| |
| |||||||
Plagegeister aller Art und deren Bekämpfung: iyfsearch.com wie bekomme ich das weg?Windows 7 Wenn Du nicht sicher bist, ob Du dir Malware oder Trojaner eingefangen hast, erstelle hier ein Thema. Ein Experte wird sich mit weiteren Anweisungen melden und Dir helfen die Malware zu entfernen oder Unerwünschte Software zu deinstallieren bzw. zu löschen. Bitte schildere dein Problem so genau wie möglich. Sollte es ein Trojaner oder Viren Problem sein wird ein Experte Dir bei der Beseitigug der Infektion helfen. |
06.04.2020, 14:25
| #1 |
 |  iyfsearch.com wie bekomme ich das weg? Hallo seit einiger zeit habe ich diese iyfsearch.com wenn ich diese Seite "http://forum.worldoftanks.eu/index.php?/forum/" anklicke wird dann immer ein neuer Tab mit der iyfsearch.com aufgemacht, den kann ich dann weg machen , das Problem tritt aber nur im Vivaldi-Browser auf . FSRT.txt Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 05-04-2020
durchgeführt von webma (Administrator) auf GAMER-RICO1 (MEDION X761X) (06-04-2020 14:36:24)
Gestartet von C:\Users\webma\Downloads
Geladene Profile: webma (Verfügbare Profile: webma)
Platform: Windows 10 Pro Version 1909 18363.720 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: "C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe" -- "%1"
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(ALCPU -> ALCPU) C:\Program Files\Core Temp\Core Temp.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Canon Inc. -> CANON INC.) C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe
(Corel Corporation -> WinZip Computing) C:\Program Files\WinZip\WzPreloader.exe
(Digital Wave Ltd -> Digital Wave Ltd.) C:\Program Files (x86)\Common Files\DVDVideoSoft\lib\app_updater.exe
(Discord Inc. -> Discord Inc.) C:\Users\webma\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\webma\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\webma\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\webma\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\webma\AppData\Local\Discord\app-0.0.306\Discord.exe
(Discord Inc. -> Discord Inc.) C:\Users\webma\AppData\Local\Discord\app-0.0.306\Discord.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\eguiProxy.exe
(ESET, spol. s r.o. -> ESET) C:\Program Files\ESET\ESET Security\ekrn.exe
(Geek Software GmbH -> Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Geek Software GmbH -> Geek Software GmbH) C:\Program Files (x86)\PDF24\pdf24.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\SurSvc.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv.exe
(Intel(R) Software Development Products -> ) C:\Program Files\Intel\SUR\QUEENCREEK\x64\esrv_svc.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\DebugDiag\DbgSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.19081.28230.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1910.0.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12003.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.20022.82.0_x64__8wekyb3d8bbwe\YourPhoneServer\YourPhoneServer.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.20022.11011.0_x64__8wekyb3d8bbwe\Video.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\LocationNotificationWindows.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Opera Software AS -> Opera Software) C:\Users\webma\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
(Opera Software AS -> Opera Software) C:\Users\webma\AppData\Local\Programs\Opera\assistant\browser_assistant.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Reiner Kartengeraete GmbH und Co.KG -> REINER SCT) C:\Windows\SysWOW64\cjpcsc.exe
(Sanford, L.P.) [Datei ist nicht signiert] C:\Program Files (x86)\DYMO\DYMO Connect\DYMOConnectPnPService.exe
(Shanghai Microvirt Software Technology Co., Ltd. -> ) C:\Program Files (x86)\Microvirt\MEmu\MemuService.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(Skype Software Sarl -> Skype Technologies S.A.) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
(SurfRight B.V. -> SurfRight B.V.) C:\Program Files\HitmanPro\hmpsched.exe
(Synology Inc. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(Synology Inc. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\Synology\CloudStationBackup\bin\vss-service-x64.exe
(Synology Inc. -> Synology Inc.) C:\Users\webma\AppData\Local\CloudStationBackup\CloudStation.app\bin\cloud-backup-connect.exe
(Synology Inc. -> Synology Inc.) C:\Users\webma\AppData\Local\CloudStationBackup\CloudStation.app\bin\cloud-backup-daemon.exe
(Synology Inc. -> Synology Inc.) C:\Users\webma\AppData\Local\CloudStationBackup\CloudStation.app\bin\cloud-backup-ui.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Vivaldi Technologies AS -> Vivaldi Technologies AS) C:\Users\webma\AppData\Local\Vivaldi\Application\vivaldi.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\dlls\wgc_renderer.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\WargamingErrorMonitor.exe
(Wargaming.net Limited -> Wargaming.net) C:\ProgramData\Wargaming.net\GameCenter\wgc.exe
(WinZip Computing LLC -> WinZip Computing, S.L.) C:\Program Files\WinZip\FAHWindow64.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
Code:
ATTFilter (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Security\ecmdS.exe [185648 2020-04-04] (ESET, spol. s r.o. -> ESET)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.)
