Zurück   Trojaner-Board > Malware entfernen > Log-Analyse und Auswertung
Windows 10 ist plötzlich total langsam

Windows 10 ist plötzlich total langsam


Log-Analyse und Auswertung: Windows 10 ist plötzlich total langsam

Windows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML.

 
Vorheriger Beitrag Vorheriger Beitrag   Nächster Beitrag Nächster Beitrag
Alt 13.05.2021, 17:15   #1
Sweeny
 
Windows 10 ist plötzlich total langsam - Standard

Windows 10 ist plötzlich total langsam


Hallo,

seit 2-3 Tagen ist Windows 10 total langsam. Ein Klick auf ein Menüpunkt beim Chrome, Outlook oder bei den Windows-Einstellungen wird total verzögert verarbeitet (1-2 Sekunden). Start klappt so schnell wie üblich.

Ich habe ein Windows Defender-Scan gemacht; nichts gefunden. Den Defender hatte ich irgendwie verdächtigt; darum habe ich auf Malwarebytes umgestellt - aber es wird nicht besser. Statt mit Chrome bin ich dann mit dem Firefox ins Internet gegangen; aber auch das hat es nicht verbessert.

Farbar-Scan-Ergebnis liegt bei.

Im Taskmanager sieht man eine hohe Arbeitsspeicher-Belastung (insg. über 50%, manchmal über 60% - 1 GByte etwa Chrome, 1/4 GByte Malarebytes; danach alles kleiner).

Ich würde mich sehr freuen, wenn Ihr mir helfen könntet. Hier die Farbar-Scans.

Viele Grüße
Sweeny

EDIT: Ich sehe gerade, dass ich vermutlich im falschen Unterforum bin; sorry.

FRST Logfile:

FRST Logfile:

FRST Logfile:
Code:
ATTFilter
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 13-05-2021
Ran by Daniela (administrator) on PC (13-05-2021 18:05:28)
Running from C:\Users\Alexander\Downloads
Loaded Profiles: Daniela & Alexander
Platform: Windows 10 Pro Version 20H2 19042.985 (X64) Language: Deutsch (Deutschland) -> Deutsch (Deutschland)
Default browser: Chrome
Boot Mode: Normal

