| |
| |||||||
Log-Analyse und Auswertung: Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriösWindows 7 Wenn Du Dir einen Trojaner eingefangen hast oder ständig Viren Warnungen bekommst, kannst Du hier die Logs unserer Diagnose Tools zwecks Auswertung durch unsere Experten posten. Um Viren und Trojaner entfernen zu können, muss das infizierte System zuerst untersucht werden: Erste Schritte zur Hilfe. Beachte dass ein infiziertes System nicht vertrauenswürdig ist und bis zur vollständigen Entfernung der Malware nicht verwendet werden sollte.XML. |
 |
13.05.2025, 18:34
| #1 |
 |  Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös Betreff: Problem mit "Google Custom Search" – Bitte um weitere Hilfe Hallo T-Board-Team, vielen Dank für euren Beitrag zum Thema „Google Custom Search“. Ich habe versucht, das Problem mithilfe der dort beschriebenen Schritte selbst zu lösen. Anfangs schien das auch zu funktionieren, doch nach einem halben Tag war das Problem leider wieder da: https://www.trojaner-board.de/182842-google-custom-search-from-chrome-firefox-ie-edge-entfernen.html Daher bitte ich nun dringend um weitere Unterstützung. Folgendes habe ich bereits unternommen: Erweiterungen entfernt & Einstellungen angepasst: Ich habe alle verdächtigen Erweiterungen entfernt, die Startseiten und Suchmaschinen-Einstellungen geprüft und bereinigt (nur in Chrome, in Brave tritt das problem nicht auf und andere Browser nutze ich nicht). Browser-Verknüpfungen: Keine verdächtigen Einträge gefunden. Malware-Scanner ausgeführt: Sowohl Malwarebytes Anti-Malware als auch AdwCleaner wurden erfolgreich ausgeführt (Logs liegen vor). Weitere Tools versucht, aber gescheitert: Junkware Removal Tool, Shortcut Cleaner und ESET Online Scanner konnten nicht heruntergeladen oder ausgeführt werden (auch manuelles Speichern hat nicht funktioniert). Den Absolut Installer habe ich heruntergeladen, aber bis auf eine unbekannte Smartphone-Verknüpfung ist nichts passiert. Ich hoffe auf eure Unterstützung, da ich mit meinem Latein am Ende bin. Vielen Dank und viele Grüße Phil LOGs FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 09-05-2025
durchgeführt von Razer (Administrator) auf DESKTOP-HQE06JL (Razer Blade Pro) (13-05-2025 18:58:35)
Gestartet von C:\Users\Razer\Downloads\FRST64.exe
Geladene Profile: Razer
Plattform: Microsoft Windows 10 Home Version 22H2 19045.5737 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\splwow64.exe
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.1.1.12\DiscoverySrv.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <4>
(drivers\RivetNetworks\Killer\xTendUtilityService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxEM.exe
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\Razer\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe
(explorer.exe ->) (Google LLC -> Google LLC) C:\Program Files\Google\Chrome\Application\chrome.exe <34>
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msinfo32.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Gen Digital Inc. -> Gen Digital Inc.) C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Rivet Networks LLC -> CloudBees, Inc.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2502.2.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.) C:\Program Files\Dolby Digital Plus\ddp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18392048 2017-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_PushButton] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [654048 2025-04-28] (Geek Software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [599056 2021-10-28] (Razer USA Ltd. -> Razer Inc.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [543368 2025-03-13] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2024-01-04] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2024-01-04] (Adobe Inc. -> )
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3599496 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [RazerAxon] => C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe [452232 2025-04-14] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [MicrosoftEdgeAutoLaunch_4A732F8C0E01295481A0CE2C2E3D2A4A] => "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --no-startup-window --win-session-start [4045880 2025-05-08] (Microsoft Corporation -> Microsoft Corporation)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4693600 2025-04-21] (Valve Corp. -> Valve Corporation)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3819104 2025-05-07] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [f.lux] => C:\Users\Razer\AppData\Local\FluxSoftware\Flux\flux.exe [1528952 2024-02-21] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [45882672 2025-04-09] (Gen Digital Inc. -> Gen Digital Inc.)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {8ac3498c-fe3c-11ee-b305-8c885b4408ae} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {fe1c403f-9d73-11ee-b2f8-90203a1a03c3} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {fe1c40b7-9d73-11ee-b2f8-90203a1a03c3} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3599496 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2023-12-08] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\136.0.7103.93\Installer\chrmstp.exe [2025-05-09] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\136.1.78.97\Installer\chrmstp.exe [2025-05-07] (Brave Software, Inc. -> Brave Software, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {3DB58BB8-B3BA-4701-9103-FD8D1C79BDFB} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1580992 2025-03-21] (Adobe Inc. -> Adobe Inc.)
Task: {07809AE6-8619-48A1-A235-D392BB8D319B} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.1.1.12\WatchDog.exe [1156400 2025-03-25] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.1.1.12\repair
Task: {C6F5EB3C-EC5B-491F-B1BE-943B8D378C2F} - System32\Tasks\BraveSoftwareUpdateTaskMachineCore{6FD57E87-CE48-40D9-8C59-A790ABE089C7} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2024-11-11] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {B2E50A29-BEB0-4C7D-91FE-ADBB19583031} - System32\Tasks\BraveSoftwareUpdateTaskMachineUA{49218D06-8A0E-434D-A932-84076660087D} => C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2024-11-11] (Brave Software, Inc. -> BraveSoftware Inc.)
Task: {64B716EC-9FAF-4B90-BE22-270CDCFD596D} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [3480504 2025-04-09] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {D23416CC-1EB1-4E4D-8DD7-5B37D2597A49} - System32\Tasks\CCleanerCrashReporting => C:\Program Files\CCleaner\CCleanerBugReport.exe [6139696 2025-04-09] (Gen Digital Inc. -> Gen Digital Inc.) -> --product 90 --send dumps|report --path "C:\Program Files\CCleaner\LOG" --programpath "C:\Program Files\CCleaner" --guid "7b4bb356-d436-40d3-8bda-ea7c1b549fe8" --version "6.35.0.11488" --silent
Task: {220B34C8-45B6-4BFA-B7A3-B6EAE15E3C20} - System32\Tasks\CCleanerSkipUAC - Razer => C:\Program Files\CCleaner\CCleaner.exe [39622960 2025-04-09] (Gen Digital Inc. -> Gen Digital Inc.)
Task: {AE7EE9B3-C3DD-4E57-A7CC-0B38B5AC77DA} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe [768896 2014-09-26] (Dolby Laboratories, Inc. -> Dolby Laboratories Inc.)
Task: {0AF6C08C-9698-468F-A9EA-38446C3BDE59} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{BB6E784A-9C96-47E7-8F4A-B3919A13C99A} => "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe" --wake --system (Keine Datei)
Task: {9D6161A1-51FF-41C2-B657-BCFE5B59D83C} - System32\Tasks\GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7156.0{2079B045-74EF-4B0B-98F7-9E9D5BD8C22A} => C:\Program Files (x86)\Google\GoogleUpdater\138.0.7156.0\updater.exe [7096416 2025-05-02] (Google LLC -> Google LLC)
Task: {26A111F6-A64A-40C7-B20D-4106F35E3416} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86684041-FEB2-4712-873A-2FC67BA26860} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F041E7B-ECF7-499B-A090-4969DF2C0978} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B4F1AB8-9831-4774-A1E8-C47E9B2774D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {C3D08177-E072-4FD6-947B-EC5673EB367D} - System32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe [3275808 2025-04-07] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {2C5C1827-C724-4C5A-8FD4-5A7E6059C9EB} - System32\Tasks\OneDrive Startup Task-S-1-5-21-3644930430-3491832035-840970103-1001 => C:\Users\Razer\AppData\Local\Microsoft\OneDrive\25.065.0406.0002\OneDriveLauncher.exe [679232 2025-05-06] (Microsoft Corporation -> Microsoft Corporation)
Task: {0522A163-6462-474A-8206-39F146764E7B} - System32\Tasks\RazerCortexScheduleClean => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [543368 2025-03-13] (Razer USA Ltd. -> Razer Inc.)
Task: {EE4F336E-70CC-4FC1-9879-2B0ED4C86929} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-3644930430-3491832035-840970103-1001 => C:\Users\Razer\AppData\Roaming\Zoom\bin\Zoom.exe [441144 2025-05-12] (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
Task: C:\Windows\Tasks\CCleanerCrashReporting.job => C:\Program Files\CCleaner\CCleanerBugReport.exe
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}\45E47424F48523135383232323: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}\45E47424F48523135383232323: [DhcpDomain] fritz.box
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default [2025-05-12]
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}
Edge Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-05-12]
Edge Extension: (Edge relevant text changes) - C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-01-04] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-01-04] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default [2025-05-13]
CHR Notifications: Default -> hxxps://app.asana.com; hxxps://calendar.google.com; hxxps://teams.microsoft.com; hxxps://www.y2mate.com
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxps://www.google.de/"
CHR Extension: (OneTab) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2024-06-12]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-05-12]
CHR Extension: (Dark Reader) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2025-05-12]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2025-05-02]
CHR Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-26]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-05-09]
CHR Extension: (QuillBot: AI Writing and Grammar Checker Tool) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\iidnbdjijdkbmajdffnidomddglmieko [2025-05-12]
CHR Extension: (GPT Workspace) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgocjgkdladclacgmkkiklmdcmngjcba [2025-05-12]
CHR Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2025-05-13]
CHR Extension: (Bearly.ai) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkennebljmnnpimcgdjlocbncpamgipp [2024-01-06]
CHR Extension: (LinkOff - Filter and Customizer for LinkedIn™) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\maanaljajdhhnllllmhmiiboodmoffon [2024-12-24]
CHR Extension: (Shazam: Find song names from your browser) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2025-02-11]
CHR Extension: (Snap Color Picker) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbpljhppefmpifoffhhmllmacfdckokh [2025-05-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-27]
CHR Extension: (SiteBlock) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2025-04-01]
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2 [2025-05-12]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-18]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-08-18]
CHR Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-18]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-08-18]
CHR Extension: (OneTab Plus:Tab Manage & Productivity) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lepdjbhbkpfenckechpdfohdmkhogojf [2024-02-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-05]
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\System Profile [2025-05-13]
CHR HKU\S-1-5-21-3644930430-3491832035-840970103-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fjoaledfpmneenckfbpdfhkmimnjocfa]
Brave:
=======
BRA Profile: C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2025-05-13]
BRA Extension: (OneTab) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2024-11-11]
BRA Extension: (Tab Manager Plus for Chrome) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cnkdjjdmfiffagllbiiilooaoofcoeff [2024-11-11]
BRA Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-05-09]
BRA Extension: (BlockSite: Block Websites & Stay Focused) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2025-05-05]
BRA Extension: (Feed Blocker for Professionals) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eikaafmldiioljlilngpogcepiedpenf [2025-04-30]
BRA Extension: (Dark Reader) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2025-05-12]
BRA Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2025-04-30]
BRA Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-05-02]
BRA Extension: (QuillBot: AI Writing and Grammar Checker Tool) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\iidnbdjijdkbmajdffnidomddglmieko [2025-05-09]
BRA Extension: (GPT Workspace) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jgocjgkdladclacgmkkiklmdcmngjcba [2025-05-12]
BRA Extension: (OneTab Plus:Tab Manage & Productivity) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lepdjbhbkpfenckechpdfohdmkhogojf [2024-11-11]
BRA Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2025-05-04]
BRA Extension: (LinkOff - Filter and Customizer for LinkedIn™) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\maanaljajdhhnllllmhmiiboodmoffon [2024-12-24]
BRA Extension: (Shazam: Find song names from your browser) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2025-02-11]
BRA Extension: (Snap Color Picker) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nbpljhppefmpifoffhhmllmacfdckokh [2025-05-05]
BRA Extension: (SiteBlock) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2025-04-01]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2025-05-12]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2025-05-13]
BRA Extension: (Brave NTP background images) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2025-04-25]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2025-05-13]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2025-05-13]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2025-05-05]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2025-04-10]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2024-11-11]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2025-05-13]
BRA Extension: (Brave Ads Resources) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\jcncoheihebhhiemmbmpfhkceomfipbj [2025-03-25]
BRA Extension: (Brave Ad Block Updater (EasyList Germany (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\lfmefmifdjlfneapckmpkinmlofjehbp [2025-05-13]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2025-03-25]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\obbokncgfcbepeipkhpdepjjoncelefj [2025-05-13]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2024-01-04] (Adobe Inc. -> Adobe Inc.)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2577184 2023-07-20] (Bitdefender SRL -> Bitdefender)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2024-11-11] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\136.1.78.97\elevation_service.exe [3157520 2025-05-07] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2024-11-11] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 CCleanerPerformanceOptimizerService; C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe [1088816 2025-04-09] (Gen Digital Inc. -> Gen Digital Inc.)
R2 CortexLauncherService; C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe [711304 2025-03-13] (Razer USA Ltd. -> Razer Inc.)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [107164352 2025-04-18] (Electronic Arts, Inc. -> Electronic Arts)
S4 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [18763872 2025-05-07] (Electronic Arts, Inc. -> Electronic Arts)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2500072 2025-03-26] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2023-10-26] (Huawei Technologies Co., Ltd. -> ) [Datei ist nicht signiert]
R2 Killer Network Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2484992 2018-09-04] (Rivet Networks LLC -> Rivet Networks)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9406208 2025-05-04] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
S4 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2023-08-09] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\Display.NvContainer\NVDisplay.Container.exe [1275560 2025-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [654048 2025-04-28] (Geek Software GmbH -> geek software GmbH)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [755008 2025-03-25] (Bitdefender SRL -> Bitdefender)
R2 QcomWlanSrv; C:\Windows\System32\drivers\QcomWlanSrvx64.exe [189768 2022-11-09] (Qualcomm Atheros, Inc. -> )
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [447080 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943240 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256256 2024-10-15] (Razer USA Ltd. -> Razer Inc)
R2 Razer Game Manager Service 3; C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe [364800 2024-12-12] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300168 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [513672 2025-03-06] (Razer USA Ltd. -> Razer Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 xTendSoftAPService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [72952 2018-09-04] (Rivet Networks LLC -> CloudBees, Inc.)
R2 xTendUtilityService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [72952 2018-09-04] (Rivet Networks LLC -> CloudBees, Inc.)
S2 GoogleUpdaterInternalService134.0.6947.0; "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe" --system --windows-service --service=update-internal [X]
S2 GoogleUpdaterService134.0.6947.0; "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe" --system --windows-service --service=update [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 cpuz158; C:\Windows\temp\cpuz158\cpuz158_x64.sys [44592 2025-04-28] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ACHTUNG
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2023-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 glidetpd; C:\Windows\System32\drivers\glidetpd.sys [32248 2017-09-01] (Microsoft Windows Hardware Compatibility Publisher -> Cirque Corporation)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2023-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iaLPSS2_GPIO2; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_skl.inf_amd64_2a35efc43f1a612e\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_UART2; C:\Windows\System32\DriverStore\FileRepository\ialpss2_uart2_skl.inf_amd64_a59239db7de9954f\iaLPSS2_UART2_ICL.sys [312600 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 KfeCoSvc; C:\Windows\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [154752 2018-09-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R3 KslD; C:\Windows\System32\drivers\wd\KslD.sys [331168 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [234072 2025-05-12] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [22120 2025-03-10] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239568 2024-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 NDivert; C:\Program Files\NordVPN\7.32.5.0\Drivers\NDivert.sys [131472 2024-10-31] (nordvpn s.a. -> Nordvpn S.A.)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [44928 2023-01-17] (nordvpn s.a. -> TEFINCOM S.A.)
R3 ovpn-dco; C:\Windows\System32\drivers\ovpn-dco.sys [91584 2024-06-05] (WDKTestCert lev,133391533294737317 -> OpenVPN, Inc)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [52240 2017-07-19] (Razer USA Ltd. -> Razer Inc)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [41120 2024-08-29] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20016 2025-04-15] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [605576 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [100744 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Ein Monat (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-05-13 18:58 - 2025-05-13 18:59 - 000041664 _____ C:\Users\Razer\Downloads\FRST.txt
2025-05-13 18:57 - 2025-05-13 18:58 - 000000000 ____D C:\FRST
2025-05-13 18:57 - 2025-05-13 18:57 - 002405376 _____ (Farbar) C:\Users\Razer\Downloads\FRST64 (2).exe
2025-05-13 18:56 - 2025-05-13 18:56 - 002405376 _____ (Farbar) C:\Users\Razer\Downloads\FRST64 (1).exe
2025-05-13 18:55 - 2025-05-13 18:55 - 002405376 _____ (Farbar) C:\Users\Razer\Downloads\FRST64.exe
2025-05-13 17:06 - 2025-05-13 17:06 - 000205850 _____ C:\Users\Razer\Desktop\kaufvertrag-pkw-von-privat.pdf
2025-05-13 17:03 - 2025-05-13 17:03 - 000048039 _____ C:\Users\Razer\Downloads\Unbenanntes Dokument (1).pdf
2025-05-13 16:59 - 2025-05-13 13:58 - 055994157 _____ C:\Users\Razer\Desktop\AQ A2 Großsysteme und Kaskaden Ausdruck 1.pdf
2025-05-12 21:13 - 2025-05-12 21:13 - 000000000 ____D C:\Windows\LastGood.Tmp
2025-05-12 21:13 - 2025-05-12 21:13 - 000000000 ____D C:\Users\Razer\AppData\LocalLow\Intel
2025-05-12 21:13 - 2025-05-12 21:13 - 000000000 ____D C:\ProgramData\Intel
2025-05-12 17:43 - 2025-05-12 17:43 - 000573811 _____ C:\Users\Razer\Desktop\an7En4q_460svav1.mp4
2025-05-12 16:55 - 2025-05-12 16:55 - 000001023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Launcher.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Toolbox.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001011 _____ C:\Users\Public\Desktop\PDF24 Launcher.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001004 _____ C:\Users\Public\Desktop\PDF24 Toolbox.lnk
2025-05-12 16:54 - 2025-05-12 16:54 - 000001481 _____ C:\Users\Public\Desktop\Foxit PDF Reader.lnk
2025-05-12 16:54 - 2025-05-12 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2025-05-12 16:52 - 2025-05-12 16:52 - 000001032 _____ C:\Users\Razer\Desktop\Telegram.lnk
2025-05-12 16:52 - 2025-05-12 16:52 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2025-05-12 16:51 - 2025-05-12 16:51 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-05-12 16:41 - 2025-05-12 16:41 - 000000000 ____D C:\Users\Razer\AppData\Roaming\CCleaner
2025-05-12 16:36 - 2025-05-12 16:36 - 009568256 _____ (Malwarebytes) C:\Users\Razer\Downloads\adwcleaner.exe
2025-05-12 16:35 - 2025-05-12 16:36 - 000000000 ____D C:\AdwCleaner
2025-05-12 16:35 - 2025-05-12 16:35 - 007025360 _____ (Malwarebytes) C:\Users\Razer\Downloads\adwcleaner_7.3.exe
2025-05-12 14:45 - 2025-05-12 14:45 - 000086375 _____ C:\Users\Razer\Desktop\bahnfahrt kiel hannover hin-rückfahrt.pdf
2025-05-09 19:22 - 2025-05-09 20:52 - 000001064 _____ C:\Users\Razer\Desktop\9.5.25 call ek4u.txt
2025-05-04 20:38 - 2025-05-04 20:38 - 000063501 _____ C:\Users\Razer\Downloads\bahncard bescherde teil 2.pdf
2025-05-02 14:51 - 2025-03-25 15:23 - 003007011 _____ C:\Users\Razer\Desktop\Angebot_11,4kW_Wärmepumpe_Familie Alms.pdf
2025-04-28 15:39 - 2025-04-28 16:31 - 000000163 _____ C:\Users\Razer\Desktop\thomas Machacek.txt
2025-04-26 16:08 - 2025-04-26 16:08 - 000041613 _____ C:\Users\Razer\Downloads\manu 25.pdf
2025-04-26 15:07 - 2025-04-26 16:11 - 000001141 _____ C:\Users\Razer\Desktop\manu fc25.txt
2025-04-20 11:41 - 2025-04-20 11:41 - 000105948 _____ C:\Users\Razer\Downloads\Unbenanntes Dokument (2).pdf
2025-04-17 21:18 - 2025-04-14 08:16 - 002072456 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 002072456 _____ C:\Windows\system32\vulkaninfo.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001614216 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001614216 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001576840 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001576840 _____ C:\Windows\system32\vulkan-1.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001389960 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001389960 _____ C:\Windows\SysWOW64\vulkan-1.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 000478384 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 000374960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 001259648 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 000674992 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 000509104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 026001536 _____ C:\Windows\system32\nvidia-pcc.exe
2025-04-17 21:18 - 2025-04-14 08:10 - 002313872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001713816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001569448 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001220784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001053312 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 000942224 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2025-04-17 21:18 - 2025-04-14 08:10 - 000810128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2025-04-17 21:18 - 2025-04-14 08:09 - 023033472 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2025-04-17 21:18 - 2025-04-14 08:09 - 000467064 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2025-04-17 21:18 - 2025-04-14 08:08 - 020517016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 007323280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 005913744 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 005239936 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 003993752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 000853144 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2025-04-17 21:18 - 2025-04-14 08:06 - 005601032 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2025-04-17 21:18 - 2025-04-14 08:06 - 004902688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2025-04-17 21:18 - 2025-04-12 14:25 - 000142952 _____ C:\Windows\system32\nvinfo.pb
2025-04-17 19:03 - 2025-04-17 20:42 - 000004132 _____ C:\Users\Razer\Desktop\call 17.4.25 ek4u.txt
2025-04-16 12:28 - 2025-04-16 12:27 - 000437947 _____ C:\Users\Razer\Desktop\Phillip Marco Schilling Visitenkarte EK4YOU (1).pdf
2025-04-16 12:27 - 2025-04-16 12:27 - 000437947 _____ C:\Users\Razer\Downloads\Phillip Marco Schilling Visitenkarte EK4YOU (1).pdf
2025-04-16 12:01 - 2025-04-16 12:01 - 000114990 _____ C:\Users\Razer\Downloads\Q1 2025 - Tabellenblatt1.pdf
2025-04-15 10:47 - 2025-04-15 10:47 - 000001133 _____ C:\Users\Public\Desktop\Razer Axon.lnk
2025-04-15 10:46 - 2025-04-15 10:46 - 000488968 _____ C:\ProgramData\cl.uninstall.1744706521.bdinstall.v2.bin
2025-04-15 10:41 - 2025-04-15 10:41 - 000058304 _____ C:\ProgramData\agent.uninstall.1744706509.bdinstall.v2.bin
2025-04-15 09:56 - 2025-04-15 09:56 - 000001430 _____ C:\Users\Razer\Desktop\NVIDIA App (2).lnk
2025-04-15 09:28 - 2025-05-13 12:34 - 000003326 _____ C:\Windows\system32\Tasks\CCleanerCrashReporting
2025-04-15 09:17 - 2025-04-15 09:24 - 000003834 _____ C:\Windows\system32\Tasks\NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
2025-04-15 09:17 - 2025-04-15 09:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2025-04-15 09:17 - 2025-04-07 18:14 - 003114016 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2025-04-15 09:17 - 2025-04-07 18:14 - 002403360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2025-04-15 09:17 - 2025-04-07 17:52 - 000180760 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2025-04-15 09:17 - 2025-04-07 17:52 - 000159768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2025-04-15 08:59 - 2025-04-15 09:03 - 845040656 _____ (NVIDIA Corporation) C:\Users\Razer\Downloads\572.83-desktop-win10-win11-64bit-international-dch-whql.exe
2025-04-15 08:36 - 2025-04-15 10:28 - 000000000 ____D C:\Users\Razer\AppData\Local\EA SPORTS FC 25
2025-04-14 22:46 - 2025-04-14 22:46 - 003018368 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_ek4u.pdf
2025-04-14 13:40 - 2025-04-14 13:41 - 002114907 _____ C:\Users\Razer\Downloads\WP_Angebot_Willi_Blesin_final.pdf
2025-04-14 13:28 - 2025-04-14 13:28 - 003044421 _____ C:\Users\Razer\Downloads\Thomas_Machacek_22kW_neu (1).pdf
2025-04-14 13:28 - 2025-04-14 13:27 - 001572973 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_1213 (1).pdf
2025-04-14 13:26 - 2025-04-14 13:26 - 005199333 _____ C:\Users\Razer\Downloads\WP_Angebot_Willi_Blesin_1216.pdf