HKLM\...\Run: [Windows Mobile Device Center] => C:\WINDOWS\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation -> Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [WinZip UN] => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-01-30] (Corel Corporation -> Corel Corporation)
HKLM\...\Run: [WinZip PreLoader] => C:\Program Files\WinZip\WzPreloader.exe [130624 2019-01-30] (Corel Corporation -> WinZip Computing)
HKLM\...\Run: [WinZip FAH] => C:\Program Files\WinZip\FAHConsole.exe [436416 2019-01-30] (WinZip Computing LLC -> WinZip Computing, S.L.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [19677688 2020-02-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [3617784 2020-02-16] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [OTB_util] => C:\Program Files (x86)\OTB_util\OTB_util.exe [253952 2009-02-04] () [Datei ist nicht signiert]
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [452272 2012-08-31] (Canon Inc. -> CANON INC.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2623032 2019-07-05] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [PDFPrint] => C:\Program Files (x86)\PDF24\pdf24.exe [472200 2019-03-04] (Geek Software GmbH -> Geek Software GmbH)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646160 2019-12-11] (Oracle America, Inc. -> Oracle Corporation)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5314096 2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
HKU\S-1-5-21-2866053971-2540759527-2922736165-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [91585088 2020-03-31] (Skype Software Sarl -> Skype Technologies S.A.)
HKU\S-1-5-21-2866053971-2540759527-2922736165-1001\...\Run: [Wargaming.net Game Center] => C:\ProgramData\Wargaming.net\GameCenter\wgc.exe [2417528 2020-03-11] (Wargaming.net Limited -> Wargaming.net)
HKU\S-1-5-21-2866053971-2540759527-2922736165-1001\...\Run: [Opera Browser Assistant] => C:\Users\webma\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [3024920 2020-03-27] (Opera Software AS -> Opera Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\PC Clone EX.LNK [2018-09-22]
ShortcutTarget: PC Clone EX.LNK -> C:\Program Files (x86)\PcCloneEX\PcCloneEX.EXE (FNet Co., Ltd.) [Datei ist nicht signiert]
Startup: C:\Users\webma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma.lnk [2019-04-14]
ShortcutTarget: Adobe Gamma.lnk -> C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) [Datei ist nicht signiert]
Startup: C:\Users\webma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\An OneNote senden.lnk [2018-09-28]
ShortcutTarget: An OneNote senden.lnk -> C:\Program Files (x86)\Microsoft Office\root\Office16\ONENOTEM.EXE (Microsoft Corporation -> Microsoft Corporation)
Startup: C:\Users\webma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station Backup.lnk [2020-04-06]
ShortcutTarget: Synology Cloud Station Backup.lnk -> C:\Program Files (x86)\Synology\CloudStationBackup\bin\launcher.exe (Synology Inc. -> Synology Inc.) [Datei ist nicht signiert]
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {09C9C26A-18C4-4592-A5B1-504AEB58E324} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_pepper.exe [1453624 2020-03-11] (Adobe Inc. -> Adobe)
Task: {0FD663D6-9327-4DD9-B2F9-66D56923F5B6} - System32\Tasks\Intel PTT EK Recertification => C:\Program Files\Intel\Intel(R) Management Engine Components\iCLS\IntelPTTEKRecertification.exe [834856 2019-11-16] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {1887A5BB-0983-464B-ACCE-695F175B3AB2} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {25872747-384A-4A65-BA57-67DCA5629BCB} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B96351D-FEEE-4C8F-A716-B0A091DC7567} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_344_Plugin.exe [1458232 2020-03-11] (Adobe Inc. -> Adobe)
