| |
| |||||||
Log-Analyse und Auswertung: Audacity.de - Izito & Zapmeta in den Suchmaschinen im BrowserWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
01.02.2021, 10:45
| #1 |
| |  Audacity.de - Izito & Zapmeta in den Suchmaschinen im Browser Hallo liebes Forum! Leider bin ich auch auf die Audacity.de-Seite reingefallen und habe nun wohl Malware, welches ich nicht ganz wegbekomme. Ich würde mich über Hilfe sehr freuen und bedanke mich im Voraus. FRST Logs: Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 27-01-2021
durchgeführt von Adika (Administrator) auf SUHARIADIKA (Gigabyte Technology Co., Ltd. Z390 I AORUS PRO WIFI) (01-02-2021 10:36:36)
Gestartet von D:\Downloads
Geladene Profile: Adika
Platform: Windows 10 Pro Version 1909 18363.1316 (X64) Sprache: German (Germany)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe
() [Datei ist nicht signiert] C:\Program Files (x86)\RocketDock\RocketDock.exe
(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe
(Adobe Inc. -> Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\acrotray.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe <2>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe
(Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(AgileBits Inc. -> AgileBits Inc.) C:\Users\Adika\AppData\Local\1Password\app\7\1Password.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\APSDaemon.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudDrive.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudPhotos.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_11.6.32.0_x86__nzyj5cx40ttqa\iCloud\secd.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iTunes_12110.26.53016.0_x64__nzyj5cx40ttqa\AMDS64\AppleMobileDeviceProcess.exe
(cFos Software GmbH -> cFos Software GmbH) C:\Program Files\cFosSpeed\spd.exe
(Chris Andriessen) [Datei ist nicht signiert] C:\Program Files (x86)\TaskbarX\TaskbarX.exe
(devolo AG -> devolo AG) C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe
(Discord Inc. -> Discord Inc.) C:\Users\Adika\AppData\Local\Discord\app-0.0.309\Discord.exe <6>
(DREVO Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\Drevo\Power Console\Drevo.exe
(DREVO Inc.) [Datei ist nicht signiert] C:\Program Files (x86)\Drevo\Power Console\DrevoService.exe
(Electronic Arts, Inc. -> Electronic Arts) C:\Program Files (x86)\Origin\OriginWebHelperService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.) C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe
(GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft) C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe
(GIGA-BYTE TECHNOLOGY CO., LTD.) [Datei ist nicht signiert] C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngine.exe
(Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe <2>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <35>
(Intel Corporation -> Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel(R) Embedded Subsystems and IP Blocks Group -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_ffc75848a6342fdf\jhi_service.exe
(Intel(R) INTELND1820 -> Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Logitech Inc -> Logitech) C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2012.21.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <4>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SecurityHealthHost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Dragon Center\APP_Dragon_Center_Keeper.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.) C:\Program Files (x86)\MSI\Dragon Center\DragonCenter_Service.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Dragon Center\Mystic_Light\LightKeeperService.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.) C:\Program Files (x86)\MSI\Dragon Center\StorageMonitor\StorageMonitor.exe
(MICRO-STAR INTERNATIONAL CO., LTD. -> MSI) C:\Program Files (x86)\MSI\Dragon Center\CC_Engine_x64.exe
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(Node.js Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_4f0927d2d65e905f\Display.NvContainer\NVDisplay.Container.exe <2>
(NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\cam_helper.exe <4>
(NZXT, Inc. -> ) C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe
(NZXT, Inc. -> NZXT, Inc.) C:\Program Files\NZXT CAM\NZXT CAM.exe <5>
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Riot Games, Inc. -> Riot Games, Inc.) C:\Program Files\Riot Vanguard\vgtray.exe
(ShareX Team) [Datei ist nicht signiert] C:\Program Files\ShareX\ShareX.exe
(SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.) C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe
(Swift Media Entertainment, Inc. -> Blitz, Inc.) C:\Users\Adika\AppData\Local\Programs\Blitz\Blitz.exe <17>
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [MouseDriver] => TiltWheelMouse.exe
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-04] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [Riot Vanguard] => C:\Program Files\Riot Vanguard\vgtray.exe [353400 2021-01-22] (Riot Games, Inc. -> Riot Games, Inc.)
HKLM\...\Run: [AdobePSE18AutoAnalyzer] => C:\Program Files\Adobe\Elements 2020 Organizer\Elements Auto Creations 2020.exe [3560048 2019-08-27] (Adobe Inc. -> Adobe Systems Incorporated)
HKLM\...\Run: [AdobePSE19AutoAnalyzer] => C:\Program Files\Adobe\Elements 2021 Organizer\Elements Auto Creations 2021.exe [2653808 2020-11-10] (Adobe Inc. -> Adobe)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [3951968 2019-07-09] (Logitech -> Logitech, Inc.)
HKLM\...\Run: [SoftEther VPN Client UI Helper] => C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5886264 2020-12-21] (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2095672 2020-10-08] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Acrotray.exe [5866032 2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [114824 2020-10-12] (Adobe Inc. -> )
HKLM-x32\...\Run: [Genshin Impact Beta_Launcher] => [X]
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Beschränkung <==== ACHTUNG
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [NZXT.CAM] => C:\Program Files\NZXT CAM\NZXT CAM.exe [110721160 2021-01-07] (NZXT, Inc. -> NZXT, Inc.)
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [Discord] => C:\Users\Adika\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [CCXProcess] => C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [680712 2021-01-12] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [50011008 2021-01-20] (Google LLC -> )
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [1Password] => C:\Users\Adika\AppData\Local\1Password\app\7\1Password.exe [5254480 2021-01-28] (AgileBits Inc. -> AgileBits Inc.)
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [com.blitz.app] => C:\Users\Adika\AppData\Local\Programs\Blitz\Blitz.exe [108249856 2021-01-24] (Swift Media Entertainment, Inc. -> Blitz, Inc.)
