sugus666 | 19.08.2022 13:39 | Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-08-2022
durchgeführt von meier (Administrator) auf LAPTOP-12SPIK00 (Acer Aspire A515-52G) (19-08-2022 13:55:06)
Gestartet von C:\Users\meier\Downloads
Geladene Profile: meier
Plattform: Microsoft Windows 10 Home Version 21H2 19044.1889 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe
(Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe
(C:\Program Files (x86)\ControlCenter4\BrCtrlCntr.exe ->) (Brother Industries, Ltd. -> Brother Industries, Ltd.) C:\Program Files (x86)\ControlCenter4\BrCcUxSys.exe
(C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avp.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avpui.exe
(C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe ->) (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_bg.exe
(C:\Program Files\Logi\LogiBolt\LogiBolt.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logi\LogiBolt\logi_crashpad_handler.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOverlay.exe
(C:\Program Files\Logitech\LogiOptions\LogiOptions.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe
(C:\Program Files\Mozilla Firefox\firefox.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\plugins_nms.exe
(C:\ProgramData\Logishrd\LogiOptions\Software\Current\LogiOptionsMgr.exe ->) (Logitech Inc -> Logitech, Inc.) C:\ProgramData\Logishrd\LogiOptions\Software\Current\laclient\laclient.exe
(C:\Users\meier\AppData\Local\0install.net\implementations\sha256new_WD3YGYK4LPYOCKJVM6RZPW7YM4EANHQMHOGP4GNF64E364NZPYKA\DeepL.exe ->) (DeepL SE -> The CefSharp Authors) C:\Users\meier\AppData\Local\0install.net\implementations\sha256new_WD3YGYK4LPYOCKJVM6RZPW7YM4EANHQMHOGP4GNF64E364NZPYKA\CefSharp.BrowserSubprocess.exe <5>
(DeepL SE -> DeepL SE) C:\Users\meier\AppData\Local\0install.net\implementations\sha256new_WD3YGYK4LPYOCKJVM6RZPW7YM4EANHQMHOGP4GNF64E364NZPYKA\DeepL.exe
(DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxCUIService.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxEM.exe
(explorer.exe ->) (Google LLC -> ) C:\Program Files\Google\Drive File Stream\62.0.1.0\crashpad_handler.exe <4>
(explorer.exe ->) (Logitech Inc -> Logitech) C:\Program Files\Logi\LogiBolt\LogiBolt.exe
(explorer.exe ->) (Logitech Inc -> Logitech, Inc.) C:\Program Files\Logitech\LogiOptions\LogiOptions.exe
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE
(explorer.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\OUTLOOK.EXE
(explorer.exe ->) (Nenad Hrg -> Nenad Hrg (SoftwareOK.com)) C:\Program Files (x86)\Q-Dir\Q-Dir.exe
(explorer.exe ->) (pCloud AG -> pCloud AG) C:\Program Files\pCloud Drive\pCloud.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.132\GoogleCrashHandler64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <52>
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe
(Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PDF Professional 7\PdfPro7Hook.exe
(services.exe ->) (AOMEI International Network Limited -> AOMEI International Network Limited) C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.7.0\ABService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(services.exe ->) (Apple Inc. -> Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(services.exe ->) (Brother Industries, Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(services.exe ->) (geek software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\lms.inf_amd64_fddb643595e0b8d0\LMS.exe
(services.exe ->) (Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\dal.inf_amd64_b5484efd38adbe8d\jhi_service.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\cui_dch.inf_amd64_92cf9d9d84f1d3db\igfxCUIService.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7d6ad0397c5dc3fd\IntelCpHDCPSvc.exe
(services.exe ->) (Intel(R) pGFX -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_7d6ad0397c5dc3fd\IntelCpHeciSvc.exe
(services.exe ->) (Intel(R) Rapid Storage Technology -> Intel Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\iastorac.inf_amd64_14812541c4389768\RstMwService.exe
(services.exe ->) (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avp.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe
(services.exe ->) (Nitro Software, Inc. -> Nitro Software, Inc.) C:\Program Files\Nitro\Reader 5\NitroPDFReaderDriverService5x64.exe
(services.exe ->) (Nuance Communications, Inc. -> Nuance Communications, Inc.) C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_eb200c2ec9861b21\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\WINDOWS\System32\RtkAudUService64.exe <2>
(services.exe ->) (Reason Software Company Inc. -> Reason Software Company Inc.) C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe
(services.exe ->) (Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
(sihost.exe ->) (Acer Incorporated) C:\Program Files\WindowsApps\AcerIncorporated.AcerCollectionS_1.0.3004.0_x64__48frkmn4z8aw4\DesktopApp\ACEStd.exe
(svchost.exe ->) (Acer Incorporated -> ) C:\Program Files (x86)\Acer\Care Center\ACCStd.exe
(svchost.exe ->) (Acer Incorporated -> Acer Incorporated) C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxOutlook.exe
(svchost.exe ->) (Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.14326.20970.0_x64__8wekyb3d8bbwe\HxTsr.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\CastSrv.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\System32\wlanext.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\WINDOWS\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Keine Datei)
HKLM\...\Run: [WSVCUUpdateHelper.exe] => C:\Program Files\Wondershare\Wondershare UniConverter (Deutsch)\WSVCUUpdateHelper.exe [33960 2021-03-23] (Wondershare Technology Co.,Ltd -> )
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [590640 2022-05-03] (geek software GmbH -> geek software GmbH)
HKLM\...\Run: [LogiOptions] => C:\Program Files\Logitech\LogiOptions\LogiOptions.exe [1687616 2022-02-21] (Logitech Inc -> Logitech, Inc.)
HKLM\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [362056 2022-05-05] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [I16A] => C:\WINDOWS\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [94952 2019-03-20] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2976256 2018-01-19] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [ISUSPM] => C:\ProgramData\FLEXnet\Connect\11\\isuspm.exe [2075480 2013-06-24] (Flexera Software LLC -> Flexera Software LLC.)
HKLM-x32\...\Run: [PaperPort PTD] => C:\Program Files (x86)\Nuance\PaperPort\pptd40nt.exe [35648 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [IndexSearch] => C:\Program Files (x86)\Nuance\PaperPort\IndexSearch.exe [17600 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [PDFProHook] => C:\Program Files (x86)\Nuance\PDF Professional 7\pdfpro7hook.exe [641864 2013-03-20] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
HKLM-x32\...\Run: [Wondershare Helper Compact.exe] => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Keine Datei)
HKLM\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.1.0\GoogleDriveFS.exe [51140424 2022-07-28] (Google LLC -> Google, Inc.)
HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.1.0\GoogleDriveFS.exe [51140424 2022-07-28] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Run: [Lync] => C:\Program Files\Microsoft Office\Office16\lync.exe [27139896 2022-02-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Run: [Yammer] => C:\Users\meier\AppData\Local\yammerdesktop\update.exe [1881008 2020-02-10] (Microsoft Corporation -> )
HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Run: [com.squirrel.Teams.Teams] => C:\Users\meier\AppData\Local\Microsoft\Teams\Update.exe [2459304 2022-01-05] (Microsoft 3rd Party Application Component -> Microsoft Corporation)
HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Run: [CiscoMeetingDaemon] => C:\Users\meier\AppData\Local\WebEx\CiscoWebExStart.exe [2355008 2020-10-10] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Run: [Spotify] => C:\Users\meier\AppData\Roaming\Spotify\Spotify.exe [19268536 2022-03-14] (Spotify AB -> Spotify Ltd)
HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.1.0\GoogleDriveFS.exe [51140424 2022-07-28] (Google LLC -> Google, Inc.)
HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Run: [pCloud] => C:\Program Files\pCloud Drive\pCloud.exe [3422264 2021-10-21] (pCloud AG -> pCloud AG)
HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Run: [LogiBolt] => C:\Program Files\Logi\LogiBolt\LogiBolt.exe [22423104 2021-12-14] (Logitech Inc -> Logitech)
HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\62.0.1.0\GoogleDriveFS.exe [51140424 2022-07-28] (Google LLC -> Google, Inc.)
HKLM\...\Print\Monitors\Nitro PDF Port Monitor: C:\Windows\system32\nitrolocalmon10.dll [31904 2016-08-02] (Nitro Software, Inc. -> Nitro Software, Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\104.0.5112.82\Installer\chrmstp.exe [2022-08-17] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\104.1.42.97\Installer\chrmstp.exe [2022-08-18] (Brave Software, Inc. -> Brave Software, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2021-11-22]
Startup: C:\Users\meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2022-08-18]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2021-11-22]
Startup: C:\Users\meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DeepL auto-start.lnk [2022-06-30]
ShortcutTarget: DeepL auto-start.lnk -> C:\Users\meier\AppData\Roaming\0install.net\desktop-integration\stubs\1eae01f3cdb5ff0ecf683b15a60a1489573c1188cb34abc205fcf7a924b4e54d\auto-start.exe () [Datei ist nicht signiert]
Startup: C:\Users\meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\myCloud Desktop Notification.lnk [2021-11-14]
ShortcutTarget: myCloud Desktop Notification.lnk -> C:\Users\meier\AppData\Local\myCloud Desktop\app\desktopnotification\DesktopClientNotification.net4.exe () [Datei ist nicht signiert]
Startup: C:\Users\meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\myCloud Desktop.lnk [2021-11-14]
ShortcutTarget: myCloud Desktop.lnk -> C:\Users\meier\AppData\Local\myCloud Desktop\myCloud Desktop.exe (Swisscom (Schweiz) AG -> )
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {002E50AD-C44A-4AE8-BDCD-4BFF3339B0B5} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {017519CC-DCA8-41B5-8246-82A89033E0A9} - System32\Tasks\AcerCMUpdateTask2.1.16258 => C:\Program Files (x86)\Acer\Amundsen\2.1.16258\AWC.exe [152880 2016-09-20] (Acer Incorporated -> )
Task: {01CB5361-0AD4-415A-9A19-66A0948F32A7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [982464 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {057EF0ED-DD2B-4C8C-9044-E742FA5220D9} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {063D3182-107F-426D-913D-DA5BD2C84345} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0AA9337E-94A9-4DC7-A3F9-564299115CDB} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {13C4A7AC-55EF-4E08-9D12-C263141F2E8A} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {152EA077-9F15-47A8-AB97-215FDF7DA926} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {18729258-A640-4247-8930-B95682869AB4} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {22168499-8914-4107-83C1-D974DA402839} - System32\Tasks\ACCAgent => C:\Program Files (x86)\Acer\Care Center\LiveUpdateAgent.exe [41264 2018-07-27] (Acer Incorporated -> )
Task: {3336B70E-A40F-4F7F-8A7E-5555265ED564} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {3BB3B596-66AA-4E53-B9BA-D450C63B7D80} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [617096 2022-02-25] (Apple Inc. -> Apple Inc.)
Task: {41D64BB5-DF52-4A7F-BEFC-435141E9C5C5} - System32\Tasks\ACCBackgroundApplication => C:\Program Files (x86)\Acer\Care Center\ACCStd.exe [4761392 2018-07-27] (Acer Incorporated -> )
Task: {45A6C436-5124-4A1F-BC40-815035B9F12B} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [934848 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {4BE53205-FB17-4965-8BDB-103BB254EB4B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {565CDBA5-9D90-4CF6-AF13-68EA3E54827A} - System32\Tasks\Software Update Application => C:\ProgramData\OEM\UpgradeTool\ListCheck.exe [473904 2018-06-13] (Acer Incorporated -> Acer Incorporated)
Task: {61A4DD66-CCD6-4805-90DC-435E12FE5386} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-24] (Google Inc -> Google LLC)
Task: {630C6FBF-3D6C-4308-B929-1B7D1052F7F4} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe do-task "308046B0AF4A39CB"
Task: {67E2FB37-BDA1-46A9-B38E-02DE0EFAF36A} - System32\Tasks\UEIPInvitation => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UEIPOOBECheck.exe [2211120 2018-06-28] (Acer Incorporated -> Acer Incorporated)
Task: {691C426B-6859-43DA-8F8B-68C2BFCFCAF4} - System32\Tasks\RtkAudUService64_BG => C:\Windows\system32\RtkAudUService64.exe [834032 2019-02-14] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {6C26FB74-B624-419B-93E6-67D4BCD37459} - System32\Tasks\Opera scheduled Autoupdate 1606155045 => C:\Users\meier\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Keine Datei)
Task: {6E517F39-4006-4C33-AFCE-E0AA069AA32A} - System32\Tasks\Optimize Push Notification Data File-S-1-5-21-2746437502-696071400-2433428216-1001 => {201600D8-6EFF-48CE-B842-E14D37A0682D} C:\WINDOWS\System32\wpninprc.dll [24064 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
Task: {722D447C-AA0D-4D22-8CA5-12DBA0EEC8EB} - System32\Tasks\Opera scheduled assistant Autoupdate 1650970291 => C:\Users\meier\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\meier\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {748DFD64-0830-428E-8971-16ED6DEB3467} - System32\Tasks\ACC => C:\Program Files (x86)\Acer\Care Center\LiveUpdateChecker.exe [2920240 2018-07-27] (Acer Incorporated -> )
Task: {7BFE5716-DBF1-4316-81A3-9D8310078BEE} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\meier\Downloads\ESETOnlineScanner_DEU.exe LOGON (Keine Datei)
Task: {800113D1-E611-439A-A0D6-17936E3070D5} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MpCmdRun.exe [993008 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {82408224-FE13-4B97-8592-75AC719DCB66} - System32\Tasks\Quick Access => C:\Program Files\Acer\Quick Access Service\QALauncher.exe [447280 2018-06-13] (Acer Incorporated -> Acer Incorporated)
Task: {84685A33-C033-45F0-9641-16CEA75D9A2A} - System32\Tasks\Microsoft\Windows\Management\Autopilot\RemediateHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [192000 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
Task: {97F84C59-C4BB-4C58-ADAF-0DF2AF4AA960} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154920 2019-07-24] (Google Inc -> Google LLC)
Task: {98012235-D55C-438C-A42A-B3286E81F58A} - System32\Tasks\Opera scheduled Autoupdate 1650970285 => C:\Users\meier\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Keine Datei)
Task: {9F420038-C4B4-45CE-99FB-013D59A44DBE} - System32\Tasks\G2MUpdateTask-S-1-5-21-2746437502-696071400-2433428216-1001 => C:\Users\meier\AppData\Local\GoToMeeting\19950\g2mupdate.exe [33456 2022-04-23] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {9F9DEE5F-0E83-47E7-9785-45CD767E7F8B} - System32\Tasks\Opera scheduled assistant Autoupdate 1617719137 => C:\Users\meier\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\meier\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {ADCEEB71-B0D4-4341-BE85-74909805E7C6} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {B95B56B6-F3A7-4095-B4AE-C2E11AD4864D} - System32\Tasks\Power Button => C:\Program Files\Acer\Quick Access Service\ePowerButton_NB.exe [2770736 2018-06-13] (Acer Incorporated -> Acer Incorporated)
Task: {BAC11E7F-BC65-436D-BECF-C3D7A51710EF} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [857024 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C174AF42-F0AE-42AD-B009-0FD740B19FC2} - System32\Tasks\G2MUploadTask-S-1-5-21-2746437502-696071400-2433428216-1001 => C:\Users\meier\AppData\Local\GoToMeeting\19950\g2mupload.exe [33456 2022-04-23] (LogMeIn, Inc. -> LogMeIn, Inc.)
