\Sidebar7.gadget\Release\Sidebar7.64.dll (Helmut Buhler) [Datei ist nicht signiert]

CustomCLSID: HKU\S-1-5-21-4175727407-727869766-3184556376-1001_Classes\CLSID\{E31EA727-12ED-4702-820C-4B6445F28E1A} -> [Dropbox] => C:\Users\User\Dropbox [2016-09-19 08:49]

ShellIconOverlayIdentifiers: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  -> Keine Datei

ShellIconOverlayIdentifiers: [AcronisSyncError] -> {934BC6C0-FEC2-4df5-A100-961DE2C8A0ED} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis International GmbH -> Acronis)

ShellIconOverlayIdentifiers: [AcronisSyncInProgress] -> {00F848DC-B1D4-4892-9C25-CAADC86A215D} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis International GmbH -> Acronis)

ShellIconOverlayIdentifiers: [AcronisSyncOk] -> {71573297-552E-46fc-BE3D-3DFAF88D47B7} => C:\Program Files (x86)\Acronis\TrueImageHome\tishell64.dll [2014-09-09] (Acronis International GmbH -> Acronis)

ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]

ShellIconOverlayIdentifiers-x32: [   DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [   DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]

ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers1: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\x64\versions_page.dll [2014-09-09] (Acronis International GmbH -> Acronis)

ContextMenuHandlers1: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2014-07-22] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)

ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers2: [CWDDriveMenuHandler] -> {CCEFA845-DCDB-4A2F-8BED-DBE87CD198EC} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2014-07-22] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)

ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files\AMD\CNext\CNext\atiacm64.dll [2018-08-31] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)

ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.27.0.dll [2019-05-07] (Dropbox, Inc -> Dropbox, Inc.)

ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} =>  -> Keine Datei

ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\system32\igfxDTCM.dll [2018-11-27] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)

ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)

ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

ContextMenuHandlers6: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\WINDOWS\system32\StartMenuHelper64.dll [2017-08-13] (Ivaylo Beltchev -> IvoSoft) [Datei ist nicht signiert]

ContextMenuHandlers6: [VersionsPageShellExt] -> {9E42900A-85F9-4E67-9778-575FBBA0A81C} => C:\Program Files (x86)\Acronis\TrueImageHome\x64\versions_page.dll [2014-09-09] (Acronis International GmbH -> Acronis)

ContextMenuHandlers6: [WDBackupMenuHandler] -> {C752BC82-C19A-4827-9C15-0996BA85C180} => C:\Program Files\Western Digital\WD SmartWare\\WDContextMenuHandler.dll [2014-07-22] (Western Digital Technologies, Inc. -> Western Digital Technologies, Inc.)

ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)

ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
 

==================== Codecs (Nicht auf der Ausnahmeliste) ====================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
 

HKLM\...\Drivers32: [vidc.x264] => C:\WINDOWS\system32\x264vfw.dll [3642880 2016-05-08] (x264vfw project) [Datei ist nicht signiert]

HKLM\...\Drivers32: [msacm.ac3filter] => C:\WINDOWS\system32\ac3filter.acm [2231296 2013-04-05] () [Datei ist nicht signiert]

HKLM\...\Drivers32: [msacm.voxacm160] => C:\WINDOWS\system32\vct3216.acm [82944 2003-05-21] (Voxware, Inc.) [Datei ist nicht signiert]

HKLM\...\Drivers32: [msacm.scg726] => C:\WINDOWS\system32\scg726.acm [13239 2000-03-14] (SHARP Corporation) [Datei ist nicht signiert]

HKLM\...\Drivers32: [msacm.alf2cd] => C:\WINDOWS\system32\alf2cd.acm [38912 2003-05-21] (NCT Company) [Datei ist nicht signiert]

HKLM\...\Drivers32: [msacm.ac3acm] => C:\WINDOWS\system32\AC3ACM.acm [81920 2004-02-04] (fccHandler) [Datei ist nicht signiert]

HKLM\...\Drivers32: [msacm.lame] => C:\WINDOWS\system32\lame.ax [245760 2005-08-01] () [Datei ist nicht signiert]

HKLM\...\Drivers32: [vidc.dvsd] => C:\WINDOWS\system32\mcdvd_32.dll [261632 2003-05-21] (MainConcept) [Datei ist nicht signiert]

