| FrommArt | 17.10.2020 12:37 |
post #3 Code:
2020-10-11 06:51 - 2020-10-11 06:51 - 002178396 _____ C:\WINDOWS\Minidump\101120-8028093-01.dmp
2020-10-10 03:58 - 2020-10-10 03:58 - 001988908 _____ C:\WINDOWS\Minidump\101020-7990765-01.dmp
2020-10-09 15:23 - 2020-10-09 15:46 - 288759680 _____ C:\Users\Frank\Downloads\YouTube~1.mp4
2020-10-09 15:23 - 2020-10-09 15:46 - 127289330 _____ C:\Users\Frank\Downloads\YouTube.mkv
2020-10-09 15:10 - 2020-10-09 15:31 - 570739206 _____ C:\Users\Frank\Downloads\YouTube.mp4
2020-10-09 15:08 - 2020-10-09 15:08 - 000502005 _____ C:\Users\Frank\Downloads\watch(3).html
2020-10-09 15:08 - 2020-10-09 15:08 - 000462311 _____ C:\Users\Frank\Downloads\watch(2).html
2020-10-09 11:46 - 2020-10-09 12:07 - 570739206 _____ C:\Users\Frank\Downloads\2020 10 Joycce viele Figuren.mp4
2020-10-09 02:34 - 2020-10-09 02:34 - 001974716 _____ C:\WINDOWS\Minidump\100920-8048328-01.dmp
2020-10-08 14:57 - 2020-10-08 14:57 - 000001181 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung DeX.lnk
2020-10-08 14:57 - 2020-10-08 14:57 - 000001169 _____ C:\Users\Public\Desktop\Samsung DeX.lnk
2020-10-08 14:57 - 2020-10-08 14:57 - 000001169 _____ C:\ProgramData\Desktop\Samsung DeX.lnk
2020-10-08 14:56 - 2020-06-26 04:15 - 000166768 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudmdm.sys
2020-10-08 14:56 - 2020-06-26 04:15 - 000136048 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ssudbus.sys
2020-10-08 14:56 - 2020-06-26 04:15 - 000043376 _____ (Samsung Electronics Co., Ltd.) C:\WINDOWS\system32\Drivers\ss_conn_usb_driver2.sys
2020-10-08 14:39 - 2020-10-08 14:39 - 099961624 _____ (Samsung Electronics Co., Ltd.) C:\Users\Frank\Downloads\SamsungDeXSetupWin.exe
2020-10-08 14:35 - 2020-10-08 14:35 - 000000000 ____D C:\WINDOWS\system32\Samsung
2020-10-08 13:10 - 2020-10-08 13:10 - 001627588 _____ C:\WINDOWS\Minidump\100820-8386031-01.dmp
2020-10-08 09:56 - 2020-10-08 09:56 - 000597901 _____ C:\Users\Frank\Downloads\63a59e2d-bcc8-4b15-993b-7c2136feff47.tmp
2020-10-08 08:52 - 2020-10-08 08:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2020-10-08 07:26 - 2020-10-08 07:26 - 001980148 _____ C:\WINDOWS\Minidump\100820-8503968-01.dmp
2020-10-07 06:33 - 2020-10-07 06:33 - 000242342 _____ C:\Users\Frank\Downloads\hold back the river chords (17).pdf
2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2020-10-06 20:43 - 2020-10-06 20:43 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2020-10-06 20:43 - 2020-10-06 20:43 - 000044552 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2020-10-06 11:28 - 2020-10-06 11:28 - 000245167 _____ C:\Users\Frank\Downloads\hold back the river chords (16).pdf
2020-10-03 11:40 - 2020-10-03 11:40 - 000000000 ____D C:\Users\Frank\AppData\Roaming\Telekom
2020-10-03 10:01 - 2020-10-03 10:02 - 000000000 ____D C:\Users\Frank\Downloads\Deutsche Telekom Adressbuch(1)
2020-10-03 09:55 - 2020-10-03 09:58 - 000447779 _____ C:\Users\Frank\Downloads\Deutsche Telekom Adressbuch(1).zip
2020-10-03 09:50 - 2020-10-03 09:50 - 000002156 _____ C:\Users\Public\Desktop\Sync-Plus.lnk
2020-10-03 09:50 - 2020-10-03 09:50 - 000002156 _____ C:\ProgramData\Desktop\Sync-Plus.lnk
2020-10-03 09:50 - 2020-10-03 09:50 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Telekom
2020-10-03 09:50 - 2020-10-03 09:50 - 000000000 ____D C:\Program Files\Telekom
2020-10-03 09:40 - 2020-10-03 09:40 - 011445096 _____ (Deutsche Telekom AG) C:\Users\Frank\Downloads\sync-plus.exe
2020-10-02 11:51 - 2020-10-02 11:51 - 001388277 _____ C:\Users\Frank\Downloads\WhatsApp Unknown 2020-10-02 at 11.51.10.zip
2020-10-02 11:51 - 2020-10-02 11:51 - 000310887 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.02.jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000310258 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.02 (1).jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000309944 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.01.jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000234967 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.03 (1).jpeg
2020-10-02 11:51 - 2020-10-02 11:51 - 000221383 _____ C:\Users\Frank\Downloads\WhatsApp Image 2020-10-01 at 23.08.03.jpeg
2020-09-28 15:19 - 2020-09-28 15:19 - 011746382 _____ C:\Users\Frank\Downloads\OneDrive-2020-09-28.zip
2020-09-28 10:35 - 2020-09-28 10:35 - 000000000 ____D C:\Users\Frank\Downloads\PageExpand
2020-09-28 08:57 - 2020-09-28 08:57 - 001054174 _____ C:\Users\Frank\Downloads\mpdf.pdf
2020-09-27 18:39 - 2020-09-27 18:40 - 034167462 _____ C:\Users\Frank\Downloads\Ganes - Ci morvöia - Listen on Online Radio Box~1.mp4
2020-09-27 18:39 - 2020-09-27 18:40 - 005274607 _____ C:\Users\Frank\Downloads\Ganes - Ci morvöia - Listen on Online Radio Box.webm
2020-09-27 18:38 - 2020-09-27 18:39 - 005265039 _____ C:\Users\Frank\Downloads\Ganes - Ci morvöia - Listen on Online Radio Box.mp4
2020-09-27 18:37 - 2020-09-27 18:37 - 001058995 _____ C:\Users\Frank\Downloads\Ganes-Ci Morvoia - Videos, Songs, Discography, Lyrics.mp4
2020-09-27 09:45 - 2020-09-27 09:45 - 001924365 _____ C:\Users\Frank\Downloads\WhatsApp Video 2020-09-18 at 16.49.35.mp4
2020-09-22 03:38 - 2020-09-22 03:38 - 000245167 _____ C:\Users\Frank\Downloads\hold back the river chords (15).pdf
2020-09-22 03:12 - 2020-09-22 03:12 - 001886548 _____ C:\WINDOWS\Minidump\092220-4227000-01.dmp
2020-09-22 03:11 - 2020-10-16 23:44 - 1582225526 ____N C:\WINDOWS\MEMORY.DMP
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-10-17 13:18 - 2015-04-08 05:26 - 001474832 _____ C:\WINDOWS\system32\Drivers\sfi.dat
2020-10-17 13:16 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-10-17 13:04 - 2018-11-19 18:14 - 000000000 ____D C:\Users\Frank\AppData\Roaming\vlc
2020-10-17 12:50 - 2015-04-12 23:05 - 000000000 ____D C:\Users\Frank\AppData\Local\CrashDumps
2020-10-17 12:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-10-17 12:35 - 2017-04-06 08:47 - 000000000 ____D C:\Users\Frank\AppData\LocalLow\Mozilla
2020-10-17 12:35 - 2015-04-11 13:19 - 000000000 ____D C:\ProgramData\Temp
2020-10-17 12:35 - 2015-04-08 05:37 - 000000000 ____D C:\ProgramData\NVIDIA
2020-10-17 12:26 - 2015-09-13 09:10 - 000000000 ____D C:\Program Files (x86)\SpywareBlaster
2020-10-17 12:26 - 2009-07-14 05:20 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2020-10-17 12:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2020-10-17 12:25 - 2018-11-14 13:06 - 000001154 _____ C:\Users\Public\Desktop\SpywareBlaster.lnk
2020-10-17 12:25 - 2018-11-14 13:06 - 000001154 _____ C:\ProgramData\Desktop\SpywareBlaster.lnk
2020-10-17 12:25 - 2015-09-13 09:10 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpywareBlaster
2020-10-17 12:02 - 2020-09-10 23:51 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-10-17 12:02 - 2020-09-10 23:51 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-17 11:54 - 2020-09-10 23:48 - 001886944 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-10-17 11:54 - 2019-12-07 16:51 - 000785726 _____ C:\WINDOWS\system32\perfh007.dat
2020-10-17 11:54 - 2019-12-07 16:51 - 000167840 _____ C:\WINDOWS\system32\perfc007.dat
2020-10-17 11:54 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2020-10-17 11:50 - 2015-09-08 17:30 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2020-10-17 11:49 - 2020-09-10 23:51 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-10-17 11:49 - 2020-09-10 23:32 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-10-17 11:49 - 2015-05-15 07:57 - 000000000 _____ C:\WINDOWS\system32\Drivers\lvuvc.hs
2020-10-17 10:41 - 2020-02-02 17:34 - 000000000 ____D C:\Users\Frank\AppData\Local\Packages
2020-10-17 10:41 - 2015-04-07 20:27 - 000000000 ____D C:\ProgramData\Mozilla
2020-10-17 10:41 - 2015-04-07 20:27 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-10-17 09:58 - 2019-04-17 03:19 - 000000000 ____D C:\Users\Frank\AppData\LocalLow\t-online.de
2020-10-17 02:00 - 2015-04-09 14:33 - 000000000 ____D C:\Users\Frank\AppData\Local\Adobe
2020-10-16 23:46 - 2020-09-11 05:59 - 000000000 ____D C:\WINDOWS\Minidump
2020-10-16 23:44 - 2020-09-10 23:36 - 000000000 ____D C:\Users\Frank
2020-10-16 19:25 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2020-10-16 19:19 - 2015-09-08 08:13 - 000000000 ____D C:\ProgramData\HitmanPro.Alert
2020-10-16 19:16 - 2019-12-07 11:03 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-10-16 19:16 - 2015-09-18 18:57 - 000000880 _____ C:\WINDOWS\system32\.crusader
2020-10-16 19:08 - 2015-04-16 20:21 - 000000000 ____D C:\ProgramData\HitmanPro
2020-10-16 18:30 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2020-10-16 18:30 - 2015-04-16 20:06 - 000000000 ____D C:\ProgramData\Malwarebytes
2020-10-16 18:12 - 2020-02-02 18:31 - 000000000 ____D C:\Users\Frank\AppData\Local\PlaceholderTileLogoFolder
2020-10-16 17:27 - 2015-04-07 20:19 - 000000000 ____D C:\Users\Frank\AppData\Local\Downloaded Installations
2020-10-16 16:59 - 2016-06-05 09:25 - 000000000 ____D C:\Users\Frank\AppData\Local\Lenovo
2020-10-16 16:57 - 2015-04-16 19:49 - 000000000 ____D C:\AdwCleaner
2020-10-16 16:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-10-16 16:50 - 2017-02-18 23:18 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SRWare Iron (64-Bit)
2020-10-16 16:50 - 2017-02-18 23:17 - 000000000 ____D C:\Program Files\SRWare Iron (64-Bit)
2020-10-16 14:55 - 2020-07-15 13:37 - 000000374 _____ C:\Users\Frank\.vivaldi_reporting_data
2020-10-15 15:24 - 2015-04-20 19:32 - 000001456 _____ C:\Users\Frank\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2020-10-15 10:54 - 2017-03-09 08:37 - 000000000 ____D C:\Users\Frank\Desktop\Lebenslauf
2020-10-15 08:31 - 2017-04-06 11:48 - 000001165 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-10-14 23:23 - 2020-09-10 23:51 - 000003630 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2020-10-14 23:23 - 2020-09-10 23:51 - 000003506 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2020-10-14 09:53 - 2016-11-26 15:21 - 000000000 ____D C:\Users\Frank\Desktop\kontakte
