Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 3-08-2019
durchgeführt von abank (Administrator) auf BANKOWSKY-PC (MEDION MS-7785) (03-08-2019 18:29:46)
Gestartet von C:\Users\abank\Desktop
Geladene Profile: abank (Verfügbare Profile: abank)
Platform: Windows 10 Pro Version 1803 17134.885 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Edge
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
() [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.19031.11411.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Ascora GmbH -> ) C:\ProgramData\Abelssoft\Abelssoft Update Agent\Program\AbUpdater.exe
(Ascora GmbH -> ) C:\ProgramData\Abelssoft\FindMyFiles\Program\FindMyFiles.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\AviraSoftwareUpdaterToastNotificationsBridge.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTime.Client.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.RealTimeOptimizer.exe
(Canon Inc. -> ) C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(CodeSigning for The Apache Software Foundation -> Apache Software Foundation) C:\Program Files (x86)\ShellfireVPN\ShellfireVpnService64.exe
(Cybereason) [Datei ist nicht signiert] C:\Program Files (x86)\Cybereason\RansomFree\CybereasonRansomFree.exe
(Cybereason) [Datei ist nicht signiert] C:\Program Files (x86)\Cybereason\RansomFree\CybereasonRansomFreeServiceHost.exe
(devolo AG -> devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\79.3.121\QtWebEngineProcess.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\79.3.121\QtWebEngineProcess.exe
(GN Audio -> GN Audio A/S) C:\Program Files (x86)\Jabra\Direct\JabraDirect.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe
(Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe
(IObit Information Technology -> IObit) C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe
(Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\spUIAManager.exe
(Lamantine Software a.s. -> Lamantine Software a.s.) C:\Program Files (x86)\Sticky Password\stpass.exe
(LSI Corporation -> LSI Corporation) C:\Program Files\LSI SoftModem\agr64svc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeApp.exe
(Microsoft Corporation) [Datei ist nicht signiert] C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.50.38.0_x64__kzf8qxf38zg5c\SkypeBridge\SkypeBridge.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Nero 2018\Nero BackItUp\NBService.exe
(Nero AG -> Nero AG) C:\Program Files (x86)\Nero\Update\NASvc.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(OPX Soft Inc.) [Datei ist nicht signiert] C:\PrinterPlusPlus\PrinterPlusPlus.exe
(Qi Wang -> IOTransfer) C:\Program Files (x86)\IOTransfer\Updater\IOTUpdater.exe
(QNAP Systems, Inc. -> ) C:\Program Files (x86)\QNAP\Qfinder\iSCSIAgent.exe
(QNAP Systems, Inc. -> QNAP Systems, Inc.) C:\Program Files (x86)\QNAP\Qsync\Qsync.exe
(QNAP Systems, Inc. -> QNAP) C:\Program Files (x86)\QNAP\myQNAPcloud Connect\NetworkDriveAgent.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [302904 2019-07-19] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [5782336 2019-07-31] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [98024 2019-06-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [Avira System Speedup User Starter] => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331016 2019-07-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM-x32\...\Run: [IObit Malware Fighter] => "C:\Program Files (x86)\IObit\IObit Malware Fighter\IMF.exe" /autostart
HKU\S-1-5-21-553357693-3709259513-4241168041-1001\...\Run: [Advanced SystemCare 12] => "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCTray.exe" /Auto
HKU\S-1-5-21-553357693-3709259513-4241168041-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-553357693-3709259513-4241168041-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe [67896 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-553357693-3709259513-4241168041-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe [110392 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-553357693-3709259513-4241168041-1001\...\Run: [StickyPassword] => C:\Program Files (x86)\Sticky Password\stpass.exe [66288 2019-06-13] (Lamantine Software a.s. -> Lamantine Software a.s.)
HKU\S-1-5-18\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-18\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [67384 2019-07-22] (Apple Inc. -> Apple Inc.)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\75.0.3770.142\Installer\chrmstp.exe [2019-07-16] (Google LLC -> Google LLC)
Startup: C:\Users\abank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2019-05-15]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00145CC4-F0DE-463A-AFD9-B84A014BB3FC} - System32\Tasks\Safer-Networking\Spybot Anti-Beacon\Aktualisiere Anti-Beacon-Immunisierung => C:\Program Files (x86)\Spybot Anti-Beacon\SDAntiBeacon.exe [3100488 2016-11-11] (Safer-Networking Ltd. -> Safer-Networking Ltd.) [Datei ist nicht signiert]
Task: {04AD795E-24C9-4E89-9565-CEBA3E5DC7C9} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe
Task: {0505B948-E3EE-4E03-AB90-B3D80F80EF5F} - System32\Tasks\ASO-PrivacyProtector => C:\Program Files (x86)\Advanced System Optimizer 3\PrivacyProtector.exe
Task: {06A65C96-D45C-413E-B2CC-09E26A2199CD} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-20] (Google Inc -> Google Inc.)
Task: {0A34C5A4-0E3B-4891-93AD-05AFF5D20C42} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
Task: {0E299A63-9DB6-43E3-916B-8AE7D366F3CC} - System32\Tasks\ASO-SystemCleaner => C:\Program Files (x86)\Advanced System Optimizer 3\SystemCleaner.exe
Task: {0F1DD174-AD7C-41F1-97DB-E9D3829E2FB4} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-02] (Dropbox, Inc -> Dropbox, Inc.)
Task: {13122D38-45F4-424D-A1A8-CBA70B444F31} - System32\Tasks\SmartDefrag_Startup => C:\Program Files (x86)\IObit\Smart Defrag\SmartDefrag.exe [5849872 2019-07-05] (IObit Information Technology -> IObit)
Task: {17836E15-86DA-4F2B-98EB-806760D1963E} - System32\Tasks\ASO-RegistryCleaner => C:\Program Files (x86)\Advanced System Optimizer 3\RegClean.exe
Task: {18E3492C-6E1F-41EE-A80C-8C98C2391FD1} - System32\Tasks\Avira\System Speedup\Delayed Startup\abank\2 => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2019-05-08] (Apple Inc. -> Apple Inc.) <==== ACHTUNG
Task: {1A5611AF-AF7B-4D87-A0D1-C8B74B4A70A3} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
Task: {1DBC39FF-E6B5-428E-8877-BED07A570540} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27351864 2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {1FC2F178-AB4B-4DAF-9FFC-9A9172281BFF} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-10-23] (Corel Corporation -> Corel Corporation)
Task: {27E5FB39-6B93-4027-AA38-C61FEB0B49E8} - System32\Tasks\Driver Booster SkipUAC (abank) => C:\Program Files (x86)\IObit\Driver Booster\6.5.0\DriverBooster.exe [7614224 2019-06-18] (IObit Information Technology -> IObit)
Task: {2B73CC47-9ECF-4D4A-979A-FA455555D838} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
Task: {2D463677-90E3-4287-8120-CB2661EE4CAE} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1447064 2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {2E02AE5B-A39F-423B-89FF-550BC8C0CB10} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {2EEC6055-EBFA-4849-AD5B-D79E01EAF840} - System32\Tasks\NvTmRepCR2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
Task: {32A6004A-C6CB-474E-AEC6-66C2C5BC1F8D} - System32\Tasks\AdobeGCInvoker-1.0-MicrosoftAccount-alfred.bankowsky@sol.at => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {36691579-5713-4F3B-BF8C-E39D40003E93} - System32\Tasks\Cybereason RansomFree Keepalive => C:\Program Files (x86)\Cybereason\RansomFree\CybereasonRansomFree.exe [1065984 2017-11-20] (Cybereason) [Datei ist nicht signiert]
Task: {37576B2F-A925-445B-A0B7-D88505726289} - System32\Tasks\SmartDefrag_AutoAnalyze => C:\Program Files (x86)\IObit\Smart Defrag\AutoDefrag.exe [314128 2018-05-02] (IObit Information Technology -> IObit)
Task: {3BB9D086-6691-47EC-AE56-D136FE8E9BBD} - System32\Tasks\ASO-DiskOptimizer => C:\Program Files (x86)\Advanced System Optimizer 3\DiskOptimizer.exe
Task: {3D9A4D3E-6556-4B50-88B7-0825AF55BBA0} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1447064 2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {3E5576C7-7D65-4792-977F-C2B4876E5FDC} - System32\Tasks\Avira\System Speedup\Delayed Startup\abank\1 => C:\Program Files (x86)\Sticky Password\stpass.exe [66288 2019-06-13] (Lamantine Software a.s. -> Lamantine Software a.s.) <==== ACHTUNG
Task: {3E5A4675-FE03-42C7-A32F-148FF76F1F11} - System32\Tasks\oneclick => C:\Program Files (x86)\Ashampoo\Ashampoo WinOptimizer 14\WO14.exe
Task: {3F485B31-6B58-4A38-A534-9249124FE748} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1551488 2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {416DFD9B-1C0B-49DF-8A7F-2B2FECF7E55C} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-02] (Dropbox, Inc -> Dropbox, Inc.)