HKLM\...\Drivers32: [vidc.mpg4] => C:\WINDOWS\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]

HKLM\...\Drivers32: [vidc.mp42] => C:\WINDOWS\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]

HKLM\...\Drivers32: [vidc.mp43] => C:\WINDOWS\system32\mpg4c32.dll [413760 2002-08-19] (Microsoft Corporation) [Datei ist nicht signiert]

HKLM\...\Drivers32: [vidc.xvid] => C:\WINDOWS\system32\xvidvfw.dll [139264 2004-07-03] () [Datei ist nicht signiert]

HKLM\...\Drivers32: [vidc.DIVX] => C:\WINDOWS\system32\DivX.dll [638976 2003-05-22] (DivXNetworks, Inc.) [Datei ist nicht signiert]

HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]

HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]

HKLM\...\Drivers32: [vidc.VP62] => C:\WINDOWS\system32\vp6vfw.dll [438272 2004-12-10] (On2.com) [Datei ist nicht signiert]

HKLM\...\Drivers32: [vidc.LAGS] => C:\WINDOWS\system32\lagarith.dll [216064 2011-12-07] ( ) [Datei ist nicht signiert]

HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\SysWOW64\ac3filter.acm [1679360 2013-04-06] () [Datei ist nicht signiert]
 

==================== Verknüpfungen & WMI ========================
 

==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
 

2018-07-22 10:50 - 2018-07-22 10:50 - 000015360 _____ () [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\libEGL.DLL

2018-07-22 10:50 - 2018-07-22 10:50 - 002519040 _____ () [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\libGLESv2.dll

2017-06-27 17:41 - 2012-08-31 09:29 - 000313344 _____ (CANON INC.) [Datei ist nicht signiert] C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNSS_DEU.DLL

2017-06-27 17:34 - 2012-07-31 09:48 - 000359936 _____ (CANON INC.) [Datei ist nicht signiert] C:\WINDOWS\System32\CNMN6PPM.DLL

2017-01-12 16:59 - 2016-09-24 15:51 - 000539648 _____ (Helmut Buhler) [Datei ist nicht signiert] C:\Program Files\Windows Sidebar\dwmapi.dll

2010-08-06 10:15 - 2010-08-06 10:15 - 000071680 _____ (Hewlett-Packard) [Datei ist nicht signiert] c:\windows\system32\hpzinw12.dll

2010-08-06 10:15 - 2010-08-06 10:15 - 000089600 _____ (Hewlett-Packard) [Datei ist nicht signiert] c:\windows\system32\hpzipm12.dll

2014-07-22 15:08 - 2014-07-22 15:08 - 001006080 ____R (Robert Simpson, et al.) [Datei ist nicht signiert] C:\Program Files (x86)\Western Digital\WD SmartWare\System.Data.SQLite.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000032256 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\imageformats\qgif.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000039936 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\imageformats\qicns.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000034304 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\imageformats\qico.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000237056 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\imageformats\qjpeg.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000025600 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\imageformats\qsvg.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000025600 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\imageformats\qtga.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000024064 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\imageformats\qwbmp.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000481792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\imageformats\qwebp.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 001336320 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\platforms\qwindows.dll

2018-08-31 02:25 - 2018-08-31 02:25 - 005766144 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5Core.dll

2018-07-22 10:49 - 2018-07-22 10:49 - 006045184 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5Gui.dll

2018-07-22 10:49 - 2018-07-22 10:49 - 000964096 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5Network.dll

2018-07-22 10:49 - 2018-07-22 10:49 - 000279552 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5Positioning.dll

2018-07-22 10:49 - 2018-07-22 10:49 - 003233792 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5Qml.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 003406848 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5Quick.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000328704 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5Svg.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000109568 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5WebChannel.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000325632 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5WebEngine.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 069968896 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5WebEngineCore.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 005523456 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5Widgets.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000282624 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5WinExtras.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000194560 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5Xml.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 003281408 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\Qt5XmlPatterns.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000049152 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\private\qtgraphicaleffectsprivate.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000018432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\QtGraphicalEffects\qtgraphicaleffectsplugin.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000018432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\QtQuick.2\qtquick2plugin.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000311296 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\QtQuick\Controls\qtquickcontrolsplugin.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000089600 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\QtQuick\Layouts\qquicklayoutsplugin.dll