Task: {2EED397E-84DD-4D95-AE14-95DFA1292B52} - System32\Tasks\USER_ESRV_SVC_QUEENCREEK => "C:\WINDOWS\System32\Wscript.exe" //B //NoLogo "C:\Program Files\Intel\SUR\QUEENCREEK\x64\task.vbs"
Task: {42C42F15-B9DC-4C22-9959-9D245317F823} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {46F661B3-2FC4-4595-BB87-DDA2C076AEA6} - System32\Tasks\Core Temp Autostart webma => C:\Program Files\Core Temp\Core Temp.exe [1011592 2019-08-24] (ALCPU -> ALCPU)
Task: {56C87F6A-F5BE-46A4-95AD-80C47023AE2B} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [914456 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5AC1EECD-B8AB-4CDD-BAD9-B8CC1B57345E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3302880 2019-12-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5FCC5BF1-B694-4A4E-8CD0-911B47AE26B1} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe
Task: {6100DBD6-9E28-406C-8B52-6BC7CAB328EF} - System32\Tasks\WinZip Update Notifier 3 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-01-30] (Corel Corporation -> Corel Corporation)
Task: {6E25BCAB-5B7E-4DFE-831F-241FA4B4C612} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Overwolf\OverwolfUpdater.exe [2463064 2020-03-14] (Overwolf Ltd -> Overwolf LTD)
Task: {6F62C83A-9361-47B9-B505-48E0F005D3F5} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe
Task: {76A78A5F-B242-460F-9DF5-510C0544B980} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7A51080C-509F-49D3-8EC5-E72E284BB522} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7A84AFC2-09D0-4E34-8057-366CE8B1475F} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {83BE28F0-D29F-4FD4-A512-0C098DE494BA} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132 => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
Task: {8476FE9E-00E5-4F68-9E80-72AD0F0EE34D} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\webma\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\ESETOnlineScanner_DEU (1).exe
Task: {8A553D90-1E64-495C-BEAE-0C3382EF23ED} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\AVAST Software\Overseer\overseer.exe [1660520 2020-02-27] (Avast Software s.r.o. -> Avast Software)
Task: {8E930C04-3582-4C59-82C9-A8A87DF9D690} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\webma\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\TempState\Downloads\ESETOnlineScanner_DEU (1).exe
Task: {9765D11D-9395-4B9A-ABE1-7CDBA7B3256B} - System32\Tasks\Opera scheduled Autoupdate 1536090397 => C:\Users\webma\AppData\Local\Programs\Opera\launcher.exe [1538584 2020-03-27] (Opera Software AS -> Opera Software)
Task: {9BE594D2-679B-4416-84E3-12BDC9110BCC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {9C8208B6-2E4C-43D6-8158-07EFE3A6DAB1} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {A0181D99-7CAA-4DB3-B5F9-A709109E8510} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-06-09] (Google Inc -> Google Inc.)
Task: {A1F2EDCB-098B-4CDA-9699-DFBC2E4ABF4E} - System32\Tasks\BlueStacksHelper => C:\ProgramData\BlueStacks\Client\Helper\BlueStacksHelper.exe [745480 2019-04-16] (BlueStack Systems, Inc. -> BlueStack Systems, Inc.)
Task: {AE650712-6D7D-493E-83D9-E5D446F10C35} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2019-06-09] (Google Inc -> Google Inc.)