2020-10-14 09:52 - 2020-05-25 12:36 - 000000000 ____D C:\Users\Frank\Desktop\ich
2020-10-14 02:37 - 2020-09-10 23:32 - 005461544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-14 00:22 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Sysprep
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\ShellExperiences
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\migwiz
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\appraiser
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2020-10-14 00:22 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2020-10-14 00:22 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\servicing
2020-10-13 22:49 - 2019-12-07 16:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2020-10-13 22:49 - 2019-12-07 16:54 - 000020908 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2020-10-13 22:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-10-13 22:39 - 2020-09-10 18:01 - 000000000 ___HD C:\$WinREAgent
2020-10-13 13:13 - 2018-08-19 17:34 - 000002222 _____ C:\Users\Frank\Desktop\Picture Control Utility 2.lnk
2020-10-13 13:13 - 2015-04-07 20:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nikon Message Center 2
2020-10-13 13:13 - 2015-04-07 20:19 - 000000000 ____D C:\Program Files\Nikon
2020-10-13 13:12 - 2018-08-19 17:36 - 000002162 _____ C:\Users\Public\Desktop\Capture NX-D.lnk
2020-10-13 13:12 - 2018-08-19 17:36 - 000002162 _____ C:\ProgramData\Desktop\Capture NX-D.lnk
2020-10-13 13:12 - 2018-08-19 17:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Capture NX-D
2020-10-13 13:12 - 2018-08-19 17:33 - 000002139 _____ C:\Users\Public\Desktop\ViewNX-i.lnk
2020-10-13 13:12 - 2018-08-19 17:33 - 000002139 _____ C:\ProgramData\Desktop\ViewNX-i.lnk
2020-10-13 13:12 - 2018-08-19 17:33 - 000002112 _____ C:\Users\Public\Desktop\Nikon Transfer 2.lnk
2020-10-13 13:12 - 2018-08-19 17:33 - 000002112 _____ C:\ProgramData\Desktop\Nikon Transfer 2.lnk
2020-10-13 13:12 - 2017-10-25 15:45 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ViewNX-i
2020-10-13 13:12 - 2015-04-07 20:19 - 000113784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ATL71.DLL
2020-10-13 13:12 - 2015-04-07 20:19 - 000000000 ____D C:\WINDOWS\Downloaded Installations
2020-10-13 13:12 - 2015-04-07 20:19 - 000000000 ____D C:\Program Files (x86)\Nikon
2020-10-13 12:14 - 2020-09-10 16:38 - 000000000 ____D C:\Users\Frank\AppData\Roaming\WhatsApp
2020-10-12 11:56 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-12 02:24 - 2017-12-20 16:46 - 000000000 ____D C:\Users\Frank\Desktop\Intel präsent
2020-10-10 21:39 - 2020-09-10 23:36 - 000002430 _____ C:\Users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-10-10 10:10 - 2020-04-03 12:50 - 000002425 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-10-10 10:10 - 2020-04-03 12:50 - 000002263 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2020-10-10 10:10 - 2020-04-03 12:50 - 000002263 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2020-10-09 08:41 - 2020-09-10 16:38 - 000000000 ____D C:\Users\Frank\AppData\Local\WhatsApp
2020-10-09 08:41 - 2020-04-17 19:23 - 000000000 ____D C:\Users\Frank\AppData\Local\SquirrelTemp
2020-10-08 19:07 - 2020-09-10 23:51 - 000003522 _____ C:\WINDOWS\system32\Tasks\AdobeGCInvoker-1.0
2020-10-08 14:57 - 2020-02-02 17:34 - 000000000 ____D C:\Users\Frank\AppData\Local\Publishers
2020-10-08 14:57 - 2018-06-07 14:22 - 000000000 ____D C:\Users\Frank\AppData\Roaming\Samsung
2020-10-08 14:57 - 2018-06-07 14:19 - 000000000 ____D C:\ProgramData\Samsung
2020-10-08 14:57 - 2018-06-07 14:19 - 000000000 ____D C:\Program Files (x86)\Samsung
2020-10-08 14:56 - 2015-04-10 23:24 - 000000000 ____D C:\ProgramData\Package Cache
2020-10-08 08:53 - 2017-07-06 10:00 - 000000000 ____D C:\Program Files (x86)\Dropbox
2020-10-06 21:44 - 2020-05-14 16:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2020-10-06 21:44 - 2014-03-18 10:04 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-10-06 10:05 - 2020-09-16 05:42 - 000008192 ___SH C:\DumpStack.log.tmp
2020-10-03 02:33 - 2019-12-07 11:18 - 000835472 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2020-10-03 02:33 - 2019-12-07 11:18 - 000179608 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2020-09-27 08:14 - 2020-09-10 23:51 - 000004562 _____ C:\WINDOWS\system32\Tasks\Adobe Acrobat Update Task
2020-09-27 08:13 - 2018-11-16 13:22 - 000002142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2020-09-20 09:01 - 2020-09-11 11:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2020-09-20 09:01 - 2016-04-24 09:47 - 000001215 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2015-12-19 14:40 - 2016-06-23 11:04 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-BMP-Format - Voreinstellungen
2020-01-13 15:40 - 2020-01-13 15:42 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-GIF-Format - Voreinstellungen
2017-05-24 12:49 - 2017-05-24 12:49 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-PNG-Format - Voreinstellungen
2020-05-31 13:38 - 2020-05-31 13:38 - 000000132 _____ () C:\Users\Frank\AppData\Roaming\Adobe CS6-Targa-Format - Voreinstellungen
2019-05-07 18:58 - 2019-05-07 19:04 - 000038475 _____ () C:\Users\Frank\AppData\Roaming\Durch Trennzeichen getrennte Werte.ADR
2017-10-25 15:45 - 2017-10-25 15:45 - 000000268 ___RH () C:\Users\Frank\AppData\Roaming\Folder Actions Handlers
2017-10-25 15:45 - 2017-10-25 15:45 - 000000268 ___RH () C:\Users\Frank\AppData\Roaming\Fonts
2017-03-06 14:17 - 2017-03-06 14:22 - 000038432 _____ () C:\Users\Frank\AppData\Roaming\Kommagetrennte Werte (Windows).ADR
2016-07-05 09:16 - 2016-07-05 09:16 - 000038443 _____ () C:\Users\Frank\AppData\Roaming\Microsoft Excel 97-2003.ADR
2015-06-22 07:04 - 2015-06-22 07:04 - 000000268 ___RH () C:\Users\Frank\AppData\Roaming\NetServices
2017-01-22 14:55 - 2017-01-26 15:36 - 000003938 _____ () C:\Users\Frank\AppData\Roaming\PS13_panel.log
2015-04-17 17:29 - 2015-04-17 17:29 - 000000064 _____ () C:\Users\Frank\AppData\Roaming\Sandra.ldb
2015-04-11 00:06 - 2015-04-13 21:32 - 011624448 _____ () C:\Users\Frank\AppData\Roaming\Sandra.mdb
2016-11-26 15:12 - 2016-11-26 15:12 - 000038446 _____ () C:\Users\Frank\AppData\Roaming\Tabulatorgetrennte Werte (Windows).ADR
2017-08-05 05:14 - 2017-08-05 05:14 - 000000600 _____ () C:\Users\Frank\AppData\Roaming\winscp.rnd
2015-04-20 19:32 - 2020-10-15 15:24 - 000001456 _____ () C:\Users\Frank\AppData\Local\Adobe Für Web speichern 13.0 Prefs
2015-06-01 18:43 - 2015-06-01 18:44 - 000001078 _____ () C:\Users\Frank\AppData\Local\b910beaedd16e666d75f0eba9db54ffc
2020-05-12 14:14 - 2020-05-12 14:14 - 000003584 _____ () C:\Users\Frank\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-09-28 12:38 - 2018-09-28 12:38 - 000000000 _____ () C:\Users\Frank\AppData\Local\oobelibMkey.log
2018-07-12 12:11 - 2018-07-12 12:11 - 050090848 _____ (Sony) C:\Users\Frank\AppData\Local\pcc.exe
2017-08-01 17:09 - 2018-01-27 00:21 - 000000600 _____ () C:\Users\Frank\AppData\Local\PUTTY.RND
2015-07-18 18:14 - 2019-05-04 18:18 - 000007597 _____ () C:\Users\Frank\AppData\Local\resmon.resmoncfg
2015-04-07 19:50 - 2015-04-07 19:50 - 000001524 _____ () C:\Users\Frank\AppData\Local\Temppihide_log1.log
2015-04-07 19:50 - 2015-04-07 19:50 - 000000000 _____ () C:\Users\Frank\AppData\Local\Temppihide_log2.log
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 14-10-2020
durchgeführt von Frank (17-10-2020 13:18:31)
Gestartet von C:\Users\Frank\Downloads
Windows 10 Pro Version 2004 19041.572 (X64) (2020-09-10 21:51:46)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
Administrator (S-1-5-21-2701594914-1762747753-790145204-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2701594914-1762747753-790145204-503 - Limited - Disabled)
Frank (S-1-5-21-2701594914-1762747753-790145204-1000 - Administrator - Enabled) => C:\Users\Frank
Gast (S-1-5-21-2701594914-1762747753-790145204-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2701594914-1762747753-790145204-1002 - Limited - Enabled)
WDAGUtilityAccount (S-1-5-21-2701594914-1762747753-790145204-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: COMODO Antivirus (Enabled - Up to date) {9E3E06E3-F8E0-3C44-2336-BBD8AF8F84B8}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: COMODO Antivirus (Enabled - Up to date) {0C515E80-E355-69BD-3445-A511E5C186FD}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AV: COMODO Antivirus (Enabled - Up to date) {08B84BA8-CC77-5A8B-A100-3F522B1B6106}
AS: Spybot - Search and Destroy (Disabled - Out of date) {4C1D9672-63FE-5C90-371E-8FDA591C5B75}
AS: COMODO Advanced Protection (Enabled - Up to date) {B730BF64-C56F-6633-0EF5-9E639E46CC40}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: COMODO Firewall (Enabled) {A60587C6-B28F-3D1C-0869-12ED515CC3C3}
FW: COMODO Firewall (Disabled) {3083CA8D-8618-5BD3-8A5F-9667D5C8267D}
FW: COMODO Firewall (Disabled) {346ADFA5-A93A-68E5-1F1A-0C241B12C186}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat Reader DC - Deutsch (HKLM-x32\...\{AC76BA86-7AD7-1031-7B44-AC0F074E4100}) (Version: 20.012.20048 - Adobe Systems Incorporated)
Adobe Acrobat X Pro - English, Français, Deutsch (HKLM-x32\...\{AC76BA86-1033-F400-7760-000000000005}) (Version: 10.1.16 - Adobe Systems)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 32.0.0.89 - Adobe Systems Incorporated)
Adobe CS6 Design and Web Premium (HKLM-x32\...\{402F6F2E-5683-491C-977D-0CA599A07CAF}) (Version: 6 - Adobe Systems Incorporated)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.344 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.303 - Adobe)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Photoshop Lightroom 5.7.1 64-bit (HKLM\...\{BC86B82C-8C0E-4408-9AC1-6B0F2D636963}) (Version: 5.7.1 - Adobe Systems Incorporated)
Adobe Widget Browser (HKLM-x32\...\com.adobe.WidgetBrowser) (Version: 2.0 Build 348 - Adobe Systems Incorporated.)