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

((c)2016 Datacolor) [File not signed] C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
(Apple Inc. -> Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Gira Giersiepen GmbH & Co. KG) [File not signed] C:\Program Files (x86)\Gira\Gira Project Assistant\Gira Project Assistant Service\Service.WindowsService.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe <39>
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.82\GoogleCrashHandler64.exe
(Huawei Technologies Co., Ltd. -> ) [File not signed] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(Huawei Technologies Co., Ltd. -> ) C:\Program Files (x86)\MobileBrServ\mbbService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel® Upgrade Service -> Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Jumping Bytes  (Christoph Guentner) -> Jumping Bytes) C:\Program Files (x86)\Jumping Bytes\PureSync\jbServices.exe
(Jumping Bytes  (Christoph Guentner) -> Jumping Bytes) C:\Program Files (x86)\Jumping Bytes\PureSync\PureSyncCheck.exe
(Jumping Bytes  (Christoph Guentner) -> Jumping Bytes) C:\Program Files (x86)\Jumping Bytes\PureSync\PureSyncTray.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\net.exe
(Notepad++ -> Don HO don.h@free.fr) E:\Program Files (x86)\Notepad++\notepad++.exe
(Open Source Developer, Dominik Reichl -> Dominik Reichl) C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) C:\Windows\System32\RAPID\SamsungRapidSvc.exe
(Synology Inc. -> ) [File not signed] C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe
(Synology Inc. -> ) [File not signed] C:\Program Files (x86)\Synology\CloudStation\bin\vss-service-x64.exe
(Synology Inc. -> ) [File not signed] C:\Program Files (x86)\Synology\CloudStationBackup\bin\vss-service-x64.exe
(Synology Inc. -> ) C:\Program Files (x86)\Synology Data Replicator  3\SynoDrServicex64.exe
(Synology Inc. -> Synology Inc.) C:\Users\Alexander\AppData\Local\CloudStation\CloudStation.app\bin\cloud-drive-connect.exe
(Synology Inc. -> Synology Inc.) C:\Users\Alexander\AppData\Local\CloudStation\CloudStation.app\bin\cloud-drive-daemon.exe
(Synology Inc. -> Synology Inc.) C:\Users\Alexander\AppData\Local\CloudStation\CloudStation.app\bin\cloud-drive-ui.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
0 C:\Program Files\WindowsApps\Microsoft.Windows.Photos_2020.20120.4004.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
0 C:\Program Files\WindowsApps\Microsoft.YourPhone_1.21022.215.0_x64__8wekyb3d8bbwe\YourPhone.exe
0 C:\Program Files\WindowsApps\Microsoft.ZuneVideo_10.21021.10311.0_x64__8wekyb3d8bbwe\Video.UI.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12489360 2012-05-18] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [SamsungRapidApp] => C:\Program Files (x86)\Samsung\RAPID\CacheFilter\SamsungRapidApp.exe [124000 2018-06-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
HKLM\...\Run: [KeePass 2 PreLoad] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3160256 2021-05-10] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [76600 2020-08-29] (Apple Inc. -> Apple Inc.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3084288 2012-07-31] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\RunOnce: [GrpConv] => grpconv -o
HKU\S-1-5-21-565462843-2377332638-636861087-1000\...\Run: [MD5 File Hasher] => C:\Program Files (x86)\MD5 File Hasher\MD5FileHasher -s
HKU\S-1-5-21-565462843-2377332638-636861087-1000\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33031648 2021-05-06] (Epic Games Inc. -> Epic Games, Inc.)
HKU\S-1-5-21-565462843-2377332638-636861087-1000\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-565462843-2377332638-636861087-1000\...\Run: [GarminExpress] => C:\Program Files (x86)\Garmin\Express\express.exe [31162800 2021-03-30] (Garmin International, Inc. -> Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-565462843-2377332638-636861087-1000\...\RunOnce: [iCloud] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloud.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-565462843-2377332638-636861087-1001\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [912480 2015-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-565462843-2377332638-636861087-1001\...\Run: [PureSync] => C:\Program Files (x86)\Jumping Bytes\PureSync\PureSyncTray.exe [1433888 2021-01-12] (Jumping Bytes  (Christoph Guentner) -> Jumping Bytes)
HKU\S-1-5-21-565462843-2377332638-636861087-1001\...\Run: [KeePass Password Safe 2] => C:\Program Files (x86)\KeePass Password Safe 2\KeePass.exe [3160256 2021-05-10] (Open Source Developer, Dominik Reichl -> Dominik Reichl)
HKU\S-1-5-21-565462843-2377332638-636861087-1001\...\Run: [launchOnStartup] => C:\Program Files (x86)\GOG Galaxy\GalaxyClient.exe [8030280 2020-02-25] (GOG Sp. z o.o. -> GOG.com)
HKU\S-1-5-21-565462843-2377332638-636861087-1001\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.) [File not signed]
HKU\S-1-5-21-565462843-2377332638-636861087-1001\...\Run: [3F39F816CD7BDDEEE521D84DB3B9E481A1B62B66._service_run] => "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=service /prefetch:8
HKU\S-1-5-21-565462843-2377332638-636861087-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [67384 2020-09-08] (Apple Inc. -> Apple Inc.)
HKU\S-1-5-21-565462843-2377332638-636861087-1002\...\Run: [Amazon Music] => C:\Users\Daniela_2\AppData\Local\Amazon Music\Amazon Music Helper.exe [6277952 2014-12-08] (Amazon Services LLC -> )
HKU\S-1-5-21-565462843-2377332638-636861087-1002\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [25638872 2018-04-23] (Google Inc -> Google)
HKU\S-1-5-21-565462843-2377332638-636861087-1002\...\Run: [OfficeSyncProcess] => C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [912480 2015-09-02] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-565462843-2377332638-636861087-1002\...\Run: [VideoDownloaderUltimate] => C:\ProgramData\VideoDownloaderUltimateWinApp\VideoDownloaderUltimate.exe [2746184 2016-08-22] (Link64 GmbH -> Link64 GmbH)
HKU\S-1-5-21-565462843-2377332638-636861087-1002\...\Run: [PTOneClick] => C:\Users\Daniela_2\AppData\Local\WebEx\WebEx\Applications\ptoneclk.exe [7780040 2021-01-08] (Cisco WebEx LLC -> Cisco Webex LLC)
HKU\S-1-5-21-565462843-2377332638-636861087-1002\...\Run: [CiscoMeetingDaemon] => C:\Users\Daniela_2\AppData\Local\WebEx\ciscowebexstart.exe [3712216 2021-05-09] (Cisco WebEx LLC -> Cisco Webex LLC)
HKLM\...\Windows x64\Print Processors\BJ Print Processor4: C:\Windows\System32\spool\prtprocs\x64\CNBPP4.DLL [84992 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\BJ Language Monitor4: C:\WINDOWS\system32\CNBLM4.DLL [267776 2011-08-30] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\pdfcmon: C:\WINDOWS\system32\pdfcmon.dll [110264 2013-04-09] (pdfforge GmbH -> pdfforge GmbH)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\90.0.4430.212\Installer\chrmstp.exe [2021-05-12] (Google LLC -> Google LLC)
