Damina1997 | 21.01.2020 23:30 | So, dann wollen wir mal :)
Ein Mal die Fixlog: Code:
Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 18-01-2020
durchgeführt von denis (21-01-2020 21:32:54) Run:1
Gestartet von C:\Users\denis\Downloads
Geladene Profile: denis (Verfügbare Profile: denis)
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
CloseProcesses:
FF Extension: (Amazon Assistant for Firefox) - C:\Users\denis\AppData\Roaming\Mozilla\Firefox\Profiles\o6qw0sqw.default\Extensions\abb-acer@amazon.com [2019-01-24] [hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Amazon Assistant for Firefox) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com [2018-12-14] [hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
AlternateDataStreams: C:\ProgramData\TEMP:2CB9631F [134]
AlternateDataStreams: C:\ProgramData\TEMP:43982D5E [420]
AlternateDataStreams: C:\ProgramData\TEMP:7AF9CAEB [442]
AlternateDataStreams: C:\ProgramData\TEMP:E1D06077 [496]
RemoveProxy:
EmptyTemp:
*****************
Prozesse erfolgreich geschlossen.
C:\Users\denis\AppData\Roaming\Mozilla\Firefox\Profiles\o6qw0sqw.default\Extensions\abb-acer@amazon.com => erfolgreich verschoben
C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\abb-acer@amazon.com => erfolgreich verschoben
C:\ProgramData\TEMP => ":2CB9631F" ADS erfolgreich entfernt
C:\ProgramData\TEMP => ":43982D5E" ADS erfolgreich entfernt
C:\ProgramData\TEMP => ":7AF9CAEB" ADS erfolgreich entfernt
C:\ProgramData\TEMP => ":E1D06077" ADS erfolgreich entfernt
========= RemoveProxy: =========
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
"HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
========= Ende von RemoveProxy: =========
=========== EmptyTemp: ==========
BITS transfer queue => 10510336 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 187656796 B
Java, Flash, Steam htmlcache => 569898090 B
Windows/system/drivers => 3052454 B
Edge => 1348919 B
Chrome => 947258940 B
Firefox => 203109775 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 0 B
NetworkService => 244760 B
denis => 380003243 B
RecycleBin => 0 B
EmptyTemp: => 2.1 GB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 21:34:18 ==== Die neue FRST-Log: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 18-01-2020
durchgeführt von denis (Administrator) auf DESKTOP-J6JJDTH (Acer Predator PH317-52) (21-01-2020 23:23:39)
Gestartet von C:\Users\denis\Downloads
Geladene Profile: denis (Verfügbare Profile: denis)
Platform: Windows 10 Home Version 1903 18362.592 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\PredatorSense Service\PSAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\PredatorSense Service\PSAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files (x86)\Acer\PredatorSense Service\PSSvc.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAdminAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QAAgent.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QALockHandler.exe
(Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\QASvc.exe
(Acer Incorporated -> Microsoft) C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe
(Discord Inc. -> Discord Inc.) C:\Users\denis\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\denis\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\denis\AppData\Local\Discord\app-0.0.305\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\denis\AppData\Local\Discord\app-0.0.305\Discord.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(GameHouse Europe B.V. -> RealNetworks, Inc.) C:\Program Files (x86)\Online Games Manager\ogmservice.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.422\GoogleCrashHandler64.exe
(ICEpower a/s -> ICEpower) C:\Windows\System32\ICEsoundService64.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Extreme Tuning Utility -> Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\igfxext.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\IntelCpHeciSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel(R) Rapid Storage Technology -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\iastorac.inf_amd64_e335ebb186115025\RstMwService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2019.19081.22010.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19101.10711.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.1911.3-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe
(Valve -> Valve Corporation) D:\Steam\Steam.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18391088 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_ASC] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506352 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506352 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [319520 2018-08-29] (Intel(R) Rapid Storage Technology -> Intel Corporation)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [876032 2017-10-12] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\Run: [Discord] => C:\Users\denis\AppData\Local\Discord\app-0.0.305\Discord.exe [81780056 2019-03-07] (Discord Inc. -> Discord Inc.)
HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\79.0.3945.130\Installer\chrmstp.exe [2020-01-17] (Google LLC -> Google LLC)
Startup: C:\Users\denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Twitch.lnk [2019-08-14]
ShortcutTarget: Twitch.lnk -> D:\Twitch\Bin\Twitch.exe (Twitch Interactive, Inc. -> Twitch Interactive, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {09416F47-216B-4897-9C97-1F9FE4346B0D} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770736 2019-09-27] (Acer Incorporated -> Acer Incorporated)
Task: {0C188719-B10D-48E5-A69A-11EEC822DFBB} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {0DEBBC50-22A5-46CB-B50D-1C93A6BDA305} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {1063FFD3-654E-4A5A-A209-2746B3F4C9BD} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [474368 2018-08-03] (Acer Incorporated -> Acer Incorporated)
Task: {112BEC2F-3C99-48F7-98B2-34C3AB0FE791} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-22] (Google Inc -> Google Inc.)
Task: {36A3BE97-7CCC-48EF-B0EC-9E0E6493D4BF} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {467AE5A6-D423-431A-9B9C-C8BD689458B6} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4761392 2018-08-13] (Acer Incorporated -> )
Task: {5C05B682-0E70-467D-A26A-F3E4E93FD964} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {5D94EB1C-42C5-4ED5-8495-996EDA89EC9F} - System32\Tasks\PredatorSense => C:\Program Files (x86)\Acer\PredatorSense Service\PSLauncher.exe [580416 2018-09-10] (Acer Incorporated -> Acer Incorporated)
Task: {769D1442-AF32-401D-8C40-5D2FBC6E4225} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7AA0E5FD-B12B-4B3F-B27D-CCF4C18EFB49} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2018-08-13] (Acer Incorporated -> )
Task: {7B01F01B-EDAF-4F7D-8077-B6119228CBD5} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {849FFEBC-E8B9-46F4-9A78-82739A5E0C39} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [521152 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8F952775-202C-47DC-814D-BC54C0568D60} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156968 2019-01-22] (Google Inc -> Google Inc.)
