Habe Probleme mit meinem Rechner! ;)

JAMy · 14.10.2020, 10:52

Meine Logdateien:

FRST.log

Code:

ATTFilter

Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 10-10-2020
durchgeführt von JAMy (Administrator) auf JAMY (TOSHIBA TECRA Z40-B) (10-10-2020 23:38:29)
Gestartet von C:\Users\JAMy\AppData\Local\Temp\scoped_dir9864_711211001
Geladene Profile: JAMy
Platform: Windows 10 Pro Version 2004 20215.1000 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Opera
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Prozesse (Nicht auf der Ausnahmeliste) =================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)

(Ashampoo GmbH & Co. KG -> ) C:\Program Files (x86)\Ashampoo WinOptimizer 18\WO18.exe
(B3RAP Softwares) [Datei ist nicht signiert] D:\Downloads\!infected-zone.com\B3RAP Leecher v2.1.0.0\B3RAP Leecher v2.1.0.0\B3RAP Leecher v2.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\JAMy\AppData\Roaming\BitTorrent\BitTorrent.exe
(BitTorrent Inc -> BitTorrent Inc.) C:\Users\JAMy\AppData\Roaming\BitTorrent\updates\7.10.5_45785\bittorrentie.exe
(Devolutions inc. -> Devolutions inc.) C:\Program Files (x86)\Devolutions\Remote Desktop Manager\RemoteDesktopManager64.exe
(DTS, Inc. -> ) C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_b172549968baa801\DSDFunctionKeyCtlService.exe <2>
(Dynabook Inc. -> Dynabook Inc.) C:\Windows\System32\DriverStore\FileRepository\tossrvctl.inf_amd64_b172549968baa801\RMService.exe
(FinalWire Kft. -> FinalWire Ltd.) C:\Program Files (x86)\FinalWire\AIDA64 Engineer\aida64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel Corporation -> Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Intel(R) Wireless Connectivity Solutions -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Invincea, Inc. -> Sandboxie Holdings, LLC) C:\Program Files\Sandboxie\SbieSvc.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.9041.0_x64__8wekyb3d8bbwe\GameBar.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.420.9041.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe
(Microsoft Windows -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Scans\MsMpEngCP.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\cmd.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CredentialEnrollmentManager.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Microsoft Windows Hardware Compatibility Publisher -> Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2009.7-0\MsMpEng.exe
(MPC-HC Team) [Datei ist nicht signiert] C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe
(Notepad++ -> Don HO don.h@free.fr) C:\Program Files\Notepad++\notepad++.exe
(Opera Software AS -> Opera Software) C:\Users\JAMy\AppData\Local\Programs\Opera\71.0.3770.198\opera.exe <76>
(Opera Software AS -> Opera Software) C:\Users\JAMy\AppData\Local\Programs\Opera\71.0.3770.198\opera_crashreporter.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Schnapper-Software e.Kfm. -> www.bid-o-matic.org) C:\Program Files (x86)\Biet-O-Matic\Biet-O-Matic.exe
(Siber Systems -> Siber Systems Inc.) C:\Program Files (x86)\Siber Systems\AI RoboForm\rf-chrome-nm-host.exe
(Siber Systems -> Siber Systems) C:\Program Files (x86)\Siber Systems\AI RoboForm\robotaskbaricon.exe
(Skype) C:\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
(SoftPerfect Pty. Ltd. -> SoftPerfect) C:\Program Files\NetWorx\networx.exe
(TEFINCOM S.A. -> Iain Patterson) C:\Program Files\NordVPN\nssm.exe
(TEFINCOM S.A. -> TEFINCOM S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\JAMy\AppData\Roaming\Telegram Desktop\Telegram.exe
(uvnc bvba -> UltraVNC) C:\Program Files\uvnc bvba\UltraVNC\vncviewer.exe <2>
(VanDyke Software, Inc. -> VanDyke Software, Inc.) [Datei ist nicht signiert] C:\Program Files\VanDyke Software\SecureCRT\SecureCRT.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-authd.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\vmware-unity-helper.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\x64\mksSandbox.exe
(VMware, Inc. -> VMware, Inc.) C:\Program Files (x86)\VMware\VMware Workstation\x64\vmware-vmx.exe