HKLM\Software\...\Authentication\Credential Providers: [{503739d0-4c5e-4cfd-b3ba-d881334f0df2}] -> 
HKLM\Software\...\Winlogon\GPExtensions: [{6cfb9c5c-138e-4bb3-8a3d-d5383e910e57}] -> %SystemRoot%\System32\RdpGroupPolicyExtension.dll
Startup: C:\Users\Alexander\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station Drive.lnk [2021-05-13]
ShortcutTarget: Synology Cloud Station Drive.lnk -> C:\Program Files (x86)\Synology\CloudStation\bin\launcher.exe (Synology Inc. -> Synology Inc.) [File not signed]
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SpyderUtility.lnk [2016-11-30]
ShortcutTarget: SpyderUtility.lnk -> C:\Program Files (x86)\Datacolor\Spyder4Pro\Utility\SpyderUtility.exe ((c)2016 Datacolor) [File not signed]
Startup: C:\Users\Daniela_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Synology Cloud Station Drive.lnk [2021-05-13]
ShortcutTarget: Synology Cloud Station Drive.lnk -> C:\Program Files (x86)\Synology\CloudStation\bin\launcher.exe (Synology Inc. -> Synology Inc.) [File not signed]
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
Policies: C:\ProgramData\NTUSER.pol: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04291AB8-1BFF-482D-A354-0DAA63096B83} - System32\Tasks\npcapwatchdog => C:\Program Files\Npcap\CheckStatus.bat [880 2020-09-25] () [File not signed]
Task: {04620E3E-9FF6-47C3-A01D-3391D0960B5E} - \Microsoft\Windows\Setup\gwx\rundetector -> No File <==== ATTENTION
Task: {157F03BB-812E-48C2-978F-EB0066E01444} - System32\Tasks\JumpingBytes\PureSyncVSS => C:\Program Files (x86)\Jumping Bytes\PureSync\PureSyncVSSStart.exe
Task: {1962D670-73A2-4161-9A19-96A76222E178} - System32\Tasks\JumpingBytes\PureSyncElvDaniela => C:\Program Files (x86)\Jumping Bytes\PureSync\PureSyncHelper.exe [168304 2020-12-29] (Jumping Bytes  (Christoph Guentner) -> Jumping Bytes)
Task: {1B78249E-0F85-4595-AD1B-CCAB4B056072} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {1D915986-CA90-4D97-B368-5FDEF41966A6} - System32\Tasks\Microsoft\Windows\SideShow\SessionAgent => {45F26E9E-6199-477F-85DA-AF1EDFE067B1}
Task: {1E639B88-7427-4D46-BDE4-EED2D5F7C033} - System32\Tasks\JumpingBytes\PureSyncExit => C:\Program Files (x86)\Jumping Bytes\PureSync\PureSyncAdmin.exe
Task: {24F345DF-CDEF-4C26-AD31-EAF482740CED} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {2C40D05D-9777-4C7E-B5A9-BE37D4108F3E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2D8ADC5D-837C-4828-AA64-3FC4C3079E99} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {2EBB0D39-C126-4B26-8B72-90B964C712B3} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [696816 2021-04-17] (Mozilla Corporation -> Mozilla Foundation)
Task: {37892A5E-D1D4-452D-ADFE-6422BB2D4776} - System32\Tasks\Microsoft\Windows\SideShow\AutoWake => {E51DFD48-AA36-4B45-BB52-E831F02E8316}
Task: {3B3F30A3-9CD8-4F03-B0DF-8C8B6A87E0C0} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {4426CA6A-6D63-4546-9887-23745332C150} - System32\Tasks\AdwCleaner_onReboot => C:\Users\Alexander\Downloads\adwcleaner_8.0.8.exe [8447152 2021-01-04] (Malwarebytes Inc -> Malwarebytes)
Task: {486D715E-6AA2-44CF-BC48-B6990CBB53C6} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControlsMigration => {343D770D-7788-47C2-B62A-B7C4CED925CB}
Task: {49F6C337-FA53-4D3B-843D-BED1B91BE776} - System32\Tasks\{54BA2233-CCFA-4261-A274-CCA9C78F9057} => "C:\Program Files\Internet Explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/7.13.0.101/de/abandoninstall?page=tsProgressBar
Task: {5A9BE10E-CDC1-4CB2-B604-82B206E024CF} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {5B42DD9C-5A26-4F27-BB95-34603F0997E5} - System32\Tasks\Microsoft\Windows\Shell\WindowsParentalControls => {DFA14C43-F385-4170-99CC-1B7765FA0E4A}
Task: {5BA33DD0-E9E1-4AFE-9241-8AEDA668932B} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {5D549C7B-04CE-48F6-AFD9-ABF56A9BA0FD} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5DF044AA-F71D-465A-A02D-9661F829562B} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [616832 2019-09-04] (Apple Inc. -> Apple Inc.)
Task: {6DDD6299-22D5-4AD2-9874-AA8009BBB2AB} - System32\Tasks\{E887F441-25A6-4815-BCE1-41682C06FB8E} => "C:\Program Files\Internet Explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/6.20.0.104/de/abandoninstall?page=tsProgressBar
Task: {730AC712-A578-4E65-9B1C-81CDB7383A0A} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {7D264AAA-6A33-4C26-BBF6-E2793D0725E8} - System32\Tasks\{7EFAFB80-CCC6-4877-A74B-A88AA1B49D11} => "C:\Program Files\Internet Explorer\iexplore.exe" hxxp://ui.skype.com/ui/0/6.20.0.104/de/abandoninstall?page=tsProgressBar
Task: {817196E8-49EA-44B0-9801-06263B2B7759} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {83B0D73A-F964-44E7-8F91-623ED70F52B5} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {8B0BA113-9347-4E90-ABA6-4E0044A54B3C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {982191EA-C967-4C55-89E1-98A29DCF2D7A} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A1A1065C-53BB-44A2-AB31-FF1A14B21F33} - System32\Tasks\GarminUpdaterTask => C:\Program Files (x86)\Garmin\Express SelfUpdater\ExpressSelfUpdater.exe [40880 2021-03-30] (Garmin International, Inc. -> )
Task: {A22B84F6-6C73-4A07-B406-F3E8401D1215} - System32\Tasks\Microsoft\Windows\SideShow\SystemDataProviders => {7CCA6768-8373-4D28-8876-83E8B4E3A969}
Task: {A571E058-5154-4DEF-A1FD-35E525B5A7D0} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {A698037E-D4C5-48F7-9873-E12612DF4122} - \Microsoft\Windows\UNP\RunCampaignManager -> No File <==== ATTENTION
Task: {B0CBAB43-44FC-469B-A4CE-87426761FDCE} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371}
Task: {B94B5459-13C5-4CFC-AEFB-0D44C00DDBBA} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\WINDOWS\explorer.exe /NOUACCHECK
Task: {D73272D8-6B30-42B4-9F86-9D193D236005} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {DA7D7AEF-5F67-4FE5-A4B2-A48329BB6822} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {DC1F9E36-2BB2-4476-9905-DC43F652CE24} - System32\Tasks\Microsoft\Windows\MobilePC\HotStart => {06DA0625-9701-43DA-BFD7-FBEEA2180A1E}
Task: {DFB52FB2-5D05-488A-A154-428C6E6F1FC4} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E1EEAC18-87BA-4EB3-AC0B-CBB04713BF4D} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {E44C1574-A4D3-44BD-B903-47238C91A761} - \Microsoft\Windows\Setup\GWXTriggers\Time-Weekend -> No File <==== ATTENTION
Task: {E61B52C4-BD2A-4CEF-99C4-F3F3234E3778} - System32\Tasks\SamsungMagician => C:\Program Files (x86)\Samsung\Samsung Magician\SamsungMagician.exe [1146000 2019-03-14] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)
Task: {FCCFE89B-E986-4F5E-872C-78311469263D} - System32\Tasks\Microsoft\Windows\SideShow\GadgetManager => {FF87090D-4A9A-4F47-879B-29A80C355D61}