Adobe® Content Viewer (HKLM-x32\...\com.adobe.dmp.contentviewer) (Version: 3.4.3 - Adobe Systems, Incorporated)
Agenda At Once 3.3.3 (HKLM-x32\...\Agenda At Once_is1) (Version: 3.3.3 - Dataland Software)
Android Data Recovery 1.0.7 (HKLM-x32\...\{BB02CCD7-1501-4901-B5EE-D1A1B3528B51}_is1) (Version: 1.0.7 - Aiseesoft Studio)
Apple Application Support (HKLM-x32\...\{46F044A5-CE8B-4196-984E-5BD6525E361D}) (Version: 2.3.6 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Ashampoo Burning Studio Elements 10.0.9 (HKLM-x32\...\Ashampoo Burning Studio Elements_is1) (Version: 3.1.1 - Ashampoo GmbH & Co. KG)
Avidemux 2.7 - 64 bits (HKLM-x32\...\Avidemux 2.7 - 64 bits (64-bit)) (Version: 2.7.0.170814 - )
AviSynth (HKLM-x32\...\AviSynth) (Version: 2.6.0 MT - )
Box Tools (HKLM-x32\...\{9880B9BC-A92A-4EBF-AEE8-E260C418C4A0}) (Version: 4.9.2.722 - Box)
BufferChm (HKLM-x32\...\{2EEA7AA4-C203-4b90-A34F-19FB7EF1C81C}) (Version: 130.0.331.000 - Hewlett-Packard) Hidden
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.51.815.0 - Logitech) Hidden
Canon IJ Network Tool (HKLM-x32\...\Canon_IJ_Network_UTILITY) (Version: 3.1.0 - Canon Inc.)
Canon iP7200 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP7200_series) (Version: - Canon Inc.)
Canon MG7100 series Benutzerregistrierung (HKLM-x32\...\Canon MG7100 series Benutzerregistrierung) (Version: - *Canon Inc.)
Canon MG7100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG7100_series) (Version: 1.01 - Canon Inc.)
Canon MG7100 series On-screen Manual (HKLM-x32\...\Canon MG7100 series On-screen Manual) (Version: 7.6.1 - Canon Inc.)
Capture NX 2 (HKLM\...\Capture NX 2) (Version: 2.4.7 - NIKON CORPORATION)
Capture NX-D (HKLM\...\{2D088846-B670-47AF-91C3-76E0B3E887C3}) (Version: 1.6.3 - Nikon Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.70 - Piriform)
CD-LabelPrint (HKLM-x32\...\MediaNavigation.CDLabelPrint) (Version: - )
CEWE FOTOWELT (HKLM-x32\...\CEWE FOTOWELT) (Version: 7.0.2 - CEWE Stiftung u Co. KGaA)
Cisco Webex Meetings (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\ActiveTouchMeetingClient) (Version: 40.2.4 - Cisco Webex LLC)
Collectorz.com MP3 Collector (HKLM-x32\...\Collectorz.com MP3 Collector) (Version: - )
Color Efex Pro 3.0 Complete (HKLM-x32\...\Color Efex Pro 3.0 Complete) (Version: 3.1.0.0 - Nik Software, Inc.)
COMODO Internet Security Premium (HKLM\...\{DAC390BA-1387-4DF8-A9BC-683E81E77E86}) (Version: 12.0.0.6818 - COMODO Security Solutions Inc.) Hidden
COMODO Internet Security Premium (HKLM\...\COMODO Internet Security) (Version: 12.0.0.6818 - COMODO Security Solutions Inc.)
Connect (HKLM-x32\...\MAGIX_connector_is1) (Version: 2.5.1.84 - MAGIX Software GmbH)
ConvertHelper 3.2 (HKLM\...\{27CC6AB1-E72B-4179-AF1A-EAE507EBAF52}}_is1) (Version: - DownloadHelper)
CopyTrans Control Center nur deinstallieren (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\CopyTrans Suite) (Version: 4.100 - WindSolutions)
CrystalDiskInfo 8.4.0 (HKLM\...\CrystalDiskInfo_is1) (Version: 8.4.0 - Crystal Dew World)
DeskUpdate (HKLM-x32\...\DeskUpdate_is1) (Version: 5.1.64.0 - Fujitsu Technology Solutions)
Digeus Registry Cleaner (HKLM-x32\...\{74BE9D31-AFEA-49D9-A78D-2379F1DB4785}) (Version: 5.5 - Digeus, Inc.)
Discord (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Discord) (Version: 0.0.306 - Discord Inc.)
Distortion Control Data (HKLM-x32\...\{B08B4896-886C-4644-8664-BBA4CE99D318}) (Version: 1.00.0000 - Nikon Corporation)
DocProc (HKLM-x32\...\{9B362566-EC1B-4700-BB9C-EC661BDE2175}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Driver Manager (HKLM-x32\...\{29E99E81-852C-4FA8-AC61-D57447ED2BCE}) (Version: 1.11.0075 - Fujitsu Technology Solutions)
Dropbox (HKLM-x32\...\Dropbox) (Version: 107.4.443 - Dropbox, Inc.)
Dropbox Update Helper (HKLM-x32\...\{099218A5-A723-43DC-8DB5-6173656A1E94}) (Version: 1.3.335.1 - Dropbox, Inc.) Hidden
EaseUS Data Recovery Wizard (HKLM\...\EaseUS Data Recovery Wizard_is1) (Version: - EaseUS)
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
ESET Online Scanner v3 (HKLM-x32\...\ESET Online Scanner) (Version: - )
FileZilla Client 3.50.0 (HKLM-x32\...\FileZilla Client) (Version: 3.50.0 - Tim Kosse)
Firebird SQL Server - MAGIX Edition (HKLM-x32\...\{34EB6245-C8D0-4D8A-B8D8-EEBFF7A91485}) (Version: 2.1.27.0 - MAGIX AG)
FoneLab für Android 1.0.6 (HKLM-x32\...\{7A7ACBDD-FED6-4ec5-BD26-5549FEB5B968}_is1) (Version: 1.0.6 - Aiseesoft Studio)
FormatFactory 4.4.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.0.0 - Free Time)
Free Blu-ray Player 1.1.18 (HKLM-x32\...\{FFF6624F-BB23-479d-B99E-0394EAD7BC74}_is1) (Version: 1.1.18 - Blu-ray Master)
Free Download Manager (HKLM\...\{0C1D4CF2-5575-4786-834C-B0FC977E9714}}_is1) (Version: 6.9.0.2927 - Softdeluxe)
FVD Downloader Module (HKLM-x32\...\{A3F74A3C-6824-4878-AB46-21280389D09F}) (Version: 1.0.8 - Nimbus)
Gear IconX (HKLM-x32\...\Gear IconX) (Version: 2.0.170927.51 - Samsung Electronics Co, Ltd.)
GeekBuddy (HKLM-x32\...\{E21161DD-05A2-42ED-A0EC-9C1393F51A64}) (Version: 4.2.39 - Comodo Security Solutions Inc)
Gigaset QuickSync (HKLM\...\{192f673d-d310-4488-96da-4a4bfcd6ab2b}) (Version: 8.6.0875.1 - Gigaset Communications GmbH)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.31 - Google LLC) Hidden
Google Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.3 - Google Inc.) Hidden
HitmanPro.Alert 3 (HKLM\...\HitmanPro.Alert) (Version: 3.8.6.875 - SurfRight B.V.)