Task: {B6685B98-BF20-416F-9126-41CF948D142A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [657856 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B8E84F09-45F8-40A2-A173-2B870301BAED} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [964544 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D0C64C7B-6E37-4B2B-AEA1-26E7327E28B2} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MpCmdRun.exe [469648 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {D325D906-8A90-4C18-94E4-521494F7034C} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268080 2018-06-28] (Acer Incorporated -> Acer Incorporated)
Task: {D9590561-0CDE-4AF2-9803-CAD454F34AA4} - System32\Tasks\BlueStacksHelper => D:\Program\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {DFC9A8EB-2291-41C7-AF65-6040BE57F6DB} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [657856 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E1AB60B9-0C4E-4F2B-A187-CD47EBBF5A6D} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1864640 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E7E54551-9A99-4FFE-869F-2F74B6892D38} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920240 2018-08-13] (Acer Incorporated -> )
Task: {E85C06B2-FEEB-4DB2-AC16-7787448E79C6} - System32\Tasks\StorPSCTL => C:\Program Files\Acer\StorPSCTL\StorPSCTL.exe [91440 2017-09-26] (Acer Incorporated -> Microsoft)
Task: {EB66AE7E-0E47-46FB-B38F-AE443656268F} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FD9B3E74-9E41-43D1-953F-DECF71FCE44A} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447280 2019-09-27] (Acer Incorporated -> Acer Incorporated)
Task: {FF7EBDE1-8B85-4540-874B-BBC13F97B714} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211120 2018-06-28] (Acer Incorporated -> Acer Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{59756f5c-171c-41ce-a7af-6d61a6db7027}: [DhcpNameServer] 192.168.2.1
Internet Explorer:
==================
HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://acer17win10.msn.com/?pc=ACTE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_241\bin\ssv.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\ssv.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
FireFox:
========
FF DefaultProfile: o6qw0sqw.default
FF ProfilePath: C:\Users\denis\AppData\Roaming\Mozilla\Firefox\Profiles\o6qw0sqw.default [2020-01-21]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\denis\AppData\Roaming\Mozilla\Firefox\Profiles\o6qw0sqw.default\Extensions\langpack-de@firefox.mozilla.org [2019-01-24]
FF Extension: (Mozilla Partner Defaults) - C:\Users\denis\AppData\Roaming\Mozilla\Firefox\Profiles\o6qw0sqw.default\Extensions\partnerdefaults@mozilla.com [2019-01-24] []
FF Extension: (Deutsch (DE) Language Pack) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\langpack-de@firefox.mozilla.org [2018-12-14]
FF Extension: (Mozilla Partner Defaults) - C:\Program Files (x86)\Mozilla Firefox\distribution\extensions\partnerdefaults@mozilla.com [2018-12-14] []
FF Plugin: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-17] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.35.422\npGoogleUpdate3.dll [2019-12-14] (Google LLC -> Google LLC)
Chrome:
=======
CHR Notifications: Default -> hxxps://forum.minecraft-corp.com; hxxps://top.gg; hxxps://www.instagram.com
CHR Profile: C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default [2020-01-21]
CHR Extension: (Präsentationen) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-01-22]
CHR Extension: (BetterTTV) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-01-13]
CHR Extension: (Docs) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-01-22]
CHR Extension: (Google Drive) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2019-01-22]
CHR Extension: (YouTube) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-01-22]
CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-10-23]
CHR Extension: (FrankerFaceZ) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2019-01-22]
CHR Extension: (Tabellen) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-01-22]
CHR Extension: (Google Docs Offline) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-01-08]
CHR Extension: (Twitch Live) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiljidcefnbhbpamageahhblhbbhhopm [2019-07-29]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-01]
CHR Extension: (Google Mail) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-04-24]
CHR Extension: (Chrome Media Router) - C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-12-13]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [301872 2018-08-13] (Acer Incorporated -> Acer Incorporated)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [784512 2019-12-29] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
S4 HfcDisableService; C:\WINDOWS\System32\DriverStore\FileRepository\iastorac.inf_amd64_e335ebb186115025\HfcDisableService.exe [1860064 2018-12-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfsService; C:\WINDOWS\System32\iaStorAfsService.exe [2788512 2018-12-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ICEsoundService; C:\WINDOWS\system32\ICEsoundService64.exe [799928 2018-10-18] (ICEpower a/s -> ICEpower)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\SocketHeciServer.exe [743728 2017-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
S2 Intel(R) TPM Provisioning Service; C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\TPMProvisioningService.exe [720184 2017-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [214672 2018-01-31] (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6960640 2020-01-21] (Malwarebytes Inc -> Malwarebytes)
S3 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [519104 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
R2 ogmservice; C:\Program Files (x86)\Online Games Manager\ogmservice.exe [582544 2016-07-13] (GameHouse Europe B.V. -> RealNetworks, Inc.)
S3 Origin Client Service; D:\Origin\OriginClientService.exe [2425136 2019-11-13] (Electronic Arts, Inc. -> Electronic Arts)
S2 Origin Web Helper Service; D:\Origin\OriginWebHelperService.exe [3303736 2019-11-13] (Electronic Arts, Inc. -> Electronic Arts)
R3 PSSvc; C:\Program Files (x86)\Acer\PredatorSense Service\PSSvc.exe [717120 2018-09-10] (Acer Incorporated -> Acer Incorporated)
S3 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465712 2019-09-27] (Acer Incorporated -> Acer Incorporated)
R3 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [523568 2019-09-27] (Acer Incorporated -> Acer Incorporated)
R2 RstMwService; C:\WINDOWS\System32\DriverStore\FileRepository\iastorac.inf_amd64_e335ebb186115025\RstMwService.exe [2112672 2018-12-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [304944 2018-06-28] (Acer Incorporated -> Acer Incorporated)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\NisSrv.exe [3206472 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1911.3-0\MsMpEng.exe [103376 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [18232 2016-08-25] (Intel(R) Extreme Tuning Utility -> Intel(R) Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugins" -r
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [29912 2019-05-17] (Acer Incorporated -> Acer Incorporated)
S3 BlueStacksDrv; C:\Program Files\BlueStacks\BstkDrv.sys [313112 2019-07-01] (Bluestack Systems, Inc. -> Bluestack System Inc. )
R3 ETDI2C; C:\WINDOWS\System32\drivers\ETDI2C.sys [218184 2017-11-16] (ELAN MICROELECTRONICS CORPORATION -> ELAN Microelectronic Corp.)
R0 iaStorAC; C:\WINDOWS\System32\drivers\iaStorAC.sys [1016288 2018-12-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
S3 iaStorAfs; C:\WINDOWS\System32\drivers\iaStorAfs.sys [73376 2018-12-24] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R3 ibtusb; C:\WINDOWS\System32\drivers\ibtusb.sys [198208 2018-05-18] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [37064 2016-08-24] (Intel Corporation -> Intel Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [218288 2020-01-21] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [20936 2020-01-21] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248968 2020-01-21] (Malwarebytes Inc -> Malwarebytes)
S3 Netwtw06; C:\WINDOWS\System32\drivers\Netwtw06.sys [8743448 2018-04-26] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 Netwtw08; C:\WINDOWS\System32\drivers\Netwtw08.sys [9117688 2019-06-05] (Intel(R) Wireless Connectivity Solutions -> Intel Corporation)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvac.inf_amd64_2fc0d3600c3c3d39\nvlddmkm.sys [17036560 2018-01-09] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [30144 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [50624 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [57792 2017-11-15] (NVIDIA Corporation -> NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1131024 2018-10-23] (Realtek Semiconductor Corp. -> Realtek )
R3 RTSPER; C:\WINDOWS\System32\drivers\RtsPer.sys [864704 2017-10-18] (Realtek Semiconductor Corp. -> Realsil Semiconductor Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [45664 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [355760 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [54192 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-01-21 23:23 - 2020-01-21 23:24 - 000029846 _____ C:\Users\denis\Downloads\FRST.txt
2020-01-21 21:43 - 2020-01-21 21:43 - 000000773 _____ C:\Users\denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2020-01-21 21:43 - 2020-01-21 21:43 - 000000674 _____ C:\Users\denis\Desktop\ESET Online Scanner.lnk
2020-01-21 21:43 - 2020-01-21 21:43 - 000000000 ____D C:\Users\denis\AppData\Local\ESET
2020-01-21 21:39 - 2020-01-21 21:43 - 008166712 _____ (ESET spol. s r.o.) C:\Users\denis\Downloads\ESETOnlineScanner_DEU.exe
2020-01-21 21:35 - 2020-01-21 21:35 - 000248968 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2020-01-21 21:35 - 2020-01-21 21:35 - 000218288 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2020-01-21 21:32 - 2020-01-21 21:34 - 000003107 _____ C:\Users\denis\Downloads\Fixlog.txt
2020-01-21 18:12 - 2020-01-21 18:12 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2020-01-21 18:12 - 2020-01-21 18:12 - 000020936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2020-01-21 18:12 - 2020-01-21 18:12 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2020-01-21 18:12 - 2020-01-21 18:12 - 000002025 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2020-01-21 18:12 - 2020-01-21 18:12 - 000000000 ____D C:\Users\denis\AppData\Local\cache
2020-01-21 18:12 - 2020-01-21 18:12 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2020-01-21 18:12 - 2020-01-21 18:12 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-01-21 18:12 - 2020-01-21 18:12 - 000000000 ____D C:\Program Files\Malwarebytes
2020-01-21 18:11 - 2020-01-21 18:11 - 001924728 _____ (Malwarebytes) C:\Users\denis\Downloads\MBSetup.exe
2020-01-21 14:25 - 2020-01-21 23:23 - 000000000 ____D C:\FRST
2020-01-21 14:23 - 2020-01-21 14:23 - 002572800 _____ (Farbar) C:\Users\denis\Downloads\FRST64.exe
2020-01-21 14:17 - 2020-01-21 14:18 - 000000000 ____D C:\AdwCleaner
2020-01-21 14:17 - 2020-01-21 14:17 - 008237744 _____ (Malwarebytes) C:\Users\denis\Downloads\adwcleaner_8.0.1.exe
2020-01-17 13:06 - 2020-01-17 13:06 - 000129088 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-64.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 025900032 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 025444352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Hydrogen.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 022627840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 019849216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 018020352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 009928208 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 008012800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 007754752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 007600448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 007016448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 006520480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 005913600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 003729408 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2020-01-16 21:13 - 2020-01-16 21:13 - 003703296 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 003263488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tquery.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 002870784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssrch.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 002801152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2020-01-16 21:13 - 2020-01-16 21:13 - 002716672 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2020-01-16 21:13 - 2020-01-16 21:13 - 002561536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tquery.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 002494464 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 002473976 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 002305536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssrch.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001985928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinapi.appcore.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001835008 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001697280 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001664896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001655880 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001610752 _____ (Microsoft Corporation) C:\WINDOWS\system32\HologramCompositor.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001458688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001399096 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 001330952 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001151816 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmpeg2srcsnk.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001106944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Streaming.