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [WallpaperEngine] => "D:\Games\Steam\steamapps\common\wallpaper_engine\wallpaper32.exe" -silent
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] () [Datei ist nicht signiert]
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [Drevo] => C:\Program Files (x86)\Drevo\Power Console\DrevoStartup.exe [113160 2018-11-23] (北京繁石简作科技有限公司 -> )
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [Adobe Acrobat Synchronizer] => C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\AdobeCollabSync.exe [5491248 2020-12-07] (Adobe Inc. -> Adobe Systems Incorporated)
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792272 2021-01-13] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [Snap Camera] => C:\Program Files\Snap Inc\Snap Camera\Snap Camera.exe [67068448 2020-12-04] (Snapchat Inc. (Snap Inc.) -> Snap Inc)
HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [32440376 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
HKLM\...\Windows x64\Print Processors\Canon PRO-100S series Print Processor: C:\Windows\System32\spool\prtprocs\x64\CNMPDCM.DLL [30208 2016-05-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [65496 2020-10-22] (Adobe Inc. -> Adobe Systems Inc)
HKLM\...\Print\Monitors\Canon BJ Language Monitor PRO-100S series: C:\Windows\system32\CNMLMCM.DLL [406528 2016-05-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\Canon BJ Language Monitor PRO-100S series XPS: C:\Windows\system32\CNMXLMCM.DLL [409088 2016-05-17] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\88.0.4324.104\Installer\chrmstp.exe [2021-01-27] (Google LLC -> Google LLC)
Startup: C:\Users\Adika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ShareX.lnk [2019-10-13]
ShortcutTarget: ShareX.lnk -> C:\Program Files\ShareX\ShareX.exe (ShareX Team) [Datei ist nicht signiert]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SoftEther VPN Client Manager Startup.lnk [2020-12-21]
ShortcutTarget: SoftEther VPN Client Manager Startup.lnk -> C:\Program Files\SoftEther VPN Client\vpncmgr_x64.exe (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
Policies: C:\ProgramData\NTUSER.pol: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Mozilla\Firefox: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Google: Beschränkung <==== ACHTUNG
HKLM\SOFTWARE\Policies\Microsoft\Edge: Beschränkung <==== ACHTUNG
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {02DFE4A6-FBE5-4D48-BB1C-E9AE1A196DB0} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [26913848 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {0422D8B8-11D5-4ED8-8295-1F019E5203CE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {091AB4AF-27DF-4AE2-B6E3-A2E06F7A0E7B} - System32\Tasks\GraphicsCardEngine => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\GraphicsCardEngineStarter.exe [227328 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [Datei ist nicht signiert]
Task: {0D95FA99-65FF-4333-ABAC-DE08EB5C7C42} - System32\Tasks\Intel PTT EK Recertification => C:\WINDOWS\System32\DriverStore\FileRepository\iclsclient.inf_amd64_75ffca5eec865b4b\lib\IntelPTTEKRecertification.exe [918288 2020-04-22] (Intel(R) Trust Services -> Intel(R) Corporation)
Task: {1374E9A4-89C4-47C0-BB85-08772DD01774} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [646456 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {17F2209A-5C69-4CF0-88AA-2972454FEFA4} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-14] (Adobe Inc. -> Adobe)
Task: {1F151E63-B099-4AEA-A772-13DE1076DDB7} - System32\Tasks\@bthpan.inf,%BthPan.DisplayName%;BluetoothDeviceBluetooth-Unterstützungsdienst => C:\Program Files (x86)\nodejs\node.exe [15017624 2017-05-02] (Node.js Foundation -> Node.js) -> C:\WINDOWS\Installer\{5C0E17C7-97FB-417E-B79A-4B14BBD204DB}\{6DC56F76-AEE4-4C9A-A9EA-C4018F1E313F} <==== ACHTUNG
Task: {29401CA2-1DB0-4E4C-8CB8-E7B994DF857F} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineCore => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
Task: {29CD23C4-39EE-4CB1-946C-7FD06366E0EE} - System32\Tasks\AdobeAAMUpdater-1.0-SUHARIADIKA-Adika => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
Task: {3DD9B8FF-567C-423C-A61D-CCEC552E16F5} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23062920 2021-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {3F5A7981-5FB3-4519-852F-532F94F3620A} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {415AA7A9-E130-4922-82CB-3C9B2AE23F92} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {4BFCC3A8-8985-49B3-87E5-1189BF3E3592} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143720 2021-01-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {6182D919-AEE0-413D-A9D9-4EDE0EDBF996} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {62605863-3034-4464-9A73-F3C1E47A1794} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [143720 2021-01-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {68FAF41D-6088-4DAD-9FC3-BF4DBAF45830} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {829291A2-417B-4627-B1F7-058E86492927} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5332904 2021-01-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {8E2ACE85-D917-4720-A5B5-4B81A7AEE82C} - System32\Tasks\Adobe Service Hyper-V => C:\Program Files (x86)\nodejs\node.exe [15017624 2017-05-02] (Node.js Foundation -> Node.js) -> "C:\ProgramData\Package Cache\{84C8938D-B5A0-4A08-974B-C2CA04850D3B}\{7B31DC89-D1E0-45B1-8DC0-530A166549F7}" <==== ACHTUNG
Task: {971F0BC3-520D-4BB1-94AB-DC1E6D6ED366} - System32\Tasks\LiquidSensord => C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\LiquidSensord.exe [245760 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [Datei ist nicht signiert]
Task: {98CFDE4A-2F85-49AC-8CA0-18B69541ED5D} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: {A6D5FBED-40D4-441A-9F5E-56E935E7CC07} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [5332904 2021-01-24] (Microsoft Corporation -> Microsoft Corporation)
Task: {AE49658D-EA73-494E-A1F6-6187B72B6961} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [2571704 2020-02-14] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
Task: {B137962A-0EC3-43FE-BC2A-E011B7C43731} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23062920 2021-01-19] (Microsoft Corporation -> Microsoft Corporation)
Task: {B757B3FF-8488-48D7-9220-8233CB42DAE3} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C0C2D390-4E30-43F3-A5F5-77D0D11E0076} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1722177080-3761313699-1016939255-1008 => C:\Users\Adika\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {C886D0E1-8F83-4482-B253-51B3351350F0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1349200 2020-11-03] (Adobe Inc. -> Adobe Inc.)