==================== Registry (Nicht auf der Ausnahmeliste) ===================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)

HKLM\...\Run: [NetWorx] => C:\Program Files\NetWorx\networx.exe [11820624 2020-08-11] (SoftPerfect Pty. Ltd. -> SoftPerfect)
HKLM-x32\...\Run: [vmware-tray.exe] => C:\Program Files (x86)\VMware\VMware Workstation\vmware-tray.exe [119344 2020-09-14] (VMware, Inc. -> VMware, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-3394589027-3204535628-501861619-1001\...\Run: [Biet-O-Matic] => C:\Program Files (x86)\Biet-O-Matic\Biet-O-Matic.exe [1278488 2020-09-28] (Schnapper-Software e.Kfm. -> www.bid-o-matic.org)
HKU\S-1-5-21-3394589027-3204535628-501861619-1001\...\Run: [NinjaGram] => C:\Program Files (x86)\NinjaGram\NinjaGram.exe [4167648 2020-09-02] (Louis Nel -> ) [Datei ist nicht signiert]
HKU\S-1-5-21-3394589027-3204535628-501861619-1001\...\Run: [DU Meter] => "C:\Program Files (x86)\DU Meter\DUMeter.exe" /autostart
HKU\S-1-5-21-3394589027-3204535628-501861619-1001\...\Run: [ProtonVPN] => C:\Program Files (x86)\Proton Technologies\ProtonVPN\ProtonVPN.exe
HKU\S-1-5-21-3394589027-3204535628-501861619-1001\...\Run: [RoboForm] => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [145680 2020-10-10] (Siber Systems -> Siber Systems)
HKU\S-1-5-21-3394589027-3204535628-501861619-1001\...\Policies\system: [shell] explorer.exe <==== ACHTUNG
HKU\S-1-5-21-3394589027-3204535628-501861619-1001\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-3394589027-3204535628-501861619-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [61440 2020-09-12] (Microsoft Windows -> Microsoft Corporation)
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe /StartMinimized
HKLM\Software\Microsoft\Active Setup\Installed Components: [OpenVPN_UserSetup] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\85.0.4183.121\Installer\chrmstp.exe [2020-09-22] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{E5931AF4-2A8F-48A5-AFC8-3E048AC137B9}] -> reg delete HKCU\Software\Microsoft\Windows\CurrentVersion\Run /v OPENVPN-GUI /f
Startup: C:\Users\JAMy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\AutorunsDisabled [2020-09-01] ()
GroupPolicy: Beschränkung ? <==== ACHTUNG
CHR HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG

==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)