2025-04-13 21:30 - 2025-04-13 21:30 - 000142816 _____ C:\Users\Razer\Downloads\Werbebrief PV & WP variante 2.pdf
2025-04-13 20:34 - 2025-04-13 20:34 - 004670519 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_1213.pdf
2025-04-13 20:29 - 2025-04-13 20:29 - 003804639 _____ C:\Users\Razer\Downloads\Thomas_Machacek_22kW_neu.pdf
==================== Ein Monat (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-05-13 18:58 - 2024-12-22 22:53 - 000000000 ____D C:\Users\Razer\AppData\Local\Malwarebytes
2025-05-13 18:49 - 2023-09-25 12:08 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-05-13 18:33 - 2022-09-08 05:15 - 000000000 ____D C:\Windows\SystemTemp
2025-05-13 17:26 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-05-13 12:50 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-05-13 12:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-05-13 12:49 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-05-13 12:36 - 2023-09-25 12:14 - 001632024 _____ C:\Windows\system32\PerfStringBackup.INI
2025-05-13 12:36 - 2019-12-07 16:50 - 000707316 _____ C:\Windows\system32\perfh007.dat
2025-05-13 12:36 - 2019-12-07 16:50 - 000142574 _____ C:\Windows\system32\perfc007.dat
2025-05-13 12:34 - 2024-12-23 15:51 - 000000670 _____ C:\Windows\Tasks\CCleanerCrashReporting.job
2025-05-13 12:33 - 2023-09-25 12:23 - 000000000 __SHD C:\Users\Razer\IntelGraphicsProfiles
2025-05-12 21:43 - 2023-09-25 12:18 - 000000000 ____D C:\ProgramData\NVIDIA
2025-05-12 21:38 - 2024-01-04 13:06 - 000003542 _____ C:\Windows\system32\Tasks\Adobe Acrobat Update Task
2025-05-12 21:38 - 2023-09-25 12:22 - 000000000 ____D C:\Intel
2025-05-12 21:38 - 2023-09-25 12:08 - 000008192 ___SH C:\DumpStack.log.tmp
2025-05-12 21:38 - 2023-09-25 12:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-05-12 21:38 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2025-05-12 20:38 - 2023-09-25 12:33 - 000000000 ____D C:\Users\Razer\AppData\Local\D3DSCache
2025-05-12 20:30 - 2024-12-23 15:51 - 000000000 ____D C:\Program Files\CCleaner
2025-05-12 17:23 - 2023-09-25 12:14 - 000000000 ____D C:\Users\Razer\AppData\Local\Packages
2025-05-12 16:55 - 2025-03-01 17:39 - 000000000 ____D C:\Program Files\PDF24
2025-05-12 16:52 - 2023-09-29 12:14 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Telegram Desktop
2025-05-12 16:52 - 2023-09-29 12:14 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2025-05-12 16:51 - 2025-01-24 21:30 - 000000000 ____D C:\Program Files\dotnet
2025-05-12 16:51 - 2024-10-23 18:38 - 000004250 _____ C:\Windows\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-3644930430-3491832035-840970103-1001
2025-05-12 16:51 - 2023-09-27 19:52 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Zoom
2025-05-12 16:51 - 2023-09-25 12:28 - 000000000 ____D C:\ProgramData\Package Cache
2025-05-12 16:40 - 2023-12-26 22:55 - 000000000 ____D C:\Program Files (x86)\Steam
2025-05-12 16:40 - 2023-09-25 14:20 - 000000000 ____D C:\Users\Razer\AppData\Local\CrashDumps
2025-05-12 16:37 - 2023-09-27 23:24 - 000000000 ____D C:\Users\Razer\AppData\Roaming\vlc
2025-05-12 14:40 - 2023-09-27 19:32 - 000003978 _____ C:\Windows\system32\Tasks\RazerCortexScheduleClean
2025-05-12 09:35 - 2025-04-07 17:16 - 000000000 ____D C:\Users\Razer\Desktop\PRIVAT
2025-05-10 12:55 - 2023-09-25 12:08 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-05-09 17:35 - 2023-09-27 19:36 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-05-07 22:26 - 2023-12-29 18:27 - 000000000 ____D C:\ProgramData\EA Desktop
2025-05-07 22:04 - 2024-11-11 12:59 - 000002356 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2025-05-07 00:35 - 2023-09-25 12:08 - 000003756 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA
2025-05-07 00:35 - 2023-09-25 12:08 - 000003632 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore
2025-05-06 14:28 - 2025-02-06 13:27 - 000003570 _____ C:\Windows\system32\Tasks\OneDrive Startup Task-S-1-5-21-3644930430-3491832035-840970103-1001
2025-05-06 14:28 - 2023-09-25 12:16 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3644930430-3491832035-840970103-1001
2025-05-06 14:28 - 2023-09-25 12:16 - 000003378 _____ C:\Windows\system32\Tasks\OneDrive Standalone Update Task-S-1-5-21-3644930430-3491832035-840970103-1001
2025-05-06 14:28 - 2023-09-25 12:13 - 000002395 _____ C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-05-02 14:12 - 2024-01-04 13:06 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2025-05-02 14:12 - 2024-01-04 13:06 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-05-02 13:59 - 2024-12-23 15:51 - 000003936 _____ C:\Windows\system32\Tasks\CCleaner Update
2025-04-29 19:27 - 2025-04-07 17:19 - 000000000 ____D C:\Users\Razer\Desktop\BERUFLICH
2025-04-26 19:54 - 2023-12-29 18:27 - 000000000 ____D C:\ProgramData\Packer
2025-04-25 21:40 - 2023-09-25 12:14 - 000000000 ____D C:\ProgramData\Packages
2025-04-25 21:39 - 2023-09-25 12:17 - 000000000 ____D C:\Users\Razer\AppData\Local\PlaceholderTileLogoFolder
2025-04-25 10:45 - 2023-10-31 09:40 - 000000000 ____D C:\Program Files\NordUpdater
2025-04-25 08:21 - 2023-09-27 19:38 - 000000000 ____D C:\Users\Razer\AppData\Local\NVIDIA
2025-04-25 08:13 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-04-17 21:22 - 2023-09-26 12:04 - 000000000 ____D C:\Users\Razer\AppData\Local\NVIDIA Corporation
2025-04-17 21:22 - 2023-09-25 12:18 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2025-04-17 21:22 - 2023-09-25 12:18 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-04-15 10:57 - 2023-09-25 12:08 - 000000000 ____D C:\Windows\system32\Drivers\wd
2025-04-15 10:48 - 2024-03-25 10:02 - 000000000 ____D C:\Users\Razer\AppData\Local\NotificationTemp
2025-04-15 10:47 - 2023-09-25 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon
2025-04-15 10:43 - 2024-12-22 23:12 - 000000000 ____D C:\ProgramData\Bitdefender
2025-04-15 10:42 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2025-04-15 09:28 - 2023-09-25 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex
2025-04-15 09:23 - 2023-09-25 12:18 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2025-04-15 09:17 - 2023-09-25 14:15 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2025-04-15 09:00 - 2023-12-29 18:29 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Electronic Arts
2025-04-15 08:36 - 2023-12-29 18:29 - 000000000 ____D C:\ProgramData\Frostbite
2025-04-14 20:18 - 2023-12-26 23:09 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 09-05-2025
durchgeführt von Razer (13-05-2025 19:00:20)
Gestartet von C:\Users\Razer\Downloads
Microsoft Windows 10 Home Version 22H2 19045.5737 (X64) (2023-09-25 10:09:55)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-3644930430-3491832035-840970103-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3644930430-3491832035-840970103-503 - Limited - Disabled)
Gast (S-1-5-21-3644930430-3491832035-840970103-501 - Limited - Disabled)
Razer (S-1-5-21-3644930430-3491832035-840970103-1001 - Administrator - Enabled) => C:\Users\Razer
WDAGUtilityAccount (S-1-5-21-3644930430-3491832035-840970103-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 25.001.20474 - Adobe)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.1.0.587 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Backuptrans Android iPhone Viber Transfer + (x64) 3.1.86 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Backuptrans Android iPhone Viber Transfer + (x64)) (Version: 3.1.86 - Backuptrans)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 27.1.1.12 - Bitdefender)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 136.1.78.97 - Die Brave-Autoren)
CCleaner (HKLM\...\CCleaner) (Version: 6.35 - Piriform)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.458.0.5971 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{20a8704d-f282-4d39-b57c-177ec90557be}) (Version: 13.458.0.5971 - Electronic Arts)
f.lux (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Flux) (Version: 4.134 - f.lux Software LLC)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2025.1.0.27937 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 136.0.7103.93 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 14.0.0.310 - Huawei Technologies Co., Ltd.)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4815 - Intel Corporation)
Lunatask 1.7.9 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\288d4c26-e1c7-58e9-bf0f-d1c1f6fb9f59) (Version: 1.7.9 - Lunatask)
Malwarebytes version 5.2.11.183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.2.11.183 - Malwarebytes)
Microsoft .NET Host - 8.0.15 (x64) (HKLM\...\{4C903F19-B4C3-4D0C-8CC9-D444C511AF1C}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.15 (x64) (HKLM\...\{11CCC9F6-77AA-4421-9EAC-BAEC36D96817}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.15 (x64) (HKLM\...\{8731E6E3-AF96-4515-ACEC-DBFB3DF55292}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.64 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.64 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\OneDriveSetup.exe) (Version: 25.065.0406.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.15 (x64) (HKLM\...\{0E4A7820-FDA4-4250-B7AC-E7A2F7B43B64}) (Version: 64.60.31203 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.15 (x64) (HKLM-x32\...\{5625bb48-295c-4113-bc92-d6a69b19b04c}) (Version: 8.0.15.34718 - Microsoft Corporation)
NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.4.6.959 - Nord Security)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 7.32.5.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NVIDIA FrameView SDK 1.5.10920.35420203 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.10920.35420203 - NVIDIA Corporation)
NVIDIA Grafiktreiber 576.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 576.02 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.4.3.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.3.2 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
NVIDIA-App 11.0.3.232 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.3.232 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.1.3 - OBS Project)
PDF24 Creator (HKLM\...\{0C17F9F9-B9AF-483C-A44D-A916BD96D4D1}) (Version: 11.25.1 - geek software GmbH)
Razer Axon (HKLM\...\Razer Axon_is1) (Version: 2.2.1.0 - Razer Inc.)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.6 - Razer Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 11.1.5.0 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.41 - Razer Inc.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.10.0315.031117 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8245 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Telegram Desktop (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 5.13.1 - Telegram FZ-LLC)
Todoist 9.4.0 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\046cc9a8-e645-5367-8486-409093e0b69a) (Version: 9.4.0 - Doist)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VidJuice UniTube Version 6.3.0 (HKLM\...\VidJuice UniTube_is1) (Version: 6.3.0 - Mobee Technology Co., Limited)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vysor (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\vysor) (Version: 5.0.7 - Vysor Inc.)
WinRAR 6.23 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.23.0 - win.rar GmbH)
Zoom Workplace (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\ZoomUMX) (Version: 6.4.6 (64360) - Zoom Communications, Inc.)
Chrome apps:
============
Do this to get fit (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\20e6337838ae477ae9341eac29308866) (Version: 1.0 - Google\Chrome)
Dokumente (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\720be21a2e6fc6834597b7f341384a96) (Version: 1.0 - Google\Chrome)
Gmail (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\13d13583ddb177c4c405f54cde512a21) (Version: 1.0 - Google\Chrome)
Google Drive (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\67de23052a953a94dbdeca31011ef84a) (Version: 1.0 - Google\Chrome)
Präsentationen (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\99d49a267397ad4733ccdff094476e82) (Version: 1.0 - Google\Chrome)
Sheets (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\fd72a94144682c8168ad4fe559194f89) (Version: 1.0 - Google\Chrome)
YouTube (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\5442e3780cba0a36baf1951da45b0cdf) (Version: 1.0 - Google\Chrome)
Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-01-04] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc [2024-01-04] (Adobe Systems Incorporated)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2025-04-17] (NVIDIA Corp.)
Spotify – Musik und Podcasts -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0 [2025-05-13] (Spotify AB) [Startup Task]
Trello -> C:\Program Files\WindowsApps\45273LiamForsyth.PawsforTrello_2.15.7.0_x64__7pb5ddty8z1pa [2025-02-14] (Trello, Inc.)
TvMate IPTV Pro -> C:\Program Files\WindowsApps\HFRTECHLLC.TiviMateIPTVPro_1.0.8.0_x64__ef2a51g56xear [2025-04-25] (HFR TECH LLC)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm [2025-05-13] (WhatsApp Inc.) [Startup Task]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-DE72DEDCB3B1} -> [Creative Cloud Files] => C:\Users\Razer\Creative Cloud Files [2024-01-04 12:55]
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{4e6f7264-5650-4e00-0000-000000000000}\localserver32 -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn s.a. -> nordvpn S.A.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{995f8d89-8ab5-dd20-098d-b9419e93fd76}\localserver32 -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer USA Ltd. -> Razer Inc.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-03-06] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxDTCM.dll [2022-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\nvshext.dll [2025-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-03-06] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Phillip Marco - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Razer\Desktop\PRIVAT\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_djfkiamnhkodoajeogfnfojcmmhfpbhb\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Dokumente.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Präsentationen.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Sheets.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Profil 2 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2025-04-24 23:54 - 2025-04-24 23:54 - 000025088 _____ (Adobe Systems Inc.) [Datei ist nicht signiert] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\de_de\Acrobat Elements\ContextMenuShim64.deu
2025-04-15 09:24 - 2025-04-15 09:24 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA Overlay\MessageBusRouter.dll
2025-04-15 09:17 - 2025-04-15 09:24 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Razer\Downloads\12 Module Herr Schulz 4.8kwp.pdf:shield [639]
AlternateDataStreams: C:\Users\Razer\Downloads\15 Module Herr Schulz 6kwp.pdf:shield [637]
AlternateDataStreams: C:\Users\Razer\Downloads\150er übersicht - Tabellenblatt1.pdf:shield [1388]
AlternateDataStreams: C:\Users\Razer\Downloads\20240716_57248_d2d_preisprognostizierer_v15.xlsx:shield [162]
AlternateDataStreams: C:\Users\Razer\Downloads\20240716_57248_selbstauskunft-pv-beratung.docx:shield [160]
AlternateDataStreams: C:\Users\Razer\Downloads\2wFBcMCDsPs.htm:shield [122]
AlternateDataStreams: C:\Users\Razer\Downloads\30 Tage Fokus Challenge 1.pdf:shield [114]
AlternateDataStreams: C:\Users\Razer\Downloads\Alles (1).pdf:shield [98]
AlternateDataStreams: C:\Users\Razer\Downloads\Alles.pdf:shield [94]
AlternateDataStreams: C:\Users\Razer\Downloads\AMPERE.IQ App_Anwenderdokumentation_v1.0_2023_10_09 (1).pdf:shield [144]
AlternateDataStreams: C:\Users\Razer\Downloads\AMPERE.IQ App_Anwenderdokumentation_v1.0_2023_10_09.pdf:shield [219]
AlternateDataStreams: C:\Users\Razer\Downloads\Anbieter variabler Stromtarife.pdf:shield [617]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Frau Tatjana Klindt (1).pdf:shield [122]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Herr Marc Windeggis 8kWp ybxx.pdf:shield [645]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Herr Marc Windeggis 8kWp.pdf:shield [649]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Herr Nils Winkler 12,4kWp.pdf:shield [641]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot komplett Heinz Herentrey.pdf:shield [624]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot_AN-2407-164_Michael_Senger.pdf:shield [112]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot_Herr Klindt - 10kWp 12Li ASP und Garantien (2).pdf:shield [145]
AlternateDataStreams: C:\Users\Razer\Downloads\Aufmaß Mappe 2.0.pdf:shield [105]
AlternateDataStreams: C:\Users\Razer\Downloads\b protokoll Heinz Herentrey.pdf:shield [635]
AlternateDataStreams: C:\Users\Razer\Downloads\CamScanner 01.11.2023 21.37.pdf:shield [116]
AlternateDataStreams: C:\Users\Razer\Downloads\Carsten Neff AB.pdf:shield [101]
AlternateDataStreams: C:\Users\Razer\Downloads\Checkliste WP.pdf:shield [96]
AlternateDataStreams: C:\Users\Razer\Downloads\Datenblatt_AMPEREStoragePro_Rev04_Ansicht (1).pdf:shield [209]
AlternateDataStreams: C:\Users\Razer\Downloads\DB_Rechnung_271516002728.pdf:shield [108]
AlternateDataStreams: C:\Users\Razer\Downloads\DB_Ticket_180678620477.pdf:shield [106]
AlternateDataStreams: C:\Users\Razer\Downloads\DB_Ticket_271516002728.pdf:shield [106]
AlternateDataStreams: C:\Users\Razer\Downloads\Design ohne Titel.png:shield [596]
AlternateDataStreams: C:\Users\Razer\Downloads\EKD_Beratungsprotokoll_2022-10_Rev1.3_Formular (1).pdf:shield [218]
AlternateDataStreams: C:\Users\Razer\Downloads\f (1).txt:shield [220]
AlternateDataStreams: C:\Users\Razer\Downloads\f.txt:shield [214]
AlternateDataStreams: C:\Users\Razer\Downloads\floatingneumnster.pdf:shield [1257]
AlternateDataStreams: C:\Users\Razer\Downloads\Flurkarte Carsten Neff (1).pdf:shield [115]
AlternateDataStreams: C:\Users\Razer\Downloads\Flurkarte Carsten Neff.pdf:shield [111]
AlternateDataStreams: C:\Users\Razer\Downloads\Haussolar.jpg:shield [100]
AlternateDataStreams: C:\Users\Razer\Downloads\img-2741_CygCP609.mp4:shield [185]
AlternateDataStreams: C:\Users\Razer\Downloads\IMG_2741.MOV:shield [279]
AlternateDataStreams: C:\Users\Razer\Downloads\IMG_7248.JPG:shield [594]
AlternateDataStreams: C:\Users\Razer\Downloads\just-do-it-and-polygon-nike-d53rzijay4tc4chh.jpg:shield [131]
AlternateDataStreams: C:\Users\Razer\Downloads\Kunde zahlt bar.pdf:shield [104]
AlternateDataStreams: C:\Users\Razer\Downloads\Neuer Preislisten X - FARBE.pdf:shield [1344]
AlternateDataStreams: C:\Users\Razer\Downloads\Neuer Preislisten X BLANKO.pdf:shield [1348]
AlternateDataStreams: C:\Users\Razer\Downloads\Protokoll Anmeldung Vollmachten (1).pdf:shield [124]
AlternateDataStreams: C:\Users\Razer\Downloads\Protokoll Anmeldung Vollmachten komplett.pdf:shield [124]
AlternateDataStreams: C:\Users\Razer\Downloads\PV Angebot Frau Tatjana Klindt.pdf:shield [643]
AlternateDataStreams: C:\Users\Razer\Downloads\Speicherpapier.pdf:shield [130]
AlternateDataStreams: C:\Users\Razer\Downloads\stratton-oakmont-training-1pdf_compress.pdf:shield [156]
AlternateDataStreams: C:\Users\Razer\Downloads\STRATTON_pdf 3.0.pdf:shield [627]
AlternateDataStreams: C:\Users\Razer\Downloads\Studio Psyk 2023-11-11_213115.pdf:shield [118]
AlternateDataStreams: C:\Users\Razer\Downloads\Thomas_Uplegger_14,5kW.pdf:shield [653]
AlternateDataStreams: C:\Users\Razer\Downloads\Visitenkarte back.psd:shield [190]
AlternateDataStreams: C:\Users\Razer\Downloads\Visitenkarte front.psd:shield [191]
AlternateDataStreams: C:\Users\Razer\Downloads\wait but why - Tabellenblatt1.pdf:shield [1329]
AlternateDataStreams: C:\Users\Razer\Downloads\WhatsApp Image 2023-10-31 at 20.28.37.jpeg:shield [127]
AlternateDataStreams: C:\Users\Razer\Downloads\WhatsApp Image 2023-12-10 at 13.18.19.jpeg:shield [127]
AlternateDataStreams: C:\Users\Razer\Downloads\Widerruf Belehrung Heinz Herentrey.pdf:shield [648]
AlternateDataStreams: C:\Users\Razer\Downloads\Widerruf Belehrung Neff komplett.pdf:shield [640]
AlternateDataStreams: C:\Users\Razer\Downloads\_Gutschein_4801724.pdf:shield [108]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\localhost -> localhost
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
2024-09-11 14:36 - 2024-09-11 14:36 - 000000374 _____ C:\Windows\system32\drivers\etc\hosts.ics
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Users\Razer\AppData\Local\Microsoft\WindowsApps;C:\Users\Razer\Desktop\scrcpy-win64-v2.3.1;C:\Program Files\dotnet\;C:\Program Files\NVIDIA Corporation\NVIDIA App\NvDLISR
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Razer\Downloads\just-do-it-and-polygon-nike-d53rzijay4tc4chh.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist aktiviert.
Network Binding:
=============
NordLynx: NordLynx Tunnel -> wireguard.sys
WLAN: Killer Wireless-n/a/ac 1535 Wireless Network Adapter -> Qcamain10x64.sys
LAN-Verbindung: TAP-NordVPN Windows Adapter V9 -> tapnordvpn.sys
OpenVPN Data Channel Offload for NordVPN: OpenVPN Data Channel Offload -> ovpn-dco.sys
Ethernet: Killer E2500 Gigabit Ethernet Controller -> e2xw10x64.sys
NordLwf: NordVPN LightWeight Firewall
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "RazerCortex"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\StartupApproved\Run: => "MicrosoftEdgeAutoLaunch_4A732F8C0E01295481A0CE2C2E3D2A4A"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\StartupApproved\Run: => "RazerAxon"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\StartupApproved\Run: => "EADM"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\StartupApproved\Run: => "CCleaner Smart Cleaning"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{931DC8B6-0411-4E6F-A2B9-40DEEEC8650C}] => (Allow) C:\Users\Razer\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
FirewallRules: [{98331C8E-C934-4888-A025-BC37A797427E}] => (Allow) C:\Users\Razer\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [{704C1AAF-A10D-46C1-BD9D-3098869F0BDD}] => (Allow) C:\Users\Razer\AppData\Roaming\Zoom\bin\airhost.exe (Zoom Video Communications, Inc. -> Zoom Video Communications, Inc.)
FirewallRules: [TCP Query User{65D476E0-4D37-4064-BDE6-BD6D10B7E722}C:\program files\obs-studio\obs-plugins\64bit\obs-browser-page.exe] => (Allow) C:\program files\obs-studio\obs-plugins\64bit\obs-browser-page.exe (Hugh Bailey -> )
FirewallRules: [UDP Query User{35CD64FF-72E8-412F-B7EA-8A1B6F9B5358}C:\program files\obs-studio\obs-plugins\64bit\obs-browser-page.exe] => (Allow) C:\program files\obs-studio\obs-plugins\64bit\obs-browser-page.exe (Hugh Bailey -> )
FirewallRules: [TCP Query User{BC432FD6-C197-4D76-9EBB-73996E8982FF}D:\vid ddl\vidjuice unitube\vidjuice unitube.exe] => (Allow) D:\vid ddl\vidjuice unitube\vidjuice unitube.exe => Keine Datei
FirewallRules: [UDP Query User{A8A9E8F3-CA8C-4C1B-AF9E-C6D90DC9294B}D:\vid ddl\vidjuice unitube\vidjuice unitube.exe] => (Allow) D:\vid ddl\vidjuice unitube\vidjuice unitube.exe => Keine Datei
FirewallRules: [{46FB4814-27D4-4B69-B29D-7A02E204571B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{43C8DB57-5AE5-45D2-88E7-1AA93A560604}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{EEABFB5C-65D6-42D6-8531-5F35A68FB0EF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{132E9BE9-EA9C-485D-99B6-26507291BCC0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{98D75D23-F249-4960-93E0-2B78B01B8AEC}C:\users\razer\appdata\local\vysor\app-5.0.7\vysor.exe] => (Allow) C:\users\razer\appdata\local\vysor\app-5.0.7\vysor.exe (Vysor, Inc -> Vysor Inc.)
FirewallRules: [UDP Query User{170E5CDB-5F19-4083-BE2C-A5ABA76A6B25}C:\users\razer\appdata\local\vysor\app-5.0.7\vysor.exe] => (Allow) C:\users\razer\appdata\local\vysor\app-5.0.7\vysor.exe (Vysor, Inc -> Vysor Inc.)
FirewallRules: [TCP Query User{0D6A360C-F14F-4B5D-A81A-783CCF09749A}C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [UDP Query User{47C12BB7-B41B-4609-8315-A29DC4CA1181}C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E890FCDD-A5A4-484A-B533-15083E731167}] => (Block) C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{38D92190-5926-428F-831D-2DD8C0627BF4}] => (Block) C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{65D5835E-6BD2-454A-BB7C-E69D38DEB3CD}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{B999721D-7A28-4DDC-B892-F97FEC9F27FB}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{E8158C09-E1E6-4D0C-9B28-DE662B4F9AA9}C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [UDP Query User{B5DFF9D0-66FA-4907-B000-7368D5E4AB86}C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C368FF3C-C4F4-4E9F-A0B8-9E6E4DC50F8C}] => (Block) C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{61A3081C-0B09-4E77-94E3-B9DF242AD28B}] => (Block) C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4A9610B4-80C8-4B94-A042-216BF4E0B926}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{67702778-F65B-4D1A-A8DC-803E5BE5D626}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{07149130-2F18-4719-8511-837CB4A0B4AB}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{DB698537-D773-4B96-B4A0-7023465AD7B1}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{031B5466-DEE4-4425-8027-759860338B0A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4F6F7E31-812A-4AAD-958C-521254C154AF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0A063DAB-52D7-43E1-B99C-EBC2BD331F3C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{EB0D5ADA-0415-4627-AF1D-5C147D98868F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{EF0F3F68-1910-4CE6-B026-49277D334DC2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{39A93119-8D3A-4C6B-9A91-B6FC7BD3FB0A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F94320C9-F8F3-4ECB-B48E-DD250AD2D866}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{15C06BA9-406C-443A-93EB-E11506605345}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{86B24ADE-EC4B-4C41-B3E0-835654472A94}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
FirewallRules: [{F7DF93EC-3665-4329-AD2E-F95731EE003F}] => (Allow) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.64\msedgewebview2.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{DF0FA672-A3EF-4C0D-A2F2-D4BF6772ECA1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{61A1BF6A-2B20-466B-B32D-516E45F8A540}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{81A4B802-5D77-4240-B089-25E360431997}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{8577AF07-A9F8-4B4B-A41C-CF3DF74D3A29}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{827EA3CB-2310-4A90-8C67-044D63804DA7}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{5EA1915D-9FE4-4A2A-9410-C69D8B00AD22}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{0D6965CD-A738-4740-AE36-406DC76DF24D}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{454400DD-DF68-40CC-B999-78CC54420D1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F6660898-61A4-438C-BFB5-65B7D167D709}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{611ECCCB-246E-43F9-A28C-034945F09DF0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
==================== Wiederherstellungspunkte =========================
04-05-2025 16:38:34 Geplanter Prüfpunkt
12-05-2025 14:55:18 Geplanter Prüfpunkt
12-05-2025 21:07:39 Piriform Driver Updater Restore Point
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Qualcomm Atheros QCA61x4 Bluetooth
Description: Qualcomm Atheros QCA61x4 Bluetooth
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm
Service: BTHUSB
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (05/13/2025 12:49:35 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Blade Pro HDD (D:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)
Error: (05/12/2025 09:07:38 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert.Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {b69c28e9-a45d-448d-8a43-31f11cfcf9f2}
Error: (05/12/2025 02:40:33 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-HQE06JL)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\Windows\system32\sysmain.dll" nicht laden (Win32-Fehlercode 126).
Error: (05/06/2025 02:35:39 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Blade Pro HDD (D:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)
Error: (05/05/2025 03:03:15 PM) (Source: Microsoft-Windows-Perflib) (EventID: 1023) (User: DESKTOP-HQE06JL)
Description: Windows kann die erweiterbare Leistungsindikator-DLL "C:\Windows\system32\sysmain.dll" nicht laden (Win32-Fehlercode 126).
