Hallo, mehr Informationen habe ich leider nicht. Ich sehe das mit dem OpenOffice Updater als eine Ähnlichkeit zu anderen Nutzern die ebenfalls das 1online Teil haben. Irgendwann fiel mir das 1online bei Firefox auf. Dann wurde plötzlich auf Bing gewechselt in der Tastkleistensuche.
Code:
Alles auswählen Aufklappen ATTFilter
Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 08-08-2021
durchgeführt von promacs (Administrator) auf DESKTOP-G99IVTG (Gigabyte Technology Co., Ltd. B450M S2H) (09-08-2021 12:38:19)
Gestartet von C:\Users\promacs\Downloads
Geladene Profile: promacs
Platform: Windows 10 Pro Version 20H2 19042.1110 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
() [Datei ist nicht signiert] C:\Program Files (x86)\RocketDock\RocketDock.exe
(Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe
(Adobe Inc. -> Adobe Inc) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\Adobe Installer.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud Helper.exe <2>
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe <2>
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\CCLibrary.exe
(Adobe Systems Incorporated) C:\Program Files\WindowsApps\AdobeNotificationClient_2.0.1.8_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(Apple Inc. -> Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Apple Inc.) C:\Program Files\WindowsApps\AppleInc.iCloud_12.4.103.0_x86__nzyj5cx40ttqa\iCloud\iCloudServices.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avgnt.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avguard.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\avshadow.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\protectedservice.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Antivirus\sched.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe
(Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG) C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.CpuIdRemote64.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.DisplayAdapter.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe
(Corsair Memory, Inc. -> Corsair Memory, Inc.) C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE.exe
(Discord Inc. -> Discord Inc.) C:\Users\promacs\AppData\Local\Discord\app-1.0.9002\Discord.exe <6>
(Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe
(Gemalto, Inc. -> SafeNet, Inc.) C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplmv.exe <2>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub.exe <3>
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_agent.exe
(Logitech Inc -> Logitech, Inc.) C:\Program Files\LGHUB\lghub_updater.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.2103.8.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_12105.1001.23.0_x64__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.ZuneMusic_10.21061.10121.0_x64__8wekyb3d8bbwe\Music.UI.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\oobe\UserOOBEBroker.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.) C:\Windows\System32\CorsairGamingAudioCfgService64.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <12>
(Node.js Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(NVIDIA Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA Share.exe <3>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\ShadowPlay\nvsphelper64.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4a746d937e6a7240\Display.NvContainer\NVDisplay.Container.exe <2>
(OpenJS Foundation -> Node.js) C:\Program Files\Common Files\Adobe\Creative Cloud Libraries\libs\node.exe
(Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Windows\System32\RtkAudUService64.exe <2>
(Realtek Semiconductor Corp. -> Realtek) C:\Program Files\Realtek\WifiAutoInstall\WifiAutoInstallSrv.exe
(TeamViewer Germany GmbH -> TeamViewer Germany GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe <7>
(Valve -> Valve Corporation) C:\Program Files (x86)\Steam\steam.exe
(Voyetra Turtle Beach, Inc. -> ROCCAT) C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_dev_service.exe
(Voyetra Turtle Beach, Inc. -> ROCCAT) C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_Swarm_Monitor.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtkAudUService] => C:\WINDOWS\System32\RtkAudUService64.exe [856288 2019-10-29] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM-x32\...\Run: [Discord] => C:\ProgramData\SquirrelMachineInstalls\Discord.exe [62636856 2020-10-15] (Discord Inc. -> Discord Inc.)
HKLM-x32\...\Run: [CORSAIR iCUE Software] => C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\iCUE Launcher.exe [410152 2020-12-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2021-02-28] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [779504 2021-06-28] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-578507478-1206993314-3250086008-1001\...\Run: [RocketDock] => C:\Program Files (x86)\RocketDock\RocketDock.exe [495616 2007-09-02] () [Datei ist nicht signiert]
HKU\S-1-5-21-578507478-1206993314-3250086008-1001\...\Run: [LGHUB] => C:\Program Files\LGHUB\lghub.exe [123792288 2021-07-01] (Logitech Inc -> Logitech, Inc.)