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001098720 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001072952 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 001051664 _____ (Microsoft Corporation) C:\WINDOWS\system32\pidgenx.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 001020032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000921600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Management.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\MdmDiagnostics.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000852480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Streaming.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000851456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchIndexer.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 000842752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000701440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Mirage.Internal.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000678712 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000673792 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaaut.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000671232 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiaservc.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000670720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchIndexer.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 000646144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Internal.Management.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000571392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiaaut.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000550400 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2020-01-16 21:13 - 2020-01-16 21:13 - 000542496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000432256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000401408 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchProtocolHost.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 000400696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2020-01-16 21:13 - 2020-01-16 21:13 - 000392192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Search.ProtocolHandler.MAPI2.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000368128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssvp.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000363840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000336384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchProtocolHost.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 000329216 _____ (Microsoft Corporation) C:\WINDOWS\system32\DiagnosticLogCSP.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32k.sys
2020-01-16 21:13 - 2020-01-16 21:13 - 000321536 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000317440 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConhostV1.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000299520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssvp.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000294400 _____ (Microsoft Corporation) C:\WINDOWS\system32\provops.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000283136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Search.ProtocolHandler.MAPI2.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\provhandlers.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000240640 _____ (Microsoft Corporation) C:\WINDOWS\system32\SearchFilterHost.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCore.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000232448 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000227840 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\sti.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SearchFilterHost.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 000206336 _____ (Microsoft Corporation) C:\WINDOWS\system32\sti_ci.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000204800 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssph.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000162696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dmcmnutils.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000160768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssph.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000148992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 000147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssprxy.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000145920 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiadss.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\mssitlb.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000127520 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dmcmnutils.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000127064 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32u.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptcatsvc.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\KnobsCsp.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000119808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiadss.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000113152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssitlb.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NFCProvisioningPlugin.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000097280 _____ (Microsoft Corporation) C:\WINDOWS\system32\provdatastore.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\ProvPluginEng.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000089536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32u.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\BarcodeProvisioningPlugin.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000084480 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterpriseresourcemanager.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiarpc.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\provtool.exe
2020-01-16 21:13 - 2020-01-16 21:13 - 000083456 _____ (Microsoft Corporation) C:\WINDOWS\system32\clfsw32.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000070144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsgqec.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000066560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clfsw32.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\enterpriseresourcemanager.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemovableMediaProvisioningPlugin.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mssprxy.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msscntrs.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000046080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msscntrs.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Management.Provisioning.ProxyStub.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wiatrace.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000015360 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wiatrace.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DMAlertListener.ProxyStub.dll
2020-01-16 21:13 - 2020-01-16 21:13 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DMAlertListener.ProxyStub.dll
2020-01-16 21:07 - 2020-01-16 21:07 - 000492544 _____ (Microsoft Corporation) C:\WINDOWS\system32\poqexec.exe
2020-01-16 21:07 - 2020-01-16 21:07 - 000390656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\poqexec.exe
2020-01-15 16:07 - 2020-01-15 16:07 - 188121752 _____ C:\Users\denis\Downloads\mftp_zip_2020_01_15_15_07_20.zip
2020-01-13 18:04 - 2020-01-13 18:04 - 000000000 ____D C:\Users\denis\AppData\Roaming\EasyAntiCheat
2020-01-13 18:04 - 2020-01-13 18:04 - 000000000 ____D C:\Program Files (x86)\EasyAntiCheat
2020-01-10 23:41 - 2020-01-10 23:41 - 049058175 _____ C:\Users\denis\Downloads\Get Real! - Anger Management.zip
2020-01-10 23:39 - 2020-01-10 23:39 - 121275198 _____ C:\Users\denis\Downloads\Every Other Aspect - To New Beginnings and Old Endings.zip
2020-01-08 15:22 - 2020-01-08 15:22 - 038659259 _____ C:\Users\denis\Downloads\PureBDcraft 128x MC114.zip
2020-01-08 15:21 - 2020-01-08 15:21 - 002647367 _____ C:\Users\denis\Downloads\OptiFine_1.14.3_HD_U_F2.jar
2019-12-31 21:37 - 2019-12-31 21:37 - 000000000 ____D C:\Users\denis\AppData\Local\GolfIt
2019-12-29 20:40 - 2019-12-29 20:40 - 000000000 ____D C:\Users\denis\AppData\LocalLow\Room710Games
2019-12-28 11:55 - 2019-12-28 11:55 - 000000000 ____D C:\Users\denis\AppData\LocalLow\Berserk Games
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-01-21 23:17 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-01-21 22:46 - 2019-09-29 12:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-01-21 21:45 - 2019-09-29 12:36 - 001725108 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-01-21 21:45 - 2019-03-19 13:16 - 000745142 _____ C:\WINDOWS\system32\perfh007.dat
2020-01-21 21:45 - 2019-03-19 13:16 - 000150430 _____ C:\WINDOWS\system32\perfc007.dat
2020-01-21 21:45 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-01-21 21:35 - 2019-09-29 12:33 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-01-21 21:35 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-01-21 21:35 - 2019-01-22 17:22 - 000000000 __SHD C:\Users\denis\IntelGraphicsProfiles
2020-01-21 21:35 - 2018-12-14 00:22 - 000000000 ____D C:\ProgramData\NVIDIA
2020-01-21 20:58 - 2019-02-18 23:40 - 000000000 ____D C:\Users\denis\AppData\Local\Ubisoft Game Launcher
2020-01-21 20:47 - 2019-12-14 17:58 - 000000000 ____D C:\Users\denis\AppData\Roaming\.minecraft
2020-01-21 18:12 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-01-20 21:31 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-01-20 21:31 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-01-19 22:07 - 2019-01-22 17:25 - 000000000 ____D C:\Users\denis\AppData\Local\CrashDumps
2020-01-19 18:43 - 2019-01-22 17:45 - 000000000 ____D C:\Users\denis\AppData\Local\Spotify
2020-01-19 18:06 - 2019-01-22 17:45 - 000000000 ____D C:\Users\denis\AppData\Roaming\Spotify
2020-01-19 12:44 - 2019-09-29 12:33 - 000003380 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1835216842-1797002512-2963936704-1001
2020-01-19 12:44 - 2019-09-29 12:28 - 000002387 _____ C:\Users\denis\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-01-19 12:44 - 2019-01-22 17:24 - 000000000 ___RD C:\Users\denis\OneDrive
2020-01-17 13:06 - 2019-02-28 21:26 - 000129088 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge-64.dll
2020-01-17 13:06 - 2019-02-28 21:26 - 000000000 ____D C:\Program Files\Java
2020-01-17 13:06 - 2019-02-28 21:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2020-01-17 13:06 - 2019-02-28 21:22 - 000000000 ____D C:\Program Files (x86)\Java
2020-01-17 13:05 - 2019-02-28 21:23 - 000114232 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2020-01-17 13:03 - 2019-01-22 17:24 - 000002297 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-01-17 13:03 - 2019-01-22 17:24 - 000002256 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-01-17 13:03 - 2019-01-22 17:24 - 000002256 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-01-17 12:59 - 2019-09-29 12:26 - 000257920 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-01-17 00:56 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2020-01-17 00:56 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2020-01-17 00:56 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2020-01-17 00:56 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-01-16 21:18 - 2019-01-23 00:27 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-01-16 21:15 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-01-16 21:15 - 2019-01-23 00:27 - 120202352 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-01-13 18:04 - 2019-02-26 11:50 - 000000000 ____D C:\Users\denis\AppData\Local\UnrealEngine
2020-01-09 13:38 - 2019-01-23 00:32 - 000000000 ____D C:\Users\denis\Documents\SpedV
2020-01-09 13:38 - 2019-01-23 00:32 - 000000000 ____D C:\Users\denis\AppData\Roaming\Microsoft\Windows\Start Menu\FPH SpedV
2020-01-09 13:38 - 2019-01-23 00:31 - 000000000 ____D C:\Users\denis\AppData\Local\SpedV
2020-01-05 22:29 - 2019-05-25 20:43 - 000000000 ____D C:\Users\denis\AppData\LocalLow\Fireproof Games
2019-12-27 22:36 - 2019-04-28 19:54 - 000000000 ____D C:\Users\denis\AppData\LocalLow\Unity
2019-12-22 12:07 - 2019-01-22 18:45 - 000000000 ____D C:\Users\denis\AppData\Roaming\Discord
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2019-10-29 16:20 - 2019-10-29 16:20 - 000012244 _____ () C:\Users\denis\AppData\Local\recently-used.xbel
2019-03-24 15:20 - 2019-08-02 19:54 - 000007605 _____ () C:\Users\denis\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ======================== Und die neue Addition-Log: Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 18-01-2020
durchgeführt von denis (21-01-2020 23:24:31)
Gestartet von C:\Users\denis\Downloads
Windows 10 Home Version 1903 18362.592 (X64) (2019-09-29 11:33:28)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-1835216842-1797002512-2963936704-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1835216842-1797002512-2963936704-503 - Limited - Disabled)
denis (S-1-5-21-1835216842-1797002512-2963936704-1001 - Administrator - Enabled) => C:\Users\denis
Gast (S-1-5-21-1835216842-1797002512-2963936704-501 - Limited - Disabled)
WDAGUtilityAccount (S-1-5-21-1835216842-1797002512-2963936704-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Acer Configuration Manager (HKLM-x32\...\{414D554E-4453-454E-0201-000000016258}) (Version: 2.1.16258 - Acer)
Action Replay PowerSaves 3DS Version 1.55 (HKLM-x32\...\{CD24B06F-0A4D-410A-AEF2-DFE6A28AB4C0}_is1) (Version: 1.55 - Datel Design & Development)
Be Rich (HKLM-x32\...\BFG-Be Rich) (Version: - )
Big Fish: Game Manager (HKLM-x32\...\BFGC) (Version: 3.3.0.2 - )
Blackmagic RAW Common Components (HKLM\...\{8F57BC8F-7DAC-4E4B-BD13-A55B1AC0DF43}) (Version: 1.6 - Blackmagic Design)
BlueStacks App Player (HKLM\...\BlueStacks) (Version: 4.100.20.1001 - BlueStack Systems, Inc.)