2018-07-22 10:50 - 2018-07-22 10:50 - 000018432 _____ (The Qt Company Ltd) [Datei ist nicht signiert] C:\Program Files\AMD\CNext\CNext\QtQuick\Window.2\windowplugin.dll
 

==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
 

==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
 

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
 

==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
 

==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
 

IE trusted site: HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\localhost -> localhost

IE trusted site: HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\sharepoint.com -> hxxps://onedollarglasses-files.sharepoint.com
 

==================== Hosts Inhalt: =========================
 

(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
 

2017-09-29 14:46 - 2016-07-16 12:45 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
 

==================== Andere Bereiche ===========================
 

(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
 

HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\PC Connectivity Solution\;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Common Files\Acronis\SnapAPI\;C:\Program Files (x86)\Skype\Phone\;%SYSTEMROOT%\System32\OpenSSH\;C:\Program Files\Intel\WiFi\bin\;C:\Program Files\Common Files\Intel\WirelessCommon\

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\Control Panel\Desktop\\Wallpaper -> c:\users\user\privat\familie\190714enkel-bild1.jpg

DNS Servers: 192.168.178.1

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: RequireAdmin)

 ist aktiviert.
 

==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
 

HKLM\...\StartupApproved\Run: => "Logitech Download Assistant"

HKLM\...\StartupApproved\Run: => "AccelerometerSysTrayApplet"

HKLM\...\StartupApproved\Run: => "Classic Start Menu"

HKLM\...\StartupApproved\Run: => "IAStorIcon"

HKLM\...\StartupApproved\Run: => "RtsCM"

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"

HKLM\...\StartupApproved\Run: => "Acronis Scheduler2 Service"

HKLM\...\StartupApproved\Run32: => "IPMPlusConsoleSE"

HKLM\...\StartupApproved\Run32: => "IPMPlusUserInteract"

HKLM\...\StartupApproved\Run32: => "HP Software Update"

HKLM\...\StartupApproved\Run32: => "AdobeCS5.5ServiceManager"

HKLM\...\StartupApproved\Run32: => "Adobe Acrobat Speed Launcher"

HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"

HKLM\...\StartupApproved\Run32: => "Dropbox"

HKLM\...\StartupApproved\Run32: => "TrueImageMonitor.exe"

HKLM\...\StartupApproved\Run32: => "AcronisTibMounterMonitor"

HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\StartupApproved\StartupFolder: => "An OneNote senden.lnk"

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\StartupApproved\StartupFolder: => "Sidebar918.lnk"

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\StartupApproved\Run: => "Power2GoExpress8"

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\StartupApproved\Run: => "gStart"

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\StartupApproved\Run: => "Skype"

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\StartupApproved\Run: => "Viber"

HKU\S-1-5-21-4175727407-727869766-3184556376-1001\...\StartupApproved\Run: => "OneDrive"
 

==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
 

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
 

FirewallRules: [{82A6919B-8068-440E-BBEB-946D0003DB63}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe (Vector Ltd. -> Flash-Integro LLC)

FirewallRules: [{72317C3D-D9EE-4151-81DE-92D81CE86EBA}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Updater.exe (Vector Ltd. -> Flash-Integro LLC)

FirewallRules: [{BC9A930E-A323-4F02-B228-B50DC07706FD}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe (Vector Ltd. -> Flash-Integro LLC)

FirewallRules: [{4D9CD2E4-CB5F-4D1C-9D58-F5AE1705B38E}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\Activation.exe (Vector Ltd. -> Flash-Integro LLC)

FirewallRules: [{72D7E917-A132-4135-A7C0-7B16B183C89B}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe (Vector Ltd. -> Flash-Integro LLC)

FirewallRules: [{3ED16B05-B660-48FF-9698-A0C10179151F}] => (Allow) C:\Program Files\FlashIntegro\VideoEditor\VideoEditor.exe (Vector Ltd. -> Flash-Integro LLC)

FirewallRules: [{2BF6C224-F2FD-45C3-8120-1743BE936686}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe (Intel Corporation -> )