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{5480B2BA-F1B7-4A2B-8A15-1DF39A453731}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{60341516-228f-4571-b28b-6a54ea39e1de}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{6f5fd123-17cc-41ab-880d-ba370803e490}: [DhcpNameServer] 172.20.10.1
Tcpip\..\Interfaces\{819399cc-6cbd-46fa-85c8-6453fe863580}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{da847a6d-8b87-488d-8d74-945bab7d8180}: [DhcpNameServer] 192.168.8.1
Tcpip\..\Interfaces\{eaaf18ef-cd74-4176-90b9-86a9fc005615}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ef76afab-0760-4a1b-b70f-36c9844b65b6}: [DhcpNameServer] 192.168.178.1

Edge: 
=======
Edge Extension: (No Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [not found]
Edge Extension: (No Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [not found]
Edge Extension: (No Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [not found]
Edge Extension: (No Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [not found]

FireFox:
========
FF HKLM-x32\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => not found
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation ->  Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.10 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.11 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.12 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=3.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2021-01-04] (VideoLAN -> VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2021-04-27] (Adobe Inc. -> Adobe Systems Inc.)

Chrome: 
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default [2021-05-13]
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxp://www.heise.de/newsticker/"
CHR Extension: (Dictanote) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\aomjekmpappghadlogpigifkghlmebjk [2019-04-22]
CHR Extension: (Google Drive) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2020-11-15]
CHR Extension: (YouTube) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-25]
CHR Extension: (Firebug Lite for Google Chrome™) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmagokdooijbeehmkpknfglimnifench [2015-11-20]
CHR Extension: (Google-Suche) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-04-06]
CHR Extension: (KeePassHttp-Connector) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\dafgdjggglmmknipkhngniifhplpcldb [2019-04-22]
CHR Extension: (Logitech Smooth Scrolling) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\dkpejdfnpdkhifgbancbammdijojoffk [2016-03-26]
CHR Extension: (Adobe Acrobat) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2021-04-24]
CHR Extension: (AdBlock*– der beste Ad-Blocker) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-05-13]
CHR Extension: (Keepa - Amazon Price Tracker) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\neebplgakaahbhdphmkckjjcegoiijjo [2021-05-13]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-04-24]
CHR Extension: (Google Mail) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2020-11-15]
CHR Extension: (Chrome Media Router) - C:\Users\Daniela\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-05-13]
CHR HKU\S-1-5-21-565462843-2377332638-636861087-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [ihcjicgdanjaechkgeegckofjjedodee]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-04-27] (Apple Inc. -> Apple Inc.)
S3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [270336 2012-07-13] (Brother Industries, Ltd.) [File not signed]
R2 Cloud Station Backup VSS Service x64; C:\Program Files (x86)\Synology\CloudStationBackup\bin\vss-service-x64.exe [287256 2018-03-01] (Synology Inc. -> ) [File not signed]
R2 Cloud Station Drive VSS Service x64; C:\Program Files (x86)\Synology\CloudStation\bin\vss-service-x64.exe [352280 2019-03-06] (Synology Inc. -> ) [File not signed]
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2012-07-14] (Macrovision Europe Ltd.) [File not signed]
S3 GalaxyClientService; C:\Program Files (x86)\GOG Galaxy\GalaxyClientService.exe [1242696 2020-02-25] (GOG Sp. z o.o. -> GOG.com)
S3 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6821960 2020-02-25] (GOG Sp. z o.o. -> GOG.com)
R2 GPAService; C:\Program Files (x86)\Gira\Gira Project Assistant\Gira Project Assistant Service\Service.WindowsService.exe [9216 2020-04-29] (Gira Giersiepen GmbH & Co. KG) [File not signed]
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [190784 2019-10-31] (Huawei Technologies Co., Ltd. -> ) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [7391408 2021-05-13] (Malwarebytes Inc -> Malwarebytes)
R2 Mobile Broadband HL Service; C:\Program Files (x86)\MobileBrServ\mbbservice.exe [245688 2019-11-15] (Huawei Technologies Co., Ltd. -> )
S3 Rockstar Service; C:\Program Files\Rockstar Games\Launcher\RockstarService.exe [1705088 2020-05-12] (Rockstar Games, Inc. -> Rockstar Games)
R2 SamsungRapidSvc; C:\WINDOWS\System32\RAPID\SamsungRapidSvc.exe [29280 2018-06-20] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5393288 2021-05-12] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 SynoDrService; C:\Program Files (x86)\Synology Data Replicator  3\SynoDrServicex64.exe [384072 2013-10-09] (Synology Inc. -> )
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [12849960 2021-03-15] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
R2 UsbClientService; C:\Program Files (x86)\Synology\Assistant\UsbClientService.exe [248856 2017-08-08] (Synology Inc. -> ) [File not signed]
S3 VSStandardCollectorService150; C:\Program Files (x86)\Microsoft Visual Studio\Shared\Common\DiagnosticsHub.Collection.Service\StandardCollector.Service.exe [157480 2018-08-02] (Microsoft Corporation -> Microsoft Corporation)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.10-0\NisSrv.exe [2599312 2021-05-10] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2104.10-0\MsMpEng.exe [128376 2021-05-10] (Microsoft Windows Publisher -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aftap0901; C:\WINDOWS\System32\drivers\aftap0901.sys [48624 2018-01-23] (AnchorFree Inc -> The OpenVPN Project)
S3 avmaudio; C:\WINDOWS\System32\DRIVERS\avmaudio.sys [116096 2012-07-14] (AVM Berlin) [File not signed]
S3 avmaura; C:\WINDOWS\System32\drivers\avmaura.sys [116480 2015-08-05] (AVM Berlin) [File not signed]
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [File not signed]
R3 busenum; C:\WINDOWS\System32\drivers\busenum.sys [57824 2012-08-03] (Synology Inc. -> Windows (R) Win 7 DDK provider)
R1 ESProtectionDriver; C:\WINDOWS\system32\drivers\mbae64.sys [199128 2021-05-13] (Malwarebytes Inc -> Malwarebytes)
S3 fwlanusbn; C:\WINDOWS\system32\DRIVERS\fwlanusbn.sys [714368 2010-10-22] (AVM GmbH) [File not signed]
S3 GenericMount; C:\WINDOWS\System32\drivers\GenericMount.sys [66608 2010-02-12] (Symantec Corporation -> Symantec Corporation)
R2 MBAMChameleon; C:\WINDOWS\System32\Drivers\MbamChameleon.sys [220752 2021-05-13] (Malwarebytes Inc -> Malwarebytes)
S0 MbamElam; C:\WINDOWS\System32\DRIVERS\MbamElam.sys [19912 2021-05-13] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMFarflt; C:\WINDOWS\System32\DRIVERS\farflt.sys [198888 2021-05-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMProtection; C:\WINDOWS\system32\DRIVERS\mbam.sys [77496 2021-05-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\WINDOWS\System32\Drivers\mbamswissarmy.sys [248992 2021-05-13] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMWebProtection; C:\WINDOWS\system32\DRIVERS\mwac.sys [157944 2021-05-13] (Malwarebytes Inc -> Malwarebytes)
R1 npcap; C:\WINDOWS\system32\DRIVERS\npcap.sys [74616 2020-09-25] (Insecure.Com LLC -> Insecure.Com LLC.)
R0 SamsungRapidDiskFltr; C:\WINDOWS\System32\DRIVERS\SamsungRapidDiskFltr.sys [288864 2018-06-28] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R0 SamsungRapidFSFltr; C:\WINDOWS\System32\DRIVERS\SamsungRapidFSFltr.sys [119400 2018-06-28] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R2 speedfan; C:\Windows\SysWOW64\speedfan.sys [28664 2012-12-29] (SOKNO S.R.L. -> Almico Software)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 vpnva; C:\WINDOWS\System32\DRIVERS\vpnva64-6.sys [52080 2013-12-13] (Cisco Systems, Inc. -> Cisco Systems, Inc.)
U5 vwifimp; C:\Windows\System32\Drivers\vwifimp.sys [50688 2019-12-07] (Microsoft Windows -> Microsoft Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [49560 2021-05-10] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [421112 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [73960 2021-05-10] (Microsoft Windows -> Microsoft Corporation)
U3 idsvc; no ImagePath
U4 npcap_wifi; no ImagePath
S1 UimBus; \SystemRoot\System32\drivers\uimbus.sys [X]
S1 Uim_DEVIM; \SystemRoot\System32\drivers\uimdevim.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) (Whitelisted) =========