Care Center Service (HKLM\...\{7409ED35-2013-4F8D-9C06-61B70E807660}) (Version: 3.00.3008 - Acer Incorporated)
Conference Client version 0.13 (HKLM-x32\...\{6186D48B-32FB-4E48-9085-ACC07BA5FB0F}_is1) (Version: 0.13 - M. Freiholz Software Development)
CPUID HWMonitor 1.40 (HKLM\...\CPUID HWMonitor_is1) (Version: 1.40 - CPUID, Inc.)
CrystalDiskInfo 8.1.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 8.1.0 - Crystal Dew World)
DaVinci Resolve (HKLM\...\{5913037B-95C8-4A27-8F37-026BBC7B5AF1}) (Version: 16.1.2026 - Blackmagic Design)
DaVinci Resolve Keyboards (HKLM\...\{04F776FB-37A2-4116-84F2-6CF3D731999D}) (Version: 1.0.0.0 - Blackmagic Design)
DaVinci Resolve Panels (HKLM\...\{567706B7-1501-43BC-81AB-C7E306B40C73}) (Version: 1.3.2.0 - Blackmagic Design)
Die Sims™ 3 (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}) (Version: 1.69.43.024017 - Electronic Arts Inc.)
Die Sims™ 3 Diesel Accessoires (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Diesel Stuff) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Einfach tierisch (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Pets) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Into the Future (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Into the Future) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Jahreszeiten (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Seasons) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Lebensfreude (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Generations) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Luxus-Accessoires (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 High-End Loft Stuff) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Reiseabenteuer (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 World Adventures) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Traumkarrieren (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 Ambitions) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 3 Wildes Studentenleben (HKLM-x32\...\{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}_The Sims 3 University Life) (Version: 1.0.0.0 - Electronic Arts Inc.)
Die Sims™ 4 Erstelle einen Sim-Demo (HKLM-x32\...\{6908ED99-F02B-4E99-A202-3FAC99C510ED}) (Version: 1.0.293.1110 - Electronic Arts Inc.)
Discord (HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\Discord) (Version: 0.0.305 - Discord Inc.)
Dolby Audio X2 Windows API SDK (HKLM\...\{8738A898-221B-4279-BC87-FEF7938022C1}) (Version: 0.8.8.87 - Dolby Laboratories, Inc.)
Dolby Audio X2 Windows APP (HKLM\...\{4A02DCED-C2B0-4DD3-87BD-7D8E68D6AF3C}) (Version: 0.8.6.75 - Dolby Laboratories, Inc.)
DriverSetupUtility (HKLM\...\{2B51C83A-465D-4EA9-9CDC-1ED95ED09AC6}) (Version: 1.00.3026 - Acer Incorporated)
Epic Games Launcher Prerequisites (x64) (HKLM\...\{66C5838F-B854-4A55-89E6-A6138747A4DF}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
FileZilla Client 3.40.0 (HKLM-x32\...\FileZilla Client) (Version: 3.40.0 - Tim Kosse)
FPH SpedV (HKLM\...\FPH SpedV) (Version: - Freie Programme Hohenstein)
Gardenscapes 2 (HKLM-x32\...\970496e8ae9d81cff1d334a17674ac36) (Version: - Zylom)
GIMP 2.10.8 (HKLM\...\GIMP-2_is1) (Version: 2.10.8 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 79.0.3945.130 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.421 - Google LLC) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 1805.12.0.1097 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 23.20.16.5018 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 16.7.1.1012 - Intel Corporation)
Intel(R) Serial IO (HKLM\...\{9FD91C5C-44AE-4D9D-85BE-AE52816B0294}) (Version: 30.100.1727.1 - Intel Corporation)
Intel(R) Trusted Connect Service Client x86 (HKLM-x32\...\{C9552825-7BF2-4344-BA91-D3CD46F4C441}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel(R) Trusted Connect Services Client (HKLM-x32\...\{66129f84-d3f0-4884-ac54-369ae6fc2cf6}) (Version: 1.48.197.0 - Intel Corporation) Hidden
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{55d73ea7-6354-42db-8831-02d048ae57f8}) (Version: 10.1.17541.8066 - Intel(R) Corporation) Hidden
Java 8 Update 241 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F64180241F0}) (Version: 8.0.2410.7 - Oracle Corporation)
Java 8 Update 241 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180241F0}) (Version: 8.0.2410.7 - Oracle Corporation)
Launcher Prerequisites (x64) (HKLM-x32\...\{c6c5a357-c7ca-4a5f-9789-3bb1af579253}) (Version: 1.0.0.0 - Epic Games, Inc.) Hidden
Malwarebytes version 4.0.4.49 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.0.4.49 - Malwarebytes)
Microsoft OneDrive (HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\OneDriveSetup.exe) (Version: 19.222.1110.0006 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.10.25008 (HKLM-x32\...\{f1e7e313-06df-4c56-96a9-99fdfd149c51}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x86) - 14.10.25008 (HKLM-x32\...\{c239cea1-d49e-4e16-8e87-8c055765f7ec}) (Version: 14.10.25008.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{2D1ED4EA-B59D-4665-ACB3-9325872A300D}) (Version: 1.0.4.0 - Mojang)
Mozilla Firefox 66.0.3 (x86 en-US) (HKLM-x32\...\Mozilla Firefox 66.0.3 (x86 en-US)) (Version: 66.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 58.0.2 - Mozilla)
Notepad++ (32-bit x86) (HKLM-x32\...\Notepad++) (Version: 7.6.6 - Notepad++ Team)
NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Online Games Manager v1.50 (HKLM-x32\...\Online Games Manager) (Version: 1.50.4 - Real Networks, Inc.)
Origin (HKLM-x32\...\Origin) (Version: 10.5.55.33574 - Electronic Arts, Inc.)
osu! (HKLM-x32\...\{a758892c-51c6-4403-b401-b08685c45d30}) (Version: latest - ppy Pty Ltd)
PredatorSense Service (HKLM-x32\...\{4363B9A5-03C2-48DD-A76A-A84685C2DC3F}) (Version: 3.01.3002 - Acer Incorporated)
Quick Access Service (HKLM\...\{AB25551C-74EF-4BAB-9989-891517FCF9FF}) (Version: 3.00.3009 - Acer Incorporated)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.16299.21304 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 10.31.828.2018 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8555 - Realtek Semiconductor Corp.)
