Jump to content

shinyhappyalina

Members
  • Content Count

    2
  • Joined

  • Last visited

About shinyhappyalina

  • Rank
    New Member
  1. Hey there, I've been getting these notifications by cloud1.pw and I did everything suggested here: The notifications are still showing up and I would be really, really thankful if somebody could help me getting rid of this. All the logs are attached. Thanks a lot! Alina log malwarebyte.txt Log AdwCleaner.docx FRST.txt Addition.txt
  2. Hello Kevin, I have the same problem with cloud1.pw and I hope it is okay if I answer here. I did everything you recommended, however I could not open malwarebytes, so I used the chameleon and with that I didn't manage to change the settings as you described, but simply ran the scan with the default settings. Here are all my logs. 1. Malwarebytes (I am sorry this is in german, I totally forgot to change the language and it was german by default, if necessary I'll of course do it again) Malwarebytes Anti-Malware www.malwarebytes.org Suchlaufdatum: 25.09.2019 Suchlaufzeit: 21:20 Protokolldatei: log malwarebyte.txt Administrator: Ja Version: 2.2.1.1043 Malware-Datenbank: v2019.09.25.06 Rootkit-Datenbank: v2019.09.25.06 Lizenz: Kostenlose Version Malware-Schutz: Deaktiviert Schutz vor bösartigen Websites: Deaktiviert Selbstschutz: Aktiviert Betriebssystem: Windows 10 CPU: x64 Dateisystem: NTFS Benutzer: User Suchlauftyp: Bedrohungssuchlauf Ergebnis: Abgeschlossen Durchsuchte Objekte: 218897 Abgelaufene Zeit: 21 Min., 13 Sek. Speicher: Aktiviert Start: Aktiviert Dateisystem: Aktiviert Archive: Aktiviert Rootkits: Deaktiviert Heuristik: Aktiviert PUP: Aktiviert PUM: Aktiviert Prozesse: 0 (keine bösartigen Elemente erkannt) Module: 0 (keine bösartigen Elemente erkannt) Registrierungsschlüssel: 2 PUP.Optional.LenovoBrowserGuard.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\LenovoBrowserGuard, In Quarantäne, [81991f1e7355a88e97c4bdf923dd4cb4], PUP.Optional.LenovoBrowserGuard.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\LENOVOBROWSERGUARD, In Quarantäne, [190159e4547475c167f6547faa5607f9], Registrierungswerte: 1 PUP.Optional.LenovoBrowserGuard.AppFlsh, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\LENOVOBROWSERGUARD|Publisher, ClientConnect LTD, In Quarantäne, [190159e4547475c167f6547faa5607f9] Registrierungsdaten: 0 (keine bösartigen Elemente erkannt) Ordner: 21 PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Users\User\AppData\Local\LenovoBrowserGuard, In Quarantäne, [0119e756d4f49e98b3c548d76d9318e8], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Users\User\AppData\Local\LenovoBrowserGuard\LenovoBrowserGuard, In Quarantäne, [0119e756d4f49e98b3c548d76d9318e8], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Users\User\AppData\Local\LenovoBrowserGuard\LenovoBrowserGuard\rep, In Quarantäne, [0119e756d4f49e98b3c548d76d9318e8], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard\bin, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard\rep, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\Main, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\Main\bin, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\Main\rep, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\bin, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\bubble, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\libs, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\protection, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\protectionDS, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\settings, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\uninstall, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\rep, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], Dateien: 70 PUP.Optional.ChipDe, C:\$RECYCLE.BIN\S-1-5-21-3419907726-714675222-565836120-1001\$RVWJZMQ.exe, In Quarantäne, [b268d766efd990a6e467252ad0340af6], PUP.Optional.ChipDe, C:\Users\User\Downloads\Tor Browser - CHIP-Installer.exe, In Quarantäne, [48d241fc00c8c47212396de25ea69a66], PUP.Optional.ChipDe, C:\Users\User\Downloads\f lux - CHIP-Installer.exe, In Quarantäne, [36e469d416b2fd39a7a4b79856ae867a], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Users\User\AppData\Local\LenovoBrowserGuard\LenovoBrowserGuard\rep\UserRepository.dat, In Quarantäne, [0119e756d4f49e98b3c548d76d9318e8], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Users\User\AppData\Local\LenovoBrowserGuard\LenovoBrowserGuard\rep\UserSettings.dat, In Quarantäne, [0119e756d4f49e98b3c548d76d9318e8], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\CRASH_DUMP_P3292_T3740_D2014_12_08_T20_23_23.dmp, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\CRASH_REPORT_P3292_T3740_D2014_12_08_T20_23_23.txt, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\EULA.txt, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\LenovoBrowserGuard\bin\SPVC32.dll, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\Main\rep\SystemRepository.dat, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\bubble\bubble.css, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\bubble\bubble.html, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\bubble\bubble.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\bubble\defaults.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\btnSilverBig.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\hez.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\Apply-default.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\Apply-onclick.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\Apply-Rollover.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\bg-with-logo.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\bg.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\bgNotif.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\bgSettings.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\bgUninstall.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\btnBlue.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\btnClose.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\btnSilver.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\btnSilverMed.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\checkbox.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\checkbox_checked.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\checkbox_def.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\close-win-def.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\close-win-over-click.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\gray-bg.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\hez-def.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\hez-selected.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\icon-win.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\info-icon.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\menu-rollover.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\menu-selected.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\radio-button-def.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\radio-button-selected.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\radio-button.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\radio-button2.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\Settings-icon.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\text-field.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\v.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\Images\x.png, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\libs\defaults.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\libs\dialogUtils.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\libs\jquery.1.7.1.min.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\libs\json2.min.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\libs\main.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\libs\SPDialogAPI.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\protection\defaults.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\protection\protection.css, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\protection\protection.html, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\protection\protection.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\protectionDS\defaults.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\protectionDS\protectionDS.css, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\protectionDS\protectionDS.html, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\protectionDS\protectionDS.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\settings\defaults.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\settings\settings.css, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\settings\settings.html, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\settings\settings.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\uninstall\defaults.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\uninstall\uninstall.css, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\uninstall\uninstall.html, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], PUP.Optional.LenovoBrowserGuard.AppFlsh, C:\Program Files (x86)\LenovoBrowserGuard\UI\dialogs\uninstall\uninstall.js, In Quarantäne, [d743ed50aa1e88ae0466f832a25e32ce], Physische Sektoren: 0 (keine bösartigen Elemente erkannt) (end) 2. AdwCleaner # ------------------------------- # Malwarebytes AdwCleaner 7.4.1.0 # ------------------------------- # Build: 09-05-2019 # Database: 2019-09-23.1 (Cloud) # Support: https://www.malwarebytes.com/support # # ------------------------------- # Mode: Clean # ------------------------------- # Start: 09-25-2019 # Duration: 00:00:08 # OS: Windows 10 Home # Cleaned: 30 # Failed: 1 ***** [ Services ] ***** Deleted Update service ***** [ Folders ] ***** Deleted C:\ProgramData\Pokki Deleted C:\Users\Public\Pokki Deleted C:\Users\alina_000\AppData\Local\Pokki Not Deleted C:\Users\User\AppData\Local\SweetLabs App Platform ***** [ Files ] ***** Deleted C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk Deleted C:\Windows\System32\Tasks_Migrated\SweetLabs App Platform ***** [ DLL ] ***** No malicious DLLs cleaned. ***** [ WMI ] ***** No malicious WMI cleaned. ***** [ Shortcuts ] ***** No malicious shortcuts cleaned. ***** [ Tasks ] ***** Deleted C:\Windows\System32\Tasks\SWEETLABS APP PLATFORM ***** [ Registry ] ***** Deleted HKCU\Software\Classes\AllFileSystemObjects\shell\pokki Deleted HKCU\Software\Classes\Directory\shell\pokki