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-05-13 17:57 - 2021-05-13 17:57 - 000070863 _____ C:\Users\Alexander\Downloads\Shortcut.txt
2021-05-13 17:53 - 2021-05-13 17:53 - 002299392 _____ (Farbar) C:\Users\Alexander\Downloads\FRST64 (1).exe
2021-05-13 14:05 - 2021-05-13 14:05 - 000077496 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2021-05-13 14:04 - 2021-05-13 14:04 - 000198888 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\farflt.sys
2021-05-13 14:04 - 2021-05-13 14:04 - 000157944 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mwac.sys
2021-05-13 13:22 - 2021-05-13 13:22 - 000000000 ____D C:\Users\Alexander\AppData\Local\mbam
2021-05-13 13:21 - 2021-05-13 13:21 - 000248992 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamswissarmy.sys
2021-05-13 13:21 - 2021-05-13 13:21 - 000220752 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamChameleon.sys
2021-05-13 13:21 - 2021-05-13 13:21 - 000199128 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys
2021-05-13 13:21 - 2021-05-13 13:21 - 000019912 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MbamElam.sys
2021-05-13 13:21 - 2021-05-13 13:21 - 000002037 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk
2021-05-13 13:21 - 2021-05-13 13:21 - 000002025 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2021-05-13 13:21 - 2021-05-13 13:21 - 000002025 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2021-05-13 13:21 - 2021-05-13 13:21 - 000000000 ____D C:\ProgramData\Malwarebytes
2021-05-13 13:21 - 2021-05-13 13:21 - 000000000 ____D C:\Program Files\Malwarebytes
2021-05-13 13:20 - 2021-05-13 13:20 - 002078632 _____ (Malwarebytes) C:\Users\Alexander\Downloads\mbsetup.exe
2021-05-13 13:18 - 2021-05-13 13:18 - 000000000 ____D C:\WINDOWS\system32\Tasks\Avira
2021-05-13 13:10 - 2021-05-13 13:10 - 000000000 ____D C:\Users\Alexander\AppData\Local\AviraSpeedup
2021-05-13 13:10 - 2021-05-13 13:10 - 000000000 ____D C:\Users\Alexander\AppData\Local\Avira
2021-05-13 13:07 - 2021-05-13 13:07 - 006554200 _____ (Avira Operations GmbH & Co. KG) C:\Users\Alexander\Downloads\avira_de_asu80_1191873915-1620901252__poptws.exe
2021-05-13 13:01 - 2021-05-13 13:01 - 000007647 _____ C:\Users\Daniela\AppData\Local\Resmon.ResmonCfg
2021-05-13 12:57 - 2021-05-13 12:57 - 000000000 ____D C:\Users\Daniela_2\AppData\Local\UnrealEngineLauncher
2021-05-13 12:57 - 2021-05-13 12:57 - 000000000 ____D C:\Users\Daniela_2\AppData\Local\UnrealEngine
2021-05-13 12:57 - 2021-05-13 12:57 - 000000000 ____D C:\Users\Daniela_2\AppData\Local\NVIDIA Corporation
2021-05-13 12:57 - 2021-05-13 12:57 - 000000000 ____D C:\Users\Daniela_2\AppData\Local\EpicGamesLauncher
2021-05-13 12:51 - 2021-05-13 12:51 - 000000000 ____D C:\Users\Daniela\AppData\Roaming\sp6_log
2021-05-13 12:20 - 2021-05-13 12:20 - 031412280 _____ (Piriform Software Ltd) C:\Users\Alexander\Downloads\ccsetup579.exe
2021-05-13 09:35 - 2021-05-13 09:35 - 000048980 _____ C:\Users\Alexander\Downloads\rkma.Nodes_.WindowControllerNode-1.0.29.zip
2021-05-13 08:59 - 2021-05-13 09:00 - 022337937 _____ C:\Users\Alexander\Downloads\Pegasus_E-Bikes_Betriebsanleitung_BOSCH Intuvia _MY2021_DE.pdf
2021-05-13 08:50 - 2021-05-13 08:50 - 004316080 _____ (Dominik Reichl ) C:\Users\Alexander\Downloads\KeePass-2.48.1-Setup.exe
2021-05-12 20:55 - 2021-05-12 20:56 - 022927958 _____ C:\Users\Alexander\Downloads\XiaomiADBFastbootTools (4).jar
2021-05-12 11:47 - 2021-05-12 11:47 - 001687040 _____ C:\WINDOWS\system32\libcrypto.dll
2021-05-12 11:47 - 2021-05-12 11:47 - 000157184 _____ C:\WINDOWS\system32\uwfcsp.dll
2021-05-12 11:47 - 2021-05-12 11:47 - 000153600 _____ C:\WINDOWS\system32\uwfcfgmgmt.dll
2021-05-12 11:46 - 2021-05-12 11:47 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.tlb
2021-05-12 11:46 - 2021-05-12 11:46 - 002755584 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.tlb
2021-05-12 11:46 - 2021-05-12 11:46 - 001823816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-05-12 11:46 - 2021-05-12 11:46 - 001393504 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2021-05-12 11:46 - 2021-05-12 11:46 - 001314120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2021-05-12 11:46 - 2021-05-12 11:46 - 001163776 _____ C:\WINDOWS\system32\MBR2GPT.EXE
2021-05-12 11:46 - 2021-05-12 11:46 - 000700928 _____ C:\WINDOWS\system32\FsNVSDeviceSource.dll
2021-05-12 11:46 - 2021-05-12 11:46 - 000165888 _____ C:\WINDOWS\system32\DataStoreCacheDumpTool.exe
2021-05-12 11:46 - 2021-05-12 11:46 - 000060928 _____ C:\WINDOWS\system32\runexehelper.exe
2021-05-12 11:46 - 2021-05-12 11:46 - 000013312 _____ C:\WINDOWS\system32\agentactivationruntimestarter.exe
2021-05-12 11:46 - 2021-05-12 11:46 - 000011351 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-05-12 07:34 - 2021-05-12 07:34 - 000001474 _____ C:\Users\Alexander\Downloads\URLLink (20).acsm
2021-05-10 20:05 - 2021-05-10 20:05 - 000030113 _____ C:\Users\Alexander\Downloads\Impfquotenmonitoring (4).xlsx
2021-05-06 14:40 - 2021-05-06 14:40 - 008908282 _____ C:\Users\Alexander\Downloads\Anleitung Herunterladen (5).pdf
2021-05-06 14:39 - 2021-05-06 14:39 - 005733678 _____ C:\Users\Alexander\Downloads\Herunterladen (PDF - 5,5 MB) (2).pdf
2021-05-06 14:17 - 2021-05-06 14:17 - 008908282 _____ C:\Users\Alexander\Downloads\Anleitung Herunterladen (4).pdf
2021-05-06 13:39 - 2021-05-06 13:39 - 004611099 _____ C:\Users\Alexander\Downloads\indego-400-100047627-original-pdf-344873-de-de.pdf
2021-05-06 13:38 - 2021-05-06 13:38 - 005733678 _____ C:\Users\Alexander\Downloads\Herunterladen (PDF - 5,5 MB) (1).pdf
2021-05-06 13:36 - 2021-05-06 13:36 - 008908282 _____ C:\Users\Alexander\Downloads\Anleitung Herunterladen (3).pdf
2021-05-06 13:36 - 2021-05-06 13:36 - 008908282 _____ C:\Users\Alexander\Downloads\Anleitung Herunterladen (2).pdf
2021-05-06 13:35 - 2021-05-06 13:35 - 008908282 _____ C:\Users\Alexander\Downloads\Anleitung Herunterladen.pdf
2021-05-06 13:35 - 2021-05-06 13:35 - 008372691 _____ C:\Users\Alexander\Downloads\Anleitung Herunterladen (1).pdf
2021-05-06 13:35 - 2021-05-06 13:35 - 005733678 _____ C:\Users\Alexander\Downloads\Herunterladen (PDF - 5,5 MB).pdf
2021-05-06 13:35 - 2021-05-06 13:35 - 004611099 _____ C:\Users\Alexander\Downloads\Herunterladen (PDF - 4,4 MB).pdf
2021-05-01 18:21 - 2021-05-01 18:21 - 014562150 _____ C:\WINDOWS\SysWOW64\a6d3737a-f1a4-40bd-ba3b-cab2eec8ba75.gproj
2021-05-01 18:07 - 2021-05-01 18:07 - 014562164 _____ C:\WINDOWS\SysWOW64\8153567d-4c64-4aca-9e59-c4eadc920168.gproj