FirewallRules: [{B07A06C9-EB4C-450E-A93C-E016B48A3E23}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [{A3AF7306-FC83-44B1-85BF-2EF0AAFF3285}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)

FirewallRules: [UDP Query User{9B717079-84B1-4896-B7A3-8E5FACFE950F}C:\program files (x86)\acronis\trueimagehome\trueimage.exe] => (Allow) C:\program files (x86)\acronis\trueimagehome\trueimage.exe (Acronis International GmbH -> Acronis)

FirewallRules: [TCP Query User{5251ADF3-13DC-43F8-92C0-CE58BCA3D4AA}C:\program files (x86)\acronis\trueimagehome\trueimage.exe] => (Allow) C:\program files (x86)\acronis\trueimagehome\trueimage.exe (Acronis International GmbH -> Acronis)

FirewallRules: [{93781077-AB7C-4D31-847E-9E582A0A1425}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [{1E299CB1-5A40-4B85-BF32-4305269E2300}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)

FirewallRules: [UDP Query User{8E071222-B534-46E4-9394-6EFE502C908B}C:\program files (x86)\microsoft office\office14\msaccess.exe] => (Allow) C:\program files (x86)\microsoft office\office14\msaccess.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [TCP Query User{E798CC40-2848-4ACD-8829-654F34519E7D}C:\program files (x86)\microsoft office\office14\msaccess.exe] => (Allow) C:\program files (x86)\microsoft office\office14\msaccess.exe (Microsoft Corporation -> Microsoft Corporation)

FirewallRules: [{37735A61-11E0-48BF-A031-D309DFE44BDA}] => (Allow) C:\Program Files (x86)\SMA\Sunny Explorer\SunnyExplorer.exe (SMA Solar Technology AG -> SMA Solar Technology AG)

FirewallRules: [{7B53BB4A-D664-4E7E-875A-9672AF61C82F}] => (Allow) C:\Program Files (x86)\SMA\Sunny Explorer\SMA.Multicasting.IGMP.QuerierService.exe (SMA Solar Technology AG -> Microsoft)

FirewallRules: [{0086EF4F-D505-4AF9-B4DB-A5B78378E547}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> Acronis)

FirewallRules: [{7327E1BF-A8D8-451A-B166-967D017E6E74}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> Acronis)

FirewallRules: [{710D2CDF-4EE7-45BE-AA6B-DA1C0F50AFDB}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> Acronis)

FirewallRules: [{045AD075-F719-4FC4-ADFE-EA3686B87F8D}] => (Allow) C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe (Acronis International GmbH -> Acronis)

FirewallRules: [{C8934EF2-BA80-48D6-AEF7-375677B294DF}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)

FirewallRules: [{7A19460E-A057-4685-B0F8-260C7A503883}] => (Allow) C:\Program Files (x86)\HP\hp software update\hpwucli.exe (Hewlett-Packard Company -> Hewlett-Packard)

FirewallRules: [TCP Query User{AC5389E6-8364-44B0-8B5F-756A058FBA71}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert]

FirewallRules: [UDP Query User{BA85B0AD-3B42-4329-8182-79C0175F78B6}C:\xampp\apache\bin\httpd.exe] => (Allow) C:\xampp\apache\bin\httpd.exe (Apache Software Foundation) [Datei ist nicht signiert]

FirewallRules: [TCP Query User{271CCD05-3C49-4D73-B181-A22373498F13}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )

FirewallRules: [UDP Query User{6B97A72C-08B9-4A1D-A378-40D88DE0785C}C:\xampp\mysql\bin\mysqld.exe] => (Allow) C:\xampp\mysql\bin\mysqld.exe (MariaDB Corporation Ab -> )

FirewallRules: [{5B6E6B7B-A527-4101-8B1A-0DB14AE5FA38}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)

FirewallRules: [{75E43AC9-A840-4F8F-AD95-657042BBC069}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
 

==================== Wiederherstellungspunkte =========================
 

25-12-2019 22:43:41 Geplanter Prüfpunkt

04-01-2020 13:10:17 Geplanter Prüfpunkt

13-01-2020 16:39:56 Geplanter Prüfpunkt

15-01-2020 16:52:41 Revo Uninstaller's restore point - Adobe Acrobat Reader DC - Deutsch

15-01-2020 16:52:58 Removed Adobe Acrobat Reader DC - Deutsch.