Task: {D08248F3-7F7E-40C2-B770-FD413F3AEE7F} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2021-01-06] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {D45F043D-8B4F-49DB-8B2E-96403B79FAC1} - System32\Tasks\MicrosoftEdgeUpdateTaskMachineUA => C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe
Task: {D6F3F5A8-731A-4C99-A988-8A29EC633A34} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [907240 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D7A4DF9B-E7A1-4929-81BA-A971D15D0761} - System32\Tasks\TaskbarX => C:\Program Files (x86)\TaskbarX\TaskbarX.exe [263680 2020-04-19] (Chris Andriessen) [Datei ist nicht signiert]
Task: {DA63434C-ACC2-4D70-806B-B46267FCAF52} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [693216 2021-01-07] (Mozilla Corporation -> Mozilla Foundation)
Task: {DE326016-7D96-48EC-9E13-261E227B475E} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [874472 2020-10-17] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {E59840D0-A67C-4B77-8A26-7C17C323E024} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3301176 2020-10-20] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EA1A79D1-ECE2-4A04-83EF-582630D02A24} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1722177080-3761313699-1016939255-1002 => C:\Users\Adika\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {EA39082F-542A-403C-B64A-78824FB6C243} - System32\Tasks\OneDrive Standalone Update Task-S-1-5-21-1722177080-3761313699-1016939255-1005 => C:\Users\Adika\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
Task: {F03D48D5-E296-4152-9DBB-30FCA82AAD06} - System32\Tasks\AdobeGCInvoker-1.0 => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [3402832 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
Task: {F17EE1E5-3846-45FF-9BEE-CE376C2921F9} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1128424 2020-10-19] (NVIDIA Corporation -> NVIDIA Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{26a7ba22-20c2-4588-ab3c-1563ae37b717}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{a34ab0db-0ae4-4769-ae16-cee9001ddb96}: [DhcpNameServer] 192.168.0.1
Edge:
=======
Edge Profile: C:\Users\Adika\AppData\Local\Microsoft\Edge\User Data\Default [2021-01-31]
Edge Extension: ( ) - C:\Users\Adika\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\dofpbojfgicaljfmagepfkdcobbcnoii [2021-01-31]
FireFox:
========
FF DefaultProfile: eo982mlq.default
FF ProfilePath: C:\Users\Adika\AppData\Roaming\Mozilla\Firefox\Profiles\eo982mlq.default [2019-10-13]
FF ProfilePath: C:\Users\Adika\AppData\Roaming\Mozilla\Firefox\Profiles\p1m08x7a.default-release [2021-02-01]
FF user.js: detected! => C:\Users\Adika\AppData\Roaming\Mozilla\Firefox\Profiles\p1m08x7a.default-release\user.js [2021-01-24]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-14] (Adobe Inc. -> )
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-09-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2020-10-08] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-14] (Adobe Inc. -> )
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-01-07] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-09-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Program Files (x86)\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2020-12-07] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2020-10-08] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default [2021-02-01]
CHR DownloadDir: D:\Downloads
CHR Extension: (Google Übersetzer) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2020-03-31]
CHR Extension: (Präsentationen) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2019-10-13]
CHR Extension: (lock) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aeblfdkhhhdcdjpifhhbdiojplfjncoa [2020-11-13]
CHR Extension: (BetterTTV) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\ajopnjidmegmdimjlfnijceegpefgped [2020-12-18]
CHR Extension: (Docs) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2019-10-13]
CHR Extension: (Google Drive) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-13]
CHR Extension: (YouTube) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2019-10-13]
CHR Extension: (uBlock Origin) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2021-01-10]
CHR Extension: (Adobe Acrobat) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2020-12-16]
CHR Extension: (FrankerFaceZ) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\fadndhdgpmmaapbmfcknlfgcflmmmieb [2020-05-09]
CHR Extension: (Tabellen) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2019-10-13]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2019-10-13]
CHR Extension: (Google Docs Offline) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-11-13]
CHR Extension: (Chrome Remote Desktop) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2019-10-13]
CHR Extension: (Volume Master - Lautstärkeregler) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\jghecgabfgfdldnmbfkhmffcabddioke [2020-01-31]
CHR Extension: (TTV ad-block) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\kndhknfnihidhcfnaacnndbolonbimai [2020-11-28]
CHR Extension: (Anwendungs-Launcher für Drive (von Google)) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2021-01-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-01-29]
CHR Extension: (Google Mail) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-13]
CHR Extension: (Chrome Media Router) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-01-28]
CHR Extension: (Batch Media Saver from Instagram™) - C:\Users\Adika\AppData\Local\Google\Chrome\User Data\Default\Extensions\plmnmnpijgncjompjiccojbccinacefh [2019-10-13]
CHR HKU\S-1-5-21-1722177080-3761313699-1016939255-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [170056 2020-11-03] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [852024 2020-10-08] (Adobe Inc. -> Adobe Inc.)
R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3739728 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [3511376 2020-09-23] (Adobe Inc. -> Adobe Systems, Incorporated)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8736880 2020-11-21] (BattlEye Innovations e.K. -> )
R2 CAMService; C:\Program Files\NZXT CAM\resources\app.asar.unpacked\node_modules\@nzxt\rust-cam\dist\native\target\release\service.exe [534664 2021-01-07] (NZXT, Inc. -> )
R2 cFosSpeedS; C:\Program Files\cFosSpeed\spd.exe [595720 2019-09-04] (cFos Software GmbH -> cFos Software GmbH)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [8960384 2021-01-19] (Microsoft Corporation -> Microsoft Corporation)
R2 DevoloNetworkService; C:\Program Files (x86)\devolo\dlan\devolonetsvc.exe [6189232 2019-11-15] (devolo AG -> devolo AG)
R2 DragonCenter_Service; C:\Program Files (x86)\MSI\Dragon Center\DragonCenter_Service.exe [142512 2019-08-29] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star Int'l Co., Ltd.)
S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [805488 2020-12-25] (EasyAntiCheat Oy -> EasyAntiCheat Ltd)
R2 EasyTuneEngineService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\EasyTuneEngineService.exe [143072 2019-12-05] (GIGA-BYTE TECHNOLOGY CO., LTD. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 FvSvc; C:\Program Files\NVIDIA Corporation\FrameViewSDK\nvfvsdksvc_x64.exe [287720 2020-10-19] (NVIDIA Corporation -> NVIDIA)
R2 gadjservice; C:\Program Files (x86)\GIGABYTE\AppCenter\AdjustService.exe [17920 2015-06-25] () [Datei ist nicht signiert]
S3 GameforgeClientService; C:\Program Files (x86)\GameforgeClient\gfservice.exe [562848 2020-08-06] (Gameforge 4D GmbH -> )
R2 Gservice; C:\Program Files (x86)\GIGABYTE\GService\GCloud.exe [19888 2016-12-02] (GIGA-BYTE TECHNOLOGY CO., LTD. -> Microsoft)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10897296 2021-01-13] (Logitech Inc -> Logitech, Inc.)
R2 LightKeeperService; C:\Program Files (x86)\MSI\Dragon Center\Mystic_Light\LightKeeperService.exe [81552 2020-04-26] (MICRO-STAR INTERNATIONAL CO., LTD. -> Micro-Star INT'L CO., LTD.)
R2 LogiFacecamService; C:\Program Files\Logitech\LogiCapture\bin\Service\LogiFacecamService.exe [446600 2020-01-08] (Logitech Inc -> Logitech)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7456464 2021-02-01] (Malwarebytes Inc -> Malwarebytes)
S2 OcButtonService; C:\Program Files (x86)\GIGABYTE\EasyTuneEngineService\OcButtonService.exe [119808 2019-11-21] (GIGA-BYTE TECHNOLOGY CO., LTD.) [Datei ist nicht signiert]
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2506544 2020-02-04] (Electronic Arts, Inc. -> Electronic Arts)
R2 Origin Web Helper Service; C:\Program Files (x86)\Origin\OriginWebHelperService.exe [3429176 2020-02-04] (Electronic Arts, Inc. -> Electronic Arts)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6264144 2021-01-14] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SEVPNCLIENT; C:\Program Files\SoftEther VPN Client\vpnclient_x64.exe [5886264 2020-12-21] (SoftEther Corporation -> SoftEther VPN Project at University of Tsukuba, Japan.)