Task: {01AB943B-F4F4-44E6-B254-8385EFD6676F} - System32\Tasks\Run RoboForm Process => C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe [2914704 2020-10-08] (Microsoft Corporation -> Microsoft Corporation)
Task: {03BFCBCA-9178-4874-9F0D-FDBD63CB9190} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe
Task: {04803595-11D6-44A6-A5E4-356A1778897F} - System32\Tasks\Opera scheduled assistant Autoupdate 1594496015 => C:\Users\littlJAMy\AppData\Local\Programs\Opera\launcher.exe -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\littlJAMy\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {06DD2D53-10D5-4E5B-905A-7139483C2C92} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {0B19E2E6-7D5A-4581-9842-D35FC60A2B8A} - System32\Tasks\{283F9E05-90FB-4E8F-B0A0-38324927385B} => C:\Users\JAMy\Downloads\ProtonVPN_win_v1.17.3 (1).exe [16234952 2020-10-05] (ProtonVPN AG -> Proton Technologies AG) -> /i "C:\Users\JAMy\AppData\Local\Temp\AIE7372.tmp" AI_SETUPEXEPATH="C:\Users\JAMy\Downloads\ProtonVPN_win_v1.17.3 (1).exe" SETUPEXEDIR="C:\Users\JAMy\Downloads\" ADDLOCAL=FD92F08164915A061A35616A2E484,MainFeature PRIMARYFOLDER="APPDIR" ROOTDRIVE="C:\" TRANSFORMS=":1031" AI_PREREQDIRS="C:\Users\JAMy\AppData\Roaming\Proton Technologies AG\ProtonVPN\prerequisites" AI_LOGFILELOCATION="C:\Users\JAMy\AppData\Local\Temp\MSI745D.LOG" AI_MISSING_PREREQS="ProtonVPNTap" AI_FOUND_PREREQS=".NET Framework 4.7.2" AI_DETECTED_DOTNET_VERSION="4.8" AI_DETECTED_SQLCOMPACT_VERSION="4.0" AI_DETECTED_SQLCOMPACT40_VERSION="4.0" AI_DETECTED_ADOBEREADER_VERSION="19.0" AI_DETECTED_JDK_VERSION="11" AI_DETECTED_JDK64_VERSION="11" AI_DETECTED_IE_VERSION="11.0" AI_DETECTED_DIRECTX_VERSION="12" AI_DETECTED_OFFICE_ACCESS_VERSION="2016" AI_DETECTED_OFFICE_EXCEL_VERSION="2016" AI_DETECTED_OFFICE_ONENOTE_VERSION="2016" AI_DETECTED_OFFICE_OUTLOOK_VERSION="2016" AI_DETECTED_OFFICE_POWERPOINT_VERSION="2016" AI_DETECTED_OFFICE_PUBLISHER_VERSION="2016" AI_DETECTED_OFFICE_WORD_VERSION="2016" AI_DETECTED_OFFICE_MSFORMS_PIA_VERSION="2010" AI_DETECTED_OFFICE_MSFORMS2010_PIA_VERSION="2010" AI_DETECTED_VSTO_VERSION="4.0" AI_DETECTED_IIS_VERSION="10.0" AI_DETECTED_IIS_SERVICE="1" AI_DETECTED_POWERSHELL_VERSION="5.1" AI_DETECTED_COLOR_QUALITY="32" AI_DETECTED_SCREEN_RESOLUTION_X="1600" AI_DETECTED_SCREEN_RESOLUTION_Y="900" AI_DETECTED_PHYSICAL_MEMORY="16280" AI_DETECTED_PRIVILEGED="1" AI_DETECTED_ADMIN_USER="1" AI_DETECTED_PRODUCT_ANTIVIRUS="Windows Defender;" AI_DETECTED_INTERNET_CONNECTION="1" AI_SETUPEXEPATH="C:\Users\JAMy\Downloads\ProtonVPN_win_v1.17.3 (1).exe" SETUPEXEDIR="C:\Users\JAMy\Downloads\" AI_BOOTSTRAPPERLANG="1031" APPDIR="C:\Program Files (x86)\ProtonVPN\" TARGETDIR="C:\" AI_INSTALL="1" AI_SETUPEXEPATH_ORIGINAL="C:\Users\JAMy\Downloads\ProtonVPN_win_v1.17.3 (1).exe"
Task: {0BB9CF24-8B4E-46A3-88BE-57317F2D3514} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {0EE3B721-B429-4ED2-9DB2-A9D54CF09695} - System32\Tasks\BTSchedulerTask => C:\Program Files (x86)\TOSHIBA\Toshiba Bluetooth Device Profile Utility\TosBt_NotificationScheduler.exe [135504 2015-10-31] (TOSHIBA CORPORATION -> Toshiba Corporation)
Task: {19014C38-0610-4165-9CEF-CF24C20B62DE} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office16\OLicenseHeartbeat.exe [316632 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {1E5A016F-94F0-4F8F-8DE6-4CBB7E59AA53} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {2019D2C6-0C92-438A-9B7C-D08D8CCFEF2A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-20] (Google LLC -> Google LLC)
Task: {2C4084D4-9F12-4FC9-804F-602983278B9F} - System32\Tasks\Agent Activation Runtime\S-1-5-21-3394589027-3204535628-501861619-1006 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [32768 2020-09-12] (Microsoft Windows -> )
Task: {30D1A5D6-153B-4AE9-ADEC-D3C36A0AF4BD} - System32\Tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser => C:\WINDOWS\System32\MbaeParserTask.exe