Task: {C22A5720-1B46-4B50-AD9B-7B8FDB397BCD} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-22] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {C4794A68-8135-4463-88A1-483EADA45DEF} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2746437502-696071400-2433428216-1001UA => C:\Users\meier\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler (Keine Datei)
Task: {CBDA8CA6-60E9-4059-9010-7A56AD57B4DC} - System32\Tasks\Opera scheduled Autoupdate 1617719121 => C:\Users\meier\AppData\Local\Programs\Opera\launcher.exe --scheduledautoupdate $(Arg0) (Keine Datei)
Task: {CD3A2A43-3064-456B-8897-E75EE542625C} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-22] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {CEE09FC6-7387-4686-90A4-6C40F9D4BC89} - System32\Tasks\Microsoft\Windows\Management\Autopilot\DetectHardwareChange => {62B2DD2C-F129-42EE-BF59-55D3FD21C215} C:\WINDOWS\System32\Autopilot.dll [192000 2022-08-10] (Microsoft Windows -> Microsoft Corporation)
Task: {D4BF4BC1-492B-4497-A577-0961D9D014F3} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {E4FA3553-F2B7-4295-8BB6-44500E41C801} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [654784 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E615733C-D27A-487B-8C77-CE4B0469ECC6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2746437502-696071400-2433428216-1001Core => C:\Users\meier\AppData\Local\Google\Update\GoogleUpdate.exe /c (Keine Datei)
Task: {EA04EFFC-CE00-42D3-960D-D4928BBFB2CF} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\meier\Downloads\ESETOnlineScanner_DEU.exe SCHED (Keine Datei)
Task: {ECB428E2-E84A-4823-BD79-B44212821E92} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [764352 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {ED4BF68F-04A5-4B14-BE86-89B4B77B6E9E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3297728 2018-05-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {FE433893-8063-4232-B52A-94D52D691784} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program Service\Framework\TriggerFramework.exe [268080 2018-06-28] (Acer Incorporated -> Acer Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\G2MUpdateTask-S-1-5-21-2746437502-696071400-2433428216-1001.job => C:\Users\meier\AppData\Local\GoToMeeting\19950\g2mupdate.exe
Task: C:\WINDOWS\Tasks\G2MUploadTask-S-1-5-21-2746437502-696071400-2433428216-1001.job => C:\Users\meier\AppData\Local\GoToMeeting\19950\g2mupload.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{76d2575e-30a3-40ec-85b1-fe77d5f43ca1}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{94823c9b-afdf-4e9e-b8d3-0a082f3a4413}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{af57f983-60df-4910-ba1c-c3f854ff1575}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{c8ef00c7-2ea4-486b-a709-d0b7385b6a58}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{d2d9b42b-60c8-4137-9f4c-0edeae99bf05}: [DhcpNameServer] 192.168.1.1
Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge DefaultProfile: Default
Edge Profile: C:\Users\meier\AppData\Local\Microsoft\Edge\User Data\Default [2022-07-28]
Edge Extension: (Kaspersky Protection) - C:\Users\meier\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-05-27]
Edge HKU\S-1-5-21-2746437502-696071400-2433428216-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm]
Edge HKLM-x32\...\Edge\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
FireFox:
========
FF DefaultProfile: vhxm3g7q.MarcelM-1572631257111
FF ProfilePath: C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087 [2022-08-19]
FF Homepage: Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087 -> hxxps://www.google.com/webhp?client=firefox-b-d
FF Extension: (Firefox Multi-Account Containers) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\@testpilot-containers.xpi [2022-08-18]
FF Extension: (German Dictionary, extended for Austria) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\de-AT@dictionaries.addons.mozilla.org.xpi [2022-08-18]
FF Extension: (German Dictionary (Switzerland)) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\de-CH@dictionaries.addons.mozilla.org.xpi [2022-08-18]
FF Extension: (German Dictionary) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\de-DE@dictionaries.addons.mozilla.org.xpi [2022-08-18]
FF Extension: (Tab duplizieren Tastenkombination) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\duplicate-tab-hotkey@tynn.addons.mozilla.org.xpi [2022-08-18]
FF Extension: (Pinned Google Drive) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\gdrivepanel@alejandrobrizuela.com.ar.xpi [2022-08-18]
FF Extension: (To Google Translate) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\jid1-93WyvpgvxzGATw@jetpack.xpi [2022-08-18]
FF Extension: („Merken“-Button von Pinterest) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\jid1-YcMV6ngYmQRA2w@jetpack.xpi [2022-08-18]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\langpack-de@firefox.mozilla.org.xpi [2022-08-18]
FF Extension: (Kaspersky Protection) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com.xpi [2022-08-18]
FF Extension: (Tab Session Manager) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\Tab-Session-Manager@sienori.xpi [2022-08-18]
FF Extension: (Tree Style Tab) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\treestyletab@piro.sakura.ne.jp.xpi [2022-08-18]
FF Extension: (Pinned WhatsApp Web) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\whatsapppanel@alejandrobrizuela.com.ar.xpi [2022-08-18]
FF Extension: (Worldwide Radio) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\worldwide@radio.xpi [2022-08-18]
FF Extension: (Startpage.com — Datenschutz-Suchmaschine) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\{20fc2e06-e3e4-4b2b-812b-ab431220cada}.xpi [2022-08-18]
FF Extension: (Total Adblock - Ad Blocker) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\{ae283ad9-d906-495c-8a6d-80cb47cdafe4}.xpi [2022-08-18]
FF Extension: (Universum_09) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\3frjjtd6.default-release-1660808371087\Extensions\{e12a4cd3-10c2-4e95-a004-d379c2fd7bc6}.xpi [2022-08-18]
FF ProfilePath: C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111 [2021-07-05]
FF Homepage: Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111 -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=CH180901FF&iDate=2021-04-06 02:24:50&bName=
FF NewTab: Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111 -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=CH180901FF&iDate=2021-04-06 02:24:50&bName=
FF Notifications: Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111 -> hxxps://web.whatsapp.com; hxxps://bdsmlr.com
FF Extension: (Firefox Multi-Account Containers) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\Extensions\@testpilot-containers.xpi [2019-01-30]
FF Extension: (Tab duplizieren Tastenkombination) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\Extensions\duplicate-tab-hotkey@tynn.addons.mozilla.org.xpi [2018-11-12]
FF Extension: (Pinned Google Drive) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\Extensions\gdrivepanel@alejandrobrizuela.com.ar.xpi [2018-11-12]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\Extensions\langpack-de@firefox.mozilla.org.xpi [2019-01-31]
FF Extension: (Tab Session Manager) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\Extensions\Tab-Session-Manager@sienori.xpi [2019-02-10]
FF Extension: (Pinned WhatsApp Web) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\Extensions\whatsapppanel@alejandrobrizuela.com.ar.xpi [2018-11-12]
FF Extension: (Session Manager) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\Extensions\{1280606b-2510-4fe0-97ef-9b5a22eafe30}.xpi [2018-11-12] []