Task: {41852291-302F-48E8-B37E-C7C706E39E27} - System32\Tasks\SmartDefrag_Update => C:\Program Files (x86)\IObit\Smart Defrag\AutoUpdate.exe [3007760 2019-04-24] (IObit Information Technology -> IObit)
Task: {440A684F-6B13-4477-A456-598509E36420} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-10-23] (Corel Corporation -> Corel Corporation)
Task: {4AEC418E-B8A4-44E0-BF3F-1CEE9E8FC7C1} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\7 => C:\Program Files (x86)\Jabra\Direct\JabraDirect.exe [1274304 2017-08-22] (GN Audio -> GN Audio A/S)
Task: {4B7F0332-18C1-4C39-A91B-CB43D55DADE9} - System32\Tasks\Cybereason RansomFree Autostart => C:\Program Files (x86)\Cybereason\RansomFree\CybereasonRansomFree.exe [1065984 2017-11-20] (Cybereason) [Datei ist nicht signiert]
Task: {4BAD4369-545C-422E-9594-68AD88CBC9F4} - System32\Tasks\Software Updater Scheduler => C:\Program Files (x86)\IObit\Software Updater\SUInit.exe <==== ACHTUNG
Task: {4C93637A-E0CC-4C03-99B3-A3ED82DC8646} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [114736 2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {4CA1484A-A508-4CF4-8CC1-B2D5E5B69E57} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
Task: {500A2639-5C06-4DB3-B76D-BCFBA7E53431} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\1 => C:\PrinterPlusPlus\PrinterPlusPlus.exe [95232 2017-12-01] (OPX Soft Inc.) [Datei ist nicht signiert]
Task: {5105CAE7-8979-4B52-A769-EE79D2942270} - System32\Tasks\IOTransfer SkipUAC (abank) => C:\Program Files (x86)\IOTransfer\IOTransfer.exe [6341176 2019-05-09] (Chengdu Zhagu Technology Co., Ltd. -> IOTransfer Studio)
Task: {522C9879-2A7C-40AC-95B0-B998D6D2DF26} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [26085376 2019-07-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG )
Task: {5674BACC-497F-47E9-BCA6-A8002927A875} - System32\Tasks\Avira\Safe Shopping\Update => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe
Task: {58A59841-6DB7-4D23-A889-BD5A48C41E07} - System32\Tasks\NvTmRepCR3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
Task: {5BA11762-196C-4110-9CBD-E49D92035D6D} - System32\Tasks\ASC12_PerformanceMonitor => C:\Program Files (x86)\IObit\Advanced SystemCare\Monitor.exe
Task: {5F234341-C0FC-44D9-99E7-293DD8ACB5C1} - System32\Tasks\ASO-Driver Updater => C:\Program Files (x86)\Advanced System Optimizer 3\DriverUpdater.exe
Task: {5F76813F-4790-478F-9B26-0F78BFBD032A} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-10] (Adobe Inc. -> Adobe)
Task: {646F584D-2737-42BB-B198-CF1AD9C9F0DC} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [114736 2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Task: {656B5B3B-BA3F-4CDD-AD5B-8EFF91A0AFA1} - System32\Tasks\Apple Diagnostics => C:\Program Files (x86)\Common Files\Apple\Internet Services\EReporter.exe [67896 2019-07-22] (Apple Inc. -> Apple Inc.)
Task: {66D7282E-3C79-41F9-9CE0-A2DD35DFCE81} - System32\Tasks\Avira\Safe Shopping\Launch => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe
Task: {6BF6BBC5-EFA2-4B6A-A864-DBF595349408} - System32\Tasks\iSCSIAgentAutoStartup => C:\Program Files (x86)\QNAP\Qfinder\iSCSIAgent.exe [1740088 2019-02-27] (QNAP Systems, Inc. -> )
Task: {6D3B9C75-30C9-467B-A590-FCE41B773EE1} - System32\Tasks\NvTmRepCR1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe
Task: {6FA5973E-BC56-452F-8D16-5BF649572093} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2758096 2019-07-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {709D3E7E-AD5C-4F46-A093-1FA74E67ED75} - \BackItUp_Launch -> Keine Datei <==== ACHTUNG
Task: {754883BC-DCDF-428D-BE30-BCB4B2FC3925} - System32\Tasks\Mo autubackup => auto
Task: {759FEFC6-1B10-4645-8EBF-6DE3F56692C2} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
Task: {75BB21A3-4CB2-4CE7-A88A-8B3B4CF93D81} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-11-20] (Google Inc -> Google Inc.)
Task: {766A9691-428B-4658-B998-3186CAAD611F} - System32\Tasks\Software Updater SkipUAC(abank) => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4072720 2019-06-19] (IObit Information Technology -> IObit) <==== ACHTUNG
Task: {77FE2A6C-CA71-43F3-83C5-2F5C66E25916} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27351864 2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
Task: {78726013-14A0-4F98-BC20-23299B27BC16} - System32\Tasks\ASO-System Protector => C:\Program Files (x86)\Advanced System Optimizer 3\SystemProtector.exe
Task: {79A941C2-A036-43B6-A4A4-88028C0D348B} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe
Task: {7EF02138-A188-4864-898E-8C8B493E1323} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-10] (Adobe Inc. -> Adobe)
Task: {8244F25C-94CF-4797-818C-EB378558F701} - System32\Tasks\Avira\Safe Shopping\Check => C:\Program Files (x86)\Avira\Safe Shopping\Updater\Updater.exe
Task: {94C5C291-76B0-4D92-BF2B-0D0105E93FCA} - System32\Tasks\drivers => C:\Program Files (x86)\UpdateStar Drivers\drivers.exe
Task: {A3B93DF7-4220-4317-A6A2-A4F22E834AA7} - System32\Tasks\DivXUpdate => C:\Program Files (x86)\Common Files\DivX Shared\DivX Update\DivXUpdate.exe [68568 2017-08-02] (DivX, LLC -> DivX, LLC)
Task: {AEF120BA-C595-4741-989B-BF2D9BAF8691} - System32\Tasks\Nero\Nero Info => C:\Program Files (x86)\Common Files\Nero\Nero Info\NeroInfo.exe [6885240 2017-08-10] (Nero AG -> Nero AG)
Task: {B007E266-728B-4DFA-A4FE-FEA18AFCD305} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616320 2018-01-08] (Apple Inc. -> Apple Inc.)
Task: {B2D6BA9D-FDD1-4D32-BCFB-44C4A1625DE4} - System32\Tasks\Uninstaller_SkipUac_abank => C:\Program Files (x86)\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {B36F8B0B-999E-4A47-B424-002831DD3B57} - System32\Tasks\Abelssoft\Abelssoft Update Agent_94 => C:\Program Files (x86)\Abelssoft Update Agent\AbLauncher.exe [17896 2018-06-28] (Ascora GmbH -> )
Task: {BCA2EEB4-5FE1-41C9-8A3E-184C3330AB14} - System32\Tasks\Abelssoft\FileFusion_97 => C:\ProgramData\Abelssoft\FileFusion\Program\FileFusion.exe [3190248 2018-07-10] (Ascora GmbH -> )
Task: {C05F743E-AB5F-403E-B014-44E3BE436016} - System32\Tasks\SU_AutoUpdate => C:\Program Files (x86)\IObit\Software Updater\SoftwareUpdater.exe [4072720 2019-06-19] (IObit Information Technology -> IObit)
Task: {C3F7FC04-4523-4304-9E1D-2AD959045642} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-10-23] (Corel Corporation -> Corel Corporation)
Task: {C4D43A87-C0BE-4AED-A28F-72FDA155E1B3} - System32\Tasks\Nero\BackItUp Schedule Backup => C:\Program Files (x86)\Nero\Nero 2018\Nero BackItUp\BackItUp.exe [1164664 2017-09-12] (Nero AG -> Nero AG)
Task: {C597D857-DC52-4375-8FE6-AA9A31BBD050} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2018-10-23] (Corel Corporation -> Corel Corporation)
Task: {CCBB0703-A2B4-4902-9093-0F11635998E9} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\3 => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
Task: {CD8DEB86-65F4-4CE0-AEA9-27D0A1A7605C} - System32\Tasks\Abelssoft\FmF\FindMyFilesAutostartTask => C:\ProgramData\Abelssoft\FindMyFiles\Program\FindMyFiles.exe [2958824 2018-11-05] (Ascora GmbH -> )
Task: {D2852B39-0AA5-4C2B-8269-8FD8F5A61C3F} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {D5CE5DFA-94B4-4A3D-BA58-4FA9903BEFA1} - System32\Tasks\Abelssoft\FmF\FindMyFilesHotkeyTask => C:\ProgramData\Abelssoft\FindMyFiles\Program\FindMyFiles.exe [2958824 2018-11-05] (Ascora GmbH -> )
Task: {DCCD28E9-EA9D-46CB-BC05-7144AB578582} - System32\Tasks\{7A149C98-3AFB-4A89-A59E-54C6078507D0} => C:\WINDOWS\system32\pcalua.exe -a Q:\/setup.exe -d Q:\
Task: {E54C593E-4AA5-401A-A91D-EE14308909A8} - System32\Tasks\ASC12_SkipUac_abank => C:\Program Files (x86)\IObit\Advanced SystemCare\ASC.exe
Task: {EA97E870-7CB6-4982-8185-BDD1FF4A4057} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\6 => C:\Program Files (x86)\QNAP\myQNAPcloud Connect\NetworkDriveAgent.exe [1743224 2018-09-25] (QNAP Systems, Inc. -> QNAP)
Task: {EDDB49E2-B34D-49B2-9EA7-1A762D69D763} - System32\Tasks\Driver Booster Scheduler => C:\Program Files (x86)\IObit\Driver Booster\6.5.0\Scheduler.exe [149776 2019-06-18] (IObit Information Technology -> IObit)
Task: {EEABBF61-C439-46E6-94FE-2C4A0F1D9D94} - System32\Tasks\Avira\System Speedup\TestScheduler => C:\Program Files (x86)\Avira\System Speedup\Avira.SystemSpeedup.Core.Common.Starter.exe [331016 2019-07-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {EF46198F-6CE1-4E76-925A-BFB34345052A} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe
Task: {F59F2879-A34F-49CC-AA01-19C110FCA299} - System32\Tasks\Avira\System Speedup\Delayed Startup\All users\5 => C:\Program Files (x86)\QNAP\Qsync\Qsync.exe [73414968 2019-04-16] (QNAP Systems, Inc. -> QNAP Systems, Inc.)
Task: {F794BA9A-DFE5-4364-9C8C-40117109D203} - \Microsoft\Windows\UNP\RunCampaignManager -> Keine Datei <==== ACHTUNG
Task: {F7DE3863-59AE-4EA5-9012-3BF91032BC80} - System32\Tasks\IObitSelfCheckTask => C:\Program Files (x86)\IObit\Smart Defrag\IObitSelfCheck.exe
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\ASO-DiskOptimizer.job => C:\Program Files (x86)\Advanced System Optimizer 3\DiskOptimizer.exe
Task: C:\WINDOWS\Tasks\ASO-Driver Updater.job => C:\Program Files (x86)\Advanced System Optimizer 3\DriverUpdater.exe
Task: C:\WINDOWS\Tasks\ASO-PrivacyProtector.job => C:\Program Files (x86)\Advanced System Optimizer 3\PrivacyProtector.exe
Task: C:\WINDOWS\Tasks\ASO-RegistryCleaner.job => C:\Program Files (x86)\Advanced System Optimizer 3\RegClean.exe
Task: C:\WINDOWS\Tasks\ASO-System Protector.job => C:\Program Files (x86)\Advanced System Optimizer 3\SystemProtector.exe
Task: C:\WINDOWS\Tasks\ASO-SystemCleaner.job => C:\Program Files (x86)\Advanced System Optimizer 3\SystemCleaner.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.153.32.129 213.153.32.1
Tcpip\..\Interfaces\{40299689-52a5-4809-8322-b984b25ef893}: [DhcpNameServer] 213.153.32.129 213.153.32.1
Tcpip\..\Interfaces\{4e0bf8df-3096-4e49-8f72-42a1e86495cd}: [DhcpNameServer] 213.153.32.129 213.153.32.1
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-553357693-3709259513-4241168041-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.orf.at/
SearchScopes: HKU\S-1-5-21-553357693-3709259513-4241168041-1001 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-553357693-3709259513-4241168041-1001 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxps://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02&pc=UE04
SearchScopes: HKU\S-1-5-21-553357693-3709259513-4241168041-1001 -> {7BDC83C3-94AF-40C7-8AC3-D57F091F5191} URL = hxxps://at.search.yahoo.com/search?p={searchTerms}&fr=yset_ie_syc_oracle&type=orcl_default
SearchScopes: HKU\S-1-5-21-553357693-3709259513-4241168041-1001 -> {D5F41A51-79FD-44B9-A322-6943E81AC4C0} URL = hxxp://www.gsrch.com/#q={searchTerms}
BHO: ExplorerWnd Helper -> {10921475-03CE-4E04-90CE-E2E7EF20C814} -> C:\Program Files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll => Keine Datei
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-06-26] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (Canon Inc. -> CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-05-28] (Oracle America, Inc. -> Oracle Corporation)
BHO: NemID Nøglefilsprogram -> {88615005-094a-4ad4-8e56-7294604d1fa1} -> C:/Program Files (x86)/Nets DanID/NemID IE Udvidelse/NemidNoglefilsprogram.DLL [2017-10-18] (Nets DanID -> Nets Denmark A/S)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-06-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-28] (Oracle America, Inc. -> Oracle Corporation)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-06-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2015-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\ssv.dll [2019-05-28] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: NemID Nøglefilsprogram -> {88615005-094a-4ad4-8e56-7294604d1fa1} -> C:\Program Files (x86)\Nets DanID\NemID IE Udvidelse\NemidNoglefilsprogram.dll [2017-10-18] (Nets DanID -> Nets Denmark A/S)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-06-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-28] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-06-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: IObit Ads Removal -> {FFCB3198-32F3-4E8B-9539-4324694ED664} -> C:\Program Files (x86)\IObit\IObit Malware Fighter\Surfing Protection\Adblock\Adblock.dll => Keine Datei
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-06-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2016-06-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-553357693-3709259513-4241168041-1001 -> Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2016-06-30] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-553357693-3709259513-4241168041-1001 -> Kein Name - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - Keine Datei
Toolbar: HKU\S-1-5-21-553357693-3709259513-4241168041-1001 -> Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2015-02-23] (Canon Inc. -> CANON INC.)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-03] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
Edge Extension: (IObit Surfing Protection & Ads Removal) -> EdgeExtension_18411IObit121073B4FE2A6_8nkkvw7c6ghbg => C:\Program Files\WindowsApps\18411IObit.121073B4FE2A6_1.8.24.0_x64__8nkkvw7c6ghbg [2019-07-19]
FireFox:
========
FF DefaultProfile: qe564l8i.default-1564828615295
FF ProfilePath: C:\Users\abank\AppData\Roaming\Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295 [2019-08-03]
FF Homepage: Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295 -> hxxps://www.qwant.com/?client=ext-firefox-hp
FF NetworkProxy: Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295 -> type", 4
FF HomepageOverride: Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295 -> Enabled: qwantcomforfirefox@jetpack
FF Extension: (German Dictionary, extended for Austria) - C:\Users\abank\AppData\Roaming\Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295\Extensions\de-AT@dictionaries.addons.mozilla.org.xpi [2019-08-03]
FF Extension: (German Dictionary (Switzerland)) - C:\Users\abank\AppData\Roaming\Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295\Extensions\de-CH@dictionaries.addons.mozilla.org.xpi [2019-08-03]
FF Extension: (German Dictionary) - C:\Users\abank\AppData\Roaming\Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295\Extensions\de-DE@dictionaries.addons.mozilla.org.xpi [2019-08-03]
FF Extension: (Awesome Screenshot - Capture, Annotate & More) - C:\Users\abank\AppData\Roaming\Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295\Extensions\jid0-GXjLLfbCoAx0LcltEdFrEkQdQPI@jetpack.xpi [2019-08-03]
FF Extension: (Deutsch (DE) Language Pack) - C:\Users\abank\AppData\Roaming\Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295\Extensions\langpack-de@firefox.mozilla.org.xpi [2019-08-03]
FF Extension: (Qwant) - C:\Users\abank\AppData\Roaming\Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295\Extensions\qwantcomforfirefox@jetpack.xpi [2019-08-03]
FF Extension: (uBlock Origin) - C:\Users\abank\AppData\Roaming\Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295\Extensions\uBlock0@raymondhill.net.xpi [2019-08-03]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\abank\AppData\Roaming\Mozilla\Firefox\Profiles\qe564l8i.default-1564828615295\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-08-03]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-02]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_223.dll [2019-07-10] (Adobe Inc. -> )
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.0 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-06-11] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [Datei ist nicht signiert]
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.) [Datei ist nicht signiert]
FF Plugin-x32: @divx.com/DivX Web Player Plug-In,version=1.0.0 -> C:\Program Files (x86)\DivX\DivX Web Player\npdivx32.dll [2017-11-21] (DivX, LLC -> DivX, LLC)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Keine Datei]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [Keine Datei]
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-10-13] (Google Inc -> Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files (x86)\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-28] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-16] (Google Inc -> Google LLC)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: @videolan.org/vlc,version=2.2.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [Keine Datei]
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)
Chrome:
=======
CHR NewTab: Default -> Not-active:"chrome-extension://adibiggjpflilnipmlmanclilehhchmj/newtab.html"
CHR Profile: C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default [2019-08-03]
CHR Extension: (Präsentationen) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-11-16]
CHR Extension: (Docs) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-11-16]
CHR Extension: (Google Drive) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-23]
CHR Extension: (YouTube) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-11-23]
CHR Extension: (Adblock für Youtube™) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2019-06-24]
CHR Extension: (Google-Suche) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-23]
CHR Extension: (Yahoo Partner) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\eedgghdcpmmmilkmfpnklknlenbiolec [2018-06-30]
CHR Extension: (Adobe Acrobat) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Avira Browserschutz) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-06-24]
CHR Extension: (HTTPS Everywhere) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\gcbommkclmclpchllfjekcdonpmejbdp [2019-02-09]
CHR Extension: (Sticky Password Autofill Engine) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\ggepjhbdgijjkbelnggboeoehacbphed [2015-11-24]
CHR Extension: (Google Docs Offline) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-23]
CHR Extension: (WSearch) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\mdlnakaccnepjadheapnonbineeaegpe [2016-08-31]
CHR Extension: (Download) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\nccjoeeljedbmkidebclpoabijggpbdp [2016-12-07]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-28]
CHR Extension: (Google Mail) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-11-23]
CHR Extension: (Chrome Media Router) - C:\Users\abank\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-02-09]
CHR Profile: C:\Users\abank\AppData\Local\Google\Chrome\User Data\System Profile [2018-11-20]
CHR HKLM\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eedgghdcpmmmilkmfpnklknlenbiolec] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk] - hxxps://clients2.google.com/service/update2/crx
==================== Dienste (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AbAdminService; C:\Program Files (x86)\ToolbarTerminator\AbAdminService.exe [37912 2016-12-20] (Ascora GmbH -> Ascora GmbH)
S3 AdobeActiveFileMonitor14.0; C:\Program Files\Adobe\Elements 14 Organizer\PhotoshopElementsFileAgent.exe [226016 2015-12-07] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated)
S4 AirPrint; C:\AirPrint\airprint.exe [234784 2018-12-06] (Apple Inc. -> Apple Inc.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1208480 2019-07-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [534768 2019-07-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [484256 2019-07-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [484256 2019-07-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [1765896 2019-07-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [96056 2019-04-29] (Apple Inc. -> Apple Inc.)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [455424 2019-06-28] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2980056 2019-04-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [359400 2019-01-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [103840 2019-07-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S4 BFUService; C:\Program Files (x86)\BFU Service\BFUService64.exe [4022360 2018-06-08] (Heiko Schröder -> Heiko Schröder Softwareentwicklung)
S4 BoxSyncUpdateService; C:\Program Files\Box\Box Sync\SyncUpdaterService.exe [36680 2017-08-07] (Box, Inc. -> Box, Inc.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11469920 2019-07-26] (Microsoft Corporation -> Microsoft Corporation)
S4 Crypkey License; C:\WINDOWS\system32\crypserv.exe [122880 2008-05-08] (CrypKey (Canada) Ltd.) [Datei ist nicht signiert]
R2 CybereasonRansomFree; C:\Program Files (x86)\Cybereason\RansomFree\CybereasonRansomFreeServiceHost.exe [13824 2017-11-20] (Cybereason) [Datei ist nicht signiert]
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-02] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2015-12-02] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\WINDOWS\system32\DbxSvc.exe [51024 2019-07-31] (Dropbox, Inc -> Dropbox, Inc.)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [4981936 2019-04-23] (devolo AG -> devolo AG)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [140456 2012-03-28] (Canon Inc. -> )
R2 IOTUpdaterSvc; C:\Program Files (x86)\IOTransfer\Updater\IOTUpdater.exe [3156664 2018-12-05] (Qi Wang -> IOTransfer)
S4 MBAMScheduler; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes Corporation -> Malwarebytes)
R2 NeroBackItUpBackgroundService2018; C:\Program Files (x86)\Nero\Nero 2018\Nero BackItUp\NBService.exe [287096 2017-09-12] (Nero AG -> Nero AG)
S2 QVHelper; C:\Program Files\QNAP\QVHelper\QVHelper.exe [192512 2018-01-25] (QNAP) [Datei ist nicht signiert]
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5073792 2019-07-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 ShellfireVPN2Service; C:\Program Files (x86)\ShellfireVPN\ShellfireVPNService64.exe [109696 2014-09-15] (CodeSigning for The Apache Software Foundation -> Apache Software Foundation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\NisSrv.exe [3851264 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1904.1-0\MsMpEng.exe [118144 2019-04-30] (Microsoft Corporation -> Microsoft Corporation)
S2 AdobeUpdateService; "C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe" [X]
S2 AdvancedSystemCareService12; "C:\Program Files (x86)\IObit\Advanced SystemCare\ASCService.exe" [X]
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
===================== Treiber (Nicht auf der Ausnahmeliste) ======================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AgereSoftModem; C:\WINDOWS\system32\DRIVERS\agrsm64.sys [1213440 2015-11-13] (Microsoft Windows Hardware Compatibility Publisher -> LSI Corporation)
R3 AmUStor; C:\WINDOWS\system32\drivers\AmUStor.SYS [109504 2018-11-26] (Alcorlink Corp. -> )
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2019-01-11] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2019-01-11] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 asstahci64; C:\WINDOWS\System32\drivers\asstahci64.sys [98696 2019-01-11] (ASMedia Technology Inc. -> Asmedia Technology)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-03-12] (Microsoft Windows Early Launch Anti-malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [199008 2019-07-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [196328 2019-07-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 cpuz143; C:\WINDOWS\temp\cpuz143\cpuz143_x64.sys [48960 2019-07-19] (CPUID -> CPUID)
R1 HWiNFO32; C:\WINDOWS\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-02-27] (Martin Malik - REALiX -> REALiX(tm))
S3 Netaapl; C:\WINDOWS\System32\drivers\netaapl64.sys [23040 2014-08-15] (Apple Inc.) [Datei ist nicht signiert]
R1 NetworkX; C:\WINDOWS\system32\ckldrv.sys [28664 2008-03-17] (CrypKey (Canada) Inc. -> )
R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [36496 2019-04-23] (devolo AG -> Riverbed Technology, Inc.)
R2 NseEngineDrv; C:\WINDOWS\system32\DRIVERS\NseEngineDrv.sys [43944 2017-04-18] (Initeks, OOO -> Initex)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4b310b124a4f2d9f\nvlddmkm.sys [21854352 2019-07-19] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PfFilter; C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [48480 2017-03-21] (IObit Information Technology -> IObit Information Technology)
S3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [45056 2017-07-13] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R0 PxHlpa64; C:\WINDOWS\System32\drivers\PxHlpa64.sys [56336 2013-09-03] (Corel Corporation -> Corel Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [1154336 2019-07-08] (Realtek Semiconductor Corp. -> Realtek )
R3 RTL8192su; C:\WINDOWS\System32\drivers\RTL8192su.sys [687616 2018-04-12] (Microsoft Windows -> Realtek Semiconductor Corporation )
R0 SmartDefragDriver; C:\WINDOWS\System32\Drivers\SmartDefragDriver.sys [30744 2017-03-09] (IObit Information Technology -> IObit)
S3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [33960 2015-09-22] (Synaptics Incorporated -> Synaptics Incorporated)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (The OpenVPN Project) [Datei ist nicht signiert]
S3 tbhsd; C:\WINDOWS\system32\drivers\tbhsd.sys [57648 2017-12-20] (Audials AG -> RapidSolution Software AG)
S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2015-06-17] (Microsoft Windows Hardware Compatibility Publisher -> Apple, Inc.)
S3 VX3000; C:\WINDOWS\system32\DRIVERS\VX3000.sys [2055168 2009-06-26] (Hardware Group Test Cert -> Microsoft Corporation) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-04-30] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [344544 2019-04-30] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [60896 2019-04-30] (Microsoft Windows -> Microsoft Corporation)
S4 IMFMBRProtect; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFMBRProtect.sys [X]
S4 IMFSafeBox; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win10_amd64\IMFSafeBox.sys [X]
S3 iobit_monitor_server; \??\C:\Program Files (x86)\IObit\Advanced SystemCare\drivers\Monitor_win10_x64.sys [X]
S4 IUFileFilter; \??\C:\Program Files (x86)\IObit\IObit Uninstaller\drivers\win10_amd64\IUFileFilter.sys [X]
S4 nvvad_WaveExtensible; \SystemRoot\system32\drivers\nvvad64v.sys [X]
S4 nvvhci; \SystemRoot\System32\drivers\nvvhci.sys [X]
S3 QDrive; \??\C:\Users\abank\AppData\Local\Temp\QDrive.sys [X] <==== ACHTUNG
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-08-03 18:29 - 2019-08-03 18:30 - 000056850 _____ C:\Users\abank\Desktop\FRST.txt
2019-08-03 18:28 - 2019-08-03 18:28 - 002096128 _____ (Farbar) C:\Users\abank\Desktop\FRST64.exe
2019-08-03 17:57 - 2019-08-03 18:29 - 000000000 ____D C:\FRST
2019-08-03 16:38 - 2019-08-03 16:38 - 000531014 ____N C:\Users\Q235\fail_veteran.xlsx
2019-08-03 16:38 - 2019-08-03 16:38 - 000517782 ____N C:\Users\aa4kpal5\exciting-reading-clinical.xlsx
2019-08-03 16:38 - 2019-08-03 16:38 - 000232476 ____N C:\Users\Q235\panprobably.mdb
2019-08-03 16:38 - 2019-08-03 16:38 - 000212865 ____N C:\Users\aa4kpal5\granted_engagement.mdb
2019-08-03 16:38 - 2019-08-03 16:38 - 000068110 ____N C:\Users\aa4kpal5\collapse-wave-task-the.xls
2019-08-03 16:38 - 2019-08-03 16:38 - 000062870 ____N C:\Users\Q235\evening false secrecy.xls
2019-08-03 16:38 - 2019-08-03 16:38 - 000052493 ____N C:\Users\Q235\eventual_new_reveal_confidence.pem
2019-08-03 16:38 - 2019-08-03 16:38 - 000052284 ____N C:\Users\aa4kpal5\risesuburbantalked.pem
2019-08-03 16:38 - 2019-08-03 16:38 - 000035105 ____N C:\Users\Q235\heighten.desirable.txt
2019-08-03 16:38 - 2019-08-03 16:38 - 000021330 ____N C:\Users\aa4kpal5\speeches rear net.txt
2019-08-03 16:38 - 2019-08-03 16:38 - 000015062 ____N C:\Users\Q235\continentalcompromisepeeredaverse.sql
2019-08-03 16:38 - 2019-08-03 16:38 - 000012260 ____N C:\Users\aa4kpal5\sample excitement.sql
2019-08-03 16:38 - 2019-08-03 16:38 - 000000000 __SHD C:\Users\abank\Desktop\0K, this directory is for Ransomware detection (just leave it here)
2019-08-03 16:38 - 2019-08-03 16:38 - 000000000 ___HD C:\Users\Q235
2019-08-03 16:38 - 2019-08-03 16:38 - 000000000 ___HD C:\Users\abank\Documents\Wsettingsettings82
2019-08-03 16:38 - 2019-08-03 16:38 - 000000000 ___HD C:\Users\abank\Documents\Acsettingsettings142
2019-08-03 16:38 - 2019-08-03 16:38 - 000000000 ___HD C:\Users\aa4kpal5
2019-08-03 16:37 - 2019-08-03 16:37 - 000000000 ____D C:\Xfiles201
2019-08-03 16:37 - 2019-08-03 16:37 - 000000000 ____D C:\Ahdetails159
2019-08-03 16:32 - 2019-08-03 16:32 - 000212992 _____ C:\WINDOWS\system32\ClickToRun_Pipeline16
2019-08-03 12:38 - 2019-08-03 16:31 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-08-03 12:33 - 2019-08-03 17:25 - 000001176 _____ C:\Users\abank\Desktop\Start Tor Browser.lnk
2019-08-03 10:24 - 2019-08-03 10:24 - 000002583 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2019-08-03 10:24 - 2019-08-03 10:24 - 000002579 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2019-08-03 10:24 - 2019-08-03 10:24 - 000002558 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2019-08-03 10:24 - 2019-08-03 10:24 - 000002533 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2019-08-03 10:24 - 2019-08-03 10:24 - 000002500 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2019-08-03 10:24 - 2019-08-03 10:24 - 000002497 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2019-08-03 10:24 - 2019-08-03 10:24 - 000002469 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2019-08-03 10:24 - 2019-08-03 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2019-08-02 17:57 - 2019-08-02 17:57 - 000035192 _____ C:\Users\abank\Documents\Dr. Doppelreiter- Augen.pdf
2019-08-02 17:50 - 2019-08-02 17:50 - 000014189 _____ C:\Users\abank\Documents\Auftragsdaten_2019-08-02_17-50-32.pdf
2019-08-01 19:23 - 2019-08-01 19:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2019-07-31 20:44 - 2019-07-31 20:44 - 000051024 _____ (Dropbox, Inc.) C:\WINDOWS\system32\DbxSvc.exe
2019-07-31 20:44 - 2019-07-31 20:44 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-stable.sys
2019-07-31 20:44 - 2019-07-31 20:44 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-dev.sys
2019-07-31 20:44 - 2019-07-31 20:44 - 000047600 _____ (Dropbox, Inc.) C:\WINDOWS\system32\Drivers\dbx-canary.sys
2019-07-28 18:49 - 2019-07-28 18:49 - 000000000 ____H C:\WINDOWS\system32\Drivers\Msft_Kernel_avusbflt_01011.Wdf
2019-07-28 09:54 - 2019-07-28 09:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
2019-07-20 09:35 - 2019-07-20 09:35 - 000003182 _____ C:\WINDOWS\System32\Tasks\Driver Booster Scheduler
2019-07-20 09:35 - 2019-07-20 09:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Booster 5
2019-07-19 18:47 - 2019-07-20 09:35 - 000002942 _____ C:\WINDOWS\System32\Tasks\Driver Booster SkipUAC (abank)
2019-07-19 15:19 - 2019-07-19 15:19 - 047297440 _____ (IObit ) C:\Users\abank\Downloads\advanced-systemcare-setup.exe
2019-07-19 13:27 - 2019-07-19 13:27 - 011675160 _____ (IObit ) C:\Users\abank\Downloads\iobit-software-updater-setup.exe
2019-07-19 12:42 - 2019-07-19 12:42 - 000003108 _____ C:\WINDOWS\System32\Tasks\ASC12_PerformanceMonitor
2019-07-19 12:41 - 2019-07-19 12:41 - 000002902 _____ C:\WINDOWS\System32\Tasks\ASC12_SkipUac_abank
2019-07-19 10:42 - 2019-07-19 10:42 - 040412360 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 035270016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 020190592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 017467592 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 011059128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 009492224 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 005422464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 005085096 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 004759240 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 004340664 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 002040192 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 001722056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6443136.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 001542016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 001470904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 001467832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6443136.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 001162168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 001134464 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 001006792 _____ C:\WINDOWS\system32\vulkan-1-999-0-0-0.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 001006792 _____ C:\WINDOWS\system32\vulkan-1.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000912072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000870088 _____ C:\WINDOWS\SysWOW64\vulkan-1-999-0-0-0.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000870088 _____ C:\WINDOWS\SysWOW64\vulkan-1.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000821176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcumd.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000808832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000675224 _____ C:\WINDOWS\system32\nvofapi64.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000654720 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000631712 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000552136 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000542296 _____ C:\WINDOWS\SysWOW64\nvofapi.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000521872 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000456448 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2019-07-19 10:42 - 2019-07-19 10:42 - 000286408 _____ C:\WINDOWS\system32\vulkaninfo-1-999-0-0-0.exe
2019-07-19 10:42 - 2019-07-19 10:42 - 000286408 _____ C:\WINDOWS\system32\vulkaninfo.exe
2019-07-19 10:42 - 2019-07-19 10:42 - 000260296 _____ C:\WINDOWS\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2019-07-19 10:42 - 2019-07-19 10:42 - 000260296 _____ C:\WINDOWS\SysWOW64\vulkaninfo.exe
2019-07-19 10:42 - 2019-07-19 10:42 - 000052446 _____ C:\WINDOWS\system32\nvinfo.pb
2019-07-18 12:06 - 2019-07-18 12:06 - 000000000 ____D C:\Users\abank\AppData\Local\AviraSpeedup
2019-07-14 12:10 - 2019-07-14 12:10 - 000002950 _____ C:\WINDOWS\System32\Tasks\Uninstaller_SkipUac_abank
2019-07-13 17:52 - 2019-07-13 17:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Protected Folder
2019-07-13 17:34 - 2019-07-13 17:34 - 000003174 _____ C:\WINDOWS\System32\Tasks\Software Updater Scheduler
2019-07-13 17:12 - 2019-08-03 17:07 - 000002239 _____ C:\Users\abank\Desktop\WhatsApp.lnk
2019-07-13 17:12 - 2019-07-13 17:13 - 000000000 ____D C:\Users\abank\AppData\Local\WhatsApp
2019-07-12 17:04 - 2019-07-12 17:04 - 000003584 _____ C:\Users\abank\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-07-12 09:49 - 2019-07-12 09:49 - 000003258 _____ C:\WINDOWS\System32\Tasks\SmartDefrag_AutoAnalyze
2019-07-12 09:49 - 2016-03-25 14:33 - 000128288 _____ (IObit) C:\WINDOWS\system32\IObitSmartDefragExtension.dll
2019-07-11 14:46 - 2019-07-04 06:56 - 007519896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2019-07-11 14:46 - 2019-07-04 06:42 - 006570368 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll
2019-07-11 14:46 - 2019-07-04 06:37 - 025857536 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2019-07-11 14:46 - 2019-07-04 06:29 - 022717440 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2019-07-11 14:45 - 2019-07-04 11:45 - 001786680 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppVEntVirtualization.dll
2019-07-11 14:45 - 2019-07-04 11:43 - 000094008 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2019-07-11 14:45 - 2019-07-04 11:41 - 000304144 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mssecflt.sys
2019-07-11 14:45 - 2019-07-04 11:40 - 021390504 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2019-07-11 14:45 - 2019-07-04 11:40 - 001631808 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2019-07-11 14:45 - 2019-07-04 11:40 - 001616840 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2019-07-11 14:45 - 2019-07-04 11:40 - 000790416 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2019-07-11 14:45 - 2019-07-04 11:22 - 000131072 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2019-07-11 14:45 - 2019-07-04 11:22 - 000128000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2019-07-11 14:45 - 2019-07-04 11:21 - 008627200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2019-07-11 14:45 - 2019-07-04 11:20 - 001609216 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2019-07-11 14:45 - 2019-07-04 11:19 - 000420864 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2019-07-11 14:45 - 2019-07-04 11:18 - 003614208 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2019-07-11 14:45 - 2019-07-04 11:18 - 001663488 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2019-07-11 14:45 - 2019-07-04 10:56 - 001453416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll
2019-07-11 14:45 - 2019-07-04 10:54 - 000662352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2019-07-11 14:45 - 2019-07-04 10:51 - 020384128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2019-07-11 14:45 - 2019-07-04 10:41 - 007990784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2019-07-11 14:45 - 2019-07-04 10:37 - 002882048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys
2019-07-11 14:45 - 2019-07-04 10:36 - 001471488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2019-07-11 14:45 - 2019-07-04 07:00 - 001035040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe
2019-07-11 14:45 - 2019-07-04 06:58 - 001328440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2019-07-11 14:45 - 2019-07-04 06:58 - 001219896 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe
2019-07-11 14:45 - 2019-07-04 06:58 - 000416312 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll
2019-07-11 14:45 - 2019-07-04 06:58 - 000192824 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\appid.sys
2019-07-11 14:45 - 2019-07-04 06:57 - 003292152 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2019-07-11 14:45 - 2019-07-04 06:57 - 001027384 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe
2019-07-11 14:45 - 2019-07-04 06:57 - 000986128 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncHost.exe
2019-07-11 14:45 - 2019-07-04 06:57 - 000776784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2019-07-11 14:45 - 2019-07-04 06:57 - 000723728 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2019-07-11 14:45 - 2019-07-04 06:57 - 000708696 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2019-07-11 14:45 - 2019-07-04 06:57 - 000568104 _____ (Microsoft Corporation) C:\WINDOWS\system32\tcblaunch.exe
2019-07-11 14:45 - 2019-07-04 06:57 - 000362264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll
2019-07-11 14:45 - 2019-07-04 06:57 - 000209424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wermgr.exe
2019-07-11 14:45 - 2019-07-04 06:57 - 000194360 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll
2019-07-11 14:45 - 2019-07-04 06:57 - 000137656 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcrypt.dll
2019-07-11 14:45 - 2019-07-04 06:57 - 000134968 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll
2019-07-11 14:45 - 2019-07-04 06:57 - 000091776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpfve.sys
2019-07-11 14:45 - 2019-07-04 06:56 - 009084216 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2019-07-11 14:45 - 2019-07-04 06:56 - 007436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll
2019-07-11 14:45 - 2019-07-04 06:56 - 002810680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2019-07-11 14:45 - 2019-07-04 06:56 - 002571640 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2019-07-11 14:45 - 2019-07-04 06:56 - 001566520 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2019-07-11 14:45 - 2019-07-04 06:56 - 001459120 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2019-07-11 14:45 - 2019-07-04 06:56 - 001260776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2019-07-11 14:45 - 2019-07-04 06:56 - 001141496 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2019-07-11 14:45 - 2019-07-04 06:56 - 000983936 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2019-07-11 14:45 - 2019-07-04 06:56 - 000767536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2019-07-11 14:45 - 2019-07-04 06:56 - 000734952 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2019-07-11 14:45 - 2019-07-04 06:56 - 000713272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVideoDSP.dll
2019-07-11 14:45 - 2019-07-04 06:56 - 000604984 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe
2019-07-11 14:45 - 2019-07-04 06:56 - 000493752 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcryptprimitives.dll
2019-07-11 14:45 - 2019-07-04 06:56 - 000115512 _____ (Microsoft Corporation) C:\WINDOWS\system32\kdnet.dll
2019-07-11 14:45 - 2019-07-04 06:43 - 000832016 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncHost.exe
2019-07-11 14:45 - 2019-07-04 06:43 - 000665440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wer.dll
2019-07-11 14:45 - 2019-07-04 06:43 - 000328696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wlanapi.dll
2019-07-11 14:45 - 2019-07-04 06:43 - 000287376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll
2019-07-11 14:45 - 2019-07-04 06:43 - 000191800 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wermgr.exe
2019-07-11 14:45 - 2019-07-04 06:42 - 006044008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll
2019-07-11 14:45 - 2019-07-04 06:42 - 002479176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll
2019-07-11 14:45 - 2019-07-04 06:42 - 001980984 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2019-07-11 14:45 - 2019-07-04 06:42 - 001427768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxPackaging.dll
2019-07-11 14:45 - 2019-07-04 06:42 - 000573808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2019-07-11 14:45 - 2019-07-04 06:42 - 000356312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcryptprimitives.dll
2019-07-11 14:45 - 2019-07-04 06:42 - 000097272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\bcrypt.dll
2019-07-11 14:45 - 2019-07-04 06:41 - 000559328 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll
2019-07-11 14:45 - 2019-07-04 06:33 - 022017536 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2019-07-11 14:45 - 2019-07-04 06:26 - 004385280 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll
2019-07-11 14:45 - 2019-07-04 06:26 - 000310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2019-07-11 14:45 - 2019-07-04 06:26 - 000051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2019-07-11 14:45 - 2019-07-04 06:25 - 019372544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2019-07-11 14:45 - 2019-07-04 06:25 - 007589888 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2019-07-11 14:45 - 2019-07-04 06:25 - 004861440 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2019-07-11 14:45 - 2019-07-04 06:25 - 003401216 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2019-07-11 14:45 - 2019-07-04 06:25 - 000295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll
2019-07-11 14:45 - 2019-07-04 06:25 - 000079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2019-07-11 14:45 - 2019-07-04 06:24 - 000726528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\PEAuth.sys
2019-07-11 14:45 - 2019-07-04 06:24 - 000567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2019-07-11 14:45 - 2019-07-04 06:24 - 000462336 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2019-07-11 14:45 - 2019-07-04 06:24 - 000153600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2019-07-11 14:45 - 2019-07-04 06:23 - 001765888 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2019-07-11 14:45 - 2019-07-04 06:23 - 001217536 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2019-07-11 14:45 - 2019-07-04 06:23 - 000786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2019-07-11 14:45 - 2019-07-04 06:22 - 003707904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2019-07-11 14:45 - 2019-07-04 06:22 - 002587648 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2019-07-11 14:45 - 2019-07-04 06:22 - 002176000 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2019-07-11 14:45 - 2019-07-04 06:22 - 001561088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2019-07-11 14:45 - 2019-07-04 06:22 - 001549824 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2019-07-11 14:45 - 2019-07-04 06:22 - 001175552 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSyncCore.dll
2019-07-11 14:45 - 2019-07-04 06:22 - 000300544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2019-07-11 14:45 - 2019-07-04 06:22 - 000110592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll
2019-07-11 14:45 - 2019-07-04 06:22 - 000032768 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\werdiagcontroller.dll
2019-07-11 14:45 - 2019-07-04 06:21 - 005784064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2019-07-11 14:45 - 2019-07-04 06:21 - 005307392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\d2d1.dll
2019-07-11 14:45 - 2019-07-04 06:21 - 003202560 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2019-07-11 14:45 - 2019-07-04 06:21 - 002166784 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2019-07-11 14:45 - 2019-07-04 06:21 - 001920000 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2019-07-11 14:45 - 2019-07-04 06:21 - 001220608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll
2019-07-11 14:45 - 2019-07-04 06:21 - 000324096 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll
2019-07-11 14:45 - 2019-07-04 06:21 - 000124416 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll
2019-07-11 14:45 - 2019-07-04 06:21 - 000059392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\offreg.dll
2019-07-11 14:45 - 2019-07-04 06:20 - 001156608 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcss.dll
2019-07-11 14:45 - 2019-07-04 06:20 - 000544256 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2019-07-11 14:45 - 2019-07-04 06:20 - 000392704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll
2019-07-11 14:45 - 2019-07-04 06:20 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncryptprov.dll
2019-07-11 14:45 - 2019-07-04 06:19 - 000886272 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll
2019-07-11 14:45 - 2019-07-04 06:19 - 000230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll
2019-07-11 14:45 - 2019-07-04 06:18 - 002602496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2019-07-11 14:45 - 2019-07-04 06:18 - 001076224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdpcore.dll
2019-07-11 14:45 - 2019-07-04 06:18 - 000965632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll
2019-07-11 14:45 - 2019-07-04 06:18 - 000953344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSyncCore.dll
2019-07-11 14:45 - 2019-07-04 06:18 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ncryptprov.dll
2019-07-11 14:45 - 2019-07-04 06:17 - 000531968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2019-07-11 14:45 - 2019-07-04 05:01 - 000001312 _____ C:\WINDOWS\system32\tcbres.wim
2019-07-11 14:45 - 2019-06-13 09:48 - 000677376 _____ (Microsoft Corporation) C:\WINDOWS\system32\HeadTrackerStorage.dll
2019-07-11 14:45 - 2019-06-13 09:46 - 000713216 _____ (Microsoft Corporation) C:\WINDOWS\system32\SharedRealitySvc.dll
2019-07-11 14:44 - 2019-07-11 14:44 - 000003372 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-553357693-3709259513-4241168041-1001
2019-07-11 14:43 - 2019-07-11 14:43 - 000002421 _____ C:\Users\abank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2019-07-11 14:09 - 2019-07-11 14:09 - 000001235 _____ C:\Users\Public\Desktop\Smart Defrag 6.lnk
2019-07-08 09:48 - 2019-07-08 09:48 - 001154336 _____ (Realtek ) C:\WINDOWS\system32\Drivers\rt640x64.sys
2019-07-07 11:12 - 2019-07-07 11:12 - 000038497 _____ C:\Users\abank\Documents\Jagd - Kosten 2019 -.pdf