Task: {3658C5A3-4480-46B2-81B0-A226AEE0D24A} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {37405C41-00FE-4DC1-AC83-16D55B92849A} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1489408 2017-03-09] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {3E498B55-3085-44A2-8647-35DB78BBA953} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {4815EEB7-0C9E-4CD4-B891-DF6810F0E581} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2009.7-0\MpCmdRun.exe [533312 2020-10-07] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {53A16D20-D7CD-4E6C-B511-791F9D18BCA7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\Office16\msoia.exe [416432 2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {5C4F7213-3CA6-4C68-AC4C-F13EB7BB5389} - System32\Tasks\dts_apo_service_task => C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_task.exe [14320 2015-05-27] (DTS, Inc. -> )
Task: {67539067-CB93-4C1D-A435-175D8331E1A5} - System32\Tasks\Resolution+ Setting Task => C:\Program Files\Toshiba\TOSHIBA Smart View Utility\Plugins\ResolutionPlus\TosRegPermissionChg.exe
Task: {6C852C2F-3343-494D-B584-DD2A8B2BB9EE} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [664784 2020-10-03] (Mozilla Corporation -> Mozilla Foundation)
Task: {72143BD9-7FF0-4458-B2C2-060C5A614092} - System32\Tasks\Run RoboForm TaskBar Icon => C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe [145680 2020-10-10] (Siber Systems -> Siber Systems)
Task: {7EE53E64-017D-4F26-8435-DD67F6B51C04} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26166344 2019-05-23] (Microsoft Corporation -> Microsoft Corporation)
Task: {808B88BD-6EB5-4A48-9C31-CDA65A0582D1} - System32\Tasks\MEGA\MEGAsync Update Task S-1-5-21-3394589027-3204535628-501861619-1001 => C:\ProgramData\MEGAsync\MEGAupdater.exe [1818360 2020-09-16] (Mega Limited -> Mega Limited)
Task: {80E00C6A-90A6-44C6-A033-8480C0F0CFE6} - System32\Tasks\Opera scheduled Autoupdate 1594496003 => C:\Users\littlJAMy\AppData\Local\Programs\Opera\launcher.exe
Task: {851F7E92-277C-4CD0-917A-93C25616B822} - System32\Tasks\Opera scheduled assistant Autoupdate 1582912770 => C:\Users\JAMy\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-10-06] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\JAMy\AppData\Local\Programs\Opera\assistant" $(Arg0)
Task: {A980C843-93F8-411E-BA8C-308DED16C708} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1341008 2020-09-06] (Adobe Inc. -> Adobe Inc.)
Task: {A9A6FA9E-C535-4A8B-9B88-E62DD75F1B19} - System32\Tasks\Microsoft\Windows\Management\Provisioning\MdmDiagnosticsCleanup => C:\WINDOWS\system32\MdmDiagnosticsTool.exe [86016 2020-09-12] (Microsoft Windows -> Microsoft Corporation)
Task: {A9B9B75A-1BBA-4490-8A60-D8C8287C302F} - System32\Tasks\Agent Activation Runtime\S-1-5-21-3394589027-3204535628-501861619-500 => C:\WINDOWS\System32\AgentActivationRuntimeStarter.exe [32768 2020-09-12] (Microsoft Windows -> )
Task: {B104E3BC-A278-442C-A45B-E683D6290277} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NoUACCheck
Task: {BECA10A8-68D6-40F5-A5DA-3CFB981ECA1E} - System32\Tasks\Open URL by RoboForm => C:\WINDOWS\system32\rundll32.exe url.dll,FileProtocolHandler "https://www.roboform.com/test-pass.html?aaa=KICMNLOMJMLLGMIMGMGMCNLMIMMLPMCNKMLMOMOLCNOMLLLMMLCNMMMLOLNLJLJLNLJLHMJMOMLLJNIICMHMCNGMCNLMCNLMJNHJCMNMCNOMPMCNPMCNNMPMNMOMKMJNHICMEKMICNJJCKJNAJCMCJCJKIBJMJOJBJPLHJAJLICJOJGJDJBNMJAJCJJNEJCMJNFJCMJNBJCMCJCJKIBJMJOJBJPLHJAJLICJOJGJDJBNMJAJCJJNKJCMJNDJCMLJKJJNMJCMPMFMPMFMPMJNFICMJNJJCMPMJNIJCMPMJNOICMMMKMIMPMJNCJCMJNOMCMJNNMCMJNMMCMJNLMCM"
Task: {C4B0C2DB-819B-4068-B08E-7445A5F6E593} - System32\Tasks\AIDA64 AutoStart => C:\Program Files (x86)\FinalWire\AIDA64 Engineer\aida64.exe [11504536 2020-07-10] (FinalWire Kft. -> FinalWire Ltd.)
Task: {DD31C997-A4A9-4443-BC3C-35C2AD1CEE6C} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [1706496 2020-04-05] () [Datei ist nicht signiert]
Task: {DFB282AB-2F64-458B-ADF3-031D8005B57E} - System32\Tasks\Microsoft\Windows\Shell\ThemesSyncedImageDownload => {79F8E185-4E45-4B74-8182-02AA430661E4} C:\Windows\System32\Themes.SsfDownload.ScheduledTask.dll [245760 2020-09-12] (Microsoft Windows -> Microsoft Corporation)
Task: {E1C5FEA2-B9EB-4A44-846D-EC226F3B789E} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe
Task: {E7D547F8-A1FE-47C2-967D-9FCADA93D94D} - System32\Tasks\Opera scheduled Autoupdate 1576794672 => C:\Users\JAMy\AppData\Local\Programs\Opera\launcher.exe [1712152 2020-10-06] (Opera Software AS -> Opera Software)
Task: {EB418162-B46F-4AD1-9E45-513B9EA45488} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2019-12-20] (Google LLC -> Google LLC)
Task: {F1633673-9CE1-4786-A600-9B358C302BC5} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [862 2020-06-09] () [Datei ist nicht signiert]