Error: (05/02/2025 02:00:15 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Name der fehlerhaften Anwendung: explorer.exe, Version: 10.0.19041.5678, Zeitstempel: 0x8d8631c8
Name des fehlerhaften Moduls: unknown, Version: 0.0.0.0, Zeitstempel: 0x00000000
Ausnahmecode: 0xc0000005
Fehleroffset: 0x74d181f0
ID des fehlerhaften Prozesses: 0x7b64
Startzeit der fehlerhaften Anwendung: 0x01dbbb59b3bdc12f
Pfad der fehlerhaften Anwendung: C:\Windows\SysWOW64\explorer.exe
Pfad des fehlerhaften Moduls: unknown
Berichtskennung: c963c25f-f7ff-4207-97ad-d6bf8581b822
Vollständiger Name des fehlerhaften Pakets:
Anwendungs-ID, die relativ zum fehlerhaften Paket ist:
Error: (04/30/2025 12:36:22 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Blade Pro HDD (D:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)
Error: (04/29/2025 07:53:03 PM) (Source: Microsoft-Windows-Defrag) (EventID: 264) (User: )
Description: Die Speicheroptimierung konnte erneut optimieren auf Blade Pro HDD (D:) nicht abschließen. Grund: Der angeforderte Vorgang wird von der Hardware des Volumes nicht unterstützt. (0x8900002A)
Systemfehler:
=============
Error: (05/13/2025 05:02:42 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/13/2025 03:29:03 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/13/2025 03:24:41 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/13/2025 12:38:17 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT-AUTORITÄT)
Description: Installationsfehler: Die Installation des folgenden Updates ist mit Fehler 0x80073d02 fehlgeschlagen: 9NMPJ99VJBWV-Microsoft.YourPhone
Error: (05/13/2025 12:35:41 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/13/2025 12:33:45 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT-AUTORITÄT)
Description: Das Secure Boot-Update konnte eine Secure Boot-Variable mit dem Fehler (-2147020471 = Sicheres Starten ist auf diesem Computer nicht aktiviert.) nicht aktualisieren. Weitere Informationen finden Sie unter https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/12/2025 09:40:53 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Der Dienst "Broker für Laufzeitüberwachung der Systemüberwachung" wurde mit folgendem Fehler beendet:
%%3489660935
Error: (05/12/2025 09:40:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Windows Defender:
================
Date: 2025-05-13 12:50:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-12 14:40:54
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-09 13:01:34
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-08 12:19:12
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-07 12:19:41
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
Date: 2024-11-02 11:58:48
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Aktuell
Error Code: 0x80501102
Error description: Unerwartetes Problem. Installieren Sie bei Bedarf verfügbare Updates, und starten Sie das Programm dann erneut. Informationen zum Installieren von Updates finden Sie unter "Hilfe und Support".
Security intelligence Version: 1.421.56.0;1.421.56.0
Engine Version: 1.1.24090.11
Date: 2023-10-28 22:47:00
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Netzwerkinspektionssystem
Error Code: 0x8007041d
Error description: Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Reason: Dem System fehlen erforderliche Updates zum Ausführen des Netzwerkinspektionssystems. Installieren Sie die erforderlichen Updates, und starten Sie das Gerät neu.
CodeIntegrity:
===============
Date: 2025-04-15 10:49:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4a38014ac4bdce40\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2025-02-09 11:05:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: Razer 2.02 02/22/2018
Hauptplatine: Razer Blade Pro
Prozessor: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Prozentuale Nutzung des RAM: 65%
Installierter physikalischer RAM: 16273.64 MB
Verfügbarer physikalischer RAM: 5681.9 MB
Summe virtueller Speicher: 31633.64 MB
Verfügbarer virtueller Speicher: 18813.16 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.86 GB) (Free:578.76 GB) (Model: CT1000P3SSD8) NTFS
Drive d: (Blade Pro HDD) (Fixed) (Total:1863.02 GB) (Free:839.55 GB) (Model: ST2000LM015-2E8174) NTFS
\\?\Volume{5d2e59dd-e3c9-464c-99d4-d93203f4e136}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS
\\?\Volume{8c4d2e74-a499-457d-bf77-d724eee8446c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 580F63EA)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.5.1.601
# -------------------------------
# Build: 03-26-2025
# Database: 2025-04-04.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 05-12-2025
# Duration: 00:00:01
# OS: Windows 10 (Build 19045.5737)
# Cleaned: 5
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\ProgramData\Application Data\Lavasoft\Web Companion
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
No malicious shortcuts cleaned.
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKCU\Software\Lavasoft\Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries cleaned.
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
***** [ Hosts File Entries ] *****
No malicious hosts file entries cleaned.
***** [ Preinstalled Software ] *****
No Preinstalled Software cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [1865 octets] - [12/05/2025 16:36:19]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.5.1.601
# -------------------------------
# Build: 03-26-2025
# Database: 2025-04-04.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-12-2025
# Duration: 00:00:07
# OS: Windows 10 (Build 19045.5737)
# Scanned: 32090
# Detected: 5
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
PUP.Optional.WebCompanion C:\ProgramData\Application Data\Lavasoft\Web Companion
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run|Web Companion
PUP.Optional.Legacy HKCU\Software\Microsoft\Windows\CurrentVersion\Run|Web Companion
PUP.Optional.WebCompanion HKCU\Software\Lavasoft\Web Companion
PUP.Optional.WebCompanion HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\webcompanion.com
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S00].txt ##########
Code:
ATTFilter # -------------------------------
# Malwarebytes AdwCleaner 8.5.1.601
# -------------------------------
# Build: 03-26-2025
# Database: 2025-04-04.3 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 05-12-2025
# Duration: 00:00:04
# OS: Windows 10 (Build 19045.5737)
# Scanned: 32087
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [1865 octets] - [12/05/2025 16:36:19]
AdwCleaner[C00].txt - [1961 octets] - [12/05/2025 16:36:24]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S01].txt ##########
|
|
13.05.2025, 20:02
| #2 |
| /// TB-Ausbilder   |  Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös Mein Name ist Matthias und ich werde dir bei der Analyse und Bereinigung deines Systems helfen. Wir führen FMRS aus. Ggf. musst du den Windows Defender vorher deaktivieren, da er das Tool manchmal fälschlicherweise als Schadsoftware erkennt und blockiert. Bitte downloade dir Furtivex Malware Removal Script (FMRS) auf deinen Desktop.
|
|
13.05.2025, 20:46
| #3 |
| | FMRS scan Hi Mathias, danke für deine hilfe. hab es ausgeführt , hier das ergebnis:
__________________Code:
ATTFilter # ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ #
# Furtivex Malware Removal Script v7.5.1
# https://furtivex.net
# OS: Microsoft Windows 10 Home x64 22H2 Deutsch (German) - 0407 - 1252 - 850
# Benutzername: Razer (S-1-5-21-3644930430-3491832035-840970103-1001)
# Datum: 2025_05_13__21_33_59
# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ #
# Prozesse:
# Treiber:
# Dienste:
HKLM\SYSTEM\CurrentControlSet\services\CCleanerPerformanceOptimizerService
# Dateien:
C:\Program Files\CCleaner\CCleanerPerformanceOptimizerService.exe
Browser: Google Chrome – Push-Benachrichtigungen gefunden und gelöscht (Default)
C:\ProgramData\agent.1734901755.bdinstall.v2.bin
C:\ProgramData\agent.uninstall.1744706509.bdinstall.v2.bin
C:\ProgramData\agent.update.1743667949.bdinstall.v2.bin
C:\ProgramData\cl.1734901921.bdinstall.v2.bin
C:\ProgramData\cl.kit.1734901919.bdinstall.v2.bin
C:\ProgramData\cl.uninstall.1744706521.bdinstall.v2.bin
C:\ProgramData\Microsoft\Search\Data\Applications\Windows\GatherLogs\SystemIndex (371)
C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Cache\Cache_Data (314)
C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Code Cache\js (516)
C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Cache\Cache_Data (1491)
C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Code Cache\js (1481)
C:\Users\Razer\AppData\Local\Microsoft\TokenBroker\Cache (5)
C:\Users\Razer\AppData\Local\Steam\htmlcache\Cache\Cache_Data (1324)
C:\Users\Razer\AppData\Local\Steam\htmlcache\Code Cache\js (1093)
C:\Windows\System32\config\systemprofile\AppData\Local\tpm-5910-5914-331253.tmp
C:\Windows\System32\config\systemprofile\AppData\Local\tw-1b7c-36cc-2d6fc8.tmp
C:\Windows\System32\perfc007.dat
C:\Windows\System32\perfc009.dat
C:\Windows\System32\perfh007.dat
C:\Windows\System32\perfh009.dat
# Ordner:
C:\Users\Razer\AppData\Local\D3DSCache (20)
C:\Users\Razer\AppData\Local\Microsoft\Windows\INetCache\IE (2)
C:\Windows\System32\config\systemprofile\AppData\Local (943)
C:\Windows\System32\config\systemprofile\AppData\Local\D3DSCache (4)
# Aufgaben:
Adobe Acrobat Update Task
BraveSoftwareUpdateTaskMachineCore{6FD57E87-CE48-40D9-8C59-A790ABE089C7}
BraveSoftwareUpdateTaskMachineUA{49218D06-8A0E-434D-A932-84076660087D}
CCleaner Update
CCleanerCrashReporting
CCleanerSkipUAC - Razer
DolbySelectorTask
GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem134.0.6947.0{BB6E784A-9C96-47E7-8F4A-B3919A13C99A}
GoogleSystem\GoogleUpdater\GoogleUpdaterTaskSystem138.0.7156.0{2079B045-74EF-4B0B-98F7-9E9D5BD8C22A}
Microsoft\Windows\AppID\EDP Policy Manager
Microsoft\Windows\Application Experience\MareBackup
Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser
Microsoft\Windows\Application Experience\PcaPatchDbTask
Microsoft\Windows\Application Experience\PcaWallpaperAppDetect
Microsoft\Windows\Application Experience\ProgramDataUpdater
Microsoft\Windows\Application Experience\StartupAppTask
Microsoft\Windows\ApplicationData\appuriverifierdaily
Microsoft\Windows\ApplicationData\appuriverifierinstall
Microsoft\Windows\ApplicationData\DsSvcCleanup
Microsoft\Windows\Autochk\Proxy
Microsoft\Windows\Chkdsk\ProactiveScan
Microsoft\Windows\Clip\ClipESU
Microsoft\Windows\CloudExperienceHost\CreateObjectTask
Microsoft\Windows\ConsentUX\UnifiedConsent\UnifiedConsentSyncTask
Microsoft\Windows\Customer Experience Improvement Program\Consolidator
Microsoft\Windows\Customer Experience Improvement Program\UsbCeip
Microsoft\Windows\Defrag\ScheduledDefrag
Microsoft\Windows\Diagnosis\RecommendedTroubleshootingScanner
Microsoft\Windows\Diagnosis\Scheduled
Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector
Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver
Microsoft\Windows\DiskFootprint\Diagnostics
Microsoft\Windows\DiskFootprint\StorageSense
Microsoft\Windows\Feedback\Siuf\DmClient
Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload
Microsoft\Windows\Flighting\FeatureConfig\ReconcileFeatures
Microsoft\Windows\Flighting\FeatureConfig\UsageDataFlushing
Microsoft\Windows\Flighting\FeatureConfig\UsageDataReporting
Microsoft\Windows\Flighting\OneSettings\RefreshCache
Microsoft\Windows\HelloFace\FODCleanupTask
Microsoft\Windows\InstallService\ScanForUpdates
Microsoft\Windows\InstallService\ScanForUpdatesAsUser
Microsoft\Windows\InstallService\SmartRetry
Microsoft\Windows\InstallService\WakeUpAndContinueUpdates
Microsoft\Windows\InstallService\WakeUpAndScanForUpdates
Microsoft\Windows\Location\Notifications
Microsoft\Windows\Maintenance\WinSAT
Microsoft\Windows\Maps\MapsToastTask
Microsoft\Windows\Maps\MapsUpdateTask
Microsoft\Windows\MemoryDiagnostic\ProcessMemoryDiagnosticEvents
Microsoft\Windows\MemoryDiagnostic\RunFullMemoryDiagnostic
Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser
Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem
Microsoft\Windows\PushToInstall\LoginCheck
Microsoft\Windows\PushToInstall\Registration
Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask
Microsoft\Windows\SettingSync\BackgroundUploadTask
Microsoft\Windows\SettingSync\NetworkStateChangeTask
Microsoft\Windows\Shell\CreateObjectTask
Microsoft\Windows\Shell\FamilySafetyMonitor
Microsoft\Windows\Shell\FamilySafetyRefreshTask
Microsoft\Windows\Shell\IndexerAutomaticMaintenance
Microsoft\Windows\Shell\ThemesSyncedImageDownload
Microsoft\Windows\Subscription\EnableLicenseAcquisition
Microsoft\Windows\Subscription\LicenseAcquisition
Microsoft\Windows\User Profile Service\HiveUploadTask
Microsoft\Windows\Windows Media Sharing\UpdateLibrary
Microsoft\Windows\WindowsUpdate\Refresh Group Policy Cache
Microsoft\Windows\WindowsUpdate\RUXIM\PLUGScheduler
Microsoft\Windows\WindowsUpdate\Scheduled Start
Microsoft\Windows\WlanSvc\CDSSync
Microsoft\Windows\WOF\WIM-Hash-Management
Microsoft\Windows\WOF\WIM-Hash-Validation
Microsoft\Windows\WwanSvc\NotificationTask
Microsoft\Windows\WwanSvc\OobeDiscovery
Microsoft\XblGameSave\XblGameSaveTask
MicrosoftEdgeUpdateTaskMachineCore
MicrosoftEdgeUpdateTaskMachineUA
NVIDIA App SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}
OneDrive Reporting Task-S-1-5-21-3644930430-3491832035-840970103-1001
OneDrive Standalone Update Task-S-1-5-21-3644930430-3491832035-840970103-1001
OneDrive Startup Task-S-1-5-21-3644930430-3491832035-840970103-1001
RazerCortexScheduleClean
ZoomUpdateTaskUser-S-1-5-21-3644930430-3491832035-840970103-1001
# Registrierung:
HKLM\Software\Microsoft\Tracing\GameManagerService_RASAPI32
HKLM\Software\Microsoft\Tracing\GameManagerService_RASMANCS
HKLM\Software\Microsoft\Tracing\Razer Synapse Service_RASAPI32
HKLM\Software\Microsoft\Tracing\Razer Synapse Service_RASMANCS
HKLM\Software\Microsoft\Tracing\RazerCentralService_RASAPI32
HKLM\Software\Microsoft\Tracing\RazerCentralService_RASMANCS
HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager\\SubscribedContent-338388Enabled
HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager\\SubscribedContent-338389Enabled
HKCU\Software\Microsoft\Windows\CurrentVersion\ContentDeliveryManager\\SystemPaneSuggestionsEnabled [1] => [0]
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Smart Cleaning
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\MicrosoftEdgeAutoLaunch_4A732F8C0E01295481A0CE2C2E3D2A4A
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\RazerAxon
HKCU\Software\Microsoft\Windows\CurrentVersion\Run\\Steam
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\RtHDVBg_PushButton
HKLM\System\CurrentControlSet\Control\CrashControl\\AutoReboot [1] => [0]
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0D6965CD-A738-4740-AE36-406DC76DF24D}
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{4A9610B4-80C8-4B94-A042-216BF4E0B926}
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5A13D9D3-445B-4F0D-9566-5754C8141753}
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{5EA1915D-9FE4-4A2A-9410-C69D8B00AD22}
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{704C1AAF-A10D-46C1-BD9D-3098869F0BDD}
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{827EA3CB-2310-4A90-8C67-044D63804DA7}
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8577AF07-A9F8-4B4B-A41C-CF3DF74D3A29}
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{86B24ADE-EC4B-4C41-B3E0-835654472A94}
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{98331C8E-C934-4888-A025-BC37A797427E}
HKLM\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{F7DF93EC-3665-4329-AD2E-F95731EE003F}
# Verschiedenes:
AntiVirus Software: Windows Defender
Wiederherstellungspunkt: Furtivex Malware Removal Script - Erstellt
HKLM\Software\Microsoft\Windows Defender\Exclusions\Extensions
HKLM\Software\Microsoft\Windows Defender\Exclusions\IpAddresses
HKLM\Software\Microsoft\Windows Defender\Exclusions\Paths
HKLM\Software\Microsoft\Windows Defender\Exclusions\Processes
HKLM\Software\Microsoft\Windows Defender\Exclusions\TemporaryPaths
Event[0]:
Log Name: Microsoft-Windows-Windows Defender/Operational
Source: Microsoft-Windows-Windows Defender
Date: 2023-10-28T22:47:00.0570000Z
Event ID: 3002
Task: N/A
Level: Fehler
Opcode: Info
Keyword: N/A
User: S-1-5-18
User Name: NT-AUTORITÄT\SYSTEM
Computer: DESKTOP-HQE06JL
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Netzwerkinspektionssystem
Error Code: 0x8007041d
Error description: Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Reason: Dem System fehlen erforderliche Updates zum Ausführen des Netzwerkinspektionssystems. Installieren Sie die erforderlichen Updates, und starten Sie das Gerät neu.
C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\AcroServicesUpdater2_x64.exe.18200.dmp <890559> <2024-09-17 18:22:16>
C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\AcroServicesUpdater2_x64.exe.25376.dmp <890551> <2024-09-25 06:15:53>
C:\Windows\System32\config\systemprofile\AppData\Local\CrashDumps\AcroServicesUpdater2_x64.exe.8488.dmp <890295> <2024-09-14 18:01:06>
# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ #
|
|
13.05.2025, 21:00
| #4 |
| /// TB-Ausbilder | Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös Servus, gut gemacht. Wir verwenden jetzt KVRT und ESET. Du hast bereis erwähnt, dass du ESET schon ausprobiert hast. Wir versuchen es bitte damit nochmal. Bis morgen. Schritt 1 Führe das Kaspersky Virus Removal Tool (KVRT) gemäß der bebilderten Anleitung aus und poste abschließend die Logdateien. Schritt 2 Führe ESET Online Scanner (EOS) gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. |
|
14.05.2025, 18:54
| #5 |
| | schritte ausgeführt Hi Matthias, ich habe alles wie besprochen durchgeführt und wollte dir kurz Rückmeldung geben. 1. Verbindung Chrome-Browser mit iPhone + ipad (wobei da die synchro nicht so ist wie auf dem iphone: Ist es für dich wichtig zu wissen, dass mein Chrome-Browser mit meinem iPhone verbunden ist? 2. Kaspersky-Scan: Bei der Ausführung des Scans unter einem bestimmten Benutzerkonto kam nichts heraus – obwohl ich den Benutzernamen korrekt eingegeben habe. Ich muss dazu sagen, dass es sich um meinen privaten Laptop handelt, der keinen Passwortschutz und kein separates Benutzerkonto hat. Beim Hochfahren erscheint direkt der normale Startbildschirm, da das Gerät ausschließlich in meinem privaten Raum genutzt wird. 3. Scan-Ergebnis: Beim ersten Durchlauf wurden keine Funde gemeldet – was ja positiv ist. Ich habe dann nochmals einen vollständigen Scan durchgeführt und festgestellt, dass die zweite Festplatte (Laufwerk D  beim ersten Scan nicht ausgewählt war. Diese habe ich anschließend ebenfalls gescannt.4. Kaspersky-Log-Datei: Ich würde dir gern die Log-Datei von Kaspersky zeigen, allerdings lässt sich die Datei nicht als Text anzeigen – es erscheinen nur kryptische Zeichen. Hast du eine Idee, wie ich dir die Datei lesbar übermitteln kann? (weil .klr endung und da komm ich nicht wieter trotz suche)   "] 5. ESET-Scan: Ich habe zusätzlich einen Scan mit ESET durchgeführt. Dabei wurde tatsächlich etwas entdeckt – siehe Logdatei (füge ich dir bei).  LOG: Code:
ATTFilter 14.05.2025 19:34:46
Geprüfte Dateien: 540235
Erkannte Dateien: 1
Gesäuberte Dateien: 1
Scandauer gesamt 02:23:48
Scanstatus: Abgeschlossen
C:\Users\Razer\Downloads\au23setup.exe Win32/GlaryUtilities.D potentially unwanted application cleaned by deleting
|
|
14.05.2025, 20:20
| #6 | |
| /// TB-Ausbilder | Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös Servus, Zitat:
 Wenn man das Tool wie in unserer Anleitung beschrieben mit dem Zusatz "-dontencrypt" ausführt, werden die Logs nicht verschlüsselt. Habe das eben nochmal selbst getestet, es funktioniert einwandfrei. Die Bilder sind viel zu klein, man kann absolut nichts erkennen. Starte den Rechner neu auf und führe bitte einen Konstrollsuchlauf mit FRST aus:
|
|
Gestern, 10:28
| #7 |
| | weiterer suchdurchlauf Hi Matthias, tut mir leid – ich habe wirklich versucht, alles so auszuführen, wie es in der Anleitung mit dem KVRT-Tool beschrieben war. Leider hat es nicht wie erwartet funktioniert. Ich bin da einfach kein Profi – sorry! Ich habe meinen Benutzername (also "razer") eingegeben – so heißt mein Benutzerkonto, weil ich nie einen anderen Namen vergeben habe. Außerdem habe ich FRST erneut ausgeführt. Die aktuellen Log-Dateien findest du weiter unten. Chrome wurde kurz benutzt, das Problem ist aber leider immer noch vorhanden. FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 09-05-2025
durchgeführt von Razer (Administrator) auf DESKTOP-HQE06JL (Razer Blade Pro) (15-05-2025 10:51:05)
Gestartet von C:\Users\Razer\Downloads\FRST64.exe
Geladene Profile: Razer
Plattform: Microsoft Windows 10 Home Version 22H2 19045.5854 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
(C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe ->) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe ->) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.1.1.12\DiscoverySrv.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(drivers\RivetNetworks\Killer\xTendUtilityService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxEM.exe
(explorer.exe ->) (Brave Software, Inc. -> Brave Software, Inc.) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe <24>
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\Razer\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Rivet Networks LLC -> CloudBees, Inc.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2502.2.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18392048 2017-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [654048 2025-04-28] (Geek Software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [599056 2021-10-28] (Razer USA Ltd. -> Razer Inc.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [543368 2025-03-13] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2024-01-04] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2024-01-04] (Adobe Inc. -> )
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3599496 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3819104 2025-05-07] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [f.lux] => C:\Users\Razer\AppData\Local\FluxSoftware\Flux\flux.exe [1528952 2024-02-21] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {8ac3498c-fe3c-11ee-b305-8c885b4408ae} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {fe1c403f-9d73-11ee-b2f8-90203a1a03c3} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {fe1c40b7-9d73-11ee-b2f8-90203a1a03c3} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3599496 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2023-12-08] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\136.0.7103.93\Installer\chrmstp.exe [2025-05-09] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\136.1.78.97\Installer\chrmstp.exe [2025-05-07] (Brave Software, Inc. -> Brave Software, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {07809AE6-8619-48A1-A235-D392BB8D319B} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.1.1.12\WatchDog.exe [1156400 2025-03-25] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.1.1.12\repair
Task: {8F846C84-95A5-4758-BD5A-62F54144275C} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5960488 2025-05-14] (Microsoft Windows -> Microsoft Corporation)
Task: {D3DD2C93-D3B1-49B3-9D81-682AAEA95CA4} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Razer\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15205744 2025-05-14] (ESET, spol. s r.o. -> ESET)
Task: {EA56A1D3-05D2-4739-82FC-8D7384FE8022} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Razer\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15205744 2025-05-14] (ESET, spol. s r.o. -> ESET)
Task: {26A111F6-A64A-40C7-B20D-4106F35E3416} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86684041-FEB2-4712-873A-2FC67BA26860} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F041E7B-ECF7-499B-A090-4969DF2C0978} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B4F1AB8-9831-4774-A1E8-C47E9B2774D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\Parameters: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}\45E47424F48523135383232323: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}\45E47424F48523135383232323: [DhcpDomain] fritz.box
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default [2025-05-12]
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}
Edge Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-05-12]
Edge Extension: (Edge relevant text changes) - C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-01-04] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-01-04] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default [2025-05-15]
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxps://www.google.de/"
CHR Extension: (OneTab) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2024-06-12]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-05-13]
CHR Extension: (Dark Reader) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2025-05-12]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2025-05-02]
CHR Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-26]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-05-09]
CHR Extension: (QuillBot: AI Writing and Grammar Checker Tool) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\iidnbdjijdkbmajdffnidomddglmieko [2025-05-14]
CHR Extension: (GPT Workspace) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgocjgkdladclacgmkkiklmdcmngjcba [2025-05-12]
CHR Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2025-05-13]
CHR Extension: (Bearly.ai) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkennebljmnnpimcgdjlocbncpamgipp [2024-01-06]
CHR Extension: (LinkOff - Filter and Customizer for LinkedIn™) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\maanaljajdhhnllllmhmiiboodmoffon [2024-12-24]
CHR Extension: (Shazam: Find song names from your browser) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2025-02-11]
CHR Extension: (Snap Color Picker) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbpljhppefmpifoffhhmllmacfdckokh [2025-05-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-27]
CHR Extension: (SiteBlock) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2025-04-01]
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2 [2025-05-12]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-18]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-08-18]
CHR Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-18]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-08-18]
CHR Extension: (OneTab Plus:Tab Manage & Productivity) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lepdjbhbkpfenckechpdfohdmkhogojf [2024-02-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-05]
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\System Profile [2025-05-14]
CHR HKU\S-1-5-21-3644930430-3491832035-840970103-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fjoaledfpmneenckfbpdfhkmimnjocfa]
Brave:
=======
BRA Profile: C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2025-05-15]
BRA Extension: (OneTab) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2024-11-11]
BRA Extension: (Tab Manager Plus for Chrome) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\cnkdjjdmfiffagllbiiilooaoofcoeff [2024-11-11]
BRA Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-05-13]
BRA Extension: (BlockSite: Block Websites & Stay Focused) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2025-05-05]
BRA Extension: (Feed Blocker for Professionals) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eikaafmldiioljlilngpogcepiedpenf [2025-04-30]
BRA Extension: (Dark Reader) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2025-05-12]
BRA Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2025-04-30]
BRA Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-05-02]
BRA Extension: (QuillBot: AI Writing and Grammar Checker Tool) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\iidnbdjijdkbmajdffnidomddglmieko [2025-05-14]
BRA Extension: (GPT Workspace) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jgocjgkdladclacgmkkiklmdcmngjcba [2025-05-12]
BRA Extension: (OneTab Plus:Tab Manage & Productivity) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lepdjbhbkpfenckechpdfohdmkhogojf [2024-11-11]
BRA Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2025-05-15]
BRA Extension: (LinkOff - Filter and Customizer for LinkedIn™) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\maanaljajdhhnllllmhmiiboodmoffon [2024-12-24]
BRA Extension: (Shazam: Find song names from your browser) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2025-02-11]
BRA Extension: (Snap Color Picker) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nbpljhppefmpifoffhhmllmacfdckokh [2025-05-05]
BRA Extension: (SiteBlock) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2025-04-01]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2025-05-15]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2025-05-14]
BRA Extension: (Brave NTP background images) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2025-04-25]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2025-05-15]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2025-05-15]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2025-05-05]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2025-05-14]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2024-11-11]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2025-05-15]
BRA Extension: (Brave Ads Resources) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\jcncoheihebhhiemmbmpfhkceomfipbj [2025-03-25]
BRA Extension: (Brave Ad Block Updater (EasyList Germany (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\lfmefmifdjlfneapckmpkinmlofjehbp [2025-05-15]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2025-03-25]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\obbokncgfcbepeipkhpdepjjoncelefj [2025-05-15]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2024-01-04] (Adobe Inc. -> Adobe Inc.)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2577184 2023-07-20] (Bitdefender SRL -> Bitdefender)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2024-11-11] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\136.1.78.97\elevation_service.exe [3157520 2025-05-07] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2024-11-11] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 CortexLauncherService; C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe [711304 2025-03-13] (Razer USA Ltd. -> Razer Inc.)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [107164352 2025-04-18] (Electronic Arts, Inc. -> Electronic Arts)
S4 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [18763872 2025-05-07] (Electronic Arts, Inc. -> Electronic Arts)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2500072 2025-03-26] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2023-10-26] (Huawei Technologies Co., Ltd. -> ) [Datei ist nicht signiert]
R2 Killer Network Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2484992 2018-09-04] (Rivet Networks LLC -> Rivet Networks)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9406208 2025-05-04] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
S4 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2023-08-09] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\Display.NvContainer\NVDisplay.Container.exe [1275560 2025-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [654048 2025-04-28] (Geek Software GmbH -> geek software GmbH)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [755008 2025-03-25] (Bitdefender SRL -> Bitdefender)
R2 QcomWlanSrv; C:\Windows\System32\drivers\QcomWlanSrvx64.exe [189768 2022-11-09] (Qualcomm Atheros, Inc. -> )
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [447080 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943240 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256256 2024-10-15] (Razer USA Ltd. -> Razer Inc)
R2 Razer Game Manager Service 3; C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe [364800 2024-12-12] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300168 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [513672 2025-03-06] (Razer USA Ltd. -> Razer Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 xTendSoftAPService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [72952 2018-09-04] (Rivet Networks LLC -> CloudBees, Inc.)