HP Scanjet G3110 (HKLM\...\{9B4E2E01-D726-414F-947D-8CE4EC074EB6}) (Version: 13.0 - HP)
hpg3110 (HKLM-x32\...\{E5364E6E-3070-43F3-B9D6-9958A0A7F519}) (Version: 13.0.0.0 - Ihr Firmenname) Hidden
Intel(R) Management Engine Components (HKLM\...\{1CEAC85D-2590-4760-800F-8DE5E91F3700}) (Version: 11.0.6.1194 - Intel Corporation)
Intel(R) Network Connections Drivers (HKLM\...\PROSet) (Version: 20.4 - Intel)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 4.0.4.51 - Intel Corporation)
Intel® Chipsatz-Gerätesoftware (HKLM-x32\...\{f2fa2583-cd6d-4da1-803c-2983cc6f7791}) (Version: 10.1.2.10 - Intel(R) Corporation) Hidden
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
JRiver Media Center 25 (64-bit) (HKLM\...\Media Center 25 (64-bit)) (Version: 25 - JRiver, Inc.)
JRiver Media Center 26 (64-bit) (HKLM\...\Media Center 26 (64-bit)) (Version: 26 - JRiver, Inc.)
K-Lite Codec Pack 15.4.4 Basic (HKLM-x32\...\KLiteCodecPack_is1) (Version: 15.4.4 - KLCP)
Logitech Webcam-Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.51 - Logitech Inc.)
MAGIX 3D Maker (embeded) (HKLM-x32\...\MAGIX 3D Maker D) (Version: 6.0.0.8 - MAGIX AG)
MAGIX Cloud Import (HKLM\...\{F26F0643-45C1-4CCC-A98A-0F8B44A6E899}) (Version: 0.0.0.20 - MAGIX Software GmbH) Hidden
MAGIX Cloud Import (HKLM\...\MX.{F26F0643-45C1-4CCC-A98A-0F8B44A6E899}) (Version: 0.0.0.20 - MAGIX Software GmbH)
MAGIX Foto Manager 8 6.0.1.457 (D) (HKLM-x32\...\MAGIX Foto Manager 8 D) (Version: 6.0.1.457 - MAGIX AG)
MAGIX Fotobuch 3.6 (HKLM-x32\...\MAGIX Fotobuch) (Version: 3.6 - MAGIX AG)
MAGIX Network Sync (HKLM\...\{46659432-E58E-4BF9-829B-E10976DBC1B7}) (Version: 0.0.0.34 - MAGIX Software GmbH) Hidden
MAGIX Network Sync (HKLM\...\MX.{46659432-E58E-4BF9-829B-E10976DBC1B7}) (Version: 0.0.0.34 - MAGIX Software GmbH)
MAGIX Online Druck Service 3.4.3.0 (D) (HKLM-x32\...\MAGIX Online Druck Service D) (Version: 3.4.3.0 - MAGIX AG)
MAGIX Screenshare (HKLM-x32\...\{B8D0804A-F451-441F-BF3E-E46DF7FAFB87}) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Screenshare 4.3.6.1987 (D) (HKLM-x32\...\MAGIX Screenshare D) (Version: 4.3.6.1987 - MAGIX AG)
MAGIX Speed burnR (HKLM\...\{D2A73D5E-6A37-4B08-B6CE-09E8E80A8A2B}) (Version: 7.0.2.6 - MAGIX Software GmbH) Hidden
MAGIX Speed burnR (HKLM-x32\...\MX.{D2A73D5E-6A37-4B08-B6CE-09E8E80A8A2B}) (Version: 7.0.2.6 - MAGIX Software GmbH)
MAGIX Video deluxe (HKLM\...\{BDFB8EA8-AAF0-4F1F-B103-B49DF20B64F3}) (Version: 16.0.3.66 - MAGIX Software GmbH) Hidden
MAGIX Video deluxe (HKLM\...\MX.{BDFB8EA8-AAF0-4F1F-B103-B49DF20B64F3}) (Version: 16.0.3.66 - MAGIX Software GmbH)
MAGIX Video deluxe 15 Premium Sonderedition 8.5.0.28 (D) (HKLM-x32\...\MAGIX Video deluxe 15 Premium Sonderedition D) (Version: 8.5.0.28 - MAGIX AG)
MAGIX Video deluxe 2015 Premium (HKLM\...\{D23C4A4D-F83B-4B7E-B72A-91C41A04833E}) (Version: 14.0.0.140 - MAGIX Software GmbH) Hidden
MAGIX Video deluxe 2015 Premium (HKLM\...\MX.{D23C4A4D-F83B-4B7E-B72A-91C41A04833E}) (Version: 14.0.0.140 - MAGIX Software GmbH)
MAGIX Video deluxe MX Premium (HKLM-x32\...\{D982FFA1-51C2-4187-8EED-563F718536A3}) (Version: 11.0.0.42 - MAGIX AG) Hidden
MAGIX Video deluxe MX Premium (HKLM-x32\...\MAGIX_MSI_Videodeluxe18_premium) (Version: 11.0.0.42 - MAGIX AG)
MAGIX Video deluxe Update (HKLM\...\{DF2CCFB6-908E-436A-866B-F1C32E98A0C4}) (Version: 16.0.4.119 - MAGIX Software GmbH) Hidden
MAGIX Xtreme Foto Designer 6 6.0.27.0 (D) (HKLM-x32\...\MAGIX Xtreme Foto Designer 6 D) (Version: 6.0.27.0 - MAGIX AG)
Malwarebytes version 4.2.1.89 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.2.1.89 - Malwarebytes)
Media Go (HKLM-x32\...\{60CDD65B-61AD-4BE4-BEA8-BB2D15534D4B}) (Version: 3.2.191 - Sony)
Media Go Video Playback Engine 2.20.104.05220 (HKLM-x32\...\{78D4C553-4B41-97A5-22B4-2F446987B724}) (Version: 2.20.104.05220 - Sony)
MediaMonkey 4.1 (HKLM-x32\...\MediaMonkey_is1) (Version: 4.1 - Ventis Media Inc.)
Mein CEWE FOTOBUCH (HKLM-x32\...\Mein CEWE FOTOBUCH) (Version: 6.3.4 - CEWE Stiftung u Co. KGaA)
Metric Collection SDK (HKLM-x32\...\{DDAA788F-52E6-44EA-ADB8-92837B11BF26}) (Version: 1.1.0012.00 - Lenovo Group Limited) Hidden
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.13231.20262 - Microsoft Corporation)
Microsoft ASP.NET MVC 2 (HKLM-x32\...\{DD8FF2F3-0D97-4CF3-AF78-FA0E1B242244}) (Version: 2.0.60926.0 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 86.0.622.38 - Microsoft Corporation)
Microsoft Edge Update (HKLM-x32\...\Microsoft Edge Update) (Version: 1.3.135.49 - )
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0407-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\OneDriveSetup.exe) (Version: 20.169.0823.0006 - Microsoft Corporation)
Microsoft Support- und Wiederherstellungs-Assistent für Office 365 (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\dacae1bed46e81d5) (Version: 16.0.2514.4 - Microsoft Corporation)
Microsoft Teams (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Teams) (Version: 1.3.00.12058 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x86) - 14.24.28127 (HKLM-x32\...\{e31cb1a4-76b5-46a5-a084-3fa419e82201}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ 2017 Redistributable (x64) - 14.16.27033 (HKLM-x32\...\{cc3a7c63-31fb-4129-9024-63ebefd86a95}) (Version: 14.16.27033.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.60825 - Microsoft Corporation)
Microsoft Visual Studio 2010-Tools für Office-Laufzeit (x64) Language Pack - DEU (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64) Language Pack - DEU) (Version: 10.0.60825 - Microsoft Corporation)
Mozilla Firefox 81.0.2 (x64 en-US) (HKLM\...\Mozilla Firefox 81.0.2 (x64 en-US)) (Version: 81.0.2 - Mozilla)
Mozilla Thunderbird 68.12.0 (x86 de) (HKLM-x32\...\Mozilla Thunderbird 68.12.0 (x86 de)) (Version: 68.12.0 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM-x32\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Mufin MusicFinder Base 1.5.3.255 (D) (HKLM-x32\...\Mufin MusicFinder Base D) (Version: 1.5.3.255 - MAGIX AG)
Music Center (HKLM-x32\...\{75858C2F-423A-47B7-ADD5-81D86530F7AF}) (Version: 1.0.0.08241 - Sony Video & Sound Products Inc.)
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.20.0 - NEC Electronics Corporation) Hidden
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.20.0 - NEC Electronics Corporation)
NEF Codec (HKLM-x32\...\{D6506521-0959-4FA3-875F-E2E28830B0D2}) (Version: 1.31.0 - Nikon Corporation)
Nik Collection (HKLM-x32\...\Nik Collection) (Version: 1.2.11 - Google)
Nikon Message Center 2 (HKLM-x32\...\{B014EE44-9197-4513-9613-71E6EB1B514E}) (Version: 2.4.1 - Nikon Corporation)
Nikon Transfer 2 (HKLM-x32\...\{757DBE04-3DC8-4741-B10B-4628745E96FE}) (Version: 2.13.6 - Nikon Corporation)
NVIDIA 3D Vision Controller-Treiber 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA nView 147.00 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 147.00 - NVIDIA Corporation)
NVIDIA WMI 2.25.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVWMI) (Version: 2.25.0 - NVIDIA Corporation)
O&O DiskRecovery (HKLM\...\{D09A1F86-470B-48AE-AAD0-E229A25B3F11}) (Version: 10.0.117 - O&O Software GmbH)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
Office 16 Click-to-Run Extensibility Component (HKLM-x32\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Extensibility Component 64-bit Registration (HKLM\...\{90160000-00DD-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-008F-0000-1000-0000000FF1CE}) (Version: 16.0.13231.20200 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM-x32\...\{90160000-008C-0407-0000-0000000FF1CE}) (Version: 16.0.13231.20126 - Microsoft Corporation) Hidden
Ontrack EasyRecovery Professional (HKLM-x32\...\{668CC71A-C2AD-4D56-866D-CF300BD1D5BE}_is1) (Version: 11.1.0.0 - Kroll Ontrack Inc.)