Deleted HKCU\Software\Classes\Drive\shell\pokki Deleted HKCU\Software\Classes\lnkfile\shell\pokki Deleted HKCU\Software\Classes\pokki Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\softonic.com Deleted HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\windows-10.de.softonic.com Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_AP Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SweetLabs_Start_Menu Deleted HKCU\Software\SweetLabs App Platform Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4BEFE0A6-3CDF-4BEC-BBB5-948ABBBE0E05} Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\SweetLabs App Platform Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|TCP Query User{E778448D-D313-4F1C-AEFE-EED3E23E956A}C:\program files (x86)\popcorn time\nodejs\node.exe Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|UDP Query User{1FEF15BA-70D7-4F62-B8B7-B9641ECFAB09}C:\program files (x86)\popcorn time\nodejs\node.exe Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{2B2736B6-DDE5-41B1-B2F3-EFCAC1BC6DB8} Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{3BA9BD2C-9917-47F7-8750-CA7532A7BD77} Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{6919C922-DAC6-4E6F-BC6A-E034687D1DF7} Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{74F932D9-0856-46F2-A565-724F3AD5483E} Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{A03FD452-6B4F-46DB-AF3C-8FDA11542FEB} Deleted HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules|{A42016AA-FA54-4716-B5BD-D44DCBE3E002} Deleted HKU\S-1-5-21-3419907726-714675222-565836120-1002\Software\Microsoft\Windows\CurrentVersion\Run|Pokki Deleted HKU\S-1-5-21-3419907726-714675222-565836120-1002\Software\Microsoft\Windows\CurrentVersion\Uninstall\Pokki Deleted HKU\S-1-5-21-3419907726-714675222-565836120-1002\Software\Pokki ***** [ Chromium (and derivatives) ] ***** No malicious Chromium entries cleaned. ***** [ Chromium URLs ] ***** No malicious Chromium URLs cleaned. ***** [ Firefox (and derivatives) ] ***** No malicious Firefox entries cleaned. ***** [ Firefox URLs ] ***** No malicious Firefox URLs cleaned. ***** [ Preinstalled Software ] ***** No Preinstalled Software cleaned. ************************* [+] Delete Tracing Keys [+] Reset Winsock ************************* AdwCleaner_Debug.log - [34982 octets] - [25/09/2019 21:58:01] AdwCleaner[S00].txt - [8823 octets] - [25/09/2019 22:00:02] ########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ########## 3. FRST (German by default, don't know how to change it) Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 25-09-2019 durchgeführt von User (Administrator) auf USER-PC (LENOVO INVALID) (25-09-2019 22:06:14) Gestartet von C:\Users\User\Downloads Geladene Profile: User (Verfügbare Profile: User & alina_000) Platform: Windows 10 Home Version 1809 17763.737 (X64) Sprache: Deutsch (Deutschland) Standard-Browser: Chrome Start-Modus: Normal Anleitung für Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Prozesse (Nicht auf der Ausnahmeliste) ================= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.) () [Datei ist nicht signiert] C:\Program Files\Lenovo PhoneCompanion\adb.exe (1&1 Mail & Media GmbH) C:\Program Files\WindowsApps\4659BB81.GMXMail_3.25.51.0_x64__9r8rjdwa12808\Uimam.UwpMail.App.exe (Adobe Inc. -> ) C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe (Adobe Inc. -> Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe (Adobe Inc. -> Adobe Systems) C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe (Adobe Inc. -> Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe (Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Systems Incorporated -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe (Adobe Systems Incorporated -> Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe (Adobe Systems Incorporated) C:\Program Files\WindowsApps\ReaderNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe (Broadcom Corporation -> Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe (F.lux Software LLC -> f.lux Software LLC) C:\Users\User\AppData\Local\FluxSoftware\Flux\flux.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler.exe (Google Inc -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.34.11\GoogleCrashHandler64.exe (Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe (Google LLC -> ) C:\Program Files\Google\Drive\googledrivesync.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (Intel(R) pGFX -> ) C:\Windows\System32\igfxTray.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxCUIService.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxEM.exe (Intel(R) pGFX -> Intel Corporation) C:\Windows\System32\igfxHK.exe (Intel(R) Software -> Intel Corporation) C:\Windows\SysWOW64\esif_uf.exe (Intel(R) Software -> Intel Corporation) C:\Windows\Temp\DPTF\esif_assist.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksdeui.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe (Kaspersky Lab -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avpui.exe (Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe (Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe (Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\Harmony\Picks\HarmonyPicksService.exe (Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\Harmony\Setting\HarmonySettingService.exe (Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\LenovoTransition\TransitionServer.exe (Lenovo (Beijing) Limited -> ) C:\Program Files (x86)\Lenovo\PaperDisplay\PLHotkeyService.exe (Lenovo (Beijing) Limited -> ) C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe (Lenovo (Beijing) Limited -> Lenovo Group Limited) C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\LenovoUtility\utility.exe (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizer.exe (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Program Files\Lenovo\OneKey Optimizer\bin\OnekeyOptimizerUpdata.exe (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe (Lenovo (Beijing) Limited -> Lenovo) C:\Program Files (x86)\Lenovo\Harmony\Picks\Lenovo.HarmonyPicks.exe (Lenovo (Beijing) Limited -> Lenovo) C:\Program Files (x86)\Lenovo\Harmony\Setting\Lenovo.HarmonySetting.exe (Lenovo (Beijing) Limited -> Lenovo) C:\Program Files (x86)\Lenovo\PaperDisplay\PaperLookingSrv.exe (Lenovo (Beijing) Limited -> Lenovo) C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe (Lenovo (Beijing) Limited -> Lenovo) C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe (Lenovo (Beijing) Limited -> Lenovo) C:\Program Files\Lenovo\OneKey Optimizer\bin\FBService.exe (Lenovo (Beijing) Limited -> Lenovo) C:\ProgramData\LenovoTransition\Server\x64\ymc.exe (Lenovo -> ) C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe (LENOVO -> Lenovo Corporation) C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe (LENOVO -> LENOVO INCORPORATED.) C:\Program Files\Lenovo\iMController\SystemAgentService.exe (Malwarebytes Inc -> Malwarebytes) C:\Users\User\Downloads\adwcleaner_7.4.1.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11909.1002.3.0_x64__8wekyb3d8bbwe\WinStore.App.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.YourPhone_1.19082.1010.0_x64__8wekyb3d8bbwe\YourPhone.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wlanext.exe (Node.js Foundation -> Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\libs\node.exe (PointGrab Ltd -> PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe (PointGrab Ltd -> PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe (PointGrab Ltd -> PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\WebcamSplitterServer.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe (Spotify AB) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.115.448.0_x86__zpdnekdrzrea0\Spotify.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe (Synaptics Incorporated -> Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Waves Inc -> Waves Audio Ltd.) C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe ==================== Registry (Nicht auf der Ausnahmeliste) =========================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.) HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [320360 2014-06-25] (Intel Corporation - Intel® Rapid Storage Technology -> Intel Corporation) HKLM\...\Run: [RtHDVBg_BYPASS_AUDIO_EFFECT_WHEN_POWERSAVING] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1396592 2014-09-01] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_MAXX6] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1396592 2014-09-01] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1396592 2014-09-01] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1396592 2014-09-01] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [LENOVO.TPKNRRES] => C:\Program Files\Lenovo\Communications Utility\LibStartStub.dll [87536 2014-08-05] (LENOVO -> Lenovo Corporation) HKLM\...\Run: [LenovoUtility] => C:\Program Files\Lenovo\LenovoUtility\utility.exe [10828056 2014-12-08] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) HKLM\...\Run: [AutoStartTransition] => C:\Program Files (x86)\Lenovo\LenovoTransition\TransitionServer.exe [109840 2014-08-14] (Lenovo (Beijing) Limited -> ) HKLM\...\Run: [PhoneCompanion] => C:\Program Files\Lenovo PhoneCompanion\Phone Companion.exe [802800 2014-12-08] (Lenovo (Beijing) Limited -> Lenovo) HKLM\...\Run: [OneKeyOptimizer] => C:\Program Files\Lenovo\OneKey Optimizer\bin\OneKeyOptimizerTray.exe [461080 2014-09-04] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) HKLM\...\Run: [AdobeGCInvoker-1.0] => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated) HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13763800 2014-10-02] (Realtek Semiconductor Corp -> Realtek Semiconductor) HKLM\...\Run: [WavesSvc] => C:\Program Files\Waves\MaxxAudio\WavesSvc64.exe [608000 2014-10-01] (Waves Inc -> Waves Audio Ltd.) HKLM-x32\...\Run: [HarmonyPicks] => C:\Program Files (x86)\Lenovo\Harmony\Picks\Lenovo.HarmonyPicks.exe [1221912 2014-09-28] (Lenovo (Beijing) Limited -> Lenovo) HKLM-x32\...\Run: [HarmonySetting] => C:\Program Files (x86)\Lenovo\Harmony\Setting\Lenovo.HarmonySetting.exe [2696472 2014-09-28] (Lenovo (Beijing) Limited -> Lenovo) HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2622520 2019-05-19] (Adobe Inc. -> Adobe Inc.) HKLM-x32\...\Run: [TeamsMachineUninstallerLocalAppData] => C:\Users\User\AppData\Local\Microsoft\Teams\Update.exe [1789768 2019-08-24] (Microsoft 3rd Party Application Component -> Microsoft Corporation) HKLM-x32\...