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)

Task: C:\WINDOWS\Tasks\{283F9E05-90FB-4E8F-B0A0-38324927385B}.job => C:\Users\JAMy\Downloads\ProtonVPN_win_v1.17.3 (1).exe݋/i C:\Users\JAMy\AppData\Local\Temp\AIE7372.tmp AI_SETUPEXEPATH=C:\Users\JAMy\Downloads\ProtonVPN_win_v1.17.3 (1).exe SETUPEXEDIR=C:\Users\JAMy\Downloads\ ADDLOCAL=FD92F08164915A061A35616A2E484,MainFeature PRIMARYFOLDER=APPDIR ROOTDRIVE=C:\ TRANSFORMS=:1031 AI_PREREQDIRS=C:\Users\JAMy\AppData\Roaming\Proton Technologies AG\ProtonVPN\prerequisites AI_LOGFILELOCATION=C:\Users\JAMy\AppData\Local\Temp\MSI745D.LOG AI_MISSING_PREREQS=ProtonVPNTap AI_FOUND_PREREQS=.NET Framework 4.7.2 AI_DETECTED_DOTNET_VERSION=4.8 AI_DETECTED_SQLCOMPACT_VERSION=4.0 AI_DETECTED_SQLCOMPACT40_VERSION=4.0 AI_DETECTED_ADOBEREADER_VERSION=19.0 AI_DETECTED_JDK_VERSION=11 AI_DETECTED_JDK64_VERSION=11 AI_DETECTED_IE_VERSION=11.0 AI_DETECTED_DIRECTX_VERSION=12 AI_DETECTED_OFFICE_ACCESS_VERSION=2016 AI_DETECTED_OFFICE_EXCEL_VERSION=2016 AI_DETECTED_OFFICE_ONENOTE_VERSION=2016 AI_DETECTED_OFFICE_OUTLOOK_VERSION=2016 AI_DETECTED_OFFICE_POWERPOINT_VERSION=2016 AI_DETECTED_OFFICE_PUBLISHER_VERSION=2016 AI_DETECTED_OFFICE_WORD_VERSION=2016 AI_DETECTED_OFFICE_MSFORMS_PIA_VERSION=2010 AI_DETECTED_OFFICE_MSFORMS2010_PIA_VERSION=2010 AI_DETECTED_VSTO_VERSION=4.0 AI_DETECTED_IIS_VERSION=10.0 AI_DETECTED_IIS_SERVICE=1 AI_DETECTED_POWERSHELL_VERSION=5.1 AI_DETECTED_COLOR_QUALITY=32 AI_DETECTED_SCREEN_RESOLUTION_X=1600 AI_DETECTED_SCREEN_RESOLUTION_Y=900 AI_DETECTED_PHYSICAL_MEMORY=16280 AI_DETECTED_PRIVILEGED=1 AI_DETECTED_ADMIN_USER=1 AI_DETECTED_PRODUCT_ANTIVIRUS=Windows Defender; AI_DETECTED_INTERNET_CONNECTION=1 AI_SETUPEXEPATH=C:\Users\JAMy\Downloads\ProtonVPN_win_v1.17.3 (1).exe SETUPEXEDIR=C:\Users\JAMy\Downloads\ AI_BOOTSTRAPPERLANG=1031 APPDIR=C:\Program Files (x86)\ProtonVPN\ TARGETDIR=C:\ AI_INSTALL=1 AI_SETUPEXEPATH_ORIGINAL=C:\Users\JAMy\Downloads\ProtonVPN_win_v1.17.3 (1).exe <==== ACHTUNG