OpenOffice.org 3.4.1 (HKLM-x32\...\{2303AEEA-0FA8-4AFD-80A9-8F86BA4B44D2}) (Version: 3.41.9593 - Apache Software Foundation)
Oracle VM VirtualBox 5.1.26 (HKLM\...\{11A88BD5-F059-4743-81D9-1432AC9C3D4E}) (Version: 5.1.26 - Oracle Corporation)
pCloud Drive (HKLM-x32\...\{C3C0052D-E704-4261-91D5-AEAE31F70EFF}) (Version: 3.8.0.0 - pCloud AG) Hidden
pCloud Drive (HKLM-x32\...\{e30b668e-667b-451c-8072-85674a7ddc54}) (Version: 3.8.0.0 - pCloud AG)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
Picture Control Utility 2 (HKLM\...\{C03DA72C-DE1F-4628-9CA0-53AFAE96C05F}) (Version: 2.4.6 - Nikon Corporation)
Picture Control Utility x64 (HKLM\...\{11953C65-BB4E-4CA4-B0F0-2600A4B20040}) (Version: 1.5.1 - Nikon)
Pixum Fotowelt (HKLM-x32\...\Pixum Fotowelt) (Version: 6.4.7 - CEWE Stiftung u Co. KGaA)
QuickTime 7 (HKLM-x32\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 10.0.10125.31214 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7606 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.53 - Piriform)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.20.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.20.0 - Renesas Electronics Corporation)
Saal Design Software (HKLM-x32\...\{26B842A7-6A09-5DCF-0805-2B8984C1EA84}) (Version: 4.0 - Saal Digital Fotoservice GmbH) Hidden
Saal Design Software (HKLM-x32\...\SaalDesignSoftware) (Version: 4.0 - Saal Digital Fotoservice GmbH)
Samsung DeX (HKLM-x32\...\{5E2BEDEC-EEE1-49B7-A9D0-6971AFA9B5F2}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.) Hidden
Samsung DeX (HKLM-x32\...\{bc458b5f-1945-4287-8fae-353650fd3109}) (Version: 1.0.2.26 - Samsung Electronics Co., Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.7.31.0 - Samsung Electronics Co., Ltd.)
Scan (HKLM-x32\...\{0F367CA3-3B2F-43F9-A44A-25A8EE69E45D}) (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Security Task Manager 2.3d (HKLM-x32\...\Security Task Manager) (Version: 2.3d - Neuber Software)
Shotcut (HKLM-x32\...\Shotcut) (Version: 19.12.31 - Meltytech, LLC)
Silver Efex Pro (HKLM-x32\...\Silver Efex Pro) (Version: 1.001 - Nik Software, Inc.)
SILVER projects professional (64-Bit) (HKLM\...\SILVER_PROJECTS_1_3_28B15F1D_is1) (Version: 1.14 - Franzis Verlag GmbH)
SiSoftware Sandra Lite 2012.SP5c (HKLM\...\{C3113E55-7BCB-4de3-8EBF-60E6CE6B2396}_is1) (Version: 18.74.2012.10 - SiSoftware)
Skype Version 8.59 (HKLM-x32\...\Skype_is1) (Version: 8.59 - Skype Technologies S.A.)
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.16.15.201610281456 - Sony Mobile Communications Inc.)
Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Spotify (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Spotify) (Version: 1.0.90.268.ga8a0ceb4 - Spotify AB)
Spybot - Search & Destroy (HKLM-x32\...\{B4092C6D-E886-4CB2-BA68-FE5A99D31DE7}_is1) (Version: 2.7.64.0 - Safer-Networking Ltd.)
Spyder4Pro (HKLM-x32\...\Spyder4Pro) (Version: - )
SpyderPRINT (HKLM-x32\...\SpyderPRINT) (Version: - )
SpywareBlaster 6.0 (HKLM-x32\...\SpywareBlaster_is1) (Version: 6.0.0 - BrightFort LLC)
SRWare Iron (64-Bit) Version 85.0.4350.0 (HKLM\...\{BA85A29D-B48E-4826-BAEE-817024E52E29}_is1) (Version: 85.0.4350.0 - SRWare)
SyncBackPro x64 (HKLM-x32\...\SyncBackPro64_is1_is1) (Version: 8.9.15.0 - 2BrightSparks)
Sync-Plus (HKLM\...\Sync-Plus) (Version: 2.0.23.0 - Deutsche Telekom AG)
Synology Assistant (remove only) (HKLM-x32\...\Synology Assistant) (Version: - )
Synology Cloud Station Drive (HKLM-x32\...\{1654A7C6-25A5-4BED-AABE-8A03E6BD3986}) (Version: 4.0.4203 - Synology)
Synology Photo Station Uploader (remove only) (HKLM-x32\...\Photo Station Uploader) (Version: 1.4.0.080 - Synology)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.2.3 - TeamSpeak Systems GmbH)
t-online.de Browser 7 77.0.210 (x86 de) (HKLM-x32\...\t-online.de Browser 7 77.0.210 (x86 de)) (Version: 77.0.210 - t-online.de)
t-online.de Browser 7 Maintenance Service (HKLM\...\tonlinedeBrowser7MaintenanceService) (Version: 77.0.1.7472 - t-online.de)
TreeSize Free V4.1.1 (HKLM-x32\...\TreeSize Free_is1) (Version: 4.1.1 - JAM Software)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
VideoDownloaderUltimate (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\VideoDownloaderUltimateWinApp) (Version: 1.0.1.151 - Link64)
ViewNX-i (HKLM\...\{C02E1F40-7EB2-4084-991B-EBFC7F586E26}) (Version: 1.4.3 - Nikon Corporation)
VirtualCloneDrive (HKLM-x32\...\VirtualCloneDrive) (Version: 5.5.0.0 - Elaborate Bytes)
Vivaldi (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\Vivaldi) (Version: 3.2.1967.47 - Vivaldi Technologies AS.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.11 - VideoLAN)
WebReg (HKLM-x32\...\{43CDF946-F5D9-4292-B006-BA0D92013021}) (Version: 130.0.132.017 - Hewlett-Packard) Hidden
WhatsApp (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\WhatsApp) (Version: 2.2041.6 - WhatsApp)
Windows XP Mode (HKLM\...\{1374CC63-B520-4f3f-98E8-E9020BF01CFF}) (Version: 1.3.7600.16422 - Microsoft Corporation)
WinSCP 5.9.6 (HKLM-x32\...\winscp3_is1) (Version: 5.9.6 - Martin Prikryl)
Wondershare Dr.Fone for Android(Build 5.2.0.24) (HKLM-x32\...\{1DB91A95-C548-4BA5-9D4C-18C7DEAAC39F}_is1) (Version: 5.2.0.24 - Wondershare Software Co.,Ltd.)
Wondershare Flash Gallery Factory Deluxe 5.2.0.14 (HKLM-x32\...\Wondershare Flash Gallery Factory Deluxe_is1) (Version: 5.2.0.14 - Wondershare Software Co.,Ltd.)
WorldsPlayer (HKLM-x32\...\{27BF5556-A718-42FF-BDF9-9EBF4EFCDF10}) (Version: 1.19.20.01 - Worlds.com)
Xperia Companion (HKLM-x32\...\{5b7c1b25-5fb6-442c-a1b5-cb8dfc2267bf}) (Version: 2.8.3.0 - Sony)
Xperia Companion (HKLM-x32\...\{66EABD35-6233-4926-9AB1-AB31CC6BC7D9}) (Version: 2.8.3.0 - Sony) Hidden
Xperia Companion Service (HKLM\...\{E41065E8-67E2-448F-940C-FF9D7C51E4E3}) (Version: 2.8.3.0 - Sony) Hidden
Zoom (HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\ZoomUMX) (Version: 5.0 - Zoom Video Communications, Inc.)
Packages:
=========
Canon Inkjet Print Utility -> C:\Program Files\WindowsApps\34791E63.CanonInkjetPrintUtility_2.9.0.1_neutral__6e5tt8cgb93ep [2020-03-06] (Canon Inc.)