\Run: [TeamsMachineUninstallerProgramData] => %ProgramData%\Microsoft\Teams\Update.exe --uninstall --msiUninstall --source=default HKLM\...\Policies\Explorer: [Max Cached Icons] 2000 HKU\S-1-5-21-3419907726-714675222-565836120-1001\...\Run: [f.lux] => C:\Users\User\AppData\Local\FluxSoftware\Flux\flux.exe [1385480 2019-08-30] (F.lux Software LLC -> f.lux Software LLC) HKU\S-1-5-21-3419907726-714675222-565836120-1001\...\Run: [Skype for Desktop] => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe [53646912 2019-06-20] (Skype Software Sarl -> Skype Technologies S.A.) HKU\S-1-5-21-3419907726-714675222-565836120-1001\...\Run: [GoogleDriveSync] => C:\Program Files\Google\Drive\googledrivesync.exe [46993264 2019-06-27] (Google LLC -> ) HKU\S-1-5-21-3419907726-714675222-565836120-1001\...\RunOnce: [Application Restart #4] => C:\Users\User\AppData\Local\SweetLabs App Platform\Engine\ServiceHostApp.exe [8983760 2019-09-19] (Pokki -> Pokki) HKU\S-1-5-21-3419907726-714675222-565836120-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\77.0.3865.90\Installer\chrmstp.exe [2019-09-23] (Google LLC -> Google LLC) HKLM\Software\...\Authentication\Credential Providers: [{50968FF7-10C1-4fb3-98B0-CD654D6CB97E}] -> C:\Program Files\Lenovo\Bluetooth Software\\BtwCP.dll [2014-06-03] (Broadcom Corporation -> Broadcom Corporation.) HKLM\Software\...\Authentication\Credential Providers: [{d0869df6-64b0-4289-b483-9bff61394420}] -> ==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) ============= (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) Task: {05347593-9D0F-49D4-A969-9444DEB3A73C} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [17256 2014-02-13] (Lenovo Information Products (Shenzhen) Co.,Ltd -> Lenovo) Task: {07FCC4BF-1D6C-4274-B1C1-AD192C752A08} - System32\Tasks\Lenovo\Lenovo Service Bridge\S-1-5-21-3419907726-714675222-565836120-1001 => C:\Users\User\AppData\Local\Programs\Lenovo\Lenovo Service Bridge\LSBUpdater.exe Task: {0FF6B18C-D513-4BA3-8B6B-7C3500DAE02C} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1236048 2019-07-24] (Adobe Inc. -> Adobe Systems) Task: {1F6A333B-33E4-4656-82F3-3E07DD241F26} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4467864 2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Task: {20E2A0C6-1573-4465-B59C-457BEB72EBD3} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [117728 2019-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => C:\WINDOWS\System32\AutoWorkplace.exe Task: {4E6BF5C2-4097-443A-8F78-5AF3B5584E11} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files (x86)\Microsoft Office\root\vfs\ProgramFilesCommonx86\Microsoft Shared\Office16\OLicenseHeartbeat.exe [1571464 2019-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {5A3FB241-0B11-4EA5-BC66-0D9F1B406040} - System32\Tasks\Microsoft\Windows\Customer Experience Improvement Program\BthSQM => {C8367320-6F85-11E0-A1F0-0800200C9A66} C:\WINDOWS\System32\BthTelemetry.dll [31232 2018-09-15] (Microsoft Windows -> Microsoft Corporation) Task: {640A6912-E76B-40FE-93AE-11D5500C8B08} - System32\Tasks\Microsoft\Windows\Shell\FamilySafetyUpload => {EBF00FCB-0769-4B81-9BEC-6C05514111AA} Task: {66F74D45-4E4D-4952-BDCC-F66247108742} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1428640 2019-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {6DFCB649-0769-4F83-BB10-F60F235F6D3D} - System32\Tasks\Microsoft\Windows\SkyDrive\Idle Sync Maintenance Task => {BF6C1E47-86EC-4194-9CE5-13C15DCB2001} Task: {755548F7-E77E-42E8-8FA7-4853B1C744B5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-30] (Microsoft Corporation -> Microsoft Corporation) Task: {7E9CA286-563F-4820-A90C-F11A9674F2C7} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [4467864 2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Task: {83A6BAB2-32DD-4F62-897D-CEE16DA5B2B0} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [33536 2014-05-21] (LENOVO -> ) Task: {872D0E53-FD2E-41E3-B431-698AF82882CE} - System32\Tasks\Microsoft\Windows\SkyDrive\Routine Maintenance Task => {1B1F472E-3221-4826-97DB-2C2324D389AE} Task: {961F1A16-B90D-447B-8345-1F6CC0F62F53} - System32\Tasks\AdobeGCInvoker-1.0-User-PC-User => C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGCInvokerUtility.exe [2849872 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated) Task: {B0F8E4C8-412C-4B88-9BB8-C836A36AD5EB} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [117728 2019-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {B7DA9B95-1CAD-41C5-BFA5-650EE0FEB66E} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] (Intel® Services Manager -> ) Task: {C532579F-30FD-4501-9FD8-97C32B5607D5} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files (x86)\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1428640 2019-09-16] (Microsoft Corporation -> Microsoft Corporation) Task: {CE2DE968-E342-40D7-9566-427D45E4A886} - System32\Tasks\Microsoft\Windows\PerfTrack\BackgroundConfigSurveyor => {EA9155A3-8A39-40B4-8963-D3C761B18371} Task: {CE99F90E-ECA2-41A6-B2CA-0D768F525241} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-04] (Google Inc -> Google Inc.) Task: {D23C5AF4-6500-4CF3-B93D-2AF90BA5D078} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] (Intel® Services Manager -> ) Task: {D4B0811E-B5AD-4D87-9D06-9A1FCD9DF921} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [17184 2014-05-30] (LENOVO -> Lenovo) Task: {E5EA419F-0D9B-484C-AB9F-B5F13521502F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [153168 2017-08-04] (Google Inc -> Google Inc.) Task: {E60E967F-BD25-4E33-9521-3FF40D0B2690} - System32\Tasks\AdobeAAMUpdater-1.0-User-PC-User => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated) Task: {E715DE58-D275-4B8E-979F-6F311F9F7426} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [27367016 2019-08-30] (Microsoft Corporation -> Microsoft Corporation) (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.) ==================== Internet (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.) Tcpip\Parameters: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{5FE65AEE-E86E-4DD1-9AF0-9D8D698A0E64}: [DhcpNameServer] 192.168.0.1 0.0.0.0 Tcpip\..\Interfaces\{C1888A37-7F85-4FC9-A0C8-9273B433C789}: [DhcpNameServer] 150.201.1.2 Internet Explorer: ================== HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-3419907726-714675222-565836120-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB HKU\S-1-5-21-3419907726-714675222-565836120-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com HKU\S-1-5-21-3419907726-714675222-565836120-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/de-at/ BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX64\Microsoft Office\Office16\OCHelper.dll [2019-07-03] (Microsoft Corporation -> Microsoft Corporation) BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\root\Office16\OCHelper.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files (x86)\Microsoft Office\root\Office16\MSOSB.DLL [2019-08-29] (Microsoft Corporation -> Microsoft Corporation) Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll Keine Datei FireFox: ======== FF DefaultProfile: farvvsbz.default FF ProfilePath: C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\farvvsbz.default [2019-05-02] FF Homepage: Mozilla\Firefox\Profiles\farvvsbz.default -> hxxps://www.bing.com/?PC=JV03 FF Extension: (Kein Name) - C:\Program Files (x86)\McAfee\SiteAdvisor\e10ssaffplg.xpi [nicht gefunden] FF HKLM\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\FFExt\light_plugin_firefox\addon.xpi FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\FFExt\light_plugin_firefox\addon.xpi [2019-09-24] FF HKLM-x32\...\Firefox\Extensions: [light_plugin_B29D4AD94F82454BBC9215BCBD7E80AE@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\FFExt\light_plugin_firefox\addon.xpi FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2019-05-19] (Adobe Inc. -> Adobe Systems) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-07-03] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-07-03] (Intel® Identity Protection Technology Software -> Intel Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-04-06] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC) FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-07-31] (Adobe Inc. -> Adobe Systems Inc.) FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2019-05-19] (Adobe Inc. -> Adobe Systems) Chrome: ======= CHR StartupUrls: Default -> "hxxp://reuters.com/" CHR Profile: C:\Users\User\AppData\Local\Google\Chrome\User Data\Default [2019-09-25] CHR Extension: (Docs) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-13] CHR Extension: (Google Drive) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-08-04] CHR Extension: (YouTube) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-08-04] CHR Extension: (Adblock Plus - kostenloser Adblocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2019-08-27] CHR Extension: (OneTab) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2019-03-22] CHR Extension: (Adobe Acrobat) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2019-08-24] CHR Extension: (Kaspersky Protection) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\elhpdacimkjpccooodognopfhbdgnpbk [2019-09-24] CHR Extension: (ZenMate VPN - Top Internet Security & Unblock) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\fdcgdnkidjaadafnichfpabhfomcebme [2019-08-12] CHR Extension: (Avira Browserschutz) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\flliilndjeohchalpbbcdekjklbdgfkk [2019-08-24] CHR Extension: (Google Docs Offline) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-10-01] CHR Extension: (Google Notizen – Notizen & Listen) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2019-09-25] CHR Extension: (Colorful) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\ieibgbkkkoghlcplkhpmbdfdopfocfef [2017-10-06] CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2019-05-02] CHR Extension: (Ghostery – datenschutzorientierter Werbeblocker) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij [2019-08-29] CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-04] CHR Extension: (Google Mail) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2019-05-01] CHR Extension: (Chrome Media Router) - C:\Users\User\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-09-24] CHR HKLM\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk CHR HKU\S-1-5-21-3419907726-714675222-565836120-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx CHR HKLM-x32\...