2021-05-01 18:06 - 2021-05-01 18:06 - 014562198 _____ C:\WINDOWS\SysWOW64\ba0cf4c6-8abb-4ef3-836d-0027a2be1a15.gproj
2021-05-01 17:54 - 2021-05-01 17:54 - 014559759 _____ C:\WINDOWS\SysWOW64\716109be-b030-4168-926d-8f358e3462ce.gproj
2021-05-01 17:42 - 2021-05-01 17:42 - 014560960 _____ C:\WINDOWS\SysWOW64\206a6125-ca37-4ff1-bd34-26fa25967e3a.gproj
2021-05-01 17:30 - 2021-05-01 17:30 - 014553120 _____ C:\WINDOWS\SysWOW64\de74be2b-f678-4b01-804e-40c91755dcda.gproj
2021-05-01 17:22 - 2021-05-01 17:22 - 014547269 _____ C:\WINDOWS\SysWOW64\8f189782-fe33-4ea4-a0e4-9b1c9541efb8.gproj
2021-05-01 17:17 - 2021-05-01 17:17 - 014547335 _____ C:\WINDOWS\SysWOW64\8b5bc60a-7c14-4d40-aaf4-5a8ca818ff66.gproj
2021-05-01 17:15 - 2021-05-01 17:15 - 014547369 _____ C:\WINDOWS\SysWOW64\891c0700-7ff2-4bfb-9d77-14a9740a5e3f.gproj
2021-05-01 17:08 - 2021-05-01 17:08 - 014547263 _____ C:\WINDOWS\SysWOW64\6a86d4bc-d366-4ce9-b851-4e16ae88ed96.gproj
2021-05-01 17:05 - 2021-05-01 17:05 - 014545033 _____ C:\WINDOWS\SysWOW64\300e5685-c2e8-4534-a90c-0d99c7ee4f62.gproj
2021-05-01 15:49 - 2021-05-01 15:49 - 000141876 _____ C:\Users\Alexander\Downloads\torsten_kaeker_gmail_com.Logic_.Nodes_.BinaryWatcher-1.0.46-xleoba.zip
2021-05-01 15:49 - 2021-05-01 15:49 - 000000000 ____D C:\Users\Alexander\Downloads\torsten_kaeker_gmail_com.Logic_.Nodes_.BinaryWatcher-1.0.46-xleoba
2021-05-01 15:20 - 2021-05-01 15:20 - 014714494 _____ C:\WINDOWS\SysWOW64\923d93eb-517b-40e4-b539-e5242aaf63d0.gproj
2021-05-01 15:20 - 2021-05-01 15:20 - 014389004 _____ C:\WINDOWS\SysWOW64\f63315e3-5003-4437-a614-06f6f43086f7.gproj
2021-05-01 12:38 - 2021-05-01 12:38 - 000614448 _____ C:\Users\Alexander\Downloads\tasmota-DE.bin
2021-05-01 12:37 - 2021-05-01 12:37 - 000438957 _____ C:\Users\Alexander\Downloads\tasmota-DE.bin.gz
2021-05-01 11:22 - 2021-05-01 11:22 - 014389503 _____ C:\WINDOWS\SysWOW64\0f085712-de48-4617-ae9a-5c7980ad6bf5.gproj
2021-05-01 11:13 - 2021-05-01 11:13 - 019694741 _____ C:\Users\Alexander\Downloads\2021_05_01_Zimmerhofer.knxproj
2021-04-28 20:50 - 2021-04-28 20:50 - 000394029 ____C C:\Users\Alexander\Desktop\zeitaufgaben_volle_stunde_1.pdf
2021-04-28 20:38 - 2021-04-28 20:38 - 001387849 _____ C:\Users\Alexander\Desktop\Zirkus_Abschreibkartei_Druck.pdf
2021-04-28 20:37 - 2021-04-28 20:37 - 001238257 _____ C:\Users\Alexander\Desktop\Dominos_Uhrzeiten.pdf
2021-04-28 20:35 - 2021-04-28 20:35 - 000935475 _____ C:\Users\Alexander\Desktop\AB_Tag_24 Stunden.pdf
2021-04-25 14:54 - 2021-04-25 15:03 - 004228506 ____C C:\Users\Alexander\Desktop\IMG_6715.mp4
2021-04-24 19:41 - 2021-04-24 19:41 - 014362110 _____ C:\WINDOWS\SysWOW64\c853b3f9-927f-4f9d-bfe5-bbb2449a0134.gproj
2021-04-24 08:51 - 2021-04-24 08:51 - 000000000 ___DC C:\Users\Alexander\Documents\PDFsam Enhanced Files
2021-04-24 08:51 - 2021-04-24 08:51 - 000000000 ____D C:\Users\Daniela\AppData\Roaming\PDFsam Enhanced 7
2021-04-24 08:51 - 2021-04-24 08:51 - 000000000 ____D C:\Users\Alexander\AppData\Roaming\PDFsam Enhanced 7
2021-04-24 08:51 - 2021-04-24 08:51 - 000000000 ____D C:\spellings
2021-04-24 08:49 - 2021-04-24 08:49 - 000000000 ____D C:\ProgramData\PDFsam Basic
2021-04-24 08:48 - 2021-04-24 08:49 - 020694304 _____ (Andrea Vacondio) C:\Users\Alexander\Downloads\PDFsam_Basic_4_Installer (1).exe
2021-04-23 20:08 - 2021-04-23 20:08 - 000339381 _____ C:\Users\Alexander\Downloads\7002011317.pdf
2021-04-23 20:06 - 2021-04-23 20:06 - 000087229 _____ C:\Users\Alexander\Downloads\7002011311.pdf
2021-04-23 14:12 - 2021-04-23 14:12 - 000096265 _____ C:\Users\Alexander\Downloads\Label-9699617009.pdf
2021-04-23 13:11 - 2021-04-23 13:11 - 000252893 ____C C:\Users\Alexander\Documents\9699617009.pdf
2021-04-20 14:13 - 2021-04-20 14:13 - 000182225 _____ C:\Users\Daniela_2\Downloads\sormas Notgruppe 4.xlsx
2021-04-20 09:23 - 2021-04-20 09:23 - 000871637 _____ C:\Users\Alexander\Downloads\Impfdokumentation (3).pdf
2021-04-19 22:51 - 2021-04-19 22:51 - 000044017 ____C C:\Users\Alexander\Desktop\Impfzentrum Bonn.pdf
2021-04-19 12:42 - 2021-04-19 12:42 - 000019628 _____ C:\Users\Alexander\Downloads\germany_vaccinations_timeseries_v2.tsv
2021-04-19 12:41 - 2021-04-19 12:41 - 000018588 _____ C:\Users\Alexander\Downloads\germany_deliveries_timeseries_v2.tsv
2021-04-19 10:21 - 2021-04-19 10:21 - 000231248 _____ C:\WINDOWS\system32\containerdevicemanagement.dll
2021-04-19 10:03 - 2021-04-19 10:03 - 000000000 ____D C:\WINDOWS\PCHEALTH
2021-04-19 07:56 - 2021-04-19 07:56 - 000842910 _____ C:\Users\Alexander\Downloads\Impfdokumentation (2)_Ute.pdf
2021-04-19 07:38 - 2021-04-19 07:38 - 000870299 _____ C:\Users\Alexander\Downloads\Impfdokumentation (2).pdf
2021-04-19 07:37 - 2021-04-19 07:37 - 000835570 _____ C:\Users\Alexander\Downloads\Impfdokumentation (1)_Carlo.pdf
2021-04-19 07:36 - 2021-04-19 07:36 - 000862959 _____ C:\Users\Alexander\Downloads\Impfdokumentation (1).pdf
2021-04-18 16:36 - 2021-04-18 16:36 - 007505263 _____ C:\Users\Alexander\Downloads\20693710.pdf
2021-04-18 16:27 - 2021-04-18 16:27 - 014362447 _____ C:\WINDOWS\SysWOW64\e24cf558-316e-4022-9189-974973802dac.gproj
2021-04-18 15:33 - 2021-04-18 15:33 - 000039424 ____C C:\Users\Daniela_2\Desktop\Notgruppe4.xls
2021-04-18 09:54 - 2021-04-18 09:54 - 001871048 _____ C:\Users\Alexander\Desktop\MDT_THB_SCN_02_Bewegungsmelder_Automatik_Schalter_55_63.pdf
2021-04-18 09:53 - 2021-04-18 09:53 - 000416540 _____ C:\Users\Alexander\Desktop\MDT_AOI_Motion_Detector_Automatic_Switch_55_02.pdf
2021-04-17 18:47 - 2021-04-19 20:29 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-04-17 18:47 - 2021-04-17 18:47 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-04-17 18:37 - 2021-04-17 18:37 - 103052437 _____ C:\Users\Alexander\Downloads\tks-ip-gateway_05.04.00.08 (1).zip
2021-04-17 15:46 - 2021-04-17 15:46 - 014362389 _____ C:\WINDOWS\SysWOW64\0d9754c3-2270-4de6-8638-187a4d6ecda7.gproj
2021-04-17 14:53 - 2021-04-17 14:53 - 000001603 _____ C:\Users\Daniela_2\Downloads\URLLink (24).acsm
2021-04-17 14:48 - 2021-04-17 14:48 - 000001620 _____ C:\Users\Daniela_2\Downloads\URLLink (23).acsm
2021-04-17 11:45 - 2021-04-17 11:45 - 000017432 _____ C:\Users\Alexander\Downloads\Download.CSV
2021-04-17 11:10 - 2021-04-17 11:10 - 000001561 _____ C:\Users\Daniela_2\Downloads\URLLink (22).acsm
2021-04-17 10:03 - 2021-04-17 10:03 - 000144775 ____C C:\Users\Alexander\Desktop\formular_kontaktpersonen_pflegende_angehoerige_und_schwangere_beschreibbar.pdf