Fotos-Add-On -> C:\Program Files\WindowsApps\Microsoft.Windows.Photos.DLC.Main_2017.39121.36610.0_x64__8wekyb3d8bbwe [2020-10-08] (Microsoft Corporation)
Media Engine-Add-On für Fotos -> C:\Program Files\WindowsApps\Microsoft.Photos.MediaEngineDLC_1.0.0.0_x64__8wekyb3d8bbwe [2020-02-18] (Microsoft Corporation)
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x64__8wekyb3d8bbwe [2020-02-02] (Microsoft Corporation) [MS Ad]
Microsoft Advertising SDK for XAML -> C:\Program Files\WindowsApps\Microsoft.Advertising.Xaml_10.1811.1.0_x86__8wekyb3d8bbwe [2020-02-02] (Microsoft Corporation) [MS Ad]
Microsoft Mahjong -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMahjong_4.0.9220.0_x64__8wekyb3d8bbwe [2020-10-06] (Microsoft Studios) [MS Ad]
Microsoft Minesweeper -> C:\Program Files\WindowsApps\Microsoft.MicrosoftMinesweeper_3.1.9160.0_x86__8wekyb3d8bbwe [2020-10-06] (Microsoft Studios) [MS Ad]
Microsoft Solitaire Collection -> C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_4.7.8101.0_x64__8wekyb3d8bbwe [2020-08-21] (Microsoft Studios) [MS Ad]
Microsoft Ultimate Word Games -> C:\Program Files\WindowsApps\Microsoft.Studios.Wordament_3.8.904.0_x64__8wekyb3d8bbwe [2020-10-06] (Microsoft Studios) [MS Ad]
MPEG-2-Videoerweiterung -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.22661.0_x64__8wekyb3d8bbwe [2020-04-20] (Microsoft Corporation)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{1019ADC7-17CB-4489-AFD5-6642C7400ACE}\localserver32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptOIEx64.exe (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{19A6E644-14E6-4A60-B8D7-DD20610A871D}\InprocServer32 -> C:\Users\Frank\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{2C4A5D61-009C-4561-9A33-6AFD542FD237}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll () [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{472CE1AD-5D53-4BCF-A1FB-3982A5F55138}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{48AB5ADA-36B1-4137-99C9-2BD97F8788AB}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{A433C3E0-8B24-40EB-93C3-4B10D9959F58}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{AEB16659-2125-4ADA-A4AB-45EE21E86469}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{AEECE333-8900-4915-9697-7A0B4034B3D8}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptWbxMS64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{BA58190A-A733-4982-8AE2-E2021F0DD503}\localserver32 -> C:\Users\Frank\AppData\Local\Box\Box Local Com Server\Box.Tools.ActiveX.exe (Box, Inc. -> Box, Inc.)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{BAEE998A-9C95-4966-8E52-DBCA67D8482A}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptoiEnt64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{BCA9D37C-CA60-4160-9115-97A00F24702D}\localserver32 -> C:\Users\Frank\AppData\Local\Vivaldi\Application\3.2.1967.47\notification_helper.exe (Vivaldi Technologies AS -> Vivaldi Technologies AS)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{C3741FD4-FABE-4C36-88E7-40C0C09FCE8D}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptWbxMS64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{C701AD67-3DF0-47C9-89CB-DFA6207BE229}\InprocServer32 -> C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll (TODO: <Company name>) [Datei ist nicht signiert]
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{CB965DF1-B8EA-49C7-BDAD-5457FDC1BF92}\InprocServer32 -> C:\Users\Frank\AppData\Local\Microsoft\TeamsMeetingAddin\1.0.20031.2\x64\Microsoft.Teams.AddinLoader.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{E8D0CE8D-BC70-4025-978F-E86068362730}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptusredt64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{EA47D2DE-76CC-4138-97FF-A62F9D28A341}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptolkadd64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
CustomCLSID: HKU\S-1-5-21-2701594914-1762747753-790145204-1000_Classes\CLSID\{F6E0DEDD-F6D5-4195-BE2D-AB628A0BBDF4}\InprocServer32 -> C:\Users\Frank\AppData\Local\Webex\Webex\Applications\ptWbxMS64.dll (Cisco WebEx LLC -> Cisco WebEx LLC)
SSODL: EldosMountNotificator-cbfs6 - {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} - C:\Windows\system32\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
SSODL-x32: EldosMountNotificator-cbfs6 - {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} - C:\Windows\SysWOW64\cbfsMntNtf6.dll (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects: Virtual Storage Mount Notification -> {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} => C:\Windows\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellServiceObjects-x32: Virtual Storage Mount Notification -> {09D5B539-A38C-4B25-97F5-BE6B21E54FFB} => C:\Windows\SysWOW64\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [ pCloudINPROGRESS] -> {D8BFAFBD-B670-4252-9C17-9CF1C64C2BAF} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2017-10-23] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ pCloudINSYNC] -> {8D0C0582-552A-4A6B-9455-DA63E1F329C0} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2017-10-23] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ pCloudNOSYNC] -> {3858ED1B-8F1C-42ED-A8A9-FDBF591E3C6B} => C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll [2017-10-23] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 01UnsuppModule] -> {AEB16659-2125-4ADA-A4AB-45EE21E86469} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 02SyncingModule] -> {48AB5ADA-36B1-4137-99C9-2BD97F8788AB} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 03SyncedModule] -> {472CE1AD-5D53-4BCF-A1FB-3982A5F55138} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 04ReadOnlyModule] -> {A433C3E0-8B24-40EB-93C3-4B10D9959F58} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ 05NoPermModule] -> {C701AD67-3DF0-47C9-89CB-DFA6207BE229} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll [2016-04-17] (TODO: <Company name>) [Datei ist nicht signiert]
ShellIconOverlayIdentifiers: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> Keine Datei
ShellIconOverlayIdentifiers: [EldosIconOverlay-cbfs6] -> {B49B3EC8-1E58-44D2-980A-CAC87EE47F95} => C:\Windows\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ShellIconOverlayIdentifiers: [HitmanPro.Alert Shell Extension] -> {6FAC02B7-77D6-418B-AC11-962C65CDE8DD} => C:\WINDOWS\system32\hmpshell.dll [2020-10-16] (SurfRight B.V. -> SurfRight B.V.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt01] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt02] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt03] -> {FB314EE1-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt04] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt05] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt06] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt07] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt08] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt09] -> {FB314EE2-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [ DropboxExt10] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [EldosIconOverlay-cbfs6] -> {B49B3EC8-1E58-44D2-980A-CAC87EE47F95} => C:\Windows\system32\cbfsMntNtf6.dll [2016-09-09] (EldoS Corporation -> /n software, Inc.)
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers1: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers1: [ContextMenuExtension] -> {a0b73fac-351f-3948-9d8a-1dad9d870193} => C:\Program Files (x86)\pCloud Drive\ContextMenuHandler.DLL [2019-01-22] (pCloud AG) [Datei ist nicht signiert] [Datei wird verwendet]
ContextMenuHandlers1: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers1: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers2: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers2: [VirtualCloneDrive] -> {B7056B8E-4F99-44f8-8CBD-282390FE5428} => C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\ElbyVCDShell.dll [2009-12-14] (Elaborate Bytes AG -> Elaborate Bytes AG)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [ContextMenuExtension] -> {a0b73fac-351f-3948-9d8a-1dad9d870193} => C:\Program Files (x86)\pCloud Drive\ContextMenuHandler.DLL [2019-01-22] (pCloud AG) [Datei ist nicht signiert] [Datei wird verwendet]
ContextMenuHandlers4: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers4: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2016-02-09] (NVIDIA Corporation -> )
ContextMenuHandlers5: [DropboxExt] -> {ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C} => C:\Program Files (x86)\Dropbox\Client\DropboxExt64.46.0.dll [2020-10-06] (Dropbox, Inc -> Dropbox, Inc.)
ContextMenuHandlers5: [Gadgets] -> {6B9228DA-9C15-419e-856C-19E768A13BDC} => -> Keine Datei
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\WINDOWS\system32\nvshext.dll [2017-10-30] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {D25B2CAB-8A9A-4517-A9B2-CB5F68A5A802} => C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat Elements\ContextMenu64.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
ContextMenuHandlers6: [Comodo Antivirus] -> {4255A182-CAD9-4214-A19B-7BA7FB633BBD} => C:\Program Files\COMODO\COMODO Internet Security\cavshell.dll [2019-04-16] (Comodo Security Solutions, Inc. -> COMODO)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-10-16] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [RecuvaShellExt] -> {435E5DF5-2510-463C-B223-BDA47006D002} => C:\Program Files\Recuva\RecuvaShell64.dll [2020-08-03] (Piriform Software Ltd -> Piriform Software Ltd)
ContextMenuHandlers6: [SDECon32] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers6: [SDECon64] -> {44176360-2BBF-4EC1-93CE-384B8681A0BC} => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDECon64.dll [2018-03-23] (Safer-Networking Ltd. -> Safer-Networking Ltd.)
ContextMenuHandlers1_S-1-5-21-2701594914-1762747753-790145204-1000: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll [2016-04-17] () [Datei ist nicht signiert]
ContextMenuHandlers6_S-1-5-21-2701594914-1762747753-790145204-1000: [CloudStation.SyncFolderContextMenu] -> {2C4A5D61-009C-4561-9A33-6AFD542FD237} => C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll [2016-04-17] () [Datei ist nicht signiert]
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Drivers32: [vidc.i420] => C:\WINDOWS\system32\lvcod64.dll [175392 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
HKLM\...\Drivers32: [vidc.i420] => C:\Windows\SysWOW64\lvcodec2.dll [305000 2012-10-26] (Logitech, Inc. -> Logitech Inc.)
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Frank\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\b6007676f3e7a2a3\Chromium.lnk -> C:\Program Files\SRWare Iron (64-Bit)\chrome.exe (SRWare) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Frank\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\3373c9ebc3a5e445\Chromium.lnk -> C:\Program Files (x86)\SRWare Iron\chrome.exe (SRWare) -> --profile-directory=Default
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2016-07-07 10:57 - 2016-07-07 10:57 - 000035328 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Synology\Photo Station Uploader\ShellExtHandler.dll
2016-04-17 09:29 - 2016-04-17 09:29 - 001249280 _____ () [Datei ist nicht signiert] C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\ContextMenu.dll
2015-09-24 17:41 - 2015-09-24 17:41 - 000336384 _____ (Adobe Systems Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\Adobe\Acrobat 10.0\Acrobat\Locale\de_DE\Acrobat Elements\ContextMenu64.deu
2017-08-23 15:00 - 2013-01-24 16:24 - 000359936 _____ (CANON INC.) [Datei ist nicht signiert] C:\WINDOWS\System32\CNMN6PPM.DLL
2016-08-12 10:31 - 2016-08-12 10:31 - 000794112 _____ (Gigaset Communications GmbH) [Datei ist nicht signiert] C:\WINDOWS\System32\GQSTSP.tsp
2017-10-23 17:28 - 2017-10-23 17:28 - 000342016 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\Program Files (x86)\pCloud Drive\OverlayIcon64.dll
2016-04-17 09:29 - 2016-04-17 09:29 - 002768384 _____ (TODO: <Company name>) [Datei ist nicht signiert] C:\Users\Frank\AppData\Local\CloudStation\CloudStation.app\icon-overlay\16\x64\iconOverlay.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Windows:nlsPreferences [0]
AlternateDataStreams: C:\ProgramData\Temp:014E691E [132]
AlternateDataStreams: C:\ProgramData\Temp:5C321E34 [136]
AlternateDataStreams: C:\Users\Frank\Desktop\FRommel_IPW 2015 vers 0 5.odt:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.de
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.spiegel.de
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> {352101B5-771D-43BF-A499-4B9FE74C37CE} URL =
SearchScopes: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> {8EEAC88A-079B-4b2c-80C1-7836F79EB40A} URL = hxxp://de.search_path.yahoo.com/search_path?p={searchTerms}&fr=chr-comodo&type=33090001005_12.0.0.6818_i_ds
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-09-11] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_261\bin\ssv.dll [2020-10-16] (Oracle America, Inc. -> Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_261\bin\jp2ssv.dll [2020-10-16] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2015-09-24] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> Kein Name - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - Keine Datei
IE Session Restore: HKU\S-1-5-21-2701594914-1762747753-790145204-1000 -> ist aktiviert.
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-10-06] (Microsoft Corporation -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0411dd.com -> 0411dd.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0511zfhl.com -> 0511zfhl.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0632qyw.com -> 0632qyw.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\1-2005-search.com -> www.1-2005-search.com
Da befinden sich 12681 mehr Seiten.