R2 xTendUtilityService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [72952 2018-09-04] (Rivet Networks LLC -> CloudBees, Inc.)
S2 GoogleUpdaterInternalService134.0.6947.0; "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe" --system --windows-service --service=update-internal [X]
S2 GoogleUpdaterService134.0.6947.0; "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe" --system --windows-service --service=update [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 cpuz158; C:\Windows\temp\cpuz158\cpuz158_x64.sys [44592 2025-04-28] (Microsoft Windows Hardware Compatibility Publisher -> CPUID) <==== ACHTUNG
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2023-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 glidetpd; C:\Windows\System32\drivers\glidetpd.sys [32248 2017-09-01] (Microsoft Windows Hardware Compatibility Publisher -> Cirque Corporation)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2023-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iaLPSS2_GPIO2; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_skl.inf_amd64_2a35efc43f1a612e\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_UART2; C:\Windows\System32\DriverStore\FileRepository\ialpss2_uart2_skl.inf_amd64_a59239db7de9954f\iaLPSS2_UART2_ICL.sys [312600 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 KfeCoSvc; C:\Windows\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [154752 2018-09-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R3 KslD; C:\Windows\System32\drivers\wd\KslD.sys [331168 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [234072 2025-05-14] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [22120 2025-03-10] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239568 2024-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 NDivert; C:\Program Files\NordVPN\7.32.5.0\Drivers\NDivert.sys [131472 2024-10-31] (nordvpn s.a. -> Nordvpn S.A.)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [44928 2023-01-17] (nordvpn s.a. -> TEFINCOM S.A.)
R3 ovpn-dco; C:\Windows\System32\drivers\ovpn-dco.sys [91584 2024-06-05] (WDKTestCert lev,133391533294737317 -> OpenVPN, Inc)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [52240 2017-07-19] (Razer USA Ltd. -> Razer Inc)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [41120 2024-08-29] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20016 2025-04-15] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [605576 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [100744 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Drei Monate (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-05-14 22:33 - 2025-05-14 22:33 - 000049447 _____ C:\Users\Razer\Downloads\Shortcut.txt
2025-05-14 19:34 - 2025-05-14 19:35 - 000003858 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn
2025-05-14 19:34 - 2025-05-14 19:35 - 000003416 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime
2025-05-14 15:28 - 2025-05-14 15:28 - 008412528 _____ (ESET) C:\Users\Razer\Downloads\esetonlinescanner.exe
2025-05-14 15:28 - 2025-05-14 15:28 - 000001378 _____ C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2025-05-14 15:28 - 2025-05-14 15:28 - 000001272 _____ C:\Users\Razer\Desktop\ESET Online Scanner.lnk
2025-05-14 15:28 - 2025-05-14 15:28 - 000000000 ____D C:\Users\Razer\AppData\Local\ESET
2025-05-14 15:24 - 2025-05-15 10:51 - 000000000 ____D C:\Users\Razer\Desktop\Trojaner Board
2025-05-14 15:05 - 2025-05-14 15:05 - 000003832 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{FFDA1FCE-E175-4012-9886-D40439977461}
2025-05-14 15:05 - 2025-05-14 15:05 - 000003708 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{5449F9E1-20FF-4E5E-ABED-320B87307196}
2025-05-14 13:08 - 2025-05-14 13:09 - 000000000 ____D C:\Users\Razer\Desktop\skoda 2007 modell
2025-05-14 12:48 - 2025-05-14 15:10 - 000004418 _____ C:\Windows\system32\PerfStringBackup.TMP
2025-05-14 12:00 - 2025-05-14 19:44 - 000000000 ____D C:\KVRT2020_Data
2025-05-14 11:57 - 2025-05-14 11:57 - 114639720 _____ (AO Kaspersky Lab) C:\Users\Razer\Downloads\KVRT.exe
2025-05-14 11:30 - 2025-05-14 11:30 - 000022680 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-05-14 11:29 - 2025-05-14 11:29 - 000022680 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2025-05-14 11:24 - 2025-05-14 11:24 - 000000000 ___HD C:\$WinREAgent
2025-05-14 11:13 - 2025-05-14 11:13 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3644930430-3491832035-840970103-1001
2025-05-13 21:34 - 2025-05-13 21:34 - 000010898 _____ C:\FMRS_2025_05_13__21_33_59.txt
2025-05-13 21:34 - 2025-05-13 21:34 - 000003656 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2025-05-13 21:32 - 2025-05-13 21:32 - 001426275 _____ (<hxxps://furtivex.net>) C:\Users\Razer\Downloads\FMRS.exe
2025-05-13 19:22 - 2025-05-13 19:22 - 000000000 ____D C:\Users\Razer\AppData\Roaming\GlarySoft
2025-05-13 19:21 - 2025-05-13 19:21 - 008741128 _____ (Glarysoft Ltd) C:\Users\Razer\Downloads\ausetup.exe
2025-05-13 19:20 - 2025-05-13 19:22 - 000001324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Absolute Uninstaller.lnk
2025-05-13 19:20 - 2025-05-13 19:22 - 000000000 ____D C:\Program Files (x86)\Glarysoft
2025-05-13 19:20 - 2025-05-13 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft
2025-05-13 19:00 - 2025-05-14 22:33 - 000047545 _____ C:\Users\Razer\Downloads\Addition.txt
2025-05-13 18:58 - 2025-05-15 10:51 - 000036756 _____ C:\Users\Razer\Downloads\FRST.txt
2025-05-13 18:57 - 2025-05-15 10:51 - 000000000 ____D C:\FRST
2025-05-13 18:57 - 2025-05-13 18:57 - 002405376 _____ (Farbar) C:\Users\Razer\Downloads\FRST64 (2).exe
2025-05-13 18:56 - 2025-05-13 18:56 - 002405376 _____ (Farbar) C:\Users\Razer\Downloads\FRST64 (1).exe
2025-05-13 18:55 - 2025-05-13 18:55 - 002405376 _____ (Farbar) C:\Users\Razer\Downloads\FRST64.exe
2025-05-13 17:03 - 2025-05-13 17:03 - 000048039 _____ C:\Users\Razer\Downloads\Unbenanntes Dokument (1).pdf
2025-05-13 16:59 - 2025-05-13 13:58 - 055994157 _____ C:\Users\Razer\Desktop\AQ A2 Großsysteme und Kaskaden Ausdruck 1.pdf
2025-05-12 21:13 - 2025-05-12 21:13 - 000000000 ____D C:\Users\Razer\AppData\LocalLow\Intel
2025-05-12 21:13 - 2025-05-12 21:13 - 000000000 ____D C:\ProgramData\Intel
2025-05-12 17:43 - 2025-05-12 17:43 - 000573811 _____ C:\Users\Razer\Desktop\an7En4q_460svav1.mp4
2025-05-12 16:55 - 2025-05-12 16:55 - 000001023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Launcher.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Toolbox.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001011 _____ C:\Users\Public\Desktop\PDF24 Launcher.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001004 _____ C:\Users\Public\Desktop\PDF24 Toolbox.lnk
2025-05-12 16:54 - 2025-05-12 16:54 - 000001481 _____ C:\Users\Public\Desktop\Foxit PDF Reader.lnk
2025-05-12 16:54 - 2025-05-12 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2025-05-12 16:52 - 2025-05-12 16:52 - 000001032 _____ C:\Users\Razer\Desktop\Telegram.lnk
2025-05-12 16:52 - 2025-05-12 16:52 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2025-05-12 16:51 - 2025-05-12 16:51 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-05-12 16:41 - 2025-05-12 16:41 - 000000000 ____D C:\Users\Razer\AppData\Roaming\CCleaner
2025-05-12 16:36 - 2025-05-12 16:36 - 009568256 _____ (Malwarebytes) C:\Users\Razer\Downloads\adwcleaner.exe
2025-05-12 16:35 - 2025-05-12 16:36 - 000000000 ____D C:\AdwCleaner
2025-05-12 16:35 - 2025-05-12 16:35 - 007025360 _____ (Malwarebytes) C:\Users\Razer\Downloads\adwcleaner_7.3.exe
2025-05-12 14:45 - 2025-05-12 14:45 - 000086375 _____ C:\Users\Razer\Desktop\bahnfahrt kiel hannover hin-rückfahrt.pdf
2025-05-09 19:22 - 2025-05-09 20:52 - 000001064 _____ C:\Users\Razer\Desktop\9.5.25 call ek4u.txt
2025-05-04 20:38 - 2025-05-04 20:38 - 000063501 _____ C:\Users\Razer\Downloads\bahncard bescherde teil 2.pdf
2025-05-02 14:51 - 2025-03-25 15:23 - 003007011 _____ C:\Users\Razer\Desktop\Angebot_11,4kW_Wärmepumpe_Familie Alms.pdf
2025-04-28 15:39 - 2025-04-28 16:31 - 000000163 _____ C:\Users\Razer\Desktop\thomas Machacek.txt
2025-04-26 16:08 - 2025-04-26 16:08 - 000041613 _____ C:\Users\Razer\Downloads\manu 25.pdf
2025-04-26 15:07 - 2025-04-26 16:11 - 000001141 _____ C:\Users\Razer\Desktop\manu fc25.txt
2025-04-20 11:41 - 2025-04-20 11:41 - 000105948 _____ C:\Users\Razer\Downloads\Unbenanntes Dokument (2).pdf
2025-04-17 21:18 - 2025-04-14 08:16 - 002072456 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 002072456 _____ C:\Windows\system32\vulkaninfo.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001614216 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001614216 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001576840 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001576840 _____ C:\Windows\system32\vulkan-1.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001389960 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001389960 _____ C:\Windows\SysWOW64\vulkan-1.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 000478384 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 000374960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 001259648 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 000674992 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 000509104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 026001536 _____ C:\Windows\system32\nvidia-pcc.exe
2025-04-17 21:18 - 2025-04-14 08:10 - 002313872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001713816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001569448 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001220784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001053312 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 000942224 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2025-04-17 21:18 - 2025-04-14 08:10 - 000810128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2025-04-17 21:18 - 2025-04-14 08:09 - 023033472 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2025-04-17 21:18 - 2025-04-14 08:09 - 000467064 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2025-04-17 21:18 - 2025-04-14 08:08 - 020517016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 007323280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 005913744 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 005239936 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 003993752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 000853144 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2025-04-17 21:18 - 2025-04-14 08:06 - 005601032 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2025-04-17 21:18 - 2025-04-14 08:06 - 004902688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2025-04-17 21:18 - 2025-04-12 14:25 - 000142952 _____ C:\Windows\system32\nvinfo.pb
2025-04-17 19:03 - 2025-04-17 20:42 - 000004132 _____ C:\Users\Razer\Desktop\call 17.4.25 ek4u.txt
2025-04-16 12:28 - 2025-04-16 12:27 - 000437947 _____ C:\Users\Razer\Desktop\Phillip Marco Schilling Visitenkarte EK4YOU (1).pdf
2025-04-16 12:27 - 2025-04-16 12:27 - 000437947 _____ C:\Users\Razer\Downloads\Phillip Marco Schilling Visitenkarte EK4YOU (1).pdf
2025-04-16 12:01 - 2025-04-16 12:01 - 000114990 _____ C:\Users\Razer\Downloads\Q1 2025 - Tabellenblatt1.pdf
2025-04-15 10:47 - 2025-04-15 10:47 - 000001133 _____ C:\Users\Public\Desktop\Razer Axon.lnk
2025-04-15 09:56 - 2025-04-15 09:56 - 000001430 _____ C:\Users\Razer\Desktop\NVIDIA App (2).lnk
2025-04-15 09:17 - 2025-04-15 09:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2025-04-15 09:17 - 2025-04-07 18:14 - 003114016 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2025-04-15 09:17 - 2025-04-07 18:14 - 002403360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2025-04-15 09:17 - 2025-04-07 17:52 - 000180760 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2025-04-15 09:17 - 2025-04-07 17:52 - 000159768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2025-04-15 08:59 - 2025-04-15 09:03 - 845040656 _____ (NVIDIA Corporation) C:\Users\Razer\Downloads\572.83-desktop-win10-win11-64bit-international-dch-whql.exe
2025-04-15 08:36 - 2025-04-15 10:28 - 000000000 ____D C:\Users\Razer\AppData\Local\EA SPORTS FC 25
2025-04-14 22:46 - 2025-04-14 22:46 - 003018368 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_ek4u.pdf
2025-04-14 13:40 - 2025-04-14 13:41 - 002114907 _____ C:\Users\Razer\Downloads\WP_Angebot_Willi_Blesin_final.pdf
2025-04-14 13:28 - 2025-04-14 13:28 - 003044421 _____ C:\Users\Razer\Downloads\Thomas_Machacek_22kW_neu (1).pdf
2025-04-14 13:28 - 2025-04-14 13:27 - 001572973 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_1213 (1).pdf
2025-04-14 13:26 - 2025-04-14 13:26 - 005199333 _____ C:\Users\Razer\Downloads\WP_Angebot_Willi_Blesin_1216.pdf
2025-04-13 21:30 - 2025-04-13 21:30 - 000142816 _____ C:\Users\Razer\Downloads\Werbebrief PV & WP variante 2.pdf
2025-04-13 20:34 - 2025-04-13 20:34 - 004670519 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_1213.pdf
2025-04-13 20:29 - 2025-04-13 20:29 - 003804639 _____ C:\Users\Razer\Downloads\Thomas_Machacek_22kW_neu.pdf
2025-04-12 19:24 - 2025-04-12 19:24 - 000139231 _____ C:\Users\Razer\Downloads\Werbebrief PV & WP variante 1.pdf
2025-04-10 13:49 - 2025-04-10 13:49 - 000093947 _____ C:\Users\Razer\Downloads\Betreff_ Abmahnung wegen nicht umgesetzter Kontoumstellung und unrechtmäßiger Abbuchungen.pdf
2025-04-10 12:42 - 2025-04-10 12:42 - 000142095 _____ C:\Users\Razer\Downloads\��✅ So funktioniert die Ivy-Lee-Methode (Schritt für Schritt)_.pdf
2025-04-09 20:45 - 2025-04-09 20:45 - 000000000 ____D C:\inetpub
2025-04-08 19:01 - 2025-04-08 19:01 - 000199118 _____ C:\Users\Razer\Downloads\�� 1. Beratungsleitfaden – Wärmepumpe & Photovoltaik (intern oder für Schulung) (1).pdf
2025-04-08 17:23 - 2025-04-08 17:23 - 000197308 _____ C:\Users\Razer\Downloads\�� 1. Beratungsleitfaden – Wärmepumpe & Photovoltaik (intern oder für Schulung).pdf
2025-04-08 17:11 - 2025-04-08 17:11 - 000001941 _____ C:\Users\Razer\Downloads\sehtest_-_beratung.ics
2025-04-08 11:18 - 2025-04-08 11:20 - 000000000 ____D C:\Users\Razer\Desktop\Tools - EXE Daten usw
2025-04-08 11:18 - 2024-09-10 22:44 - 000002082 _____ C:\Users\Razer\Desktop\Travel In A Space Pod.lnk
2025-04-07 18:08 - 2025-04-07 18:08 - 000083048 _____ C:\Users\Razer\Downloads\Eckdaten zur ersteinschätzung für Wärmepumpe und Photovoltaik.pdf
2025-04-07 17:19 - 2025-04-29 19:27 - 000000000 ____D C:\Users\Razer\Desktop\BERUFLICH
2025-04-07 17:16 - 2025-05-12 09:35 - 000000000 ____D C:\Users\Razer\Desktop\PRIVAT
2025-04-07 14:29 - 2025-04-07 14:29 - 001193632 _____ C:\Users\Razer\Downloads\Angebot_KV_10048909687882_07.02.2025.pdf
2025-04-02 11:32 - 2025-04-02 11:32 - 018559671 _____ C:\Users\Razer\Downloads\video machacek.MP4
2025-03-28 15:54 - 2025-03-28 15:54 - 007597053 _____ C:\Users\Razer\Downloads\Leo 1-[AudioTrimmer.com].m4a
2025-03-28 15:45 - 2025-03-28 15:47 - 000123460 _____ C:\Users\Razer\Downloads\ERWEITERT Vergleich von Günstigen und Hochwertigen Wärmepumpen.pdf
2025-03-28 10:42 - 2025-03-28 10:42 - 000000709 _____ C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Energiefox Angebote.lnk
2025-03-25 21:08 - 2025-03-25 21:08 - 000068083 _____ C:\Users\Razer\Downloads\GEP Netzbetreiber Vollmacht Jochen Witt.pdf
2025-03-25 15:20 - 2025-03-25 15:21 - 003007011 _____ C:\Users\Razer\Downloads\Angebot_11,4kW_Wärmepumpe_Familie Alms.pdf
2025-03-25 15:20 - 2025-03-25 15:21 - 000900834 _____ C:\Users\Razer\Downloads\Angebot_Energieberatung_Familie Alms.pdf
2025-03-24 10:35 - 2025-03-24 10:35 - 001209034 _____ C:\Users\Razer\Downloads\Angebot_Energieberatung_Manuel Alms.pdf
2025-03-23 23:06 - 2025-03-23 23:07 - 302022656 _____ C:\Users\Razer\Downloads\sejda-desktop_7.8.3_x64.msi
2025-03-23 22:58 - 2025-03-23 22:58 - 003793424 _____ C:\Users\Razer\Downloads\Angebot_11,4kW_Manuel Alms.pdf
2025-03-19 21:20 - 2025-03-19 21:20 - 014845665 _____ C:\Users\Razer\Downloads\Angebot Familie Hecht.pdf
2025-03-18 19:35 - 2025-03-18 19:35 - 000000027 _____ C:\Windows\system32\ctc.json
2025-03-12 23:06 - 2025-03-12 23:08 - 000000000 ____D C:\Users\Razer\AppData\Local\Notepad
2025-03-12 14:15 - 2025-03-12 14:15 - 000021257 _____ C:\Users\Razer\.pdfbox.cache
2025-03-11 15:29 - 2025-03-11 15:29 - 004029584 _____ C:\Users\Razer\Downloads\Thomas_Uplegger_14,5kW.pdf
2025-03-05 11:16 - 2025-03-25 20:43 - 000000000 ____D C:\Users\Razer\AppData\Local\PDF24
2025-03-05 11:15 - 2025-03-05 11:15 - 002271004 _____ C:\Users\Razer\Downloads\Auftrag Wärmepumpe unter Vorbehalt jochen witt.pdf
2025-03-01 17:39 - 2025-05-12 16:55 - 000000000 ____D C:\Program Files\PDF24
2025-02-27 22:20 - 2025-02-27 22:20 - 004019712 _____ C:\Users\Razer\Downloads\Jens_Thun_14,8kW.pdf
2025-02-27 22:20 - 2025-02-27 22:20 - 001293179 _____ C:\Users\Razer\Downloads\Jens_Thun_Energieberatung.pdf
2025-02-20 20:04 - 2025-02-20 20:05 - 000000000 ____D C:\ProgramData\BDLogging
2025-02-19 22:11 - 2025-02-19 22:11 - 005420653 _____ C:\Users\Razer\Downloads\Angebot AN-2502-913 neuer Preis_signiert.pdf
2025-02-19 13:03 - 2025-02-19 13:03 - 000159878 _____ C:\Users\Razer\Downloads\Einnahemn & Ausgaben Q4.xlsx
2025-02-19 13:03 - 2025-02-19 13:03 - 000115545 _____ C:\Users\Razer\Downloads\Einnahemn & Ausgaben Q4.pdf
2025-02-14 23:45 - 2025-02-14 23:45 - 006522470 _____ C:\Users\Razer\Downloads\Angebot AN-2502-913 neuer Preis (1).pdf
2025-02-14 23:27 - 2025-02-14 23:40 - 006522470 _____ C:\Users\Razer\Downloads\Angebot AN-2502-913 neuer Preis.pdf
2025-02-14 20:56 - 2025-02-14 20:56 - 021861367 _____ C:\Users\Razer\Downloads\20250208_170430.mp4
==================== Drei Monate (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-05-15 10:52 - 2024-12-22 22:53 - 000000000 ____D C:\Users\Razer\AppData\Local\Malwarebytes
2025-05-15 10:42 - 2023-09-25 12:23 - 000000000 __SHD C:\Users\Razer\IntelGraphicsProfiles
2025-05-14 22:42 - 2023-09-25 12:18 - 000000000 ____D C:\ProgramData\NVIDIA
2025-05-14 22:42 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-05-14 22:33 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-05-14 22:27 - 2023-09-25 12:08 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-05-14 19:38 - 2022-09-08 05:15 - 000000000 ____D C:\Windows\SystemTemp
2025-05-14 15:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-05-14 15:03 - 2023-09-25 12:22 - 000000000 ____D C:\Intel
2025-05-14 15:03 - 2023-09-25 12:08 - 000270032 _____ C:\Windows\system32\FNTCACHE.DAT
2025-05-14 15:03 - 2023-09-25 12:08 - 000008192 ___SH C:\DumpStack.log.tmp
2025-05-14 15:03 - 2023-09-25 12:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-05-14 15:03 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2025-05-14 15:02 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2025-05-14 12:33 - 2023-09-25 12:18 - 000000000 ____D C:\Windows\system32\MRT
2025-05-14 12:30 - 2023-09-25 12:17 - 214836568 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-05-14 11:33 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-05-14 11:29 - 2023-09-25 12:11 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-05-13 21:48 - 2023-09-25 12:33 - 000000000 ____D C:\Users\Razer\AppData\Local\D3DSCache
2025-05-13 21:34 - 2024-12-23 15:51 - 000000000 ____D C:\Program Files\CCleaner
2025-05-13 19:23 - 2023-09-25 12:14 - 000000000 ____D C:\Users\Razer\AppData\Local\Packages
2025-05-13 12:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-05-13 12:36 - 2023-09-25 12:14 - 001632024 _____ C:\Windows\system32\PerfStringBackup.INI
2025-05-12 16:52 - 2023-09-29 12:14 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Telegram Desktop
2025-05-12 16:52 - 2023-09-29 12:14 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2025-05-12 16:51 - 2025-01-24 21:30 - 000000000 ____D C:\Program Files\dotnet
2025-05-12 16:51 - 2023-09-27 19:52 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Zoom
2025-05-12 16:51 - 2023-09-25 12:28 - 000000000 ____D C:\ProgramData\Package Cache
2025-05-12 16:40 - 2023-12-26 22:55 - 000000000 ____D C:\Program Files (x86)\Steam
2025-05-12 16:40 - 2023-09-25 14:20 - 000000000 ____D C:\Users\Razer\AppData\Local\CrashDumps
2025-05-12 16:37 - 2023-09-27 23:24 - 000000000 ____D C:\Users\Razer\AppData\Roaming\vlc
2025-05-10 12:55 - 2023-09-25 12:08 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-05-09 17:35 - 2023-09-27 19:36 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-05-07 22:26 - 2023-12-29 18:27 - 000000000 ____D C:\ProgramData\EA Desktop
2025-05-07 22:04 - 2024-11-11 12:59 - 000002356 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2025-05-06 14:28 - 2023-09-25 12:13 - 000002395 _____ C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-05-02 14:12 - 2024-01-04 13:06 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2025-05-02 14:12 - 2024-01-04 13:06 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-04-26 19:54 - 2023-12-29 18:27 - 000000000 ____D C:\ProgramData\Packer
2025-04-25 21:40 - 2023-09-25 12:14 - 000000000 ____D C:\ProgramData\Packages
2025-04-25 21:39 - 2023-09-25 12:17 - 000000000 ____D C:\Users\Razer\AppData\Local\PlaceholderTileLogoFolder
2025-04-25 10:45 - 2023-10-31 09:40 - 000000000 ____D C:\Program Files\NordUpdater
2025-04-25 08:21 - 2023-09-27 19:38 - 000000000 ____D C:\Users\Razer\AppData\Local\NVIDIA
2025-04-17 21:22 - 2023-09-26 12:04 - 000000000 ____D C:\Users\Razer\AppData\Local\NVIDIA Corporation
2025-04-17 21:22 - 2023-09-25 12:18 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2025-04-17 21:22 - 2023-09-25 12:18 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-04-15 10:57 - 2023-09-25 12:08 - 000000000 ____D C:\Windows\system32\Drivers\wd
2025-04-15 10:48 - 2024-03-25 10:02 - 000000000 ____D C:\Users\Razer\AppData\Local\NotificationTemp
2025-04-15 10:47 - 2023-09-25 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon
2025-04-15 10:43 - 2024-12-22 23:12 - 000000000 ____D C:\ProgramData\Bitdefender
2025-04-15 10:42 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2025-04-15 09:28 - 2023-09-25 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex
2025-04-15 09:23 - 2023-09-25 12:18 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2025-04-15 09:17 - 2023-09-25 14:15 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2025-04-15 09:00 - 2023-12-29 18:29 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Electronic Arts
2025-04-15 08:36 - 2023-12-29 18:29 - 000000000 ____D C:\ProgramData\Frostbite
==================== SigCheckExt =========================
2023-12-22 22:28 - 2023-10-26 03:31 - 002149184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFUpdate_01009.dll
2025-05-13 21:32 - 2025-05-13 21:32 - 001426275 _____ (<hxxps://furtivex.net>) C:\Users\Razer\Downloads\FMRS.exe
2025-05-13 18:56 - 2025-05-13 18:56 - 002405376 _____ (Farbar) C:\Users\Razer\Downloads\FRST64 (1).exe
2025-05-13 18:57 - 2025-05-13 18:57 - 002405376 _____ (Farbar) C:\Users\Razer\Downloads\FRST64 (2).exe
2025-05-13 18:55 - 2025-05-13 18:55 - 002405376 _____ (Farbar) C:\Users\Razer\Downloads\FRST64.exe
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== BCD ================================
Start-Manager für Firmware
--------------------------
Bezeichner {fwbootmgr}
displayorder {bootmgr}
{7c7acd1d-5b93-11ee-a718-e7988c26e0b6}
{a2cefc86-5b8b-11ee-b2e6-806e6f6e6963}
{a2cefc87-5b8b-11ee-b2e6-806e6f6e6963}
{a2cefc88-5b8b-11ee-b2e6-806e6f6e6963}
timeout 0
Windows-Start-Manager
---------------------
Bezeichner {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale de-DE
inherit {globalsettings}
default {current}
resumeobject {7c7acd1e-5b93-11ee-a718-e7988c26e0b6}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {7c7acd1d-5b93-11ee-a718-e7988c26e0b6}
device unknown
description UEFI: Intenso, Partition 1
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {a2cefc86-5b8b-11ee-b2e6-806e6f6e6963}
description UEFI:CD/DVD Drive
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {a2cefc87-5b8b-11ee-b2e6-806e6f6e6963}
description UEFI:Removable Device
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {a2cefc88-5b8b-11ee-b2e6-806e6f6e6963}
description UEFI:Network Device
Windows-Startladeprogramm
-------------------------
Bezeichner {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 10
locale de-DE
inherit {bootloadersettings}
recoverysequence {7c7acd20-5b93-11ee-a718-e7988c26e0b6}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {7c7acd1e-5b93-11ee-a718-e7988c26e0b6}
nx OptIn
bootmenupolicy Standard
Windows-Startladeprogramm
-------------------------
Bezeichner {7c7acd20-5b93-11ee-a718-e7988c26e0b6}
device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{7c7acd21-5b93-11ee-a718-e7988c26e0b6}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale de-de
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{7c7acd21-5b93-11ee-a718-e7988c26e0b6}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Wiederaufnahme aus dem Ruhezustand
----------------------------------
Bezeichner {7c7acd1e-5b93-11ee-a718-e7988c26e0b6}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale de-DE
inherit {resumeloadersettings}
recoverysequence {7c7acd20-5b93-11ee-a718-e7988c26e0b6}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows-Speichertestprogramm
----------------------------
Bezeichner {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Windows-Speicherdiagnose
locale de-DE
inherit {globalsettings}
badmemoryaccess Yes
EMS-Einstellungen
-----------------
Bezeichner {emssettings}
bootems No
Debuggereinstellungen
---------------------
Bezeichner {dbgsettings}
debugtype Local
RAM-Defekte
-----------
Bezeichner {badmemory}
Globale Einstellungen
---------------------
Bezeichner {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Startladeprogramm-Einstellungen
-------------------------------
Bezeichner {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisoreinstellungen
-----------------------
Bezeichner {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Einstellungen zur Ladeprogrammfortsetzung
-----------------------------------------
Bezeichner {resumeloadersettings}
inherit {globalsettings}
Geräteoptionen
--------------
Bezeichner {7c7acd21-5b93-11ee-a718-e7988c26e0b6}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume5
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 09-05-2025
durchgeführt von Razer (15-05-2025 10:54:23)
Gestartet von C:\Users\Razer\Downloads
Microsoft Windows 10 Home Version 22H2 19045.5854 (X64) (2023-09-25 10:09:55)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-3644930430-3491832035-840970103-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3644930430-3491832035-840970103-503 - Limited - Disabled)
Gast (S-1-5-21-3644930430-3491832035-840970103-501 - Limited - Disabled)
Razer (S-1-5-21-3644930430-3491832035-840970103-1001 - Administrator - Enabled) => C:\Users\Razer
WDAGUtilityAccount (S-1-5-21-3644930430-3491832035-840970103-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Absolute Uninstaller 6.0.1.17 (HKLM-x32\...\Absolute Uninstaller) (Version: 6.0.1.17 - Glarysoft Ltd)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 25.001.20474 - Adobe)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.1.0.587 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Backuptrans Android iPhone Viber Transfer + (x64) 3.1.86 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Backuptrans Android iPhone Viber Transfer + (x64)) (Version: 3.1.86 - Backuptrans)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 27.1.1.12 - Bitdefender)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 136.1.78.97 - Die Brave-Autoren)
CCleaner (HKLM\...\CCleaner) (Version: 6.35 - Piriform)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.458.0.5971 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{20a8704d-f282-4d39-b57c-177ec90557be}) (Version: 13.458.0.5971 - Electronic Arts)
f.lux (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Flux) (Version: 4.134 - f.lux Software LLC)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2025.1.0.27937 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 136.0.7103.93 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 14.0.0.310 - Huawei Technologies Co., Ltd.)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4815 - Intel Corporation)
Lunatask 1.7.9 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\288d4c26-e1c7-58e9-bf0f-d1c1f6fb9f59) (Version: 1.7.9 - Lunatask)
Malwarebytes version 5.2.11.183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.2.11.183 - Malwarebytes)
Microsoft .NET Host - 8.0.15 (x64) (HKLM\...\{4C903F19-B4C3-4D0C-8CC9-D444C511AF1C}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.15 (x64) (HKLM\...\{11CCC9F6-77AA-4421-9EAC-BAEC36D96817}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.15 (x64) (HKLM\...\{8731E6E3-AF96-4515-ACEC-DBFB3DF55292}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.64 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.64 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\OneDriveSetup.exe) (Version: 25.065.0406.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.15 (x64) (HKLM\...\{0E4A7820-FDA4-4250-B7AC-E7A2F7B43B64}) (Version: 64.60.31203 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.15 (x64) (HKLM-x32\...\{5625bb48-295c-4113-bc92-d6a69b19b04c}) (Version: 8.0.15.34718 - Microsoft Corporation)
NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.4.6.959 - Nord Security)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 7.32.5.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NVIDIA FrameView SDK 1.5.10920.35420203 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.10920.35420203 - NVIDIA Corporation)
NVIDIA Grafiktreiber 576.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 576.02 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.4.3.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.3.2 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
NVIDIA-App 11.0.3.232 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.3.232 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.1.3 - OBS Project)
PDF24 Creator (HKLM\...\{0C17F9F9-B9AF-483C-A44D-A916BD96D4D1}) (Version: 11.25.1 - geek software GmbH)
Razer Axon (HKLM\...\Razer Axon_is1) (Version: 2.2.1.0 - Razer Inc.)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.6 - Razer Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 11.1.5.0 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.41 - Razer Inc.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.10.0315.031117 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8245 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Telegram Desktop (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 5.13.1 - Telegram FZ-LLC)
Todoist 9.4.0 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\046cc9a8-e645-5367-8486-409093e0b69a) (Version: 9.4.0 - Doist)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VidJuice UniTube Version 6.3.0 (HKLM\...\VidJuice UniTube_is1) (Version: 6.3.0 - Mobee Technology Co., Limited)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vysor (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\vysor) (Version: 5.0.7 - Vysor Inc.)
