| |
| |||||||
Log-Analyse und Auswertung: Windows 11: Firefox Google WebhpWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML |
 |
22.09.2023, 05:54
| #1 |
| |  Windows 11: Firefox Google Webhp Guten Morgen, Seit gestern habe ich google/webhp zu Gast auf mein Rechner. Betroffener Browser ist FF. Wie gefordert die FRST Logs. Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 20-09-2023
durchgeführt von russo (Administrator) auf THISISMYHOUSE (CSL-Computer GmbH & Co. KG V28614) (22-09-2023 06:42:27)
Gestartet von C:\Users\russo\Desktop\FRST64.exe
Geladene Profile: russo
Plattform: Microsoft Windows 11 Home Version 22H2 22621.2283 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: FF
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Adobe Inc. -> Adobe Inc.) C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\Program Files (x86)\Battle.net\Battle.net.exe <5>
(Blizzard Entertainment, Inc. -> Blizzard Entertainment) C:\ProgramData\Battle.net\Agent\Agent.8390\Agent.exe
(C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\SwAgent\ArmourySwAgent.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe ->) (OpenJS Foundation -> Node.js) C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe
(C:\Program Files\Adobe\Adobe Creative Cloud Experience\libs\node.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\IPCBox\AdobeIPCBroker.exe
(C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.UserSessionHelper.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.312\GoogleCrashHandler64.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe <2>
(Nvidia Corporation -> Node.js) C:\Program Files (x86)\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(services.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUS Inc.) C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.20\AsusFanControlService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\AXSP\4.02.23\atkexComSvc.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\LightingService\LightingService.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.) C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe
(services.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe
(services.exe ->) (HP Inc. -> HP Inc.) C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe
(services.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe
(services.exe ->) (Nvidia Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <2>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_97c24e8dfa98e686\Display.NvContainer\NVDisplay.Container.exe <2>
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2337.7.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> ) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\XboxGameBarSpotify.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x64.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ) C:\Program Files\ASUS\KINGSTON_Aac_DRAM\AacKingstonDramHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUS) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Compputer Inc.) C:\Program Files\ASUS\AacMB\Aac3572MbHal_x86.exe <2>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe <5>
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\AacExtCard\extensionCardHal_x86.exe
(svchost.exe ->) (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.) C:\Program Files\ASUS\ASUS_Aac_DRAM\Aac3572DramHal_x86.exe
(svchost.exe ->) (Microsoft Windows -> ) C:\Program Files\WindowsApps\MicrosoftWindows.Client.WebExperience_423.23500.0.0_x64__cw5n1h2txyewy\Dashboard\WidgetService.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\SystemApps\Microsoft.Windows.AppRep.ChxApp_cw5n1h2txyewy\CHXSmartScreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-11] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2023-06-03] (Adobe Inc. -> )
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2023-09-21] (Adobe Inc. -> Adobe Inc.)
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\Run: [OneDrive] => C:\Program Files\Microsoft OneDrive\OneDrive.exe [2607648 2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\Run: [Battle.net] => C:\Program Files (x86)\Battle.net\Battle.net.exe [978560 2023-09-20] (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\Run: [Overwolf] => C:\Program Files (x86)\Overwolf\OverwolfLauncher.exe [1785864 2023-09-14] (Overwolf Ltd -> Overwolf Ltd.)
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\Run: [Discord] => C:\Users\russo\AppData\Local\Discord\Update.exe [1525016 2023-07-31] (Discord Inc. -> GitHub)
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [42614688 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\116.0.5845.188\Installer\chrmstp.exe [2023-09-13] (Google LLC -> Google LLC)
HKLM\Software\Wow6432Node\Microsoft\Active Setup\Installed Components: [{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -> C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {762E99B9-DA54-487A-BA69-C81F72AD2C7D} - System32\Tasks\ASUS\AcPowerNotification => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\AcPowerNotification\AcPowerNotification.exe [309096 2023-03-13] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {79879D1C-2697-4411-8D8D-E69AE9B307AE} - System32\Tasks\ASUS\ArmourySocketServer => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe [1895784 2023-03-13] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {D8172389-F2B6-4AC8-800F-28ABD170CF83} - System32\Tasks\ASUS\ASUSUpdateTaskMachineCore1d98b14424ff6d8 => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-05-20] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {274570A1-9C65-410D-AAB9-22301E47FC98} - System32\Tasks\ASUS\ASUSUpdateTaskMachineUA => C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-05-20] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
Task: {D9250A82-2FD3-46D0-B909-0D94048CE67B} - System32\Tasks\ASUS\Framework Service => C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe [46631024 2023-03-06] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
Task: {7DA87EAD-CE45-43E6-919C-D4747776EB2E} - System32\Tasks\ASUS\NoiseCancelingEngine => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\MBLedSDK\NoiseCancelingEngine.exe [1254760 2023-03-27] (ASUSTeK COMPUTER INC. -> ASUS)
Task: {B04AC22F-BC6A-4343-BE34-322C38B4747A} - System32\Tasks\ASUS\P508PowerAgent_sdk => C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ShareFromArmouryIII\Mouse\ROG STRIX CARRY\P508PowerAgent.exe (Keine Datei)
Task: {A69445F5-5E04-4E67-AFCE-6BA020A1DE24} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [714256 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {A512D2E7-FC7F-4DF2-8454-23ED40775593} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [4703648 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --configpath "C:\Program Files\CCleaner\Setup" --guid "511ab03e-f5ba-4051-a874-51387c4a5851" --version "6.16.10662" --silent
Task: {08054CE8-9391-469C-A2A3-93D1D7E10D8C} - System32\Tasks\CCleanerSkipUAC - russo => C:\Program Files\CCleaner\CCleaner.exe [35675552 2023-09-08] (PIRIFORM SOFTWARE LIMITED -> Piriform Software Ltd)
Task: {14D6B92F-D942-4459-A17B-8832D5F0CFF8} - System32\Tasks\GoogleUpdateTaskMachineCore{DDAC54AC-F968-415B-A84D-61F8AA0F1060} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-06-19] (Google LLC -> Google LLC)
Task: {9DC15C83-C48D-4131-9AC5-D1B768B55BD8} - System32\Tasks\GoogleUpdateTaskMachineUA{D94ADF57-AB05-4FAF-9105-096861ED7433} => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [162072 2023-06-19] (Google LLC -> Google LLC)
Task: {5BF73C67-4F26-493B-A4F4-F501D1B76DCF} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {387BF531-BBCB-42D4-AB81-EDBA080FD41D} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [26913760 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
Task: {CF3C50F5-BA79-4F7C-B55C-66344EB00137} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {1EE4A6B5-640E-469A-831B-1F22C6AEFEA9} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158664 2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {6067C3FB-A250-4403-8B80-D820D0507441} - System32\Tasks\Microsoft\Office\Office Performance Monitor => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX64\Microsoft Shared\Office16\operfmon.exe [167864 2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Task: {E7C92ADE-E1C0-469D-B0F5-10EC1C0A832B} - System32\Tasks\Microsoft\Windows\AppxDeploymentClient\UCPD velocity => C:\Windows\system32\UCPDMgr.exe [58880 2023-09-13] (Microsoft Windows -> Microsoft Corporation)