\Chrome\Extension: [elhpdacimkjpccooodognopfhbdgnpbk] - hxxps://chrome.google.com/webstore/detail/elhpdacimkjpccooodognopfhbdgnpbk ==================== Dienste (Nicht auf der Ausnahmeliste) ==================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [816184 2019-05-19] (Adobe Inc. -> Adobe Inc.) R2 AGMService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGMService.exe [3117648 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated) R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2888272 2019-07-04] (Adobe Inc. -> Adobe Systems, Incorporated) S3 AVControlCenter; C:\Program Files\Lenovo\Communications Utility\AVControlCenter32.exe [599024 2014-08-05] (LENOVO -> Lenovo Corporation) R2 AVP20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\avp.exe [357416 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-09] (Lenovo (Beijing) Limited -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11568144 2019-08-30] (Microsoft Corporation -> Microsoft Corporation) R2 esifsvc; C:\WINDOWS\SysWOW64\esif_uf.exe [953352 2014-06-10] (Intel(R) Software -> Intel Corporation) R2 FastbootService; C:\Program Files\Lenovo\OneKey Optimizer\bin\FbService.exe [194328 2014-09-10] (Lenovo (Beijing) Limited -> Lenovo) R2 HarmonyPicksService; C:\Program Files (x86)\Lenovo\Harmony\Picks\HarmonyPicksService.exe [17176 2014-08-25] (Lenovo (Beijing) Limited -> ) R2 HarmonySettingService; C:\Program Files (x86)\Lenovo\Harmony\Setting\HarmonySettingService.exe [17688 2014-09-04] (Lenovo (Beijing) Limited -> ) R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373688 2017-06-12] (Intel(R) pGFX -> Intel Corporation) S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel® Trusted Connect Service -> Intel(R) Corporation) R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2014-07-03] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [174368 2014-04-09] (Intel® Services Manager -> ) R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-07-03] (Intel Corporation - Intel® Management Engine Firmware -> Intel Corporation) S3 klvssbridge64_20.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 20.0\x64\vssbridge64.exe [438928 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) R2 KSDE4.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 4.0\ksde.exe [619752 2019-03-21] (Kaspersky Lab -> AO Kaspersky Lab) S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [533760 2014-06-03] (LENOVO -> Lenovo) R2 Lenovo OKO Service; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOUpdataService.exe [2543896 2014-07-31] (Lenovo (Beijing) Limited -> ) R2 Lenovo Settings Service; C:\Program Files\Lenovo\SettingsDependency\SettingsService.exe [2005320 2014-09-26] (Lenovo (Beijing) Limited -> Lenovo Group Limited) R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-21] (LENOVO -> LENOVO INCORPORATED.) S3 LENOVO.TVTVCAM; C:\Program Files\Lenovo\Communications Utility\vcamsvc.exe [727536 2014-08-05] (LENOVO -> Lenovo Corporation) R2 LenovoPAWDService; C:\Program Files\Lenovo PhoneCompanion\LPAWDService.exe [133440 2014-12-08] (Lenovo -> ) R2 LenovoSetSvr; C:\Program Files (x86)\Lenovo\Lenovo Settings\x86\LenovoSetSvr.exe [258544 2014-06-19] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [218952 2014-08-25] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) S2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6347056 2018-09-19] (Malwarebytes Corporation -> Malwarebytes) R2 OKOControlSvc; C:\Program Files\Lenovo\OneKey Optimizer\bin\OKOControlSvc.exe [113944 2014-09-04] (Lenovo (Beijing) Limited -> Lenovo(beijing) Limited) R2 PaperLookingSrv; C:\Program Files (x86)\Lenovo\PaperDisplay\PaperLookingSrv.exe [173336 2014-08-11] (Lenovo (Beijing) Limited -> Lenovo) R2 PGService; C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe [167176 2014-05-28] (PointGrab Ltd -> PointGrab LTD) R2 PG_Service_Launcher; C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe [524552 2014-05-28] (PointGrab Ltd -> PointGrab LTD) R2 PhoneCompanionPusher; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionPusher.exe [321520 2014-12-08] (Lenovo (Beijing) Limited -> Lenovo) S3 PhoneCompanionVap; C:\Program Files\Lenovo PhoneCompanion\PhoneCompanionVap.exe [338416 2014-12-08] (Lenovo (Beijing) Limited -> Lenovo) R2 PLHotkeyService; C:\Program Files (x86)\Lenovo\PaperDisplay\PLHotkeyService.exe [25368 2014-08-11] (Lenovo (Beijing) Limited -> ) R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [255168 2015-10-01] (Synaptics Incorporated -> Synaptics Incorporated) S3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\NisSrv.exe [3630832 2019-09-18] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\ProgramData\Microsoft\Windows Defender\platform\4.18.1908.7-0\MsMpEng.exe [103168 2019-09-18] (Microsoft Windows Publisher -> Microsoft Corporation) R2 ymc; C:\ProgramData\LenovoTransition\Server\x64\ymc.exe [34576 2014-09-03] (Lenovo (Beijing) Limited -> Lenovo) S2 McAfee WebAdvisor; "C:\Program Files\McAfee\WebAdvisor\ServiceHost.exe" [X] ===================== Treiber (Nicht auf der Ausnahmeliste) ====================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) R0 cm_km; C:\WINDOWS\System32\DRIVERS\cm_km.sys [246912 2019-02-16] (Kaspersky Lab -> AO Kaspersky Lab) S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 dptf_cpu; C:\WINDOWS\System32\drivers\dptf_cpu.sys [35136 2014-06-10] (Intel(R) Software -> Intel Corporation) R3 dptf_pch; C:\WINDOWS\System32\drivers\dptf_pch.sys [34072 2014-06-10] (Intel(R) Software -> Intel Corporation) R3 esif_lf; C:\WINDOWS\System32\drivers\esif_lf.sys [192624 2014-06-10] (Intel(R) Software -> Intel Corporation) R0 Fastboot; C:\Windows\System32\Drivers\Fastboot.sys [69144 2014-09-10] (New Horizon DataSys Inc. -> Windows (R) Win 7 DDK provider) [Datei ist nicht signiert] R0 klbackupdisk; C:\WINDOWS\System32\DRIVERS\klbackupdisk.sys [76624 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab) R1 klbackupflt; C:\WINDOWS\System32\DRIVERS\klbackupflt.sys [129152 2019-08-01] (Kaspersky Lab -> AO Kaspersky Lab) R1 kldisk; C:\WINDOWS\system32\DRIVERS\kldisk.sys [93312 2019-03-12] (Kaspersky Lab -> AO Kaspersky Lab) S0 klelam; C:\WINDOWS\System32\DRIVERS\klelam.sys [37816 2019-01-24] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R3 klflt; C:\WINDOWS\system32\DRIVERS\klflt.sys [251520 2019-08-03] (Kaspersky Lab -> AO Kaspersky Lab) R1 klgse; C:\WINDOWS\System32\DRIVERS\klgse.sys [514688 2019-06-13] (Kaspersky Lab -> AO Kaspersky Lab) R1 klhk; C:\WINDOWS\system32\DRIVERS\klhk.sys [1204856 2019-09-12] (Kaspersky Lab -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP20.0\Bases\klids.sys [197760 2019-09-24] (Kaspersky Lab -> AO Kaspersky Lab) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [996992 2019-08-03] (Kaspersky Lab -> AO Kaspersky Lab) R1 klim6; C:\WINDOWS\system32\DRIVERS\klim6.sys [58192 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab) R3 klkbdflt; C:\WINDOWS\system32\DRIVERS\klkbdflt.sys [79184 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab) R3 klmouflt; C:\WINDOWS\system32\DRIVERS\klmouflt.sys [59512 2019-03-18] (Kaspersky Lab -> AO Kaspersky Lab) R1 klpd; C:\WINDOWS\System32\DRIVERS\klpd.sys [51328 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab) S3 klpnpflt; C:\WINDOWS\system32\DRIVERS\klpnpflt.sys [45904 2019-03-10] (Kaspersky Lab -> AO Kaspersky Lab) R3 kltap; C:\WINDOWS\System32\drivers\kltap.sys [48592 2018-03-16] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\WINDOWS\System32\Drivers\klupd_klif_arkmon.sys [245272 2019-09-24] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_kimul; C:\WINDOWS\System32\Drivers\klupd_klif_kimul.sys [99152 2019-09-24] (Kaspersky Lab -> AO Kaspersky Lab) S3 klupd_klif_klark; C:\WINDOWS\System32\Drivers\klupd_klif_klark.sys [302368 2019-09-24] (Kaspersky Lab -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\WINDOWS\System32\Drivers\klupd_klif_klbg.sys [116104 2019-09-24] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\WINDOWS\System32\Drivers\klupd_klif_mark.sys [198768 2019-09-24] (Kaspersky Lab -> AO Kaspersky Lab) R3 klupd_klif_swmon; C:\WINDOWS\System32\Drivers\klupd_klif_swmon.sys [216632 2019-09-25] (Kaspersky Lab -> AO Kaspersky Lab) R1 klwfp; C:\WINDOWS\system32\DRIVERS\klwfp.sys [105600 2019-03-05] (Kaspersky Lab -> AO Kaspersky Lab) R1 klwtp; C:\WINDOWS\system32\DRIVERS\klwtp.sys [210280 2019-03-13] (Kaspersky Lab -> AO Kaspersky Lab) R3 KMDFVirtualKbd; C:\WINDOWS\System32\drivers\KMDFVirtualKbd.sys [22264 2014-08-04] (Lenovo (Beijing) Limited -> ) R3 KMDFVirtualMouse; C:\WINDOWS\System32\drivers\KMDFVirtualMouse.sys [21240 2014-08-04] (Lenovo (Beijing) Limited -> ) R1 kneps; C:\WINDOWS\system32\DRIVERS\kneps.sys [232272 2019-03-19] (Kaspersky Lab -> AO Kaspersky Lab) S3 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [140672 2016-03-10] (Malwarebytes Corporation -> Malwarebytes) R3 mxtBootBridge; C:\WINDOWS\System32\drivers\mxtBootBridge.sys [36160 2013-12-18] (ATMEL CORPORATION -> Atmel Corporation) S3 NETwNe64; C:\WINDOWS\system32\DRIVERS\NETwew01.sys [3343872 2018-09-15] (Microsoft Windows -> Intel Corporation) S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.) R3 SynRMIHID; C:\WINDOWS\system32\DRIVERS\SynRMIHID.sys [65728 2015-10-01] (Synaptics Incorporated -> Synaptics Incorporated) S3 USBAAPL64; C:\WINDOWS\System32\Drivers\usbaapl64.sys [54784 2018-04-17] (Apple, Inc.) [Datei ist nicht signiert] S3 WdBoot; C:\WINDOWS\system32\drivers\wd\WdBoot.sys [46472 2019-09-18] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\WINDOWS\system32\drivers\wd\WdFilter.sys [346336 2019-09-18] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\WINDOWS\System32\drivers\wd\WdNisDrv.sys [53984 2019-09-18] (Microsoft Windows -> Microsoft Corporation) S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-13] (CyberLink -> "CyberLink) ==================== NetSvcs (Nicht auf der Ausnahmeliste) =================== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.) ==================== Ein Monat (erstellte) ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2019-09-25 22:06 - 2019-09-25 22:08 - 000042714 _____ C:\Users\User\Downloads\FRST.txt 2019-09-25 22:05 - 2019-09-25 22:06 - 000000000 ____D C:\FRST 2019-09-25 22:04 - 2019-09-25 22:04 - 001615872 _____ (Farbar) C:\Users\User\Downloads\FRST64.exe 2019-09-25 21:58 - 2019-09-25 22:00 - 000000000 ____D C:\AdwCleaner 2019-09-25 21:57 - 2019-09-25 21:57 - 007636680 _____ (Malwarebytes) C:\Users\User\Downloads\adwcleaner_7.4.1.exe 2019-09-25 21:55 - 2019-09-25 21:55 - 000000000 ____D C:\ProgramData\MB3Migration 2019-09-25 21:55 - 2019-09-25 21:55 - 000000000 ____D C:\ProgramData\MB3CoreBackup 2019-09-25 21:50 - 2016-03-10 14:08 - 000140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2019-09-25 21:49 - 2019-09-25 21:49 - 000001923 _____ C:\Users\Public\Desktop\Malwarebytes.lnk 2019-09-25 21:49 - 2019-09-25 21:49 - 000001923 _____ C:\ProgramData\Desktop\Malwarebytes.lnk 2019-09-25 21:49 - 2019-09-25 21:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes 2019-09-25 21:48 - 2018-12-04 08:09 - 000152688 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbae64.sys 2019-09-25 20:54 - 2019-09-25 20:54 - 000216632 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_swmon.sys 2019-09-25 20:52 - 2019-09-25 20:52 - 000000000 ____D C:\ProgramData\MB2Migration 2019-09-25 20:52 - 2019-09-25 20:52 - 000000000 ____D C:\Program Files\Malwarebytes 2019-09-25 20:47 - 2019-09-25 20:47 - 006705178 _____ C:\Users\User\Downloads\mbam-chameleon-3.1.33.0.zip 2019-09-25 20:47 - 2019-09-25 20:47 - 000000000 ____D C:\Users\User\Downloads\mbam-chameleon-3.1.33.0 2019-09-25 20:31 - 2019-09-25 21:48 - 000000000 ____D C:\ProgramData\Malwarebytes 2019-09-24 22:38 - 2019-09-25 22:01 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-shm 2019-09-24 22:38 - 2019-09-25 22:01 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-shm 2019-09-24 22:38 - 2019-09-25 22:01 - 000032768 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-shm 2019-09-24 22:38 - 2019-09-24 22:38 - 000012288 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb 2019-09-24 22:38 - 2019-09-24 22:38 - 000012288 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb 2019-09-24 22:38 - 2019-09-24 22:38 - 000012288 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb 2019-09-24 22:38 - 2019-09-24 22:38 - 000000000 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.product_registry.kvdb-wal 2019-09-24 22:38 - 2019-09-24 22:38 - 000000000 _____ C:\WINDOWS\SysWOW64\antimalware.unwanted_products.browser_extension_registry.kvdb-wal 2019-09-24 22:38 - 2019-09-24 22:38 - 000000000 _____ C:\WINDOWS\SysWOW64\antimalware.patch_management.product_registry.kvdb-wal 2019-09-24 20:55 - 2019-09-24 20:55 - 000302368 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klark.sys 2019-09-24 20:54 - 2019-09-24 20:54 - 000198768 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_mark.sys 2019-09-24 20:54 - 2019-09-24 20:54 - 000116104 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_klbg.sys 2019-09-24 20:54 - 2019-09-24 20:54 - 000099152 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_kimul.sys 2019-09-24 20:54 - 2019-09-24 20:54 - 000000000 ____D C:\Program Files\Common Files\AV 2019-09-24 20:53 - 2019-09-24 20:53 - 000002313 _____ C:\Users\Public\Desktop\Kaspersky Passwords.lnk 2019-09-24 20:53 - 2019-09-24 20:53 - 000002313 _____ C:\ProgramData\Desktop\Kaspersky Passwords.lnk 2019-09-24 20:53 - 2019-09-24 20:53 - 000002181 _____ C:\Users\Public\Desktop\Kaspersky Security Cloud.lnk 2019-09-24 20:53 - 2019-09-24 20:53 - 000002181 _____ C:\ProgramData\Desktop\Kaspersky Security Cloud.lnk 2019-09-24 20:53 - 2019-09-24 20:53 - 000001264 _____ C:\Users\Public\Desktop\Kaspersky Secure Connection.lnk 2019-09-24 20:53 - 2019-09-24 20:53 - 000001264 _____ C:\ProgramData\Desktop\Kaspersky Secure Connection.lnk 2019-09-24 20:53 - 2019-09-24 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Security Cloud 2019-09-24 20:53 - 2019-09-24 20:53 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Kaspersky Secure Connection 2019-09-24 20:53 - 2013-05-06 08:13 - 000110176 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\klfphc.dll 2019-09-24 20:52 - 2019-09-25 22:06 - 000000000 ____D C:\ProgramData\Kaspersky Lab 2019-09-24 20:52 - 2019-09-24 20:53 - 000000000 ____D C:\Program Files (x86)\Kaspersky Lab 2019-09-24 20:52 - 2019-09-24 20:51 - 000245272 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klupd_klif_arkmon.sys 2019-09-24 20:51 - 2019-08-03 00:29 - 000996992 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klif.sys 2019-09-24 20:51 - 2019-08-03 00:29 - 000251520 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klflt.sys 2019-09-24 20:48 - 2019-09-24 20:48 - 002886040 _____ (Kaspersky Lab) C:\Users\User\Downloads\ks3.020.0.14.1085aen_es_fr_19095.exe 2019-09-24 20:48 - 2019-09-24 20:48 - 000000000 ____D C:\ProgramData\Kaspersky Lab Setup Files 2019-09-23 03:55 - 2019-09-23 03:55 - 000084784 _____ C:\Users\User\Downloads\registration-form-town-hall-thehague.pdf 2019-09-23 03:34 - 2019-08-08 12:26 - 001098499 _____ C:\Users\User\Downloads\Huurcontract_Tenancy agreement - Kopie.pdf 2019-09-21 16:16 - 2019-09-21 16:15 - 000124715 _____ C:\Users\User\Downloads\Document to reclaim Acceptance Fee.pdf 2019-09-21 16:08 - 2019-09-21 16:08 - 000256468 _____ C:\Users\User\Downloads\VISA_2019_09_REF_NR_156c8c94136.pdf 2019-09-20 16:40 - 2019-09-20 16:40 - 000157749 _____ C:\Users\User\Documents\.RData 2019-09-16 23:23 - 2019-09-16 23:23 - 000002594 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Word.lnk 2019-09-16 23:23 - 2019-09-16 23:23 - 000002590 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Excel.lnk 2019-09-16 23:23 - 2019-09-16 23:23 - 000002569 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PowerPoint.lnk 2019-09-16 23:23 - 2019-09-16 23:23 - 000002547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype for Business.lnk 2019-09-16 23:23 - 2019-09-16 23:23 - 000002544 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Publisher.lnk 2019-09-16 23:23 - 2019-09-16 23:23 - 000002511 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Access.lnk 2019-09-16 23:23 - 2019-09-16 23:23 - 000002508 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneNote 2016.lnk 2019-09-16 23:23 - 2019-09-16 23:23 - 000002480 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Outlook.lnk 2019-09-16 23:23 - 2019-09-16 23:23 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Tools 2019-09-16 17:14 - 2019-09-16 17:14 - 000027808 _____ C:\Users\User\Downloads\Formular_Wahl_Stimmkarte_Antrag_V2_0.xml 2019-09-16 14:09 - 2019-09-16 14:09 - 003201209 _____ C:\Users\User\Downloads\kupdf.net_ib-grade-9-math-book-chapter1.pdf 2019-09-11 00:37 - 2019-09-11 00:37 - 026808320 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 023453696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 020817408 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 019011584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 012939776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 012244992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 008903680 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 007921664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 007871488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 006542464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Protection.PlayReady.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 006065664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 005597808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 005436696 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 004874752 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 004488192 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsrchvw.exe 2019-09-11 00:37 - 2019-09-11 00:37 - 003702784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 003550384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfcore.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 003442176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsrchvw.exe 2019-09-11 00:37 - 2019-09-11 00:37 - 003096576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 002469432 _____ (Microsoft Corporation) C:\WINDOWS\system32\msmpeg2vdec.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 002323696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msmpeg2vdec.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 002279296 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 002127360 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 002099752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 002086400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\xpsservices.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001782272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001764352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001655976 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001604760 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfplat.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001573240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\propsys.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001521664 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_fs.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001465472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32full.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001388032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvruserservice.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001312256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msjet40.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001309696 _____ (Microsoft Corporation) C:\WINDOWS\system32\webplatstorageserver.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001307648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsp_health.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001297120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001272560 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdrecordcpu.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001221528 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe 2019-09-11 00:37 - 2019-09-11 00:37 - 001132032 _____ (Microsoft Corporation) C:\WINDOWS\system32\nettrace.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001075832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mfsvr.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 001071616 _____ (Microsoft Corporation) C:\WINDOWS\HelpPane.exe 2019-09-11 00:37 - 2019-09-11 00:37 - 001047552 _____ (Microsoft Corporation) C:\WINDOWS\system32\clusapi.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000988672 _____ (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000968192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Unistore.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000914432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Microsoft.Graphics.Display.DisplayEnhancementService.