Code:
Alles auswählen Aufklappen ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 25-11-2020
durchgeführt von Admin (Administrator) auf LAPTOP-A13JDNAQ (LENOVO 81BG) (26-11-2020 23:29:29)
Gestartet von C:\Users\Mathias\Downloads
Geladene Profile: Admin
Platform: Windows 10 Home Version 1903 18362.1139 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
Anleitung für Farbar Recovery Scan Tool: hxxp://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\vms\VBoxVmService64.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Launcher\Avira.Systray.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.UI.Application.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.WebAppHost.exe
(CyberLink Corp. -> CyberLink) C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe
(Dolby Laboratories, Inc. -> ) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2Toast.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe
(Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.) C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corporation -> ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Ingenium AI Solutions LTD -> System-Check) C:\Users\Mathias\AppData\Roaming\QScan System-Check\QScan Worker.exe
(Ingenium AI Solutions LTD -> System-Check) C:\Users\Mathias\AppData\Roaming\QScan System-Check\QScan.exe
(Intel Corporation - pGFX -> Intel Corporation) C:\Windows\System32\ibtsiva.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_c552e4480cba79db\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_c552e4480cba79db\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_c552e4480cba79db\IntelCpHDCPSvc.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_c552e4480cba79db\IntelCpHeciSvc.exe
(LAVASOFT SOFTWARE CANADA INC -> ) C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe
(LAVASOFT SOFTWARE CANADA INC -> Lavasoft) C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.4.16.0\Lenovo.Vantage.AddinHost.exe
(Lenovo -> Lenovo Group Ltd.) C:\Program Files (x86)\Lenovo\VantageService\3.4.16.0\LenovoVantageService.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe <2>
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.CompanionApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.Device.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\PluginHost86\Lenovo.Modern.ImController.PluginHost.SettingsApp.exe
(Lenovo -> Lenovo Group Ltd.) C:\Windows\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe
(LENOVO -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\LenovoUtility\utility.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12011.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.20092.10311.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\CredentialEnrollmentManager.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <3>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe
(Native Instruments GmbH -> Native Instruments GmbH) C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(Oracle Corporation -> Oracle Corporation) C:\Program Files\Oracle\VirtualBox\VBoxSVC.exe
(PACE Anti-Piracy, Inc. -> PACE Anti-Piracy, Inc.) C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Telegram FZ-LLC -> Telegram FZ-LLC) C:\Users\Mathias\AppData\Roaming\Telegram Desktop\Telegram.exe
(Waves Inc -> Waves Audio Ltd.) C:\ProgramData\Waves Audio\WavesLocalServer\WavesLocalServer.bundle\Contents\Win64\WavesLocalServer.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [914344 2017-06-13] (LENOVO -> Lenovo(beijing) Limited)
HKLM\...\Run: [DAX2_APP] => C:\Program Files\Dolby\Dolby DAX2\DAX2_APP\DolbyDAX2TrayIcon.exe [849920 2017-03-07] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
HKLM\...\Run: [] => [X]
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Avira SystrayStartTrigger] => C:\Program Files (x86)\Avira\Launcher\Avira.SystrayStartTrigger.exe [704720 2020-10-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-997539154-606601216-1825172276-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32281272 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-997539154-606601216-1825172276-1001\...\Run: [com.squirrel.splice.Splice] => C:\Users\Mathias\AppData\Local\splice\app-3.6.6481\Splice.exe
HKU\S-1-5-21-997539154-606601216-1825172276-1001\...\Run: [] => [X]
HKU\S-1-5-21-997539154-606601216-1825172276-1001\...\Run: [Web Companion] => C:\Program Files (x86)\Lavasoft\Web Companion\Application\WebCompanion.exe [8416864 2020-11-21] (LAVASOFT SOFTWARE CANADA INC -> Lavasoft)
HKU\S-1-5-21-997539154-606601216-1825172276-1001\...\Run: [QScan System-Check] => C:\Users\Mathias\AppData\Roaming\QScan System-Check\QScan.exe [10566624 2020-10-19] (Ingenium AI Solutions LTD -> System-Check) <==== ACHTUNG
HKU\S-1-5-21-997539154-606601216-1825172276-1001\...\Policies\system: [shell] explorer.exe <==== ACHTUNG
HKU\S-1-5-21-997539154-606601216-1825172276-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [4625184 2020-08-13] (Microsoft Windows -> Microsoft Corporation) <==== ACHTUNG
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Host Services x64.lnk [2020-10-28]
ShortcutTarget: Host Services x64.lnk -> C:\Program Files\qemu\Host Services x64.exe () [Datei ist nicht signiert]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NIHardwareAccessibilityHelper.exe.lnk [2020-11-11]
ShortcutTarget: NIHardwareAccessibilityHelper.exe.lnk -> C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareAccessibilityHelper.exe (Native Instruments GmbH -> Native Instruments GmbH)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\NTKDaemon.lnk [2020-11-11]
ShortcutTarget: NTKDaemon.lnk -> C:\Program Files\Common Files\Native Instruments\NTK\NTKDaemon.exe (Native Instruments GmbH -> Native Instruments GmbH)
Startup: C:\Users\Mathias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\QScan System-Check.lnk [2020-10-19] <==== ACHTUNG
ShortcutTarget: QScan System-Check.lnk -> C:\Users\Mathias\AppData\Roaming\QScan System-Check\QScan.exe (Ingenium AI Solutions LTD -> System-Check) <==== ACHTUNG
GroupPolicy: Beschränkung ? <==== ACHTUNG
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {00A7DD9A-79C9-4F8A-9BAC-1B33DC22024E} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\80fedc60-1e6b-4cdf-8dc9-1842bd3a8d32 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {09158EF0-99C5-481A-80DF-CE859844A8A9} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {092C31AF-1D74-4A60-8F83-586125E01CBB} - System32\Tasks\Lenovo\BatteryGauge\BatteryGaugeMaintenance => C:\ProgramData\Lenovo\ImController\Plugins\LenovoBatteryGaugePackage\x64\BGHelper.exe [144312 2020-09-15] (Lenovo -> Lenovo Group Ltd.)