Task: {E0F10DCF-44AD-40E8-9370-FB5DA59F93FB} - System32\Tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker => %systemroot%\system32\MusNotification.exe (Keine Datei)
Task: {E0A04418-AA50-4364-9291-7E22A1C2F71E} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {28267D1C-D6D0-4290-8219-6DA6D5B2E2CD} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {85012640-37D8-4142-8B08-CD34F85ED5C0} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {6208FBE9-4E24-4CFE-AD96-3B0357EC66F7} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MpCmdRun.exe [1596304 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {E4A2B52C-DF4B-418E-AA40-D08ED1662E68} - System32\Tasks\Mozilla\Firefox Default Browser Agent 308046B0AF4A39CB => C:\Program Files\Mozilla Firefox\default-browser-agent.exe [722336 2023-09-12] (Mozilla Corporation -> Mozilla Foundation)
Task: {52496B68-1BF0-4B68-B585-D49DAABCFA5E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [1003128 2023-04-26] (Nvidia Corporation -> NVIDIA Corporation) -> -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
Task: {F631D122-0F61-4C4A-8739-7DF581AC6660} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [3342376 2023-04-26] (Nvidia Corporation -> NVIDIA Corporation)
Task: {1A63078D-521F-43DF-8151-BF43E7DD111B} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files (x86)\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [649784 2023-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C073FDFA-F588-4B3B-9686-D0564788C921} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {C7D5BF64-F3AC-4D03-920E-A7168C30206D} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater64.exe [910888 2023-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {707F3900-5B13-4047-AE85-6A20BFA1AE53} - System32\Tasks\NvTmRep_CrashReport1_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D209C26B-CE09-4CA1-82CF-34F6D7662CCB} - System32\Tasks\NvTmRep_CrashReport2_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5417EFDA-4DD6-4941-9D98-8212645A6150} - System32\Tasks\NvTmRep_CrashReport3_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {CDD59C43-25F4-490E-943C-D70F5AAFAE65} - System32\Tasks\NvTmRep_CrashReport4_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvBackend\NvTmRep.exe [1665064 2023-04-26] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {EFFE4CAB-C153-4E03-BA5B-346F02E0B5C1} - System32\Tasks\OneDrive Per-Machine Standalone Update Task => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {68261847-003C-42E0-8EC8-B1D41CB6DEBD} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1479023081-980201380-1462311256-1000 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {82A3AE42-A5BF-4B78-9662-BBCD498E9AC1} - System32\Tasks\OneDrive Reporting Task-S-1-5-21-1479023081-980201380-1462311256-1001 => C:\Program Files\Microsoft OneDrive\OneDriveStandaloneUpdater.exe [4130320 2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {770427DF-23B9-47AE-94FC-7E3D066C6444} - System32\Tasks\Overwolf Updater Task => C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641416 2023-09-14] (Overwolf Ltd -> Overwolf LTD)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1
Tcpip\..\Interfaces\{a2540a64-c68a-4964-8fe8-a21b549267a1}: [DhcpNameServer] 192.168.2.1
Edge:
=======
Edge Profile: C:\Users\russo\AppData\Local\Microsoft\Edge\User Data\Default [2023-09-22]
Edge Extension: (Edge relevant text changes) - C:\Users\russo\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2023-09-10]
FireFox:
========
FF DefaultProfile: jpc87qf2.default
FF ProfilePath: C:\Users\russo\AppData\Roaming\Mozilla\Firefox\Profiles\jpc87qf2.default [2023-05-20]
FF ProfilePath: C:\Users\russo\AppData\Roaming\Mozilla\Firefox\Profiles\l9vm4en8.default-release-1695353921606 [2023-09-22]
FF NetworkProxy: Mozilla\Firefox\Profiles\l9vm4en8.default-release-1695353921606 -> type", 0
FF Extension: (AdGuard Werbeblocker) - C:\Users\russo\AppData\Roaming\Mozilla\Firefox\Profiles\l9vm4en8.default-release-1695353921606\Extensions\adguardadblocker@adguard.com.xpi [2023-09-22]
FF Extension: (ProxTube) - C:\Users\russo\AppData\Roaming\Mozilla\Firefox\Profiles\l9vm4en8.default-release-1695353921606\Extensions\ich@maltegoetz.de.xpi [2021-11-20]
FF Extension: (PAYBACK Internet Assistent) - C:\Users\russo\AppData\Roaming\Mozilla\Firefox\Profiles\l9vm4en8.default-release-1695353921606\Extensions\toolbar-ff@payback.de-sh.xpi [2022-08-10] [UpdateUrl:hxxps://www.payback.de/resources/content/site-pia/update/1/ffsh/json]
FF Extension: (Bulk Image Downloader) - C:\Users\russo\AppData\Roaming\Mozilla\Firefox\Profiles\l9vm4en8.default-release-1695353921606\Extensions\{524B8EF8-C312-11DB-8039-536F56D89593}.xpi [2021-11-28]
FF Extension: (Video DownloadHelper) - C:\Users\russo\AppData\Roaming\Mozilla\Firefox\Profiles\l9vm4en8.default-release-1695353921606\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2023-09-22]
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2022-11-08] (VideoLAN -> VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2023-09-21] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2023-09-21] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR Profile: C:\Users\russo\AppData\Local\Google\Chrome\User Data\Default [2023-09-22]
CHR Extension: (Google Docs Offline) - C:\Users\russo\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2023-09-07]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\russo\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-06-19]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2023-09-21] (Adobe Inc. -> Adobe Inc.)
R2 ArmouryCrateService; C:\Program Files\ASUS\ARMOURY CRATE Lite Service\ArmouryCrate.Service.exe [399984 2023-04-14] (ASUSTeK COMPUTER INC. -> ASUSTeK COMPUTER INC.)
R2 asComSvc; C:\Program Files (x86)\ASUS\AXSP\4.02.23\atkexComSvc.exe [896872 2023-03-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 asus; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-05-20] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
R2 AsusCertService; C:\Program Files (x86)\ASUS\AsusCertService\AsusCertService.exe [558104 2022-05-19] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R2 AsusFanControlService; C:\Program Files (x86)\ASUS\AsusFanControlService\2.03.20\AsusFanControlService.exe [1722216 2023-03-29] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S3 asusm; C:\Program Files (x86)\ASUS\Update\AsusUpdate.exe [156008 2023-05-20] (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
S2 AsusUpdateCheck; C:\Windows\System32\AsusUpdateCheck.exe [845256 2023-09-22] (ASUSTeK Computer Inc. -> )
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11817040 2023-09-01] (Microsoft Corporation -> Microsoft Corporation)
S3 FileSyncHelper; C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncHelper.exe [3518480 2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
R2 GameSDK Service; C:\Program Files (x86)\ASUS\GameSDK Service\GameSDK.exe [397544 2022-05-31] (ASUSTeK COMPUTER INC. -> ASUS Inc.)
R2 HPPrintScanDoctorService; C:\Program Files\HPPrintScanDoctor\HPPrintScanDoctorService.exe [230352 2023-09-07] (HP Inc. -> HP Inc.)
R2 LightingService; C:\Program Files (x86)\LightingService\LightingService.exe [4239720 2023-03-29] (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
S3 OneDrive Updater Service; C:\Program Files\Microsoft OneDrive\23.180.0828.0001\OneDriveUpdaterService.exe [3855376 2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
S3 OverwolfUpdater; C:\Program Files (x86)\Common Files\Overwolf\OverwolfUpdater.exe [2641416 2023-09-14] (Overwolf Ltd -> Overwolf LTD)
R2 ROG Live Service; C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe [1665648 2023-07-25] (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\NisSrv.exe [3121008 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe [133688 2023-08-30] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_97c24e8dfa98e686\Display.NvContainer\NVDisplay.Container.exe -s NVDisplay.ContainerLocalSystem -f %ProgramData%\NVIDIA\NVDisplay.ContainerLocalSystem.log -l 3 -d C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_97c24e8dfa98e686\Display.NvContainer\plugins\LocalSystem -r -p 30000 -cfg NVDisplay.ContainerLocalSystem\LocalSystem
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
R3 amdgpio3; C:\Windows\System32\drivers\amdgpio3.sys [47216 2022-11-07] (ASMedia Technology Inc. -> Advanced Micro Devices, Inc)