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000912384 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeManager.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000883200 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000833024 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webplatstorageserver.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000798736 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fvevol.sys 2019-09-11 00:37 - 2019-09-11 00:37 - 000793600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\clusapi.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000774968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Services.TargetedContent.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\nshwfp.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000703488 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000690688 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\CPFilters.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000682496 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\uReFS.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000663040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\EdgeManager.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000660544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe 2019-09-11 00:37 - 2019-09-11 00:37 - 000652832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppXDeploymentClient.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000626176 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\resutils.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000605184 _____ (Microsoft Corporation) C:\WINDOWS\system32\facecredentialprovider.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000532992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000525824 _____ (Microsoft Corporation) C:\WINDOWS\system32\nltest.exe 2019-09-11 00:37 - 2019-09-11 00:37 - 000489984 _____ (Microsoft Corporation) C:\WINDOWS\system32\ResourceMapper.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000480256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\resutils.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000475648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxbde40.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000450872 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000449376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppResolver.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000439808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ngccredprov.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000425472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\daxexec.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000409256 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsmf.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000386048 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\SysWOW64\curl.exe 2019-09-11 00:37 - 2019-09-11 00:37 - 000353280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd3x40.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000349144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tsmf.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgeIso.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000322048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\cryptngc.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000313344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msrd2x40.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000272648 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ttdwriter.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000195224 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecurityCenterBroker.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000154624 _____ (Microsoft Corporation) C:\WINDOWS\system32\fcon.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000144080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\imm32.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000140088 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmapi.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000106048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\OpenWith.exe 2019-09-11 00:37 - 2019-09-11 00:37 - 000098080 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Graphics.Display.BrightnessOverride.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000091136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\drvsetup.dll 2019-09-11 00:37 - 2019-09-11 00:37 - 000080896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mcbuilder.exe 2019-09-11 00:37 - 2019-09-11 00:37 - 000078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\ComputerDefaults.exe 2019-09-11 00:37 - 2019-09-11 00:37 - 000066048 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ComputerDefaults.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 022124760 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 017484800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 015221248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 009679672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 007886848 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 007690648 _____ (Microsoft Corporation) C:\WINDOWS\system32\windows.storage.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 007645392 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 006444544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 006310064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\windows.storage.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 005573232 _____ (Microsoft Corporation) C:\WINDOWS\system32\StartTileData.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 005569024 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 004588752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 004353016 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 004056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\EdgeContent.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 003821728 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\explorer.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 003634688 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 003490816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 003385856 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 003333984 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 003082752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 002924344 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 002879488 _____ (Microsoft Corporation) C:\WINDOWS\system32\xpsservices.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 002871608 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 002779488 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 002706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\win32kfull.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 002700784 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 002693120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebRuntimeManager.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 002645504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 002593032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\combase.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 002421248 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 002233688 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 002192384 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 002085168 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEng.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 002073240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001994768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001966096 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\refs.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 001929728 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001904128 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001899152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioEng.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001893376 _____ (Microsoft Corporation) C:\WINDOWS\system32\wevtsvc.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001864192 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001743168 _____ (Microsoft Corporation) C:\WINDOWS\system32\propsys.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001721360 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001702096 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi 2019-09-11 00:36 - 2019-09-11 00:36 - 001687552 _____ (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001674480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001668752 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001641400 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001608192 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001563880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdrecordcpu.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001551360 _____ (Microsoft Corporation) C:\WINDOWS\system32\SpeechPal.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001484592 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001472576 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 001388544 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001387512 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001344960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi 2019-09-11 00:36 - 2019-09-11 00:36 - 001331536 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001318400 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001294280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001256960 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.Handlers.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001253688 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvix64.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 001191512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ucrtbase.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001182240 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 001180248 _____ (Microsoft Corporation) C:\WINDOWS\system32\rpcrt4.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001171968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Unistore.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001098136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AudioSes.