Task: {1CBBE999-E587-41F5-8343-B8B90E0EA0E2} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {20272F41-B8C4-4A42-8940-98FC40A07A91} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {257B3267-3BE4-49D7-A5A4-6D6A85D439D1} - System32\Tasks\Lenovo\Vantage\Schedule\VantageTelemetryAddinTask => C:\Program Files (x86)\Lenovo\VantageService\3.4.16.0\ScheduleEventAction.exe [24408 2020-11-05] (Lenovo -> Lenovo Group Ltd.)
Task: {2C00EBF4-9E86-437E-924B-71E9D413001B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [647656 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2D8C6E96-FC81-44B2-82D3-150B66C6787E} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [670928 2020-11-17] (Mozilla Corporation -> Mozilla Foundation)
Task: {4705027B-C9E4-4508-B96C-13914A77E2C8} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\d9a2c166-631d-4689-b05b-49ccf55bdefa => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {5357EBDD-44B3-4961-8193-E71B9975219B} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [230632 2020-11-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {55996B65-C0B8-445A-93E6-37143E4D37B2} - System32\Tasks\Lenovo\ImController\Plugins\LenovoSystemUpdatePlugin_WeeklyTask => %windir%\System32\reg.exe add hklm\SOFTWARE\Lenovo\SystemUpdatePlugin\scheduler /v start /t reg_dword /d 1 /f /reg:32
Task: {5C849633-3D40-4A9C-A6D5-D17D3C3C45EF} - System32\Tasks\CLVDLauncher => C:\Program Files (x86)\Lenovo\Power2Go\CLVDLauncher.exe [347416 2016-09-20] (CyberLink Corp. -> CyberLink Corp.)
Task: {6C3E13AD-6159-4B0D-BF7B-6811DEA91915} - System32\Tasks\RtHDVBg_LENOVO_DOLBYDRAGON => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {70970E02-29F1-4824-ABE6-D727668C38AC} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117608 2020-11-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {757266B0-DEA4-429F-8581-3F5EBAC036DE} - System32\Tasks\Lenovo\Vantage\Lenovo.Vantage.ServiceMaintainance => %systemroot%\system32\sc.exe start LenovoVantageService
Task: {77DFBE5E-B5AE-43C8-A29C-4232B1CA4713} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {7F34BB8C-B319-4A53-A0E0-B518AECF713C} - System32\Tasks\RTKCPL => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
Task: {8A5F16CB-1E17-4D8C-8DF3-0EF8582112E3} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8AAD4455-60A4-42F5-8C99-7F57AF9B08AA} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {8ABBB963-CB29-44A0-A81A-73034AEB59E2} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3292984 2020-06-25] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9029A793-14D0-4EB7-B18C-C8DE4A9E4116} - System32\Tasks\PDVDServ14 Task => C:\Program Files (x86)\CyberLink\PowerDVD14\PDVD14Serv.exe [88344 2017-02-17] (CyberLink Corp. -> CyberLink Corp.)