R1 Asusgio3; C:\Windows\system32\drivers\AsIO3.sys [49256 2022-08-16] (ASUSTeK COMPUTER INC. -> )
S3 BthA2dp; C:\Windows\System32\drivers\BthA2dp.sys [532480 2023-04-19] (Microsoft Corporation) [Datei ist nicht signiert]
S3 BthHFEnum; C:\Windows\System32\drivers\bthhfenum.sys [184320 2023-04-19] (Microsoft Corporation) [Datei ist nicht signiert]
R1 CTIAIO; C:\Windows\system32\drivers\CtiAIo64.sys [32320 2023-05-20] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Innovation Co., LTd.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus2.sys [167440 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
R1 MSIO; C:\Windows\system32\drivers\MsIo64.sys [19016 2023-03-13] (Microsoft Windows Hardware Compatibility Publisher -> MICSYS Technology Co., LTd)
R3 NvModuleTracker; C:\Windows\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_0c1cc60a4b422185\NvModuleTracker.sys [45656 2023-04-26] (Nvidia Corporation -> NVIDIA Corporation)
R3 rt68cx21; C:\Windows\System32\DriverStore\FileRepository\rt68cx21x64.inf_amd64_75af912c76141870\rt68cx21x64.sys [666576 2022-11-07] (Realtek Semiconductor Corp. -> Realtek)
S3 rtcx21; C:\Windows\System32\DriverStore\FileRepository\rtcx21x64.inf_amd64_516e5c9b75c49dc2\rtcx21x64.sys [539648 2022-05-06] (Microsoft Windows -> Realtek)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [174112 2022-09-30] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S4 UCPD; C:\Windows\System32\drivers\UCPD.sys [29184 2023-09-13] (Microsoft Windows -> Microsoft Corporation)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [55872 2023-08-30] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
U5 WdDevFlt; C:\Windows\System32\Drivers\WdDevFlt.sys [169232 2022-05-07] (Microsoft Windows -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [574872 2023-08-30] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [105864 2023-08-30] (Microsoft Windows -> Microsoft Corporation)
S3 cpuz157; \??\C:\Windows\temp\cpuz157\cpuz157_x64.sys [X]
S3 DIRECTIO; \??\UNC\wds-a\reminst\Test\BitPro64\DirectIo64.sys [X]
S3 DIRECTIO37; \??\UNC\wds-a\reminst\Test\BitPro64\DirectIo64.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-09-22 06:42 - 2023-09-22 06:42 - 000028250 _____ C:\Users\russo\Desktop\FRST.txt
2023-09-22 06:41 - 2023-09-22 06:42 - 000000000 ____D C:\FRST
2023-09-22 06:37 - 2023-09-22 06:37 - 002382848 _____ (Farbar) C:\Users\russo\Desktop\FRST64.exe
2023-09-22 06:03 - 2023-09-22 06:03 - 000000000 ____D C:\Windows\LastGood
2023-09-22 06:01 - 2023-09-14 04:43 - 000848992 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2023-09-22 06:01 - 2023-09-14 04:43 - 000848992 _____ C:\Windows\system32\vulkaninfo.exe
2023-09-22 06:01 - 2023-09-14 04:43 - 000713928 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2023-09-22 06:01 - 2023-09-14 04:43 - 000713928 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2023-09-22 06:01 - 2023-09-14 04:43 - 000653408 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2023-09-22 06:01 - 2023-09-14 04:43 - 000653408 _____ C:\Windows\system32\vulkan-1.dll
2023-09-22 06:01 - 2023-09-14 04:43 - 000637024 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2023-09-22 06:01 - 2023-09-14 04:43 - 000637024 _____ C:\Windows\SysWOW64\vulkan-1.dll
2023-09-22 06:01 - 2023-09-14 04:42 - 001487488 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2023-09-22 06:01 - 2023-09-14 04:42 - 001227312 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2023-09-22 06:01 - 2023-09-14 04:39 - 000939048 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2023-09-22 06:01 - 2023-09-14 04:39 - 000669224 _____ C:\Windows\system32\nvofapi64.dll
2023-09-22 06:01 - 2023-09-14 04:39 - 000504368 _____ C:\Windows\SysWOW64\nvofapi.dll
2023-09-22 06:01 - 2023-09-14 04:38 - 001537560 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2023-09-22 06:01 - 2023-09-14 04:38 - 001195560 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2023-09-22 06:01 - 2023-09-14 04:38 - 000778392 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2023-09-22 06:01 - 2023-09-14 04:37 - 002168472 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2023-09-22 06:01 - 2023-09-14 04:37 - 001621528 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2023-09-22 06:01 - 2023-09-14 04:37 - 000992920 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2023-09-22 06:01 - 2023-09-14 04:37 - 000768664 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2023-09-22 06:01 - 2023-09-14 04:36 - 014520344 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2023-09-22 06:01 - 2023-09-14 04:36 - 012066328 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2023-09-22 06:01 - 2023-09-14 04:36 - 006190640 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2023-09-22 06:01 - 2023-09-14 04:36 - 005550216 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2023-09-22 06:01 - 2023-09-14 04:36 - 003482760 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2023-09-22 06:01 - 2023-09-14 04:36 - 000459928 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2023-09-22 06:01 - 2023-09-14 04:35 - 005845040 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2023-09-22 06:01 - 2023-09-14 04:35 - 000853016 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2023-09-22 06:01 - 2023-09-14 04:34 - 006738648 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2023-09-22 06:01 - 2023-09-13 02:12 - 000108122 _____ C:\Windows\system32\nvinfo.pb
2023-09-22 05:38 - 2023-09-22 05:38 - 000000000 ____D C:\Users\russo\Desktop\Alte Firefox-Daten
2023-09-22 05:37 - 2023-09-22 05:44 - 000000000 ____D C:\Windows\system32\Tasks\Mozilla
2023-09-22 05:37 - 2023-09-22 05:37 - 000002041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox Privater Modus.lnk
2023-09-22 05:37 - 2023-09-22 05:37 - 000001012 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Firefox.lnk
2023-09-22 05:37 - 2023-09-22 05:37 - 000000000 ____D C:\Program Files\Mozilla Firefox
2023-09-22 05:37 - 2023-09-22 05:37 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2023-09-22 05:35 - 2023-09-22 05:35 - 000000000 ____D C:\Users\russo\Documents\cc
2023-09-22 05:33 - 2023-09-22 05:36 - 000000000 ____D C:\Program Files\CCleaner
2023-09-22 05:33 - 2023-09-22 05:33 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2023-09-22 05:33 - 2023-09-22 05:33 - 000003474 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2023-09-22 05:33 - 2023-09-22 05:33 - 000002900 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC - russo
2023-09-22 05:33 - 2023-09-22 05:33 - 000000760 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2023-09-22 05:33 - 2023-09-22 05:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2023-09-22 05:13 - 2023-09-22 05:13 - 000758838 _____ C:\Windows\system32\perfh007.dat
2023-09-22 05:13 - 2023-09-22 05:13 - 000157058 _____ C:\Windows\system32\perfc007.dat
2023-09-14 20:17 - 2023-09-14 20:17 - 000021258 _____ C:\Users\russo\Downloads\afp_4469__228-1.pdf
2023-09-14 15:20 - 2023-09-14 15:20 - 000001071 _____ C:\Users\russo\Desktop\Adobe Photoshop 2024.lnk
2023-09-14 15:14 - 2023-09-14 15:14 - 000001071 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop 2024.lnk
2023-09-10 11:06 - 2023-09-10 11:06 - 000027252 _____ C:\Users\russo\Downloads\afp_1440__1.pdf
2023-09-10 11:05 - 2023-09-10 11:05 - 000028281 _____ C:\Users\russo\Downloads\afp_2300__2-2.pdf
2023-09-07 14:36 - 2023-09-07 14:36 - 003249133 _____ C:\Users\russo\Desktop\2023_Pressefoto_ShirinDavid.jpeg
2023-09-01 05:19 - 2023-09-01 05:19 - 000103955 _____ C:\Users\russo\Downloads\Konto_0037615762-Auszug_2023_0008.PDF
2023-08-27 12:57 - 2023-08-28 15:10 - 000000000 ____D C:\Users\russo\Desktop\Neuer Ordner
2023-08-24 06:14 - 2023-08-24 06:14 - 000021476 _____ C:\Users\russo\Downloads\afp_18185__228.pdf
2023-08-24 06:13 - 2023-08-24 06:13 - 000021258 _____ C:\Users\russo\Downloads\afp_4469__228.pdf
2023-08-24 06:12 - 2023-08-24 06:12 - 000025691 _____ C:\Users\russo\Downloads\afp_18215__28-3.pdf
2023-08-24 06:11 - 2023-08-24 06:11 - 000127688 _____ C:\Users\russo\Downloads\tfp_l28_2.pdf
2023-08-24 06:11 - 2023-08-24 06:11 - 000025691 _____ C:\Users\russo\Downloads\afp_18215__28-2.pdf
2023-08-24 06:11 - 2023-08-24 06:11 - 000025691 _____ C:\Users\russo\Downloads\afp_18215__28-1.pdf
2023-08-24 06:11 - 2023-08-24 06:11 - 000021043 _____ C:\Users\russo\Downloads\afp_18185__28.pdf