Task: {B16FF2F3-B12E-4708-9834-4CA69A55649E} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1134104 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B2492388-3B2D-4EEE-806D-D5D2B271E2E3} - System32\Tasks\IntelSURQC-Upgrade-86621605-2a0b-4128-8ffc-15514c247132-Logon => C:\Program Files\Intel\SUR\QUEENCREEK\Updater\bin\IntelSoftwareAssetManagerService.exe [18744 2019-04-15] (Intel(R) Software Development Products -> Intel Corporation)
Task: {B3B95E72-0FF4-4EE6-98A0-965FCC82E121} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [115032 2020-03-17] (Microsoft Corporation -> Microsoft Corporation)
Task: {B7B88889-0492-45BE-956E-84D42119E085} - System32\Tasks\WinZip Update Notifier 1 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-01-30] (Corel Corporation -> Corel Corporation)
Task: {B902CD60-AB85-4595-BA2A-45883FDFD3F2} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24600440 2020-03-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {CA18D16A-D90E-4F85-AFD7-145FD47F9B53} - System32\Tasks\TrackerAutoUpdate => D:\Tracker Software\Update\TrackerUpdate.exe [4475136 2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
Task: {D5231167-1699-4FBE-981A-5D15A39B1DE7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4369824 2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {D5532F82-0CA2-480C-A6E3-B9BEE1189062} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-03-11] (Adobe Inc. -> Adobe)
Task: {D58B99F6-EA24-4679-A22D-175A1D86F2F7} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [653848 2019-12-08] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E530036C-D301-4307-81CB-720B7C5D1833} - System32\Tasks\Opera scheduled assistant Autoupdate 1553616493 => C:\Users\webma\AppData\Local\Programs\Opera\launcher.exe [1538584 2020-03-27] (Opera Software AS -> Opera Software)
Task: {E9F5E5B2-2127-4867-AC45-EC2DC3FB98C7} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [858480 2019-12-05] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EDE0A060-0A69-4B16-B58E-A0C5318A2B87} - System32\Tasks\WinZip Update Notifier 2 => C:\Program Files\WinZip\WZUpdateNotifier.exe [2862032 2019-01-30] (Corel Corporation -> Corel Corporation)
Task: {F53334FB-CEEC-4F56-8B4F-5108DDFFE534} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1242704 2020-02-25] (Adobe Inc. -> Adobe Systems)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\WINDOWS\Tasks\TrackerAutoUpdate.job => D:\Tracker Software\Update\TrackerUpdate.exe-CheckUpdate(Tracker Software Products (Canada) Ltd.Kee
Code:
ATTFilter ==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
ProxyServer: [S-1-5-21-2866053971-2540759527-2922736165-1001] => 127.0.0.1:80
Tcpip\Parameters: [DhcpNameServer] 192.168.5.1
Tcpip\..\Interfaces\{3f8eeb1e-842b-4e5f-b428-68e84d1713ef}: [DhcpNameServer] 192.168.5.1
Tcpip\..\Interfaces\{80b18207-e3b2-42d1-a830-a38109eaa152}: [DhcpNameServer] 192.168.5.1
Tcpip\..\Interfaces\{a954e0cd-f57e-4732-9e3d-a3eb36bba762}: [DhcpNameServer] 192.168.5.1
Internet Explorer:
==================
HKU\S-1-5-21-2866053971-2540759527-2922736165-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.google.de/
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\ssv.dll [2020-01-29] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\jp2ssv.dll [2020-01-29] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2018-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2018-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2020-03-06] (Microsoft Corporation -> Microsoft Corporation)
Edge:
======
DownloadDir: C:\Users\webma\Downloads
Edge Extension: (Pin It Button) -> EdgeExtension_PinterestPinItButton_xnkra2w3aecd0 => C:\Program Files\WindowsApps\Pinterest.PinItButton_1.39.5.0_neutral__xnkra2w3aecd0 [2018-10-03]
FireFox:
========
FF DefaultProfile: kvury3jt.default
FF ProfilePath: C:\Users\webma\AppData\Roaming\Mozilla\Firefox\Profiles\kvury3jt.default [2020-04-06]
FF Notifications: Mozilla\Firefox\Profiles\kvury3jt.default -> hxxps://de.stripchat.com; hxxps://www.facebook.com
FF Extension: (Firefox Multi-Account Containers) - C:\Users\webma\AppData\Roaming\Mozilla\Firefox\Profiles\kvury3jt.default\Extensions\@testpilot-containers.xpi [2020-03-19]
FF Extension: (AdBlocker Ultimate) - C:\Users\webma\AppData\Roaming\Mozilla\Firefox\Profiles\kvury3jt.default\Extensions\adblockultimate@adblockultimate.net.xpi [2020-03-19]