FF SearchPlugin: C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\searchplugins\My Bing Search.xml [2021-07-05]
FF ProfilePath: C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\7p7m8000.default [2022-03-22]
FF Homepage: Mozilla\Firefox\Profiles\7p7m8000.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=CH180901FF&iDate=2021-04-06 02:24:50&bName=
FF NewTab: Mozilla\Firefox\Profiles\7p7m8000.default -> hxxps://mysearchengine.co/homepage?hp=1&bitmask=9996&pId=CH180901FF&iDate=2021-04-06 02:24:50&bName=
FF Extension: (Amazon Assistant for Firefox) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\7p7m8000.default\Extensions\abb-acer@amazon.com [2019-02-14] [hxxps://s3-us-west-2.amazonaws.com/ubp-ubpextension-us-prod/vendor-update/firefox/acer1/updates.json]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\7p7m8000.default\Extensions\langpack-de@firefox.mozilla.org [2019-02-14]
FF SearchPlugin: C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\7p7m8000.default\searchplugins\My Bing Search.xml [2021-07-05]
FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\FFExt\light_plugin_firefox\addon.xpi => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [helper-sig@savefrom.net] - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\extensions\staged\helper-sig@savefrom.net.xpi
FF Extension: (SaveFrom.net Helfer) - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\extensions\staged\helper-sig@savefrom.net.xpi [2020-01-14] [UpdateUrl:hxxps://download.sf-helper.com/mozilla/updates.json]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\FFExt\light_plugin_firefox\addon.xpi => nicht gefunden
FF HKU\S-1-5-21-2746437502-696071400-2433428216-1001\...\Firefox\Extensions: [helper-sig@savefrom.net] - C:\Users\meier\AppData\Roaming\Mozilla\Firefox\Profiles\vhxm3g7q.MarcelM-1572631257111\extensions\staged\helper-sig@savefrom.net.xpi
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-01-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nitropdf.com/NitroPDF -> C:\Program Files (x86)\Nitro\Reader 5\npnitromozilla.dll [2016-08-02] (Nitro Software, Inc. -> Nitro PDF)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Professional 7\bin\nppdf.dll [2011-07-15] (Zeon Corporation -> Zeon Corporation)
FF Plugin HKU\S-1-5-21-2746437502-696071400-2433428216-1001: LWAPlugin15.8 -> C:\Users\meier\AppData\Roaming\Mozilla\Plugins\npLWAPlugin15.8.dll [2013-03-13] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Users\meier\AppData\Roaming\mozilla\plugins\npLWAPlugin15.8.dll [2019-05-10]
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-03-17] <==== ACHTUNG (Zeigt auf eine *.cfg Datei)
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\defaults\pref\kl_prefs_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.js [2019-02-15] <==== ACHTUNG (Zeigt auf eine *.cfg Datei)
FF ExtraCheck: C:\Program Files\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-03-17] <==== ACHTUNG
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\kl_config_62fbb8f7_c917_4cf7_957a_aad2b8fa768c.cfg [2019-02-15] <==== ACHTUNG
Chrome:
=======
CHR Profile: C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default [2022-04-26]
CHR StartupUrls: Default -> "hxxps://www.google.com/"
CHR Extension: (Präsentationen) - C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2022-02-05]
CHR Extension: (Kaspersky Protection) - C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-02-05]
CHR Extension: (Docs) - C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2022-02-05]
CHR Extension: (Google Drive) - C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2022-02-05]
CHR Extension: (YouTube) - C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2022-02-05]
CHR Extension: (Tabellen) - C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2022-02-05]
CHR Extension: (Google Docs Offline) - C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2022-02-05]
CHR Extension: (Malwarebytes Browser Guard) - C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-02-05]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2022-02-05]
CHR Extension: (Google Mail) - C:\Users\meier\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2022-02-05]
CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKU\S-1-5-21-2746437502-696071400-2433428216-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]
Brave:
=======
BRA DefaultProfile: Default
BRA Profile: C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2022-04-15]
BRA DefaultSearchURL: Default -> hxxps://search.brave.com/search?q={searchTerms}&source=desktop
BRA DefaultSearchKeyword: Default -> :br
BRA DefaultSuggestURL: Default -> hxxps://search.brave.com/api/suggest?q={searchTerms}
BRA Extension: (Kaspersky Protection) - C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2022-03-22]
BRA Extension: (Malwarebytes Browser Guard) - C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\ihcjicgdanjaechkgeegckofjjedodee [2022-03-22]
BRA Profile: C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\Guest Profile [2022-03-22]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2022-03-22]
BRA Extension: (Brave NTP background images) - C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2022-03-22]
BRA Extension: (Wallet Data Files Updater) - C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\BraveWallet [2022-03-22]
BRA Extension: (Brave Ad Block Updater (Default)) - C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\cffkpbalmllkdoenhmdmpbkajipdjfam [2022-03-22]
BRA Extension: (Brave NTP sponsored images) - C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\ejhkplcmfikggnbclnmlknehecbgkpoc [2022-04-15]
BRA Extension: (Brave Ad Block Updater (EasyList Germany)) - C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\faknfgalcghekhfggcdikddilkpjbonh [2022-03-22]
BRA Extension: (Brave SpeedReader Updater) - C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\jicbkmdloagakknpihibphagfckhjdih [2022-03-22]
BRA Extension: (Brave HTTPS Everywhere Updater) - C:\Users\meier\AppData\Local\BraveSoftware\Brave-Browser\User Data\oofiananboodjbbmdelgdommihjbkfag [2022-03-22]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S4 ACCSvc; C:\Program Files (x86)\Acer\Care Center\ACCSvc.exe [301872 2018-07-27] (Acer Incorporated -> Acer Incorporated)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [100424 2022-05-02] (Apple Inc. -> Apple Inc.)
R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\avp.exe [184768 2021-06-15] (Kaspersky Lab JSC -> AO Kaspersky Lab)
R2 Backupper Service; C:\Program Files (x86)\AOMEI\AOMEI Backupper\6.7.0\ABService.exe [1080368 2021-10-29] (AOMEI International Network Limited -> AOMEI International Network Limited)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-22] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [162968 2022-03-22] (Brave Software, Inc. -> BraveSoftware Inc.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [314368 2018-01-18] (Brother Industries, Ltd.) [Datei ist nicht signiert]
S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab)
S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [354008 2019-02-08] (Kaspersky Lab -> AO Kaspersky Lab)
R2 NitroReaderDriverReadSpool5; C:\Program Files\Nitro\Reader 5\NitroPDFReaderDriverService5x64.exe [327328 2016-08-02] (Nitro Software, Inc. -> Nitro Software, Inc.)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [590640 2022-05-03] (geek software GmbH -> geek software GmbH)
R2 PDFProFiltSrvPP; C:\Program Files (x86)\Nuance\PaperPort\PDFProFiltSrvPP.exe [77336 2015-01-19] (Nuance Communications, Inc. -> Nuance Communications, Inc.)