HKU\S-1-5-21-578507478-1206993314-3250086008-1001\...\Run: [Vivaldi Update Notifier] => "C:\Users\promacs\AppData\Local\Vivaldi\Application\update_notifier.exe"
HKU\S-1-5-21-578507478-1206993314-3250086008-1001\...\Run: [Discord] => C:\Users\promacs\AppData\Local\Discord\Update.exe [1512760 2020-12-03] (Discord Inc. -> GitHub)
HKU\S-1-5-21-578507478-1206993314-3250086008-1001\...\Policies\Explorer: []
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\ROCCAT Swarm Monitor.lnk [2021-07-17]
ShortcutTarget: ROCCAT Swarm Monitor.lnk -> C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_Swarm_Monitor.exe (Voyetra Turtle Beach, Inc. -> ROCCAT)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {0895217B-7179-4B7E-8F6C-299F373D26A7} - System32\Tasks\AviraSystemSpeedupUpdate => C:\ProgramData\Avira\SystemSpeedup\Update\avira_speedup_setup_update.exe [29757392 2021-02-11] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {0C4AD9B1-575B-468D-BF7D-A285AB103935} - System32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvBackend\NvBatteryBoostCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerBatteryBoostCheck.log
Task: {17B64CF9-DF3D-4CC8-A0F7-8FA66EC850F0} - System32\Tasks\ROCCAT DEVICE SERVICE => C:\Program Files (x86)\ROCCAT\ROCCAT Swarm\ROCCAT_dev_service.exe [442888 2021-06-25] (Voyetra Turtle Beach, Inc. -> ROCCAT)
Task: {25AAA348-0108-43D0-A79F-959DF0F93B35} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3339120 2021-06-15] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {30FB6F2B-6740-4869-A95D-62F1D969DEC0} - System32\Tasks\Avira_Antivirus_Systray => C:\Program Files (x86)\Avira\Antivirus\avgnt.exe [2651056 2021-07-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {3F757D37-B9FC-410F-91D1-4ECF74FE0F26} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563208 2021-07-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {4A3CA3E1-AD16-401D-80CC-60B18FE01FE1} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {558D5324-3807-479B-B740-A2F1B0C8FDE1} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1557200 2021-01-25] (Adobe Inc. -> Adobe Inc.)
Task: {63C3BF50-2676-494E-972A-AADDEE8461ED} - System32\Tasks\Avira_Security_Update => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Common.Updater.exe [273784 2021-07-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {675291B4-5006-4CE8-B0CD-9A3ED202E6AF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {7322E328-C5FB-4B1C-A83B-BF4415588E83} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208216 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {8B7FC97A-739F-4710-BDDB-AAC6D27336CB} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {8E181454-8616-4547-B01D-1A9635955729} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [3512736 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {970C6427-0B68-411B-942A-FDEC2EF5C9FE} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {996B6CAC-BD27-46E1-8103-DB1A7BD4BEE4} - System32\Tasks\Avira_Security_Systray => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Systray.Application.exe [1503840 2021-07-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {A491D4E2-BB71-4EFE-BA7E-4FFC889127F6} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [23563208 2021-07-05] (Microsoft Corporation -> Microsoft Corporation)
Task: {AA152A58-44CE-42E3-8FC6-FC3C8D8BEF4D} - System32\Tasks\Avira_Security_Service_SCM_Watchdog => C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.Worker.exe [255968 2021-07-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
Task: {AADF18F6-0A90-46D5-B290-E06454CA35CC} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [2208216 2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {C64E431C-F8AD-4538-8DAE-110C85C63DF4} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [905072 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E0513641-E1B2-4C9B-B0BC-4AB4F68D3C81} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [903024 2021-05-04] (NVIDIA Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {E0A9C6AB-F98D-4FDA-A116-34951C913EBC} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {E3DACB1D-CD32-450A-BDA4-E0ED10EB64E0} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1261424 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EE2EC38D-D0E5-43AB-AFC2-792E72A5A6E6} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [645488 2021-06-09] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {F11EADD0-A989-4770-A402-F670A16DD41A} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [681400 2021-07-22] (Mozilla Corporation -> Mozilla Foundation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Winsock: Catalog5 08 C:\Program Files (x86)\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc. -> Apple Inc.)