2023-08-24 06:10 - 2023-08-24 06:10 - 000025691 _____ C:\Users\russo\Downloads\afp_18215__28.pdf
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2023-09-22 06:42 - 2023-05-20 14:31 - 000000000 ____D C:\ProgramData\Mozilla-1de4eec8-1241-4177-a864-e594e8d1fb38
2023-09-22 06:38 - 2023-06-03 13:13 - 000000000 ____D C:\Users\russo\AppData\Local\Battle.net
2023-09-22 06:21 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2023-09-22 06:04 - 2023-06-19 02:43 - 000000000 ____D C:\Program Files (x86)\Google
2023-09-22 06:04 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemTemp
2023-09-22 06:03 - 2023-05-20 13:51 - 000000000 ____D C:\Users\russo\AppData\Local\NVIDIA
2023-09-22 06:03 - 2023-05-16 13:00 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2023-09-22 06:03 - 2023-05-16 13:00 - 000000000 ____D C:\ProgramData\NVIDIA
2023-09-22 06:03 - 2022-05-07 07:22 - 000000000 ____D C:\Windows\INF
2023-09-22 05:37 - 2023-05-20 13:51 - 000000000 ____D C:\Users\russo\AppData\Local\D3DSCache
2023-09-22 05:34 - 2023-08-17 16:57 - 000000000 ____D C:\Users\russo\AppData\Local\CrashDumps
2023-09-22 05:34 - 2023-07-15 07:40 - 000000000 ____D C:\Windows\Minidump
2023-09-22 05:34 - 2023-04-19 12:58 - 000000000 ____D C:\Windows\Panther
2023-09-22 05:34 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\LiveKernelReports
2023-09-22 05:16 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\AppReadiness
2023-09-22 05:13 - 2023-04-19 13:06 - 001754668 _____ C:\Windows\system32\PerfStringBackup.INI
2023-09-22 05:07 - 2023-04-19 02:58 - 000000000 ____D C:\Windows\system32\SleepStudy
2023-09-22 05:06 - 2023-05-16 12:48 - 000901328 _____ () C:\Windows\system32\wpbbin.exe
2023-09-22 05:06 - 2023-05-16 12:48 - 000845256 _____ C:\Windows\system32\AsusUpdateCheck.exe
2023-09-22 05:06 - 2023-04-19 12:58 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2023-09-22 05:06 - 2023-04-19 02:58 - 000012288 ___SH C:\DumpStack.log.tmp
2023-09-22 00:53 - 2022-05-07 07:17 - 000786432 _____ C:\Windows\system32\config\BBI
2023-09-21 23:13 - 2023-05-20 14:11 - 000000000 ____D C:\Program Files\ASUS
2023-09-21 16:48 - 2023-06-03 16:10 - 000011212 _____ C:\Users\russo\Desktop\OW Emotes.txt
2023-09-21 16:45 - 2023-04-19 13:01 - 000000000 ____D C:\ProgramData\Packages
2023-09-21 16:45 - 2022-05-07 07:24 - 000000000 ___HD C:\Program Files\WindowsApps
2023-09-21 06:05 - 2023-04-19 12:59 - 000002443 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2023-09-21 05:29 - 2023-06-05 22:19 - 000000000 ____D C:\Users\russo\AppData\Roaming\WowUpCf
2023-09-21 05:24 - 2023-06-30 20:51 - 000001389 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk
2023-09-21 05:24 - 2023-06-03 14:34 - 000000000 ___RD C:\Users\russo\Creative Cloud Files
2023-09-21 05:24 - 2023-06-03 14:32 - 000000000 ____D C:\Program Files\Common Files\Adobe
2023-09-21 05:24 - 2023-06-03 14:32 - 000000000 ____D C:\Program Files\Adobe
2023-09-21 05:24 - 2023-06-03 14:32 - 000000000 ____D C:\Program Files (x86)\Adobe
2023-09-20 19:53 - 2023-06-03 13:13 - 000000000 ____D C:\Program Files (x86)\Battle.net
2023-09-20 05:45 - 2023-06-05 04:59 - 000000000 ____D C:\Program Files (x86)\World of Warcraft
2023-09-20 05:18 - 2023-06-03 13:15 - 000000000 ____D C:\Program Files (x86)\Overwatch
2023-09-20 00:29 - 2023-05-20 13:51 - 000000000 ____D C:\Users\russo\AppData\Local\Packages
2023-09-19 06:54 - 2023-05-20 13:47 - 000000000 ____D C:\Program Files\Microsoft OneDrive
2023-09-18 23:45 - 2023-05-20 13:48 - 000003592 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-1479023081-980201380-1462311256-1001
2023-09-18 23:45 - 2023-04-19 13:11 - 000003194 _____ C:\Windows\system32\Tasks\OneDrive Per-Machine Standalone Update Task
2023-09-18 23:45 - 2023-04-19 13:11 - 000002155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2023-09-16 23:07 - 2023-04-19 13:05 - 000000000 ____D C:\Program Files\Microsoft Office
2023-09-14 23:12 - 2023-06-05 11:12 - 000000000 ____D C:\Program Files (x86)\Overwolf
2023-09-14 22:59 - 2023-06-19 02:43 - 000004002 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA{D94ADF57-AB05-4FAF-9105-096861ED7433}
2023-09-14 22:59 - 2023-06-19 02:43 - 000003878 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore{DDAC54AC-F968-415B-A84D-61F8AA0F1060}
2023-09-14 15:14 - 2023-05-20 13:51 - 000000000 ____D C:\Users\russo\AppData\Roaming\Adobe
2023-09-14 04:34 - 2023-05-16 12:59 - 007858664 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2023-09-13 05:24 - 2022-05-07 07:24 - 000000000 ____D C:\ProgramData\USOPrivate
2023-09-13 05:08 - 2023-04-19 02:58 - 000573184 _____ C:\Windows\system32\FNTCACHE.DAT
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\UUS
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SysWOW64\Dism
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\SystemResources
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\WinMetadata
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\oobe
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\Dism
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\system32\appraiser
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellExperiences
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\ShellComponents
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\Provisioning
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\PolicyDefinitions
2023-09-13 05:07 - 2022-05-07 07:24 - 000000000 ____D C:\Windows\bcastdvr
2023-09-13 05:05 - 2023-04-19 15:54 - 000000000 ____D C:\Windows\system32\MRT
2023-09-13 05:04 - 2023-04-19 15:54 - 177941912 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2023-09-13 04:58 - 2022-05-07 07:17 - 000000000 ____D C:\Windows\CbsTemp
2023-09-13 04:56 - 2023-04-19 13:00 - 003210752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2023-09-13 04:54 - 2023-06-19 02:43 - 000002246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2023-09-11 12:28 - 2023-07-07 20:53 - 000001456 _____ C:\Users\russo\AppData\Local\Adobe Save for Web 13.0 Prefs
2023-09-11 06:23 - 2023-06-03 16:10 - 000003266 _____ C:\Users\russo\Desktop\noangelsNET.txt
2023-09-10 21:54 - 2023-08-15 21:14 - 000000000 ____D C:\Users\russo\AppData\Roaming\discord
2023-09-10 21:40 - 2023-08-15 21:13 - 000000000 ____D C:\Users\russo\AppData\Local\Discord
2023-09-10 21:22 - 2023-06-05 11:11 - 000000000 ____D C:\Users\russo\AppData\Local\Overwolf
2023-09-10 19:59 - 2023-08-15 21:14 - 000002234 _____ C:\Users\russo\Desktop\Discord.lnk
2023-09-10 11:16 - 2023-08-19 21:11 - 000000000 ____D C:\Users\russo\Desktop\No Angels Picture Mix
2023-09-09 12:35 - 2023-05-20 13:47 - 000000000 ____D C:\Users\russo
2023-09-08 14:51 - 2023-06-03 13:13 - 000000000 ____D C:\Users\russo\AppData\Roaming\Battle.net
2023-09-07 05:39 - 2023-06-28 10:45 - 000000000 ____D C:\Windows\system32\Tasks\HP
2023-09-07 05:38 - 2023-06-28 10:45 - 000000000 ____D C:\Program Files\HPPrintScanDoctor
2023-09-06 21:29 - 2023-04-19 16:02 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools
2023-09-03 23:42 - 2023-05-16 12:59 - 007858224 _____ (NVIDIA Corporation) C:\Windows\system32\SET7868.tmp
2023-09-03 21:08 - 2023-06-03 14:30 - 000000000 ____D C:\Users\russo\AppData\Local\Adobe
2023-08-30 08:25 - 2023-04-19 12:58 - 000000000 ____D C:\Windows\system32\Drivers\wd
==================== Dateien im Wurzelverzeichnis einiger Verzeichnisse ========
2023-07-07 20:53 - 2023-09-11 12:28 - 000001456 _____ () C:\Users\russo\AppData\Local\Adobe Save for Web 13.0 Prefs
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 20-09-2023
durchgeführt von russo (22-09-2023 06:43:08)
Gestartet von C:\Users\russo\Desktop
Microsoft Windows 11 Home Version 22H2 22621.2283 (X64) (2023-05-16 11:42:05)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-1479023081-980201380-1462311256-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1479023081-980201380-1462311256-503 - Limited - Disabled)
Gast (S-1-5-21-1479023081-980201380-1462311256-501 - Limited - Disabled)
russo (S-1-5-21-1479023081-980201380-1462311256-1001 - Administrator - Enabled) => C:\Users\russo
WDAGUtilityAccount (S-1-5-21-1479023081-980201380-1462311256-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
4K Video Downloader (HKLM\...\{4A550EAA-A580-40F9-A5A8-399E055A9672}) (Version: 4.24.4.5430 - Open Media LLC) Hidden
4K Video Downloader (HKLM-x32\...\{6bf843f0-43ac-473b-8dbb-819d5a9388fb}) (Version: 4.24.4.5430 - Open Media LLC)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.0.0.571 - Adobe Inc.)