Task: {9FDBA20B-BD01-4903-9145-AAEDE64B5741} - System32\Tasks\CLMLSvc_P2G8 => C:\Program Files (x86)\Lenovo\Power2Go\CLMLSvc_P2G8.exe [190744 2016-10-07] (CyberLink Corp. -> CyberLink)
Task: {A3B195DE-4BBE-42AA-9949-FFAB6378615B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [117608 2020-11-20] (Microsoft Corporation -> Microsoft Corporation)
Task: {BAC1C63F-0ED9-4AFE-962C-DC0B284DDDD8} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Monitor => C:\WINDOWS\system32\ImController.InfInstaller.exe [62280 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {BF00AE82-09D1-4640-B783-FB63EE8D46BC} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [30106496 2020-10-27] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {CA01C3BD-D034-47C2-A272-6A13901C8F18} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26781880 2020-11-10] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {CB042558-8AEC-4170-85B8-496AF3DE9D5F} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {CBB04D4E-0558-436C-9D55-A996BAD2C9D3} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1126888 2020-06-23] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D5AA6A93-3D3C-4DC5-A297-0BA1E698B876} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\41f2e8ef-e541-4ae8-b98d-d1bc1486a692 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {DBDF9685-77E4-4F8C-B693-FDB7983FFA04} - System32\Tasks\Lenovo\ImController\Lenovo iM Controller Scheduled Maintenance => "%windir%\system32\sc.exe" START ImControllerService
Task: {E66C3BBF-974A-4C79-8594-04982C0DB264} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-05-07] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {EAD2AFE0-E277-4EDB-808C-F7C054BE0658} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {F15CFDFA-DEE7-42B5-AC4A-536E339D01C4} - System32\Tasks\Lenovo\ImController\TimeBasedEvents\149d8428-d997-4d59-a60f-f31bfe22a344 => C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
Task: {F2C285F6-8F2B-43CF-AFC4-8F98047EEC3A} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2649200 2020-09-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {F372F1D3-02A5-4EEF-9844-C9B21DA659F5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22939528 2020-11-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {F6953038-3FC4-4E19-B783-47C780D147C0} - System32\Tasks\RtHDVBg_Dolby => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1506376 2018-10-18] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{bb6ad38f-cd66-4455-9d64-fb6d66a0b31c}: [DhcpNameServer] 150.201.1.2
Tcpip\..\Interfaces\{ec91b34d-add5-4a46-8f0c-8c821212d73a}: [DhcpNameServer] 192.168.178.1
Edge:
======
Edge Profile: C:\Users\Mathias\AppData\Local\Microsoft\Edge\User Data\Default [2020-11-22]
FireFox:
========
FF DefaultProfile: pwc5uuai.default-1564844150319
FF ProfilePath: C:\Users\Mathias\AppData\Roaming\Mozilla\Firefox\Profiles\pwc5uuai.default-1564844150319 [2020-11-26]
FF NewTab: Mozilla\Firefox\Profiles\pwc5uuai.default-1564844150319 -> hxxps://searchdefault.co/homepage?hp=1&bitmask=9996&pId=BT170603&iDate=2020-05-29 07:27:51&bName=
FF Session Restore: Mozilla\Firefox\Profiles\pwc5uuai.default-1564844150319 -> ist aktiviert.
FF Notifications: Mozilla\Firefox\Profiles\pwc5uuai.default-1564844150319 -> hxxps://www.instagram.com; hxxps://kinox.live; hxxps://outlook.live.com; hxxps://www.facebook.com
FF Extension: (Avast Online Security) - C:\Users\Mathias\AppData\Roaming\Mozilla\Firefox\Profiles\pwc5uuai.default-1564844150319\Extensions\wrc@avast.com.xpi [2020-06-18]
FF Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\Mathias\AppData\Roaming\Mozilla\Firefox\Profiles\pwc5uuai.default-1564844150319\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2020-11-18]
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-12] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR Profile: C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default [2020-11-22]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-03-03]
CHR Extension: (Chrome Media Router) - C:\Users\Mathias\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-04-20]
CHR HKLM\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
CHR HKLM-x32\...\Chrome\Extension: [flliilndjeohchalpbbcdekjklbdgfkk]
Opera:
=======
OPR Extension: (Avira Safe Shopping) - C:\Users\Mathias\AppData\Roaming\Opera Software\Opera Stable\Extensions\dalelnnofafalcmkmnhdbigbjjkloabo [2020-10-27]
OPR Extension: (Rich Hints Agent) - C:\Users\Mathias\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2020-10-27]
OPR Extension: (Avira Password Manager) - C:\Users\Mathias\AppData\Roaming\Opera Software\Opera Stable\Extensions\ngohaaocccbohaffogpbgfpmpgbcgccg [2020-10-27]
OPR Extension: (Free Avira Phantom VPN – Unblock Websites) - C:\Users\Mathias\AppData\Roaming\Opera Software\Opera Stable\Extensions\pcgkmkjdikhiodinhloioejnpjgmfigd [2020-10-27]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1205960 2020-09-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [537472 2020-09-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [483432 2020-09-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [483432 2020-09-24] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [573960 2020-10-15] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 Avira.ServiceHost; C:\Program Files (x86)\Avira\Launcher\Avira.ServiceHost.exe [636080 2020-10-09] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [384544 2020-10-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [246424 2020-11-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [161376 2020-08-25] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9058184 2020-11-16] (Microsoft Corporation -> Microsoft Corporation)
R2 Dolby DAX2 API Service; C:\Program Files\Dolby\Dolby DAX2\DAX2_API\DolbyDAX2API.exe [189464 2018-09-25] (Dolby Laboratories, Inc. -> Dolby Laboratories, Inc.)