Roblox Player for denis (HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\roblox-player) (Version: - Roblox Corporation)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.2.4.1 - Rockstar Games)
Skype Version 8.41 (HKLM-x32\...\Skype_is1) (Version: 8.41 - Skype Technologies S.A.)
Spotify (HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\Spotify) (Version: 1.1.22.633.g1bab253a - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
TruckersMP Launcher 1.0.0.4 (HKLM\...\{A227B892-C548-4490-9C5D-DB341F8194A6}_is1) (Version: 1.0.0.4 - TruckersMP Team)
Twitch (HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF37295}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Twitch Sings (HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\{DEE70742-F4E9-44CA-B2B9-EE95DCF372C0}) (Version: 8.0.0 - Twitch Interactive, Inc.)
Update for Windows 10 for x64-based Systems (KB4023057) (HKLM\...\{32DC821E-4A7D-4878-BEE8-337FA153D7F2}) (Version: 2.63.0.0 - Microsoft Corporation) Hidden
Uplay (HKLM-x32\...\Uplay) (Version: 94.0 - Ubisoft)
User Experience Improvement Program Service (HKLM\...\{E9495FD3-F73D-4D33-A104-047F9E8BE6C7}) (Version: 4.00.3004 - Acer Incorporated)
Viscera Cleanup Detail: alpha v0.25
(HKLM\...\UDK-8834fe08-c845-493d-960c-bae069a794d0) (Version: - RuneStorm
)
Vulkan Run Time Libraries 1.0.61.0 (HKLM\...\VulkanRT1.0.61.0) (Version: 1.0.61.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
Vulkan Run Time Libraries 1.1.70.0 (HKLM\...\VulkanRT1.1.70.0-2) (Version: 1.1.70.0 - LunarG, Inc.) Hidden
WinRAR 5.61 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)
XSplit Gamecaster (HKLM-x32\...\{1B52322C-EEDB-42CE-BF10-DC577E89DDB6}) (Version: 3.1.1708.2943 - SplitmediaLabs)
Packages:
=========
Acer Collection S -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCollectionS_1.0.3004.0_x64__48frkmn4z8aw4 [2019-01-22] (Acer Incorporated)
Acer Product Registration -> C:\Program Files\WindowsApps\AcerIncorporated.AcerRegistration_2.0.3013.0_x64__48frkmn4z8aw4 [2019-12-15] (Acer Incorporated)
Care Center -> C:\Program Files\WindowsApps\AcerIncorporated.AcerCareCenter_3.0.3008.0_x64__48frkmn4z8aw4 [2018-12-14] (Acer Incorporated)
LinkedIn -> C:\Program Files\WindowsApps\7EE7776C.LinkedInforWindows_2.1.7098.0_neutral__w1wdnht996qgy [2019-01-22] (LinkedIn)
Microsoft Access -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Access_16051.12325.20288.0_x86__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2019-01-22] (Microsoft Corporation) [MS Ad]
Microsoft Excel -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Excel_16051.12325.20288.0_x86__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation)
Microsoft News – Nachrichten -> C:\Program Files\WindowsApps\Microsoft.BingNews_4.34.20074.0_x64__8wekyb3d8bbwe [2020-01-17] (Microsoft Corporation) [MS Ad]
Microsoft Office Desktop Apps -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop_16051.12325.20288.0_x86__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation)
Microsoft Outlook -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.12325.20288.0_x86__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation)
Microsoft PowerPoint -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.PowerPoint_16051.12325.20288.0_x86__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation)
Microsoft Publisher -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Publisher_16051.12325.20288.0_x86__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation)
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.5.12061.0_x64__8wekyb3d8bbwe [2019-12-15] (Microsoft Studios) [MS Ad]
Microsoft Word -> C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Word_16051.12325.20288.0_x86__8wekyb3d8bbwe [2020-01-12] (Microsoft Corporation)
Microsoft-Remotedesktop -> C:\Program Files\WindowsApps\Microsoft.RemoteDesktop_10.1.1107.0_x86__8wekyb3d8bbwe [2019-09-04] (Microsoft Corporation)
MSN Wetter -> C:\Program Files\WindowsApps\Microsoft.BingWeather_4.34.13393.0_x64__8wekyb3d8bbwe [2019-12-19] (Microsoft Corporation) [MS Ad]
Netflix -> C:\Program Files\WindowsApps\4DF9E0F8.Netflix_6.95.602.0_x64__mcm4njqhnhss8 [2019-10-24] (Netflix, Inc.)
PhotoDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PhotoDirectorforacerDesktop_8.0.5229.0_x64__ypz87dpxkv292 [2019-06-14] (CYBERLINK COM CORP)
Phototastic Collage -> C:\Program Files\WindowsApps\ThumbmunkeysLtd.PhototasticCollage_2.2.16.0_x64__nfy108tqq3p12 [2019-09-26] (Thumbmunkeys Ltd) [MS Ad]
PowerDirector for acer -> C:\Program Files\WindowsApps\CyberLinkCorp.ac.PowerDirectorforacerDesktop_14.0.4304.0_x64__ypz87dpxkv292 [2018-12-14] (CYBERLINK COM CORP)
PredatorSense_V31 -> C:\Program Files\WindowsApps\AcerIncorporated.PredatorSenseV31_3.1.3002.0_x64__48frkmn4z8aw4 [2018-12-14] (Acer Incorporated)
QuickAccess -> C:\Program Files\WindowsApps\AcerIncorporated.QuickAccess_3.0.3009.0_x64__48frkmn4z8aw4 [2019-12-12] (Acer Incorporated)
Speedtest by Ookla -> C:\Program Files\WindowsApps\Ookla.SpeedtestbyOokla_1.9.53.0_x64__43tkc6nmykmb6 [2020-01-02] (Ookla)
Übersetzer -> C:\Program Files\WindowsApps\Microsoft.BingTranslator_5.6.0.0_x64__8wekyb3d8bbwe [2019-08-01] (Microsoft Corporation)
User Experience Improvement Program -> C:\Program Files\WindowsApps\AcerIncorporated.UserExperienceImprovementProgram_4.0.3004.0_x64__48frkmn4z8aw4 [2018-12-14] (Acer Incorporated)
Xbox Zubehör -> C:\Program Files\WindowsApps\Microsoft.XboxDevices_300.1911.1001.0_x64__8wekyb3d8bbwe [2019-11-23] (Microsoft Corporation)
XING -> C:\Program Files\WindowsApps\XINGAG.XING_3.145.2.0_x86__xpfg3f7e9an52 [2019-12-19] (New Work SE)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
ContextMenuHandlers1: [ANotepad++64] -> {B298D29A-A6ED-11DE-BA8C-A68E55D89593} => D:\Program Files (x86)\Notepad++\NppShell_06.dll [2019-01-27] (Notepad++ -> )
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-01-21] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\WINDOWS\System32\DriverStore\FileRepository\igdlh64.inf_amd64_6bb02522ea3fdb0d\igfxDTCM.dll [2018-05-22] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-12-19] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-01-21] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\WinRAR\rarext.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => D:\Program Files (x86)\WinRAR\rarext32.dll [2018-09-30] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [vidc.VP60] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2015-04-14] (Electronic Arts -> On2.com)
HKLM\...\Drivers32: [vidc.VP61] => C:\WINDOWS\SysWOW64\vp6vfw.dll [447752 2015-04-14] (Electronic Arts -> On2.com)
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer Vertrauenswürdig/Eingeschränkt ==========
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2018-04-12 00:38 - 2018-04-12 00:36 - 000000824 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\iCLS\;C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\denis\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\moonshiners__by_dergrenadier-d98hfud.png
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\StartupApproved\StartupFolder: => "Twitch.lnk"
HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\StartupApproved\Run: => "Spotify"
HKU\S-1-5-21-1835216842-1797002512-2963936704-1001\...\StartupApproved\Run: => "Steam"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [TCP Query User{9C3EE6D5-BDF5-45F6-9BA1-139984302F4B}D:\steam\steam.exe] => (Allow) D:\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [UDP Query User{E67D9CED-9E5B-42ED-91C1-57D7B1CC4BEB}D:\steam\steam.exe] => (Allow) D:\steam\steam.exe (Valve -> Valve Corporation)
FirewallRules: [{7779A165-EFBD-480C-9AAA-6843B1DDD3A7}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [{5F25DEAA-AA80-4B8E-B677-ED58BAA3B155}] => (Allow) D:\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve -> Valve Corporation)
FirewallRules: [TCP Query User{6513A487-27BC-4A71-942B-CE287CC9AB99}D:\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\bin\javaw.exe
FirewallRules: [UDP Query User{055251F3-6D0B-4FC1-8B5B-7FC0435E5F52}D:\minecraft\runtime\jre-x64\bin\javaw.exe] => (Allow) D:\minecraft\runtime\jre-x64\bin\javaw.exe
FirewallRules: [TCP Query User{7EB6EA54-3FF4-4CD6-AB69-875667DECC1E}C:\users\denis\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\denis\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [UDP Query User{71F47E8B-7825-4899-8356-2577943F0786}C:\users\denis\appdata\roaming\spotify\spotify.exe] => (Allow) C:\users\denis\appdata\roaming\spotify\spotify.exe (Spotify AB -> Spotify Ltd)
FirewallRules: [{4ED0713C-F22F-4E78-B2C0-75795F908640}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{CE248A52-BF10-41CF-8C51-FE465E2E0D65}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win32\UDK.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{3806EF4A-394C-442A-A060-A1C7298AE25E}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{7A590510-9F50-41B5-8C54-B52433226687}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\Win64\UDK.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{04F41D33-DD8E-4D95-9847-6EC10BD7C8B9}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{4CDF48E0-D556-4319-BC89-75838DD5ADE8}] => (Allow) D:\Steam\steamapps\common\Viscera\Binaries\UDKLift.exe (Epic Games Inc. -> Epic Games, Inc.)