Winsock: Catalog5-x64 08 C:\Program Files\Bonjour\mdnsNSP.dll [133392 2015-08-12] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 217.68.162.126 62.117.5.126
Tcpip\..\Interfaces\{5b0869ee-b3d5-4f28-9b62-6fedb59eafb9}: [DhcpNameServer] 217.68.162.126 62.117.5.126
Tcpip\..\Interfaces\{c980420f-b781-4687-9eb4-1b3073399a88}: [DhcpNameServer] 192.168.178.1
Edge:
=======
Edge Extension: (Kein Name) -> AutoFormFill_5ED10D46BD7E47DEB1F3685D2C0FCE08 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\AutoFormFill [nicht gefunden]
Edge Extension: (Kein Name) -> BookReader_B171F20233094AC88D05A8EF7B9763E8 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\BookViewer [nicht gefunden]
Edge Extension: (Kein Name) -> LearningTools_7706F933-971C-41D1-9899-8A026EB5D824 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\LearningTools [nicht gefunden]
Edge Extension: (Kein Name) -> PinJSAPI_EC01B57063BE468FAB6DB7EBFC3BF368 => C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\HostExtensions\PinJSAPI [nicht gefunden]
Edge Profile: C:\Users\promacs\AppData\Local\Microsoft\Edge\User Data\Default [2021-08-09]
FireFox:
========
FF DefaultProfile: jo88a9je.default
FF ProfilePath: C:\Users\promacs\AppData\Roaming\Mozilla\Firefox\Profiles\jo88a9je.default [2020-10-05]
FF ProfilePath: C:\Users\promacs\AppData\Roaming\Mozilla\Firefox\Profiles\g8qc3k9p.default-release-1628499453188 [2021-08-09]
FF Homepage: Mozilla\Firefox\Profiles\g8qc3k9p.default-release-1628499453188 -> hxxps://temp-mail.org/?__cf_chl_captcha_tk__=6a1de4209bf53013007cfc3984d4466230f1ba2a-1613051862-0-AdpzxGvow9lj94t4RBm8NYyM54iKSd23_DhxKzMYM76tJrA22PLe2uNNWGb0x2w3yPRZ-szDsOll9x9Q5CXHRqsKvKz0jKME-d8sRCzvD7osPIJDhU6eHPjWu8sj4f-MsenVCZ0uGZGIhswvBRHcB1R9ASt-3Qz0f08_JEHyJBP60OUrvIFfSgUHR_mHxtCAnWYb-JNjG2OzRuFME09jpVlZAv32lU_Z_qE6tp2443gsjuImUSGKP-V9JXAcOB94Mdu0fMVka6FNxa1Fkbl7n3vPvv_m0I1kocf7CMSRRa3y1Sk-pL0dubaneibuLc1f86m-JNhULlqjukz03ez15tEvTEJVTeYJvTDmNLpUPTjbF63JuhIfjC1PqZWALzQHlDvx90ldg0e9wGXP45qOSqt4SKtXGCj2YhaLzk4E9MXpDQTiLWXorFbbpZ4D2tpsgmQsWi1D8YrzgYpEGznkFNuRyvoF3SJ0b6BLd3l26biy4L76TkIvAnuSyAyYkJ_b2Lf5IDXzhAMZlXfe0bP_OeaMOCCuY_V8Qpwk9w9zPuKDYbGTARqJaNVgVVdVA7ZeRGMQitmSwxlZqmmyvX0EcQw
FF Notifications: Mozilla\Firefox\Profiles\g8qc3k9p.default-release-1628499453188 -> hxxps://www.youtube.com
FF Extension: (Beach chairs - Jen) - C:\Users\promacs\AppData\Roaming\Mozilla\Firefox\Profiles\g8qc3k9p.default-release-1628499453188\Extensions\{d131036c-f86e-42b1-8386-9a4f47596b24}.xpi [2021-08-09]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2021-06-28] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2021-07-16] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2021-06-28] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default [2021-07-09]
CHR Notifications: Default -> hxxps://www.instagram.com
CHR StartupUrls: Default -> "hxxp://www.google.de/","hxxp://google.de/"
CHR Extension: (Präsentationen) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2020-10-08]
CHR Extension: (Docs) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2020-10-08]
CHR Extension: (Google Drive) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2021-02-28]
CHR Extension: (YouTube) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2020-10-08]
CHR Extension: (Avira Password Manager) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2021-02-28]
CHR Extension: (Avira Safe Shopping) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2021-02-28]
CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2021-02-28]
CHR Extension: (Tabellen) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2020-10-08]
CHR Extension: (Google Docs Offline) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2020-10-08]
CHR Extension: (AdBlock*– der beste Ad-Blocker) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-02-28]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-02-28]
CHR Extension: (Google Mail) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2021-02-28]
CHR Extension: (Chrome Media Router) - C:\Users\promacs\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-28]
CHR HKLM-x32\...\Chrome\Extension: [caljgklbbfbcjjanaijlacgncafpegll]
CHR HKLM-x32\...\Chrome\Extension: [ccbpbkebodcjkknkfkpmfeciinhidaeh]
Vivaldi:
=======
VIV Profile: C:\Users\promacs\AppData\Local\Vivaldi\User Data\Default [2021-02-28]
VIV Notifications: Default -> hxxps://www.instagram.com
VIV Extension: (Avira Password Manager) - C:\Users\promacs\AppData\Local\Vivaldi\User Data\Default\Extensions\caljgklbbfbcjjanaijlacgncafpegll [2021-02-28]
VIV Extension: (Avira Safe Shopping) - C:\Users\promacs\AppData\Local\Vivaldi\User Data\Default\Extensions\ccbpbkebodcjkknkfkpmfeciinhidaeh [2021-02-28]
VIV Extension: (Chrome Media Router) - C:\Users\promacs\AppData\Local\Vivaldi\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2021-02-28]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [169672 2021-01-25] (Adobe Inc. -> Adobe Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [842480 2021-06-28] (Adobe Inc. -> Adobe Inc.)