WinRAR 6.23 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.23.0 - win.rar GmbH)
Zoom Workplace (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\ZoomUMX) (Version: 6.4.6 (64360) - Zoom Communications, Inc.)
Chrome apps:
============
Do this to get fit (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\20e6337838ae477ae9341eac29308866) (Version: 1.0 - Google\Chrome)
Dokumente (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\720be21a2e6fc6834597b7f341384a96) (Version: 1.0 - Google\Chrome)
Gmail (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\13d13583ddb177c4c405f54cde512a21) (Version: 1.0 - Google\Chrome)
Google Drive (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\67de23052a953a94dbdeca31011ef84a) (Version: 1.0 - Google\Chrome)
Präsentationen (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\99d49a267397ad4733ccdff094476e82) (Version: 1.0 - Google\Chrome)
Sheets (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\fd72a94144682c8168ad4fe559194f89) (Version: 1.0 - Google\Chrome)
YouTube (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\5442e3780cba0a36baf1951da45b0cdf) (Version: 1.0 - Google\Chrome)
Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-01-04] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc [2024-01-04] (Adobe Systems Incorporated)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2025-04-17] (NVIDIA Corp.)
Spotify – Musik und Podcasts -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0 [2025-05-13] (Spotify AB) [Startup Task]
Trello -> C:\Program Files\WindowsApps\45273LiamForsyth.PawsforTrello_2.15.7.0_x64__7pb5ddty8z1pa [2025-02-14] (Trello, Inc.)
TvMate IPTV Pro -> C:\Program Files\WindowsApps\HFRTECHLLC.TiviMateIPTVPro_1.0.8.0_x64__ef2a51g56xear [2025-04-25] (HFR TECH LLC)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm [2025-05-13] (WhatsApp Inc.) [Startup Task]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-DE72DEDCB3B1} -> [Creative Cloud Files] => C:\Users\Razer\Creative Cloud Files [2024-01-04 12:55]
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{4e6f7264-5650-4e00-0000-000000000000}\localserver32 -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn s.a. -> nordvpn S.A.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{995f8d89-8ab5-dd20-098d-b9419e93fd76}\localserver32 -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer USA Ltd. -> Razer Inc.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-03-06] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxDTCM.dll [2022-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\nvshext.dll [2025-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-03-06] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Phillip Marco - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Razer\Desktop\PRIVAT\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_djfkiamnhkodoajeogfnfojcmmhfpbhb\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Dokumente.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Präsentationen.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Sheets.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Profil 2 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2025-04-15 09:24 - 2025-04-15 09:24 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA Overlay\MessageBusRouter.dll
2025-04-15 09:17 - 2025-04-15 09:24 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird nur der ADS entfernt.)
AlternateDataStreams: C:\Users\Razer\Downloads\12 Module Herr Schulz 4.8kwp.pdf:shield [639]
AlternateDataStreams: C:\Users\Razer\Downloads\15 Module Herr Schulz 6kwp.pdf:shield [637]
AlternateDataStreams: C:\Users\Razer\Downloads\150er übersicht - Tabellenblatt1.pdf:shield [1388]
AlternateDataStreams: C:\Users\Razer\Downloads\20240716_57248_d2d_preisprognostizierer_v15.xlsx:shield [162]
AlternateDataStreams: C:\Users\Razer\Downloads\20240716_57248_selbstauskunft-pv-beratung.docx:shield [160]
AlternateDataStreams: C:\Users\Razer\Downloads\2wFBcMCDsPs.htm:shield [122]
AlternateDataStreams: C:\Users\Razer\Downloads\30 Tage Fokus Challenge 1.pdf:shield [114]
AlternateDataStreams: C:\Users\Razer\Downloads\Alles (1).pdf:shield [98]
AlternateDataStreams: C:\Users\Razer\Downloads\Alles.pdf:shield [94]
AlternateDataStreams: C:\Users\Razer\Downloads\AMPERE.IQ App_Anwenderdokumentation_v1.0_2023_10_09 (1).pdf:shield [144]
AlternateDataStreams: C:\Users\Razer\Downloads\AMPERE.IQ App_Anwenderdokumentation_v1.0_2023_10_09.pdf:shield [219]
AlternateDataStreams: C:\Users\Razer\Downloads\Anbieter variabler Stromtarife.pdf:shield [617]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Frau Tatjana Klindt (1).pdf:shield [122]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Herr Marc Windeggis 8kWp ybxx.pdf:shield [645]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Herr Marc Windeggis 8kWp.pdf:shield [649]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Herr Nils Winkler 12,4kWp.pdf:shield [641]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot komplett Heinz Herentrey.pdf:shield [624]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot_AN-2407-164_Michael_Senger.pdf:shield [112]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot_Herr Klindt - 10kWp 12Li ASP und Garantien (2).pdf:shield [145]
AlternateDataStreams: C:\Users\Razer\Downloads\Aufmaß Mappe 2.0.pdf:shield [105]
AlternateDataStreams: C:\Users\Razer\Downloads\b protokoll Heinz Herentrey.pdf:shield [635]
AlternateDataStreams: C:\Users\Razer\Downloads\CamScanner 01.11.2023 21.37.pdf:shield [116]
AlternateDataStreams: C:\Users\Razer\Downloads\Carsten Neff AB.pdf:shield [101]
AlternateDataStreams: C:\Users\Razer\Downloads\Checkliste WP.pdf:shield [96]
AlternateDataStreams: C:\Users\Razer\Downloads\Datenblatt_AMPEREStoragePro_Rev04_Ansicht (1).pdf:shield [209]
AlternateDataStreams: C:\Users\Razer\Downloads\DB_Rechnung_271516002728.pdf:shield [108]
AlternateDataStreams: C:\Users\Razer\Downloads\DB_Ticket_180678620477.pdf:shield [106]
AlternateDataStreams: C:\Users\Razer\Downloads\DB_Ticket_271516002728.pdf:shield [106]
AlternateDataStreams: C:\Users\Razer\Downloads\Design ohne Titel.png:shield [596]
AlternateDataStreams: C:\Users\Razer\Downloads\EKD_Beratungsprotokoll_2022-10_Rev1.3_Formular (1).pdf:shield [218]
AlternateDataStreams: C:\Users\Razer\Downloads\f (1).txt:shield [220]
AlternateDataStreams: C:\Users\Razer\Downloads\f.txt:shield [214]
AlternateDataStreams: C:\Users\Razer\Downloads\floatingneumnster.pdf:shield [1257]
AlternateDataStreams: C:\Users\Razer\Downloads\Flurkarte Carsten Neff (1).pdf:shield [115]
AlternateDataStreams: C:\Users\Razer\Downloads\Flurkarte Carsten Neff.pdf:shield [111]
AlternateDataStreams: C:\Users\Razer\Downloads\Haussolar.jpg:shield [100]
AlternateDataStreams: C:\Users\Razer\Downloads\img-2741_CygCP609.mp4:shield [185]
AlternateDataStreams: C:\Users\Razer\Downloads\IMG_2741.MOV:shield [279]
AlternateDataStreams: C:\Users\Razer\Downloads\IMG_7248.JPG:shield [594]
AlternateDataStreams: C:\Users\Razer\Downloads\just-do-it-and-polygon-nike-d53rzijay4tc4chh.jpg:shield [131]
AlternateDataStreams: C:\Users\Razer\Downloads\Kunde zahlt bar.pdf:shield [104]
AlternateDataStreams: C:\Users\Razer\Downloads\Neuer Preislisten X - FARBE.pdf:shield [1344]
AlternateDataStreams: C:\Users\Razer\Downloads\Neuer Preislisten X BLANKO.pdf:shield [1348]
AlternateDataStreams: C:\Users\Razer\Downloads\Protokoll Anmeldung Vollmachten (1).pdf:shield [124]
AlternateDataStreams: C:\Users\Razer\Downloads\Protokoll Anmeldung Vollmachten komplett.pdf:shield [124]
AlternateDataStreams: C:\Users\Razer\Downloads\PV Angebot Frau Tatjana Klindt.pdf:shield [643]
AlternateDataStreams: C:\Users\Razer\Downloads\Speicherpapier.pdf:shield [130]
AlternateDataStreams: C:\Users\Razer\Downloads\stratton-oakmont-training-1pdf_compress.pdf:shield [156]
AlternateDataStreams: C:\Users\Razer\Downloads\STRATTON_pdf 3.0.pdf:shield [627]
AlternateDataStreams: C:\Users\Razer\Downloads\Studio Psyk 2023-11-11_213115.pdf:shield [118]
AlternateDataStreams: C:\Users\Razer\Downloads\Thomas_Uplegger_14,5kW.pdf:shield [653]
AlternateDataStreams: C:\Users\Razer\Downloads\Visitenkarte back.psd:shield [190]
AlternateDataStreams: C:\Users\Razer\Downloads\Visitenkarte front.psd:shield [191]
AlternateDataStreams: C:\Users\Razer\Downloads\wait but why - Tabellenblatt1.pdf:shield [1329]
AlternateDataStreams: C:\Users\Razer\Downloads\WhatsApp Image 2023-10-31 at 20.28.37.jpeg:shield [127]
AlternateDataStreams: C:\Users\Razer\Downloads\WhatsApp Image 2023-12-10 at 13.18.19.jpeg:shield [127]
AlternateDataStreams: C:\Users\Razer\Downloads\Widerruf Belehrung Heinz Herentrey.pdf:shield [648]
AlternateDataStreams: C:\Users\Razer\Downloads\Widerruf Belehrung Neff komplett.pdf:shield [640]
AlternateDataStreams: C:\Users\Razer\Downloads\_Gutschein_4801724.pdf:shield [108]
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\localhost -> localhost
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 11:14 - 2019-12-07 11:12 - 000000824 _____ C:\Windows\system32\drivers\etc\hosts
2024-09-11 14:36 - 2024-09-11 14:36 - 000000374 _____ C:\Windows\system32\drivers\etc\hosts.ics
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Users\Razer\AppData\Local\Microsoft\WindowsApps;C:\Users\Razer\Desktop\scrcpy-win64-v2.3.1;C:\Program Files\dotnet\;C:\Program Files\NVIDIA Corporation\NVIDIA App\NvDLISR
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Razer\Downloads\just-do-it-and-polygon-nike-d53rzijay4tc4chh.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist aktiviert.
Network Binding:
=============
NordLynx: NordLynx Tunnel -> wireguard.sys
WLAN: Killer Wireless-n/a/ac 1535 Wireless Network Adapter -> Qcamain10x64.sys
LAN-Verbindung: TAP-NordVPN Windows Adapter V9 -> tapnordvpn.sys
OpenVPN Data Channel Offload for NordVPN: OpenVPN Data Channel Offload -> ovpn-dco.sys
Ethernet: Killer E2500 Gigabit Ethernet Controller -> e2xw10x64.sys
Bluetooth-Netzwerkverbindung: Bluetooth Device (Personal Area Network) -> bthpan.sys
NordLwf: NordVPN LightWeight Firewall
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "RazerCortex"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [{931DC8B6-0411-4E6F-A2B9-40DEEEC8650C}] => (Allow) C:\Users\Razer\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
FirewallRules: [TCP Query User{65D476E0-4D37-4064-BDE6-BD6D10B7E722}C:\program files\obs-studio\obs-plugins\64bit\obs-browser-page.exe] => (Allow) C:\program files\obs-studio\obs-plugins\64bit\obs-browser-page.exe (Hugh Bailey -> )
FirewallRules: [UDP Query User{35CD64FF-72E8-412F-B7EA-8A1B6F9B5358}C:\program files\obs-studio\obs-plugins\64bit\obs-browser-page.exe] => (Allow) C:\program files\obs-studio\obs-plugins\64bit\obs-browser-page.exe (Hugh Bailey -> )
FirewallRules: [TCP Query User{BC432FD6-C197-4D76-9EBB-73996E8982FF}D:\vid ddl\vidjuice unitube\vidjuice unitube.exe] => (Allow) D:\vid ddl\vidjuice unitube\vidjuice unitube.exe => Keine Datei
FirewallRules: [UDP Query User{A8A9E8F3-CA8C-4C1B-AF9E-C6D90DC9294B}D:\vid ddl\vidjuice unitube\vidjuice unitube.exe] => (Allow) D:\vid ddl\vidjuice unitube\vidjuice unitube.exe => Keine Datei
FirewallRules: [{46FB4814-27D4-4B69-B29D-7A02E204571B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{43C8DB57-5AE5-45D2-88E7-1AA93A560604}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{EEABFB5C-65D6-42D6-8531-5F35A68FB0EF}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [{132E9BE9-EA9C-485D-99B6-26507291BCC0}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7x64\steamwebhelper.exe (Valve Corp. -> Valve Corporation)
FirewallRules: [TCP Query User{98D75D23-F249-4960-93E0-2B78B01B8AEC}C:\users\razer\appdata\local\vysor\app-5.0.7\vysor.exe] => (Allow) C:\users\razer\appdata\local\vysor\app-5.0.7\vysor.exe (Vysor, Inc -> Vysor Inc.)
FirewallRules: [UDP Query User{170E5CDB-5F19-4083-BE2C-A5ABA76A6B25}C:\users\razer\appdata\local\vysor\app-5.0.7\vysor.exe] => (Allow) C:\users\razer\appdata\local\vysor\app-5.0.7\vysor.exe (Vysor, Inc -> Vysor Inc.)
FirewallRules: [TCP Query User{0D6A360C-F14F-4B5D-A81A-783CCF09749A}C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [UDP Query User{47C12BB7-B41B-4609-8315-A29DC4CA1181}C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{E890FCDD-A5A4-484A-B533-15083E731167}] => (Block) C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{38D92190-5926-428F-831D-2DD8C0627BF4}] => (Block) C:\program files (x86)\steam\steamapps\common\ea sports fc 24\fc24.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [TCP Query User{65D5835E-6BD2-454A-BB7C-E69D38DEB3CD}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{B999721D-7A28-4DDC-B892-F97FEC9F27FB}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [TCP Query User{E8158C09-E1E6-4D0C-9B28-DE662B4F9AA9}C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [UDP Query User{B5DFF9D0-66FA-4907-B000-7368D5E4AB86}C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{C368FF3C-C4F4-4E9F-A0B8-9E6E4DC50F8C}] => (Block) C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{61A3081C-0B09-4E77-94E3-B9DF242AD28B}] => (Block) C:\program files (x86)\steam\steamapps\common\ea sports fc 25\fc25.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{67702778-F65B-4D1A-A8DC-803E5BE5D626}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{07149130-2F18-4719-8511-837CB4A0B4AB}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{DB698537-D773-4B96-B4A0-7023465AD7B1}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{031B5466-DEE4-4425-8027-759860338B0A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAConnect_microsoft.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{4F6F7E31-812A-4AAD-958C-521254C154AF}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{0A063DAB-52D7-43E1-B99C-EBC2BD331F3C}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EADesktop.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{EB0D5ADA-0415-4627-AF1D-5C147D98868F}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{EF0F3F68-1910-4CE6-B026-49277D334DC2}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAGEP.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{39A93119-8D3A-4C6B-9A91-B6FC7BD3FB0A}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{F94320C9-F8F3-4ECB-B48E-DD250AD2D866}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALocalHostSvc.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{15C06BA9-406C-443A-93EB-E11506605345}] => (Allow) C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALaunchHelper.exe (Electronic Arts, Inc. -> Electronic Arts)
FirewallRules: [{DF0FA672-A3EF-4C0D-A2F2-D4BF6772ECA1}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{61A1BF6A-2B20-466B-B32D-516E45F8A540}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{81A4B802-5D77-4240-B089-25E360431997}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{454400DD-DF68-40CC-B999-78CC54420D1A}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{F6660898-61A4-438C-BFB5-65B7D167D709}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [{611ECCCB-246E-43F9-A28C-034945F09DF0}] => (Allow) C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0\Spotify.exe (453637B3-4E12-4CDF-B0D3-2A3C863BF6EF -> Spotify Ltd)
FirewallRules: [TCP Query User{29FFFCD7-68F2-4EE2-8FAC-BDF7FC1662DA}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Block) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [UDP Query User{4D6CF450-69D9-40A0-B39D-8E09B96D3555}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Block) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
==================== Wiederherstellungspunkte =========================
04-05-2025 16:38:34 Geplanter Prüfpunkt
12-05-2025 14:55:18 Geplanter Prüfpunkt
12-05-2025 21:07:39 Piriform Driver Updater Restore Point
13-05-2025 21:34:00 Furtivex Malware Removal Script
14-05-2025 11:24:38 Windows Modules Installer
14-05-2025 11:25:38 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Qualcomm Atheros QCA61x4 Bluetooth
Description: Qualcomm Atheros QCA61x4 Bluetooth
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm
Service: BTHUSB
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (05/14/2025 11:25:39 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddWin32ServiceFiles: Unable to back up image of service CCleaner Performance Optimizer Service since QueryServiceConfig API failed
System Error:
Das System kann die angegebene Datei nicht finden..
Error: (05/14/2025 11:24:40 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddWin32ServiceFiles: Unable to back up image of service CCleaner Performance Optimizer Service since QueryServiceConfig API failed
System Error:
Das System kann die angegebene Datei nicht finden..
Systemfehler:
=============
Error: (05/15/2025 10:51:43 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/15/2025 10:50:56 AM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/15/2025 10:42:09 AM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT-AUTORITÄT)
Description: Das Secure Boot-Update konnte eine Secure Boot-Variable mit dem Fehler (-2147020471 = Sicheres Starten ist auf diesem Computer nicht aktiviert.) nicht aktualisieren. Weitere Informationen finden Sie unter https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/14/2025 10:42:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{FD06603A-2BDF-4BB1-B7DF-5DC68F353601}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/14/2025 10:42:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{FD06603A-2BDF-4BB1-B7DF-5DC68F353601}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/14/2025 10:42:38 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{FD06603A-2BDF-4BB1-B7DF-5DC68F353601}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/14/2025 10:42:09 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/14/2025 10:41:39 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Windows Defender:
================
Date: 2025-05-14 11:56:32
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-13 12:50:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-12 14:40:54
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-09 13:01:34
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-08 12:19:12
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
Date: 2024-11-02 11:58:48
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Aktuell
Error Code: 0x80501102
Error description: Unerwartetes Problem. Installieren Sie bei Bedarf verfügbare Updates, und starten Sie das Programm dann erneut. Informationen zum Installieren von Updates finden Sie unter "Hilfe und Support".
Security intelligence Version: 1.421.56.0;1.421.56.0
Engine Version: 1.1.24090.11
Date: 2023-10-28 22:47:00
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Netzwerkinspektionssystem
Error Code: 0x8007041d
Error description: Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Reason: Dem System fehlen erforderliche Updates zum Ausführen des Netzwerkinspektionssystems. Installieren Sie die erforderlichen Updates, und starten Sie das Gerät neu.