Adobe Photoshop 2024 (HKLM-x32\...\PHSP_25_0) (Version: 25.0.0.37 - Adobe Inc.)
AMD Chipset Software (HKLM-x32\...\AMD_Chipset_IODrivers) (Version: 2.11.26.106 - Advanced Micro Devices, Inc.)
AMD GPIO2 Driver (HKLM-x32\...\{E9DD399F-21A3-479E-A7DF-D6CF4B2ADBF3}) (Version: 2.2.0.130 - Advanced Micro Devices, Inc.) Hidden
AMD PCI Driver (HKLM-x32\...\{80EC3CEE-2940-42A1-A776-B5D810D39F1E}) (Version: 1.0.0.81 - Advanced Micro Devices, Inc.) Hidden
AMD PSP Driver (HKLM-x32\...\{988F14B8-79A8-475D-BAC7-83F96AD3D821}) (Version: 4.13.0.0 - Advanced Micro Devices, Inc.) Hidden
AMD Ryzen Balanced Driver (HKLM-x32\...\{A171D320-C42C-4F3B-A2D8-C6A09F6788CC}) (Version: 6.0.0.9 - Advanced Micro Devices, Inc.) Hidden
AMD SBxxx SMBus Driver Alpha (HKLM-x32\...\{AAE0E27D-C88A-49BA-8715-77ADCD4286A3}) (Version: 5.12.0.38 - Advanced Micro Devices, Inc.) Hidden
AMD_Chipset_Drivers (HKLM-x32\...\{ac726f18-c961-4fa1-a46d-6f0c644cd12b}) (Version: 2.11.26.106 - Advanced Micro Devices, Inc.) Hidden
AniMe Matrix MB EN (HKLM\...\{399B6DA7-B609-426E-95F8-B9A83FB7D06E}) (Version: 1.0.1 - ASUS)
ARMOURY CRATE Lite Service (HKLM\...\{EF3944FF-2501-4568-B15C-5701E726719E}) (Version: 5.6.3 - ASUS)
ASUS AIOFan HAL (HKLM\...\{EAE80DED-1A39-41C5-9F60-87CC947F6454}) (Version: 1.2.1.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AIOFan HAL (HKLM-x32\...\{2cad7de5-9da0-4392-9e74-e97ce35fd0b5}) (Version: 1.2.1.0 - ASUSTek COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM\...\{237E1CAC-1708-4940-AC34-DF15C079AB70}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Extension Card HAL (HKLM-x32\...\{49c4358d-054e-4cf1-9ec1-dca3487f304a}) (Version: 1.1.0.20 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM\...\{4EBEAC95-76BC-46A8-8644-6E2F1C87CF70}) (Version: 1.3.9.4 - ASUSTeK COMPUTER INC.) Hidden
ASUS AURA Motherboard HAL (HKLM-x32\...\{39cdaa93-c446-4421-a337-1e52705dd2f8}) (Version: 1.3.9.4 - ASUSTeK COMPUTER INC.) Hidden
ASUS Aura SDK (HKLM\...\{CF8E6E00-9C03-4440-81C0-21FACB921A6B}) (Version: 3.04.31 - ASUSTek COMPUTER INC.) Hidden
ASUS Framework Service (HKLM-x32\...\{339A6383-7862-46DA-8A9D-E84180EF9424}) (Version: 3.2.1.2 - ASUSTeK Computer Inc.)
ASUS Motherboard (HKLM-x32\...\{93795eb8-bd86-4d4d-ab27-ff80f9467b37}) (Version: 4.00.06 - ASUSTek Computer Inc.)
ASUS Update Helper (HKLM-x32\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.107.103 - ASUSTeK Computer Inc.) Hidden
AURA DRAM Component (HKLM\...\{6FB66775-BB93-4D0A-9871-4CC9B2E87BF3}) (Version: 1.1.23 - ASUS) Hidden
AURA DRAM Component (HKLM-x32\...\{179f415f-2ff3-4db1-bcc1-d5730f746db8}) (Version: 1.1.23 - ASUS) Hidden
AURA lighting effect add-on (HKLM-x32\...\{1E2EA04B-FCA7-457E-B6F4-F33E1858E859}) (Version: 0.0.29 - ASUS)
AURA lighting effect add-on x64 (HKLM\...\{C5A4A164-4428-4931-B728-96EEF0FA3C44}) (Version: 0.0.29 - ASUS)
AURA Service (HKLM-x32\...\{56EEEF7D-0AE3-401A-898B-581719D005AE}) (Version: 3.07.10 - ASUSTeK Computer Inc.) Hidden
AURA Service (HKLM-x32\...\{c2664378-607c-49cc-acab-faeb6794c201}) (Version: 3.07.10 - ASUSTeK Computer Inc.)
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bulk Image Downloader v6.25.0.0 (64 bit) (HKLM\...\Bulk Image Downloader (64 bit)_is1) (Version: 6.25 - Antibody Software)
CCleaner (HKLM\...\CCleaner) (Version: 6.16 - Piriform)
CurseForge (HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\Overwolf_cchhcaiapeikjbdbpfplgmpobbcdkdaphclbmkbj) (Version: 0.233.4.1 - Overwolf app)
Discord (HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\Discord) (Version: 1.0.9016 - Discord Inc.)
ENE RGB HAL (HKLM\...\{E050E98C-5524-4AFB-9E53-97700BEF2C02}) (Version: 1.1.40.3 - Ene Tech.) Hidden
ENE RGB HAL (HKLM-x32\...\{7f329536-2468-4b20-88dc-5e2defcd5ff3}) (Version: 1.1.40.3 - Ene Tech.) Hidden
ENE_EHD_M2_HAL (HKLM\...\{37A48B7F-D4EA-4863-844E-A284E2AA3C5D}) (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden
ENE_EHD_M2_HAL (HKLM-x32\...\{6b617af3-c8f4-45a8-bf47-b32ffb4da1cc}) (Version: 1.0.10.1 - ENE TECHNOLOGY INC.) Hidden
GameSDK Service (HKLM-x32\...\{021d69c3-d686-4a94-8fb5-fd1ee782fb14}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.)