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001081656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Services.TargetedContent.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001054952 _____ (Microsoft Corporation) C:\WINDOWS\system32\ApplyTrustOffline.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 001052160 _____ (Microsoft Corporation) C:\WINDOWS\system32\MPSSVC.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001048888 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvax64.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 001022824 _____ (Microsoft Corporation) C:\WINDOWS\system32\ucrtbase.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 001010688 _____ (Microsoft Corporation) C:\WINDOWS\system32\refsutil.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000948224 _____ (Microsoft Corporation) C:\WINDOWS\system32\uDWM.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000900096 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000888120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pidgenx.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000865576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000851272 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000848896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Signals.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000811024 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000807760 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000806568 _____ C:\WINDOWS\SysWOW64\locale.nls 2019-09-11 00:36 - 2019-09-11 00:36 - 000806568 _____ C:\WINDOWS\system32\locale.nls 2019-09-11 00:36 - 2019-09-11 00:36 - 000800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\uReFS.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000794112 _____ (Microsoft Corporation) C:\WINDOWS\system32\LogonController.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000793824 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000791352 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000782968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rpcrt4.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000779776 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000774192 _____ (Microsoft Corporation) C:\WINDOWS\system32\pkeyhelper.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000773632 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000764416 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatehandlers.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000751928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000749568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000741392 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_StorageSense.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000740904 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000736768 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockController.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000736056 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicensingWinRT.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000689664 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActivationManager.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000675096 _____ (Microsoft Corporation) C:\WINDOWS\system32\StructuredQuery.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000652600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000652304 _____ (Microsoft Corporation) C:\WINDOWS\system32\securekernel.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000646656 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32time.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000637752 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000622392 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicensingWinRT.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000622080 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnrSvc.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000616448 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000607744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\nshwfp.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000606088 _____ (Microsoft Corporation) C:\WINDOWS\system32\directmanipulation.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000604344 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000603784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleaut32.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000595456 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000591160 _____ (Microsoft Corporation) C:\WINDOWS\system32\hal.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000589312 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ActivationManager.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000585184 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppResolver.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000574464 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000572416 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000558592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngccredprov.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000554000 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000540240 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\StructuredQuery.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000535056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000532192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mf.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000520208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\Vid.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000519168 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppcext.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000515960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\directmanipulation.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000515152 _____ (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000513336 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000511288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcntel.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000506200 _____ (Microsoft Corporation) C:\WINDOWS\system32\mf.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000505128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64win.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000497152 _____ (Microsoft Corporation) C:\WINDOWS\system32\NgcCtnr.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000484352 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000464912 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000449024 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgeIso.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000435712 _____ (Microsoft Corporation) C:\WINDOWS\system32\cryptngc.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000421376 _____ (curl, hxxps://curl.haxx.se/) C:\WINDOWS\system32\curl.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000415544 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\aepic.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000405304 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000402368 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000398208 _____ (Microsoft Corporation) C:\WINDOWS\system32\SgrmEnclave_secure.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000378368 _____ (Microsoft Corporation) C:\WINDOWS\system32\provengine.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000360960 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceEnroller.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000351432 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Storage.ApplicationData.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000347576 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000346624 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxAllUserStore.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000330672 _____ (Microsoft Corporation) C:\WINDOWS\system32\ttdwriter.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000330592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wow64.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000324408 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000312832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000294728 _____ (Microsoft Corporation) C:\WINDOWS\system32\skci.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000293376 _____ (Microsoft Corporation) C:\WINDOWS\system32\TDLMigration.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000279416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Storage.ApplicationData.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000275968 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.AppDefaults.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000273920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\AppxAllUserStore.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_ManagePhone.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000251904 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000248832 _____ (Microsoft Corporation) C:\WINDOWS\system32\w32tm.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000240128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winnat.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\provisioningcsp.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000224768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ptpprov.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000211968 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\w32tm.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000209920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\SecureTimeAggregator.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcpopkeysrv.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000177176 _____ (Microsoft Corporation) C:\WINDOWS\system32\imm32.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000175616 _____ (Microsoft Corporation) C:\WINDOWS\system32\NcaSvc.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000168248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmapi.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000164504 _____ (Microsoft Corporation) C:\WINDOWS\system32\vertdll.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000164152 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000163328 _____ (Microsoft Corporation) C:\WINDOWS\system32\profext.