FirewallRules: [{F87BE4C0-3419-42AE-91AB-B9CA715D6509}] => (Allow) D:\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [Datei ist nicht signiert]
FirewallRules: [{FCB18F85-14A6-4CB4-9A23-FB1EA6103AF0}] => (Allow) D:\Steam\steamapps\common\CookingSimulator\CookingSim.exe () [Datei ist nicht signiert]
FirewallRules: [{EB223E4C-5597-4816-8200-44E9A6DE6058}] => (Allow) D:\Steam\steamapps\common\Coloring Pixels\ColoringPixels.exe () [Datei ist nicht signiert]
FirewallRules: [{26F0A532-AEE4-4196-8F54-8957C0555D4B}] => (Allow) D:\Steam\steamapps\common\Coloring Pixels\ColoringPixels.exe () [Datei ist nicht signiert]
FirewallRules: [{7482D6F9-89BD-4C7F-9628-6187180563A0}] => (Allow) D:\Steam\steamapps\common\The Painscreek Killings\Painscreek.exe () [Datei ist nicht signiert]
FirewallRules: [{DDCE6FE1-31ED-4358-9CE9-AF7852A43ECD}] => (Allow) D:\Steam\steamapps\common\The Painscreek Killings\Painscreek.exe () [Datei ist nicht signiert]
FirewallRules: [{F6B8B848-0249-4615-8878-521DB85EE167}] => (Allow) D:\Steam\steamapps\common\Thief Simulator\thief.exe () [Datei ist nicht signiert]
FirewallRules: [{078B9740-6707-49FD-A2C8-41FE52547CF5}] => (Allow) D:\Steam\steamapps\common\Thief Simulator\thief.exe () [Datei ist nicht signiert]
FirewallRules: [{D7238BFB-03EF-4E23-B746-D95C2B2BAC5D}] => (Allow) D:\Steam\steamapps\common\PC Building Simulator\PCBS.exe () [Datei ist nicht signiert]
FirewallRules: [{A5135780-C481-4D4C-86B8-59183C24FB95}] => (Allow) D:\Steam\steamapps\common\PC Building Simulator\PCBS.exe () [Datei ist nicht signiert]
FirewallRules: [{8C0FCE52-D143-4A23-97C2-C0E86157C99F}] => (Allow) D:\Steam\steamapps\common\House Flipper\HouseFlipper.exe () [Datei ist nicht signiert]
FirewallRules: [{8A2AF0DA-AB87-4DA6-88AD-ADCDC45B1769}] => (Allow) D:\Steam\steamapps\common\House Flipper\HouseFlipper.exe () [Datei ist nicht signiert]
FirewallRules: [{77825471-8F92-4665-BACC-61444849FF24}] => (Allow) D:\Steam\steamapps\common\Obduction\Obduction.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{42B447B6-3CBD-4E70-BDF4-CF751E68F065}] => (Allow) D:\Steam\steamapps\common\Obduction\Obduction.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{B6C6502B-5B3F-4E0B-874C-206F746D8B03}D:\steam\steamapps\common\treasure hunter\th\binaries\win64\th-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\treasure hunter\th\binaries\win64\th-win64-shipping.exe (Drago Entertainment sp z o.o., PlayWay SA) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{B72590F6-9AD8-477E-9C5D-1B235DDC045E}D:\steam\steamapps\common\treasure hunter\th\binaries\win64\th-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\treasure hunter\th\binaries\win64\th-win64-shipping.exe (Drago Entertainment sp z o.o., PlayWay SA) [Datei ist nicht signiert]
FirewallRules: [{363B85C9-AC6A-4ED8-A343-351768C94017}] => (Allow) D:\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [Datei ist nicht signiert]
FirewallRules: [{D4C3D962-E5C9-459A-90EF-6EA453B10E93}] => (Allow) D:\Steam\steamapps\common\Planet Coaster\PlanetCoaster.exe (Frontier Developments) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{28B17E3F-1013-4CA6-A7CA-98B5F66D591C}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe Keine Datei
FirewallRules: [UDP Query User{42EFF9E4-6072-4A4B-B2EA-CDB897202E3E}C:\program files\java\jre1.8.0_231\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_231\bin\javaw.exe Keine Datei
FirewallRules: [{7605F677-052C-48B8-85F8-3B1F3F0EAF13}] => (Allow) D:\Steam\steamapps\common\Staxel\bin\Staxel.ServerWizard.exe () [Datei ist nicht signiert]
FirewallRules: [{2729ADDF-E3C6-49B4-8AB1-5D5F6C4A6A4E}] => (Allow) D:\Steam\steamapps\common\Staxel\bin\Staxel.ServerWizard.exe () [Datei ist nicht signiert]
FirewallRules: [{0DF7CB51-932A-4ABB-8E13-F89029989CBB}] => (Allow) D:\Steam\steamapps\common\Staxel\bin\Staxel.ModManager.exe () [Datei ist nicht signiert]
FirewallRules: [{CF8B7B16-7914-4647-8DEB-EA5798EE8E7C}] => (Allow) D:\Steam\steamapps\common\Staxel\bin\Staxel.ModManager.exe () [Datei ist nicht signiert]
FirewallRules: [{DB11A953-B482-4662-8248-894D1D410229}] => (Allow) D:\Steam\steamapps\common\Staxel\bin\Staxel.SteamLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{E26CB827-AC46-4E0A-9884-6AA4A513E5A3}] => (Allow) D:\Steam\steamapps\common\Staxel\bin\Staxel.SteamLauncher.exe () [Datei ist nicht signiert]
FirewallRules: [{E5C00BE8-B590-43B4-ADC9-CE8BAB8D12FF}] => (Allow) D:\Steam\steamapps\common\Monopoly Plus\Monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [{43D779E4-2E17-4F9F-9C60-65945303DC31}] => (Allow) D:\Steam\steamapps\common\Monopoly Plus\Monopoly.exe (Ubisoft Entertainment -> Asobo Studio)
FirewallRules: [{B792B346-F94D-47E7-8558-E115604966C2}] => (Allow) D:\Steam\steamapps\common\Life is Strange 2\LIS2\Binaries\Win64\LIS2-Win64-Shipping.exe (Square Enix) [Datei ist nicht signiert]
FirewallRules: [{DC9266FC-2364-4783-AF3C-C690A8EBA4D7}] => (Allow) D:\Steam\steamapps\common\Life is Strange 2\LIS2\Binaries\Win64\LIS2-Win64-Shipping.exe (Square Enix) [Datei ist nicht signiert]
FirewallRules: [{1ACF20F1-9D8D-47C3-969E-463DC5660F31}] => (Allow) D:\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe () [Datei ist nicht signiert]
FirewallRules: [{D75FA050-8FDD-4F5C-8F65-71AD63C6DD2F}] => (Allow) D:\Steam\steamapps\common\Slime Rancher\SlimeRancher.exe () [Datei ist nicht signiert]
FirewallRules: [{7FFB7DC7-7D81-4CE8-8B52-81C436B83642}] => (Allow) D:\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe () [Datei ist nicht signiert]
FirewallRules: [{581D2782-AF5C-40A6-80B0-D186B31F86EB}] => (Allow) D:\Steam\steamapps\common\PlagueInc\PlagueIncEvolved.exe () [Datei ist nicht signiert]
FirewallRules: [{1383B325-A022-46AC-8A4E-0D83C0405865}] => (Allow) D:\Steam\steamapps\common\Portal 2\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [{DE891C3A-8307-4541-8477-2F8E18417977}] => (Allow) D:\Steam\steamapps\common\Portal 2\portal2.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{3E309C32-B565-41CB-AEEE-592CE0F299E3}C:\users\denis\downloads\anydesk.exe] => (Allow) C:\users\denis\downloads\anydesk.exe (philandro Software GmbH -> )
FirewallRules: [UDP Query User{A418D42E-75F2-4101-8BFA-E9D66D15D115}C:\users\denis\downloads\anydesk.exe] => (Allow) C:\users\denis\downloads\anydesk.exe (philandro Software GmbH -> )
FirewallRules: [{0CAC01A5-E86E-44DD-929E-9E7A50695069}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{EDE18952-7493-4CA6-BEAD-262AEF65A670}] => (Allow) D:\Steam\steamapps\common\Grand Theft Auto V\PlayGTAV.exe (Rockstar Games, Inc. -> Rockstar Games)