S3 vgc; C:\Program Files\Riot Vanguard\vgc.exe [10091440 2021-01-22] (Riot Games, Inc. -> Riot Games, Inc.)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
S4 edgeupdate; "C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /svc [X]
S4 edgeupdatem; "C:\Program Files (x86)\Microsoft\EdgeUpdate\MicrosoftEdgeUpdate.exe" /medsvc [X]
S4 gupdate; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /svc [X]
S4 gupdatem; "C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /medsvc [X]
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_4f0927d2d65e905f\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nvmdi.inf_amd64_4f0927d2d65e905f\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 AmdTools64; C:\WINDOWS\System32\drivers\AmdTools64.sys [58216 2018-03-23] (Advanced Micro Devices Inc. -> Advanced Micro Devices)
S3 AppleKmdfFilter; C:\WINDOWS\System32\drivers\AppleKmdfFilter.sys [20640 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35560 2018-05-10] (WDKTestCert build,131474841775766162 -> Apple Inc.)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [231936 2019-10-07] (Microsoft Corporation) [Datei ist nicht signiert]
R1 cFosSpeed; C:\WINDOWS\system32\DRIVERS\cfosspeed6.sys [1601312 2019-09-03] (cFos Software GmbH -> cFos Software GmbH)
R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2021-02-01] (CPUID S.A.R.L.U. -> CPUID)
S3 CY3014.X64; C:\WINDOWS\system32\DRIVERS\CY3014.X64.SYS [3717608 2018-10-18] (Elgato Systems LLC -> )
R1 EneTechIo; C:\WINDOWS\system32\drivers\ene.sys [19968 2019-10-17] (Microsoft Windows Hardware Compatibility Publisher -> )
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [153312 2021-02-01] (Malwarebytes Corporation -> Malwarebytes)
R3 gdrv2; C:\Windows\gdrv2.sys [32600 2019-10-04] (GIGA-BYTE Technology Co., Ltd. -> GIGA-BYTE TECHNOLOGY CO., LTD.)
S3 goxlr_audio; C:\WINDOWS\System32\drivers\goxlr_audio.sys [374768 2019-06-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 goxlr_audioks; C:\WINDOWS\System32\drivers\goxlr_audioks.sys [53744 2019-06-28] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 GVCIDrv; C:\Program Files (x86)\Gigabyte\RGBFusion\GVCIDrv64.sys [18432 2019-12-08] (Microsoft Windows Hardware Compatibility Publisher -> )
R2 LGHUBTemperatureService; C:\ProgramData\LGHUB\depots\73248\driver_cpu_temperature\logi_core_temp.sys [25448 2021-01-13] (Logitech Inc. -> Logitech)
S3 libusb0; C:\WINDOWS\system32\DRIVERS\libusb0.sys [52832 2020-02-19] (Travis Lee Robinson -> hxxp://libusb-win32.sourceforge.net)
S3 logi_audio_surround; C:\WINDOWS\system32\drivers\logi_audio_surround.sys [44088 2020-10-12] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [38136 2019-10-22] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [26672 2020-05-22] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66808 2019-10-22] (Logitech Inc -> Logitech)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220600 2021-02-01] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-02-01] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198248 2021-02-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-02-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-02-01] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [142440 2021-02-01] (Malwarebytes Inc -> Malwarebytes)
R3 NAL; C:\WINDOWS\system32\Drivers\iqvw64e.sys [58520 2019-10-04] (Intel(R) INTELND1820 -> Intel Corporation)
R3 Neo_VPN; C:\WINDOWS\System32\drivers\Neo6_x64_VPN.sys [37824 2020-12-21] (SoftEther Corporation -> SoftEther Corporation)
R2 NPF_devolo; C:\WINDOWS\sysWOW64\drivers\npf_devolo.sys [36496 2019-11-15] (devolo AG -> Riverbed Technology, Inc.)
R0 secnvme; C:\WINDOWS\System32\drivers\secnvme.sys [134120 2018-02-13] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd)
R3 SnapCameraVirtualDevice; C:\WINDOWS\System32\drivers\SnapCameraVirtualDevice.sys [2800232 2020-10-12] (Snap Inc. -> Windows (R) Win 7 DDK provider)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 tapnordvpn; C:\WINDOWS\System32\drivers\tapnordvpn.sys [44896 2018-07-24] (TEFINCOM S.A. -> The OpenVPN Project)
R1 vgk; C:\Program Files\Riot Vanguard\vgk.sys [5782360 2021-01-22] (Riot Games, Inc. -> Riot Games, Inc.)