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2021-05-13 18:06 - 2021-01-04 12:14 - 000033389 _____ C:\Users\Alexander\Downloads\FRST.txt
2021-05-13 18:06 - 2015-04-05 09:49 - 000000000 ___DC C:\Users\Alexander\AppData\Local\CrashDumps
2021-05-13 18:05 - 2021-01-04 12:14 - 000000000 ____D C:\FRST
2021-05-13 18:05 - 2012-08-13 19:59 - 000000000 ___DC C:\Users\Alexander\Documents\Outlook-Dateien
2021-05-13 17:58 - 2021-01-04 12:17 - 000077055 _____ C:\Users\Alexander\Downloads\Addition.txt
2021-05-13 17:47 - 2020-01-04 19:04 - 000000000 ____D C:\ProgramData\Mozilla
2021-05-13 17:47 - 2016-12-27 15:40 - 000000000 ___DC C:\Users\Alexander\AppData\LocalLow\Mozilla
2021-05-13 17:45 - 2020-11-12 23:26 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-05-13 17:45 - 2019-01-27 12:27 - 000000000 ___DC C:\Users\Alexander\AppData\Roaming\KeePass
2021-05-13 15:42 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-05-13 15:33 - 2013-12-06 17:22 - 000000000 ___RD C:\Users\Alexander\Gemeinsame Cloudstation
2021-05-13 15:33 - 2013-04-11 21:58 - 000000000 ___RD C:\Users\Alexander\CloudStation
2021-05-13 15:33 - 2013-04-11 21:57 - 000000000 ___DC C:\Users\Alexander\AppData\Local\CloudStation
2021-05-13 15:32 - 2016-06-17 21:17 - 000000000 __SHD C:\Users\Alexander\IntelGraphicsProfiles
2021-05-13 14:11 - 2020-11-12 23:37 - 001916338 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-05-13 14:11 - 2019-12-07 16:51 - 000820626 _____ C:\WINDOWS\system32\perfh007.dat
2021-05-13 14:11 - 2019-12-07 16:51 - 000177158 _____ C:\WINDOWS\system32\perfc007.dat
2021-05-13 14:11 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-05-13 14:07 - 2019-12-07 11:03 - 000032768 _____ C:\WINDOWS\system32\config\ELAM
2021-05-13 14:04 - 2020-11-12 23:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-05-13 14:04 - 2020-11-12 23:26 - 000008192 ___SH C:\DumpStack.log.tmp
2021-05-13 14:04 - 2019-12-07 11:03 - 001048576 _____ C:\WINDOWS\system32\config\BBI
2021-05-13 14:04 - 2013-01-06 14:27 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-05-13 14:01 - 2014-11-24 20:24 - 000000000 ____D C:\ProgramData\Package Cache
2021-05-13 13:51 - 2020-11-12 23:26 - 002806440 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-05-13 13:21 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-05-13 13:02 - 2019-02-17 17:49 - 000000000 ____D C:\Program Files (x86)\iMobie
2021-05-13 13:01 - 2013-12-06 17:44 - 000000000 ___DC C:\Users\Daniela_2\AppData\Local\CloudStation
2021-05-13 12:58 - 2019-06-09 08:21 - 000000000 ____D C:\Program Files (x86)\SpeedFan
2021-05-13 12:58 - 2017-01-10 22:18 - 000000000 ____D C:\Program Files (x86)\ClockworkMod
2021-05-13 12:57 - 2020-03-30 19:23 - 000000000 ____D C:\Users\Daniela_2\AppData\Local\WebEx
2021-05-13 12:57 - 2018-11-25 20:12 - 000000000 ___DC C:\Users\Daniela_2\AppData\Local\D3DSCache
2021-05-13 12:52 - 2012-08-17 20:07 - 000000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2021-05-13 12:51 - 2016-09-22 03:30 - 000000000 ____D C:\Program Files\Common Files\logishrd
2021-05-13 12:51 - 2016-03-26 13:57 - 000000000 ____D C:\ProgramData\Logishrd
2021-05-13 12:46 - 2019-08-07 21:42 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gira
2021-05-13 12:45 - 2020-03-25 21:52 - 000000000 ____D C:\Program Files (x86)\AntiTwin
2021-05-13 12:44 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-05-13 12:44 - 2018-01-18 20:37 - 000000000 ___DC C:\Users\Alexander\AppData\Local\Packages
2021-05-13 12:23 - 2019-06-09 09:57 - 000000000 ____D C:\temp
2021-05-13 12:16 - 2016-02-21 17:48 - 000000000 ____D C:\ProgramData\Apple Computer
2021-05-13 12:14 - 2016-06-17 21:19 - 000000000 ___RD C:\Users\Alexander\OneDrive
2021-05-13 08:52 - 2019-01-27 12:26 - 000001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\KeePass 2.lnk
2021-05-13 08:52 - 2019-01-27 12:26 - 000000000 ____D C:\Program Files (x86)\KeePass Password Safe 2
2021-05-13 08:44 - 2016-06-18 06:44 - 000002140 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2021-05-13 08:33 - 2012-08-07 10:00 - 000000000 ___DC C:\Users\Daniela_2\Documents\Outlook-Dateien
2021-05-13 08:32 - 2013-12-06 17:46 - 000000000 ___RD C:\Users\Daniela_2\Gemeinsame CloudStation
2021-05-13 08:32 - 2013-12-06 17:45 - 000000000 ___RD C:\Users\Daniela_2\CloudStation
2021-05-13 08:31 - 2016-06-18 06:55 - 000000000 __SHD C:\Users\Daniela_2\IntelGraphicsProfiles
2021-05-12 13:11 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-05-12 12:15 - 2020-08-14 17:10 - 000000000 ___DC C:\Users\Daniela\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Gira
2021-05-12 12:15 - 2019-08-07 21:42 - 000000000 ____D C:\Program Files (x86)\Gira
2021-05-12 12:11 - 2021-04-02 11:28 - 000000000 ____D C:\Program Files\GrafanaLabs
2021-05-12 12:07 - 2014-07-12 17:09 - 000000000 ___DC C:\Users\Alexander\AppData\Local\Skype
2021-05-12 12:07 - 2012-07-14 10:37 - 000000000 ____D C:\ProgramData\Skype
2021-05-12 11:55 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2021-05-12 11:49 - 2019-12-07 16:54 - 000023552 _____ (Microsoft Corporation) C:\WINDOWS\system32\OEMDefaultAssociations.dll
2021-05-12 11:49 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-05-12 11:49 - 2019-12-07 16:52 - 000000000 ____D C:\WINDOWS\system32\OpenSSH
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ___RD C:\WINDOWS\PrintDialog
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\WinMetadata
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\setup
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\oobe
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\lt-LT
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\inetsrv
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinMetadata
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\SystemResetPlatform
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\setup
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\oobe
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lt-LT
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\inetsrv
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\Dism
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\Provisioning
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\PolicyDefinitions
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\DiagTrack
2021-05-12 11:49 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-05-12 11:49 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-05-12 11:36 - 2020-11-11 20:48 - 000000000 ___HD C:\$WinREAgent
2021-05-12 11:34 - 2013-07-21 20:14 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-05-12 11:24 - 2012-07-14 10:20 - 132732536 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-05-12 07:33 - 2012-07-15 21:11 - 000002297 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2021-05-11 07:32 - 2020-11-12 23:38 - 000003358 _____ C:\WINDOWS\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-565462843-2377332638-636861087-1002
2021-05-11 07:32 - 2020-11-12 23:28 - 000002427 ____C C:\Users\Daniela_2\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2021-05-11 07:32 - 2016-06-18 06:56 - 000000000 ___RD C:\Users\Daniela_2\OneDrive
2021-05-10 20:24 - 2019-04-20 21:56 - 000000000 ____D C:\Users\Daniela_2\AppData\Roaming\KeePass
2021-05-10 14:03 - 2018-05-30 22:43 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd
2021-05-09 22:57 - 2020-06-25 15:37 - 000002440 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-05-09 22:57 - 2020-06-25 15:37 - 000002278 _____ C:\Users\Public\Desktop\Microsoft Edge.lnk
2021-05-09 22:57 - 2020-06-25 15:37 - 000002278 _____ C:\ProgramData\Desktop\Microsoft Edge.lnk
2021-05-09 22:55 - 2020-03-30 19:23 - 000000000 ___DC C:\Users\Daniela_2\AppData\LocalLow\WebEx
2021-05-02 20:28 - 2020-11-12 23:28 - 000000000 ____D C:\Users\Daniela_2
2021-05-02 09:33 - 2013-04-11 22:17 - 000000000 ___DC C:\Users\Alexander\AppData\Roaming\vlc
2021-05-01 22:28 - 2020-11-12 23:28 - 000000000 ____D C:\Users\Alexander
2021-05-01 12:52 - 2021-03-04 20:41 - 000000000 ____D C:\Program Files\PDFsam Basic
2021-04-30 10:22 - 2020-10-01 15:55 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2021-04-30 09:13 - 2018-01-18 20:37 - 000000000 ___DC C:\Users\Daniela_2\AppData\Local\Packages
2021-04-28 20:53 - 2017-05-31 22:04 - 000000348 _____ C:\WINDOWS\BRRBCOM.INI
2021-04-26 07:44 - 2020-11-28 10:08 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d6b93b6516950a
2021-04-26 07:44 - 2020-11-12 23:38 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-04-24 09:02 - 2012-07-15 21:14 - 000000000 ___DC C:\Users\Alexander\AppData\Roaming\Adobe
2021-04-23 19:36 - 2015-09-01 05:57 - 000000000 ___RD C:\Users\Daniela_2\Dropbox
2021-04-22 14:54 - 2020-11-12 23:38 - 000003630 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineUA
2021-04-22 14:54 - 2020-11-12 23:38 - 000003506 _____ C:\WINDOWS\system32\Tasks\GoogleUpdateTaskMachineCore
2021-04-19 20:29 - 2020-01-04 19:04 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-04-19 20:28 - 2019-12-07 11:14 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs
2021-04-19 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\lv-LV
2021-04-19 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\et-EE
2021-04-19 20:28 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\es-MX
2021-04-19 10:21 - 2020-11-12 23:27 - 002877440 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PrintConfig.dll
2021-04-19 10:03 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-04-18 15:33 - 2021-02-22 17:21 - 000039424 _____ C:\Users\Daniela_2\Downloads\Notgruppe Wechselunterricht 4.xls
2021-04-17 18:47 - 2020-01-04 19:04 - 000001009 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-04-17 14:53 - 2012-07-31 09:01 - 000000000 ___DC C:\Users\Daniela_2\Documents\My Digital Editions