S2 AntiVirMailService; C:\Program Files (x86)\Avira\Antivirus\avmailc7.exe [1206648 2021-07-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntivirProtectedService; C:\Program Files (x86)\Avira\Antivirus\ProtectedService.exe [538000 2021-07-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirSchedulerService; C:\Program Files (x86)\Avira\Antivirus\sched.exe [485048 2021-07-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AntiVirService; C:\Program Files (x86)\Avira\Antivirus\avguard.exe [485048 2021-07-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S2 AntiVirWebService; C:\Program Files (x86)\Avira\Antivirus\avwebg7.exe [574672 2021-07-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraOptimizerHost; C:\Program Files (x86)\Avira\Optimizer Host\Avira.OptimizerHost.exe [2988544 2020-06-03] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraPhantomVPN; C:\Program Files (x86)\Avira\VPN\Avira.VpnService.exe [383976 2021-05-06] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraSecurity; C:\Program Files (x86)\Avira\Security\Avira.Spotlight.Service.exe [271560 2021-07-29] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 AviraUpdaterService; C:\Program Files (x86)\Avira\SoftwareUpdater\Avira.SoftwareUpdater.ServiceHost.exe [159080 2021-04-13] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8894752 2021-07-07] (BattlEye Innovations e.K. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [9482696 2021-07-05] (Microsoft Corporation -> Microsoft Corporation)
R2 CorsairGamingAudioConfig; C:\WINDOWS\system32\CorsairGamingAudioCfgService64.exe [616344 2020-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CueLLAccessService.exe [421928 2020-12-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
R2 CorsairService; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\Corsair.Service.exe [80936 2020-12-29] (Corsair Memory, Inc. -> Corsair Memory, Inc.)
S3 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.)
R2 hasplms; C:\Program Files (x86)\Common Files\Aladdin Shared\HASP\hasplms.exe [7619592 2019-12-25] (Gemalto, Inc. -> SafeNet, Inc.)
R2 LGHUBUpdaterService; C:\Program Files\LGHUB\lghub_updater.exe [10752928 2021-07-01] (Logitech Inc -> Logitech, Inc.)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [8924344 2020-10-26] (INCA Internet Co.,Ltd. -> INCA Internet Co., Ltd.)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [5395384 2021-07-17] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [13257000 2021-07-01] (TeamViewer Germany GmbH -> TeamViewer Germany GmbH)
S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\NisSrv.exe [2491880 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WifiAutoInstallSrv; C:\Program Files\Realtek\WifiAutoInstall\WifiAutoInstallSrv.exe [124864 2017-07-31] (Realtek Semiconductor Corp. -> Realtek)
S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.2011.6-0\MsMpEng.exe [128376 2020-12-04] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4a746d937e6a7240\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_amd64_4a746d937e6a7240\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 aksdf; C:\Windows\system32\drivers\aksdf.sys [389560 2019-12-25] (Gemalto, Inc. -> SafeNet, Inc.)
R2 aksfridge; C:\Windows\system32\drivers\aksfridge.sys [510800 2019-12-25] (Gemalto, Inc. -> SafeNet, Inc.)
S3 AppleLowerFilter; C:\WINDOWS\System32\drivers\AppleLowerFilter.sys [35976 2020-10-09] (WDKTestCert build,132303256403278908 -> Apple Inc.)
R0 avdevprot; C:\WINDOWS\System32\DRIVERS\avdevprot.sys [78936 2019-06-07] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S0 avelam; C:\WINDOWS\System32\drivers\avelam.sys [22848 2021-07-12] (Microsoft Windows Early Launch Anti-Malware Publisher -> Avira Operations GmbH & Co. KG)
R2 avgntflt; C:\WINDOWS\System32\DRIVERS\avgntflt.sys [208336 2021-07-12] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [199312 2021-03-17] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R1 avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [46704 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R2 avnetflt; C:\WINDOWS\system32\DRIVERS\avnetflt.sys [89736 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
R0 avusbflt; C:\WINDOWS\System32\Drivers\avusbflt.sys [45472 2019-03-20] (Avira Operations GmbH & Co. KG -> Avira Operations GmbH & Co. KG)
S3 BthA2dp; C:\WINDOWS\System32\drivers\BthA2dp.sys [279040 2019-12-07] (Microsoft Corporation) [Datei ist nicht signiert]
R3 CorsairGamingAudioService; C:\WINDOWS\system32\DRIVERS\CorsairGamingAudio64.sys [60312 2020-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R2 CorsairLLAccess3B84E98236B28D4E075D5737DF9F567A1FB76E8A; C:\Program Files (x86)\Corsair\CORSAIR iCUE Software\CorsairLLAccess64.sys [21752 2020-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair Memory, Inc.)