S4 QALSvc; C:\Program Files\Acer\Quick Access Service\QALSvc.exe [465712 2018-06-13] (Acer Incorporated -> Acer Incorporated)
S4 QASvc; C:\Program Files\Acer\Quick Access Service\QASvc.exe [511792 2018-06-14] (Acer Incorporated -> Acer Incorporated)
S4 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program Service\Framework\UBTService.exe [304944 2018-06-28] (Acer Incorporated -> Acer Incorporated)
R2 unchecky; C:\Program Files (x86)\Unchecky\bin\unchecky_svc.exe [297240 2019-08-10] (Reason Software Company Inc. -> Reason Software Company Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\NisSrv.exe [3120992 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2205.7-0\MsMpEng.exe [133544 2022-06-23] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
S3 BraveElevationService; "C:\Program Files\BraveSoftware\Brave-Browser\Application\104.1.42.97\elevation_service.exe" [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_eb200c2ec9861b21\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvacegpu.inf_amd64_eb200c2ec9861b21\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AcerAirplaneModeController; C:\WINDOWS\System32\drivers\AcerAirplaneModeController.sys [30168 2020-05-12] (Acer Incorporated -> Acer Incorporated)
R0 ambakdrv; C:\WINDOWS\System32\ambakdrv.sys [51120 2019-05-14] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 ammntdrv; C:\WINDOWS\system32\ammntdrv.sys [171952 2016-12-21] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 amwrtdrv; C:\WINDOWS\system32\amwrtdrv.sys [32176 2021-11-11] (AOMEI International Network Limited -> )
R3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\WINDOWS\System32\drivers\bthhfenum.sys [144896 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
R1 cbfs20; C:\WINDOWS\System32\drivers\cbfs20.sys [437800 2021-09-08] (Microsoft Windows Hardware Compatibility Publisher -> Callback Technologies, Inc. - www.callback.com)
R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [237288 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 dlcdcncm; C:\WINDOWS\System32\drivers\dlcdcncm62_x64.sys [90344 2020-04-28] (DISPLAYLINK (UK) LIMITED -> DisplayLink Corp.)
S3 dlusbaudio; C:\WINDOWS\System32\drivers\dlusbaudio_x64.sys [238320 2017-05-29] (DISPLAYLINK -> DisplayLink Corp.)
R1 googledrivefs3758; C:\WINDOWS\System32\DRIVERS\googledrivefs3758.sys [384584 2022-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Google, Inc.)
R1 klbackupdisk; C:\WINDOWS\system32\DRIVERS\klbackupdisk.sys [105280 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [206600 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [119568 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab)
R1 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [522504 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [703056 2022-06-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klhk; C:\WINDOWS\System32\drivers\klhk.sys [1582640 2022-07-05] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [273176 2021-08-16] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [1049864 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [90896 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [104728 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [107328 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [78088 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [88328 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [376920 2022-06-23] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [357136 2022-06-23] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [187200 2022-06-23] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [270752 2022-07-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [150280 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [325400 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [294680 2022-02-15] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab)
R3 MpKsl53f0bf2e; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0F1212F8-4E12-4E11-8C13-0B4F9D459541}\MpKslDrv.sys [141576 2022-08-19] (Microsoft Windows -> Microsoft Corporation)
R3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2018-08-16] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-08-22] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
R1 veracrypt; C:\WINDOWS\System32\drivers\veracrypt.sys [829320 2019-02-15] (IDRIX -> IDRIX)
S0 WdBoot; C:\WINDOWS\System32\drivers\wd\WdBoot.sys [49576 2022-06-23] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\wd\WdFilter.sys [452856 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [91384 2022-06-23] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Drei Monate (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-08-19 13:55 - 2022-08-19 13:55 - 000055181 _____ C:\Users\meier\Downloads\FRST.txt
2022-08-19 13:53 - 2022-08-19 13:55 - 000000000 ____D C:\FRST
2022-08-19 13:53 - 2022-08-19 13:53 - 002371072 _____ (Farbar) C:\Users\meier\Downloads\FRST64.exe
2022-08-19 13:53 - 2022-08-19 13:53 - 000000000 ____D C:\Users\meier\Downloads\FRST-OlderVersion
2022-08-19 13:02 - 2022-08-19 13:02 - 007873568 _____ (UrsaMinor Ltd.) C:\Users\meier\Downloads\Install_CopyTransControlCenter(1).exe
2022-08-19 13:02 - 2022-08-19 13:02 - 000000000 ____D C:\Users\meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CopyTrans Control Center
2022-08-19 13:01 - 2022-08-19 13:01 - 007873568 _____ (UrsaMinor Ltd.) C:\Users\meier\Downloads\Install_CopyTransControlCenter.exe
2022-08-19 08:34 - 2022-08-19 08:34 - 005440122 _____ C:\Users\meier\Downloads\DMO+Gesamt_20220819_DE.pdf
2022-08-18 18:33 - 2022-08-18 18:33 - 000007177 _____ C:\Users\meier\Downloads\A.json
2022-08-18 17:02 - 2022-08-18 17:02 - 000001780 _____ C:\Users\Public\Desktop\iTunes.lnk
2022-08-18 17:02 - 2022-08-18 17:02 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2022-08-18 17:02 - 2022-08-18 17:02 - 000000000 ____D C:\Program Files\iTunes
2022-08-18 14:21 - 2022-08-18 14:21 - 199436776 _____ (Apple Inc.) C:\Users\meier\Downloads\iTunes64Setup.exe
2022-08-17 17:58 - 2022-08-17 17:58 - 000156269 _____ C:\Users\meier\Downloads\FileServlet(3).pdf
2022-08-17 17:55 - 2022-08-17 17:55 - 000156319 _____ C:\Users\meier\Downloads\FileServlet(2).pdf
2022-08-17 15:32 - 2022-08-17 15:32 - 000061988 _____ C:\Users\meier\Downloads\2101821175_08_2022.pdf
2022-08-17 15:29 - 2022-08-17 15:29 - 000174898 _____ C:\Users\meier\Downloads\2101746970_08_2022.pdf