S3 vmulti; C:\WINDOWS\System32\drivers\vmulti.sys [10752 2018-12-11] (Windows (R) Win 7 DDK provider) [Datei ist nicht signiert]
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz149; \??\C:\WINDOWS\temp\cpuz149\cpuz149_x64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-02-01 10:36 - 2021-02-01 10:36 - 000000000 ____D C:\FRST
2021-02-01 10:18 - 2021-02-01 10:18 - 000220600 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-02-01 10:18 - 2021-02-01 10:18 - 000198248 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-02-01 10:18 - 2021-02-01 10:18 - 000142440 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-02-01 10:18 - 2021-02-01 10:18 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-02-01 10:18 - 2021-02-01 10:18 - 000000000 ____D C:\Users\Adika\AppData\LocalLow\IGDump
2021-02-01 10:01 - 2021-02-01 10:02 - 000000000 ____D C:\AdwCleaner
2021-02-01 09:59 - 2021-02-01 09:59 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-02-01 09:59 - 2021-02-01 09:59 - 000001993 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-02-01 09:59 - 2021-02-01 09:59 - 000001981 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-02-01 09:59 - 2021-02-01 09:59 - 000001981 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-02-01 09:59 - 2021-02-01 09:59 - 000000000 ____D C:\Users\Adika\AppData\Local\mbam
2021-02-01 09:59 - 2021-02-01 09:58 - 000153312 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-02-01 09:59 - 2021-02-01 09:58 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-02-01 09:58 - 2021-02-01 09:58 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-02-01 09:58 - 2021-02-01 09:58 - 000000000 ____D C:\Program Files\Malwarebytes
2021-02-01 08:10 - 2021-02-01 08:16 - 000000000 ____D C:\Users\Adika\Desktop\Wordpress JPG
2021-02-01 03:44 - 2021-02-01 03:44 - 000000000 ____D C:\Users\Adika\Desktop\Atelier
2021-01-31 16:14 - 2021-01-31 16:14 - 000000000 ____D C:\Users\Adika\Documents\My Games
2021-01-31 15:32 - 2021-02-01 10:05 - 000000000 ____D C:\Program Files\CCleaner
2021-01-31 15:32 - 2021-02-01 10:03 - 000000000 ____D C:\ProgramData\AVG
2021-01-31 15:32 - 2021-01-31 15:32 - 000003936 _____ C:\WINDOWS\system32\Tasks\CCleaner Update
2021-01-31 15:32 - 2021-01-31 15:32 - 000002880 _____ C:\WINDOWS\system32\Tasks\CCleanerSkipUAC
2021-01-31 15:32 - 2021-01-31 15:32 - 000000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2021-01-31 15:32 - 2021-01-31 15:32 - 000000863 _____ C:\ProgramData\Desktop\CCleaner.lnk
2021-01-31 15:32 - 2021-01-31 15:32 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2021-01-29 05:04 - 2021-01-29 05:04 - 000004332 _____ C:\WINDOWS\system32\Tasks\@bthpan.inf,%BthPan.DisplayName%;BluetoothDeviceBluetooth-Unterstützungsdienst
2021-01-29 04:54 - 2021-01-29 04:54 - 000004388 _____ C:\WINDOWS\system32\Tasks\Adobe Service Hyper-V
2021-01-29 04:54 - 2021-01-29 04:54 - 000000000 ____D C:\Users\Adika\AppData\Roaming\npm
2021-01-29 04:54 - 2021-01-29 04:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Node.js
2021-01-29 04:54 - 2021-01-29 04:54 - 000000000 ____D C:\Program Files (x86)\nodejs
2021-01-26 15:46 - 2021-01-26 16:02 - 000000000 ____D C:\Users\Adika\Desktop\Jobcenter Teil 2
2021-01-23 21:58 - 2021-01-23 21:58 - 002628619 _____ C:\Users\Adika\Desktop\Leri - Bruh.psd
2021-01-23 03:09 - 2021-01-23 07:48 - 000000000 ____D C:\Users\Adika\Desktop\WOHNUNG
2021-01-23 02:52 - 2021-01-23 02:53 - 000000000 ____D C:\Users\Adika\Desktop\umsaetze
2021-01-23 02:43 - 2021-01-23 02:43 - 000100331 _____ C:\Users\Adika\Desktop\Umsaetze_KtoNr202069100_EUR_23-01-2021_0241.pdf
2021-01-23 02:40 - 2021-01-23 02:41 - 000927480 _____ C:\Users\Adika\Desktop\Umsätze & Digitales Haushaltsbuch - Commerzbank.pdf
2021-01-23 01:15 - 2021-01-23 01:15 - 000527770 _____ C:\Users\Adika\Desktop\checks-2-6WMIP5PG75234-2.pdf
2021-01-23 01:12 - 2021-01-23 01:12 - 000673568 _____ C:\Users\Adika\Desktop\2021-01-17_SelbstauskunftMietinteressent.pdf
2021-01-22 22:14 - 2021-01-22 22:14 - 000000222 _____ C:\Users\Adika\Desktop\Path of Exile.url
2021-01-20 14:07 - 2021-01-20 14:07 - 000000000 ____D C:\Users\49151\AppData\Local\OneDrive
2021-01-20 12:32 - 2021-01-20 13:33 - 000000000 ____D C:\Users\Adika\Desktop\Roborock S5 Max
2021-01-19 06:15 - 2021-01-19 06:16 - 000000000 ____D C:\Users\Adika\Desktop\KFW Corona Antrag
2021-01-18 16:45 - 2021-01-18 16:45 - 000001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder 2020.lnk
2021-01-18 16:41 - 2021-01-18 16:41 - 000001085 _____ C:\Users\Adika\Desktop\Adobe Lightroom Classic.lnk
2021-01-18 16:41 - 2021-01-18 16:41 - 000001085 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Lightroom Classic.lnk
2021-01-18 16:38 - 2021-01-18 16:38 - 000001026 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge 2021.lnk
2021-01-18 16:36 - 2021-01-18 16:36 - 000001250 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects 2020.lnk
2021-01-18 16:31 - 2021-01-18 16:31 - 000001130 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro 2020.lnk
2021-01-18 16:26 - 2021-01-18 16:26 - 000001064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2021.lnk
2021-01-18 11:32 - 2021-01-18 11:32 - 000154918 _____ C:\Users\Adika\Desktop\suhariadika Mail - Bescheid zu dem Antrag AWDHR2-568.pdf
2021-01-17 20:18 - 2021-01-17 20:18 - 000194050 _____ C:\Users\Adika\Desktop\Druckansicht.pdf
2021-01-17 20:15 - 2021-01-17 20:15 - 000153886 _____ C:\Users\Adika\Desktop\Umsaetze_KtoNr202069100_EUR_17-01-2021_2015.pdf
2021-01-16 21:32 - 2021-01-16 21:32 - 000000222 _____ C:\Users\Adika\Desktop\Golf It!.url
2021-01-16 19:37 - 2021-01-16 19:37 - 000000000 ____D C:\Users\Adika\Desktop\e-scorts.gg
2021-01-15 16:54 - 2021-01-18 21:06 - 000000000 ____D C:\Users\Adika\Desktop\Strafverfahren
2021-01-15 16:31 - 2021-01-15 16:31 - 000000650 _____ C:\Users\Public\Desktop\Logitech G HUB.lnk
2021-01-15 16:31 - 2021-01-15 16:31 - 000000650 _____ C:\ProgramData\Desktop\Logitech G HUB.lnk
2021-01-15 16:31 - 2021-01-15 16:31 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Logi
2021-01-15 16:31 - 2021-01-15 16:31 - 000000000 ____D C:\Program Files\LGHUB