GameSDK Service (HKLM-x32\...\{7160DA8D-3F25-4F6E-ABC8-F693551D82FA}) (Version: 1.0.5.0 - ASUSTek COMPUTER INC.) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 116.0.5845.188 - Google LLC)
Kingston AURA DRAM Component (HKLM\...\{965CDF5F-901C-476F-B3A8-7396701B1129}) (Version: 1.1.18 - KINGSTON COMPONENTS INC.) Hidden
Kingston AURA DRAM Component (HKLM-x32\...\{a9913343-8463-4fd2-8a33-ae89cbbfe139}) (Version: 1.1.18 - KINGSTON COMPONENTS INC.) Hidden
Microsoft 365 - de-de (HKLM\...\O365HomePremRetail - de-de) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft 365 - en-us (HKLM\...\O365HomePremRetail - en-us) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft 365 - es-es (HKLM\...\O365HomePremRetail - es-es) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft 365 - fr-fr (HKLM\...\O365HomePremRetail - fr-fr) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft 365 - it-it (HKLM\...\O365HomePremRetail - it-it) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft 365 - nl-nl (HKLM\...\O365HomePremRetail - nl-nl) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft 365 - pl-pl (HKLM\...\O365HomePremRetail - pl-pl) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 117.0.2045.36 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 117.0.2045.31 - Microsoft Corporation)
Microsoft OneDrive (HKLM\...\OneDriveSetup.exe) (Version: 23.180.0828.0001 - Microsoft Corporation)
Microsoft OneNote - de-de (HKLM\...\OneNoteFreeRetail - de-de) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft OneNote - en-us (HKLM\...\OneNoteFreeRetail - en-us) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft OneNote - es-es (HKLM\...\OneNoteFreeRetail - es-es) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft OneNote - fr-fr (HKLM\...\OneNoteFreeRetail - fr-fr) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft OneNote - it-it (HKLM\...\OneNoteFreeRetail - it-it) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft OneNote - nl-nl (HKLM\...\OneNoteFreeRetail - nl-nl) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft OneNote - pl-pl (HKLM\...\OneNoteFreeRetail - pl-pl) (Version: 16.0.16731.20234 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{AF47B488-9780-4AB5-A97E-762E28013CA6}) (Version: 5.71.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.61030 (HKLM\...\{37B8F9C7-03FB-3253-8781-2517C99D7C00}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.61030 (HKLM\...\{CF2BEA3C-26EA-32F8-AA9B-331F7E34BA97}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.32.31326 (HKLM-x32\...\{2d507699-404c-4c8b-a54a-38e352f32cdd}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.32.31326 (HKLM-x32\...\{817e21c1-6b3a-4bc1-8c49-67e4e1887b3a}) (Version: 14.32.31326.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.32.31326 (HKLM\...\{38624EB5-356D-4B08-8357-C33D89A5C0C5}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.32.31326 (HKLM\...\{C96241EA-9900-4FE8-85B3-1E238D509DF6}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.32.31326 (HKLM-x32\...\{A250E750-DB3F-40C1-8460-8EF77C7582DA}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.32.31326 (HKLM-x32\...\{46E11E7F-01E1-44D0-BB86-C67342D253DD}) (Version: 14.32.31326 - Microsoft Corporation) Hidden
Mozilla Firefox (x64 de) (HKLM\...\Mozilla Firefox 117.0.1 (x64 de)) (Version: 117.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 117.0.1 - Mozilla)
NVIDIA FrameView SDK 1.3.8513.32290073 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.3.8513.32290073 - NVIDIA Corporation)
NVIDIA GeForce Experience 3.27.0.112 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.27.0.112 - NVIDIA Corporation)
NVIDIA Grafiktreiber 537.42 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 537.42 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.3.40.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.40.14 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.21.0713 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.21.0713 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.16731.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.16731.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0407-1000-0000000FF1CE}) (Version: 16.0.16731.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-040C-1000-0000000FF1CE}) (Version: 16.0.16731.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0410-1000-0000000FF1CE}) (Version: 16.0.16731.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0413-1000-0000000FF1CE}) (Version: 16.0.16731.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0415-1000-0000000FF1CE}) (Version: 16.0.16731.20234 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0C0A-1000-0000000FF1CE}) (Version: 16.0.16731.20234 - Microsoft Corporation) Hidden
Overwatch (HKLM-x32\...\Overwatch) (Version: - Blizzard Entertainment)
Overwolf (HKLM-x32\...\Overwolf) (Version: 0.233.1.2 - Overwolf Ltd.)
Patriot Viper DRAM RGB (HKLM\...\{1F9C282E-CCB4-4D8E-A5CB-7B74DFCD8C95}) (Version: 1.0.9.6 - Patriot Memory) Hidden
Patriot Viper DRAM RGB (HKLM-x32\...\{abe059bb-10a7-4d38-ba59-a4bf3ac7b71a}) (Version: 1.0.9.6 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM\...\{8B4C0A3D-C135-4E1F-98D8-3926494B4D61}) (Version: 1.1.0.3 - Patriot Memory) Hidden
Patriot Viper M2 SSD RGB (HKLM-x32\...\{6e0eff60-c502-43bb-8f56-360ca07e73d9}) (Version: 1.1.0.3 - Patriot Memory) Hidden
PHISON HAL (HKLM\...\{966E33F0-6786-4B38-AA29-C1B3F6C1955D}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
PHISON HAL (HKLM-x32\...\{549da357-1b81-456b-83f2-dcc47c41dfff}) (Version: 1.0.9.0 - PHISON Electronics Corp.) Hidden
Pictus (HKLM\...\Pictus_is1) (Version: - )
Promontory_GPIO Driver (HKLM-x32\...\{B5512BCC-F4CD-4159-86A4-B2AD7D38FFA9}) (Version: 2.0.1.0 - Advanced Micro Devices, Inc.) Hidden
ROG Live Service (HKLM\...\{2D87BFB6-C184-4A59-9BBE-3E20CE797631}) (Version: 2.1.5.0 - ASUSTek COMPUTER INC.)
ROGFontInstaller (HKLM\...\{605108C1-153E-43D8-8A67-7CE326B00ECA}) (Version: 1.0.0 - ASUS)
Universal Holtek RGB DRAM (HKLM\...\{826388E4-E31F-4514-948B-3BB954FB3EAF}) (Version: 1.0.0.5 - PD) Hidden
Universal Holtek RGB DRAM (HKLM-x32\...\{fba0580a-1ad3-44e2-b463-13a30387085c}) (Version: 1.0.0.5 - PD) Hidden
UXP WebView Support (HKLM-x32\...\UXPW_1_1_0) (Version: 1.1.0 - Adobe Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.18 - VideoLAN)
WD_BLACK AN1500 (HKLM\...\{085E2365-0A70-4230-B664-02D5E4FE7E9C}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WD_BLACK AN1500 (HKLM-x32\...\{e42c5874-37b0-4977-9e8d-70bf006e1f76}) (Version: 1.0.14.0 - ENE TECHNOLOGY INC.) Hidden
WinRAR 6.22 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.22.0 - win.rar GmbH)
World of Warcraft (HKLM-x32\...\World of Warcraft) (Version: - Blizzard Entertainment)
WowUp-CF 2.10.0 (HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\6f2f419c-215d-59e3-b8a5-5843bec040af) (Version: 2.10.0 - WowUp LLC)
Packages:
=========
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc [2023-06-03] (Adobe Systems Incorporated)
ARMOURY CRATE -> C:\Program Files\WindowsApps\B9ECED6F.ArmouryCrate_5.6.10.0_x64__qmba6cd70vzyy [2023-08-28] (ASUSTeK COMPUTER INC.)
Cortana -> C:\Program Files\WindowsApps\Microsoft.549981C3F5F10_4.2308.1005.0_x64__8wekyb3d8bbwe [2023-08-11] (Microsoft Corporation)
HP Smart -> C:\Program Files\WindowsApps\AD2F1837.HPPrinterControl_149.1.1056.0_x64__v10z8vjag6ke6 [2023-09-07] (HP Inc.)
Microsoft Whiteboard -> C:\Program Files\WindowsApps\Microsoft.Whiteboard_53.10510.531.0_x64__8wekyb3d8bbwe [2023-08-20] (Microsoft Corporation)
Microsoft.AV1VideoExtension -> C:\Program Files\WindowsApps\Microsoft.AV1VideoExtension_1.1.61781.0_x64__8wekyb3d8bbwe [2023-07-14] (Microsoft Corporation)
Microsoft.MPEG2VideoExtension -> C:\Program Files\WindowsApps\Microsoft.MPEG2VideoExtension_1.0.61931.0_x64__8wekyb3d8bbwe [2023-08-16] (Microsoft Corporation)
Microsoft.WindowsAppRuntime.CBS -> C:\Windows\SystemApps\Microsoft.WindowsAppRuntime.CBS_8wekyb3d8bbwe [2023-09-13] (Microsoft Corporation)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.964.0_x64__56jybvy8sckqj [2023-08-24] (NVIDIA Corp.)