R3 CorsairVBusDriver; C:\WINDOWS\System32\drivers\CorsairVBusDriver.sys [45984 2020-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 CorsairVHidDriver; C:\WINDOWS\System32\drivers\CorsairVHidDriver.sys [21920 2020-11-19] (Microsoft Windows Hardware Compatibility Publisher -> Corsair)
R3 cpuz150; C:\WINDOWS\temp\cpuz150\cpuz150_x64.sys [44832 2021-08-07] (CPUID S.A.R.L.U. -> CPUID)
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [1970104 2019-12-25] (Gemalto, Inc. -> SafeNet, Inc.)
R2 LGHUBTemperatureService; C:\Program Files\LGHUB\logi_core_temp.sys [22864 2021-07-01] (Logitech Inc -> Logitech)
R3 logi_joy_bus_enum; C:\WINDOWS\system32\drivers\logi_joy_bus_enum.sys [37200 2021-03-29] (Logitech Inc -> Logitech)
R3 logi_joy_vir_hid; C:\WINDOWS\system32\drivers\logi_joy_vir_hid.sys [25928 2021-03-29] (Logitech Inc -> Logitech)
R3 logi_joy_xlcore; C:\WINDOWS\system32\drivers\logi_joy_xlcore.sys [66896 2021-03-29] (Logitech Inc -> Logitech)
S3 tap0901; C:\WINDOWS\System32\drivers\tap0901.sys [27136 2016-04-21] (OpenVPN Technologies, Inc. -> The OpenVPN Project)
S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [48536 2020-12-04] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [429296 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [70896 2020-12-04] (Microsoft Windows -> Microsoft Corporation)
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-08-09 12:38 - 2021-08-09 12:38 - 000031722 _____ C:\Users\promacs\Downloads\FRST.txt
2021-08-09 12:37 - 2021-08-09 12:38 - 000000000 ____D C:\FRST
2021-08-09 12:35 - 2021-08-09 12:35 - 002300416 _____ (Farbar) C:\Users\promacs\Downloads\FRST64.exe
2021-08-09 11:59 - 2021-08-09 11:59 - 000004140 _____ C:\Users\promacs\Downloads\Versandetiketten DHL 00340434326967303269.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000018418 _____ C:\Users\promacs\Downloads\1904663156.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000018176 _____ C:\Users\promacs\Downloads\1573897023.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000017915 _____ C:\Users\promacs\Downloads\1182002107.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000016597 _____ C:\Users\promacs\Downloads\1516675523.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000016555 _____ C:\Users\promacs\Downloads\1124773493.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000016288 _____ C:\Users\promacs\Downloads\1524775506.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000016279 _____ C:\Users\promacs\Downloads\1532962222.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000016277 _____ C:\Users\promacs\Downloads\1557582575.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000015459 _____ C:\Users\promacs\Downloads\1904655192.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000015182 _____ C:\Users\promacs\Downloads\1049311951.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000015166 _____ C:\Users\promacs\Downloads\1280192390.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000014561 _____ C:\Users\promacs\Downloads\1855566841.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000013881 _____ C:\Users\promacs\Downloads\1337464463.pdf
2021-08-09 11:19 - 2021-08-09 11:19 - 000013575 _____ C:\Users\promacs\Downloads\1765564511.pdf
2021-08-09 10:55 - 2021-08-09 10:55 - 000001005 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2021-08-09 10:55 - 2021-08-09 10:55 - 000000000 ____D C:\WINDOWS\system32\Tasks\Mozilla
2021-08-09 10:55 - 2021-08-09 10:55 - 000000000 ____D C:\Program Files\Mozilla Firefox
2021-08-09 10:55 - 2021-08-09 10:55 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2021-07-31 19:21 - 2021-07-31 19:21 - 000048390 _____ C:\Users\promacs\Downloads\Briefmarken.1Stk.31.07.2021_1921.pdf
2021-07-30 12:37 - 2021-07-30 12:37 - 069746200 _____ (Riot Games, Inc.) C:\Users\promacs\Downloads\Install League of Legends euw(2).exe
2021-07-28 10:03 - 2021-07-28 10:03 - 000000000 ____D C:\Users\promacs\AppData\LocalLow\Oracle
2021-07-28 00:03 - 2021-07-28 00:03 - 035040582 _____ C:\Users\promacs\Downloads\Srimad_Bhagavatam_Zehnter_Canto_Teil_1.pdf
2021-07-22 22:16 - 2021-07-22 22:16 - 000000000 ____D C:\Users\promacs\Documents\Onadam_A_Journey_into_the_Rhythm_of_Life