2021-01-15 09:56 - 2021-01-15 10:05 - 006736928 _____ C:\Users\Adika\Desktop\Lebenslauf - Adika Suhari.psd
2021-01-15 07:25 - 2021-01-18 12:44 - 000000000 ____D C:\Users\Adika\Desktop\Antrag - Corona
2021-01-15 06:38 - 2021-01-15 06:38 - 000000000 ____D C:\Users\Adika\Desktop\kamerajaeger
2021-01-14 23:17 - 2021-01-14 23:17 - 000696832 _____ (Microsoft Corporation) C:\WINDOWS\system32\hhctrl.ocx
2021-01-14 23:17 - 2021-01-14 23:17 - 000576512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\hhctrl.ocx
2021-01-14 23:17 - 2021-01-14 23:17 - 000568320 _____ (Microsoft Corporation) C:\WINDOWS\system32\PhotoScreensaver.scr
2021-01-14 23:17 - 2021-01-14 23:17 - 000555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2021-01-14 23:17 - 2021-01-14 23:17 - 000502784 _____ C:\WINDOWS\system32\AssignedAccessCsp.dll
2021-01-14 23:17 - 2021-01-14 23:17 - 000500224 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PhotoScreensaver.scr
2021-01-14 23:17 - 2021-01-14 23:17 - 000458240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mmsys.cpl
2021-01-14 23:17 - 2021-01-14 23:17 - 000455680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appwiz.cpl
2021-01-14 23:17 - 2021-01-14 23:17 - 000294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2021-01-14 23:17 - 2021-01-14 23:17 - 000233472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ksproxy.ax
2021-01-14 23:17 - 2021-01-14 23:17 - 000168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\VBICodec.ax
2021-01-14 23:17 - 2021-01-14 23:17 - 000167424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\intl.cpl
2021-01-14 23:17 - 2021-01-14 23:17 - 000151040 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-01-14 23:17 - 2021-01-14 23:17 - 000135168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\VBICodec.ax
2021-01-14 23:17 - 2021-01-14 23:17 - 000094720 _____ C:\WINDOWS\system32\VirtualMonitorManager.dll
2021-01-14 23:17 - 2021-01-14 23:17 - 000086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdc.ocx
2021-01-14 23:17 - 2021-01-14 23:17 - 000083968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscui.cpl
2021-01-14 23:17 - 2021-01-14 23:17 - 000072704 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdc.ocx
2021-01-14 23:17 - 2021-01-14 23:17 - 000067584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wscui.cpl
2021-01-14 23:17 - 2021-01-14 23:17 - 000067072 _____ C:\WINDOWS\system32\BWContextHandler.dll
2021-01-14 23:17 - 2021-01-14 23:17 - 000053248 _____ C:\WINDOWS\SysWOW64\BWContextHandler.dll
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth9.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth18.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth17.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth16.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth15.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth12.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth11.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth10.bin
2021-01-14 23:17 - 2021-01-14 23:17 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin
2021-01-14 23:16 - 2021-01-14 23:16 - 002590720 _____ C:\WINDOWS\system32\dwmscene.dll
2021-01-14 23:16 - 2021-01-14 23:16 - 001841152 _____ C:\WINDOWS\system32\TextInputMethodFormatter.dll
2021-01-14 23:16 - 2021-01-14 23:16 - 001101312 _____ C:\WINDOWS\SysWOW64\TextInputMethodFormatter.dll
2021-01-14 23:16 - 2021-01-14 23:16 - 000549888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmsys.cpl
2021-01-14 23:16 - 2021-01-14 23:16 - 000540672 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2021-01-14 23:16 - 2021-01-14 23:16 - 000453632 _____ C:\WINDOWS\system32\ssdm.dll
2021-01-14 23:16 - 2021-01-14 23:16 - 000415744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\winspool.drv
2021-01-14 23:16 - 2021-01-14 23:16 - 000331264 _____ C:\WINDOWS\SysWOW64\ssdm.dll
2021-01-14 23:16 - 2021-01-14 23:16 - 000266752 _____ C:\WINDOWS\system32\HeatCore.dll
2021-01-14 23:16 - 2021-01-14 23:16 - 000235520 _____ (Microsoft Corporation) C:\WINDOWS\system32\timedate.cpl
2021-01-14 23:16 - 2021-01-14 23:16 - 000208896 _____ (Microsoft Corporation) C:\WINDOWS\system32\intl.cpl
2021-01-14 23:16 - 2021-01-14 23:16 - 000208384 _____ C:\WINDOWS\SysWOW64\HeatCore.dll
2021-01-14 23:16 - 2021-01-14 23:16 - 000186368 _____ C:\WINDOWS\system32\BthpanContextHandler.dll
2021-01-14 23:16 - 2021-01-14 23:16 - 000184320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\timedate.cpl
2021-01-14 23:16 - 2021-01-14 23:16 - 000164864 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-01-14 23:16 - 2021-01-14 23:16 - 000061440 _____ C:\WINDOWS\system32\rdsxvmaudio.dll
2021-01-14 21:39 - 2021-01-15 06:19 - 000000000 ____D C:\Users\Adika\AppData\Roaming\youtube-dlg
2021-01-14 21:39 - 2021-01-14 21:39 - 000001131 _____ C:\Users\Public\Desktop\Youtube-DLG.lnk
2021-01-14 21:39 - 2021-01-14 21:39 - 000001131 _____ C:\ProgramData\Desktop\Youtube-DLG.lnk
2021-01-14 21:39 - 2021-01-14 21:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Youtube-DLG
2021-01-14 21:39 - 2021-01-14 21:39 - 000000000 ____D C:\Program Files (x86)\Youtube-DLG
2021-01-14 21:39 - 2021-01-14 21:18 - 2807262288 _____ C:\Users\Adika\Desktop\LIVE PHOTO RETOUCHING! Photoshop _ Lightroom.mp4
2021-01-13 06:14 - 2021-01-13 06:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Snap Inc
2021-01-13 06:14 - 2021-01-13 06:14 - 000000000 ____D C:\Program Files\Snap Inc
2021-01-13 06:14 - 2020-10-12 20:08 - 002800232 _____ (Windows (R) Win 7 DDK provider) C:\WINDOWS\system32\Drivers\SnapCameraVirtualDevice.sys
2021-01-12 09:46 - 2021-01-15 16:39 - 000000000 ____D C:\Users\Adika\Desktop\Shooting - Michelle
2021-01-11 17:45 - 2021-01-11 17:45 - 000489843 _____ C:\Users\Adika\Desktop\Hochzeitsjubel - Logo.psd
2021-01-10 18:11 - 2021-01-19 05:47 - 000000623 _____ C:\Users\49151\Desktop\TEXTVORLAGE.txt
2021-01-10 18:08 - 2021-01-10 18:08 - 000128902 _____ C:\Users\49151\Downloads\Rahmalia-Script-1249613-GraphicEx.com.zip
2021-01-10 14:57 - 2021-01-10 14:57 - 132001853 _____ C:\Users\Adika\Desktop\Fiverr - Test Order.psd
2021-01-10 14:11 - 2021-01-10 14:11 - 001046106 _____ C:\Users\Adika\Desktop\Portrait ALL.jfif