S3 iaStorAfsService; C:\WINDOWS\IAStorAfsService\iaStorAfsService.exe [2413720 2017-06-09] (Intel(R) Rapid Storage Technology -> Intel Corporation)
R2 ImControllerService; C:\WINDOWS\Lenovo\ImController\Service\Lenovo.Modern.ImController.exe [81744 2020-09-24] (Lenovo -> Lenovo Group Ltd.)
R2 LenovoVantageService; C:\Program Files (x86)\Lenovo\VantageService\3.4.16.0\LenovoVantageService.exe [29520 2020-11-05] (Lenovo -> Lenovo Group Ltd.)
R2 NIHostIntegrationAgent; C:\Program Files\Common Files\Native Instruments\Hardware\NIHostIntegrationAgent.exe [18761336 2020-05-14] (Native Instruments GmbH -> Native Instruments GmbH)
S2 SystemServices; C:\Program Files\qemu\SystemServices.exe [122368 2020-01-08] () [Datei ist nicht signiert] <==== ACHTUNG
R2 VBoxVmService; C:\vms\VBoxVmService64.exe [127488 2017-10-19] () [Datei ist nicht signiert]
R2 WCAssistantService; C:\Program Files (x86)\Lavasoft\Web Companion\Application\Lavasoft.WCAssistant.WinService.exe [29280 2020-11-21] (LAVASOFT SOFTWARE CANADA INC -> )
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [4098056 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [113992 2019-03-19] (Microsoft Corporation -> Microsoft Corporation)
R2 PaceLicenseDServices; "C:\Program Files (x86)\Common Files\PACE\Services\LicenseServices\LDSvc.exe" -u hxxps://activation.paceap.com/InitiateActivation
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22336 2019-03-20] (Microsoft Windows Early Launch Anti-Malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [207424 2020-11-19] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199752 2020-04-30] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R3 bomebus; C:\WINDOWS\System32\drivers\bomebus.sys [56376 2018-05-16] (Bome Software GmbH & Co.KG -> Bome Software GmbH & Co. KG)
R3 FocusriteUSB; C:\WINDOWS\System32\drivers\FocusriteUSB.sys [96400 2018-01-09] (Focusrite Audio Engineering Ltd. -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUSBAudio; C:\WINDOWS\system32\drivers\FocusriteUSBAudio.sys [54416 2018-01-09] (Focusrite Audio Engineering Ltd. -> Focusrite Audio Engineering Ltd.)
R3 FocusriteUSBSwRoot; C:\WINDOWS\System32\drivers\FocusriteUSBSwRoot.sys [97936 2018-01-09] (Focusrite Audio Engineering Ltd. -> Focusrite Audio Engineering Ltd.)
S3 ManyCam; C:\WINDOWS\system32\DRIVERS\mcvidrv.sys [66952 2018-07-29] (ManyCam (VISICOM MÉDIA INC.) -> Visicom Media Inc.)
S3 mcaudrv_simple; C:\WINDOWS\system32\drivers\mcaudrv_x64.sys [35960 2014-12-29] (ManyCam -> Visicom Media Inc.)
R3 phantomtap; C:\WINDOWS\System32\drivers\phantomtap.sys [50248 2020-10-07] (Avira Operations GmbH & Co. KG -> The OpenVPN Project)
R3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [899672 2017-10-19] (SUNPLUS INNOVATION TECHNOLOGY INC. -> Sunplus Innovation Technology Inc.)