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2009-07-14 04:34 - 2020-05-08 17:00 - 000450761 _____ C:\WINDOWS\system32\drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 localhost
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
127.0.0.1 www.1-2005-search.com
127.0.0.1 1-2005-search.com
127.0.0.1 123fporn.info
127.0.0.1 www.123fporn.info
127.0.0.1 123haustiereundmehr.com
127.0.0.1 www.123haustiereundmehr.com
127.0.0.1 123moviedownload.com
127.0.0.1 www.123moviedownload.com
Da befinden sich 15465 zusätzliche Einträge.
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\Program Files (x86)\Intel\iCLS Client\;C:\Program Files\Intel\iCLS Client\;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL;C:\Program Files\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT;C:\Program Files (x86)\QuickTime\QTSystem\;%SYSTEMROOT%\System32\OpenSSH\
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Frank\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\dsc_0098 (2).jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer => (SmartScreenEnabled: )
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName2 -> ndptsp.tsp (Keine Datei)
ist deaktiviert.
Network Binding:
=============
WLAN: COMODO Internet Security Firewall Driver -> inspect (enabled)
LAN-Verbindung: COMODO Internet Security Firewall Driver -> inspect (enabled)
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
MSCONFIG\startupfolder: C:^Users^Frank^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^startup^Synology Cloud Station.lnk => C:\Windows\pss\Synology Cloud Station.lnk.Startup
MSCONFIG\startupreg: AgendaAtOnce => "C:\Program Files (x86)\Agenda At Once\AgendaAtOnce.exe" /m
MSCONFIG\startupreg: pCloud => C:\Program Files (x86)\pCloud Drive\pCloud.exe
MSCONFIG\startupreg: RemoteControl11 => C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "Dropbox"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Box Edit"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Box Local Com Server"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Skype for Desktop"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "XperiaCompanionAgent"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Snap Camera"
HKU\S-1-5-21-2701594914-1762747753-790145204-1000\...\StartupApproved\Run: => "Discord"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{9DBF3213-1B22-4581-907D-221768401E0A}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)
FirewallRules: [{31F2426C-08BF-4C12-BD6D-9F21043EA5C9}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)
FirewallRules: [{3D9B8C23-B28C-4275-B029-4A5A8D42B8C2}] => (Allow) C:\Program Files (x86)\MediaMonkey\MediaMonkey.exe (Ventis Media, Inc. -> Ventis Media Inc.)
FirewallRules: [{CC14F6DB-8425-4ADD-9181-1B241F9C3CAA}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{CE9F8902-2B51-42CA-95F3-A4B19D0E76B0}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{67F18940-94CF-4628-A3E4-6BBA56C1F532}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{0FA3DFEC-87AF-41FC-BE7B-413DDDF0BEFC}] => (Allow) C:\Program Files\Softdeluxe\Free Download Manager\fdm.exe (Softdeluxe) [Datei ist nicht signiert]
FirewallRules: [{309321EF-913E-4F7A-9EC0-B3EDC6E652E9}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{05F262D5-E611-4501-AA35-93B7D5348BBE}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{C9DB6157-7610-4486-9BB3-124893CACDA6}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [UDP Query User{97907340-EA68-437C-A225-90FFFEB124C7}C:\program files (x86)\synology\assistant\dsassistant.exe] => (Allow) C:\program files (x86)\synology\assistant\dsassistant.exe (Synology Inc. -> ) [Datei ist nicht signiert]
FirewallRules: [{80370979-9C52-4EFA-B9AE-D8D79256196E}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{85CDB2E8-AB25-48D9-9681-2F3D9EAB7B70}] => (Allow) C:\Program Files\MAGIX\Video deluxe 2015 Premium\Videodeluxe.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{0FD1BF49-83A6-4219-8E2A-7AD18580F5CE}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\RpcAgentSrv.exe (SiSoftware Ltd -> SiSoftware) [Datei ist nicht signiert]
FirewallRules: [{1A7C4581-D70F-4C39-AB17-EF118F04B3B0}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpqkygrp.exe (Hewlett-Packard) [Datei ist nicht signiert]
FirewallRules: [{8FD237D3-C5D7-4D55-9CE3-C1CB5D56D163}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpfccopy.exe () [Datei ist nicht signiert]
FirewallRules: [{E99CE37F-52FE-4DC0-9BC9-9EC8EFF0547E}] => (Allow) C:\Program Files (x86)\HP\Digital Imaging\bin\hpiscnapp.exe (Hewlett-Packard) [Datei ist nicht signiert]
FirewallRules: [{B9C56C69-B927-4510-AD15-6B86BAF433B3}] => (Allow) C:\Program Files\SiSoftware\SiSoftware Sandra Lite 2012.SP5c\WNt500x64\RpcSandraSrv.exe (SiSoftware Ltd -> SiSoftware) [Datei ist nicht signiert]
FirewallRules: [{40DD64AA-B574-40C5-B69E-E5E846ED8821}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe => Keine Datei
FirewallRules: [{BF73C3F8-5B22-46DF-91E0-BE404CFC630B}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{71F34C44-D8D0-4B84-BC51-0C3CC3B8164F}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{6C1F6D39-ECAB-4882-A9A2-A8AE652DA21F}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{8D9AB729-5FB1-4184-AC75-AEF1C8FC82E8}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{4437F1BD-D364-4D99-B9AF-719191954122}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe (Sony Mobile Communications -> )
FirewallRules: [{AE0A1187-FC68-4592-B9A9-A50CF53C68EB}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{1AD55AD4-62B4-402B-A160-47B965ACC3AF}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{7A93E2BD-9B48-4719-993F-5846381DA9D5}] => (Allow) C:\Program Files (x86)\t-online.de\Browser 7\Browser7.exe (Ströer Digital Publishing GmbH -> t-online.de -OFFICIAL)
FirewallRules: [{B077E472-B0D2-4844-80EA-1649BB698DC1}] => (Allow) C:\Program Files (x86)\t-online.de\Browser 7\Browser7.exe (Ströer Digital Publishing GmbH -> t-online.de -OFFICIAL)
FirewallRules: [{AA1C2C9F-C37C-4584-9BBD-6CA2BF44321A}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{5CF5BBE8-3CF0-4B1F-89AD-DC9380BE0FA0}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{ACD0A73E-2C59-4E92-AE36-631F3F75688B}] => (Allow) C:\Program Files\Common Files\MAGIX Services\MxCloudSync\MxCloudSync.exe (MAGIX Software GmbH -> Magix)
FirewallRules: [{59B1816B-6D39-4B4E-99E8-89C03799E03A}] => (Allow) C:\Program Files\Common Files\MAGIX Services\QMxNetworkSync\QMxNetworkSync.exe (MAGIX Software GmbH -> MAGIX)
FirewallRules: [{CEC347BE-7112-455A-A2BE-7D6100B1C5A8}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{16987639-2BE3-43D1-9FED-080524F11DD4}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{76AB137D-37D7-4E03-ADCA-80A5B5F613DE}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{3810BF41-C260-4279-B0B5-A8F06CC3298E}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{A3E82058-DC6D-49D7-BC90-BF5200F7E39E}] => (Allow) C:\Program Files\MAGIX\Video deluxe\2017\Videodeluxe.exe (MAGIX Software GmbH -> MAGIX Software GmbH)
FirewallRules: [{1A8C7473-70BB-4FC4-AEB4-95E5719F8F78}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{BF300CAF-85E8-48FB-B26D-052263C7E9AD}] => (Allow) C:\Program Files (x86)\FreeTime\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [Datei ist nicht signiert]
FirewallRules: [{81A320C0-AA99-4335-9292-52856B9ECDBE}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{E8A08659-A013-4DBC-821E-D226BBC2E024}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{ADB2FA65-A538-412F-A704-9E39F34296E8}] => (Allow) C:\Program Files\Telekom\Sync-Plus\Sync-Plus.exe => Keine Datei
FirewallRules: [{4D3CABB9-7075-43E6-872C-239D1682E37C}] => (Allow) C:\Program Files (x86)\pCloud Drive\pCloud.exe (pCloud AG -> pCloud AG)
FirewallRules: [{72541125-26AA-4FB5-A5AA-A04969C3DDB8}] => (Allow) C:\Program Files (x86)\Sony\Xperia Companion\XperiaCompanion.exe (Sony Mobile Communications AB -> Sony)
FirewallRules: [{EA43B792-8BAB-4C1A-8596-3E2072EBB162}] => (Allow) C:\Program Files (x86)\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{99FBDE45-2570-4B9F-BB1F-76DA72A99390}] => (Allow) C:\Program Files\Telekom\Sync-Plus\Sync-Plus.exe => Keine Datei
FirewallRules: [{8D6C40D2-D70E-42B1-9B87-D899DB62C62D}] => (Allow) C:\Program Files\Telekom\Sync-Plus\Sync-Plus.exe => Keine Datei
FirewallRules: [{4C2FD22E-F996-4F8A-878A-D0E74D3477D6}] => (Allow) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe (Dropbox, Inc -> Dropbox, Inc.)
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe] => Enabled:Spybot - Search & Destroy tray access
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe] => Enabled:Spybot-S&D 2 Scanner Service
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe] => Enabled:Spybot-S&D 2 Updater
StandardProfile\AuthorizedApplications: [C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe] => Enabled:Spybot-S&D 2 Background update service
==================== Wiederherstellungspunkte =========================
16-10-2020 16:58:47 AdwCleaner_BeforeCleaning_16/10/2020_16:58:43
16-10-2020 18:05:43 Wiederherstellungsvorgang
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Intel(R) Management Engine Interface
Description: Intel(R) Management Engine Interface
Class Guid: {4d36e97d-e325-11ce-bfc1-08002be10318}
Manufacturer: Intel
Service: MEIx64
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Name: Unbekanntes USB-Gerät (Link in Kompatibilitätsmodus)
Description: Unbekanntes USB-Gerät (Link in Kompatibilitätsmodus)
Class Guid: {36fc9e60-c465-11cf-8056-444553540000}
Manufacturer: (Standard-USB-Hostcontroller)
Service:
Problem: : Windows has stopped this device because it has reported problems. (Code 43)
Resolution: One of the drivers controlling the device notified the operating system that the device failed in some manner. For more information about how to diagnose the problem, see the hardware documentation.