2021-07-22 12:35 - 2021-07-22 12:35 - 000105091 _____ C:\Users\promacs\Downloads\EB-1192_Turbayar_Turuu_20_07_2021_Rechnung.pdf
2021-07-22 11:49 - 2021-07-22 11:49 - 003244596 _____ C:\Users\promacs\Downloads\to the.pdf
2021-07-20 17:33 - 2021-07-20 17:33 - 000000000 ____D C:\Users\promacs\Documents\Benutzerdefinierte Office-Vorlagen
2021-07-19 16:16 - 2021-07-19 16:16 - 000000000 ____D C:\Users\promacs\Documents\KONAMI
2021-07-19 16:16 - 2021-07-19 16:16 - 000000000 ____D C:\ProgramData\KONAMI
2021-07-19 08:24 - 2021-07-19 08:24 - 061908224 _____ C:\Users\promacs\Downloads\Bhagavad-gita_Wie_Sie_Ist_1974.pdf
2021-07-19 08:22 - 2021-07-19 08:22 - 031785501 _____ C:\Users\promacs\Downloads\4259.pdf
2021-07-19 07:21 - 2021-07-19 07:21 - 000000000 ____D C:\Users\promacs\AppData\Roaming\iterate_GmbH
2021-07-18 19:53 - 2021-07-18 19:53 - 000000000 ____D C:\Users\promacs\AppData\Roaming\Cyberduck
2021-07-18 19:53 - 2021-07-18 19:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cyberduck
2021-07-18 19:53 - 2021-07-18 19:53 - 000000000 ____D C:\Program Files\Cyberduck
2021-07-18 19:53 - 2021-07-18 19:53 - 000000000 ____D C:\Program Files\Bonjour
2021-07-18 19:53 - 2021-07-18 19:53 - 000000000 ____D C:\Program Files (x86)\Bonjour
2021-07-18 19:52 - 2021-07-18 19:52 - 050864232 _____ (iterate GmbH) C:\Users\promacs\Downloads\Cyberduck-Installer-7.10.0.35184.exe
2021-07-17 23:28 - 2021-07-17 23:28 - 000000000 ____D C:\Users\promacs\AppData\Roaming\CyberGhost
2021-07-17 22:06 - 2021-07-17 22:06 - 001823280 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2021-07-17 22:06 - 2021-07-17 22:06 - 000011357 _____ C:\WINDOWS\system32\DrtmAuthTxt.wim
2021-07-17 22:06 - 2021-07-17 22:06 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsraLegacy.tlb
2021-07-17 22:06 - 2021-07-17 22:06 - 000007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\MsraLegacy.tlb
2021-07-17 22:06 - 2021-07-17 22:06 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rendezvousSession.tlb
2021-07-17 22:06 - 2021-07-17 22:06 - 000006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\rendezvousSession.tlb
2021-07-17 18:39 - 2021-07-17 18:39 - 000003702 _____ C:\WINDOWS\system32\Tasks\ROCCAT DEVICE SERVICE
2021-07-17 18:37 - 2021-07-17 18:37 - 000000000 ____D C:\Users\promacs\AppData\Roaming\ROCCAT
2021-07-17 18:35 - 2021-07-17 18:35 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ROCCAT
2021-07-17 18:35 - 2021-07-17 18:35 - 000000000 ____D C:\Program Files (x86)\ROCCAT
2021-07-17 18:35 - 2021-07-17 18:35 - 000000000 ____D C:\Program Files (x86)\InstallShield Installation Information
2021-07-16 13:46 - 2021-07-16 13:46 - 000002544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive for Business.lnk
2021-07-16 13:46 - 2021-07-16 13:46 - 000002541 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk
2021-07-16 13:46 - 2021-07-16 13:46 - 000002537 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk
2021-07-16 13:46 - 2021-07-16 13:46 - 000002516 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk
2021-07-16 13:46 - 2021-07-16 13:46 - 000002494 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk
2021-07-16 13:46 - 2021-07-16 13:46 - 000002491 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk
2021-07-16 13:46 - 2021-07-16 13:46 - 000002458 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk
2021-07-16 13:46 - 2021-07-16 13:46 - 000002455 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk
2021-07-16 13:46 - 2021-07-16 13:46 - 000002427 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk
2021-07-16 13:46 - 2021-07-16 13:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools
2021-07-16 13:45 - 2021-07-16 13:45 - 000000000 ____D C:\Program Files\Common Files\DESIGNER
2021-07-16 13:39 - 2021-07-16 13:46 - 000000000 ____D C:\Program Files\Microsoft Office
2021-07-16 13:39 - 2021-07-16 13:39 - 002373980 _____ C:\Users\promacs\Downloads\ms_office_2019_pro_plus_x64-DE.zip
2021-07-16 13:39 - 2021-07-16 13:39 - 000000000 ____D C:\Users\promacs\Downloads\ms_office_2019_pro_plus_x64-DE
2021-07-16 13:39 - 2021-07-16 13:39 - 000000000 ____D C:\Program Files\Microsoft Office 15