2021-01-10 04:49 - 2021-01-10 04:49 - 000029190 _____ C:\Users\Adika\Desktop\Finanzuebersicht_10-01-2021_0448.pdf
2021-01-09 16:22 - 2021-01-09 16:22 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-01-08 20:36 - 2021-01-08 20:36 - 000002493 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Illustrator 2021.lnk
2021-01-07 09:20 - 2021-01-30 05:05 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-01-06 08:50 - 2021-01-15 12:24 - 000000000 ____D C:\Users\Adika\Desktop\Freepik
2021-01-06 03:51 - 2021-01-06 03:51 - 000000000 ____D C:\Users\49151\AppData\Local\cache
2021-01-06 03:50 - 2021-01-06 03:51 - 000000000 ____D C:\Users\49151\AppData\Local\DxO
2021-01-06 02:21 - 2021-01-06 02:21 - 000000095 _____ C:\Users\Adika\Desktop\CODES.txt
2021-01-05 22:43 - 2021-01-06 00:47 - 000000000 ____D C:\Users\Adika\Desktop\Maike Geburtstag
2021-01-05 22:14 - 2021-01-05 22:15 - 000000000 ____D C:\ProgramData\DxO
2021-01-05 22:14 - 2021-01-05 22:14 - 000000000 ____D C:\ProgramData\Reprise
2021-01-05 22:14 - 2021-01-05 22:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nik Collection
2021-01-05 22:14 - 2021-01-05 22:14 - 000000000 ____D C:\ProgramData\DxO Labs
2021-01-05 22:14 - 2021-01-05 22:14 - 000000000 ____D C:\Program Files\DxO
2021-01-05 22:13 - 2021-01-05 22:38 - 000000000 ____D C:\Users\Adika\AppData\Local\DxO
2021-01-04 10:41 - 2021-01-04 10:41 - 000000000 ____D C:\Users\Adika\.jes
2021-01-04 10:41 - 2021-01-04 10:41 - 000000000 ____D C:\Program Files\ojdkbuild
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-02-01 10:33 - 2019-10-04 17:40 - 000000000 ____D C:\Users\Adika\AppData\Roaming\NZXT CAM
2021-02-01 10:33 - 2019-03-19 05:52 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-02-01 10:30 - 2020-08-06 17:27 - 000000000 ____D C:\Users\Adika\AppData\Local\LGHUB
2021-02-01 10:23 - 2020-06-15 14:29 - 000000000 ____D C:\Users\Adika\AppData\LocalLow\Mozilla
2021-02-01 10:14 - 2019-10-04 17:29 - 000000000 ____D C:\Users\Adika\AppData\Local\D3DSCache
2021-02-01 10:09 - 2019-11-25 05:52 - 001723292 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-02-01 10:09 - 2019-03-19 13:16 - 000741728 _____ C:\WINDOWS\system32\perfh007.dat
2021-02-01 10:09 - 2019-03-19 13:16 - 000149880 _____ C:\WINDOWS\system32\perfc007.dat
2021-02-01 10:09 - 2019-03-19 05:50 - 000000000 ____D C:\WINDOWS\INF
2021-02-01 10:06 - 2020-04-07 19:17 - 000000001 _____ C:\WINDOWS\vgkbootstatus.dat
2021-02-01 10:05 - 2020-01-21 11:23 - 000000000 ____D C:\Users\Adika\AppData\Roaming\Blitz
2021-02-01 10:05 - 2019-10-04 17:21 - 000000000 ____D C:\ProgramData\NVIDIA
2021-02-01 10:04 - 2020-12-21 10:21 - 000000000 ____D C:\Program Files\SoftEther VPN Client
2021-02-01 10:04 - 2020-10-31 19:29 - 000000000 ___RD C:\Users\Adika\iCloudDrive
2021-02-01 10:04 - 2019-10-13 16:19 - 000000000 ___RD C:\Users\Adika\Creative Cloud Files
2021-02-01 10:04 - 2019-10-13 04:36 - 000000000 ____D C:\Users\Adika\AppData\Roaming\LGHUB
2021-02-01 10:04 - 2019-10-13 04:25 - 000000000 ____D C:\Users\Adika\AppData\Roaming\Discord
2021-02-01 10:03 - 2020-02-19 01:51 - 000000258 __RSH C:\ProgramData\ntuser.pol
2021-02-01 10:03 - 2019-11-25 05:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-02-01 10:03 - 2019-10-13 05:00 - 000000000 ____D C:\Users\Adika\AppData\Local\CrashDumps
2021-02-01 10:03 - 2019-10-13 04:14 - 000000000 ____D C:\Program Files (x86)\Google
2021-02-01 10:03 - 2019-03-19 05:37 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-02-01 09:59 - 2019-03-19 05:52 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-02-01 09:48 - 2019-11-01 00:27 - 000001456 _____ C:\Users\Adika\AppData\Local\Adobe Save for Web 13.0 Prefs
2021-02-01 08:10 - 2019-10-18 01:57 - 000000000 ____D C:\Users\Adika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Beamr Imaging
2021-02-01 07:53 - 2019-11-25 05:46 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-02-01 07:46 - 2019-03-19 05:52 - 000000000 ___HD C:\Program Files\WindowsApps
2021-02-01 07:46 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-02-01 04:10 - 2019-10-13 18:05 - 000000000 ____D C:\Program Files (x86)\Steam
2021-02-01 03:43 - 2020-12-18 02:13 - 000000000 ____D C:\Users\Adika\Desktop\Hochzeit
2021-02-01 03:43 - 2020-04-27 05:28 - 000000000 ____D C:\Users\Adika\Desktop\Misc
2021-02-01 03:39 - 2020-10-21 06:13 - 000000000 ____D C:\Users\Adika\Desktop\Versandmarken
2021-01-31 21:54 - 2019-10-13 16:17 - 000000000 ___HD C:\Users\Public\Documents\AdobeGCData
2021-01-31 15:35 - 2019-11-25 05:50 - 000000000 ____D C:\WINDOWS\minidump
2021-01-31 15:35 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\LiveKernelReports
2021-01-31 00:30 - 2019-10-13 16:04 - 000000000 ____D C:\ProgramData\Riot Games
2021-01-29 18:22 - 2019-10-04 17:02 - 000000000 ____D C:\Users\Adika\AppData\Local\Packages
2021-01-29 17:21 - 2019-11-25 04:15 - 000000000 ____D C:\Users\Adika\AppData\Local\ElevatedDiagnostics
2021-01-29 05:04 - 2020-07-13 16:58 - 000003688 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-01-29 05:04 - 2020-07-13 16:58 - 000003464 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2021-01-29 05:04 - 2019-11-25 05:50 - 000003618 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-01-29 05:04 - 2019-11-25 05:50 - 000003394 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-01-29 05:04 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2021-01-29 04:54 - 2019-10-04 17:20 - 000000000 ____D C:\ProgramData\Package Cache
2021-01-29 04:25 - 2021-01-01 18:10 - 000000000 ___RD C:\Users\49151\Creative Cloud Files
2021-01-28 20:15 - 2019-10-20 00:38 - 000001365 _____ C:\Users\Adika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\1Password.lnk
2021-01-28 20:15 - 2019-10-20 00:38 - 000000000 ____D C:\Users\Adika\AppData\Local\1Password
2021-01-28 18:45 - 2020-07-13 16:59 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-01-28 16:54 - 2020-02-07 00:59 - 000000000 ____D C:\Users\Adika\AppData\Local\log
2021-01-28 01:45 - 2020-06-02 11:20 - 000000000 ____D C:\Program Files\Riot Vanguard