S3 teVirtualMIDI64; C:\WINDOWS\system32\DRIVERS\teVirtualMIDI64.sys [41016 2015-07-12] (Tobias Erichsen -> Tobias Erichsen)
S3 VBoxNetAdp; kein ImagePath
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [46472 2019-03-19] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [333784 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [62432 2019-03-19] (Microsoft Windows -> Microsoft Corporation)
U3 aswbdisk; kein ImagePath
S1 VBoxNetLwf; \SystemRoot\system32\DRIVERS\VBoxNetLwf.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-11-26 23:29 - 2020-11-26 23:30 - 000031134 _____ C:\Users\Mathias\Downloads\FRST.txt
2020-11-26 23:28 - 2020-11-26 23:29 - 000000000 ____D C:\FRST
2020-11-26 23:28 - 2020-11-26 23:28 - 002290176 _____ (Farbar) C:\Users\Mathias\Downloads\FRST64.exe
2020-11-25 13:22 - 2020-11-25 13:22 - 023816808 ____R C:\Users\Mathias\Desktop\90s OldSchool Type Beat Underground Hip-Hop Boom Bap Type Beat (Prod by Musical Throne) (3).mp4
2020-11-25 13:00 - 2020-11-25 13:00 - 004161351 _____ C:\Users\Mathias\Desktop\Musical Th_mp4_proxy_17647c630a5a47cab4bf393c1f4195b3_3092f6908f38958d4941889ffe631a1f.mxv
2020-11-25 13:00 - 2020-11-25 13:00 - 000452988 _____ C:\Users\Mathias\Desktop\Musical Th_mp4_proxy_17647c630a5a47cab4bf393c1f4195b3.WAV
2020-11-25 13:00 - 2020-11-25 13:00 - 000003536 _____ C:\Users\Mathias\Desktop\Musical Th_mp4_proxy_17647c630a5a47cab4bf393c1f4195b3.H0
2020-11-25 13:00 - 2020-11-25 13:00 - 000002778 _____ C:\Users\Mathias\Desktop\Musical Th_mp4_proxy_17647c630a5a47cab4bf393c1f4195b3.HDP
2020-11-25 13:00 - 2020-11-25 13:00 - 000002482 _____ C:\Users\Mathias\Desktop\Musical Throne - 90s_mp4.HDP
2020-11-25 12:59 - 2020-11-25 12:59 - 000451702 _____ C:\Users\Mathias\Desktop\Musical Throne - 90s.wav
2020-11-25 12:56 - 2020-11-25 12:57 - 000087427 _____ C:\Users\Mathias\Desktop\untitled.flp
2020-11-25 12:33 - 2020-11-25 12:33 - 004984601 ____R C:\Users\Mathias\Desktop\nhn.mp4
2020-11-25 01:38 - 2020-11-25 01:41 - 112065538 _____ C:\Users\Mathias\Desktop\nn.mp4
2020-11-24 23:21 - 2020-11-24 23:21 - 003364549 _____ C:\Users\Mathias\Desktop\Musical Th_mp4_proxy_fccebc3fe08a285bb9bd4244f88028fd_3092f6908f38958d4941889ffe631a1f.mxv
2020-11-24 23:10 - 2020-11-25 01:51 - 000002426 _____ C:\Users\Mathias\Desktop\you tube.HDP
2020-11-24 23:10 - 2020-11-24 23:10 - 000358896 _____ C:\Users\Mathias\Desktop\you tube.H0
2020-11-24 01:29 - 2020-11-25 09:02 - 000529501 _____ C:\Users\Mathias\Desktop\you tube.wav.asd
2020-11-24 01:25 - 2020-11-24 01:25 - 000158350 _____ C:\Users\Mathias\Desktop\showthread.php
2020-11-24 01:22 - 2020-11-25 01:51 - 045939414 _____ C:\Users\Mathias\Desktop\you tube.wav
2020-11-24 00:27 - 2020-11-24 00:27 - 045939110 _____ C:\Users\Mathias\Desktop\das orginal.wav
2020-11-22 20:47 - 2020-11-22 20:49 - 119245320 _____ C:\Users\Mathias\Desktop\Freestyle Type Beat Crazy Type Beat 2020 Rap Trap Instrumental.mp4
2020-11-22 04:16 - 2020-11-22 04:16 - 000000000 ___HD C:\$WINDOWS.~BT
2020-11-19 23:27 - 2020-11-19 23:27 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2020-11-17 23:20 - 2020-11-20 20:46 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-11-15 21:47 - 2020-11-15 21:47 - 000721885 _____ C:\Users\Mathias\Downloads\Erobique _ Jacques Palminger – Wann Strahlst Du_.mp3.asd
2020-11-11 14:56 - 2020-11-11 14:56 - 000000000 ____D C:\ProgramData\Audio Damage
2020-11-11 14:30 - 2020-11-11 14:30 - 000001164 _____ C:\Users\Public\Desktop\Komplete Kontrol.lnk
2020-11-11 14:30 - 2020-11-11 14:30 - 000001164 _____ C:\ProgramData\Desktop\Komplete Kontrol.lnk
2020-11-11 14:30 - 2020-11-11 14:30 - 000000000 __HDC C:\ProgramData\{DE95411B-74D2-4674-A9FA-146C1A7B3469}
2020-11-11 14:29 - 2020-11-11 14:29 - 000001174 _____ C:\Users\Public\Desktop\Controller Editor.lnk
2020-11-11 14:29 - 2020-11-11 14:29 - 000001174 _____ C:\ProgramData\Desktop\Controller Editor.lnk
2020-11-11 14:29 - 2020-11-11 14:29 - 000000000 __HDC C:\ProgramData\{989202C9-4126-4944-9D8E-9C3BE96F1FEF}
2020-11-11 14:29 - 2020-11-11 14:29 - 000000000 __HDC C:\ProgramData\{6909A4AB-9BFE-43AB-8B2E-ECA5D99D459C}
2020-11-11 14:29 - 2020-11-11 14:29 - 000000000 __HDC C:\ProgramData\{083C7E60-C077-4C13-ABB0-E7A726F47F65}
2020-11-11 14:29 - 2020-11-11 14:29 - 000000000 ____D C:\Program Files\Common Files\Steinberg
2020-11-11 14:27 - 2020-11-11 14:27 - 000000000 __HDC C:\ProgramData\{9B1897D1-0BD9-47FE-A43D-059062E3397B}
2020-11-11 14:20 - 2020-11-11 14:20 - 000000000 __HDC C:\ProgramData\{14C8AC6B-C014-41C8-9007-A2AD0633DBAD}
2020-11-07 07:02 - 2020-11-07 07:02 - 000803869 _____ C:\Users\Mathias\Downloads\JILL SCOTT (ACAPELLA) A LONG WALK.mp3.asd
2020-11-07 06:12 - 2020-11-07 06:12 - 000872621 _____ C:\Users\Mathias\Downloads\Jill Scott - A Long Walk.mp3.asd
2020-11-07 05:58 - 2020-11-07 05:58 - 001071305 _____ C:\Users\Mathias\Downloads\4 Beautiful Soundtracks _ Relaxing Piano _10min_.mp3.asd
2020-11-06 03:55 - 2020-11-06 03:55 - 209370638 _____ (StudioLinked ) C:\Users\Mathias\Downloads\Drum+Pro+Setup+PC.exe
2020-11-05 02:38 - 2020-11-05 02:38 - 000766333 _____ C:\Users\Mathias\Downloads\Fat Joe feat. Noriega - Misery Needs Company (Acapella).mp3.asd
2020-11-05 01:36 - 2020-11-05 01:36 - 000528497 _____ C:\Users\Mathias\Downloads\Lene - Hurt - Johnny Cash Cover (A Cappella).mp3.asd
2020-11-03 01:37 - 2020-11-03 01:37 - 000617277 _____ C:\Users\Mathias\Downloads\Moosh _ Twist - All Of A Sudden (Acapella Dirty) _ 140 BPM.mp3.asd
2020-11-01 15:08 - 2020-11-01 15:08 - 000913309 _____ C:\Users\Mathias\Downloads\STING - BEST VIDEO - SHAPE OF MY HEART ♡.mp3.asd
2020-10-28 15:33 - 2020-11-13 23:15 - 000000000 ____D C:\Users\Mathias\Downloads\Telegram Desktop
2020-10-28 01:33 - 2020-10-28 01:33 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\IntelTools
2020-10-27 02:04 - 2020-10-27 02:04 - 000001939 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Waves Central.lnk
2020-10-27 02:04 - 2020-10-27 02:04 - 000000000 ____D C:\Program Files\Waves Central
2020-10-27 01:57 - 2020-10-27 01:57 - 000000000 ____D C:\Users\Mathias\AppData\Local\numba
2020-10-27 01:57 - 2020-10-27 01:57 - 000000000 ____D C:\Users\Mathias\.keras
2020-10-27 01:47 - 2020-10-27 01:48 - 000000000 ____D C:\Users\Mathias\Desktop\Waves nicht löschen !!
2020-10-27 01:37 - 2020-10-27 01:49 - 000000000 ____D C:\Users\Public\Waves Audio
2020-10-27 01:29 - 2020-10-30 05:13 - 000000000 ____D C:\Users\Public\Security Sessions
2020-10-27 01:22 - 2020-11-26 01:07 - 000000000 ____D C:\Program Files (x86)\ISO Workshop
2020-10-27 01:22 - 2020-10-27 01:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO Workshop
2020-10-27 01:19 - 2020-11-21 01:42 - 000003718 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2020-10-27 01:18 - 2020-11-19 23:51 - 000207424 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2020-10-27 01:18 - 2020-10-27 01:18 - 000003374 _____ C:\WINDOWS\system32\Tasks\Avira_Antivirus_Systray
2020-10-27 01:18 - 2020-04-30 11:37 - 000199752 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avipbb.sys
2020-10-27 01:18 - 2019-06-07 14:09 - 000078936 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avdevprot.sys
2020-10-27 01:18 - 2019-03-20 18:50 - 000089736 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avnetflt.sys
2020-10-27 01:18 - 2019-03-20 18:50 - 000046704 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avkmgr.sys
2020-10-27 01:18 - 2019-03-20 18:50 - 000045472 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avusbflt.sys
2020-10-27 01:18 - 2019-03-20 18:50 - 000022336 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avelam.sys
2020-10-27 01:17 - 2020-10-27 01:30 - 000000000 ____D C:\Users\Mathias\AppData\Local\Avira
2020-10-27 01:17 - 2020-10-27 01:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2020-10-27 01:17 - 2020-10-27 01:17 - 000003778 _____ C:\WINDOWS\system32\Tasks\AviraSystemSpeedupUpdate
2020-10-27 01:17 - 2020-10-27 01:17 - 000001272 _____ C:\Users\Public\Desktop\Avira.lnk
2020-10-27 01:17 - 2020-10-27 01:17 - 000001272 _____ C:\ProgramData\Desktop\Avira.lnk
2020-10-27 01:17 - 2020-10-27 01:17 - 000000000 ____D C:\Users\Public\Speedup Sessions
2020-10-27 01:16 - 2020-10-27 01:16 - 004522088 _____ (Avira Operations GmbH & Co. KG) C:\Users\Mathias\Downloads\avira_de_sptl1_1334231099-1603757789__pavwws-spotlight-release.exe
2020-10-27 00:56 - 2020-10-27 00:56 - 000000000 ____D C:\Users\Mathias\Documents\IK Multimedia
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2020-11-26 23:16 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-11-26 22:50 - 2019-09-03 02:57 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2020-11-26 21:11 - 2019-01-07 20:00 - 000000000 ____D C:\Program Files\CCleaner
2020-11-26 20:58 - 2019-09-03 03:12 - 001590756 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2020-11-26 20:58 - 2019-03-19 13:16 - 000686394 _____ C:\WINDOWS\system32\perfh007.dat
2020-11-26 20:58 - 2019-03-19 13:16 - 000141718 _____ C:\WINDOWS\system32\perfc007.dat
2020-11-26 20:58 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2020-11-26 17:42 - 2019-01-05 19:19 - 000000000 ____D C:\Users\Mathias\AppData\Local\CrashDumps
2020-11-26 12:25 - 2018-09-25 11:51 - 000000000 ____D C:\ProgramData\NVIDIA
2020-11-26 01:40 - 2018-09-25 18:07 - 000000000 ____D C:\Users\Mathias\AppData\LocalLow\Mozilla
2020-11-26 01:02 - 2019-10-09 22:42 - 000000000 ____D C:\Users\Mathias\AppData\Local\Serato
2020-11-25 14:28 - 2020-01-19 21:50 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\Telegram Desktop
2020-11-25 13:02 - 2020-10-19 21:27 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\QScan System-Check
2020-11-25 13:01 - 2019-10-22 15:16 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\sys00_1
2020-11-25 13:01 - 2019-09-03 03:16 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-11-25 13:01 - 2019-09-03 03:05 - 000000000 ____D C:\Users\Mathias
2020-11-25 13:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\registration
2020-11-25 13:01 - 2019-01-21 00:26 - 000000000 ____D C:\ProgramData\PACE
2020-11-25 07:52 - 2020-07-05 01:57 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2020-11-25 02:08 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2020-11-24 22:03 - 2019-10-01 08:12 - 000000000 ____D C:\Program Files (x86)\Steam
2020-11-24 22:03 - 2019-03-19 05:37 - 000786432 _____ C:\WINDOWS\system32\config\BBI
2020-11-24 22:03 - 2018-09-29 21:57 - 000000841 _____ C:\Users\Mathias\Desktop\Ableton Live 10 Suite.lnk
2020-11-24 15:29 - 2018-09-25 12:02 - 000004889 _____ C:\WINDOWS\system32\InstallUtil.InstallLog
2020-11-23 22:38 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2020-11-22 21:32 - 2019-01-20 21:05 - 000000000 ____D C:\Program Files\Common Files\VST3
2020-11-22 21:32 - 2018-11-15 22:13 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Splice
2020-11-22 21:32 - 2018-11-15 22:13 - 000000000 ____D C:\Users\Mathias\AppData\Local\SpliceSettings
2020-11-22 21:32 - 2018-11-15 22:12 - 000000000 ____D C:\Users\Mathias\AppData\Local\splice
2020-11-22 21:29 - 2019-01-23 02:47 - 000000000 ____D C:\Users\Mathias\Documents\MAGIX_MusicEditor
2020-11-22 21:22 - 2020-09-30 09:16 - 000000000 ____D C:\Users\Mathias\Documents\BeamNG.drive
2020-11-22 21:15 - 2019-08-21 13:07 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\WhatsApp
2020-11-22 21:15 - 2019-08-21 13:07 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WhatsApp
2020-11-22 21:15 - 2019-08-21 13:07 - 000000000 ____D C:\Users\Mathias\AppData\Local\WhatsApp
2020-11-22 21:11 - 2019-09-03 03:16 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2020-11-22 21:02 - 2018-09-25 15:38 - 000029748 ____H C:\Users\Mathias\AppData\Local\IconCache.db.backup
2020-11-22 01:54 - 2020-01-27 23:50 - 000000000 ____D C:\output
2020-11-21 21:12 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2020-11-20 20:55 - 2017-11-26 08:34 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2020-11-20 20:46 - 2019-08-03 15:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-11-19 23:27 - 2019-08-03 15:55 - 000000972 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2020-11-17 23:44 - 2020-09-29 23:09 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2020-11-15 21:18 - 2020-10-26 10:37 - 000000016 _____ C:\ProgramData\autobk.inc
2020-11-14 01:47 - 2018-09-25 15:30 - 000000000 ____D C:\Users\Mathias\AppData\Local\Packages
2020-11-13 22:40 - 2020-02-08 19:31 - 000000000 ____D C:\Program Files (x86)\Google