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (10/17/2020 12:50:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 10.0.19041.546, Zeitstempel: 0x89ce2e55
Name des fehlerhaften Moduls: SHELL32.dll, Version: 10.0.19041.572, Zeitstempel: 0x783ea12c
Ausnahmecode: 0xc000041d
Fehleroffset: 0x000000000003ce8c
ID des fehlerhaften Prozesses: 0x1bec
Startzeit der fehlerhaften Anwendung: 0x01d6a46ae7da12d4
Pfad der fehlerhaften Anwendung: C:\WINDOWS\Explorer.EXE
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\SHELL32.dll
Berichtskennung: 77be3d1d-7922-4706-9365-00ef92acc729
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2020 12:50:25 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: Explorer.EXE, Version: 10.0.19041.546, Zeitstempel: 0x89ce2e55
Name des fehlerhaften Moduls: SHELL32.dll, Version: 10.0.19041.572, Zeitstempel: 0x783ea12c
Ausnahmecode: 0xc0000005
Fehleroffset: 0x000000000003ce8c
ID des fehlerhaften Prozesses: 0x1bec
Startzeit der fehlerhaften Anwendung: 0x01d6a46ae7da12d4
Pfad der fehlerhaften Anwendung: C:\WINDOWS\Explorer.EXE
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\SHELL32.dll
Berichtskennung: d432e6d6-fab6-4299-9723-5a26aed5deef
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2020 12:50:25 PM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: Explorer.EXE
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: Ausnahmecode c0000005, Ausnahmeadresse 00007FFD684CCE8C
Stapel:
Error: (10/17/2020 12:46:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: cavwp.exe, Version: 12.0.0.6818, Zeitstempel: 0x5cb5ac74
Name des fehlerhaften Moduls: cavwp.exe, Version: 12.0.0.6818, Zeitstempel: 0x5cb5ac74
Ausnahmecode: 0xc0000409
Fehleroffset: 0x0000000000051e84
ID des fehlerhaften Prozesses: 0x8ec
Startzeit der fehlerhaften Anwendung: 0x01d6a46c32abe680
Pfad der fehlerhaften Anwendung: C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
Pfad des fehlerhaften Moduls: C:\Program Files\COMODO\COMODO Internet Security\cavwp.exe
Berichtskennung: 28a8b842-493c-40eb-b2f8-1008e3ce9294
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2020 11:51:09 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: SyncPlus.exe, Version: 2.0.23.0, Zeitstempel: 0x5e4a5d52
Name des fehlerhaften Moduls: KERNELBASE.dll, Version: 10.0.19041.572, Zeitstempel: 0x979ddb1d
Ausnahmecode: 0xe0434352
Fehleroffset: 0x00129ab2
ID des fehlerhaften Prozesses: 0x2d04
Startzeit der fehlerhaften Anwendung: 0x01d6a46b083d48cd
Pfad der fehlerhaften Anwendung: C:\Program Files\Telekom\Sync-Plus\x86\SyncPlus.exe
Pfad des fehlerhaften Moduls: C:\WINDOWS\System32\KERNELBASE.dll
Berichtskennung: 2be4b7eb-c201-4cef-b134-8d3154e6b4bd
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (10/17/2020 11:51:08 AM) (Source: .NET Runtime) (EventID: 1026) (User: )
Description: Anwendung: SyncPlus.exe
Frameworkversion: v4.0.30319
Beschreibung: Der Prozess wurde aufgrund einer unbehandelten Ausnahme beendet.
Ausnahmeinformationen: System.Xml.XmlException
bei System.Xml.XmlTextReaderImpl.Throw(System.Exception)
bei System.Xml.XmlTextReaderImpl.Throw(System.String, System.String[])
bei System.Xml.XmlTextReaderImpl.ThrowInvalidChar(Char[], Int32, Int32)
bei System.Xml.XmlTextReaderImpl.ParseRootLevelWhitespace()
bei System.Xml.XmlTextReaderImpl.ParseDocumentContent()
bei System.Xml.XmlTextReaderImpl.Read()
bei System.Xml.XmlReader.MoveToContent()
bei System.Xml.Linq.XElement.Load(System.Xml.XmlReader, System.Xml.Linq.LoadOptions)
bei System.Xml.Linq.XElement.Load(System.String, System.Xml.Linq.LoadOptions)
bei SyncPlus.Configuration.ConfigurationStore.Load()
bei SyncPlus.Configuration.ConfigurationManager.GetConfiguration()
bei SyncPlus.Configuration.ConfigurationManager.get_CalendarSyncEnabled()
bei SyncPlus.Ui.SettingsWindow.AdjustApplyButton()
bei SyncPlus.Ui.TrayGui..ctor()
bei SyncPlus.Ui.TrayGui.Main()
Error: (10/17/2020 11:50:26 AM) (Source: CertEnroll) (EventID: 87) (User: NT-AUTORITÄT)
Description: Fehler bei der SCEP-Zertifikatregistrierung für WORKGROUP\FRANK-CELSIUS$ über https://IFX-KeyId-8ffd47880e239a3a3a20de13edf101e882a9d21d.microsoftaik.azure.net/templates/Aik/scep:
SubmitDone
Submit(Request): Bad Request
{"Message":"Attestation statement cannot be verified, rejecting request. TPM firmware needs update."}
HTTP/1.1 400 Bad Request
Date: Sat, 17 Oct 2020 09:50:26 GMT
Content-Length: 101
Content-Type: application/json; charset=utf-8
X-Content-Type-Options: nosniff
Strict-Transport-Security: max-age=31536000;includeSubDomains
x-ms-request-id: c0b32edd-aac0-47dd-b101-329a6ce771b6
Methode: POST(4562ms)
Phase: SubmitDone
Ungültige Anforderung (400). 0x80190190 (-2145844848 HTTP_E_STATUS_BAD_REQUEST)
Error: (10/17/2020 09:19:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: mbamtray.exe, Version: 4.0.0.814, Zeitstempel: 0x5f7e3e2e
Name des fehlerhaften Moduls: Qt5Core.dll, Version: 5.14.1.0, Zeitstempel: 0x5e8272e4
Ausnahmecode: 0xc0000005
Fehleroffset: 0x0000000000219d05
ID des fehlerhaften Prozesses: 0x20f8
Startzeit der fehlerhaften Anwendung: 0x01d6a4059746a85d
Pfad der fehlerhaften Anwendung: C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
Pfad des fehlerhaften Moduls: C:\Program Files\Malwarebytes\Anti-Malware\Qt5Core.dll
Berichtskennung: 7afbaaa0-548b-45fe-be86-9c1cfd53e0da
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Systemfehler:
=============
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Intel(R) Dynamic Application Loader Host Interface Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Windows Presentation Foundation-Schriftartcache 3.0.0.0" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Microsoft Office-Klick-und-Los-Dienst" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 0 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "DbxSvc" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 5000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Message Queuing" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 120000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Dienst "Adobe Genuine Software Integrity Service" wurde unerwartet beendet. Dies ist bereits 1 Mal passiert.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Security Center Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (10/17/2020 12:35:34 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "Spybot-S&D 2 Updating Service" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 60000 Millisekunden durchgeführt: Neustart des Diensts.
Windows Defender:
===================================
Date: 2020-10-08 07:26:09.1190000Z
Description:
Bei Microsoft Defender Antivirus ist ein Fehler beim Aktualisieren der Sicherheitsinformationen aufgetreten.
Neue Version der Sicherheitsinformationen:
%Vorherige Version der Sicherheitsinformationen: 1.321.1860.0
Update Source: Microsoft Update-Server
Sicherheitstyp: AntiVirus
Updatetyp: Voll
Benutzer: NT-AUTORITÄT\SYSTEM
Aktuelle Modulversion:
%Vorherige Modulversion: 1.1.17300.4
Fehlercode: 0x80240017
Fehlerbeschreibung: Unerwartetes Problem bei der Überprüfung auf Updates. Informationen zum Installieren von Updates oder zur Problembehandlung finden Sie unter "Hilfe und Support".
CodeIntegrity:
===================================
Date: 2020-10-17 13:16:00.2450000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 13:15:58.5790000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 13:00:59.9510000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 12:53:30.0470000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 12:53:29.9320000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 12:48:40.4990000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 12:47:08.9940000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
Date: 2020-10-17 12:35:44.9070000Z
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\guard64.dll because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.
==================== Speicherinformationen ===========================
BIOS: FUJITSU // American Megatrends Inc. V5.0.0.9 R1.15.0 for D3348-A1x 07/29/2019
Hauptplatine: FUJITSU D3348-A1
Prozessor: Intel(R) Xeon(R) CPU E5-1620 v3 @ 3.50GHz
Prozentuale Nutzung des RAM: 45%
Installierter physikalischer RAM: 16300.09 MB
Verfügbarer physikalischer RAM: 8846.26 MB
Summe virtueller Speicher: 65452.09 MB
Verfügbarer virtueller Speicher: 55706.74 MB
==================== Laufwerke ================================
Drive c: (System) (Fixed) (Total:463.37 GB) (Free:180.02 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive e: (System-reserviert) (Fixed) (Total:0.1 GB) (Free:0.06 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive f: () (Fixed) (Total:1862.92 GB) (Free:1052.69 GB) NTFS ==>[System mit Startkomponenten (eingeholt von Laufwerk)]
Drive y: (MultiMedia) (Fixed) (Total:5588.9 GB) (Free:1684.73 GB) NTFS
Drive z: (Fotos) (Fixed) (Total:5588.9 GB) (Free:1278.47 GB) NTFS
\\?\Volume{2c4804a4-d7d0-11e4-aab2-806e6f6e6963}\ (WINRE) (Fixed) (Total:2 GB) (Free:0.76 GB) NTFS
\\?\Volume{2c4804a6-d7d0-11e4-aab2-806e6f6e6963}\ (HDBR_OS) (Fixed) (Total:7.47 GB) (Free:0.31 GB) NTFS
\\?\Volume{2c4804a7-d7d0-11e4-aab2-806e6f6e6963}\ (HDBR_DRIVER) (Fixed) (Total:4.09 GB) (Free:0.17 GB) NTFS
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Protective MBR) (Size: 5589 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 5589 GB) (Disk ID: 00000000)
Partition: GPT.
==========================================================
Disk: 2 (MBR Code: Windows 7/8/10) (Size: 1863 GB) (Disk ID: ED4C5177)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=1862.9 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (MBR Code: Windows 7/8/10) (Size: 476.9 GB) (Disk ID: 212CA17E)
Partition 1: (Active) - (Size=2 GB) - (Type=27)
Partition 2: (Not Active) - (Size=474.9 GB) - (Type=0F Extended)
==================== Ende von Addition.txt =======================
|
Lesestoff: