Hi cosinus, für mich hat es sich so gelesen, als ob FRST mit dem Standarduser ausgeführt werden soll und zur Bereinigung - wenn nötig - Adminrechte vergeben werden sollen.
Hier nun FRST mit Standarduser zum Admin gemacht: Code:
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 14-02-2021
durchgeführt von Boris (Administrator) auf RADIOHEAD (16-02-2021 13:04:39)
Gestartet von C:\Users\Boris\Downloads
Geladene Profile: Boris & _ashbackup_
Platform: Windows 10 Pro Version 20H2 19042.804 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Edge
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
() [Datei ist nicht signiert] C:\Program Files (x86)\RocketDock\RocketDock.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\ApplePhotoStreams.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupClient-ab.exe
(Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupService-ab.exe
(Ashampoo GmbH & Co. KG -> ) C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\oxHelper.exe <2>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Client\Dropbox.exe <3>
(Dropbox, Inc -> Dropbox, Inc.) C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
(Dropbox, Inc -> Dropbox, Inc.) C:\Windows\System32\DbxSvc.exe
(Dropbox, Inc -> The Qt Company Ltd.) C:\Program Files (x86)\Dropbox\Client\115.4.601\QtWebEngineProcess.exe <3>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.72\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\MKCHelper.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Users\Boris\AppData\Local\Microsoft\OneDrive\OneDrive.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.740_none_e752aa59261f271f\TiWorker.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\MsMpEng.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2101.9-0\NisSrv.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe <2>
(Open Source Developer, Robin Krom -> Greenshot) C:\Program Files\Greenshot\Greenshot.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Paragon Software GmbH -> Paragon Software) C:\Program Files (x86)\Paragon Software\LinuxFS for Windows\Linux File Systems for Windows by Paragon Software.exe
(Paragon Software GmbH -> Paragon Software) C:\Program Files (x86)\Paragon Software\LinuxFS for Windows\paragon_service.exe
(RayShare Co.,Ltd -> ) C:\Program Files (x86)\Aiseesoft Studio\FoneLab\AppService.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Epson Printer Connection Checker\EPPCCMON.EXE
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mep.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Program Files (x86)\epson\MyEpson Portal\mepService.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\escsvc64.exe
(SEIKO EPSON CORPORATION -> Seiko Epson Corporation) C:\Windows\System32\spool\drivers\x64\3\E_YATIWFE.EXE
(Synology Inc. -> ) C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe
(Synology Inc. -> Synology Inc.) C:\Users\Boris\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-connect.exe
(Synology Inc. -> Synology Inc.) C:\Users\Boris\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-daemon.exe
(Synology Inc. -> Synology Inc.) C:\Users\Boris\AppData\Local\SynologyDrive\SynologyDrive.app\bin\cloud-drive-ui.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [Ashampoo Backup] => C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupClient-ab.exe [321944 2019-05-29] (Ashampoo GmbH & Co. KG -> )
HKLM\...\Run: [Greenshot] => C:\Program Files\Greenshot\Greenshot.exe [527792 2017-08-09] (Open Source Developer, Robin Krom -> Greenshot)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8466136 2015-04-30] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [EPPCCMON] => C:\Program Files (x86)\EPSON Software\Epson Printer Connection Checker\EPPCCMON.EXE [442936 2020-10-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291648 2012-05-20] (Intel Corporation -> Intel Corporation)
HKLM-x32\...\Run: [Dropbox] => C:\Program Files (x86)\Dropbox\Client\Dropbox.exe [7992336 2021-02-03] (Dropbox, Inc -> Dropbox, Inc.)
HKLM-x32\...\Run: [FoneLabAppService] => C:\Program Files (x86)\Aiseesoft Studio\FoneLab\AppService.exe [87752 2018-11-07] (RayShare Co.,Ltd -> )
HKLM-x32\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3137728 2021-01-09] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [EEventManager] => C:\Program Files (x86)\Epson Software\Event Manager\EEventManager.exe [1319208 2019-05-31] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706680 2020-12-09] (Oracle America, Inc. -> Oracle Corporation)
HKU\S-1-5-21-3489113682-1322098850-3835389644-1001\...\Run: [ApplePhotoStreams] => C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
HKU\S-1-5-21-3489113682-1322098850-3835389644-1001\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] () [Datei ist nicht signiert]
HKU\S-1-5-21-3489113682-1322098850-3835389644-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
HKU\S-1-5-21-3489113682-1322098850-3835389644-1001\...\Run: [iCloudDrive] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudDrive.exe
HKU\S-1-5-21-3489113682-1322098850-3835389644-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3489113682-1322098850-3835389644-1001\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWFE.EXE [418736 2019-08-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3489113682-1322098850-3835389644-1001\...\Run: [EPSDNMON] => C:\Program Files (x86)\Epson Software\Download Navigator\EPSDNMON.EXE [346712 2020-07-27] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3489113682-1322098850-3835389644-1001\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3489113682-1322098850-3835389644-1001\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3489113682-1322098850-3835389644-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\NFSSEA~1.SCR
HKU\S-1-5-21-3489113682-1322098850-3835389644-1003\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWFE.EXE [418736 2019-08-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3489113682-1322098850-3835389644-1003\...\RunOnce: [Delete Cached Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Valentin\AppData\Local\Microsoft\OneDrive\Update\OneDriveSetup.exe"
HKU\S-1-5-21-3489113682-1322098850-3835389644-1003\...\RunOnce: [Delete Cached Standalone Update Binary] => C:\WINDOWS\system32\cmd.exe /q /c del /q "C:\Users\Valentin\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe"
HKU\S-1-5-21-3489113682-1322098850-3835389644-1003\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3489113682-1322098850-3835389644-1003\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3489113682-1322098850-3835389644-1015\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWFE.EXE [418736 2019-08-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3489113682-1322098850-3835389644-1015\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3489113682-1322098850-3835389644-1015\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3489113682-1322098850-3835389644-500\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] () [Datei ist nicht signiert]
HKU\S-1-5-21-3489113682-1322098850-3835389644-500\...\Run: [AmazonMP3DownloaderHelper] => C:\Users\Administrator\AppData\Local\Program Files\Amazon\MP3 Downloader\AmazonMP3DownloaderHelper.exe [400704 2013-05-22] (Amazon Services LLC -> )
HKU\S-1-5-21-3489113682-1322098850-3835389644-500\...\Run: [Amazon Music] => C:\Users\Administrator\AppData\Local\Amazon Music\Amazon Music Helper.exe [3464680 2016-11-21] (Amazon Services LLC -> )
HKU\S-1-5-21-3489113682-1322098850-3835389644-500\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-3489113682-1322098850-3835389644-500\...\Run: [EPLTarget\P0000000000000000] => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YATIWFE.EXE [418736 2019-08-22] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
HKU\S-1-5-21-3489113682-1322098850-3835389644-500\...\Run: [NETGEARGenie] => C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenie.exe [610904 2018-07-23] (NETGEAR TAIWAN CO., LTD -> NETGEAR Inc.)
HKU\S-1-5-21-3489113682-1322098850-3835389644-500\...\Run: [EPSDNMON] => ""
HKU\S-1-5-21-3489113682-1322098850-3835389644-500\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3489113682-1322098850-3835389644-500\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3489113682-1322098850-3835389644-500\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\Bubbles.scr [809472 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Print\Monitors\Canon BJ FAX Language Monitor MB5300 series: C:\WINDOWS\system32\CNCALCG.DLL [303104 2014-04-28] (CANON INC.) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\Canon BJ Language Monitor MB5300 series: C:\WINDOWS\system32\CNMLMCG.DLL [406016 2014-04-23] (CANON INC.) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\Canon BJ Language Monitor MG5300 series: C:\WINDOWS\system32\CNMLMAT.DLL [385024 2012-03-14] (CANON INC.) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\Canon BJNP Port: C:\WINDOWS\system32\CNMN6PPM.DLL [375296 2014-03-17] (CANON INC.) [Datei ist nicht signiert]
HKLM\...\Print\Monitors\EPSON XP-2100 Series 64MonitorBE: C:\WINDOWS\system32\E_YLMBWFE.DLL [187392 2018-06-15] (Microsoft Windows Hardware Compatibility Publisher -> Seiko Epson Corporation)
HKLM\...\Print\Monitors\HP B111 Status Monitor: C:\WINDOWS\system32\hpinkstsB111LM.dll [331664 2012-10-17] (Hewlett Packard -> Hewlett-Packard Co.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.150\Installer\chrmstp.exe [2021-02-04] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] ->
HKLM\Software\...\Winlogon\GPExtensions: [{6cfb9c5c-138e-4bb3-8a3d-d5383e910e57}] -> %SystemRoot%\System32\RdpGroupPolicyExtension.dll
Startup: C:\Users\Boris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2020-12-02]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files\Microsoft Office\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\Boris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2021-02-16]
ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc. -> Synology Inc.)
Startup: C:\Users\Valentin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2020-12-24]
ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc. -> Synology Inc.)
Startup: C:\Users\Vincent\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Drive Client.lnk [2020-11-21]
ShortcutTarget: Synology Drive Client.lnk -> C:\Program Files (x86)\Synology\SynologyDrive\bin\launcher.exe (Synology Inc. -> Synology Inc.)
GroupPolicy: Beschränkung ? <==== ACHTUNG
GroupPolicy\User: Beschränkung ? <==== ACHTUNG
GroupPolicyUsers\S-1-5-21-3489113682-1322098850-3835389644-1003\User: Beschränkung <==== ACHTUNG
GroupPolicyUsers\S-1-5-21-3489113682-1322098850-3835389644-1001\User: Beschränkung <==== ACHTUNG
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {073C439C-931F-4636-94F7-011FA741FE3E} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2646160 2019-10-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {0AD97DFA-930E-4C82-85CF-63EF9B281808} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0BEA40D0-663A-423A-B270-1C5C5A8F0884} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649152 2017-06-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0C3E3589-121B-4BCB-8E79-DB1CE0185CE3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [677344 2021-02-10] (Mozilla Corporation -> Mozilla Foundation)
Task: {14F73D8E-D96D-4BEB-8693-E94FAB19A719} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {223ED636-7ECD-4F36-B32B-5B42DDD18320} - System32\Tasks\LinuxFS GUI => C:\Program Files (x86)\Paragon Software\LinuxFS for Windows\Linux File Systems for Windows by Paragon Software.exe [2108608 2018-04-09] (Paragon Software GmbH -> Paragon Software)
Task: {25788B33-1C2B-4CE2-BB4D-8A56BE2856F9} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {29E955DA-DD5A-4A02-8C95-ABD8786563BC} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}
Task: {2E75D66D-1ABA-47C6-97CA-A8896AA7BE68} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [649152 2017-06-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {31451337-D996-4B6A-8D7F-2056192637AD} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> Keine Datei <==== ACHTUNG
Task: {36CBBE99-FDF7-4871-92E2-608A184D0C3A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> Keine Datei <==== ACHTUNG
Task: {37B07B62-911E-472B-8E89-165A042964C9} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2177464 2019-10-16] (Microsoft Corporation -> Microsoft)
Task: {3FDE3BC1-88C0-4793-B036-DDFCC92286F5} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> Keine Datei <==== ACHTUNG
Task: {43E007F3-9269-4CAA-8194-5B4661E7FF90} - System32\Tasks\EPSON XP-2100 Series Update {87EF2EFE-5085-4BB0-BC87-0F183E0ED2EA} => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWFE.EXE [680440 2017-06-07] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
Task: {46FA1EDC-092F-496E-A35A-8C7F0B474C96} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {4A04321B-5D42-4182-87AE-F5C4575684E2} - System32\Tasks\{69BE4C55-396F-42BA-BA28-586716DA03D5} => C:\windows\system32\pcalua.exe -a "C:\Program Files (x86)\ElsterFormular\bin\installationsverwaltung.exe" -d "C:\Program Files (x86)\ElsterFormular\bin" -c --admin --zeigeDlg
Task: {4C878F87-3BCE-4CE4-B658-BB67536A90CA} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4E8F05B5-90D4-41C9-85B4-7ED0DF67B84D} - System32\Tasks\npcapwatchdog => C:\Program [Argument = Files\Npcap\CheckStatus.bat]
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {60BA401F-5966-4C84-AE44-1E4A79D68699} - System32\Tasks\DropboxUpdateTaskMachineCore => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-05-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {67342BEE-71E8-4992-A7D1-F0E30C3168C1} - \Microsoft\Windows\Setup\gwx\rundetector -> Keine Datei <==== ACHTUNG
Task: {68EEC94A-D8A7-4D4E-ABAF-687F2A3EF838} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmMon.exe [436672 2017-06-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {6B3C7186-1AF4-498F-9BBF-4079E7BC665C} - System32\Tasks\Amazon Music Helper => C:\Users\Administrator\AppData\Local\Amazon Music\Amazon Music Helper.exe [3464680 2016-11-21] (Amazon Services LLC -> )
Task: {74BD757B-4595-45BB-8380-5B05E6DDC79F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {75CD2BCF-B66B-4EC8-B1EC-B23A00DF6006} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [732096 2017-06-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {763E28BD-FC82-44B6-9AD9-AC9B813D54FA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-05] (Google Inc -> Google Inc.)
Task: {79A6EF86-7A56-4612-8F2A-24ACB48CED7C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> Keine Datei <==== ACHTUNG
Task: {7A3673EB-F58A-4E1E-873F-23E96AA524D1} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2646160 2019-10-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7E017540-880D-42A6-AA4C-1B3B7CBC6CEB} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [39920 2018-10-24] (Garmin International, Inc. -> )
Task: {7E648C23-FF09-4C0F-B03A-5C66290FA074} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> Keine Datei <==== ACHTUNG
Task: {8030BAF2-E61A-4966-BD94-4F75E571E711} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {86CA57F2-91F9-4F75-A5E9-367AF6A11A51} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> Keine Datei <==== ACHTUNG
Task: {8941E978-AF27-42AA-856B-82D84CC3E89B} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2043016 2019-10-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {8A9C8E17-EC8A-469A-9334-127FF41390A9} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {941AC671-CF50-40C0-A861-0519CB2B7BED} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {96A8FE3E-460A-407A-A7DA-598B9D04AB7E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> Keine Datei <==== ACHTUNG
Task: {A2067922-B078-4460-B287-BB93CE112AA1} - System32\Tasks\Microsoft_MKC_Logon_Task_ceip.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ceip.exe [32696 2019-10-16] (Microsoft Corporation -> Microsoft)
Task: {A276FDA1-2F70-4736-9C81-C4BBE1C1ED8B} - System32\Tasks\LinuxFS Updater => C:\Program Files (x86)\Paragon Software\LinuxFS for Windows\Updater.exe [948416 2018-04-09] (Paragon Software GmbH -> Paragon Software)
Task: {A497984D-1820-421E-8496-F48E05549AFF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {AD240EBB-4F88-4254-8CE6-F3469BEE4D2D} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> Keine Datei <==== ACHTUNG
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {C9E713D9-6F1D-4B18-B407-CAEB64C89B92} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MpCmdRun.exe [562240 2021-02-16] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {CEFE8ADE-4F6A-478C-82A1-0CBAFC9510AC} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-09-05] (Google Inc -> Google Inc.)
Task: {CF8C0F6A-3D14-4A10-8126-4CB9AF33CA0F} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> Keine Datei <==== ACHTUNG
Task: {D10DE3E2-70DE-4B64-BB6B-5A2A584ABD35} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> Keine Datei <==== ACHTUNG
Task: {D290B7FC-2C0B-441D-B3B0-5E99EECA265D} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {D93D2F0C-F14D-494D-A262-2587DBFD9F88} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> Keine Datei <==== ACHTUNG
Task: {D94987A5-C292-415D-84D7-1AA356C181DD} - System32\Tasks\{B77B3783-4884-48B5-830E-BE471BD06CD9} => C:\windows\system32\pcalua.exe -a C:\Users\Boris\Downloads\pcwEmptyFolder.z.exe
Task: {E1C915C4-EC58-474A-9AC3-5D2124025D0F} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> Keine Datei <==== ACHTUNG
Task: {E6A3E81B-0A4A-41AA-A1B2-2CD9CDAC7F0F} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2043016 2019-10-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {E85942B7-1704-4D9B-907C-D74AC1B5E33E} - System32\Tasks\{C992835A-CFA8-440B-9ACA-15D42E136F27} => C:\windows\system32\pcalua.exe -a C:\Users\Boris\Downloads\setup_mj.exe -d C:\Users\Boris\Downloads
Task: {F0CB451F-5FAF-4763-B8C4-0D5BF5936B35} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> Keine Datei <==== ACHTUNG
Task: {F4CE598E-380D-423D-B129-EAECF2F0C459} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvTmRep.exe [732096 2017-06-27] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F6FC2148-D29F-48F4-87A8-4AB50B734064} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> Keine Datei <==== ACHTUNG
Task: {FB16DFD4-4E4C-44C3-A4AE-8C678DF87CD4} - System32\Tasks\DropboxUpdateTaskMachineUA => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-05-10] (Dropbox, Inc -> Dropbox, Inc.)
Task: {FB905D8B-0C72-4AAA-A602-E036B8E95FCA} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {FFA97029-215E-48ED-A003-834DF4243AAE} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\ Update {9C760C3E-1668-49D2-A34C-04AF1048EA71}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWFE.EXE:/EXE:{9C760C3E-1668-49D2-A34C-04AF1048EA71} /F:UpdateMYHOMENET\RADIOHEAD$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job => C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\EPSON XP-2100 Series Update {87EF2EFE-5085-4BB0-BC87-0F183E0ED2EA}.job => C:\WINDOWS\system32\spool\DRIVERS\x64\3\E_YTSWFE.EXE:/EXE:{87EF2EFE-5085-4BB0-BC87-0F183E0ED2EA} /F:UpdateMYHOMENET\RADIOHEAD$ĊSearches for EPSON software updates, and notifies you when updates are available.If this task is disabled or stopped, your EPSON software will not be automatically kept up to date.Thi
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{4344248a-b8a0-46a0-a8d9-07a244d2e665}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{48224fbe-6544-47a4-9ea6-11787c736ba3}: [NameServer] 8.8.8.8,8.8.4.4
Tcpip\..\Interfaces\{48224fbe-6544-47a4-9ea6-11787c736ba3}: [DhcpNameServer] 192.168.178.1
Edge:
=======
Edge Profile: C:\Users\Boris\AppData\Local\Microsoft\Edge\User Data\Default [2021-02-16]
FireFox:
========
FF DefaultProfile: 01t02ted.default
FF ProfilePath: C:\Users\Boris\AppData\Roaming\Pencil\Profiles\94o2jz72.default [2016-04-15]
FF ProfilePath: C:\Users\Boris\AppData\Roaming\Mozilla\Firefox\Profiles\01t02ted.default [2021-02-16]
FF Homepage: Mozilla\Firefox\Profiles\01t02ted.default -> hxxps://www.google.de/
FF NetworkProxy: Mozilla\Firefox\Profiles\01t02ted.default -> no_proxies_on", "fritz.box"
FF Extension: (Firebug) - C:\Users\Boris\AppData\Roaming\Mozilla\Firefox\Profiles\01t02ted.default\Extensions\firebug@software.joehewitt.com.xpi [2017-03-02] []
FF Extension: (iCloud-Lesezeichen) - C:\Users\Boris\AppData\Roaming\Mozilla\Firefox\Profiles\01t02ted.default\Extensions\firefoxdav@icloud.com.xpi [2018-08-01]
FF Extension: (ProxTube) - C:\Users\Boris\AppData\Roaming\Mozilla\Firefox\Profiles\01t02ted.default\Extensions\ich@maltegoetz.de.xpi [2020-06-23]
FF Extension: (S3.Translater) - C:\Users\Boris\AppData\Roaming\Mozilla\Firefox\Profiles\01t02ted.default\Extensions\s3google@translator.xpi [2018-10-09]
FF Extension: (TiddlyWiki for Firefox) - C:\Users\Boris\AppData\Roaming\Mozilla\Firefox\Profiles\01t02ted.default\Extensions\tiddlyfox@tiddlywiki.org.xpi [2017-04-15] []
FF Extension: (Google Translator for Firefox) - C:\Users\Boris\AppData\Roaming\Mozilla\Firefox\Profiles\01t02ted.default\Extensions\translator@zoli.bod.xpi [2018-12-02]
FF HKLM\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\FFExt\light_plugin_firefox\addon.xpi => nicht gefunden
FF HKLM-x32\...\Firefox\Extensions: [fiddlerhook@fiddler2.com] - C:\Program Files (x86)\Fiddler2\FiddlerHook
FF Extension: (FiddlerHook) - C:\Program Files (x86)\Fiddler2\FiddlerHook [2015-10-20] [] [ist nicht signiert]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_A07576A3CEBC4A72A8CF2C925907DB05@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 18.0.0\FFExt\light_plugin_firefox\addon.xpi => nicht gefunden
FF Plugin: @java.com/DTPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\dtplugin\npDeployJava1.dll [2021-02-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.281.2 -> C:\Program Files\Java\jre1.8.0_281\bin\plugin2\npjp2.dll [2021-02-15] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Keine Datei]
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Keine Datei]
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.12 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-08-26] (Google Inc -> Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel(R) Identity Protection Technology Software -> Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [Keine Datei]
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [Keine Datei]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-02-15] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Keine Datei]
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Keine Datei]
FF Plugin HKU\.DEFAULT: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Keine Datei]
FF Plugin HKU\S-1-5-21-3489113682-1322098850-3835389644-1001: @rocketlife.com/RocketLife Secure Plug-In Layer;version=1.0.5 -> C:\Users\Boris\AppData\Roaming\Visan\plugins\npRLSecurePluginLayer.dll [2011-02-02] (Visan Industries -> RocketLife, LLP)
FF Plugin HKU\S-1-5-21-3489113682-1322098850-3835389644-1001: @zoom.us/ZoomVideoPlugin -> C:\Users\Boris\AppData\Roaming\Zoom\bin\npzoomplugin.dll [2020-04-22] (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FF Plugin HKU\S-1-5-21-3489113682-1322098850-3835389644-500: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Keine Datei]
FF Plugin HKU\S-1-5-21-3489113682-1322098850-3835389644-500: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.adobe.xfdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Keine Datei]
FF Plugin HKU\S-1-5-21-3489113682-1322098850-3835389644-500: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [Keine Datei]
FF Plugin HKU\S-1-5-21-3489113682-1322098850-3835389644-500: amazon.com/AmazonMP3DownloaderPlugin -> C:\Users\Administrator\AppData\Local\Program Files\Amazon\MP3 Downloader\npAmazonMP3DownloaderPlugin10181.dll [2013-05-22] (Amazon Services LLC -> Amazon.com, Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default [2021-02-16]
CHR StartupUrls: Default -> "hxxp://www.google.de/"
CHR Extension: (Docs) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-15]
CHR Extension: (Google Drive) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-10-25]
CHR Extension: (YouTube) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Google-Suche) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-09]
CHR Extension: (Adobe Acrobat) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-18]
CHR Extension: (iCloud-Lesezeichen) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkepacicchenbjecpbpbclokcabebhah [2017-10-11]
CHR Extension: (KeePass Tusk - Password Access and Autofill) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\fmhmiaejopepamlcjkncpgpdjichnecm [2018-09-30]
CHR Extension: (Google Docs Offline) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-18]
CHR Extension: (IE Tab) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\hehijbfgiekmjfkfjpbkbammjbdenadd [2021-01-19]
CHR Extension: (Stream Video Downloader) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\imkngaibigegepnlckfcbecjoilcjbhf [2021-01-02]
CHR Extension: (Acrobat Reader XI) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\mjbhopnjhjjgoahfbnjheiogehkncbnd [2015-04-14]
CHR Extension: (Save to Pocket) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\niloccemoadcdkdjlinkgdfekeahmflj [2021-02-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Google Mail) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-10-25]
CHR Extension: (Chrome Media Router) - C:\Users\Boris\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-25]
CHR Profile: C:\Users\Boris\AppData\Local\Google\Chrome\User Data\System Profile [2021-02-15]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [kpdmjodecdegfglgaapafjleomjjlpnh]
CHR HKLM-x32\...\Chrome\Extension: [npdicihegicnhaangkdmcgbjceoemeoo]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 ashbackup; c:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\backupService-ab.exe [34712 2019-05-29] (Ashampoo GmbH & Co. KG -> )
S2 dbupdate; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-05-10] (Dropbox, Inc -> Dropbox, Inc.)
S3 dbupdatem; C:\Program Files (x86)\Dropbox\Update\DropboxUpdate.exe [143144 2017-05-10] (Dropbox, Inc -> Dropbox, Inc.)
R2 DbxSvc; C:\Windows\system32\DbxSvc.exe [44064 2021-02-03] (Dropbox, Inc -> Dropbox, Inc.)
R2 EpsonScanSvc; C:\WINDOWS\system32\EscSvc64.exe [145224 2019-07-04] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S2 Fabs; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\FABS.exe [1858048 2012-01-23] (MAGIX AG) [Datei ist nicht signiert]
S3 FirebirdServerMAGIXInstance; C:\Program Files (x86)\Common Files\MAGIX Services\Database\bin\fbserver.exe [2702848 2011-04-26] (MAGIX®) [Datei ist nicht signiert]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [Datei ist nicht signiert]
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [Datei ist nicht signiert]
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [Datei ist nicht signiert]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-02-10] (Malwarebytes Inc -> Malwarebytes)
R2 MyEpson Portal Service; C:\Program Files (x86)\EPSON\MyEpson Portal\mepService.exe [714712 2017-06-28] (SEIKO EPSON CORPORATION -> Seiko Epson Corporation)
S3 NETGEARGenieDaemon; C:\Program Files (x86)\NETGEAR Genie\bin\NETGEARGenieDaemon64.exe [233456 2017-07-04] (Netgear Incorporated -> NETGEAR)
R2 ParagonLinuxFSMounter; C:\Program Files (x86)\Paragon Software\LinuxFS for Windows\paragon_service.exe [2883264 2018-04-09] (Paragon Software GmbH -> Paragon Software)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5198064 2021-01-13] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 Synology Drive VSS Service x64; C:\Program Files (x86)\Synology\SynologyDrive\bin\vss-service-x64.exe [370136 2019-09-20] (Synology Inc. -> )
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\NisSrv.exe [2462960 2021-02-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2101.9-0\MsMpEng.exe [128376 2021-02-16] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_1c83a5d7cffd7bff\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
R2 NvTelemetryContainer; "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files (x86)\NVIDIA Corporation\NvTelemetry\plugin"
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [31992 2015-06-03] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
S3 ampa; C:\WINDOWS\system32\ampa.sys [38320 2017-02-28] (CHENGDU AOMEI Tech Co., Ltd. -> )
S3 AppleKmdfFilter; C:\Windows\System32\drivers\AppleKmdfFilter.sys [20032 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 AppleLowerFilter; C:\Windows\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
S3 ddmdrv; C:\WINDOWS\system32\ddmdrv.sys [35760 2016-12-27] (CHENGDU AOMEI Tech Co., Ltd. -> )
R2 Dokan; C:\Windows\System32\DRIVERS\dokan.sys [76608 2018-04-09] (Paragon Software GmbH -> Windows (R) Win 7 DDK provider)
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [220600 2021-02-16] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [19912 2021-02-10] (Microsoft Windows Early Launch Anti-malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248992 2021-02-16] (Malwarebytes Inc -> Malwarebytes)
S3 mmrv-ab; C:\Program Files\Ashampoo\Ashampoo Backup 2020\bin\mmrv-ab.sys [59424 2019-03-13] (Ashampoo GmbH & Co. KG -> )
S3 Netaapl; C:\Windows\System32\drivers\netaapl64.sys [23040 2015-11-05] (Microsoft Windows Hardware Compatibility Publisher -> Apple Inc.)
R2 NPF; C:\WINDOWS\system32\drivers\npf.sys [35344 2020-05-11] (CACE Technologies, Inc. -> CACE Technologies, Inc.)
R2 speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 splknetdrv; C:\Windows\system32\DRIVERS\splknetdrv.sys [40408 2018-09-27] (SPLUNK INC -> Windows (R) Win 7 DDK provider)
S3 splunkdrv; C:\Windows\system32\DRIVERS\splunkdrv.sys [34776 2018-09-27] (SPLUNK INC -> Windows (R) Win 7 DDK provider)
S3 SplunkMonitorNoHandle; C:\Windows\System32\DRIVERS\SplunkMonitorNoHandleDrv.sys [25048 2018-09-27] (SPLUNK INC -> Windows (R) Win 7 DDK provider)
R0 sptd2; C:\Windows\System32\Drivers\sptd2.sys [162360 2016-12-15] (Disc Soft Ltd -> Duplex Secure Ltd)
S3 ss_bserd; C:\Windows\system32\DRIVERS\ss_bserd.sys [128000 2009-09-19] (MCCI Corporation -> MCCI Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [49552 2021-02-16] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [419040 2021-02-16] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [71912 2021-02-16] (Microsoft Windows -> Microsoft Corporation)
S3 WIMMount; C:\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wimmount.sys [42688 2016-07-16] (Microsoft Corporation -> Microsoft Corporation)
R1 Win10Pcap; C:\Windows\system32\DRIVERS\Win10Pcap.sys [50304 2015-10-07] (SoftEther Corporation -> Daiyuu Nobori, University of Tsukuba, Japan)
R1 Win10Pcap; C:\Windows\SysWOW64\DRIVERS\Win10Pcap.sys [44544 2017-01-11] (SoftEther Corporation -> Daiyuu Nobori, University of Tsukuba, Japan)
S3 WofAdk; C:\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit\Deployment Tools\amd64\DISM\wofadk.sys [221376 2016-07-16] (Microsoft Corporation -> Microsoft Corporation)
U3 idsvc; kein ImagePath
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-02-16 13:03 - 2021-02-16 13:03 - 000220600 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamChameleon.sys
2021-02-16 11:41 - 2021-02-16 11:41 - 002297856 _____ (Farbar) C:\Users\Boris\Downloads\FRST64 (1).exe
2021-02-16 11:40 - 2021-02-16 12:59 - 000084016 _____ C:\Users\Boris\Downloads\Addition.txt
2021-02-16 11:38 - 2021-02-16 13:05 - 000047774 _____ C:\Users\Boris\Downloads\FRST.txt
2021-02-16 11:38 - 2021-02-16 08:14 - 002297856 _____ (Farbar) C:\Users\Boris\Downloads\FRST64.exe
2021-02-16 09:49 - 2021-02-16 09:49 - 000610097 _____ C:\Users\Administrator\Downloads\Konfiguration_SPRINZ_Glasdusche.pdf
2021-02-16 09:44 - 2021-02-16 09:44 - 001328952 _____ C:\Users\Administrator\Downloads\SPRINZ_Flyer_Duschenwelt-Ersatzteile_V1_15-01-2020.pdf
2021-02-16 09:44 - 2021-02-16 09:44 - 001328952 _____ C:\Users\Administrator\Downloads\SPRINZ_Flyer_Duschenwelt-Ersatzteile_V1_15-01-2020 (1).pdf
2021-02-16 08:14 - 2021-02-16 08:14 - 002297856 _____ (Farbar) C:\Users\Administrator\Downloads\FRST64.exe
2021-02-16 08:00 - 2021-02-16 08:00 - 000000085 _____ C:\Windows\wininit.ini
2021-02-16 07:43 - 2021-02-16 07:43 - 126967784 _____ (geek software GmbH ) C:\Users\Administrator\Downloads\pdf24-creator-10.0.9.exe
2021-02-16 07:36 - 2021-02-16 07:36 - 001398112 _____ (O&O Software GmbH) C:\Users\Administrator\Downloads\OOSU10.exe
2021-02-16 07:29 - 2021-02-16 07:29 - 002981136 _____ (Irfan Skiljan) C:\Users\Administrator\Downloads\iview457_setup.exe
2021-02-15 17:44 - 2021-02-15 17:44 - 000000000 ____D C:\ProgramData\Doctor Web
2021-02-15 17:41 - 2021-02-15 17:41 - 000000000 ____D C:\Windows\Panther
2021-02-15 17:38 - 2021-02-15 17:39 - 236941064 _____ C:\Users\Administrator\Downloads\apfs30qz.exe
2021-02-15 17:02 - 2021-02-15 17:02 - 000000500 _____ C:\Users\Administrator\AppData\Roaming\haj-log_2021-02-15 17_02_14.mjf
2021-02-15 17:02 - 2021-02-15 17:02 - 000000500 _____ C:\Users\Administrator\AppData\Roaming\haj-log_2021-02-15 17_02_00.mjf
2021-02-15 17:02 - 2021-02-15 17:02 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\EurekaLog
2021-02-15 16:53 - 2021-02-15 16:53 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\obs-studio
2021-02-15 16:34 - 2021-02-15 16:34 - 003059478 _____ C:\Users\Administrator\Downloads\npp.7.9.3.portable.7z
2021-02-15 16:25 - 2021-02-15 16:25 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\26047
2021-02-15 14:24 - 2021-02-15 14:24 - 003572504 _____ C:\Users\Administrator\Downloads\mp3tagv305setup.exe
2021-02-15 14:17 - 2021-02-15 14:17 - 004304792 _____ (Dominik Reichl ) C:\Users\Administrator\Downloads\KeePass-2.47-Setup.exe
2021-02-15 14:10 - 2021-02-15 14:11 - 007638224 _____ (Piriform Software Ltd) C:\Users\Administrator\Downloads\rcsetup153.exe
2021-02-15 13:59 - 2021-02-15 14:10 - 000000000 ____D C:\Users\Administrator\AppData\Local\babl-0.1
2021-02-15 13:59 - 2021-02-15 13:59 - 000000000 ____D C:\Users\Administrator\AppData\Roaming\GIMP
2021-02-15 13:59 - 2021-02-15 13:59 - 000000000 ____D C:\Users\Administrator\AppData\Local\GIMP
2021-02-15 13:59 - 2021-02-15 13:59 - 000000000 ____D C:\Users\Administrator\AppData\Local\gegl-0.4
2021-02-15 11:44 - 2021-02-15 11:44 - 001478187 _____ (Igor Pavlov) C:\Users\Administrator\Downloads\7z2100-x64.exe
2021-02-15 11:34 - 2021-02-15 11:46 - 000000000 ____D C:\ProgramData\RogueKiller
2021-02-15 11:33 - 2021-02-15 11:33 - 000000000 ____D C:\Users\Administrator\AppData\Local\mbam
2021-02-15 11:32 - 2021-02-15 11:30 - 031051072 _____ C:\Users\Administrator\Downloads\RogueKiller_portable64.exe
2021-02-15 10:13 - 2021-02-15 10:13 - 000000000 ____D C:\Users\Administrator\AppData\Local\Abelssoft
2021-02-14 09:34 - 2021-02-16 13:05 - 000000000 ____D C:\FRST
2021-02-14 09:32 - 2021-02-14 09:29 - 002297344 ____C (Farbar) C:\Users\Boris\Desktop\FRST64.exe
2021-02-14 07:41 - 2021-02-14 15:34 - 000000000 ___DC C:\Users\Boris\AppData\LocalLow\IGDump
2021-02-14 07:39 - 2021-02-16 10:14 - 001060442 _____ C:\Windows\ntbtlog.txt
2021-02-11 18:36 - 2021-02-11 18:36 - 002417227 _____ C:\Users\Boris\Downloads\fritzfon-c6_man_de_DE.pdf
2021-02-10 21:52 - 2021-02-16 10:15 - 000248992 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2021-02-10 21:52 - 2021-02-10 21:52 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2021-02-10 21:52 - 2021-02-10 21:52 - 000019912 _____ (Malwarebytes) C:\Windows\system32\Drivers\MbamElam.sys
2021-02-10 21:52 - 2021-02-10 21:52 - 000002033 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-02-10 21:52 - 2021-02-10 21:52 - 000002021 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-02-10 21:52 - 2021-02-10 21:52 - 000002021 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-02-10 21:51 - 2021-02-10 21:46 - 201037240 _____ (Malwarebytes) C:\Users\Boris\Downloads\mb4-setup-consumer-4.3.0.206-1.0.1157-1.0.36359.exe
2021-02-10 19:01 - 2021-02-10 19:01 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2021-02-10 15:27 - 2021-02-10 21:52 - 000000000 ____D C:\Program Files\Malwarebytes
2021-02-10 14:12 - 2021-02-10 14:12 - 008457584 _____ (Malwarebytes) C:\Users\Boris\Downloads\adwcleaner_8.0.9.1.exe
2021-02-10 13:48 - 2021-02-16 10:19 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-02-10 13:20 - 2021-02-10 13:20 - 002755584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2021-02-10 13:20 - 2021-02-10 13:20 - 002755584 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2021-02-10 13:20 - 2021-02-10 13:20 - 001314112 _____ (Microsoft Corporation) C:\Windows\system32\SecConfig.efi
2021-02-10 13:20 - 2021-02-10 13:20 - 000010892 _____ C:\Windows\system32\DrtmAuthTxt.wim
2021-02-10 13:19 - 2021-02-10 13:19 - 000231232 _____ C:\Windows\system32\containerdevicemanagement.dll
2021-02-09 23:53 - 2021-02-09 23:53 - 000000000 ____D C:\Users\Boris\AppData\Roaming\npm-cache
2021-02-09 23:53 - 2021-02-09 23:53 - 000000000 ____D C:\Users\Boris\.config
2021-02-09 22:47 - 2021-02-09 22:47 - 000021866 _____ C:\Users\Boris\Downloads\habpanel-widget-openweathermap-master.zip
2021-02-08 08:59 - 2021-02-08 09:00 - 000002200 _____ C:\Users\Boris\Downloads\Baden-Wuerttemberg_2021_Schulferien.ics
2021-02-07 08:23 - 2021-02-07 08:23 - 001847517 _____ C:\Users\Boris\Downloads\MyLinux_RaspbiWiki(2).html
2021-02-06 09:37 - 2021-02-06 09:38 - 286775782 _____ C:\Users\Boris\Downloads\dbeaver-ee-7.3.0-win32.win32.x86_64.zip
2021-02-05 21:59 - 2020-10-07 13:36 - 001769688 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2021-02-05 21:59 - 2020-10-07 13:36 - 001769688 _____ C:\Windows\system32\vulkaninfo.exe
2021-02-05 21:59 - 2020-10-07 13:36 - 001370328 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2021-02-05 21:59 - 2020-10-07 13:36 - 001370328 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2021-02-05 21:59 - 2020-10-07 13:36 - 001054936 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2021-02-05 21:59 - 2020-10-07 13:36 - 001054936 _____ C:\Windows\system32\vulkan-1.dll
2021-02-05 21:59 - 2020-10-07 13:36 - 000917720 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2021-02-05 21:59 - 2020-10-07 13:36 - 000917720 _____ C:\Windows\SysWOW64\vulkan-1.dll
2021-02-05 21:59 - 2020-10-07 13:36 - 000455408 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2021-02-05 21:59 - 2020-10-07 13:36 - 000351128 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2021-02-05 21:59 - 2020-10-07 13:34 - 001023216 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2021-02-05 21:59 - 2020-10-07 13:34 - 000816368 _____ (NVIDIA Corporation) C:\Windows\system32\nvmcumd.dll
2021-02-05 21:59 - 2020-10-07 13:34 - 000673520 _____ C:\Windows\system32\nvofapi64.dll
2021-02-05 21:59 - 2020-10-07 13:34 - 000670616 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFROpenGL.dll
2021-02-05 21:59 - 2020-10-07 13:34 - 000555248 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFROpenGL.dll
2021-02-05 21:59 - 2020-10-07 13:34 - 000543128 _____ C:\Windows\SysWOW64\nvofapi.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 007707544 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 006860184 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 004174064 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 002508528 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 002098072 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 001585560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 001507224 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 001161112 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 000813464 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 000657304 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2021-02-05 21:59 - 2020-10-07 13:33 - 000589208 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2021-02-05 21:59 - 2020-10-07 13:33 - 000445848 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2021-02-05 21:59 - 2020-10-07 13:33 - 000047232 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvhdap64.dll
2021-02-05 21:59 - 2020-10-07 13:32 - 000849648 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2021-02-05 21:59 - 2020-10-07 13:29 - 005972824 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2021-02-05 21:59 - 2020-10-07 13:11 - 000080930 _____ C:\Windows\system32\nvinfo.pb
2021-02-05 21:37 - 2021-02-16 10:19 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2021-02-05 08:24 - 2021-02-05 08:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dropbox
2021-02-04 21:57 - 2021-02-04 21:57 - 000241580 _____ C:\Users\Boris\Downloads\Ferienkalender-2020-21.pdf
2021-02-03 20:31 - 2021-02-03 20:31 - 000012520 _____ C:\Users\Boris\AppData\Local\recently-used.xbel
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-stable.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-dev.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000047600 _____ (Dropbox, Inc.) C:\Windows\system32\Drivers\dbx-canary.sys
2021-02-03 12:50 - 2021-02-03 12:50 - 000044064 _____ (Dropbox, Inc.) C:\Windows\system32\DbxSvc.exe
2021-02-02 22:28 - 2021-02-02 22:28 - 000010662 _____ C:\Users\Boris\Downloads\waste-flach.svg
2021-02-02 22:28 - 2021-02-02 22:28 - 000010660 _____ C:\Users\Boris\Downloads\waste-rund.svg
2021-02-02 22:23 - 2021-02-02 22:23 - 000016843 _____ C:\Users\Boris\Downloads\waste-rest.svg
2021-02-02 22:23 - 2021-02-02 22:23 - 000002750 _____ C:\Users\Boris\Downloads\waste.svg
2021-02-02 22:22 - 2021-02-02 22:22 - 000012999 _____ C:\Users\Boris\Downloads\waste-bio.svg
2021-02-02 22:22 - 2021-02-02 22:22 - 000009105 _____ C:\Users\Boris\Downloads\waste-green.svg
2021-02-02 22:20 - 2021-02-02 22:20 - 000002656 _____ C:\Users\Boris\Downloads\3648932.svg
2021-02-02 21:58 - 2021-02-02 21:58 - 000002769 _____ C:\Users\Boris\Downloads\3936858.svg
2021-02-01 23:32 - 2021-01-27 18:36 - 002199408 ____N C:\Users\Boris\Downloads\emocheck_v2.0_x64.exe
2021-02-01 23:31 - 2021-02-01 23:31 - 001475509 _____ C:\Users\Boris\Downloads\Emocheck20.zip
2021-01-28 21:43 - 2021-01-28 21:43 - 000056717 _____ C:\Users\Boris\Downloads\Wappen_200px_Quadrat.jpeg
2021-01-28 20:32 - 2021-01-28 20:33 - 000020310 _____ C:\Users\Boris\Downloads\habpanel-config.json
2021-01-28 20:30 - 2021-01-28 20:30 - 000032205 _____ C:\Users\Boris\Downloads\habpanel-config_Tim_Rogers.json
2021-01-27 21:50 - 2021-01-27 21:50 - 000502323 _____ C:\Users\Boris\Downloads\Localize HABPanel (1).pdf
2021-01-26 22:57 - 2021-01-26 22:57 - 000005753 _____ C:\Users\Boris\Downloads\Confirm Switch.widget.json
2021-01-26 10:05 - 2021-01-26 10:06 - 030584912 _____ (Piriform Software Ltd) C:\Users\Boris\Downloads\ccsetup576.exe
2021-01-25 22:18 - 2021-01-25 22:18 - 080847266 _____ C:\Users\Boris\Downloads\inkscape-1.0.2_2021-01-15_e86c870-x64.7z
2021-01-21 15:19 - 2021-01-22 18:08 - 000000000 ____D C:\Users\Boris\AppData\Roaming\obs-studio
2021-01-21 15:19 - 2021-01-21 15:19 - 000001052 _____ C:\Users\Public\Desktop\OBS Studio.lnk
2021-01-21 15:19 - 2021-01-21 15:19 - 000001052 _____ C:\ProgramData\Desktop\OBS Studio.lnk
2021-01-21 15:19 - 2021-01-21 15:19 - 000000000 ____D C:\ProgramData\obs-studio-hook
2021-01-21 15:19 - 2021-01-21 15:19 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio
2021-01-21 15:18 - 2021-01-21 15:19 - 000000000 ____D C:\Program Files\obs-studio
2021-01-21 15:13 - 2021-01-21 15:16 - 000000000 ___DC C:\Users\Boris\Documents\My CamStudio Videos
2021-01-21 15:13 - 2021-01-21 15:15 - 000000000 ___DC C:\Users\Boris\Documents\My CamStudio Temp Files
2021-01-21 15:12 - 2021-01-21 15:12 - 000000096 _____ C:\Users\Boris\AppData\Roaming\version2.xml
2021-01-21 15:10 - 2021-01-21 15:10 - 075607864 _____ (obsproject.com) C:\Users\Boris\Downloads\obs-studio-26.1.1-full-installer-x64.exe
2021-01-21 15:09 - 2021-01-21 15:09 - 013800280 _____ (PortableApps.com) C:\Users\Boris\Downloads\CamStudioPortable_2.7.2_English.paf.exe
2021-01-21 15:03 - 2021-01-21 15:03 - 000001177 ____C C:\Users\Administrator\Desktop\VSDC Free Screen Recorder.lnk
2021-01-21 15:03 - 2021-01-21 15:03 - 000001167 ____C C:\Users\Administrator\Desktop\VSDC Free Video Capture.lnk
2021-01-21 15:03 - 2021-01-21 15:03 - 000001052 ____C C:\Users\Administrator\Desktop\VSDC Free Video Editor.lnk
2021-01-21 15:03 - 2021-01-21 15:03 - 000000000 ____D C:\Users\Boris\AppData\Local\CrashRpt
2021-01-21 15:03 - 2021-01-21 15:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FlashIntegro
2021-01-21 15:02 - 2021-01-21 15:03 - 000000000 ____D C:\Program Files\FlashIntegro
2021-01-21 15:02 - 2021-01-21 15:02 - 000000000 ____D C:\Program Files\Common Files\FlashIntegro
2021-01-21 15:02 - 2021-01-20 12:06 - 000083112 _____ (Multilab LLC) C:\Windows\system32\mslvddsfilter5.ax
2021-01-21 15:02 - 2011-12-07 18:32 - 000216064 _____ ( ) C:\Windows\system32\Lagarith.dll
2021-01-21 15:02 - 2005-08-01 18:43 - 000245760 _____ () C:\Windows\system32\lame.ax
2021-01-21 15:02 - 2004-12-10 09:03 - 000438272 _____ (On2.com) C:\Windows\system32\vp6vfw.dll
2021-01-21 15:02 - 2004-09-06 15:06 - 000053248 _____ C:\Windows\system32\xvid.ax
2021-01-21 15:02 - 2004-07-03 20:08 - 000139264 _____ C:\Windows\system32\xvidvfw.dll
2021-01-21 15:02 - 2004-07-03 19:59 - 000524288 _____ C:\Windows\system32\xvidcore.dll
2021-01-21 15:02 - 2004-02-04 20:11 - 000081920 _____ (fccHandler) C:\Windows\system32\AC3ACM.acm
2021-01-21 15:02 - 2003-05-22 11:26 - 000638976 _____ (DivXNetworks, Inc.) C:\Windows\system32\divx.dll
2021-01-21 15:02 - 2003-05-22 11:26 - 000221215 _____ (DivXNetworks, Inc.) C:\Windows\system32\divxdec.ax
2021-01-21 15:02 - 2003-05-21 22:50 - 000261632 _____ (MainConcept) C:\Windows\system32\mcdvd_32.dll
2021-01-21 15:02 - 2003-05-21 22:50 - 000082944 _____ (Voxware, Inc.) C:\Windows\system32\vct3216.acm
2021-01-21 15:02 - 2003-05-21 22:50 - 000038912 _____ (NCT Company) C:\Windows\system32\alf2cd.acm
2021-01-21 15:02 - 2003-05-21 22:50 - 000024576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3a.dll
2021-01-21 15:02 - 2003-03-25 04:49 - 000098304 _____ (Fraunhofer Institut Integrierte Schaltungen IIS) C:\Windows\system32\L3CODECX.AX
2021-01-21 15:02 - 2002-08-19 23:41 - 000413760 _____ (Microsoft Corporation) C:\Windows\system32\mpg4c32.dll
2021-01-21 15:02 - 2000-03-14 19:55 - 000013239 _____ (SHARP Corporation) C:\Windows\system32\Scg726.acm
2021-01-21 14:59 - 2021-01-21 15:01 - 093881160 _____ (Flash-Integro LLC ) C:\Users\Boris\Downloads\video_editor_x64.exe
2021-01-21 14:57 - 2021-01-21 14:57 - 000000000 ____D C:\Users\Boris\AppData\Roaming\VideoCapture
2021-01-21 14:47 - 2021-01-21 14:47 - 000000000 ____D C:\Users\Boris\AppData\Roaming\ScreenRecorder
2021-01-21 08:56 - 2021-01-21 08:56 - 000001399 _____ C:\Users\Boris\Downloads\door-window.widget.json
2021-01-20 23:12 - 2021-01-20 23:12 - 000013897 _____ C:\Users\Boris\Downloads\Ecobee.widget.json
2021-01-20 21:30 - 2021-01-20 21:30 - 000073391 _____ C:\Users\Boris\Downloads\HabPanel 31-12-18.json
2021-01-19 20:54 - 2021-01-19 20:54 - 000036934 _____ C:\Users\Boris\Downloads\marcelwolf-Openhab-widgets-e36635c.zip
2021-01-19 15:56 - 2021-01-19 15:57 - 003277357 _____ C:\Users\Boris\Downloads\Vincent SB Krabats Fluchtträume.zip
2021-01-18 11:54 - 2021-01-18 11:54 - 000000000 ___DC C:\Users\Boris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Git
2021-01-18 11:53 - 2020-05-08 10:07 - 046972776 _____ (The Git Development Community ) C:\Users\Boris\Downloads\Git-2.26.2-32-bit.exe
2021-01-18 11:53 - 2020-05-08 10:07 - 046891904 _____ (The Git Development Community ) C:\Users\Boris\Downloads\Git-2.26.2-64-bit.exe
2021-01-18 11:40 - 2021-01-18 11:40 - 093554847 _____ C:\Users\Boris\Downloads\Git-2.26.2.zip
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-02-16 13:05 - 2019-07-28 14:55 - 000000000 ____D C:\Program Files\CCleaner
2021-02-16 13:04 - 2020-04-05 11:07 - 000000000 ____D C:\Users\Boris\AppData\Local\SynologyDrive
2021-02-16 13:04 - 2015-09-29 21:37 - 000000000 ___RD C:\Users\Boris\DHL
2021-02-16 13:03 - 2020-06-11 21:27 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2021-02-16 13:03 - 2020-06-11 21:10 - 000008192 ___SH C:\DumpStack.log.tmp
2021-02-16 13:03 - 2020-05-06 19:53 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-16 13:03 - 2020-04-10 13:27 - 000000572 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2021-02-16 13:03 - 2019-12-07 10:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-16 13:03 - 2016-07-16 06:14 - 000000000 ___DC C:\Users\Boris\AppData\Local\Ashampoo Backup
2021-02-16 13:03 - 2015-08-17 18:15 - 000000000 ___RD C:\Users\Boris\iCloudDrive
2021-02-16 13:02 - 2019-12-07 10:03 - 001572864 _____ C:\Windows\system32\config\BBI
2021-02-16 12:48 - 2020-06-11 21:10 - 000000000 ____D C:\Windows\system32\SleepStudy
2021-02-16 11:19 - 2016-07-14 05:17 - 000000000 ___DC C:\Users\Administrator\AppData\Local\Ashampoo Backup
2021-02-16 10:31 - 2018-05-13 14:59 - 000000000 ____D C:\Windows\system32\Drivers\wd
2021-02-16 10:27 - 2020-06-11 21:18 - 001963744 _____ C:\Windows\system32\PerfStringBackup.INI
2021-02-16 10:27 - 2019-12-07 15:51 - 000838474 _____ C:\Windows\system32\perfh007.dat
2021-02-16 10:27 - 2019-12-07 15:51 - 000184866 _____ C:\Windows\system32\perfc007.dat
2021-02-16 10:27 - 2019-12-07 10:13 - 000000000 ____D C:\Windows\INF
2021-02-16 10:21 - 2020-05-11 10:47 - 000000000 ____D C:\Users\Administrator\AppData\Local\NETGEARGenie
2021-02-16 10:19 - 2019-12-07 10:14 - 000000000 ___HD C:\Windows\ELAMBKUP
2021-02-16 10:19 - 2019-12-07 10:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2021-02-16 10:19 - 2016-12-07 00:01 - 000000000 ____D C:\ProgramData\Kaspersky Lab
2021-02-16 10:19 - 2016-12-07 00:01 - 000000000 ____D C:\Program Files\Common Files\AV
2021-02-16 10:19 - 2014-02-05 22:59 - 000000000 ___DC C:\Users\Administrator\AppData\Roaming\KeePass
2021-02-16 10:14 - 2017-01-09 21:13 - 000000000 ___DC C:\Users\Administrator\AppData\LocalLow\Mozilla
2021-02-16 10:13 - 2013-09-04 06:36 - 000000000 ____D C:\ProgramData\Mozilla
2021-02-16 08:10 - 2018-05-07 21:51 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2021-02-16 08:03 - 2019-09-14 13:50 - 000000000 ___HD C:\Users\Administrator\WebComponents
2021-02-16 07:57 - 2019-03-31 13:50 - 000001186 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2021-02-16 07:57 - 2019-03-31 13:50 - 000000000 ____D C:\Program Files (x86)\KeePass Password Safe 2
2021-02-16 07:47 - 2018-05-13 14:48 - 000000000 ___DC C:\Users\Administrator\AppData\Roaming\Apple Computer
2021-02-16 07:42 - 2018-08-06 13:24 - 000000000 ____D C:\Program Files\NoVirusThanks
2021-02-16 07:30 - 2014-12-21 15:11 - 000000000 ____D C:\Program Files (x86)\IrfanView
2021-02-16 07:16 - 2015-11-08 08:19 - 000002136 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-02-16 07:14 - 2018-08-06 13:24 - 000025440 _____ (NoVirusThanks Company Srl) C:\Windows\system32\Drivers\osadevprotect.sys
2021-02-15 21:29 - 2019-02-04 12:42 - 000000000 ___DC C:\Users\Boris\AppData\Local\CrashDumps
2021-02-15 21:27 - 2017-01-07 17:38 - 000000000 ___DC C:\Users\Boris\AppData\LocalLow\Mozilla
2021-02-15 20:47 - 2017-10-22 10:55 - 000000000 ___DC C:\Users\Boris\AppData\Local\Packages
2021-02-15 20:40 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\AppReadiness
2021-02-15 20:29 - 2013-12-01 13:55 - 000000000 ___DC C:\Users\Boris\AppData\Roaming\KeePass
2021-02-15 19:42 - 2020-06-11 21:10 - 000000000 ____D C:\Users\Administrator
2021-02-15 18:43 - 2009-07-14 03:34 - 000760360 _____ C:\Windows\system32\Drivers\etc\hosts.bak
2021-02-15 17:52 - 2016-08-30 09:05 - 000000000 ___DC C:\Users\Administrator\AppData\Roaming\DVDVideoSoft
2021-02-15 17:19 - 2020-01-18 10:24 - 000000000 ____D C:\Program Files\Java
2021-02-15 16:57 - 2020-06-11 21:10 - 000002442 ____C C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-15 16:57 - 2016-05-26 15:20 - 000000000 ___RD C:\Users\Administrator\OneDrive
2021-02-15 16:56 - 2018-05-13 14:48 - 000002462 ____C C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive (1).lnk
2021-02-15 16:49 - 2020-01-18 10:24 - 000192168 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2021-02-15 16:49 - 2020-01-18 10:24 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2021-02-15 16:43 - 2017-04-16 10:44 - 000000000 ____D C:\ProgramData\Package Cache
2021-02-15 16:41 - 2013-09-12 12:48 - 000000000 ___DC C:\Users\Administrator\AppData\Roaming\Wireshark
2021-02-15 16:39 - 2013-10-26 15:19 - 000000000 ___DC C:\Users\Administrator\AppData\Local\ElevatedDiagnostics
2021-02-15 16:35 - 2015-03-11 23:32 - 000000000 ____D C:\Portable
2021-02-15 14:21 - 2020-06-11 21:10 - 000610392 _____ C:\Windows\system32\FNTCACHE.DAT
2021-02-15 14:21 - 2016-01-21 23:20 - 000000000 ____D C:\Program Files\7-Zip
2021-02-15 14:14 - 2014-11-09 11:25 - 000000000 ____D C:\ProgramData\Oracle
2021-02-15 14:13 - 2013-09-11 08:46 - 000000000 ___DC C:\Users\Administrator\AppData\Roaming\vlc
2021-02-15 10:15 - 2013-09-04 06:36 - 000000000 ___DC C:\Users\Administrator\AppData\Roaming\Thunderbird
2021-02-14 17:34 - 2020-06-11 21:10 - 000000000 ____D C:\Users\DefaultAppPool
2021-02-14 15:58 - 2019-12-07 10:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-14 07:37 - 2020-06-11 21:10 - 000000000 ____D C:\Users\_ashbackup_
2021-02-14 07:36 - 2020-06-11 21:10 - 000000000 ____D C:\Users\Boris
2021-02-14 07:30 - 2013-09-20 08:35 - 000000000 ____D C:\Users\Boris\Passwörter