CodeIntegrity:
===============
Date: 2025-04-15 10:49:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4a38014ac4bdce40\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2025-02-09 11:05:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: Razer 2.02 02/22/2018
Hauptplatine: Razer Blade Pro
Prozessor: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Prozentuale Nutzung des RAM: 62%
Installierter physikalischer RAM: 16273.64 MB
Verfügbarer physikalischer RAM: 6146.28 MB
Summe virtueller Speicher: 31633.64 MB
Verfügbarer virtueller Speicher: 19474.29 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.86 GB) (Free:568.76 GB) (Model: CT1000P3SSD8) NTFS
Drive d: (Blade Pro HDD) (Fixed) (Total:1863.02 GB) (Free:839.55 GB) (Model: ST2000LM015-2E8174) NTFS
\\?\Volume{5d2e59dd-e3c9-464c-99d4-d93203f4e136}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS
\\?\Volume{8c4d2e74-a499-457d-bf77-d724eee8446c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 580F63EA)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
brauchst du die Shortcut ergebnisse auch noch? |
|
Gestern, 12:09
| #8 | |
| /// TB-Ausbilder | Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös Servus, danke für die Logdateien. Aktive Malware auf dem Windows-System sind keine zu erkennen. Es gibt vermutlich zwei mögliche Ursachen für dein Problem, aber ich würde gerne noch einen Blick in die Shortcut.txt werfen. Bitte poste sie noch. Zitat:
|
|
Gestern, 13:03
| #9 |
| | Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös Hi Matthias ja das mit der synchro zwischen destop-PC und ihone& ipad hast du richtig verstanden. Was glaubst du denn, welche Ursache es ist? (bin neugierig und will es gerne, wenn möglich, etwas verstehen lernen) hier der shortcut log: Code:
ATTFilter Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version: 09-05-2025
durchgeführt von Razer (15-05-2025 10:56:04)
Gestartet von C:\Users\Razer\Downloads
Start-Modus: Normal
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Absolute Uninstaller.lnk -> C:\Program Files (x86)\Glarysoft\Absolute Uninstaller\unInstaler.exe (Glarysoft Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk -> C:\Program Files\Adobe\Acrobat DC\Acrobat\acrodist.exe (Adobe Systems Incorporated.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (Malwarebytes)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Launcher.lnk -> C:\Program Files\PDF24\pdf24-Launcher.exe (geek software GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Toolbox.lnk -> C:\Program Files\PDF24\pdf24-Toolbox.exe (geek software GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VidJuice UniTube.lnk -> D:\vid ddl\VidJuice UniTube\VidJuice UniTube.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex\Razer Cortex.lnk -> C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe (Razer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex\Uninstall Razer Cortex.lnk -> C:\Program Files (x86)\Razer\Razer Cortex\unins000.exe (Razer Inc. )
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon\Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon\Uninstall Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\unins000.exe (Razer Inc. )
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer\Razer Synapse.lnk -> C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe (Razer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio\OBS Studio (64bit).lnk -> C:\Program Files\obs-studio\bin\64bit\obs64.exe (OBS)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio\Uninstall.lnk -> C:\Program Files\obs-studio\uninstall.exe (OBS Project)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\NVIDIA App.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe (NVIDIA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec\NordVPN Diagnostics.lnk -> C:\Program Files\NordVPN\Diagnostics\NordVpn.DiagnosticsTool.exe (NordVpn.DiagnosticsTool)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec\NordVPN.lnk -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn S.A.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft\Absolute Uninstaller\Absolute Uninstaller.lnk -> C:\Program Files (x86)\Glarysoft\Absolute Uninstaller\unInstaler.exe (Glarysoft Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader\Foxit PDF Reader entfernen.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader\Foxit PDF Reader.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\EA app-Updater.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAUpdater.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\EA Error Reporter.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\ErrorReporter.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\EA Updater.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAUpdater.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\EA.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Gen Digital Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\RecoveryDrive.lnk -> C:\Windows\System32\RecoveryDrive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Registry Editor.lnk -> C:\Windows\regedit.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Defender Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Quick Assist.lnk -> C:\Windows\System32\quickassist.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Internet Explorer\Quick Launch\Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.)
Shortcut: C:\ProgramData\Microsoft\Internet Explorer\Quick Launch\Razer Cortex.lnk -> C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe (Razer Inc.)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Razer\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Foxit PDF Reader.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\Users\Public\Desktop\PDF24 Launcher.lnk -> C:\Program Files\PDF24\pdf24-Launcher.exe (geek software GmbH)
Shortcut: C:\Users\Public\Desktop\PDF24 Toolbox.lnk -> C:\Program Files\PDF24\pdf24-Toolbox.exe (geek software GmbH)
Shortcut: C:\Users\Public\Desktop\Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.)
Shortcut: C:\Users\Public\Desktop\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\Users\Razer\Links\Desktop.lnk -> C:\Users\Razer\Desktop ()
Shortcut: C:\Users\Razer\Links\Downloads.lnk -> C:\Users\Razer\Downloads ()
Shortcut: C:\Users\Razer\Downloads\Telegram Desktop\GMT20231022-060132_Recording_640x360 - Verknüpfung.lnk -> C:\Users\Razer\Downloads\Telegram Desktop\GMT20231022-060132_Recording_640x360.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\ESET Online Scanner.lnk -> C:\Users\Razer\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe (ESET)
Shortcut: C:\Users\Razer\Desktop\NVIDIA App (2).lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe (NVIDIA Corporation)
Shortcut: C:\Users\Razer\Desktop\Telegram.lnk -> C:\Users\Razer\AppData\Roaming\Telegram Desktop\Telegram.exe (Telegram FZ-LLC)
Shortcut: C:\Users\Razer\Desktop\Travel In A Space Pod.lnk -> C:\Users\Razer\Downloads\dragon ball saga zusammenfassungen\Travel In A Space Pod Deep Bass White Noise Dragon Ball Z Ambience_360p.mp4 ()
Shortcut: C:\Users\Razer\Desktop\Trojaner Board\Absolute Uninstaller.lnk -> C:\Program Files (x86)\Glarysoft\Absolute Uninstaller\unInstaler.exe (Glarysoft Ltd)
Shortcut: C:\Users\Razer\Desktop\Trojaner Board\KVRT2020_Data - Verknüpfung.lnk -> C:\KVRT2020_Data ()
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\PDF24 Launcher.lnk -> C:\Program Files\PDF24\pdf24-Launcher.exe (geek software GmbH)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\PDF24 Toolbox.lnk -> C:\Program Files\PDF24\pdf24-Toolbox.exe (geek software GmbH)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Adobe Acrobat.lnk -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Foxit PDF Reader.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\GeForce Experience.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\NordVPN.lnk -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn S.A.)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Razer Cortex.lnk -> C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe (Razer Inc.)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Telegram Desktop - Verknüpfung.lnk -> C:\Users\Razer\Downloads\Telegram Desktop ()
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Todoist.lnk -> C:\Users\Razer\AppData\Local\Programs\todoist\Todoist.exe (Doist)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\VidJuice UniTube.lnk -> D:\vid ddl\VidJuice UniTube\VidJuice UniTube.exe (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\Bitdefender.lnk -> C:\Program Files\Bitdefender\Bitdefender Security App\seccenter.exe (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Gen Digital Inc.)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (Malwarebytes)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\NVIDIA App.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe (NVIDIA Corporation)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\Videos\y2mate.com - Travel In A Space Pod Deep Bass White Noise Dragon Ball Z Ambience_360p - Verknüpfung.lnk -> C:\Users\Razer\Downloads\dragon ball saga zusammenfassungen\y2mate.com - Travel In A Space Pod Deep Bass White Noise Dragon Ball Z Ambience_360p.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\EA.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe (Electronic Arts)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\OBS Studio.lnk -> C:\Program Files\obs-studio\bin\64bit\obs64.exe (OBS)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\absolvierte workouts & programme\wait but why - Tabellenblatt1 - Verknüpfung.lnk -> C:\Users\Razer\Downloads\wait but why - Tabellenblatt1.pdf ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\Aufzeichnungen - Verknüpfung.lnk -> C:\Users\Razer\Videos\Captures ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\Travel In A Space Pod Deep Bass White Noise Dragon Ball Z Ambience_360p - Verknüpfung.lnk -> C:\Users\Razer\Downloads\dragon ball saga zusammenfassungen\Travel In A Space Pod Deep Bass White Noise Dragon Ball Z Ambience_360p.mp4 ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\23 Anlagen in einem Monat, Terminator Michael Mackenrodt erklärt wie! - Verknüpfung.lnk -> C:\Users\Razer\Downloads\23 Anlagen in einem Monat, Terminator Michael erklärt wie!.mp4 ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\aktueller_Rohertrag.csv - Verknüpfung.lnk -> C:\Users\Razer\Downloads\aktueller_Rohertrag.csv ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\Vid Juice ddl.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\Zoom - Verknüpfung.lnk -> C:\Users\Razer\Documents\Zoom ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\02.11.23 Sohrab call 2 - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\02.11.23 Sohrab call 2.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\03.11.23 Max böhm routine call - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\03.11.23 Max böhm routine call.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\17.10.23 Patrick Germer - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\17.10.23 Patrick Germer.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\18.10.23 Jan Papenhausen call 1 - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\18.10.23 Jan Papenhausen call 1.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\19.10.23 tillmann call delegieren - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\19.10.23 tillmann call delegieren.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\20.10.23 Sohrab call 1 - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\20.10.23 Sohrab call 1.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\22.10.23 Emad Call 1 - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\22.10.23 Emad Call 1.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\26.10.23 Emad 2ter call 0,1 prozent mehr - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\26.10.23 Emad 2ter call 0,1 prozent mehr.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Black Hat Wizard - Cold Email Mastery small version - Verknüpfung.lnk -> D:\alle kurse und mehr\Black Hat Wizard - Cold Email Mastery small version ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\Notizen CALLs Aufzeichnung LERNEN\Aufzeichnungen - Verknüpfung.lnk -> C:\Users\Razer\Videos\Captures ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\MACKENRODT VERKAUFS TRAINING\Musik - Verknüpfung.lnk -> C:\Users\Razer\Music ()
Shortcut: C:\Users\Razer\Creative Cloud Files\_Cloud documents.lnk -> C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Energiefox Angebote.lnk -> C:\Users\Razer\Desktop\Energiefox Angebote (Keine Datei)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk -> C:\Users\Razer\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe (ESET)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk -> C:\Users\Razer\AppData\Local\FluxSoftware\Flux\flux.exe (f.lux Software LLC)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HWiNFO64.lnk -> C:\Users\Razer\Downloads\hwi_763_5220\HWiNFO64.exe (Keine Datei)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lunatask.lnk -> C:\Users\Razer\AppData\Local\Programs\@lunataskelectron\Lunatask.exe (Lunatask)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Razer\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Todoist.lnk -> C:\Users\Razer\AppData\Local\Programs\todoist\Todoist.exe (Doist)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Zoom Workplace.lnk -> C:\Users\Razer\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Communications, Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vysor Inc\Vysor.lnk -> C:\Users\Razer\AppData\Local\vysor\Vysor.exe (Vysor Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop\Telegram entfernen.lnk -> C:\Users\Razer\AppData\Roaming\Telegram Desktop\unins001.exe (Telegram FZ-LLC )
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop\Telegram.lnk -> C:\Users\Razer\AppData\Roaming\Telegram Desktop\Telegram.exe (Telegram FZ-LLC)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiSuite\HiSuite.lnk -> C:\Program Files (x86)\HiSuite\HiSuite.exe (华为技术有限公司 版权所有)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiSuite\Uninstall.lnk -> C:\Program Files (x86)\HiSuite\uninst.exe ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Backuptrans Android iPhone Viber Transfer + (x64)\Backuptrans Android iPhone Viber Transfer + (x64).lnk -> C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\androidiPhoneViberTransferPlus.exe (Backuptrans Studio)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Backuptrans Android iPhone Viber Transfer + (x64)\Uninstall.lnk -> C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\uninst.exe (Backuptrans Studio)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Backuptrans Android iPhone Viber Transfer + (x64)\Website.lnk -> C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\Backuptrans Android iPhone Viber Transfer + (x64).url ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Absolute Uninstaller.lnk -> C:\Program Files (x86)\Glarysoft\Absolute Uninstaller\unInstaler.exe (Glarysoft Ltd)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Foxit PDF Reader.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HWiNFO64.lnk -> C:\Users\Razer\Downloads\hwi_763_5220\HWiNFO64.exe (Keine Datei)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PDF24 Toolbox.lnk -> C:\Program Files\PDF24\pdf24-Toolbox.exe (geek software GmbH)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Todoist.lnk -> C:\Users\Razer\AppData\Local\Programs\todoist\Todoist.exe (Doist)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Zoom.lnk -> C:\Users\Razer\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Communications, Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Tombstones\Foxit PDF Reader (2).lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d356105fac5527ef\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
ShortcutWithArgument: C:\ProgramData\Razer\RazerAxon\RazerAxon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.) -> -wrongaccess
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer\Razer Synapse\Razer Synapse.lnk -> C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Razer Inc.) -> -launch
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\App Recovery.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe (Electronic Arts) -> -recovery
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\ClockworkMod\Start ADB Server.lnk -> C:\Windows\Installer\{C0E08D8D-6076-4117-B644-2AF34F35B757}\_376EF0DA1723590BE67F63.exe () -> start-server
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Phillip Marco - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Razer\Desktop\PRIVAT\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Uninstall Zoom Workplace.lnk -> C:\Users\Razer\AppData\Roaming\Zoom\uninstall\Installer.exe (Zoom Communications, Inc.) -> /uninstall
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Dokumente.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Präsentationen.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Sheets.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Profil 2 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_djfkiamnhkodoajeogfnfojcmmhfpbhb\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\Backuptrans Android iPhone Viber Transfer + (x64) -Legacy ADB.lnk -> C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\androidiPhoneViberTransferPlus.exe (Backuptrans Studio) -> adb=adb-legacy/adb
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp://support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex\Razer Cortex on the Web.url -> URL: hxxps://www.razer.com/cortex
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon\Razer Axon on the Web.url -> URL: hxxps://www.razer.com/axon
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft\Absolute Uninstaller\Website.url -> URL: hxxp://www.glarysoft.com/absolute-uninstaller/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> URL: hxxp://www.ccleaner.com/ccleaner
InternetURL: C:\Users\Razer\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\Razer\Desktop\PRIVAT\EA SPORTS FC™ 25.url -> URL: steam://rungameid/2669320
InternetURL: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\EA SPORTS FC™ 24.url -> URL: steam://rungameid/2195250
InternetURL: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\STAR WARS Jedi Fallen Order™.url -> URL: steam://rungameid/1172380
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 7 - scaling\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 6 - monetization module\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 5 - growth module\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 4 - making and uploading videos\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 3 - how to set your channel up for success\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 2 - choosing a niche\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 1 - Overview of the blueprint\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\EA SPORTS FC™ 24.url -> URL: steam://rungameid/2195250
InternetURL: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\EA SPORTS FC™ 25.url -> URL: steam://rungameid/2669320
InternetURL: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\STAR WARS Jedi Fallen Order™.url -> URL: steam://rungameid/1172380
InternetURL: C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\Backuptrans Android iPhone Viber Transfer + (x64).url -> URL: hxxp://www.backuptrans.com/android-iphone-viber-transfer-plus.html
==================== Ende vom Shortcut.txt =============================
|
|
Gestern, 14:29
| #10 |
| /// TB-Ausbilder | Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös Servus, vielen Dank für die Rückmeldung. Wir führen jetzt eine Bereinigung mit FRST aus. Wenn es danach auch nicht besser ist, dann müssen wir zu radikalen Methoden greifen. Mehr dazu später. Entweder es handelt es sich um unerwünschte Einstellungen bzw. unerwünschte Software, die wir mit der folgenden Reparatur beheben können. Oder aber, eine deiner Erweiterungen ist dafür verantwortlich oder die Synchronisationsdaten sind mit PUP/Adware verseucht. Reparatur mit FRST HINWEIS AN ALLE MITLESER: Dieses FRST-Skript ist ausschließlich für diesen Nutzer gedacht und sollte niemals 1:1 für ein anderes System verwendet werden!
|
|
Gestern, 15:56
| #11 |
| | ok fix log gemacht ok hab ich gemacht, dann kam neustart und seitdem extra nichts weiter gemacht auser direkt hier ins forum zu gehen und zu posten. was ist der nächste step ? fixlog Code:
ATTFilter Entfernungsergebnis von Farbar Recovery Scan Tool (x64) Version: 09-05-2025
durchgeführt von Razer (15-05-2025 16:28:10) Run:1
Gestartet von C:\Users\Razer\Downloads
Geladene Profile: Razer
Start-Modus: Normal
==============================================
fixlist Inhalt:
*****************
Start::
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [] => [X]
AlternateDataStreams: C:\Users\Razer\Downloads\12 Module Herr Schulz 4.8kwp.pdf:shield [639]
AlternateDataStreams: C:\Users\Razer\Downloads\15 Module Herr Schulz 6kwp.pdf:shield [637]
AlternateDataStreams: C:\Users\Razer\Downloads\150er übersicht - Tabellenblatt1.pdf:shield [1388]
AlternateDataStreams: C:\Users\Razer\Downloads\20240716_57248_d2d_preisprognostizierer_v15.xlsx:shield [162]
AlternateDataStreams: C:\Users\Razer\Downloads\20240716_57248_selbstauskunft-pv-beratung.docx:shield [160]
AlternateDataStreams: C:\Users\Razer\Downloads\2wFBcMCDsPs.htm:shield [122]
AlternateDataStreams: C:\Users\Razer\Downloads\30 Tage Fokus Challenge 1.pdf:shield [114]
AlternateDataStreams: C:\Users\Razer\Downloads\Alles (1).pdf:shield [98]
AlternateDataStreams: C:\Users\Razer\Downloads\Alles.pdf:shield [94]
AlternateDataStreams: C:\Users\Razer\Downloads\AMPERE.IQ App_Anwenderdokumentation_v1.0_2023_10_09 (1).pdf:shield [144]
AlternateDataStreams: C:\Users\Razer\Downloads\AMPERE.IQ App_Anwenderdokumentation_v1.0_2023_10_09.pdf:shield [219]
AlternateDataStreams: C:\Users\Razer\Downloads\Anbieter variabler Stromtarife.pdf:shield [617]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Frau Tatjana Klindt (1).pdf:shield [122]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Herr Marc Windeggis 8kWp ybxx.pdf:shield [645]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Herr Marc Windeggis 8kWp.pdf:shield [649]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot Herr Nils Winkler 12,4kWp.pdf:shield [641]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot komplett Heinz Herentrey.pdf:shield [624]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot_AN-2407-164_Michael_Senger.pdf:shield [112]
AlternateDataStreams: C:\Users\Razer\Downloads\Angebot_Herr Klindt - 10kWp 12Li ASP und Garantien (2).pdf:shield [145]
AlternateDataStreams: C:\Users\Razer\Downloads\Aufmaß Mappe 2.0.pdf:shield [105]
AlternateDataStreams: C:\Users\Razer\Downloads\b protokoll Heinz Herentrey.pdf:shield [635]
AlternateDataStreams: C:\Users\Razer\Downloads\CamScanner 01.11.2023 21.37.pdf:shield [116]
AlternateDataStreams: C:\Users\Razer\Downloads\Carsten Neff AB.pdf:shield [101]
AlternateDataStreams: C:\Users\Razer\Downloads\Checkliste WP.pdf:shield [96]
AlternateDataStreams: C:\Users\Razer\Downloads\Datenblatt_AMPEREStoragePro_Rev04_Ansicht (1).pdf:shield [209]
AlternateDataStreams: C:\Users\Razer\Downloads\DB_Rechnung_271516002728.pdf:shield [108]
AlternateDataStreams: C:\Users\Razer\Downloads\DB_Ticket_180678620477.pdf:shield [106]
AlternateDataStreams: C:\Users\Razer\Downloads\DB_Ticket_271516002728.pdf:shield [106]
AlternateDataStreams: C:\Users\Razer\Downloads\Design ohne Titel.png:shield [596]
AlternateDataStreams: C:\Users\Razer\Downloads\EKD_Beratungsprotokoll_2022-10_Rev1.3_Formular (1).pdf:shield [218]
AlternateDataStreams: C:\Users\Razer\Downloads\f (1).txt:shield [220]
AlternateDataStreams: C:\Users\Razer\Downloads\f.txt:shield [214]
AlternateDataStreams: C:\Users\Razer\Downloads\floatingneumnster.pdf:shield [1257]
AlternateDataStreams: C:\Users\Razer\Downloads\Flurkarte Carsten Neff (1).pdf:shield [115]
AlternateDataStreams: C:\Users\Razer\Downloads\Flurkarte Carsten Neff.pdf:shield [111]
AlternateDataStreams: C:\Users\Razer\Downloads\Haussolar.jpg:shield [100]
AlternateDataStreams: C:\Users\Razer\Downloads\img-2741_CygCP609.mp4:shield [185]
AlternateDataStreams: C:\Users\Razer\Downloads\IMG_2741.MOV:shield [279]
AlternateDataStreams: C:\Users\Razer\Downloads\IMG_7248.JPG:shield [594]
AlternateDataStreams: C:\Users\Razer\Downloads\just-do-it-and-polygon-nike-d53rzijay4tc4chh.jpg:shield [131]
AlternateDataStreams: C:\Users\Razer\Downloads\Kunde zahlt bar.pdf:shield [104]
AlternateDataStreams: C:\Users\Razer\Downloads\Neuer Preislisten X - FARBE.pdf:shield [1344]
AlternateDataStreams: C:\Users\Razer\Downloads\Neuer Preislisten X BLANKO.pdf:shield [1348]
AlternateDataStreams: C:\Users\Razer\Downloads\Protokoll Anmeldung Vollmachten (1).pdf:shield [124]
AlternateDataStreams: C:\Users\Razer\Downloads\Protokoll Anmeldung Vollmachten komplett.pdf:shield [124]
AlternateDataStreams: C:\Users\Razer\Downloads\PV Angebot Frau Tatjana Klindt.pdf:shield [643]
AlternateDataStreams: C:\Users\Razer\Downloads\Speicherpapier.pdf:shield [130]
AlternateDataStreams: C:\Users\Razer\Downloads\stratton-oakmont-training-1pdf_compress.pdf:shield [156]
AlternateDataStreams: C:\Users\Razer\Downloads\STRATTON_pdf 3.0.pdf:shield [627]
AlternateDataStreams: C:\Users\Razer\Downloads\Studio Psyk 2023-11-11_213115.pdf:shield [118]
AlternateDataStreams: C:\Users\Razer\Downloads\Thomas_Uplegger_14,5kW.pdf:shield [653]
AlternateDataStreams: C:\Users\Razer\Downloads\Visitenkarte back.psd:shield [190]
AlternateDataStreams: C:\Users\Razer\Downloads\Visitenkarte front.psd:shield [191]
AlternateDataStreams: C:\Users\Razer\Downloads\wait but why - Tabellenblatt1.pdf:shield [1329]
AlternateDataStreams: C:\Users\Razer\Downloads\WhatsApp Image 2023-10-31 at 20.28.37.jpeg:shield [127]
AlternateDataStreams: C:\Users\Razer\Downloads\WhatsApp Image 2023-12-10 at 13.18.19.jpeg:shield [127]
AlternateDataStreams: C:\Users\Razer\Downloads\Widerruf Belehrung Heinz Herentrey.pdf:shield [648]
AlternateDataStreams: C:\Users\Razer\Downloads\Widerruf Belehrung Neff komplett.pdf:shield [640]
AlternateDataStreams: C:\Users\Razer\Downloads\_Gutschein_4801724.pdf:shield [108]
ShortcutWithArgument: C:\Users\Razer\Desktop\PRIVAT\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_djfkiamnhkodoajeogfnfojcmmhfpbhb\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=djfkiamnhkodoajeogfnfojcmmhfpbhb
C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_djfkiamnhkodoajeogfnfojcmmhfpbhb
CMD: cscript /nologo %systemroot%\System32\slmgr.vbs /dlv
CMD: netsh winsock reset
CMD: netsh advfirewall reset
CMD: netsh advfirewall set allprofiles state ON
CMD: netsh winhttp reset proxy
CMD: Bitsadmin /Reset /Allusers
CMD: Winmgmt /salvagerepository
CMD: Winmgmt /verifyrepository
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
CMD: "%WINDIR%\SYSTEM32\lodctr.exe" /R
CMD: "%WINDIR%\SysWOW64\lodctr.exe" /R
Hosts:
RemoveProxy:
EmptyTemp:
End::
*****************
Wiederherstellungspunkt wurde erfolgreich erstellt.
Prozesse erfolgreich geschlossen.
"HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\" => erfolgreich entfernt
C:\Users\Razer\Downloads\12 Module Herr Schulz 4.8kwp.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\15 Module Herr Schulz 6kwp.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\150er übersicht - Tabellenblatt1.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\20240716_57248_d2d_preisprognostizierer_v15.xlsx => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\20240716_57248_selbstauskunft-pv-beratung.docx => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\2wFBcMCDsPs.htm => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\30 Tage Fokus Challenge 1.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Alles (1).pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Alles.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\AMPERE.IQ App_Anwenderdokumentation_v1.0_2023_10_09 (1).pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\AMPERE.IQ App_Anwenderdokumentation_v1.0_2023_10_09.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Anbieter variabler Stromtarife.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Angebot Frau Tatjana Klindt (1).pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Angebot Herr Marc Windeggis 8kWp ybxx.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Angebot Herr Marc Windeggis 8kWp.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Angebot Herr Nils Winkler 12,4kWp.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Angebot komplett Heinz Herentrey.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Angebot_AN-2407-164_Michael_Senger.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Angebot_Herr Klindt - 10kWp 12Li ASP und Garantien (2).pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Aufmaß Mappe 2.0.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\b protokoll Heinz Herentrey.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\CamScanner 01.11.2023 21.37.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Carsten Neff AB.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Checkliste WP.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Datenblatt_AMPEREStoragePro_Rev04_Ansicht (1).pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\DB_Rechnung_271516002728.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\DB_Ticket_180678620477.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\DB_Ticket_271516002728.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Design ohne Titel.png => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\EKD_Beratungsprotokoll_2022-10_Rev1.3_Formular (1).pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\f (1).txt => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\f.txt => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\floatingneumnster.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Flurkarte Carsten Neff (1).pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Flurkarte Carsten Neff.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Haussolar.jpg => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\img-2741_CygCP609.mp4 => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\IMG_2741.MOV => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\IMG_7248.JPG => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\just-do-it-and-polygon-nike-d53rzijay4tc4chh.jpg => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Kunde zahlt bar.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Neuer Preislisten X - FARBE.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Neuer Preislisten X BLANKO.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Protokoll Anmeldung Vollmachten (1).pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Protokoll Anmeldung Vollmachten komplett.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\PV Angebot Frau Tatjana Klindt.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Speicherpapier.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\stratton-oakmont-training-1pdf_compress.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\STRATTON_pdf 3.0.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Studio Psyk 2023-11-11_213115.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Thomas_Uplegger_14,5kW.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Visitenkarte back.psd => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Visitenkarte front.psd => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\wait but why - Tabellenblatt1.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\WhatsApp Image 2023-10-31 at 20.28.37.jpeg => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\WhatsApp Image 2023-12-10 at 13.18.19.jpeg => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Widerruf Belehrung Heinz Herentrey.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\Widerruf Belehrung Neff komplett.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Downloads\_Gutschein_4801724.pdf => ":shield" ADS erfolgreich entfernt
C:\Users\Razer\Desktop\PRIVAT\Do this to get fit.lnk => Verknüpfung Eigenschaft erfolgreich entfernt
C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_djfkiamnhkodoajeogfnfojcmmhfpbhb\Do this to get fit.lnk => Verknüpfung Eigenschaft erfolgreich entfernt
C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Do this to get fit.lnk => Verknüpfung Eigenschaft erfolgreich entfernt
C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Do this to get fit.lnk => Verknüpfung Eigenschaft erfolgreich entfernt
"C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_djfkiamnhkodoajeogfnfojcmmhfpbhb" Ordner verschieben:
C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Web Applications\_crx_djfkiamnhkodoajeogfnfojcmmhfpbhb => erfolgreich verschoben
========= cscript /nologo %systemroot%\System32\slmgr.vbs /dlv =========
Softwarelizenzierungsdienst-Version: 10.0.19041.5848
Name: Windows(R), Core edition
Beschreibung: Windows(R) Operating System, OEM_DM channel
Aktivierungs-ID: 8db63db6-4f8f-46d6-a448-66444faaaa72
Anwendungs-ID: 55c92734-d682-4d71-983e-d6ec3f16059f
Erweiterte PID: 03612-03259-651-231790-02-1031-19045.0000-2682023
Product Key-Kanal: OEM:DM
Installations-ID: 175478201530818344200300324521810241459791774712217843119241840
Lizenz-URL verwenden: https://activation-v2.sls.microsoft.com/SLActivateProduct/SLActivateProduct.asmx?configextension=DM
URL fr die šberprfung: https://validation-v2.sls.microsoft.com/SLWGA/slwga.asmx
Teil-Product Key: DJ3DR
Lizenzstatus: Lizenziert
Verbleibende Windows Rearm-Anzahl: 1001
Verbleibende SKU Rearm-Anzahl: 1001
Vertrauenswrdige Zeit: 15.05.2025 16:28:26
========= Ende von CMD: =========
========= netsh winsock reset =========
Der Winsock-Katalog wurde zurckgesetzt.