2021-01-27 22:27 - 2019-10-13 04:14 - 000002293 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-01-26 21:27 - 2019-10-19 12:11 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Backup and Sync from Google
2021-01-24 21:54 - 2019-10-13 17:25 - 000000000 ____D C:\ProgramData\Mozilla
2021-01-24 15:06 - 2020-04-22 13:02 - 000000000 ____D C:\Program Files\SteelSeries
2021-01-24 12:33 - 2019-10-17 22:36 - 000000000 ____D C:\Program Files\Microsoft Office
2021-01-22 16:39 - 2019-10-13 22:53 - 000799104 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2021-01-19 11:01 - 2020-05-08 06:05 - 000000000 ____D C:\Users\Adika\AppData\Roaming\Apple Computer
2021-01-19 08:52 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ServiceState
2021-01-18 17:18 - 2020-12-18 10:33 - 000000000 ___RD C:\Users\49151\3D Objects
2021-01-18 17:18 - 2019-11-25 05:48 - 000000000 ____D C:\Users\Adika
2021-01-18 17:18 - 2019-10-04 17:02 - 000000000 __RHD C:\Users\Public\AccountPictures
2021-01-18 16:45 - 2019-10-13 16:16 - 000000000 ____D C:\Program Files\Adobe
2021-01-18 16:31 - 2019-10-13 16:26 - 000000000 ____D C:\Users\Public\Documents\Adobe
2021-01-17 21:57 - 2020-06-02 11:18 - 000001639 _____ C:\Users\Adika\Desktop\VALORANT.lnk
2021-01-17 16:47 - 2019-10-13 04:52 - 000000000 ____D C:\Users\Adika\AppData\Local\Battle.net
2021-01-17 10:09 - 2019-11-02 16:31 - 000000000 ____D C:\Users\Adika\AppData\Roaming\Electrum
2021-01-16 20:58 - 2020-04-27 18:41 - 000001693 _____ C:\Users\Adika\Desktop\LEAGUE OF LEGENDS.lnk
2021-01-15 16:30 - 2019-10-04 17:02 - 000000000 ___RD C:\Users\Adika\3D Objects
2021-01-15 16:28 - 2019-11-25 05:46 - 000450544 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-01-15 16:27 - 2019-11-25 05:37 - 000000000 ____D C:\WINDOWS\system32\Drivers\en-GB
2021-01-15 16:27 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files\Windows Photo Viewer
2021-01-15 16:27 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-01-15 16:27 - 2019-03-19 13:19 - 000000000 ____D C:\Program Files (x86)\Windows Photo Viewer
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\F12
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\SysWOW64\DiagSvcs
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\UNP
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\F12
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\PerceptionSimulation
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\Com
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SysWOW64\AdvancedInstallers
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\SystemResources
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\setup
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\PerceptionSimulation
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\migwiz
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\Com
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\AdvancedInstallers
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellExperiences
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\ShellComponents
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\Provisioning
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\IME
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-01-15 16:27 - 2019-03-19 05:52 - 000000000 ____D C:\Program Files\Windows Defender
2021-01-15 12:52 - 2020-10-26 16:52 - 000000000 ____D C:\Users\Adika\Desktop\Fiverr
2021-01-14 23:20 - 2019-10-14 23:17 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-01-14 23:20 - 2019-03-19 05:37 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-01-14 23:18 - 2019-10-14 23:17 - 135062968 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-01-14 23:16 - 2019-11-25 05:50 - 002877952 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-01-13 17:01 - 2019-03-19 05:52 - 000000000 ____D C:\WINDOWS\system32\NDF
2021-01-13 12:56 - 2019-10-13 04:50 - 000000000 ____D C:\Program Files (x86)\Battle.net
2021-01-10 17:39 - 2019-10-04 17:02 - 000000000 ____D C:\Users\Adika\AppData\Roaming\Adobe
2021-01-10 04:57 - 2020-12-18 10:33 - 000000000 ____D C:\Users\49151\AppData\Local\NVIDIA Corporation
2021-01-10 04:56 - 2019-10-13 17:25 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-01-09 16:22 - 2019-10-13 17:25 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-01-08 20:37 - 2019-10-13 16:16 - 000000000 ____D C:\ProgramData\Adobe
2021-01-08 20:36 - 2019-10-13 16:16 - 000000000 ____D C:\Program Files\Common Files\Adobe
2021-01-08 20:34 - 2019-10-04 17:40 - 000000000 ____D C:\Program Files\NZXT CAM
2021-01-07 19:49 - 2019-10-25 18:07 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-01-06 09:28 - 2020-01-29 00:04 - 000000000 ____D C:\ProgramData\boost_interprocess
2021-01-05 15:46 - 2020-09-13 05:58 - 000001110 _____ C:\Users\Adika\Desktop\Electrum.lnk
2021-01-05 15:46 - 2019-10-13 22:08 - 000000000 ____D C:\Users\Adika\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electrum
2021-01-05 15:46 - 2019-10-13 22:08 - 000000000 ____D C:\Program Files (x86)\Electrum
2021-01-02 07:51 - 2020-12-15 21:49 - 000000000 ____D C:\Users\Adika\Desktop\STEALTH
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2019-11-01 00:27 - 2021-02-01 09:48 - 000001456 _____ () C:\Users\Adika\AppData\Local\Adobe Save for Web 13.0 Prefs
2020-05-16 14:35 - 2020-05-16 20:20 - 000042164 _____ () C:\Users\Adika\AppData\Local\krita.log
2020-05-16 20:20 - 2020-05-16 20:20 - 000000060 _____ () C:\Users\Adika\AppData\Local\kritadisplayrc
2020-05-16 14:35 - 2020-05-16 20:20 - 000016177 _____ () C:\Users\Adika\AppData\Local\kritarc
2019-10-13 16:16 - 2019-10-13 16:16 - 000000410 _____ () C:\Users\Adika\AppData\Local\oobelibMkey.log
2020-05-21 23:22 - 2020-08-15 20:03 - 000003094 _____ () C:\Users\Adika\AppData\Local\PlariumPlay.log
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
|
| Themen zu Audacity.de - Izito & Zapmeta in den Suchmaschinen im Browser |
| administrator, adobe, audacity, browser, canon, defender, desktop, firefox, flash player, geforce, google, internet, malware, mozilla, nvcontainer, nvcontainer.exe, nvidia, pdf, photoshop, port, prozesse, realtek, registry, rundll, scan, software, suchmaschine, temp, trojaner, windows |
Baum-Darstellung