==================== Ein Monat (geänderte) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2019-08-03 18:12 - 2018-04-12 01:38 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-08-03 17:30 - 2015-11-21 10:37 - 000000000 ____D C:\Users\abank\Documents\mobackups
2019-08-03 17:29 - 2018-02-18 17:34 - 000002118 _____ C:\Users\abank\Desktop\outlook sicherg.lnk
2019-08-03 17:29 - 2016-06-26 12:11 - 000000000 ____D C:\Users\abank\AppData\Roaming\MOBackup
2019-08-03 17:29 - 2015-11-21 10:36 - 000000000 ____D C:\Program Files (x86)\MOBackup
2019-08-03 17:26 - 2018-04-14 10:09 - 000001129 _____ C:\Users\abank\Desktop\ShellfireVPN.lnk
2019-08-03 17:26 - 2016-11-22 11:39 - 000000000 ____D C:\Users\abank\AppData\LocalLow\Mozilla
2019-08-03 17:25 - 2019-03-13 19:05 - 000001644 _____ C:\Users\abank\Desktop\TreeSize.exe - Verknüpfung.lnk
2019-08-03 17:25 - 2019-03-13 18:21 - 000000000 ____D C:\ProgramData\TEMP
2019-08-03 17:25 - 2017-08-11 12:26 - 000000000 ____D C:\Users\abank\AppData\Roaming\WhatsApp
2019-08-03 16:57 - 2015-11-13 13:22 - 000000000 ___RD C:\Users\abank\Dropbox
2019-08-03 16:40 - 2019-03-13 12:55 - 000000000 ____D C:\Program Files (x86)\IOTransfer
2019-08-03 16:38 - 2017-02-12 16:44 - 000000000 ____D C:\Program Files (x86)\ShellfireVPN
2019-08-03 16:38 - 2015-11-15 12:08 - 000000000 ____D C:\Program Files (x86)\Avira
2019-08-03 16:38 - 2015-11-15 11:27 - 000000000 ____D C:\ProgramData\Avira
2019-08-03 16:32 - 2017-07-01 19:39 - 000000000 ____D C:\ProgramData\NVIDIA
2019-08-03 16:31 - 2018-08-27 10:47 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2019-08-03 16:31 - 2017-11-17 11:14 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-08-03 14:15 - 2018-04-11 23:04 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2019-08-03 14:05 - 2018-08-27 10:20 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2019-08-03 12:41 - 2017-11-17 11:14 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2019-08-03 10:28 - 2016-03-03 17:29 - 000000000 ____D C:\Users\abank\AppData\Local\CrashDumps
2019-08-03 10:23 - 2015-11-15 12:28 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-08-03 10:18 - 2018-04-12 01:38 - 000000000 ___HD C:\Program Files\WindowsApps
2019-08-03 10:18 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\AppReadiness
2019-08-03 10:07 - 2017-08-02 11:59 - 000000000 ____D C:\ProgramData\ProductData
2019-08-02 17:56 - 2015-12-14 11:54 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-08-02 17:43 - 2019-06-27 13:11 - 000000000 ____D C:\Users\Public\Speedup Sessions
2019-08-02 17:35 - 2018-01-18 13:31 - 000000000 ____D C:\Program Files\rempl
2019-08-02 17:25 - 2017-08-02 11:59 - 000000000 ____D C:\Program Files (x86)\IObit
2019-08-02 16:33 - 2016-05-12 15:01 - 000000000 ____D C:\Users\abank\Documents\Outlook-Dateien
2019-08-02 10:18 - 2016-05-02 10:06 - 000004525 _____ C:\Users\abank\2.mbs.txt
2019-08-01 19:24 - 2015-12-02 18:02 - 000000000 ____D C:\Program Files (x86)\Dropbox
2019-07-28 18:49 - 2015-11-15 12:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2019-07-28 11:35 - 2017-08-20 19:09 - 000000000 ____D C:\Users\abank\AppData\Roaming\vlc
2019-07-28 11:26 - 2015-11-25 17:30 - 000000000 ____D C:\Users\abank\AppData\Local\Adobe
2019-07-28 11:14 - 2018-08-27 10:47 - 000003780 _____ C:\WINDOWS\System32\Tasks\AviraSystemSpeedupUpdate
2019-07-28 10:09 - 2016-09-17 14:32 - 000000000 ____D C:\Users\abank\AppData\Local\ACBA3D09-4730-4F92-B55B-09051A50F42B.aplzod
2019-07-28 10:09 - 2015-12-03 11:16 - 000000000 ___RD C:\Users\abank\iCloudDrive
2019-07-28 10:09 - 2015-12-03 11:16 - 000000000 ____D C:\Users\abank\AppData\Local\Apple Inc
2019-07-28 09:54 - 2016-03-22 10:21 - 000000000 ____D C:\Program Files\iTunes
2019-07-28 09:54 - 2016-03-22 10:21 - 000000000 ____D C:\Program Files\iPod
2019-07-28 09:49 - 2015-12-13 12:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2019-07-27 11:23 - 2018-08-27 10:25 - 000000000 ____D C:\Users\abank
2019-07-27 10:31 - 2016-03-17 11:34 - 000004525 _____ C:\Users\abank\7.mbs.txt
2019-07-25 10:58 - 2018-07-24 13:40 - 000199008 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2019-07-25 10:58 - 2018-07-24 13:40 - 000196328 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2019-07-22 18:26 - 2018-06-29 15:57 - 000000000 ____D C:\Users\abank\AppData\LocalLow\Temp
2019-07-22 18:01 - 2018-04-12 01:30 - 000000000 ____D C:\WINDOWS\CbsTemp
2019-07-20 18:03 - 2018-10-26 05:22 - 000000000 ____D C:\Users\abank\Documents\German
2019-07-19 15:16 - 2018-07-10 09:34 - 000000000 ____D C:\ProgramData\Packages
2019-07-19 15:16 - 2018-07-07 11:21 - 000000000 ____D C:\Users\abank\AppData\Local\PlaceholderTileLogoFolder
2019-07-19 15:16 - 2018-01-27 15:18 - 000000000 ____D C:\Users\abank\AppData\Local\Packages
2019-07-19 13:54 - 2018-06-22 17:45 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-07-19 13:54 - 2018-04-12 01:38 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2019-07-19 12:39 - 2017-08-02 11:59 - 000000000 ____D C:\ProgramData\IObit
2019-07-19 10:48 - 2016-05-02 09:50 - 000000000 ____D C:\Program Files (x86)\Adobe
2019-07-19 10:45 - 2018-02-25 12:37 - 000000000 ____D C:\Temp
2019-07-19 10:44 - 2018-04-12 01:36 - 000000000 ____D C:\WINDOWS\INF
2019-07-18 14:41 - 2016-04-08 11:13 - 000008896 _____ C:\Users\abank\8.mbs.txt
2019-07-16 17:43 - 2018-08-27 10:39 - 001718588 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2019-07-16 17:43 - 2018-04-12 18:14 - 000741854 _____ C:\WINDOWS\system32\perfh007.dat
2019-07-16 17:43 - 2018-04-12 18:14 - 000149526 _____ C:\WINDOWS\system32\perfc007.dat
2019-07-16 13:14 - 2017-11-13 11:35 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-07-13 18:05 - 2019-05-28 15:30 - 000003440 _____ C:\WINDOWS\System32\Tasks\SU_AutoUpdate
2019-07-13 17:13 - 2017-08-11 12:25 - 000000000 ____D C:\Users\abank\AppData\Local\SquirrelTemp
2019-07-13 17:12 - 2017-08-11 12:26 - 000000000 ____D C:\Users\abank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2019-07-12 17:10 - 2015-11-20 09:52 - 000000000 ____D C:\Users\abank\AppData\Local\Google
2019-07-12 09:48 - 2016-11-20 23:50 - 000000000 __RHD C:\Users\Public\AccountPictures
2019-07-12 09:48 - 2016-08-14 10:14 - 000000000 ___RD C:\Users\abank\3D Objects
2019-07-12 09:45 - 2019-03-19 14:37 - 000424112 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2019-07-11 15:31 - 2018-04-12 18:19 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2019-07-11 15:31 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\TextInput
2019-07-11 15:31 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2019-07-11 15:31 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\oobe
2019-07-11 15:31 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\bcastdvr
2019-07-11 15:31 - 2018-04-11 23:04 - 000000000 ____D C:\WINDOWS\system32\Dism
2019-07-11 14:44 - 2015-11-13 10:33 - 000000000 ____D C:\WINDOWS\system32\MRT
2019-07-11 14:43 - 2015-11-12 21:15 - 000000000 ___RD C:\Users\abank\OneDrive
2019-07-11 14:37 - 2015-11-13 10:33 - 136618864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2019-07-11 14:09 - 2019-01-29 11:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smart Defrag
2019-07-10 17:21 - 2018-08-27 10:47 - 000004636 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player NPAPI Notifier
2019-07-10 17:20 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\SysWOW64\Macromed
2019-07-10 17:20 - 2018-04-12 01:38 - 000000000 ____D C:\WINDOWS\system32\Macromed
2019-07-08 17:25 - 2016-03-14 10:23 - 000000000 ____D C:\ProgramData\Nero
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ================
2017-09-26 18:47 - 2017-09-26 18:47 - 000000001 _____ () C:\Program Files (x86)\Helper.dll
2019-07-12 17:04 - 2019-07-12 17:04 - 000003584 _____ () C:\Users\abank\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2019-06-28 11:32 - 2019-06-28 11:32 - 000000000 _____ () C:\Users\abank\AppData\Local\oobelibMkey.log
2018-08-26 18:45 - 2018-08-26 18:45 - 000000017 _____ () C:\Users\abank\AppData\Local\resmon.resmoncfg
==================== SigCheck ===============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ============================ |