2022-08-17 09:37 - 2022-08-17 09:37 - 002662429 _____ C:\Users\meier\Downloads\Bergsprint_22_Uebersichtsplan.pdf
2022-08-17 09:36 - 2022-08-17 09:36 - 000107643 _____ C:\Users\meier\Downloads\Bergsprint_22_Magazin_Programm.pdf
2022-08-16 15:21 - 2022-08-16 15:21 - 000052546 _____ C:\Users\meier\Downloads\BETRAUSK-20220816-SalesManagementGroupGmbH.pdf
2022-08-16 15:14 - 2022-08-16 15:14 - 000052041 _____ C:\Users\meier\Downloads\BETRAUSK-20220816-ImpulsImpactGmbH.pdf
2022-08-16 10:46 - 2022-08-16 10:46 - 000078209 _____ C:\Users\meier\Downloads\Key Information Document DE000LX004A1 de.pdf
2022-08-16 09:56 - 2022-08-16 09:56 - 005730222 _____ C:\Users\meier\Downloads\DMO+Gesamt_20220816_DE.pdf
2022-08-15 18:42 - 2022-08-15 18:42 - 000179274 _____ C:\Users\meier\Downloads\FileServlet(1).pdf
2022-08-15 18:37 - 2022-08-15 18:37 - 000493168 _____ C:\Users\meier\Downloads\FileServlet.pdf
2022-08-15 09:47 - 2022-08-15 09:47 - 005220597 _____ C:\Users\meier\Downloads\DMO+Gesamt_20220815_DE.pdf
2022-08-12 16:10 - 2022-08-12 16:10 - 000157949 _____ C:\Users\meier\Downloads\Key Information Document IE00BLRPRK35 de.pdf
2022-08-12 09:01 - 2022-08-12 09:01 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2022-08-11 07:52 - 2022-08-12 09:00 - 000000000 ____D C:\Program Files\Mozilla Firefox
2022-08-10 20:02 - 2022-08-10 20:02 - 000581120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2022-08-10 20:02 - 2022-08-10 20:02 - 000499200 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2022-08-10 20:02 - 2022-08-10 20:02 - 000011803 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2022-08-10 20:01 - 2022-08-10 20:01 - 000288768 _____ C:\WINDOWS\system32\Windows.Management.InprocObjects.dll
2022-08-10 20:01 - 2022-08-10 20:01 - 000162304 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2022-08-10 20:01 - 2022-08-10 20:01 - 000089088 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.proxystub.dll
2022-08-10 20:01 - 2022-08-10 20:01 - 000073216 _____ C:\WINDOWS\system32\windows.applicationmodel.conversationalagent.internal.proxystub.dll
2022-08-10 20:01 - 2022-08-10 20:01 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2022-08-10 19:53 - 2022-08-10 19:53 - 000000000 ___HD C:\$WinREAgent
2022-08-09 15:49 - 2022-08-09 15:49 - 000002100 _____ C:\Users\Public\Desktop\eTax.zug 2021 jP.lnk
2022-08-08 18:38 - 2022-08-08 18:38 - 001399564 _____ C:\Users\meier\Downloads\QES+Invite_DE.pdf
2022-08-08 17:55 - 2022-08-08 17:55 - 000535426 _____ C:\Users\meier\Downloads\GlobalBlue_Versand_25.7.22_signiert.pdf
2022-08-08 17:37 - 2022-08-08 17:37 - 000140090 _____ C:\Users\meier\Downloads\Willkommen bei Skribble_signiert.pdf
2022-08-07 17:05 - 2022-08-07 17:05 - 000125805 _____ C:\Users\meier\Downloads\Key Information Document DE000DA0AAS6 de.pdf
2022-08-06 16:11 - 2022-08-06 16:12 - 000000000 ____D C:\Users\meier\fxprops
2022-08-06 16:11 - 2022-08-06 16:11 - 000002193 _____ C:\Users\Public\Desktop\Advanced Trader DEMO.lnk
2022-08-06 16:11 - 2022-08-06 16:11 - 000000000 ____D C:\Users\meier\AppData\Local\sq
2022-08-06 16:11 - 2022-08-06 16:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Swissquote
2022-08-06 16:11 - 2022-08-06 16:11 - 000000000 ____D C:\Program Files\Swissquote Bank SA
2022-08-06 14:47 - 2022-08-06 14:47 - 000482231 _____ C:\Users\meier\Downloads\69832498_00_2020_05_Nachzahlung-KAE.pdf
2022-08-01 18:32 - 2022-08-01 18:32 - 000376889 _____ C:\Users\meier\Downloads\Narzissmus – Es dreht sich alles um das Ich.pdf
2022-08-01 18:31 - 2022-08-01 18:31 - 000350115 _____ C:\Users\meier\Downloads\Narzissmus.pdf
2022-07-30 08:05 - 2022-07-30 08:05 - 004319705 _____ C:\Users\meier\Downloads\pctipp_0822_58-62_Monitore.pdf
2022-07-26 15:20 - 2022-07-26 15:20 - 002339786 _____ C:\Users\meier\Downloads\pctipp_0622_12-15_YouTube.pdf
2022-07-24 12:37 - 2022-07-24 12:37 - 000491113 _____ C:\Users\meier\Downloads\SV_FormIns_A4_131120(1).pdf
2022-07-24 12:35 - 2022-07-24 12:35 - 000491113 _____ C:\Users\meier\Downloads\SV_FormIns_A4_131120.pdf
2022-07-24 12:20 - 2022-07-24 12:20 - 000598533 _____ C:\Users\meier\Downloads\Nutzungsbedingungen_TopCard_de.pdf
2022-07-18 09:27 - 2022-07-18 09:27 - 000618329 _____ C:\Users\meier\Downloads\Firefox sichern, umziehen und entrümpeln - pctipp.ch.pdf
2022-07-15 15:27 - 2018-08-20 21:08 - 000001400 _____ C:\WINDOWS\system32\Drivers\configuration.tf
2022-07-15 15:10 - 2022-07-15 15:10 - 000000000 ____D C:\WINDOWS\Firmware
2022-07-15 15:09 - 2019-02-14 02:43 - 001126552 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtCOM64.dll
2022-07-15 15:09 - 2019-02-14 02:43 - 000482104 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtDataProc64.dll
2022-07-15 15:09 - 2019-02-14 02:42 - 000821032 _____ (Realtek Semiconductor Corp.) C:\WINDOWS\system32\RtkApi64U.dll
2022-07-15 15:09 - 2019-02-14 01:32 - 026858668 _____ C:\WINDOWS\system32\Drivers\RTAIODAT.DAT
2022-07-15 15:09 - 2018-10-16 22:57 - 000131744 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\iaLPSS2_GPIO2.sys
2022-07-15 13:44 - 2022-07-15 13:44 - 002260480 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2022-07-15 13:44 - 2022-07-15 13:44 - 000693248 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2022-07-15 13:44 - 2022-07-15 13:44 - 000640512 _____ C:\WINDOWS\system32\SettingSyncDownloadHelper.dll
2022-07-15 13:44 - 2022-07-15 13:44 - 000530944 _____ (curl, hxxps://curl.se/) C:\WINDOWS\system32\curl.exe
2022-07-15 13:44 - 2022-07-15 13:44 - 000470528 _____ (curl, hxxps://curl.se/) C:\WINDOWS\SysWOW64\curl.exe
2022-07-15 13:44 - 2022-07-15 13:44 - 000270848 _____ C:\WINDOWS\system32\EsclScan.dll
2022-07-15 13:44 - 2022-07-15 13:44 - 000152064 _____ C:\WINDOWS\system32\EsclProtocol.dll
2022-07-15 13:44 - 2022-07-15 13:44 - 000061952 _____ C:\WINDOWS\system32\printticketvalidation.dll
2022-07-15 13:44 - 2022-07-15 13:44 - 000057344 _____ C:\WINDOWS\system32\APMonUI.dll
2022-07-15 13:44 - 2022-07-15 13:44 - 000033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\mode.com
2022-07-15 13:44 - 2022-07-15 13:44 - 000026624 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mode.com
2022-07-15 13:44 - 2022-07-15 13:44 - 000024576 _____ C:\WINDOWS\system32\WsdProviderUtil.dll
2022-07-15 13:44 - 2022-07-15 13:44 - 000020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\tree.com
2022-07-15 13:44 - 2022-07-15 13:44 - 000018944 _____ C:\WINDOWS\SysWOW64\WsdProviderUtil.dll
2022-07-15 13:44 - 2022-07-15 13:44 - 000017920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tree.com