==================== Internet (Nicht auf der Ausnahmeliste) ====================

(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)

Winsock: Catalog9 15 C:\WINDOWS\SysWOW64\vsocklib.dll [44128 2020-08-11] (VMware, Inc. -> VMware, Inc.)
Winsock: Catalog9 16 C:\WINDOWS\SysWOW64\vsocklib.dll [44128 2020-08-11] (VMware, Inc. -> VMware, Inc.)
Winsock: Catalog9-x64 15 C:\Windows\system32\vsocklib.dll [48224 2020-08-11] (VMware, Inc. -> VMware, Inc.)
Winsock: Catalog9-x64 16 C:\Windows\system32\vsocklib.dll [48224 2020-08-11] (VMware, Inc. -> VMware, Inc.)
Hosts: Es ist mehr als ein Eintrag in der Hosts Datei zu finden. Siehe Hosts-Bereich in Addition.txt
Tcpip\..\Interfaces\{bc6e7016-edfe-4cc5-9c7e-d89740cd7bd7}: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{eb240cce-4b70-4895-92c0-85e4f994d76f}: [NameServer] 1.1.1.1,8.8.8.8
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Beschränkung <==== ACHTUNG

Edge: 
======
DownloadDir: C:\Users\JAMy\Downloads
Edge Session Restore: HKU\S-1-5-21-3394589027-3204535628-501861619-1001 -> ist aktiviert.
Edge Profile: C:\Users\JAMy\AppData\Local\Microsoft\Edge\User Data\Default [2020-10-10]
Edge Notifications: Default -> hxxps://mail.google.com; hxxps://mail.protonmail.com
Edge HomePage: Default -> hxxp://winfuture.de/
Edge Session Restore: Default -> ist aktiviert.
Edge Extension: (NoScript) - C:\Users\JAMy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\doojmbjmlfjjnbmnoijecmcbfeoakpjm [2020-10-10]
Edge Extension: (MyJDownloader Browser Erweiterung) - C:\Users\JAMy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2020-09-21]
Edge Extension: (EditThisCookie) - C:\Users\JAMy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\fngmhnnpilhplaeedifhccceomclgfbg [2020-08-21]
Edge Extension: (MEGA) - C:\Users\JAMy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jemjknhgpjaacbghpdhgchbgccbpkkgf [2020-10-10]
Edge Extension: (RoboForm Password Manager) - C:\Users\JAMy\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ljfpcifpgbbchoddpjefaipoiigpdmag [2020-09-08]

FireFox:
========
FF DefaultProfile: 6auopfld.default
FF ProfilePath: C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\6auopfld.default [2020-10-10]
FF user.js: detected! => C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\6auopfld.default\user.js [2020-10-10]
FF Extension: (Avira Browser Safety) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\6auopfld.default\Extensions\abs@avira.com [2020-07-11]
FF Extension: (Avira Password Manager) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\6auopfld.default\Extensions\passwordmanager@avira.com [2020-07-11]
FF ProfilePath: C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177 [2020-10-10]
FF Homepage: Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177 -> about:blank
FF NetworkProxy: Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177 -> http", "127.0.0.1"
FF Session Restore: Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177 -> ist aktiviert.
FF Notifications: Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177 -> hxxps://de.chaturbate.com; hxxps://www.instagram.com; hxxps://www.youtube.com; hxxps://www.infected-zone.com; hxxps://kundenbereich.check24.de; hxxps://www.xtube.com; hxxps://mail.google.com; hxxps://fraudstercrew.su
FF Extension: (Tampermonkey) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\firefox@tampermonkey.net.xpi [2020-09-25]
FF Extension: (HackBar V2) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\hackbar@chewbaka.xpi [2020-04-24]
FF Extension: (RoboForm Password Manager) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\rf-firefox@siber.com.xpi [2020-10-10]
FF Extension: (Google Images Downloader) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\rushikesh988@gmail.com.xpi [2020-02-01]
FF Extension: (Loading…) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\switchyomega@feliscatus.addons.mozilla.org.xpi [2020-02-15]
FF Extension: (uBlock Origin) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\uBlock0@raymondhill.net.xpi [2020-10-10]
FF Extension: (Geschlossenen Tab wiederherstellen) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\{4853d046-c5a3-436b-bc36-220fd935ee1d}.xpi [2020-06-14]
FF Extension: (Image Search Options) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\{4a313247-8330-4a81-948e-b79936516f78}.xpi [2020-06-14]
FF Extension: (Bulk Image Downloader) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\{524B8EF8-C312-11DB-8039-536F56D89593}.xpi [2020-03-06]
FF Extension: (Popup Blocker Ultimate) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\{60B7679C-BED9-11E5-998D-8526BB8E7F8B}.xpi [2020-05-27]
FF Extension: (Video DownloadHelper) - C:\Users\JAMy\AppData\Roaming\Mozilla\Firefox\Profiles\nqa14m22.default-release-1580575227177\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-03-31]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.11 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-06-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2020-08-11] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office16\NPSPWRAP.DLL [2015-07-31] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @siber.com/RoboForm -> C:\Program Files (x86)\Siber Systems\AI RoboForm\chrome\plugin\np-rf-plugin.dll [Keine Datei]
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2020-09-11] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default [2020-10-10]
CHR Notifications: Default -> hxxps://drive.google.com; hxxps://hackforums.net; hxxps://in4.bz; hxxps://kundenbereich.check24.de; hxxps://leakzone.net; hxxps://mail.google.com; hxxps://mail.protonmail.com; hxxps://meet.google.com; hxxps://my.jdownloader.org; hxxps://onehack.us; hxxps://photos.google.com; hxxps://voice.google.com; hxxps://web.telegram.org; hxxps://web.whatsapp.com; hxxps://www.autoscout24.de; hxxps://www.facebook.com; hxxps://www.instagram.com; hxxps://www.youtube.com
CHR HomePage: Default -> hxxp://winfuture.de/
CHR StartupUrls: Default -> "hxxp://search.conduit.com/?ctid=CT3297265&SearchSource=48&CUI=UN12423099901259333&UM=2","hxxp://www.google.com","hxxp://www.msn.com/?pc=BDT3&ocid=BDT3DHP&dt=101213","hxxp://start.qone8.com/?type=hp&ts=1382754999&from=cor&uid=ST3000DM001-9YN166_Z1F0D5LBXXXXZ1F0D5LB","hxxp://search.conduit.com/?ctid=CT3306061&SearchSource=48&CUI=UN10735909922762190&UM=2","hxxps://www.google.com/"
CHR DefaultSearchURL: Default -> hxxps://cdn.proxyscrape.com/img/favicon/favicon.ico
CHR Session Restore: Default -> ist aktiviert.