15-01-2020 16:54:57 Revo Uninstaller's restore point - Adobe AIR

15-01-2020 16:56:02 Revo Uninstaller's restore point - Adobe Community Help

15-01-2020 16:56:14 Removed Adobe Community Help

15-01-2020 16:57:54 Revo Uninstaller's restore point - Adobe Content Viewer

15-01-2020 16:58:07 Removed Adobe Content Viewer

15-01-2020 16:58:58 Revo Uninstaller's restore point - Avast Free Antivirus

15-01-2020 17:00:35 Revo Uninstaller's restore point - Avira

15-01-2020 17:01:14 Revo Uninstaller's restore point - Avira Antivirus

15-01-2020 17:04:01 Revo Uninstaller's restore point - Avira Phantom VPN

15-01-2020 17:05:10 Revo Uninstaller's restore point - Avira Software Updater

15-01-2020 17:05:24 Removed Avira Software Updater

15-01-2020 17:06:14 Revo Uninstaller's restore point - Avira

15-01-2020 17:07:25 Revo Uninstaller's restore point - Avira

15-01-2020 17:10:00 Revo Uninstaller's restore point - VLC media player

15-01-2020 17:11:40 Revo Uninstaller's restore point - VLC Update
 

==================== Fehlerhafte Geräte im Gerätemanager ============
 
 

==================== Fehlereinträge in der Ereignisanzeige: ========================
 

Applikationsfehler:

==================

Error: (01/15/2020 05:32:09 PM) (Source: ESENT) (EventID: 455) (User: )

Description: svchost (4208,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
 

Error: (01/15/2020 05:04:00 PM) (Source: VSS) (EventID: 8194) (User: )

Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert

.

Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
 
 

Vorgang:

   Generatordaten werden gesammelt
 

Kontext:

   Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}

   Generatorname: System Writer

   Generatorinstanz-ID: {9c1903a3-110e-43e7-b2a5-2919c27b6156}
 

Error: (01/15/2020 05:02:13 PM) (Source: VSS) (EventID: 13) (User: )

Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.

]
 

Error: (01/15/2020 05:02:13 PM) (Source: VSS) (EventID: 8193) (User: )

Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "CoCreateInstance" ist ein unerwarteter Fehler aufgetreten. hr = 0x8007045b, Der Computer wird heruntergefahren.

.
 

Error: (01/15/2020 05:02:13 PM) (Source: VSS) (EventID: 13) (User: )

Description: Volumenschattenkopie-Dienst-Informationen: Der COM-Server mit CLSID {4e14fba2-2e22-11d1-9964-00c04fbbb345} und dem Namen "CEventSystem" kann nicht gestartet werden. [0x8007045b, Der Computer wird heruntergefahren.

]
 

Error: (01/15/2020 05:01:15 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddWin32ServiceFiles: Unable to back up image of service Avast Antivirus since QueryServiceConfig API failed
 

System Error:

Das System kann die angegebene Datei nicht finden.

.
 

Error: (01/15/2020 05:01:15 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddWin32ServiceFiles: Unable to back up image of service aswbIDSAgent since QueryServiceConfig API failed
 

System Error:

Das System kann die angegebene Datei nicht finden.

.
 

Error: (01/15/2020 05:01:15 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )

Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
 

Details:

AddLegacyDriverFiles: Unable to back up image of binary aswSP.
 

System Error:

Das System kann die angegebene Datei nicht finden.

.
 
 

Systemfehler:

=============

Error: (01/15/2020 05:20:59 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)

Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
 

Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll
 

Error: (01/15/2020 05:20:59 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)

Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
 

Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll
 

Error: (01/15/2020 05:20:51 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT-AUTORITÄT)

Description: Das WLAN-Erweiterungsmodul wurde unerwartet beendet.
 

Modulpfad: C:\WINDOWS\System32\IWMSSvc.dll
 

Error: (01/15/2020 05:20:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "HP Software Framework Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (01/15/2020 05:20:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "HP CASL Framework Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (01/15/2020 05:20:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "WISO Konto Online Plus 365 Updatedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (01/15/2020 05:20:40 PM) (Source: Service Control Manager) (EventID: 7034) (User: )

Description: Dienst "IPMPLUS" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
 

Error: (01/15/2020 05:20:40 PM) (Source: Service Control Manager) (EventID: 7031) (User: )

Description: Der Dienst "Windows Media Player-Netzwerkfreigabedienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 30000 Millisekunden durchgeführt: Neustart des Diensts.
 