2021-02-12 22:59 - 2020-06-14 09:54 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-02-12 14:44 - 2015-11-12 22:57 - 000000600 ____C C:\Users\Boris\AppData\Local\PUTTY.RND
2021-02-11 22:25 - 2018-10-14 17:33 - 000000000 ___DC C:\Users\Boris\AppData\Roaming\Code
2021-02-11 22:25 - 2013-09-21 23:33 - 000000128 ____C C:\Users\Boris\AppData\Roaming\winscp.rnd
2021-02-11 21:17 - 2018-10-14 17:33 - 000000000 ___DC C:\Users\Boris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code
2021-02-11 21:14 - 2014-11-19 23:31 - 000000000 ____D C:\Users\Boris\Eigene Bedienungsanleitungen
2021-02-11 11:35 - 2020-12-12 16:12 - 000000000 ____D C:\Users\Administrator\AppData\Local\CrashDumps
2021-02-11 11:31 - 2020-06-14 09:54 - 000003700 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-02-11 11:31 - 2020-06-14 09:54 - 000003576 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-02-10 23:44 - 2020-06-11 21:27 - 000004562 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2021-02-10 23:31 - 2013-09-04 06:36 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-02-10 20:51 - 2018-05-20 06:52 - 000000000 ___DC C:\Users\Administrator\AppData\Local\D3DSCache
2021-02-10 20:02 - 2013-09-20 08:35 - 000000000 ____D C:\Users\Boris\Telekommunikation
2021-02-10 19:01 - 2017-03-09 21:02 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-02-10 15:45 - 2017-10-22 10:55 - 000000000 ___DC C:\Users\Administrator\AppData\Local\Packages
2021-02-10 14:18 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\ServiceState
2021-02-10 13:58 - 2013-09-03 07:01 - 000799104 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2021-02-10 13:56 - 2017-05-10 21:11 - 000001248 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineUA.job
2021-02-10 13:56 - 2017-05-10 21:11 - 000001244 _____ C:\Windows\Tasks\DropboxUpdateTaskMachineCore.job
2021-02-10 13:55 - 2020-06-11 21:52 - 000000000 ____D C:\Program Files\Hyper-V
2021-02-10 13:55 - 2019-12-07 10:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2021-02-10 13:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SysWOW64\Keywords
2021-02-10 13:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\SystemResources
2021-02-10 13:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\oobe
2021-02-10 13:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\Keywords
2021-02-10 13:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\system32\es-MX
2021-02-10 13:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\PolicyDefinitions
2021-02-10 13:55 - 2019-12-07 10:14 - 000000000 ____D C:\Windows\bcastdvr
2021-02-10 13:55 - 2019-12-07 10:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-02-10 13:55 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\servicing
2021-02-10 13:22 - 2019-12-07 10:03 - 000000000 ____D C:\Windows\CbsTemp
2021-02-10 13:19 - 2002-01-02 19:32 - 000413690 __RSH C:\bootmgr
2021-02-10 13:12 - 2013-12-27 17:17 - 000000000 ____D C:\Windows\system32\MRT
2021-02-10 13:07 - 2013-12-27 17:17 - 130141752 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2021-02-10 00:59 - 2009-07-14 03:34 - 000000478 _____ C:\Windows\win.ini
2021-02-09 23:01 - 2015-11-24 13:05 - 000000000 ____D C:\Users\Boris\Eigener RasPi
2021-02-09 20:37 - 2013-09-04 06:36 - 000001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2021-02-08 19:14 - 2019-01-06 16:06 - 000000000 ___DC C:\Users\Boris\AppData\Local\FritzBoxTrafficMonitorLib
2021-02-05 22:00 - 2020-05-06 17:42 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-02-05 18:00 - 2013-09-20 08:35 - 000000000 ____D C:\Users\Boris\Valentin
2021-02-05 08:24 - 2017-05-10 21:11 - 000000000 ____D C:\Program Files (x86)\Dropbox
2021-02-05 04:46 - 2020-06-11 21:27 - 000003630 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2021-02-05 04:46 - 2020-06-11 21:27 - 000003506 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2021-02-04 23:45 - 2013-09-06 08:32 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-02-03 21:27 - 2020-06-11 21:27 - 000003368 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3489113682-1322098850-3835389644-1001
2021-02-03 21:27 - 2020-06-11 21:10 - 000002422 ____C C:\Users\Boris\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-02-03 21:27 - 2016-05-26 14:12 - 000000000 ___RD C:\Users\Boris\OneDrive
2021-02-03 00:09 - 2020-05-11 10:53 - 000000000 ____D C:\Users\Boris\AppData\Local\NETGEARGenie
2021-02-02 22:18 - 2020-05-11 21:53 - 000000000 ____D C:\Users\Boris\.dbus-keyrings
2021-02-02 22:17 - 2018-05-07 21:43 - 000000000 ___DC C:\Users\Boris\AppData\Local\babl-0.1
2021-02-02 22:17 - 2013-09-20 08:06 - 000000000 ___DC C:\Users\Boris\AppData\Local\gtk-2.0
2021-01-29 18:05 - 2020-11-09 08:01 - 000000000 ____D C:\Users\Boris\DAZN
2021-01-27 00:01 - 2018-06-03 11:00 - 000000000 ___DC C:\Users\Boris\AppData\Local\D3DSCache
2021-01-26 18:13 - 2013-10-28 23:10 - 000000000 ___DC C:\Users\Administrator\AppData\Roaming\Media Player Classic
2021-01-26 18:11 - 2021-01-06 01:32 - 000000000 ____D C:\Temp
2021-01-26 18:11 - 2020-06-11 21:27 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2021-01-25 22:55 - 2019-02-17 09:14 - 000000000 ___DC C:\Users\Boris\AppData\Roaming\inkscape
2021-01-25 19:19 - 2017-09-01 14:58 - 000000000 ____D C:\Users\Boris\Eigene Karten
2021-01-23 00:00 - 2021-01-09 14:27 - 000000000 ____D C:\Users\Boris\AppData\Local\PokerStars.EU
2021-01-22 08:15 - 2020-06-11 21:27 - 000004308 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineUA
2021-01-22 08:15 - 2020-06-11 21:27 - 000004076 _____ C:\Windows\system32\Tasks\DropboxUpdateTaskMachineCore
2021-01-21 15:04 - 2014-12-14 15:33 - 000000000 ___DC C:\Users\Boris\AppData\Roaming\FlashIntegro
2021-01-21 14:57 - 2014-11-22 11:47 - 000000000 ___DC C:\Users\Boris\Documents\FlashIntegro
2021-01-18 07:47 - 2019-09-14 15:55 - 000000000 ___DC C:\Users\Boris\AppData\Local\IE Tab
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2016-10-20 17:25 - 2016-10-21 05:55 - 000000198 ___HC () C:\Users\Boris\AppData\Roaming\eSReg.ini
2014-09-12 21:26 - 2014-09-14 21:56 - 000001018 ____C () C:\Users\Boris\AppData\Roaming\haj-log_2014-09-12 22_26_33.mjf
2021-01-21 15:12 - 2021-01-21 15:12 - 000000096 _____ () C:\Users\Boris\AppData\Roaming\version2.xml
2013-09-21 23:33 - 2021-02-11 22:25 - 000000128 ____C () C:\Users\Boris\AppData\Roaming\winscp.rnd
2013-10-28 21:44 - 2021-01-10 14:22 - 000044032 ____C () C:\Users\Boris\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-11-12 22:57 - 2021-02-12 14:44 - 000000600 ____C () C:\Users\Boris\AppData\Local\PUTTY.RND
2021-02-03 20:31 - 2021-02-03 20:31 - 000012520 _____ () C:\Users\Boris\AppData\Local\recently-used.xbel
2015-04-21 22:21 - 2015-04-21 22:21 - 000007630 ____C () C:\Users\Boris\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