Spotify Music -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0 [2023-09-18] (Spotify AB) [Startup Task]
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2337.7.0_x64__cv1g1gvanyjgm [2023-09-21] (WhatsApp Inc.) [Startup Task]
Windows Feature Experience Pack -> C:\Windows\SystemApps\MicrosoftWindows.Client.FileExp_cw5n1h2txyewy [2023-09-13] (Microsoft Corporation)
WinRAR -> C:\Program Files\WinRAR [2023-06-04] (win.rar GmbH)
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-1479023081-980201380-1462311256-1001_Classes\CLSID\{04271989-C4D2-54E5-5DA4-5361A226824A} -> [OneDrive] => {a52bba46-e9e1-435f-b3d9-28daa648c0f6}
CustomCLSID: HKU\S-1-5-21-1479023081-980201380-1462311256-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-CAE3E4F06A80} -> [Creative Cloud Files] => C:\Users\russo\Creative Cloud Files [2023-06-03 14:34]
CustomCLSID: HKU\S-1-5-21-1479023081-980201380-1462311256-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-1479023081-980201380-1462311256-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-09-11] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-09-11] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-09-11] (Adobe Inc. -> )
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive6] -> {9AA2F32D-362A-42D9-9328-24A483E2CCC3} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ OneDrive7] -> {C5FF006E-2AE9-408C-B85B-2DFDD5449D9C} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-09-11] (Adobe Inc. -> )
ContextMenuHandlers4: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [ FileSyncEx] -> {CB3D0F55-BC2C-4C1A-85ED-23ED75B5106B} => C:\Program Files\Microsoft OneDrive\23.180.0828.0001\FileSyncShell64.dll [2023-09-18] (Microsoft Corporation -> Microsoft Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvmdi.inf_amd64_97c24e8dfa98e686\nvshext.dll [2023-09-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2023-09-11] (Adobe Inc. -> )
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2023-05-20 14:12 - 2023-02-03 17:10 - 000525312 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ac_node_addon\prebuilds\win32-ia32\node.napi.node
2023-05-20 14:12 - 2022-09-01 09:47 - 000520192 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ffi-napi\prebuilds\win32-ia32\node.napi.node
2023-05-20 14:12 - 2022-09-01 09:47 - 000483328 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\node-system-fonts\build\Release\system-fonts.node
2023-05-20 14:12 - 2022-09-01 09:47 - 000510464 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\ref-napi\prebuilds\win32-ia32\node.napi.node
2023-05-20 14:12 - 2022-09-27 14:56 - 000319488 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\sharp\prebuilds\win32-ia32\node.napi.node
2023-05-20 14:12 - 2022-09-01 09:47 - 000786432 _____ () [Datei ist nicht signiert] \\?\C:\Program Files (x86)\ASUS\ArmouryDevice\node_modules\usb-detection\prebuilds\win32-ia32\node.napi.node
2023-05-20 14:12 - 2022-06-08 10:33 - 000081920 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\ASUS\ArmouryDevice\dll\WindowID\WindowID.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 104871424 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\libcef.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000112128 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\libegl.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 006227456 _____ () [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\libglesv2.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000810496 _____ (The Chromium Authors) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\chrome_elf.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000046080 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\audio\qtaudio_windows.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000030720 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\iconengines\qsvgicon.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000027136 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\imageformats\qgif.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000025600 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\imageformats\qico.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000353280 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\imageformats\qjpeg.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000021504 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\imageformats\qsvg.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000352256 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\imageformats\qtiff.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000423424 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\imageformats\qwebp.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 001239552 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\platforms\qwindows.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 005550592 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5Core.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 005812736 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5Gui.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000594944 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5Multimedia.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000915456 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5Network.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 003046400 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5Qml.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000362496 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5QmlModels.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 003650560 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5Quick.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000262144 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5Svg.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 004702208 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5Widgets.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000220160 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5WinExtras.dll
2023-09-20 19:51 - 2023-09-20 19:51 - 000165888 _____ (The Qt Company Ltd.) [Datei ist nicht signiert] C:\Program Files (x86)\Battle.net\Battle.net.14420\Qt5Xml.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) ==========
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2023-08-02] (Microsoft Corporation -> Microsoft Corporation)
Toolbar: HKLM-x32 - Kein Name - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Keine Datei
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2023-09-16] (Microsoft Corporation -> Microsoft Corporation)
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2022-05-07 07:24 - 2022-05-07 07:22 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\russo\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.2.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppHost => (EnableWebContentEvaluation: 1)
ist aktiviert.
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKLM\...\StartupApproved\Run32: => "AdobeAAMUpdater-1.0"
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\StartupApproved\Run: => "Battle.net"
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\StartupApproved\Run: => "Overwolf"
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\StartupApproved\Run: => "Discord"
HKU\S-1-5-21-1479023081-980201380-1462311256-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{732D1D1A-425A-4712-B040-679EAD5ED607}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{39829EBC-DD9B-450D-AB93-5073888DF1BF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{04EDF66D-7DB6-4742-80F5-41A6514EE2DF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{1D6EF6A5-CBE3-4CEA-9EA9-4734B47CCF43}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{6824648A-D8B5-4162-BDFF-A4DBF248DFC3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{6C3A8195-86FE-40B1-AF3C-CBFEE03E45D3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (Nvidia Corporation -> NVIDIA Corporation)
FirewallRules: [{B9857B9B-38F3-4809-A42B-DAA6CB1A1805}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23091.406.2009.3890_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{573F6D3C-7F52-4628-9BC1-0F007682AE4F}] => (Allow) C:\Program Files\WindowsApps\MicrosoftTeams_23091.406.2009.3890_x64__8wekyb3d8bbwe\msteams.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FDBDA6B9-8D53-4486-9003-09F8B4AE5F6E}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\asus_framework.exe (ASUSTeK COMPUTER INC. -> ASUSTek Computer Inc.)
FirewallRules: [{EA5BA451-765F-4F7F-A219-48343950C972}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmourySocketServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{32E5775F-7BDE-4614-B14E-64E5087EABA2}] => (Allow) C:\Program Files (x86)\ASUS\ArmouryDevice\dll\ArmourySocketServer\ArmouryHtmlDebugServer.exe (ASUSTeK COMPUTER INC. -> ASUS)
FirewallRules: [{B3D8BD30-820A-4AF4-B0FA-3F56951B2220}] => (Allow) C:\Users\russo\AppData\Local\Packages\B9ECED6F.ArmouryCrate_qmba6cd70vzyy\LocalState\GridUpdateFile\ASUSGCDriverUpdateClient.exe (ASUSTeK COMPUTER INC. -> ASUSTeK Computer Inc.)
FirewallRules: [{931CB466-5EF2-446F-B63F-9E20CC5A17CD}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{7A7B0F5D-D48F-4F7D-A0D5-F1FF0D387339}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [UDP Query User{82E20764-8086-4EBA-8B8A-FEBB64DC0755}C:\program files (x86)\overwatch\_retail_\overwatch.exe] => (Allow) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{F4B29529-E5C8-421B-A8AE-0836B7AC390F}] => (Block) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{63197211-ECD9-46C1-8D36-2F68623557A3}] => (Block) C:\program files (x86)\overwatch\_retail_\overwatch.exe (Blizzard Entertainment, Inc. -> Blizzard Entertainment)
FirewallRules: [{5648D249-4E39-4A9B-B18B-FBD39258644C}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{251807BA-DD35-4707-96B3-E6F1FA247856}] => (Allow) C:\Program Files\ASUS\ROG Live Service\ROGLiveService.exe (ASUSTeK COMPUTER INC. -> ASUSTek COMPUTER INC.)