2022-07-15 13:44 - 2022-07-15 13:44 - 000014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\chcp.com
2022-07-15 13:44 - 2022-07-15 13:44 - 000012800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\chcp.com
2022-07-11 18:26 - 2022-07-11 18:26 - 000000000 ____D C:\Users\meier\OneDrive\Documents\Outlook-Dateien
2022-07-09 12:51 - 2022-08-18 14:01 - 000000000 ____D C:\Users\meier\AppData\Roaming\Software4u
2022-07-09 12:51 - 2022-08-18 14:01 - 000000000 ____D C:\Users\meier\AppData\Local\Software4u
2022-07-08 10:41 - 2022-07-08 10:42 - 000000000 ____D C:\Users\meier\AppData\Roaming\Tenorshare
2022-07-08 10:40 - 2022-07-08 10:40 - 000001338 _____ C:\Users\Public\Desktop\Tenorshare iCareFone.lnk
2022-07-08 10:40 - 2022-07-08 10:40 - 000000000 ____D C:\Users\meier\AppData\Roaming\TSMonitor
2022-07-08 10:40 - 2022-07-08 10:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Tenorshare iCareFone
2022-07-08 10:39 - 2022-07-08 10:39 - 000000000 ____D C:\Program Files (x86)\Tenorshare
2022-07-07 21:08 - 2022-07-15 13:59 - 000270752 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys
2022-06-30 07:20 - 2022-06-30 07:20 - 000002519 _____ C:\Users\meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DeepL.lnk
2022-06-29 07:49 - 2022-06-30 07:20 - 000000000 ____D C:\Users\meier\AppData\Roaming\0install.net
2022-06-29 07:49 - 2022-06-29 07:49 - 000000000 ____D C:\Users\meier\AppData\Local\0install.net
2022-06-23 18:44 - 2022-06-23 18:44 - 000357136 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys
2022-06-23 18:43 - 2022-06-23 18:43 - 000187200 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys
2022-06-23 11:56 - 2022-06-23 11:56 - 000376920 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys
2022-06-19 17:03 - 2022-06-19 17:03 - 000051690 _____ C:\Users\meier\Downloads\Auswertungen.pdf
2022-06-18 17:20 - 2022-06-18 17:20 - 000078630 _____ C:\Users\meier\Downloads\DSN_Zoom.pdf
2022-06-18 09:53 - 2022-06-18 09:53 - 001333760 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2022-06-18 09:53 - 2022-06-18 09:53 - 000232288 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2022-06-18 09:53 - 2022-06-18 09:53 - 000104448 _____ C:\WINDOWS\system32\nettraceex.dll
2022-06-05 14:15 - 2022-06-05 14:15 - 000001671 _____ C:\Users\Public\Desktop\PDF24.lnk
2022-06-05 14:15 - 2022-06-05 14:15 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24
2022-06-03 10:25 - 2022-06-03 10:25 - 010664147 _____ C:\Users\meier\Downloads\zuhlke_extended_retail_de.pdf
2022-05-29 10:28 - 2022-05-29 10:28 - 000000000 ____D C:\Users\meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2022-05-29 10:28 - 2022-05-29 10:28 - 000000000 ____D C:\Users\meier\AppData\Local\Zoom
2022-05-26 12:40 - 2022-05-26 12:40 - 000002217 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth Pro.lnk
2022-05-26 12:40 - 2022-05-26 12:40 - 000002205 _____ C:\Users\Public\Desktop\Google Earth Pro.lnk
2022-05-24 15:42 - 2022-05-24 15:42 - 000000000 ____D C:\WINDOWS\system32\Tasks\Apple
2022-05-24 15:42 - 2022-05-24 15:42 - 000000000 ____D C:\Program Files (x86)\Apple Software Update
==================== Drei Monate (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2022-08-19 13:52 - 2019-03-22 20:19 - 000000000 ____D C:\Program Files (x86)\Google
2022-08-19 13:51 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2022-08-19 13:39 - 2019-02-15 09:32 - 000000000 ____D C:\Users\meier\000_DATA
2022-08-19 13:31 - 2019-06-05 12:09 - 000000000 ____D C:\Users\meier\AppData\Roaming\WindSolutions
2022-08-19 13:28 - 2019-06-05 12:09 - 000000000 ____D C:\ProgramData\WindSolutions
2022-08-19 12:48 - 2020-07-26 20:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2022-08-19 12:25 - 2018-10-16 20:37 - 000000000 ____D C:\ProgramData\NVIDIA
2022-08-19 09:52 - 2019-02-14 15:02 - 000000000 ____D C:\Users\meier\AppData\Local\Packages
2022-08-19 09:11 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2022-08-19 09:11 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2022-08-19 07:56 - 2022-02-11 10:08 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2022-08-19 07:55 - 2019-02-14 16:16 - 000000000 ____D C:\Users\meier\AppData\LocalLow\Mozilla
2022-08-19 07:49 - 2021-09-09 08:26 - 000000000 ____D C:\Users\meier\AppData\Local\LogiBolt
2022-08-19 07:49 - 2019-02-14 15:02 - 000000000 __SHD C:\Users\meier\IntelGraphicsProfiles
2022-08-18 18:03 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2022-08-18 17:55 - 2019-02-16 16:48 - 000000000 ____D C:\Users\meier\AppData\Local\ElevatedDiagnostics
2022-08-18 14:02 - 2019-12-27 20:25 - 000006093 _____ C:\ProgramData\DisplaySessionContainer7.log_backup1
2022-08-18 13:49 - 2019-02-15 16:01 - 000000000 ____D C:\ProgramData\Apple
2022-08-18 10:48 - 2019-12-27 18:51 - 000006086 _____ C:\ProgramData\DisplaySessionContainer6.log_backup1
2022-08-18 09:20 - 2022-03-22 19:59 - 000002320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2022-08-18 09:20 - 2022-03-22 19:59 - 000002279 _____ C:\Users\Public\Desktop\Brave.lnk
2022-08-17 13:50 - 2022-02-03 15:44 - 000002203 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2022-08-17 13:44 - 2019-02-15 16:11 - 000000000 ____D C:\ProgramData\firebird
2022-08-17 08:21 - 2020-07-26 20:54 - 000003756 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2022-08-17 08:21 - 2020-07-26 20:54 - 000003632 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2022-08-16 19:52 - 2020-01-05 13:21 - 000005709 _____ C:\ProgramData\DisplaySessionContainer4.log_backup1
2022-08-16 16:50 - 2022-03-14 17:53 - 000000000 ____D C:\Users\meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\NanoTrader
2022-08-16 16:50 - 2022-03-14 17:52 - 000000000 ____D C:\Users\meier\AppData\Local\nanotrader
2022-08-16 15:15 - 2019-02-15 11:36 - 000000000 ____D C:\Users\meier\AppData\Roaming\Nitro
2022-08-16 12:16 - 2019-02-14 15:52 - 000000000 ____D C:\Users\meier\AppData\Local\D3DSCache
2022-08-16 11:39 - 2019-02-14 16:15 - 000000000 ____D C:\Users\meier\AppData\Roaming\Q-Dir
2022-08-15 18:24 - 2021-08-31 18:19 - 000002021 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk
2022-08-15 18:24 - 2021-08-31 18:19 - 000001863 _____ C:\Users\Default\Desktop\Google Slides.lnk
2022-08-15 18:24 - 2021-08-31 18:19 - 000001863 _____ C:\Users\Default\Desktop\Google Sheets.lnk
2022-08-15 18:24 - 2021-08-31 18:19 - 000001851 _____ C:\Users\Default\Desktop\Google Docs.lnk
2022-08-15 16:15 - 2019-05-15 12:14 - 000000000 ____D C:\Users\meier\AppData\Roaming\Zoom