==================== Files in the root of some directories ========

2021-05-13 13:01 - 2021-05-13 13:01 - 000007647 _____ () C:\Users\Daniela\AppData\Local\Resmon.ResmonCfg
2016-12-11 21:15 - 2016-12-11 21:15 - 000000000 ____C () C:\Users\Daniela\AppData\Local\{E34785DD-D791-45FC-BB3D-4F10309E5D2D}

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

==================== End of FRST.txt ========================
--- --- ---

--- --- ---

--- --- ---
Geändert von Sweeny (13.05.2021 um 17:21 Uhr)

 

Themen zu Windows 10 ist plötzlich total langsam
.dll, administrator, adobe, bonjour, browser, canon, desktop, explorer, firefox, google, homepage, iexplore.exe, installation, internet, internet explorer, langsam, mozilla, nvidia, opera, realtek, registry, sekunden, symantec, system, taskmanager, windows


« Verdächtige Weiterleitung | System auf conteban prüfen »


Ähnliche Themen: Windows 10 ist plötzlich total langsam


  1. Windows 10 Plötzlich langsam
    Alles rund um Windows - 24.10.2017 (0)
  2. Notebook mit Windows 8 läuft sehr langsam und ruckelt total
    Plagegeister aller Art und deren Bekämpfung - 08.12.2014 (19)
  3. Windows 8 (64bit) - PC plötzlich langsam
    Plagegeister aller Art und deren Bekämpfung - 17.02.2014 (13)
  4. Windows 7 total langsam
    Plagegeister aller Art und deren Bekämpfung - 20.11.2013 (1)
  5. Laptop plötzlich total langsam..Funde durch adwCleaner
    Plagegeister aller Art und deren Bekämpfung - 27.07.2013 (9)
  6. Laptop mit Win7 läuft plötzlich total langsam
    Log-Analyse und Auswertung - 22.02.2013 (18)
  7. Windows pc hängt und ist total langsam
    Plagegeister aller Art und deren Bekämpfung - 11.12.2012 (2)
  8. Internet ist plötzlich total langsam (KabelBW)
    Plagegeister aller Art und deren Bekämpfung - 22.01.2012 (18)
  9. [doppelt] Sound Total Verzerrt, MBAM 25 Funde, Pc total Langsam
    Mülltonne - 02.01.2012 (0)
  10. Alle Browser plötzlich total langsam
    Plagegeister aller Art und deren Bekämpfung - 07.03.2011 (1)
  11. Laptop mit Windows 7 plötzlich langsam
    Log-Analyse und Auswertung - 25.05.2010 (21)
  12. Rechner plötzlich total langsam
    Log-Analyse und Auswertung - 15.01.2010 (5)
  13. PC plötzlich total langsam (VISTA)
    Log-Analyse und Auswertung - 03.01.2010 (21)
  14. PC ist plötzlich total laaaaaaaaaaangsaam :-(
    Plagegeister aller Art und deren Bekämpfung - 18.11.2009 (1)
  15. Computer plötzlich total langsam!
    Log-Analyse und Auswertung - 07.07.2009 (0)
  16. Windows ist plötzlich langsam
    Log-Analyse und Auswertung - 13.03.2009 (19)
  17. Windows total langsam na Neuinstallation
    Alles rund um Windows - 04.09.2006 (2)
Anleitungen und Tipps

- Für alle Hilfesuchenden! Was beachten?

- Anleitung: MyStartSearch.com entfernen

- Anleitung: WebSearches löschen

- Hilfe: iStartSurf entfernen – so gehts!

- Anleitung: Omiga Plus richtig entfernen

- Browser Viren entfernen


Zum Thema Windows 10 ist plötzlich total langsam - Hallo, seit 2-3 Tagen ist Windows 10 total langsam. Ein Klick auf ein Menüpunkt beim Chrome, Outlook oder bei den Windows-Einstellungen wird total verzögert verarbeitet (1-2 Sekunden). Start klappt so - Windows 10 ist plötzlich total langsam...
Archiv
Du betrachtest: Windows 10 ist plötzlich total langsam auf Trojaner-Board

Search Engine Optimization by vBSEO ©2011, Crawlability, Inc.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131