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000157696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000140600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000133632 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\profext.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000130872 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Graphics.Display.BrightnessOverride.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000130560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmredir.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000128512 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Storage.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000120832 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatecsp.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000120344 _____ (Microsoft Corporation) C:\WINDOWS\system32\OpenWith.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvsetup.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000099840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiCx.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcbuilder.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000090632 _____ (Microsoft Corporation) C:\WINDOWS\system32\hvloader.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000087056 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\winhvr.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000071696 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32appinventorycsp.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll 2019-09-11 00:36 - 2019-09-11 00:36 - 000036152 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe 2019-09-11 00:36 - 2019-09-11 00:36 - 000031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\UcmUcsiAcpiClient.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ws2ifsl.sys 2019-09-11 00:36 - 2019-09-11 00:36 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth8.bin 2019-09-11 00:36 - 2019-09-11 00:36 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth7.bin 2019-09-11 00:36 - 2019-09-11 00:36 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth6.bin 2019-09-11 00:36 - 2019-09-11 00:36 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth5.bin 2019-09-11 00:36 - 2019-09-11 00:36 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth4.bin 2019-09-11 00:36 - 2019-09-11 00:36 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth3.bin 2019-09-11 00:36 - 2019-09-11 00:36 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth2.bin 2019-09-11 00:36 - 2019-09-11 00:36 - 000000315 _____ C:\WINDOWS\system32\DrtmAuth1.bin 2019-09-03 13:33 - 2019-09-03 13:33 - 000000000 ____D C:\Users\User\AppData\Roaming\R 2019-09-03 12:45 - 2019-09-15 11:45 - 000000000 ____D C:\Users\User\Desktop\LUC 2019-09-03 12:40 - 2019-09-03 12:40 - 000000794 _____ C:\Users\User\Documents\Downloads - Verknüpfung.lnk 2019-09-03 12:39 - 2019-09-20 16:40 - 000007504 _____ C:\Users\User\Documents\.Rhistory 2019-09-03 12:39 - 2019-09-20 16:40 - 000000000 ____D C:\Users\User\AppData\Roaming\RStudio 2019-09-03 12:39 - 2019-09-20 16:40 - 000000000 ____D C:\Users\User\AppData\Local\RStudio-Desktop 2019-09-03 12:39 - 2019-09-03 12:39 - 000000000 ____D C:\Users\User\Documents\R 2019-09-02 20:03 - 2019-09-02 20:03 - 000000000 ____D C:\Users\User\Documents\Benutzerdefinierte Office-Vorlagen 2019-08-30 11:22 - 2019-08-30 11:22 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RStudio 2019-08-30 11:20 - 2019-08-30 11:22 - 000000000 ____D C:\Program Files\RStudio 2019-08-30 11:16 - 2019-08-30 11:17 - 133103936 _____ (RStudio, Inc.) C:\Users\User\Downloads\RStudio-1.2.1335.exe 2019-08-30 11:14 - 2019-08-30 11:14 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R Statistics 2019-08-30 11:13 - 2019-08-30 11:13 - 000000000 ____D C:\Program Files\R 2019-08-30 11:12 - 2019-08-30 11:12 - 084681344 _____ (R Core Team ) C:\Users\User\Downloads\R-3.6.1-win.exe 2019-08-29 01:08 - 2019-08-29 01:08 - 000000000 ___HD C:\$WINDOWS.~BT 2019-08-28 12:41 - 2019-08-28 12:41 - 000038640 _____ C:\Users\User\Downloads\Studienbestätigung 2019WS.pdf 2019-08-28 12:41 - 2019-08-28 12:41 - 000038527 _____ C:\Users\User\Downloads\Studienbestätigung 2019S.pdf 2019-08-28 11:54 - 2019-08-28 11:54 - 000068924 _____ C:\Users\User\Downloads\meinelba_umsaetze_AT113236700000048199_suche.csv 2019-08-28 11:53 - 2019-08-28 11:53 - 000039699 _____ C:\Users\User\Downloads\umsatzliste_2019-07.pdf ==================== Ein Monat (geänderte) ======== (Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.) 2019-09-25 22:10 - 2017-07-12 03:40 - 109053831 _____ C:\Users\Public\Documents\TestPicksStart.txt 2019-09-25 22:06 - 2018-10-25 13:19 - 000037878 _____ C:\IFRToolLog.txt 2019-09-25 22:04 - 2019-05-02 13:53 - 000000000 ___RD C:\Users\User\Google Drive 2019-09-25 22:02 - 2017-07-12 03:36 - 000002315 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Harmony Picks Introduction.lnk 2019-09-25 22:02 - 2017-07-12 03:36 - 000001419 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Harmony Settings Introduction.lnk 2019-09-25 22:01 - 2019-05-02 17:52 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT 2019-09-25 22:01 - 2018-09-15 09:33 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2019-09-25 22:01 - 2018-09-15 08:09 - 000786432 _____ C:\WINDOWS\system32\config\BBI 2019-09-25 22:01 - 2017-07-26 07:08 - 000000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat 2019-09-25 22:01 - 2017-07-12 03:35 - 000000000 __SHD C:\Users\User\IntelGraphicsProfiles 2019-09-25 22:00 - 2013-08-22 17:36 - 000000000 ____D C:\WINDOWS\system32\Tasks_Migrated 2019-09-25 21:49 - 2019-05-02 17:55 - 001725104 _____ C:\WINDOWS\system32\PerfStringBackup.INI 2019-09-25 21:49 - 2018-09-15 19:33 - 000746398 _____ C:\WINDOWS\system32\perfh007.dat 2019-09-25 21:49 - 2018-09-15 19:33 - 000150670 _____ C:\WINDOWS\system32\perfc007.dat 2019-09-25 21:49 - 2018-09-15 09:31 - 000000000 ____D C:\WINDOWS\INF 2019-09-25 21:45 - 2017-07-12 03:35 - 000000000 ____D C:\Users\User\AppData\Local\SweetLabs App Platform 2019-09-25 21:42 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\schemas 2019-09-25 21:34 - 2019-05-02 17:45 - 000000000 ____D C:\WINDOWS\system32\SleepStudy 2019-09-25 21:14 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\AppReadiness 2019-09-25 21:12 - 2018-09-15 09:33 - 000000000 ___HD C:\Program Files\WindowsApps 2019-09-25 21:06 - 2019-08-24 17:32 - 000000000 ____D C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft Corporation 2019-09-25 21:04 - 2019-05-02 21:38 - 000000000 ____D C:\WINDOWS\Minidump 2019-09-25 20:52 - 2018-09-15 09:33 - 000000000 ___HD C:\WINDOWS\ELAMBKUP 2019-09-25 20:32 - 2019-05-04 12:36 - 000000000 ___HD C:\Users\User\Documents\.tmp.drivedownload 2019-09-25 18:43 - 2017-07-12 03:35 - 000000000 ____D C:\Users\User\AppData\Local\Packages 2019-09-24 20:53 - 2018-09-15 08:09 - 000032768 _____ C:\WINDOWS\system32\config\ELAM 2019-09-23 23:08 - 2017-08-04 15:32 - 000002304 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2019-09-23 03:41 - 2019-08-01 22:42 - 001098499 _____ C:\Users\User\Downloads\Huurcontract_Tenancy agreement.pdf 2019-09-22 15:30 - 2019-05-04 12:39 - 000000000 ___HD C:\Users\User\Desktop\.tmp.drivedownload 2019-09-18 06:14 - 2019-05-02 17:52 - 000000000 ____D C:\WINDOWS\system32\Drivers\wd 2019-09-16 23:21 - 2014-12-08 21:10 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2019-09-16 15:13 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\LiveKernelReports 2019-09-15 16:25 - 2019-05-12 18:24 - 000000000 ___RD C:\Users\User\OneDrive 2019-09-15 16:25 - 2019-05-02 17:49 - 000002425 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk 2019-09-13 01:09 - 2019-05-02 17:52 - 000000000 ___RD C:\Users\User\3D Objects 2019-09-13 01:09 - 2017-07-12 03:35 - 000000000 __RHD C:\Users\Public\AccountPictures 2019-09-13 01:08 - 2019-05-02 17:45 - 000463176 _____ C:\WINDOWS\system32\FNTCACHE.DAT 2019-09-13 01:08 - 2018-09-15 09:33 - 000000000 ___SD C:\WINDOWS\system32\DiagSvcs 2019-09-13 01:08 - 2018-09-15 09:33 - 000000000 ___RD C:\WINDOWS\ImmersiveControlPanel 2019-09-13 01:08 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\SysWOW64\Dism 2019-09-13 01:08 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\system32\oobe 2019-09-13 01:08 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellExperiences 2019-09-13 01:08 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\ShellComponents 2019-09-13 01:08 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\PolicyDefinitions 2019-09-13 01:08 - 2018-09-15 09:33 - 000000000 ____D C:\WINDOWS\bcastdvr 2019-09-13 01:08 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\system32\Dism 2019-09-12 14:17 - 2019-06-11 14:41 - 000000000 ____D C:\Users\User\Documents\UNI 2019-09-12 05:49 - 2019-06-13 08:30 - 001204856 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\Drivers\klhk.sys 2019-09-12 05:49 - 2019-06-13 08:30 - 000170104 _____ (AO Kaspersky Lab) C:\WINDOWS\system32\klhkum.dll 2019-09-11 15:01 - 2019-08-25 22:59 - 000000000 ____D C:\Users\User\Documents\LUC 2019-09-11 00:40 - 2018-09-15 09:23 - 000000000 ____D C:\WINDOWS\CbsTemp 2019-09-04 21:44 - 2018-09-15 09:36 - 000835480 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe 2019-09-04 21:44 - 2018-09-15 09:36 - 000179816 _____ (Adobe) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl 2019-09-04 08:07 - 2019-03-27 01:04 - 000002200 _____ C:\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk 2019-09-03 12:47 - 2018-06-09 21:52 - 000000000 ____D C:\Users\User\AppData\LocalLow\Mozilla 2019-08-29 01:08 - 2019-05-02 15:33 - 000000000 ___DC C:\WINDOWS\Panther 2019-08-29 00:43 - 2018-09-15 08:09 - 000000000 ____D C:\WINDOWS\servicing 2019-08-29 00:38 - 2019-08-01 14:56 - 000212992 _____ C:\WINDOWS\system32\ClickToRun_Pipeline16 ==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ================ 2017-07-26 11:39 - 2017-07-26 11:39 - 000000036 _____ () C:\Program Files\smaple.txt 2019-02-08 02:04 - 2019-03-20 01:33 - 000000033 _____ () C:\Users\User\AppData\Roaming\AdobeWLCMCache.dat 2019-02-08 01:51 - 2019-02-08 01:51 - 000000410 _____ () C:\Users\User\AppData\Local\oobelibMkey.log ==================== SigCheck =============================== (Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.) ==================== Ende von FRST.txt ============================ 4. Addition.txt Thank you so much for your help in advance! All the best Alina
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.