2020-11-13 22:39 - 2018-10-10 18:56 - 000000000 ____D C:\Users\Mathias\AppData\Local\GoPro
2020-11-13 22:39 - 2017-11-26 08:34 - 000000000 ____D C:\ProgramData\Package Cache
2020-11-12 20:13 - 2020-07-03 10:37 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\uTorrent
2020-11-12 19:48 - 2020-05-29 15:19 - 000000000 ____D C:\Users\Mathias\AppData\Local\BitTorrentHelper
2020-11-12 11:00 - 2020-09-29 23:09 - 000907064 _____ (Microsoft Corporation) C:\WINDOWS\system32\sedplugins.dll
2020-11-12 10:59 - 2020-09-29 23:09 - 000436536 _____ (Microsoft Corporation) C:\WINDOWS\system32\QualityUpdateAssistant.dll
2020-11-11 14:37 - 2019-01-22 23:20 - 000000000 ___RD C:\Program Files\Native Instruments
2020-11-11 14:34 - 2019-01-22 23:20 - 000000000 ___RD C:\Users\Mathias\Documents\Native Instruments
2020-11-11 14:34 - 2018-10-01 21:31 - 000000000 ____D C:\Program Files\VstPlugins
2020-11-11 14:29 - 2019-01-22 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Native Instruments
2020-11-11 14:29 - 2019-01-22 23:20 - 000000000 ___RD C:\Program Files\Common Files\Native Instruments
2020-11-11 03:29 - 2018-09-25 17:37 - 000000000 ____D C:\WINDOWS\system32\MRT
2020-11-11 03:25 - 2018-09-25 17:37 - 133736600 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2020-11-07 14:28 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2020-11-07 13:02 - 2018-11-15 22:12 - 000000000 ____D C:\Users\Mathias\AppData\Local\SquirrelTemp
2020-11-06 04:17 - 2018-12-29 00:07 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\Maize Sampler Player
2020-11-06 03:56 - 2018-10-01 21:31 - 000000000 ____D C:\Program Files (x86)\VstPlugins
2020-11-02 23:38 - 2019-09-04 16:37 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\iZotope
2020-11-02 10:16 - 2020-07-05 01:56 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2020-11-02 10:16 - 2020-07-05 01:56 - 000003576 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2020-10-28 23:02 - 2019-09-03 03:16 - 000003376 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-997539154-606601216-1825172276-1001
2020-10-28 23:02 - 2019-09-03 03:05 - 000002438 _____ C:\Users\Mathias\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2020-10-28 23:02 - 2018-09-25 15:32 - 000000000 ___RD C:\Users\Mathias\OneDrive
2020-10-28 01:51 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2020-10-28 01:33 - 2020-10-26 12:33 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\Polyverse
2020-10-28 01:33 - 2019-09-04 16:26 - 000000000 __SHD C:\Program Files\qemu
2020-10-28 01:33 - 2018-09-25 11:51 - 000000000 ____D C:\Program Files\Intel
2020-10-27 22:04 - 2019-03-26 15:22 - 000000000 ____D C:\Program Files\Steinberg
2020-10-27 13:59 - 2019-09-03 02:57 - 000548728 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-10-27 02:26 - 2020-02-10 03:23 - 000000000 ____D C:\Users\Public\Documents\NI Resources
2020-10-27 02:06 - 2020-05-27 11:52 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\Waves Central
2020-10-27 01:57 - 2020-05-27 11:52 - 000000000 ____D C:\Users\Mathias\AppData\Local\Waves Audio
2020-10-27 01:57 - 2020-05-27 11:46 - 000000000 ___RD C:\ProgramData\Waves Audio
2020-10-27 01:49 - 2020-05-27 11:52 - 000000000 ___SD C:\Program Files (x86)\Waves
2020-10-27 01:37 - 2020-05-27 11:52 - 000000000 ____D C:\Users\Mathias\AppData\Roaming\Waves Audio
2020-10-27 01:35 - 2020-05-27 11:46 - 000000000 ____D C:\Program Files (x86)\App Deploy
2020-10-27 01:29 - 2019-01-07 19:49 - 000000000 ____D C:\ProgramData\Avira
2020-10-27 01:22 - 2020-09-04 14:29 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Direct WAV MP3 Splitter
2020-10-27 01:22 - 2020-09-04 14:29 - 000000000 ____D C:\Program Files (x86)\Direct WAV MP3 Splitter
2020-10-27 01:19 - 2019-01-07 19:49 - 000000000 ____D C:\Program Files (x86)\Avira
2020-10-27 01:18 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2019-09-01 13:11 - 2019-09-01 13:11 - 000000000 ___RH () C:\Users\Mathias\AppData\Roaming\8e7e8075c71612ec0a848c2e23db7c8d2
2019-01-24 13:28 - 2019-01-24 13:28 - 000000344 _____ () C:\Users\Mathias\AppData\Roaming\ASIODriver.log
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
26.11.2020, 23:56
Hybrid-Darstellung