FirewallRules: [{0287CE24-FCC5-42FD-A22D-44A350DF986C}] => (Allow) D:\Steam\steamapps\common\Tower Unite\Tower.exe () [Datei ist nicht signiert]
FirewallRules: [{4A225124-C1AF-4E05-B1C0-4171BD644A39}] => (Allow) D:\Steam\steamapps\common\Tower Unite\Tower.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{CAD6E520-E960-4E4D-8201-8490FA4EA84F}D:\steam\steamapps\common\tower unite\tower\binaries\win64\tower-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\tower unite\tower\binaries\win64\tower-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{0EC59755-F55A-4586-AFD0-0578CF6B00DF}D:\steam\steamapps\common\tower unite\tower\binaries\win64\tower-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\tower unite\tower\binaries\win64\tower-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{8C9263CB-1F0B-4109-8D11-7F341B6FF726}] => (Allow) D:\DaVinci\Resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [{2B154002-20F1-4849-A1C4-42FCF82AEA9D}] => (Allow) D:\DaVinci\bmdpaneld.exe () [Datei ist nicht signiert]
FirewallRules: [{D32EE66D-0890-406D-B939-C413C28F7B08}] => (Allow) D:\DaVinci\DaVinciPanelDaemon.exe () [Datei ist nicht signiert]
FirewallRules: [{648732E2-8551-409B-9260-8AA610485CDE}] => (Allow) D:\DaVinci\JLCooperPanelDaemon.exe () [Datei ist nicht signiert]
FirewallRules: [{25ABDF01-6DEC-4FCA-98CC-AF396E9B59C5}] => (Allow) D:\DaVinci\EuphonixPanelDaemon.exe () [Datei ist nicht signiert]
FirewallRules: [{DD92D756-206A-4037-9692-48B9ABE7FE7E}] => (Allow) D:\DaVinci\TangentPanelDaemon.exe () [Datei ist nicht signiert]
FirewallRules: [{9393F752-136C-4525-8B5A-601C76CB82BB}] => (Allow) D:\DaVinci\ElementsPanelDaemon.exe Keine Datei
FirewallRules: [{67AB20F0-1FED-4355-A487-00240F938004}] => (Allow) D:\DaVinci\OxygenPanelDaemon.exe Keine Datei
FirewallRules: [{BA1561C6-027E-42D1-9344-C59D8BA6D2A7}] => (Allow) D:\DaVinci\DPDecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [{F23EE147-E8A3-43A3-92B1-92461E2D6E34}] => (Allow) C:\ProgramData\Blackmagic Design\DaVinci Resolve\Support\QtDecoder\QTDecoder.exe Keine Datei
FirewallRules: [{81BE272B-A69F-414C-A590-083F98C5050D}] => (Allow) D:\Steam\steamapps\common\TPH\TPH.exe () [Datei ist nicht signiert]
FirewallRules: [{5BC0F5BA-6B28-4058-A1B9-9C45E9E1E6BF}] => (Allow) D:\Steam\steamapps\common\TPH\TPH.exe () [Datei ist nicht signiert]
FirewallRules: [TCP Query User{5D191A15-2F72-4AAD-91EA-3AD51F831EFA}D:\davinci\dpdecoder.exe] => (Allow) D:\davinci\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [UDP Query User{B719FFA9-A4E5-4E68-A8D9-F146BAC88639}D:\davinci\dpdecoder.exe] => (Allow) D:\davinci\dpdecoder.exe (Blackmagic Design Pty Ltd -> )
FirewallRules: [TCP Query User{29BD1089-A78A-45D7-9A40-5983A0BE5CC2}D:\davinci\resolve.exe] => (Allow) D:\davinci\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [UDP Query User{86998E38-DD8C-4D7A-B31F-6277898FF71A}D:\davinci\resolve.exe] => (Allow) D:\davinci\resolve.exe (Blackmagic Design Pty Ltd -> Blackmagic Design Pty. Ltd.)
FirewallRules: [TCP Query User{9856CBC1-FCA3-4178-B0B9-520B199B60F2}D:\davinci\fuscript.exe] => (Allow) D:\davinci\fuscript.exe (Blackmagic Design Pty. Ltd.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{8532DA0A-298E-435C-9ADF-CD4DFDD73124}D:\davinci\fuscript.exe] => (Allow) D:\davinci\fuscript.exe (Blackmagic Design Pty. Ltd.) [Datei ist nicht signiert]
FirewallRules: [{9EDB6A4A-F338-4874-926C-E6CC11362CA5}] => (Allow) D:\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Datei ist nicht signiert]
FirewallRules: [{C9B3630A-3BE9-427E-9CC7-E24684345DF1}] => (Allow) D:\Steam\steamapps\common\Tabletop Simulator\Tabletop Simulator.exe () [Datei ist nicht signiert]
FirewallRules: [{EE77717C-48D0-423D-8ABF-3F80C0684409}] => (Allow) D:\Steam\steamapps\common\F13Game\EAC_Launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{F5BE7307-8B29-4902-B9A4-436F1322491B}] => (Allow) D:\Steam\steamapps\common\F13Game\EAC_Launcher.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [TCP Query User{9F178B8D-6E4A-4B2B-AA05-3496B0920CCE}D:\steam\steamapps\common\demolish & build 2018\demolish.exe] => (Allow) D:\steam\steamapps\common\demolish & build 2018\demolish.exe () [Datei ist nicht signiert]
FirewallRules: [UDP Query User{9B9C71D3-AEA1-400E-8EC1-92F584F1CA86}D:\steam\steamapps\common\demolish & build 2018\demolish.exe] => (Allow) D:\steam\steamapps\common\demolish & build 2018\demolish.exe () [Datei ist nicht signiert]
FirewallRules: [{79BDE330-AAF8-46BF-9581-8CC3AA6BA668}] => (Allow) D:\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{B4BA4367-22D0-4E2B-AF64-8D4C87B5B16D}] => (Allow) D:\Steam\steamapps\common\Dead by Daylight\DeadByDaylight.exe (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
FirewallRules: [{867F7263-253B-4421-AEAB-110F2A04AAE2}] => (Allow) D:\Steam\steamapps\common\HALF DEAD 2\hd2.exe () [Datei ist nicht signiert]
FirewallRules: [{059506C7-311E-4A11-902C-FAA693E5D18F}] => (Allow) D:\Steam\steamapps\common\HALF DEAD 2\hd2.exe () [Datei ist nicht signiert]
FirewallRules: [{3066031E-E866-4A13-84A0-5C58E780E061}] => (Allow) D:\Steam\steamapps\common\Just Dance 2017\JD2017.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{E6A8DA54-76D9-4976-9BEF-316F94C473C0}] => (Allow) D:\Steam\steamapps\common\Just Dance 2017\JD2017.exe (Ubisoft Entertainment SA -> )
FirewallRules: [{AFDACB70-8AA2-4350-B987-A76881123944}] => (Allow) D:\Steam\steamapps\common\Golf It!\GolfIt.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{07F8E467-37EE-4B84-B3EB-F084A0295BB5}] => (Allow) D:\Steam\steamapps\common\Golf It!\GolfIt.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [TCP Query User{93B820AB-8E3B-42F9-8157-91B4FFDB41ED}D:\steam\steamapps\common\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{BE41E9E5-AD5C-40A7-974F-129BE5AF483B}D:\steam\steamapps\common\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\golf it!\golfit\binaries\win64\golfit-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{539B3751-E057-42C8-80F6-CF2ABEEE12DE}] => (Allow) D:\Steam\steamapps\common\PickCrafter\PickCrafter\PickCrafter.exe () [Datei ist nicht signiert]
FirewallRules: [{DFD097D2-0B96-4CD5-9A48-84F7D15C5104}] => (Allow) D:\Steam\steamapps\common\PickCrafter\PickCrafter\PickCrafter.exe () [Datei ist nicht signiert]
FirewallRules: [{F4F0CE67-4BEF-424C-A815-4DE94380753E}] => (Allow) D:\Steam\steamapps\common\Digimon Masters Online - Steam\DMLauncher.exe (Movegames Co.,Ltd. -> ⓒMove Games Co., Ltd. All Rights Reserved.)