2021-07-13 09:08 - 2021-07-13 09:13 - 020857719 _____ C:\Users\promacs\Downloads\Liquides Denken - Stressbewältigung.pdf
2021-07-12 23:24 - 2021-07-12 23:24 - 000002816 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Systray
2021-07-12 10:27 - 2021-07-12 10:27 - 084613384 _____ (Oracle Corporation) C:\Users\promacs\Downloads\jre-8u291-windows-x64.exe
2021-07-12 10:27 - 2021-07-12 10:27 - 000000000 ____D C:\Users\promacs\AppData\LocalLow\Sun
2021-07-12 10:27 - 2021-07-12 10:27 - 000000000 ____D C:\ProgramData\Oracle
2021-07-12 10:26 - 2021-07-12 10:26 - 006046996 _____ C:\Users\promacs\Downloads\OptiFine_1.16.5_HD_U_G8.jar
2021-07-12 08:04 - 2021-07-12 08:04 - 000037460 _____ C:\Users\promacs\Downloads\Visitenkarte(1).pdf
2021-07-11 18:45 - 2021-07-11 18:45 - 001128540 _____ C:\Users\promacs\Downloads\20200427_Auskunftsrecht-nach-Art.-15-DSGVO.pdf
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2021-08-09 12:35 - 2020-10-05 21:34 - 000000000 ____D C:\Program Files (x86)\Steam
2021-08-09 12:25 - 2020-10-18 13:30 - 000000000 ____D C:\Program Files (x86)\Adobe
2021-08-09 12:25 - 2020-10-09 18:41 - 000000000 ____D C:\ProgramData\NVIDIA
2021-08-09 12:25 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\AppReadiness
2021-08-09 12:25 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2021-08-09 12:24 - 2020-10-19 14:25 - 000000000 ____D C:\Users\promacs\AppData\Roaming\WhatsApp
2021-08-09 12:03 - 2020-10-15 23:25 - 000000000 ____D C:\Users\promacs\AppData\Roaming\discord
2021-08-09 12:02 - 2020-10-15 23:25 - 000000000 ____D C:\Users\promacs\AppData\Local\Discord
2021-08-09 11:48 - 2021-04-01 21:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy
2021-08-09 11:08 - 2020-10-05 21:32 - 000000000 ____D C:\ProgramData\Mozilla
2021-08-09 11:07 - 2020-10-05 21:32 - 000000000 ____D C:\Users\promacs\AppData\LocalLow\Mozilla
2021-08-09 10:52 - 2020-10-08 23:28 - 000000000 ____D C:\Program Files (x86)\Google
2021-08-09 10:51 - 2021-04-13 10:53 - 000000000 ____D C:\Users\promacs\AppData\Local\Windows Live
2021-08-09 10:51 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2021-08-09 09:07 - 2020-10-09 19:06 - 000000000 ____D C:\Users\promacs\AppData\Local\LGHUB
2021-08-08 06:32 - 2020-10-06 19:08 - 000000000 ____D C:\ProgramData\Riot Games
2021-08-08 06:23 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2021-08-08 06:03 - 2021-02-28 19:23 - 000000000 ___RD C:\Users\promacs\Creative Cloud Files
2021-08-08 06:03 - 2020-10-09 19:06 - 000000000 ____D C:\Users\promacs\AppData\Roaming\LGHUB
2021-08-07 19:28 - 2021-04-01 21:48 - 001722788 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2021-08-07 19:28 - 2019-12-07 16:51 - 000743670 _____ C:\WINDOWS\system32\perfh007.dat
2021-08-07 19:28 - 2019-12-07 16:51 - 000150092 _____ C:\WINDOWS\system32\perfc007.dat
2021-08-07 19:28 - 2019-12-07 11:13 - 000000000 ____D C:\WINDOWS\INF
2021-08-07 19:22 - 2021-05-10 22:44 - 000000000 ____D C:\Program Files (x86)\TeamViewer
2021-08-07 19:22 - 2021-04-01 21:50 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2021-08-07 19:22 - 2021-04-01 21:45 - 000008192 ___SH C:\DumpStack.log.tmp
2021-08-07 08:00 - 2020-10-10 16:55 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2021-08-07 07:58 - 2021-04-17 15:41 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avira
2021-08-07 07:58 - 2021-04-01 21:50 - 000003718 _____ C:\WINDOWS\system32\Tasks\Avira_Security_Update
2021-07-31 00:57 - 2020-10-08 19:41 - 000000000 ____D C:\Games
2021-07-30 14:11 - 2021-04-01 21:50 - 000004308 _____ C:\WINDOWS\system32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-30 14:11 - 2021-04-01 21:50 - 000004106 _____ C:\WINDOWS\system32\Tasks\NvBatteryBoostCheckOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-30 14:11 - 2021-04-01 21:50 - 000003976 _____ C:\WINDOWS\system32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-30 14:11 - 2021-04-01 21:50 - 000003940 _____ C:\WINDOWS\system32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-30 14:11 - 2021-04-01 21:50 - 000003894 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-30 14:11 - 2021-04-01 21:50 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-30 14:11 - 