CHR Extension: (ProxyScrape) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bdelhainajcnkaieebidnobdjdkddimo [2020-08-21]
CHR Extension: (External Application Button) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\bifmfjgpgndemajpeeoiopbeilbaifdo [2020-08-21]
CHR Extension: (Kein Name) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ceohfjpachemiffpnhefmfhpeilkenhm [2020-10-10]
CHR Extension: (Tampermonkey) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhdgffkkebhmkfjojejmpbldmpobfkfo [2020-09-24]
CHR Extension: (Listango Bookmark Manager) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmbdkkenkdllkpiognpnmlaglmojagnh [2020-08-21]
CHR Extension: (NoScript) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\doojmbjmlfjjnbmnoijecmcbfeoakpjm [2020-10-10]
CHR Extension: (MyJDownloader Browser Erweiterung) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbcohnmimjicjdomonkcbcpbpnhggkip [2020-09-06]
CHR Extension: (KProxy Extension) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gdocgbfmddcfnlnpmnghmjicjognhonm [2020-08-21]
CHR Extension: (Cr!Box) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gjodchcocbnbhfkjeapbdoflbiibnapp [2020-08-21]
CHR Extension: (PDF Mage) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\gknphemhpcknkhegndlihchfonpdcben [2020-09-11]
CHR Extension: (Toby for Chrome) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\hddnkoipeenegfoeaoibdmnaalmgkpip [2020-10-05]
CHR Extension: (Mailvelope) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\kajibbejlbohfaggdiogboambcijhkke [2020-09-12]
CHR Extension: (Bookmarks) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljcgggmjhkegncpcaffddonfhpnfocdk [2020-08-21]
CHR Extension: (Video DownloadHelper) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjnegcaeklhafolokijcfjliaokphfk [2020-08-21]
CHR Extension: (Offcloud for Drive) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmaijleinoonghaenmjibfhbldeobllp [2020-08-21]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-08-21]
CHR Extension: (Proxy SwitchyOmega) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\padekgcemlokbadohgkifijomclgjgif [2020-08-21]
CHR Extension: (Chrome Media Router) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-10-10]
CHR Extension: (RoboForm Password Manager) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pnlccmojcmeohlpggmfnbbiapkmbliob [2020-09-12]
CHR Profile: C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1 [2020-07-16]
CHR Extension: (Slides) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-01-25]
CHR Extension: (Docs) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake [2020-01-25]
CHR Extension: (Google Drive) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-01-25]
CHR Extension: (YouTube) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-01-25]
CHR Extension: (Adobe Acrobat) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-04-16]
CHR Extension: (Sheets) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-01-25]
CHR Extension: (Google Docs Offline) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-04-16]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2020-01-25]
CHR Extension: (Chrome Web Store Payments) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-01-25]
CHR Extension: (Gmail) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-01-25]
CHR Extension: (Chrome Media Router) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-16]
CHR Extension: (RoboForm Password Manager) - C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pnlccmojcmeohlpggmfnbbiapkmbliob [2020-04-16]
CHR Profile: C:\Users\JAMy\AppData\Local\Google\Chrome\User Data\System Profile [2020-02-16]
CHR HKLM\...\Chrome\Extension: [pnlccmojcmeohlpggmfnbbiapkmbliob] - C:\Program Files (x86)\Siber Systems\AI RoboForm\Chrome\rf-chrome.crx [2019-12-20]
CHR HKU\S-1-5-21-3394589027-3204535628-501861619-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [iniieblifogecdlkejbmonblijmdaiog] - C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\ChromeAddin\ChromeAddin.crx <nicht gefunden>
CHR HKLM-x32\...\Chrome\Extension: [makcojoppodhcgmmchohadhpkicoafka]
CHR HKLM-x32\...\Chrome\Extension: [pnlccmojcmeohlpggmfnbbiapkmbliob] - C:\Program Files (x86)\Siber Systems\AI RoboForm\Chrome\rf-chrome.crx [2019-12-20]

Habe Probleme mit meinem Rechner! ;)

Mülltonne: Habe Probleme mit meinem Rechner! ;)

Habe Probleme mit meinem Rechner! ;)

Ähnliche Themen: Habe Probleme mit meinem Rechner! ;)