FirewallRules: [{421EEF66-6F21-48EC-AB93-3BDBAF0D379C}] => (Allow) D:\Steam\steamapps\common\Digimon Masters Online - Steam\DMLauncher.exe (Movegames Co.,Ltd. -> ⓒMove Games Co., Ltd. All Rights Reserved.)
FirewallRules: [{0639DD54-6609-4035-A52D-A941ADF778A0}] => (Allow) D:\Steam\steamapps\common\TheRoomThree\TheRoomThree.exe () [Datei ist nicht signiert]
FirewallRules: [{C28ED17E-FD1A-42BC-B2B7-9ECFEADDD327}] => (Allow) D:\Steam\steamapps\common\TheRoomThree\TheRoomThree.exe () [Datei ist nicht signiert]
FirewallRules: [{F126B931-D066-48B0-9B66-B19CC95FD541}] => (Allow) C:\Program Files\WindowsApps\Microsoft.Office.Desktop.Outlook_16051.12325.20288.0_x86__8wekyb3d8bbwe\Office16\OUTLOOK.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{D55E846A-A05D-4991-B55F-480E498EF6FB}D:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{B26451A5-F463-42E1-A997-F8E4961A363A}D:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe] => (Allow) D:\steam\steamapps\common\dead by daylight\deadbydaylight\binaries\win64\deadbydaylight-win64-shipping.exe (Epic Games, Inc.) [Datei ist nicht signiert]
FirewallRules: [{210B99BD-0BC9-4BC1-943C-A08E8E2A48AF}] => (Allow) D:\Steam\steamapps\common\Car Mechanic Simulator 2018\cms2018.exe () [Datei ist nicht signiert]
FirewallRules: [{76F5DF73-5022-4996-B00D-0EEAABB18C74}] => (Allow) D:\Steam\steamapps\common\Car Mechanic Simulator 2018\cms2018.exe () [Datei ist nicht signiert]
FirewallRules: [{EC4C1671-6D95-4A1D-BF47-31B665958E1E}] => (Allow) D:\Steam\steamapps\common\Beholder\Beholder.exe () [Datei ist nicht signiert]
FirewallRules: [{D0F1BDA2-7AD5-4929-B074-322B6788538D}] => (Allow) D:\Steam\steamapps\common\Beholder\Beholder.exe () [Datei ist nicht signiert]
FirewallRules: [{C4CD5E11-D3DB-462C-B45B-561781CE4F99}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{08A4CAF0-DBDC-4BB9-BAF0-213772EA7330}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{B75C296E-C10E-43C0-AD51-3C917133B2DB}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x64\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{D6884640-8150-41CF-BD61-7EF04DAC836D}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{E2229518-50E1-4C84-AF3E-3232BFF4BC38}] => (Allow) D:\Steam\steamapps\common\Euro Truck Simulator 2\bin\win_x86\eurotrucks2.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{9F2FEA1F-178A-4A72-9D20-88CCF707931C}] => (Allow) D:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
FirewallRules: [{FB88D5D3-DE8F-4896-879E-9531AB26CC7E}] => (Allow) D:\Steam\steamapps\common\American Truck Simulator\bin\win_x64\amtrucks.exe (SCS Software s.r.o. -> SCS Software)
==================== Wiederherstellungspunkte =========================
ACHTUNG: Systemwiederherstellung ist deaktiviert (Total:118.12 GB) (Free:47.35 GB) (40%)
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (01/21/2020 10:31:34 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4784,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (01/21/2020 10:20:46 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (4836,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (01/21/2020 10:03:36 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (6680,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (01/21/2020 09:44:22 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (5352,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (01/21/2020 09:08:23 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (15316,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (01/21/2020 09:03:13 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10552,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (01/21/2020 08:53:12 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10992,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Error: (01/21/2020 06:50:42 PM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (10780,R,98) TILEREPOSITORYS-1-5-18: Fehler -1023 (0xfffffc01) beim Öffnen von Protokolldatei C:\WINDOWS\system32\config\systemprofile\AppData\Local\TileDataLayer\Database\EDB.log.
Systemfehler:
=============
Error: (01/21/2020 09:45:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (01/21/2020 09:45:46 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\denis\AppData\Local\Temp\ehdrv.sys
Error: (01/21/2020 09:45:46 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\denis\AppData\Local\Temp\ehdrv.sys
Error: (01/21/2020 09:45:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (01/21/2020 09:45:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (01/21/2020 09:45:46 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\denis\AppData\Local\Temp\ehdrv.sys
Error: (01/21/2020 09:45:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "eapihdrv" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Treiber konnte nicht geladen werden.
Error: (01/21/2020 09:45:46 PM) (Source: Application Popup) (EventID: 1060) (User: )
Description: \??\C:\Users\denis\AppData\Local\Temp\ehdrv.sys
Windows Defender:
===================================
Date: 2020-01-21 22:16:10.202
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {6E4B8C8A-1BBC-41B4-90C9-EB0BBA2BAB1F}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2020-01-21 21:58:41.784
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {317FCE2C-049D-45ED-BACC-89CBE322FC88}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2020-01-21 21:58:13.972
Description:
Windows Defender Antivirus hat Schadsoftware oder andere potenziell unerwünschte Software erkannt.
Weitere Informationen:
https://go.microsoft.com/fwlink/?linkid=37020&name=Trojan:JS/CoinHive.A&threatid=2147729066&enterprise=0
Name: Trojan:JS/CoinHive.A
ID: 2147729066
Schweregrad: Schwerwiegend
Kategorie: Trojaner
Pfad: file:_C:\Users\denis\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js\90b781e8c900dcbd_0
Erkennungsursprung: Lokaler Computer
Erkennungstype: Konkret
Erkennungsquelle: Echtzeitschutz
Benutzer: DESKTOP-J6JJDTH\denis
Prozessname: C:\Users\denis\Downloads\ESETOnlineScanner_DEU.exe
Sicherheitsversion: AV: 1.307.2774.0, AS: 1.307.2774.0, NIS: 1.307.2774.0
Modulversion: AM: 1.1.16600.7, NIS: 1.1.16600.7
Date: 2020-01-09 15:05:40.779
Description:
Die Windows Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {AC35EF94-DC0A-40F1-A50C-5EC70B0CA256}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
==================== Speicherinformationen ===========================
BIOS: Insyde Corp. V1.22 10/31/2018
Hauptplatine: CFL Sienna_CFS
Prozessor: Intel(R) Core(TM) i5-8300H CPU @ 2.30GHz
Prozentuale Nutzung des RAM: 68%
Installierter physikalischer RAM: 8034.3 MB
Verfügbarer physikalischer RAM: 2510.61 MB
Summe virtueller Speicher: 15458.3 MB
Verfügbarer virtueller Speicher: 8063.7 MB
==================== Laufwerke ================================
Drive c: (Acer) (Fixed) (Total:118.12 GB) (Free:47.35 GB) NTFS
Drive d: (Data) (Fixed) (Total:931.51 GB) (Free:511.66 GB) NTFS
\\?\Volume{01b78637-6510-4451-b544-519524a8de73}\ (Recovery) (Fixed) (Total:1 GB) (Free:0.51 GB) NTFS
\\?\Volume{155b6b65-3e05-4ffb-93c1-fea92c6ee8ed}\ (ESP) (Fixed) (Total:0.09 GB) (Free:0.04 GB) FAT32
==================== MBR & Partitionstabelle ====================
==================== Ende von Addition.txt ======================= |