 

Windows Defender:

===================================

Date: 2020-01-15 17:02:11.916

Description: 

Bei Windows Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.

Neue Version der Sicherheitsinformationen: 

%Vorherige Version der Sicherheitsinformationen: 1.299.356.0

Update Source: Microsoft Update-Server

Sicherheitstyp: AntiVirus

Updatetyp: Voll

Benutzer: NT-AUTORITÄT\SYSTEM

Aktuelle Modulversion: 

%Vorherige Modulversion: 1.1.16200.1

Fehlercode: 0x80240022

Fehlerbeschreibung: Die Suche des Programms nach Definitionsaktualisierungen ist nicht möglich. 
 

Date: 2020-01-15 17:02:11.914

Description: 

Bei Windows Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.

Neue Version der Sicherheitsinformationen: 

%Vorherige Version der Sicherheitsinformationen: 1.299.356.0

Update Source: Microsoft Update-Server

Sicherheitstyp: AntiVirus

Updatetyp: Voll

Benutzer: NT-AUTORITÄT\SYSTEM

Aktuelle Modulversion: 

%Vorherige Modulversion: 1.1.16200.1

Fehlercode: 0x80240022

Fehlerbeschreibung: Die Suche des Programms nach Definitionsaktualisierungen ist nicht möglich. 
 

CodeIntegrity:

===================================
 

Date: 2020-01-15 16:34:19.035

Description: 

Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\AVAST Software\Avast\AvastSvc.exe) attempted to load \Device\HarddiskVolume4\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
 

Date: 2020-01-15 15:33:38.988

Description: 

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

Date: 2020-01-15 15:33:38.923

Description: 

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\AVAST Software\Avast\wsc_proxy.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

Date: 2020-01-15 15:33:38.800

Description: 

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

Date: 2020-01-15 15:33:38.741

Description: 

Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
 

Date: 2020-01-15 14:53:01.085

Description: 

Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\AviraSecurityCenterAgent.exe) attempted to load \Device\HarddiskVolume4\Program Files (x86)\Avira\Antivirus\libcurl.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 

Date: 2020-01-15 11:12:41.610

Description: 

Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 

Date: 2020-01-15 11:12:31.735

Description: 

Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.
 

==================== Speicherinformationen =========================== 
 

BIOS: Hewlett-Packard M73 Ver. 01.41 05/19/2016

Hauptplatine: Hewlett-Packard 2249

Prozessor: Intel(R) Core(TM) i7-5500U CPU @ 2.40GHz

Prozentuale Nutzung des RAM: 44%

Installierter physikalischer RAM: 8083.09 MB

Verfügbarer physikalischer RAM: 4520.3 MB

Summe virtueller Speicher: 12175.09 MB

Verfügbarer virtueller Speicher: 8424.36 MB
 

==================== Laufwerke ================================
 

Drive c: (Win10-SSD-25oGB) (Fixed) (Total:228.2 GB) (Free:44.53 GB) NTFS

Drive h: (My Passport) (Fixed) (Total:931.48 GB) (Free:168.51 GB) NTFS
 

\\?\Volume{87809117-6f8b-4ced-9b34-1df02e223262}\ (Wiederherstellung) (Fixed) (Total:0.44 GB) (Free:0.42 GB) NTFS

\\?\Volume{0a80b1af-1504-4e3c-8271-edeb722f92f0}\ () (Fixed) (Total:0.91 GB) (Free:0.37 GB) NTFS

\\?\Volume{2f9cf4ff-e3e2-4665-8cc2-e155c948f15b}\ () (Fixed) (Total:0.14 GB) (Free:0.05 GB) FAT32
 

==================== MBR & Partitionstabelle ====================
 

==========================================================

Disk: 0 (Protective MBR) (Size: 232.9 GB) (Disk ID: 00000000)
 

Partition: GPT.
 

==========================================================

Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 1B3B842A)

Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)
 

==================== Ende von Addition.txt =======================