Sie mssen den Computer neu starten, um den Vorgang abzuschlieáen.
========= Ende von CMD: =========
========= netsh advfirewall reset =========
OK.
========= Ende von CMD: =========
========= netsh advfirewall set allprofiles state ON =========
OK.
========= Ende von CMD: =========
========= netsh winhttp reset proxy =========
Aktuelle WinHTTP-Proxyeinstellungen:
DirectAccess (kein Proxyserver).
========= Ende von CMD: =========
========= Bitsadmin /Reset /Allusers =========
BITSADMIN version 3.0
BITS administration utility.
(C) Copyright Microsoft Corp.
0 out of 0 jobs canceled.
========= Ende von CMD: =========
========= Winmgmt /salvagerepository =========
Das WMI-Repository ist konsistent.
========= Ende von CMD: =========
========= Winmgmt /verifyrepository =========
Das WMI-Repository ist konsistent.
========= Ende von CMD: =========
========= "%WINDIR%\SYSTEM32\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
========= "%WINDIR%\SysWOW64\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
========= "%WINDIR%\SYSTEM32\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
========= "%WINDIR%\SysWOW64\lodctr.exe" /R =========
Info: Die Leistungsindikatoreinstellung konnte erfolgreich aus dem Systemsicherungsspeicher neu erstellt werden.
========= Ende von CMD: =========
C:\Windows\System32\Drivers\etc\hosts => erfolgreich verschoben
Hosts erfolgreich wiederhergestellt.
========= RemoveProxy: =========
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
"HKU\S-1-5-21-3644930430-3491832035-840970103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\DefaultConnectionSettings" => erfolgreich entfernt
"HKU\S-1-5-21-3644930430-3491832035-840970103-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\Connections\\SavedLegacySettings" => erfolgreich entfernt
========= Ende von RemoveProxy: =========
=========== EmptyTemp: ==========
FlushDNS => abgeschlossen
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 20230375 B
Java, Discord, Steam htmlcache, WinHttpAutoProxySvc/winhttp *.cache => 52678188 B
Windows/system/drivers => 7713484 B
Edge => 0 B
Chrome => 685321104 B
Brave => 474613562 B
Firefox => 0 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 699 B
systemprofile32 => 2842921 B
LocalService => 2842921 B
NetworkService => 2845253 B
Razer => 18011960 B
RecycleBin => 20432941 B
EmptyTemp: => 1.2 GB temporäre Dateien entfernt.
================================
Das System musste neu gestartet werden.
==== Ende von Fixlog 16:30:26 ====
|
|
Gestern, 18:21
| #12 |
| /// TB-Ausbilder | Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös Gut gemacht. Bitte berichte, ob immer noch customsearch.webshoppers.co bei der Suche in Chrome angezeigt wird. Zudem bitte eine Kontrollsuchlauf mit FRST:
|
|
Gestern, 22:18
| #13 |
| | problem gelöst Wow, wie genial ist das denn bitte?! Soweit ich es beurteilen kann, ist das Problem komplett behoben. Ich hatte sogar vorher noch Fehler in Google Drive bemerkt – bei Google Docs haben bestimmte Funktionen einfach nicht richtig funktioniert. Aber jetzt scheint alles wieder normal zu laufen – vielleicht sogar besser als zuvor. Ich weiß ehrlich gesagt gar nicht, was ich sagen soll, außer: Tausend Dank, Matthias!  Dein Support war wirklich klasse – super hilfreich und absolut professionell. Wenn ich hier eine Bewertung abgeben könnte, wären es ganz klar 5 Sterne! Anbei findest du noch die Log-Dateien. FRST Code:
ATTFilter Untersuchungsergebnis von Farbar Recovery Scan Tool (FRST) (x64) Version: 15-05-2025
durchgeführt von Razer (Administrator) auf DESKTOP-HQE06JL (Razer Blade Pro) (15-05-2025 23:01:26)
Gestartet von C:\Users\Razer\Downloads\FRST64.exe
Geladene Profile: Razer
Plattform: Microsoft Windows 10 Home Version 22H2 19045.5854 (X64) Sprache: Deutsch (Deutschland)
Standard-Browser: Chrome
Start-Modus: Normal
==================== Prozesse (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Prozess geschlossen. Die Datei wird nicht verschoben.)
(24803D75-212C-471A-BC57-9EF86AB91435 -> ) C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm\WhatsApp.exe
(Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe
(C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe ->) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler.exe
(C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe ->) (Brave Software, Inc. -> BraveSoftware Inc.) C:\Program Files (x86)\BraveSoftware\Update\1.3.361.151\BraveCrashHandler64.exe
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe ->) (Razer USA Ltd. -> The CefSharp Authors) C:\Program Files (x86)\Razer\Razer Services\Razer Central\CefSharp.BrowserSubprocess.exe <5>
(C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\Razer Central.exe
(C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe ->) (Razer USA Ltd. -> ) C:\Program Files (x86)\Razer\Synapse3\UserProcess\Razer Synapse Service Process.exe
(C:\Program Files\Bitdefender Agent\ProductAgentService.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\27.1.1.12\DiscoverySrv.exe
(C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA Overlay.exe <5>
(C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA App\ShadowPlay\nvsphelper64.exe
(C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe <3>
(C:\Users\Razer\AppData\Roaming\Zoom\bin\Zoom.exe ->) (Zoom Video Communications, Inc. -> Zoom Communications, Inc.) C:\Users\Razer\AppData\Roaming\Zoom\bin\zWebview2Agent.exe
(C:\Users\Razer\AppData\Roaming\Zoom\bin\zWebview2Agent.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files (x86)\Microsoft\EdgeWebView\Application\136.0.3240.64\msedgewebview2.exe <16>
(drivers\RivetNetworks\Killer\xTendUtilityService.exe ->) (Rivet Networks LLC -> Rivet Networks LLC) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtility.exe
(DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxCUIService.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxEM.exe
(explorer.exe ->) (F.lux Software LLC -> f.lux Software LLC) C:\Users\Razer\AppData\Local\FluxSoftware\Flux\flux.exe
(explorer.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(explorer.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe
(explorer.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
(services.exe ->) (Bitdefender SRL -> Bitdefender) C:\Program Files\Bitdefender Agent\redline\bdredline.exe
(services.exe ->) (FOXIT SOFTWARE INC. -> Foxit Software Inc.) C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe
(services.exe ->) (Geek Software GmbH -> geek software GmbH) C:\Program Files\PDF24\pdf24.exe <2>
(services.exe ->) (Huawei Technologies Co., Ltd. -> ) [Datei ist nicht signiert] C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\dal.inf_amd64_af50fdb80983f7bc\jhi_service.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxCUIService.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\IntelCpHDCPSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\IntelCpHeciSvc.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\lms.inf_amd64_a55aa2cd52a3429d\LMS.exe
(services.exe ->) (Intel Corporation -> Intel Corporation) C:\Windows\System32\DriverStore\FileRepository\mewmiprov.inf_amd64_d51901c26227fb29\WMIRegistrationService.exe
(services.exe ->) (Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(services.exe ->) (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) C:\Windows\System32\drivers\AdminService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe
(services.exe ->) (Microsoft Windows Publisher -> Microsoft Corporation) C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe
(services.exe ->) (nordvpn s.a. -> nordvpn S.A.) C:\Program Files\NordVPN\nordvpn-service.exe
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe <4>
(services.exe ->) (NVIDIA Corporation -> NVIDIA Corporation) C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\Display.NvContainer\NVDisplay.Container.exe <2>
(services.exe ->) (Qualcomm Atheros, Inc. -> ) C:\Windows\System32\drivers\QcomWlanSrvx64.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc) C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe
(services.exe ->) (Razer USA Ltd. -> Razer Inc.) C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe
(services.exe ->) (Realtek Semiconductor Corp. -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(services.exe ->) (Rivet Networks LLC -> CloudBees, Inc.) C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe
(services.exe ->) (Rivet Networks LLC -> Rivet Networks) C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe
(sihost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_11.2502.2.0_x64__8wekyb3d8bbwe\CalculatorApp.exe
(svchost.exe ->) (Adobe Inc. -> Adobe Inc.) C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc\AdobeNotificationClient.exe
(svchost.exe ->) (Adobe Systems Incorporated -> ) C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r\AcrobatNotificationClient.exe
(svchost.exe ->) (Microsoft Corporation -> Microsoft Corporation) C:\Users\Razer\AppData\Local\Microsoft\OneDrive\25.065.0406.0002\FileCoAuth.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\DataExchangeHost.exe
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe <2>
(svchost.exe ->) (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Zoom Video Communications, Inc. -> Zoom Communications, Inc.) C:\Users\Razer\AppData\Roaming\Zoom\bin\Zoom.exe <3>
==================== Registry (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Registryeintrag auf den Standardwert zurückgesetzt oder entfernt. Die Datei wird nicht verschoben.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [18392048 2017-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1502704 2017-11-12] (Realtek Semiconductor Corp. -> Realtek Semiconductor)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [509936 2018-04-10] (Adobe Systems Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [PDF24] => C:\Program Files\PDF24\pdf24.exe [654048 2025-04-28] (Geek Software GmbH -> geek software GmbH)
HKLM-x32\...\Run: [Razer Synapse] => C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe [599056 2021-10-28] (Razer USA Ltd. -> Razer Inc.) [Datei ist nicht signiert]
HKLM-x32\...\Run: [RazerCortex] => C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe [543368 2025-03-13] (Razer USA Ltd. -> Razer Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [1131488 2024-01-04] (Adobe Inc. -> Adobe Inc.)
HKLM-x32\...\Run: [Adobe CCXProcess] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud Experience\CCXProcess.exe [129288 2024-01-04] (Adobe Inc. -> )
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3599496 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [EADM] => C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe [3819104 2025-05-07] (Electronic Arts, Inc. -> Electronic Arts)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Run: [f.lux] => C:\Users\Razer\AppData\Local\FluxSoftware\Flux\flux.exe [1528952 2024-02-21] (F.lux Software LLC -> f.lux Software LLC)
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {8ac3498c-fe3c-11ee-b305-8c885b4408ae} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {fe1c403f-9d73-11ee-b2f8-90203a1a03c3} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\MountPoints2: {fe1c40b7-9d73-11ee-b2f8-90203a1a03c3} - "E:\HiSuiteDownLoader.exe"
HKU\S-1-5-18\...\Run: [Synapse3] => C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe [3599496 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
HKLM\...\Print\Monitors\Adobe PDF Port Monitor: C:\Windows\system32\AdobePDF.dll [203936 2023-12-08] (Adobe Inc. -> Adobe Systems Inc)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\136.0.7103.114\Installer\chrmstp.exe [2025-05-15] (Google LLC -> Google LLC)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{AFE6A462-C574-4B8A-AF43-4CC60DF4563B}] -> C:\Program Files\BraveSoftware\Brave-Browser\Application\136.1.78.102\Installer\chrmstp.exe [2025-05-15] (Brave Software, Inc. -> Brave Software, Inc.)
==================== Geplante Aufgaben (Nicht auf der Ausnahmeliste) =================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
Task: {07809AE6-8619-48A1-A235-D392BB8D319B} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\27.1.1.12\WatchDog.exe [1156400 2025-03-25] (Bitdefender SRL -> Bitdefender) -> C:\Program Files\Bitdefender Agent\27.1.1.12\repair
Task: {8F846C84-95A5-4758-BD5A-62F54144275C} - System32\Tasks\CreateExplorerShellUnelevatedTask => C:\Windows\explorer.exe [5960488 2025-05-14] (Microsoft Windows -> Microsoft Corporation)
Task: {D3DD2C93-D3B1-49B3-9D81-682AAEA95CA4} - System32\Tasks\EOSv3 Scheduler onLogOn => C:\Users\Razer\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15205744 2025-05-14] (ESET, spol. s r.o. -> ESET)
Task: {EA56A1D3-05D2-4739-82FC-8D7384FE8022} - System32\Tasks\EOSv3 Scheduler onTime => C:\Users\Razer\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe [15205744 2025-05-14] (ESET, spol. s r.o. -> ESET)
Task: {26A111F6-A64A-40C7-B20D-4106F35E3416} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {86684041-FEB2-4712-873A-2FC67BA26860} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {9F041E7B-ECF7-499B-A090-4969DF2C0978} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {7B4F1AB8-9831-4774-A1E8-C47E9B2774D1} - System32\Tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification => C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpCmdRun.exe [1745176 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
Task: {8ECEC16F-B61E-4834-9A1D-F39FD23747DA} - System32\Tasks\ZoomUpdateTaskUser-S-1-5-21-3644930430-3491832035-840970103-1001 => C:\Users\Razer\AppData\Roaming\Zoom\bin\Zoom.exe [441144 2025-05-12] (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Aufgabe verschoben. Die Datei, die durch die Aufgabe gestartet wird, wird nicht verschoben.)
==================== Internet (Nicht auf der Ausnahmeliste) ====================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird der Eintrag entfernt oder auf den Standardwert zurückgesetzt, wenn es sich um einen Registryeintrag handelt.)
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}: [DhcpDomain] fritz.box
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}\45E47424F48523135383232323: [DhcpNameServer] 192.168.178.1
Tcpip\..\Interfaces\{ac7b2b3c-b577-4fad-964e-35baa9334803}\45E47424F48523135383232323: [DhcpDomain] fritz.box
Edge:
=======
Edge DefaultProfile: Default
Edge Profile: C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default [2025-05-12]
Edge DefaultSearchURL: Default -> {bing:baseURL}search?q={searchTerms}&{bing:cvid}{bing:msb}{google:assistedQueryStats}
Edge Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-05-12]
Edge Extension: (Edge relevant text changes) - C:\Users\Razer\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\jmjflgjpcpepeafmmgdpfkogkghcpiha [2024-01-24]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Extension: (Adobe Acrobat) - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi [2021-02-01]
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension.17@acrobat.adobe.com] - C:\Program Files\Adobe\Acrobat DC\Acrobat\Browser\WCFirefoxExtn\WebExtn\signed_extn\adobe_acrobat-1.0-windows.xpi
FF Plugin: @videolan.org/vlc,version=3.0.18 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.20 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.21 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2024-06-08] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Air\nppdf32.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Inc.)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2024-01-04] (Adobe Inc. -> Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.cpdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\plugins\npFoxitPDFReaderPlugin.dll [2025-03-27] (FOXIT SOFTWARE INC. -> Foxit Corporation)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2024-01-04] (Adobe Inc. -> Adobe Systems)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default [2025-05-15]
CHR HomePage: Default -> hxxp://www.google.de/
CHR StartupUrls: Default -> "hxxps://www.google.de/"
CHR Extension: (OneTab) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2024-06-12]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-05-13]
CHR Extension: (Dark Reader) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2025-05-12]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2025-05-02]
CHR Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2025-04-26]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-05-09]
CHR Extension: (QuillBot: AI Writing and Grammar Checker Tool) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\iidnbdjijdkbmajdffnidomddglmieko [2025-05-14]
CHR Extension: (GPT Workspace) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\jgocjgkdladclacgmkkiklmdcmngjcba [2025-05-12]
CHR Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2025-05-13]
CHR Extension: (Bearly.ai) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\lkennebljmnnpimcgdjlocbncpamgipp [2024-01-06]
CHR Extension: (LinkOff - Filter and Customizer for LinkedIn™) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\maanaljajdhhnllllmhmiiboodmoffon [2024-12-24]
CHR Extension: (Shazam: Find song names from your browser) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2025-02-11]
CHR Extension: (Snap Color Picker) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nbpljhppefmpifoffhhmllmacfdckokh [2025-05-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2023-09-27]
CHR Extension: (SiteBlock) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2025-04-01]
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2 [2025-05-15]
CHR Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2024-08-18]
CHR Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2024-08-18]
CHR Extension: (Google Docs Offline) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2024-08-18]
CHR Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2024-08-18]
CHR Extension: (OneTab Plus:Tab Manage & Productivity) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\lepdjbhbkpfenckechpdfohdmkhogojf [2024-02-09]
CHR Extension: (Chrome Web Store-Zahlungen) - C:\Users\Razer\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2024-02-05]
CHR Profile: C:\Users\Razer\AppData\Local\Google\Chrome\User Data\System Profile [2025-05-15]
CHR HKU\S-1-5-21-3644930430-3491832035-840970103-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj]
CHR HKLM-x32\...\Chrome\Extension: [fjoaledfpmneenckfbpdfhkmimnjocfa]
Brave:
=======
BRA Profile: C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default [2025-05-15]
BRA Extension: (OneTab) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\chphlpgkkbolifaimnlloiipkdnihall [2024-11-11]
BRA Extension: (Adobe Acrobat: PDF edit, convert, sign tools) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2025-05-13]
BRA Extension: (BlockSite: Block Websites & Stay Focused) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eiimnmioipafcokbfikbljfdeojpcgbh [2025-05-05]
BRA Extension: (Feed Blocker for Professionals) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eikaafmldiioljlilngpogcepiedpenf [2025-04-30]
BRA Extension: (Dark Reader) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\eimadpbcbfnmbkopoojfekhnkhdbieeh [2025-05-12]
BRA Extension: (NordVPN - VPN proxy for privacy and security) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\fjoaledfpmneenckfbpdfhkmimnjocfa [2025-04-30]
BRA Extension: (AdBlock − blockieren Sie Werbung im Internet) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2025-05-02]
BRA Extension: (QuillBot: AI Writing and Grammar Checker Tool) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\iidnbdjijdkbmajdffnidomddglmieko [2025-05-14]
BRA Extension: (GPT Workspace) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\jgocjgkdladclacgmkkiklmdcmngjcba [2025-05-12]
BRA Extension: (OneTab Plus:Tab Manage & Productivity) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\lepdjbhbkpfenckechpdfohdmkhogojf [2024-11-11]
BRA Extension: (Loom – Screen Recorder & Screen Capture) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\liecbddmkiiihnedobmlmillhodjkdmb [2025-05-15]
BRA Extension: (LinkOff - Filter and Customizer for LinkedIn™) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\maanaljajdhhnllllmhmiiboodmoffon [2024-12-24]
BRA Extension: (Shazam: Find song names from your browser) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\mmioliijnhnoblpgimnlajmefafdfilb [2025-02-11]
BRA Extension: (Snap Color Picker) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\nbpljhppefmpifoffhhmllmacfdckokh [2025-05-05]
BRA Extension: (SiteBlock) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\Default\Extensions\pfglnpdpgmecffbejlfgpnebopinlclj [2025-04-01]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block First Party Filters (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\adcocjohghhfpidemphmcmlmhnfgikei [2025-05-15]
BRA Extension: (Brave Local Data Files Updater) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\afalakplffnnnlkncjhbmahjfjhmlkal [2025-05-15]
BRA Extension: (Brave NTP background images) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\aoojcmojmmcbpfgoecoadbdpnagfchel [2025-04-25]
BRA Extension: (Brave Ad Block Updater (Fanboy's Mobile Notifications (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\bfpgedeaaibpoidldhjcknekahbikncb [2025-05-15]
BRA Extension: (Brave Ad Block Updater (EasyList Cookie (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\cdbbhgbmjhfnhnmgeddbliobbofkgdhe [2025-05-15]
BRA Extension: (Brave Tor Client Updater (Windows)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\cpoalefficncklhjfpglfiplenlpccdb [2025-05-05]
BRA Extension: (Brave Ad Block Updater (Regional Catalog)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\gkboaolpopklhgplhaaiboijnklogmbc [2025-05-14]
BRA Extension: (Brave NTP Super Referrer mapping table) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\heplpbhjcbmiibdlchlanmdenffpiibo [2024-11-11]
BRA Extension: (Brave Ad Block Updater (Brave Ad Block Updater (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\iodkpdagapdfkphljnddpjlldadblomo [2025-05-15]
BRA Extension: (Brave Ads Resources) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\jcncoheihebhhiemmbmpfhkceomfipbj [2025-03-25]
BRA Extension: (Brave Ad Block Updater (EasyList Germany (plaintext))) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\lfmefmifdjlfneapckmpkinmlofjehbp [2025-05-15]
BRA Extension: (Brave Ad Block Updater (Resources)) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\mfddibmblmbccpadfndgakiopmmhebop [2025-03-25]
BRA Extension: (Brave NTP sponsored images) - C:\Users\Razer\AppData\Local\BraveSoftware\Brave-Browser\User Data\obbokncgfcbepeipkhpdepjjoncelefj [2025-05-15]
==================== Dienste (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S4 AdobeARMservice; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [174520 2025-03-21] (Adobe Inc. -> Adobe Inc.)
S4 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [944096 2024-01-04] (Adobe Inc. -> Adobe Inc.)
R2 bdredline_agent; C:\Program Files\Bitdefender Agent\redline\bdredline.exe [2577184 2023-07-20] (Bitdefender SRL -> Bitdefender)
S2 brave; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2024-11-11] (Brave Software, Inc. -> BraveSoftware Inc.)
S3 BraveElevationService; C:\Program Files\BraveSoftware\Brave-Browser\Application\136.1.78.102\elevation_service.exe [3157520 2025-05-15] (Brave Software, Inc. -> Brave Software, Inc.)
S3 bravem; C:\Program Files (x86)\BraveSoftware\Update\BraveUpdate.exe [167440 2024-11-11] (Brave Software, Inc. -> BraveSoftware Inc.)
R2 CortexLauncherService; C:\Program Files (x86)\Razer\Razer Cortex\CortexLauncherService.exe [711304 2025-03-13] (Razer USA Ltd. -> Razer Inc.)
S3 EAAntiCheatService; C:\Program Files\EA\AC\eaanticheat.gameservice.exe [107164352 2025-04-18] (Electronic Arts, Inc. -> Electronic Arts)
S4 EABackgroundService; C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EABackgroundService.exe [18763872 2025-05-07] (Electronic Arts, Inc. -> Electronic Arts)
R2 FoxitReaderUpdateService; C:\Program Files (x86)\Common Files\Foxit\Foxit PDF Reader\FoxitPDFReaderUpdateService.exe [2500072 2025-03-26] (FOXIT SOFTWARE INC. -> Foxit Software Inc.)
R2 HuaweiHiSuiteService64.exe; C:\Program Files (x86)\HiSuite\HandSetService\HuaweiHiSuiteService64.exe [236864 2023-10-26] (Huawei Technologies Co., Ltd. -> ) [Datei ist nicht signiert]
R2 Killer Network Service; C:\Windows\System32\drivers\RivetNetworks\Killer\KillerNetworkService.exe [2484992 2018-09-04] (Rivet Networks LLC -> Rivet Networks)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [9406208 2025-05-04] (Malwarebytes Inc -> Malwarebytes)
S3 MBVpnTunnelService; C:\Program Files\Malwarebytes\Anti-Malware\MBVpnTunnelService.exe [2788304 2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
R2 MDCoreSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MpDefenderCoreService.exe [2009608 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S3 nordsec-threatprotection-service; C:\Program Files\NordVPN\NordSec ThreatProtection\nordsec-threatprotection-service.exe [320088 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
S4 NordUpdaterService; C:\Program Files\NordUpdater\NordUpdateService.exe [297848 2023-08-09] (nordvpn s.a. -> nordvpn S.A.)
R2 nordvpn-service; C:\Program Files\NordVPN\nordvpn-service.exe [263256 2023-09-25] (nordvpn s.a. -> nordvpn S.A.)
R2 NVDisplay.ContainerLocalSystem; C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\Display.NvContainer\NVDisplay.Container.exe [1275560 2025-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PDF24; C:\Program Files\PDF24\pdf24.exe [654048 2025-04-28] (Geek Software GmbH -> geek software GmbH)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [755008 2025-03-25] (Bitdefender SRL -> Bitdefender)
R2 QcomWlanSrv; C:\Windows\System32\drivers\QcomWlanSrvx64.exe [189768 2022-11-09] (Qualcomm Atheros, Inc. -> )
R2 Razer Chroma SDK Server; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKServer.exe [447080 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Chroma SDK Service; C:\Program Files (x86)\Razer Chroma SDK\bin\RzSDKService.exe [943240 2019-07-24] (Razer USA Ltd. -> Razer Inc.)
R2 Razer Game Manager Service; C:\Program Files (x86)\Razer\Razer Services\GMS\GameManagerService.exe [256256 2024-10-15] (Razer USA Ltd. -> Razer Inc)
R2 Razer Game Manager Service 3; C:\Program Files (x86)\Razer\Razer Services\GMS3\GameManagerService3.exe [364800 2024-12-12] (Razer USA Ltd. -> Razer Inc)
R2 Razer Synapse Service; C:\Program Files (x86)\Razer\Synapse3\Service\Razer Synapse Service.exe [300168 2025-03-11] (Razer USA Ltd. -> Razer Inc.)
R2 RzActionSvc; C:\Program Files (x86)\Razer\Razer Services\Razer Central\RazerCentralService.exe [513672 2025-03-06] (Razer USA Ltd. -> Razer Inc.)
R3 WdNisSvc; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\NisSrv.exe [4538400 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
R2 WinDefend; C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.25030.2-0\MsMpEng.exe [278320 2025-04-15] (Microsoft Windows Publisher -> Microsoft Corporation)
S2 xTendSoftAPService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendSoftAPService.exe [72952 2018-09-04] (Rivet Networks LLC -> CloudBees, Inc.)
R2 xTendUtilityService; C:\Windows\System32\drivers\RivetNetworks\Killer\xTendUtilityService.exe [72952 2018-09-04] (Rivet Networks LLC -> CloudBees, Inc.)
S2 GoogleUpdaterInternalService134.0.6947.0; "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe" --system --windows-service --service=update-internal [X]
S2 GoogleUpdaterService134.0.6947.0; "C:\Program Files (x86)\Google\GoogleUpdater\134.0.6947.0\updater.exe" --system --windows-service --service=update [X]
===================== Treiber (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
S3 ew_usbccgpfilter; C:\Windows\System32\drivers\ew_usbccgpfilter.sys [18944 2023-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 glidetpd; C:\Windows\System32\drivers\glidetpd.sys [32248 2017-09-01] (Microsoft Windows Hardware Compatibility Publisher -> Cirque Corporation)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2023-10-26] (Microsoft Windows Hardware Compatibility Publisher -> Huawei Technologies Co., Ltd.)