FF Extension: (Enhancer for YouTube™) - C:\Users\webma\AppData\Roaming\Mozilla\Firefox\Profiles\kvury3jt.default\Extensions\enhancerforyoutube@maximerf.addons.mozilla.org.xpi [2020-03-19]
FF Extension: (Decentraleyes) - C:\Users\webma\AppData\Roaming\Mozilla\Firefox\Profiles\kvury3jt.default\Extensions\jid1-BoFifL9Vbdl2zQ@jetpack.xpi [2020-03-19]
FF Extension: (uBlock Origin) - C:\Users\webma\AppData\Roaming\Mozilla\Firefox\Profiles\kvury3jt.default\Extensions\uBlock0@raymondhill.net.xpi [2019-09-17]
FF Extension: (Privacy Possum) - C:\Users\webma\AppData\Roaming\Mozilla\Firefox\Profiles\kvury3jt.default\Extensions\woop-NoopscooPsnSXQ@jetpack.xpi [2019-09-17]
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2019-05-02]
FF HKLM\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Extension: (McAfee® WebAdvisor) - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi [2020-03-10] [UpdateUrl:hxxps://www.siteadvisor.com/waffinstall/update.json]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF HKLM-x32\...\Firefox\Extensions: [{4ED1F68A-5463-4931-9384-8FFF5ED91D92}] - C:\Program Files\McAfee\WebAdvisor\e10ssaffplg.xpi
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_344.dll [2020-03-11] (Adobe Inc. -> )
FF Plugin: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> D:\Tracker Software\PDF Viewer\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_344.dll [2020-03-11] (Adobe Inc. -> )
FF Plugin-x32: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> D:\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @java.com/DTPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\dtplugin\npDeployJava1.dll [2020-01-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.241.2 -> C:\Program Files (x86)\Java\jre1.8.0_241\bin\plugin2\npjp2.dll [2020-01-29] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-12-06] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-01-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2019-04-09] (NVIDIA Corporation -> NVIDIA Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-03-06] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-07-05] (Adobe Inc. -> Adobe Systems)
FF Plugin HKU\S-1-5-21-2866053971-2540759527-2922736165-1001: @docu-track.com/PDF-XChange Viewer Plugin,version=1.0,application/pdf -> D:\Tracker Software\PDF Viewer\Win32\npPDFXCviewNPPlugin.dll [2018-12-13] (Tracker Software Products (Canada) Ltd. -> Tracker Software Products (Canada) Ltd.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\eset_security_config_overlay.js [2020-04-06]
Chrome:
=======
CHR Profile: C:\Users\webma\AppData\Local\Google\Chrome\User Data\Default [2020-03-18]
CHR Extension: (Präsentationen) - C:\Users\webma\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-09-22]
CHR Extension: (Docs) - C:\Users\webma\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-09-22]
CHR Extension: (Google Drive) - C:\Users\webma\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-09-22]
CHR Extension: (YouTube) - C:\Users\webma\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-09-22]
CHR Extension: (Tabellen) - C:\Users\webma\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-09-22]
CHR Extension: (Google Docs Offline) - C:\Users\webma\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-09-22]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\webma\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-09-22]
CHR Extension: (Google Mail) - C:\Users\webma\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-09-22]
CHR Extension: (Chrome Media Router) - C:\Users\webma\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-09-22]
CHR HKLM\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fheoggkfdfchfphceeifdbepaooicaho]
Opera:
=======
OPR Notifications: hxxps://www.computerbild.de; hxxps://www.digital-eliteboard.com; hxxps://www.youtube.com
OPR Extension: (MyJDownloader Browser Extension) - C:\Users\webma\AppData\Roaming\Opera Software\Opera Stable\Extensions\fbclnkmbcmdfamfeaagadifibbongnmf [2018-10-20]
__________________ Windows 10 pro 64 bit Opera 55.0 Vivaldi,FF.Thunderbird ESET IS |
| Themen zu iyfsearch.com wie bekomme ich das weg? |
| administrator, adobe, avast, bonjour, canon, desktop, explorer, flash player, geforce, google, internet, karte, mozilla, node.js, nvidia, opera, pdf, problem, prozesse, realtek, registry, rundll, scan, security, software, temp, webadvisor, windows, windowsapps |
Baum-Darstellung