FirewallRules: [{B0F7CA27-D0C1-456B-A23F-9B357DA6ACDA}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F79582A6-3D1D-49F7-AA11-F45A5C2E28D1}] => (Allow) C:\Program Files (x86)\Overwolf\0.230.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{BF89473D-0733-4305-B791-F88F4C5810FF}] => (Allow) C:\Program Files (x86)\Overwolf\0.230.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{7B1E6D74-199C-4B70-B1F7-328EE629EB1B}] => (Block) C:\Program Files (x86)\Overwolf\0.230.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{A2DA7D3B-73CF-47D7-A696-39AB157920A2}] => (Block) C:\Program Files (x86)\Overwolf\0.230.0.10\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{D168266C-3F4A-47F2-A66A-5B8CCBA53A64}] => (Allow) C:\Program Files (x86)\Overwolf\0.233.1.2\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{CFFE4072-1082-48DC-A076-BFE12695BBB7}] => (Allow) C:\Program Files (x86)\Overwolf\0.233.1.2\OverwolfBrowser.exe (Overwolf Ltd -> Overwolf LTD)
FirewallRules: [{5A0A4E9B-836F-4806-8A77-3D9A0044D031}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{A66008BA-311D-4326-83D6-B878123C6251}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{95C15204-359D-44C1-AB26-969152702223}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8F86338C-DEDB-485C-A82E-21C5DCF594C9}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{E5F67E4D-A500-48E5-A340-7D6A8C65DC99}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{FC635872-781D-4384-AECF-5BE33F41727B}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{EF72AD46-1CFF-4DE7-9488-8FED8FE9DD19}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{BF321981-D3E5-4871-A6AA-2D7D0D5A3CCD}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{99A48646-C4BF-4311-A351-36AA05848B26}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{30FED703-7423-4C02-82DA-DCDC53EE3129}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.220.1216.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{19D4D9AF-8A18-43FF-957A-DD0A66C7847B}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\117.0.2045.31\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
==================== Wiederherstellungspunkte =========================
16-09-2023 15:19:55 Windows Update
20-09-2023 19:45:55 Windows Update
==================== Fehlerhafte Geräte im Gerätemanager ============
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (09/21/2023 02:30:47 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (09/20/2023 02:30:47 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (09/19/2023 05:42:41 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (09/18/2023 02:30:47 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (09/17/2023 02:30:47 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (09/16/2023 02:30:47 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (09/15/2023 02:30:47 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Error: (09/14/2023 02:30:47 PM) (Source: Firefox Default Browser Agent) (EventID: 2) (User: )
Description: Event-ID 2
Systemfehler:
=============
Error: (09/22/2023 06:03:35 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde unerwartet beendet. Dies ist bereits 1 Mal vorgekommen. Folgende Korrekturmaßnahmen werden in 6000 Millisekunden durchgeführt: Neustart des Diensts.
Error: (09/22/2023 06:03:35 AM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "NVIDIA LocalSystem Container" wurde mit folgendem Fehler beendet:
Für einen allgemeinen Befehl wurde ein Ergebnis zurückgegeben, das auf einen Fehler hinweist.
Error: (09/22/2023 05:34:50 AM) (Source: DCOM) (EventID: 10000) (User: THISISMYHOUSE)
Description: Ein DCOM-Server konnte nicht gestartet werden: {0358B920-0AC7-461F-98F4-58E32CD89148}. Fehler:
"2147942767"
Aufgetreten beim Start dieses Befehls:
C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683}
Error: (09/22/2023 05:06:16 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 124) (User: NT-AUTORITÄT)
Description: 03225747456
Error: (09/22/2023 05:06:16 AM) (Source: Microsoft-Windows-Hyper-V-Hypervisor) (EventID: 42) (User: NT-AUTORITÄT)
Description: Fehler beim Hypervisorstart. SVM ist entweder nicht vorhanden oder im BIOS nicht aktiviert.
Error: (09/21/2023 10:58:28 AM) (Source: DCOM) (EventID: 10010) (User: THISISMYHOUSE)
Description: Der Server "{8CFC164F-4BE5-4FDD-94E9-E2AF73ED4A19}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (09/21/2023 10:56:13 AM) (Source: Microsoft-Windows-Kernel-Boot) (EventID: 124) (User: NT-AUTORITÄT)
Description: 03225747456
Error: (09/21/2023 10:56:13 AM) (Source: Microsoft-Windows-Hyper-V-Hypervisor) (EventID: 42) (User: NT-AUTORITÄT)
Description: Fehler beim Hypervisorstart. SVM ist entweder nicht vorhanden oder im BIOS nicht aktiviert.
Windows Defender:
================
Date: 2023-09-19 13:28:25
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {6CD40E18-233B-4909-B3A5-ED4FB93BD393}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-09-18 13:22:16
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {3695A486-BF30-435F-AB67-6C80D35E81D1}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-09-17 12:20:02
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {8ADDE372-D8A4-4381-B3E1-17CAAB6010EB}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-09-13 09:31:32
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {8C1631F7-F845-49F4-B35D-6872F23481AA}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
Date: 2023-09-08 08:42:52
Description:
Die Microsoft Defender Antivirus-Überprüfung wurde vor ihrem Abschluss beendet.
Überprüfungs-ID: {E3F0BBB6-8E2D-40C5-B2A6-96B28F3CEB5C}
Überprüfungstyp: Antimalware
Überprüfungsparameter: Schnellüberprüfung
Benutzer: NT-AUTORITÄT\SYSTEM
CodeIntegrity:
===============
Date: 2023-09-21 11:14:08
Description:
Code Integrity determined that a process (\Device\HarddiskVolume3\ProgramData\Microsoft\Windows Defender\Platform\4.18.23080.2006-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.
==================== Speicherinformationen ===========================
BIOS: American Megatrends Inc. 4003 03/13/2023
Hauptplatine: ASUSTeK COMPUTER INC. TUF GAMING B450-PLUS II
Prozessor: AMD Ryzen 7 5700X 8-Core Processor
Prozentuale Nutzung des RAM: 28%
Installierter physikalischer RAM: 16296.75 MB
Verfügbarer physikalischer RAM: 11607.87 MB
Summe virtueller Speicher: 35752.75 MB
Verfügbarer virtueller Speicher: 28387.6 MB
==================== Laufwerke ================================
Drive c: (Windows) (Fixed) (Total:930.41 GB) (Free:697.5 GB) (Model: KINGSTON SNV2S1000G) NTFS
Drive d: (INTENSO) (Fixed) (Total:931.28 GB) (Free:427.26 GB) (Model: Intenso External USB 3.0 SCSI Disk Device) FAT32
Drive e: (MYHOUSE) (Fixed) (Total:4657.25 GB) (Free:3760.33 GB) (Model: Intenso SCSI SCSI Disk Device) FAT32
\\?\Volume{2c1e83da-2772-4f9e-80a0-b80e5b1e38dc}\ (Recovery) (Fixed) (Total:0.83 GB) (Free:0.13 GB) NTFS
\\?\Volume{5004ce73-c2b8-445e-9301-da204f5354d5}\ (SYSTEM) (Fixed) (Total:0.25 GB) (Free:0.2 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: B58FB806)
Partition: GPT.
Attempted reading MBR returned 0 bytes.
Could not read MBR for disk 1.
==========================================================
Disk: 2 (Size: 931.5 GB) (Disk ID: D700BEEA)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=FAT32)
==================== Ende von Addition.txt =======================
|
|
22.09.2023, 09:01
| #2 | |
| /// Winkelfunktion /// TB-Süch-Tiger™   | Windows 11: Firefox Google WebhpZitat:
__________________ |
|
22.09.2023, 11:39
| #3 |
| | Windows 11: Firefox Google Webhp Hallo cosinus,
__________________Danke für deine antwort. Da ich mich gewundert habe das bei mir am ende der url webhp steht, habe ich gegoogelt. Auf der googel support Seite stand das es eine Malware sein könnte. Ich schreibe könnte weil es steht auch das es harmlos ist und keine Malware. Da ich nicht weiß was jetzt richtig ist, dachte ich lasse ich es checken. |
|
22.09.2023, 12:33
| #4 |
| /// Winkelfunktion /// TB-Süch-Tiger™ | Windows 11: Firefox Google Webhp Da steht am Ende der URL irgendwas. Wie bitte kommst du darauf dass das irgendwas mit Malware ist?  Man muss nicht aus allem immer ein Drama machen. Du hast keine Probleme. Da ist irgendwas gewesen was du nicht kennst, das ist kein Grund vom Schlimmsten auszugehen. Und Probleme hast du auch keine. Geh mit Malwarebytes rüber und fertig wenn es keine Funde gab.
__________________ Logfiles bitte immer in CODE-Tags posten  |
|
26.09.2023, 20:40
| #5 |
| /// TB-Ausbilder | Windows 11: Firefox Google Webhp Fehlende Rückmeldung Dieses Thema wurde aus unseren Abos gelöscht. Somit bekommen wir keine Benachrichtigung über neue Antworten. Solltest Du das Thema erneut brauchen, schicke uns bitte eine Erinnerung inklusive Link zum Thema. Hinweis: Das Verschwinden der Symptome bedeutet nicht, dass Dein Rechner schon sauber ist. Jeder andere bitte hier klicken und ein eigenes Thema erstellen! |
|
| Themen zu Windows 11: Firefox Google Webhp |
| adobe, defender, desktop, downloader, firefox, google, home, internet, internet explorer, monitor, mozilla, performance, photoshop, prozesse, realtek, registry, rundll, scan, server, services.exe, software, svchost.exe, system, udp, windows |
Linear-Darstellung