2021-04-01 21:50 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-30 14:11 - 2021-04-01 21:50 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-30 14:11 - 2021-04-01 21:50 - 000003858 _____ C:\WINDOWS\system32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-30 14:11 - 2021-04-01 21:50 - 000003654 _____ C:\WINDOWS\system32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2021-07-30 14:11 - 2020-10-12 10:19 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2021-07-30 14:11 - 2020-10-05 21:15 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2021-07-30 14:11 - 2020-10-05 21:15 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2021-07-30 12:38 - 2020-10-06 19:08 - 000000000 ____D C:\Riot Games
2021-07-30 12:37 - 2020-10-06 19:08 - 000000000 ____D C:\Users\promacs\AppData\Local\Riot Games
2021-07-30 12:37 - 2020-10-06 19:08 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Riot Games
2021-07-30 12:35 - 2021-02-28 20:13 - 000000000 ____D C:\Users\promacs\AppData\Local\Vivaldi
2021-07-30 12:35 - 2019-12-07 11:03 - 000524288 _____ C:\WINDOWS\system32\config\BBI
2021-07-30 11:22 - 2020-10-19 14:25 - 000000000 ____D C:\Users\promacs\AppData\Local\WhatsApp
2021-07-30 11:22 - 2020-10-15 23:25 - 000000000 ____D C:\Users\promacs\AppData\Local\SquirrelTemp
2021-07-30 11:08 - 2021-04-13 10:33 - 000003606 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore1d72730313d6f7a
2021-07-30 11:08 - 2021-04-01 21:50 - 000003700 _____ C:\WINDOWS\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2021-07-26 16:36 - 2021-04-01 21:46 - 000000000 ____D C:\Users\promacs
2021-07-23 12:19 - 2021-04-01 21:45 - 000465952 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2021-07-22 22:04 - 2020-10-11 16:10 - 000000000 ____D C:\Users\promacs\AppData\Local\D3DSCache
2021-07-22 11:40 - 2020-10-05 22:33 - 000000000 ____D C:\Program Files (x86)\Call of Duty Modern Warfare
2021-07-22 11:39 - 2020-10-20 15:34 - 000000000 ____D C:\Program Files (x86)\MSI Afterburner
2021-07-22 11:39 - 2020-10-05 20:48 - 000000000 ___RD C:\Users\promacs\OneDrive
2021-07-22 11:38 - 2021-03-16 13:51 - 000000000 ____D C:\Program Files (x86)\PixelRuler
2021-07-22 11:38 - 2020-11-09 10:51 - 000000000 ____D C:\Program Files (x86)\OpenOffice 4
2021-07-22 11:19 - 2021-02-16 12:06 - 000000000 ____D C:\Users\promacs\AppData\Local\CrashDumps
2021-07-20 17:27 - 2020-10-05 20:46 - 000000000 ____D C:\Users\promacs\AppData\Local\Packages
2021-07-19 22:26 - 2020-10-26 18:55 - 000000000 ____D C:\Users\promacs\AppData\Roaming\.minecraft
2021-07-18 19:53 - 2020-10-09 18:51 - 000000000 ____D C:\ProgramData\Package Cache
2021-07-17 23:26 - 2019-12-07 16:54 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection
2021-07-17 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\SystemResources
2021-07-17 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2021-07-17 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\WINDOWS\bcastdvr
2021-07-17 23:26 - 2019-12-07 11:14 - 000000000 ____D C:\Program Files\Common Files\System
2021-07-17 22:08 - 2019-12-07 11:03 - 000000000 ____D C:\WINDOWS\CbsTemp
2021-07-17 22:01 - 2020-10-05 21:23 - 000000000 ____D C:\WINDOWS\system32\MRT
2021-07-17 21:58 - 2020-10-05 21:23 - 133422552 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2021-07-15 22:06 - 2020-10-12 22:08 - 000000000 ____D C:\Program Files (x86)\ShotOnline
2021-07-15 21:52 - 2021-06-14 17:28 - 000000000 ____D C:\Program Files\Epic Games
2021-07-12 23:24 - 2021-02-11 15:55 - 000000000 ____D C:\ProgramData\Avira
2021-07-12 23:24 - 2021-02-11 15:55 - 000000000 ____D C:\Program Files (x86)\Avira
2021-07-12 08:13 - 2019-12-07 11:14 - 000000000 ___HD C:\WINDOWS\ELAMBKUP
2021-07-12 08:12 - 2021-02-11 15:56 - 000208336 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avgntflt.sys
2021-07-12 08:12 - 2021-02-11 15:56 - 000022848 _____ (Avira Operations GmbH & Co. KG) C:\WINDOWS\system32\Drivers\avelam.sys
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2021-02-28 19:26 - 2021-08-09 12:27 - 000000410 _____ () C:\Users\promacs\AppData\Local\oobelibMkey.log
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
09.08.2021, 11:44
Baum-Darstellung