2022-08-15 14:04 - 2022-03-22 19:59 - 000003654 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineUA
2022-08-15 14:04 - 2022-03-22 19:59 - 000003530 _____ C:\WINDOWS\system32\Tasks\BraveSoftwareUpdateTaskMachineCore
2022-08-15 11:57 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2022-08-15 10:18 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2022-08-15 08:23 - 2021-12-15 23:50 - 000003588 _____ C:\WINDOWS\system32\Tasks\OneDrive Reporting Task-S-1-5-21-2746437502-696071400-2433428216-1001
2022-08-15 08:23 - 2020-07-26 20:54 - 000003378 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-2746437502-696071400-2433428216-1001
2022-08-15 08:23 - 2020-07-26 20:46 - 000002444 _____ C:\Users\meier\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2022-08-13 14:26 - 2020-07-25 11:52 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2022-08-12 15:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ServiceState
2022-08-12 09:01 - 2018-10-16 20:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2022-08-12 09:00 - 2018-10-16 20:55 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2022-08-10 20:35 - 2020-01-04 14:48 - 000006608 _____ C:\ProgramData\DisplaySessionContainer1.log_backup1
2022-08-10 20:13 - 2020-07-26 21:32 - 000780914 _____ C:\WINDOWS\system32\perfh00C.dat
2022-08-10 20:13 - 2020-07-26 21:32 - 000149580 _____ C:\WINDOWS\system32\perfc00C.dat
2022-08-10 20:13 - 2020-07-26 20:51 - 002653490 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2022-08-10 20:13 - 2019-12-07 16:50 - 000744968 _____ C:\WINDOWS\system32\perfh007.dat
2022-08-10 20:13 - 2019-12-07 16:50 - 000150354 _____ C:\WINDOWS\system32\perfc007.dat
2022-08-10 20:08 - 2020-07-26 20:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2022-08-10 20:08 - 2020-07-26 20:45 - 000480768 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2022-08-10 20:08 - 2020-07-26 20:45 - 000008192 ___SH C:\DumpStack.log.tmp
2022-08-10 20:08 - 2019-12-27 18:51 - 000732662 _____ C:\ProgramData\NVDisplayContainerWatchdog.log_backup1
2022-08-10 20:08 - 2019-12-27 18:51 - 000076104 _____ C:\ProgramData\NVDisplay.ContainerLocalSystem.log_backup1
2022-08-10 20:08 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2022-08-10 20:08 - 2019-02-15 16:14 - 000000432 _____ C:\WINDOWS\SysWOW64\winsevr.dat
2022-08-10 20:08 - 2019-02-15 16:14 - 000000208 _____ C:\WINDOWS\SysWOW64\AbBakConfig.dat
2022-08-10 20:07 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2022-08-10 20:07 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2022-08-10 20:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2022-08-10 20:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2022-08-10 20:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2022-08-10 20:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2022-08-10 20:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2022-08-10 20:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2022-08-10 20:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2022-08-10 20:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\ShellExperiences
2022-08-10 20:07 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2022-08-10 20:05 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2022-08-10 20:01 - 2020-07-26 20:47 - 003011072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2022-08-10 19:52 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SecureBootUpdates
2022-08-10 19:51 - 2018-04-12 01:38 - 000000167 _____ C:\WINDOWS\win.ini
2022-08-10 19:49 - 2019-02-14 16:11 - 000000000 ____D C:\WINDOWS\system32\MRT
2022-08-10 19:44 - 2019-02-14 16:11 - 144534560 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2022-08-10 15:12 - 2019-03-01 11:28 - 000000000 ____D C:\Users\meier\AppData\Local\NitroSpoolDir
2022-08-10 15:07 - 2022-02-01 15:20 - 000000000 ____D C:\Users\meier\AppData\Roaming\eTax.zug 2021 jP
2022-08-09 15:49 - 2022-02-01 15:20 - 000000000 ____D C:\Program Files (x86)\eTax.zug 2021 jP
2022-08-09 15:49 - 2019-02-15 12:09 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eTax.zug
2022-08-09 08:16 - 2019-02-15 11:19 - 000000000 ____D C:\Users\meier\AppData\Roaming\FreeFileSync
2022-08-06 16:11 - 2020-07-26 20:46 - 000000000 ____D C:\Users\meier
2022-08-05 19:15 - 2021-05-31 09:18 - 000000000 ____D C:\Users\meier\AppData\Roaming\Mp3tag
2022-08-04 16:38 - 2020-01-04 13:46 - 000006107 _____ C:\ProgramData\DisplaySessionContainer19.log_backup1
2022-08-02 18:38 - 2020-12-04 08:37 - 000000000 ____D C:\Users\meier\AppData\Local\CrashDumps
2022-08-01 09:43 - 2020-01-01 21:30 - 000006095 _____ C:\ProgramData\DisplaySessionContainer15.log_backup1
2022-07-31 17:12 - 2019-12-31 20:32 - 000010511 _____ C:\ProgramData\DisplaySessionContainer13.log_backup1
2022-07-31 17:00 - 2019-05-27 10:59 - 000000000 ____D C:\Users\meier\AppData\Roaming\vlc
2022-07-28 19:11 - 2019-08-04 18:19 - 000000000 ___RD C:\Users\meier\Google Drive
2022-07-28 14:58 - 2022-04-29 18:46 - 000000957 _____ C:\Users\Public\Desktop\RealTimeSync.lnk
2022-07-28 14:58 - 2019-02-15 11:19 - 000000979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeFileSync.lnk
2022-07-28 14:58 - 2019-02-15 11:19 - 000000969 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealTimeSync.lnk
2022-07-28 14:58 - 2019-02-15 11:19 - 000000967 _____ C:\Users\Public\Desktop\FreeFileSync.lnk
2022-07-28 14:58 - 2019-02-15 11:19 - 000000000 ____D C:\Program Files\FreeFileSync
2022-07-27 19:56 - 2019-12-29 12:54 - 000006098 _____ C:\ProgramData\DisplaySessionContainer9.log_backup1
2022-07-26 21:16 - 2019-12-28 21:05 - 000007679 _____ C:\ProgramData\DisplaySessionContainer8.log_backup1
2022-07-24 13:04 - 2021-03-16 14:24 - 000000000 ____D C:\Users\meier\AppData\Roaming\Signal
2022-07-20 07:21 - 2020-01-05 20:27 - 000006191 _____ C:\ProgramData\DisplaySessionContainer5.log_backup1
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2020-04-23 09:54 - 2020-04-23 09:56 - 000038541 _____ () C:\Users\meier\AppData\Roaming\Durch Trennzeichen getrennte Werte.ADR
2020-03-01 13:49 - 2020-03-01 13:49 - 000011523 _____ () C:\Users\meier\AppData\Roaming\Durch Trennzeichen getrennte Werte.TSK
2021-12-08 18:49 - 2021-12-08 18:49 - 000001524 _____ () C:\Users\meier\AppData\Local\recently-used.xbel
==================== FLock ==============================
2019-02-15 12:15 C:\ProgramData\Brother
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ======================== |