R3 iaLPSS2_GPIO2; C:\Windows\System32\DriverStore\FileRepository\ialpss2_gpio2_skl.inf_amd64_2a35efc43f1a612e\iaLPSS2_GPIO2_ICL.sys [132872 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_I2C; C:\Windows\System32\DriverStore\FileRepository\ialpss2_i2c_skl.inf_amd64_363c7132639e12a6\iaLPSS2_I2C_ICL.sys [200456 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 iaLPSS2_UART2; C:\Windows\System32\DriverStore\FileRepository\ialpss2_uart2_skl.inf_amd64_a59239db7de9954f\iaLPSS2_UART2_ICL.sys [312600 2020-04-27] (Intel Corporation -> Intel Corporation)
R3 KfeCoSvc; C:\Windows\System32\drivers\RivetNetworks\Killer\KfeCo10X64.sys [154752 2018-09-04] (Rivet Networks LLC -> Rivet Networks, LLC.)
R3 KslD; C:\Windows\System32\drivers\wd\KslD.sys [331168 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R2 mbamchameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [234072 2025-05-15] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
S0 MbamElam; C:\Windows\System32\DRIVERS\MbamElam.sys [22120 2025-03-10] (Microsoft Windows Early Launch Anti-Malware Publisher -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [239568 2024-12-22] (Microsoft Windows Hardware Compatibility Publisher -> Malwarebytes)
R2 NDivert; C:\Program Files\NordVPN\7.32.5.0\Drivers\NDivert.sys [131472 2024-10-31] (nordvpn s.a. -> Nordvpn S.A.)
R1 nordlwf; C:\Windows\system32\DRIVERS\nordlwf.sys [44928 2023-01-17] (nordvpn s.a. -> TEFINCOM S.A.)
R3 ovpn-dco; C:\Windows\System32\drivers\ovpn-dco.sys [91584 2024-06-05] (WDKTestCert lev,133391533294737317 -> OpenVPN, Inc)
R3 rzendpt; C:\Windows\System32\drivers\rzendpt.sys [52240 2017-07-19] (Razer USA Ltd. -> Razer Inc)
R3 tapnordvpn; C:\Windows\System32\drivers\tapnordvpn.sys [41120 2024-08-29] (Microsoft Windows Hardware Compatibility Publisher -> The OpenVPN Project)
S0 WdBoot; C:\Windows\System32\drivers\wd\WdBoot.sys [20016 2025-04-15] (Microsoft Windows Early Launch Anti-Malware Publisher -> Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\wd\WdFilter.sys [605576 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\drivers\wd\WdNisDrv.sys [100744 2025-04-15] (Microsoft Windows -> Microsoft Corporation)
R3 WireGuard; C:\Windows\System32\drivers\wireguard.sys [489368 2023-10-31] (Microsoft Windows Hardware Compatibility Publisher -> WireGuard LLC)
S3 cpuz158; \??\C:\Windows\temp\cpuz158\cpuz158_x64.sys [X] <==== ACHTUNG
S3 EAAntiCheat; system32\drivers\eaanticheat.sys [X]
S4 NvModuleTracker; \SystemRoot\System32\DriverStore\FileRepository\nvmoduletracker.inf_amd64_ea6cec41fc5b2a8b\NvModuleTracker.sys [X]
==================== NetSvcs (Nicht auf der Ausnahmeliste) ===================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
==================== Drei Monate (erstellte) (Nicht auf der Ausnahmeliste) =========
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-05-15 23:01 - 2025-05-15 23:01 - 000000000 ____D C:\Users\Razer\Downloads\FRST-OlderVersion
2025-05-15 22:58 - 2025-05-15 22:58 - 000228701 _____ C:\Users\Razer\Desktop\call 15.5.25 ek4u.pdf
2025-05-15 22:56 - 2025-05-15 22:56 - 000094458 _____ C:\Users\Razer\Desktop\870f3ff1-9fc3-4168-8b66-e164458a10a1_60757005-dda2-4b1c-852b-8f208ae9ea56.webp
2025-05-15 21:54 - 2025-05-15 21:55 - 000000000 ____D C:\Users\Razer\Desktop\audio spurcalls
2025-05-15 19:05 - 2025-05-15 21:03 - 000003854 _____ C:\Users\Razer\Desktop\15.5.25 call ek4u.txt
2025-05-15 19:00 - 2025-05-15 19:00 - 000004250 _____ C:\Windows\system32\Tasks\ZoomUpdateTaskUser-S-1-5-21-3644930430-3491832035-840970103-1001
2025-05-15 16:28 - 2025-05-15 17:01 - 000703004 _____ C:\Windows\system32\perfh007.dat
2025-05-15 16:28 - 2025-05-15 17:01 - 000141472 _____ C:\Windows\system32\perfc007.dat
2025-05-15 16:28 - 2025-05-15 16:30 - 000019015 _____ C:\Users\Razer\Downloads\Fixlog.txt
2025-05-15 16:24 - 2025-05-15 16:24 - 000092757 _____ C:\Users\Razer\Desktop\ADHD Supplemente für mehr Drive & Motivation.pdf
2025-05-15 14:55 - 2025-05-15 14:55 - 000033953 _____ C:\Users\Razer\Desktop\The Best Supplements That ACTUALLY Increase Motivation.pdf
2025-05-15 14:47 - 2025-05-15 14:47 - 027329288 _____ C:\Users\Razer\Desktop\The Best Supplements That ACTUALLY Increase Motivation.mp4
2025-05-15 14:33 - 2025-05-15 14:33 - 000067345 _____ C:\Users\Razer\Desktop\HDI schreiben beschwerde beitrags erhöhung.pdf
2025-05-14 22:33 - 2025-05-15 10:56 - 000049447 _____ C:\Users\Razer\Downloads\Shortcut.txt
2025-05-14 19:34 - 2025-05-14 19:35 - 000003858 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onLogOn
2025-05-14 19:34 - 2025-05-14 19:35 - 000003416 _____ C:\Windows\system32\Tasks\EOSv3 Scheduler onTime
2025-05-14 15:28 - 2025-05-14 15:28 - 008412528 _____ (ESET) C:\Users\Razer\Downloads\esetonlinescanner.exe
2025-05-14 15:28 - 2025-05-14 15:28 - 000001378 _____ C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk
2025-05-14 15:28 - 2025-05-14 15:28 - 000001272 _____ C:\Users\Razer\Desktop\ESET Online Scanner.lnk
2025-05-14 15:28 - 2025-05-14 15:28 - 000000000 ____D C:\Users\Razer\AppData\Local\ESET
2025-05-14 15:24 - 2025-05-15 11:27 - 000000000 ____D C:\Users\Razer\Desktop\Trojaner Board
2025-05-14 15:05 - 2025-05-14 15:05 - 000003832 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA{FFDA1FCE-E175-4012-9886-D40439977461}
2025-05-14 15:05 - 2025-05-14 15:05 - 000003708 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore{5449F9E1-20FF-4E5E-ABED-320B87307196}
2025-05-14 13:08 - 2025-05-14 13:09 - 000000000 ____D C:\Users\Razer\Desktop\skoda 2007 modell
2025-05-14 12:00 - 2025-05-14 19:44 - 000000000 ____D C:\KVRT2020_Data
2025-05-14 11:57 - 2025-05-14 11:57 - 114639720 _____ (AO Kaspersky Lab) C:\Users\Razer\Downloads\KVRT.exe
2025-05-14 11:30 - 2025-05-14 11:30 - 000022680 _____ C:\Windows\SysWOW64\IntegratedServicesRegionPolicySet.json
2025-05-14 11:29 - 2025-05-14 11:29 - 000022680 _____ C:\Windows\system32\IntegratedServicesRegionPolicySet.json
2025-05-14 11:24 - 2025-05-14 11:24 - 000000000 ___HD C:\$WinREAgent
2025-05-14 11:13 - 2025-05-14 11:13 - 000003588 _____ C:\Windows\system32\Tasks\OneDrive Reporting Task-S-1-5-21-3644930430-3491832035-840970103-1001
2025-05-13 21:34 - 2025-05-13 21:34 - 000010898 _____ C:\FMRS_2025_05_13__21_33_59.txt
2025-05-13 21:34 - 2025-05-13 21:34 - 000003656 _____ C:\Windows\system32\Tasks\CreateExplorerShellUnelevatedTask
2025-05-13 21:32 - 2025-05-13 21:32 - 001426275 _____ (<hxxps://furtivex.net>) C:\Users\Razer\Downloads\FMRS.exe
2025-05-13 19:22 - 2025-05-13 19:22 - 000000000 ____D C:\Users\Razer\AppData\Roaming\GlarySoft
2025-05-13 19:21 - 2025-05-13 19:21 - 008741128 _____ (Glarysoft Ltd) C:\Users\Razer\Downloads\ausetup.exe
2025-05-13 19:20 - 2025-05-13 19:22 - 000001324 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Absolute Uninstaller.lnk
2025-05-13 19:20 - 2025-05-13 19:22 - 000000000 ____D C:\Program Files (x86)\Glarysoft
2025-05-13 19:20 - 2025-05-13 19:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft
2025-05-13 19:00 - 2025-05-15 10:56 - 000047280 _____ C:\Users\Razer\Downloads\Addition.txt
2025-05-13 18:58 - 2025-05-15 23:02 - 000037702 _____ C:\Users\Razer\Downloads\FRST.txt
2025-05-13 18:57 - 2025-05-15 23:01 - 000000000 ____D C:\FRST
2025-05-13 18:55 - 2025-05-15 23:01 - 002405888 _____ (Farbar) C:\Users\Razer\Downloads\FRST64.exe
2025-05-13 17:03 - 2025-05-13 17:03 - 000048039 _____ C:\Users\Razer\Downloads\Unbenanntes Dokument (1).pdf
2025-05-13 16:59 - 2025-05-13 13:58 - 055994157 _____ C:\Users\Razer\Desktop\AQ A2 Großsysteme und Kaskaden Ausdruck 1.pdf
2025-05-12 21:13 - 2025-05-12 21:13 - 000000000 ____D C:\Users\Razer\AppData\LocalLow\Intel
2025-05-12 21:13 - 2025-05-12 21:13 - 000000000 ____D C:\ProgramData\Intel
2025-05-12 17:43 - 2025-05-12 17:43 - 000573811 _____ C:\Users\Razer\Desktop\an7En4q_460svav1.mp4
2025-05-12 16:55 - 2025-05-12 16:55 - 000001023 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Launcher.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001016 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Toolbox.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001011 _____ C:\Users\Public\Desktop\PDF24 Launcher.lnk
2025-05-12 16:55 - 2025-05-12 16:55 - 000001004 _____ C:\Users\Public\Desktop\PDF24 Toolbox.lnk
2025-05-12 16:54 - 2025-05-12 16:54 - 000001481 _____ C:\Users\Public\Desktop\Foxit PDF Reader.lnk
2025-05-12 16:54 - 2025-05-12 16:54 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader
2025-05-12 16:52 - 2025-05-12 16:52 - 000001032 _____ C:\Users\Razer\Desktop\Telegram.lnk
2025-05-12 16:52 - 2025-05-12 16:52 - 000000916 _____ C:\Users\Public\Desktop\VLC media player.lnk
2025-05-12 16:51 - 2025-05-12 16:51 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom
2025-05-12 16:41 - 2025-05-12 16:41 - 000000000 ____D C:\Users\Razer\AppData\Roaming\CCleaner
2025-05-12 16:36 - 2025-05-12 16:36 - 009568256 _____ (Malwarebytes) C:\Users\Razer\Downloads\adwcleaner.exe
2025-05-12 16:35 - 2025-05-12 16:36 - 000000000 ____D C:\AdwCleaner
2025-05-12 16:35 - 2025-05-12 16:35 - 007025360 _____ (Malwarebytes) C:\Users\Razer\Downloads\adwcleaner_7.3.exe
2025-05-12 14:45 - 2025-05-12 14:45 - 000086375 _____ C:\Users\Razer\Desktop\bahnfahrt kiel hannover hin-rückfahrt.pdf
2025-05-09 19:22 - 2025-05-09 20:52 - 000001064 _____ C:\Users\Razer\Desktop\9.5.25 call ek4u.txt
2025-05-04 20:38 - 2025-05-04 20:38 - 000063501 _____ C:\Users\Razer\Downloads\bahncard bescherde teil 2.pdf
2025-05-02 14:51 - 2025-03-25 15:23 - 003007011 _____ C:\Users\Razer\Desktop\Angebot_11,4kW_Wärmepumpe_Familie Alms.pdf
2025-04-28 15:39 - 2025-04-28 16:31 - 000000163 _____ C:\Users\Razer\Desktop\thomas Machacek.txt
2025-04-26 16:08 - 2025-04-26 16:08 - 000041613 _____ C:\Users\Razer\Downloads\manu 25.pdf
2025-04-26 15:07 - 2025-04-26 16:11 - 000001141 _____ C:\Users\Razer\Desktop\manu fc25.txt
2025-04-20 11:41 - 2025-04-20 11:41 - 000105948 _____ C:\Users\Razer\Downloads\Unbenanntes Dokument (2).pdf
2025-04-17 21:18 - 2025-04-14 08:16 - 002072456 _____ C:\Windows\system32\vulkaninfo-1-999-0-0-0.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 002072456 _____ C:\Windows\system32\vulkaninfo.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001614216 _____ C:\Windows\SysWOW64\vulkaninfo-1-999-0-0-0.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001614216 _____ C:\Windows\SysWOW64\vulkaninfo.exe
2025-04-17 21:18 - 2025-04-14 08:16 - 001576840 _____ C:\Windows\system32\vulkan-1-999-0-0-0.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001576840 _____ C:\Windows\system32\vulkan-1.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001389960 _____ C:\Windows\SysWOW64\vulkan-1-999-0-0-0.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 001389960 _____ C:\Windows\SysWOW64\vulkan-1.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 000478384 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2025-04-17 21:18 - 2025-04-14 08:16 - 000374960 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 001259648 _____ (NVIDIA Corporation) C:\Windows\system32\nvml.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 000674992 _____ (NVIDIA Corporation) C:\Windows\system32\nvofapi64.dll
2025-04-17 21:18 - 2025-04-14 08:11 - 000509104 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvofapi.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 026001536 _____ C:\Windows\system32\nvidia-pcc.exe
2025-04-17 21:18 - 2025-04-14 08:10 - 002313872 _____ (NVIDIA Corporation) C:\Windows\system32\NvFBC64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001713816 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvFBC.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001569448 _____ (NVIDIA Corporation) C:\Windows\system32\NvIFR64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001220784 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\NvIFR.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 001053312 _____ (NVIDIA Corporation) C:\Windows\system32\nvEncodeAPI64.dll
2025-04-17 21:18 - 2025-04-14 08:10 - 000942224 _____ (NVIDIA Corporation) C:\Windows\system32\nvidia-smi.exe
2025-04-17 21:18 - 2025-04-14 08:10 - 000810128 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvEncodeAPI.dll
2025-04-17 21:18 - 2025-04-14 08:09 - 023033472 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuvid.dll
2025-04-17 21:18 - 2025-04-14 08:09 - 000467064 _____ (NVIDIA Corporation) C:\Windows\system32\nvdebugdump.exe
2025-04-17 21:18 - 2025-04-14 08:08 - 020517016 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuvid.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 007323280 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvcuda.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 005913744 _____ (NVIDIA Corporation) C:\Windows\system32\nvcpl.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 005239936 _____ (NVIDIA Corporation) C:\Windows\system32\nvcudadebugger.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 003993752 _____ (NVIDIA Corporation) C:\Windows\system32\nvcuda.dll
2025-04-17 21:18 - 2025-04-14 08:08 - 000853144 _____ (NVIDIA Corporation) C:\Windows\system32\MCU.exe
2025-04-17 21:18 - 2025-04-14 08:06 - 005601032 _____ (NVIDIA Corporation) C:\Windows\system32\nvapi64.dll
2025-04-17 21:18 - 2025-04-14 08:06 - 004902688 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvapi.dll
2025-04-17 21:18 - 2025-04-12 14:25 - 000142952 _____ C:\Windows\system32\nvinfo.pb
2025-04-17 19:03 - 2025-04-17 20:42 - 000004132 _____ C:\Users\Razer\Desktop\call 17.4.25 ek4u.txt
2025-04-16 12:28 - 2025-04-16 12:27 - 000437947 _____ C:\Users\Razer\Desktop\Phillip Marco Schilling Visitenkarte EK4YOU (1).pdf
2025-04-16 12:27 - 2025-04-16 12:27 - 000437947 _____ C:\Users\Razer\Downloads\Phillip Marco Schilling Visitenkarte EK4YOU (1).pdf
2025-04-16 12:01 - 2025-04-16 12:01 - 000114990 _____ C:\Users\Razer\Downloads\Q1 2025 - Tabellenblatt1.pdf
2025-04-15 10:47 - 2025-04-15 10:47 - 000001133 _____ C:\Users\Public\Desktop\Razer Axon.lnk
2025-04-15 09:56 - 2025-04-15 09:56 - 000001430 _____ C:\Users\Razer\Desktop\NVIDIA App (2).lnk
2025-04-15 09:17 - 2025-04-15 09:17 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2025-04-15 09:17 - 2025-04-07 18:14 - 003114016 _____ (NVIDIA Corporation) C:\Windows\system32\nvspcap64.dll
2025-04-15 09:17 - 2025-04-07 18:14 - 002403360 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvspcap.dll
2025-04-15 09:17 - 2025-04-07 17:52 - 000180760 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2025-04-15 09:17 - 2025-04-07 17:52 - 000159768 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2025-04-15 08:59 - 2025-04-15 09:03 - 845040656 _____ (NVIDIA Corporation) C:\Users\Razer\Downloads\572.83-desktop-win10-win11-64bit-international-dch-whql.exe
2025-04-15 08:36 - 2025-04-15 10:28 - 000000000 ____D C:\Users\Razer\AppData\Local\EA SPORTS FC 25
2025-04-14 22:46 - 2025-04-14 22:46 - 003018368 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_ek4u.pdf
2025-04-14 13:40 - 2025-04-14 13:41 - 002114907 _____ C:\Users\Razer\Downloads\WP_Angebot_Willi_Blesin_final.pdf
2025-04-14 13:28 - 2025-04-14 13:28 - 003044421 _____ C:\Users\Razer\Downloads\Thomas_Machacek_22kW_neu (1).pdf
2025-04-14 13:28 - 2025-04-14 13:27 - 001572973 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_1213 (1).pdf
2025-04-14 13:26 - 2025-04-14 13:26 - 005199333 _____ C:\Users\Razer\Downloads\WP_Angebot_Willi_Blesin_1216.pdf
2025-04-13 21:30 - 2025-04-13 21:30 - 000142816 _____ C:\Users\Razer\Downloads\Werbebrief PV & WP variante 2.pdf
2025-04-13 20:34 - 2025-04-13 20:34 - 004670519 _____ C:\Users\Razer\Downloads\WP_Angebot_Thomas_Machacek_1213.pdf
2025-04-13 20:29 - 2025-04-13 20:29 - 003804639 _____ C:\Users\Razer\Downloads\Thomas_Machacek_22kW_neu.pdf
2025-04-12 19:24 - 2025-04-12 19:24 - 000139231 _____ C:\Users\Razer\Downloads\Werbebrief PV & WP variante 1.pdf
2025-04-10 13:49 - 2025-04-10 13:49 - 000093947 _____ C:\Users\Razer\Downloads\Betreff_ Abmahnung wegen nicht umgesetzter Kontoumstellung und unrechtmäßiger Abbuchungen.pdf
2025-04-10 12:42 - 2025-04-10 12:42 - 000142095 _____ C:\Users\Razer\Downloads\��✅ So funktioniert die Ivy-Lee-Methode (Schritt für Schritt)_.pdf
2025-04-09 20:45 - 2025-04-09 20:45 - 000000000 ____D C:\inetpub
2025-04-08 19:01 - 2025-04-08 19:01 - 000199118 _____ C:\Users\Razer\Downloads\�� 1. Beratungsleitfaden – Wärmepumpe & Photovoltaik (intern oder für Schulung) (1).pdf
2025-04-08 17:23 - 2025-04-08 17:23 - 000197308 _____ C:\Users\Razer\Downloads\�� 1. Beratungsleitfaden – Wärmepumpe & Photovoltaik (intern oder für Schulung).pdf
2025-04-08 17:11 - 2025-04-08 17:11 - 000001941 _____ C:\Users\Razer\Downloads\sehtest_-_beratung.ics
2025-04-08 11:18 - 2025-04-08 11:20 - 000000000 ____D C:\Users\Razer\Desktop\Tools - EXE Daten usw
2025-04-08 11:18 - 2024-09-10 22:44 - 000002082 _____ C:\Users\Razer\Desktop\Travel In A Space Pod.lnk
2025-04-07 18:08 - 2025-04-07 18:08 - 000083048 _____ C:\Users\Razer\Downloads\Eckdaten zur ersteinschätzung für Wärmepumpe und Photovoltaik.pdf
2025-04-07 17:19 - 2025-04-29 19:27 - 000000000 ____D C:\Users\Razer\Desktop\BERUFLICH
2025-04-07 17:16 - 2025-05-15 17:37 - 000000000 ____D C:\Users\Razer\Desktop\PRIVAT
2025-04-07 14:29 - 2025-04-07 14:29 - 001193632 _____ C:\Users\Razer\Downloads\Angebot_KV_10048909687882_07.02.2025.pdf
2025-04-02 11:32 - 2025-04-02 11:32 - 018559671 _____ C:\Users\Razer\Downloads\video machacek.MP4
2025-03-28 15:54 - 2025-03-28 15:54 - 007597053 _____ C:\Users\Razer\Downloads\Leo 1-[AudioTrimmer.com].m4a
2025-03-28 15:45 - 2025-03-28 15:47 - 000123460 _____ C:\Users\Razer\Downloads\ERWEITERT Vergleich von Günstigen und Hochwertigen Wärmepumpen.pdf
2025-03-28 10:42 - 2025-03-28 10:42 - 000000709 _____ C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Energiefox Angebote.lnk
2025-03-25 21:08 - 2025-03-25 21:08 - 000068083 _____ C:\Users\Razer\Downloads\GEP Netzbetreiber Vollmacht Jochen Witt.pdf
2025-03-25 15:20 - 2025-03-25 15:21 - 003007011 _____ C:\Users\Razer\Downloads\Angebot_11,4kW_Wärmepumpe_Familie Alms.pdf
2025-03-25 15:20 - 2025-03-25 15:21 - 000900834 _____ C:\Users\Razer\Downloads\Angebot_Energieberatung_Familie Alms.pdf
2025-03-24 10:35 - 2025-03-24 10:35 - 001209034 _____ C:\Users\Razer\Downloads\Angebot_Energieberatung_Manuel Alms.pdf
2025-03-23 23:06 - 2025-03-23 23:07 - 302022656 _____ C:\Users\Razer\Downloads\sejda-desktop_7.8.3_x64.msi
2025-03-23 22:58 - 2025-03-23 22:58 - 003793424 _____ C:\Users\Razer\Downloads\Angebot_11,4kW_Manuel Alms.pdf
2025-03-19 21:20 - 2025-03-19 21:20 - 014845665 _____ C:\Users\Razer\Downloads\Angebot Familie Hecht.pdf
2025-03-18 19:35 - 2025-03-18 19:35 - 000000027 _____ C:\Windows\system32\ctc.json
2025-03-12 23:06 - 2025-03-12 23:08 - 000000000 ____D C:\Users\Razer\AppData\Local\Notepad
2025-03-12 14:15 - 2025-03-12 14:15 - 000021257 _____ C:\Users\Razer\.pdfbox.cache
2025-03-11 15:29 - 2025-03-11 15:29 - 004029584 _____ C:\Users\Razer\Downloads\Thomas_Uplegger_14,5kW.pdf
2025-03-05 11:16 - 2025-03-25 20:43 - 000000000 ____D C:\Users\Razer\AppData\Local\PDF24
2025-03-05 11:15 - 2025-03-05 11:15 - 002271004 _____ C:\Users\Razer\Downloads\Auftrag Wärmepumpe unter Vorbehalt jochen witt.pdf
2025-03-01 17:39 - 2025-05-12 16:55 - 000000000 ____D C:\Program Files\PDF24
2025-02-27 22:20 - 2025-02-27 22:20 - 004019712 _____ C:\Users\Razer\Downloads\Jens_Thun_14,8kW.pdf
2025-02-27 22:20 - 2025-02-27 22:20 - 001293179 _____ C:\Users\Razer\Downloads\Jens_Thun_Energieberatung.pdf
2025-02-20 20:04 - 2025-02-20 20:05 - 000000000 ____D C:\ProgramData\BDLogging
2025-02-19 22:11 - 2025-02-19 22:11 - 005420653 _____ C:\Users\Razer\Downloads\Angebot AN-2502-913 neuer Preis_signiert.pdf
2025-02-19 13:03 - 2025-02-19 13:03 - 000159878 _____ C:\Users\Razer\Downloads\Einnahemn & Ausgaben Q4.xlsx
2025-02-19 13:03 - 2025-02-19 13:03 - 000115545 _____ C:\Users\Razer\Downloads\Einnahemn & Ausgaben Q4.pdf
2025-02-14 23:45 - 2025-02-14 23:45 - 006522470 _____ C:\Users\Razer\Downloads\Angebot AN-2502-913 neuer Preis (1).pdf
2025-02-14 23:27 - 2025-02-14 23:40 - 006522470 _____ C:\Users\Razer\Downloads\Angebot AN-2502-913 neuer Preis.pdf
2025-02-14 20:56 - 2025-02-14 20:56 - 021861367 _____ C:\Users\Razer\Downloads\20250208_170430.mp4
==================== Drei Monate (geänderte) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird die Datei/der Ordner verschoben.)
2025-05-15 23:04 - 2024-12-22 22:53 - 000000000 ____D C:\Users\Razer\AppData\Local\Malwarebytes
2025-05-15 23:00 - 2019-12-07 11:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2025-05-15 22:59 - 2022-09-08 05:15 - 000000000 ____D C:\Windows\SystemTemp
2025-05-15 22:32 - 2023-09-27 23:24 - 000000000 ____D C:\Users\Razer\AppData\Roaming\vlc
2025-05-15 22:22 - 2023-09-27 19:36 - 000002239 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2025-05-15 22:14 - 2024-11-11 12:59 - 000002356 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk
2025-05-15 19:03 - 2023-09-25 12:14 - 000000000 ____D C:\Users\Razer\AppData\Local\Packages
2025-05-15 19:02 - 2023-09-25 12:33 - 000000000 ____D C:\Users\Razer\AppData\Local\D3DSCache
2025-05-15 18:59 - 2023-09-25 12:08 - 000000000 ____D C:\Windows\system32\SleepStudy
2025-05-15 17:01 - 2023-09-25 12:14 - 001622274 _____ C:\Windows\system32\PerfStringBackup.INI
2025-05-15 17:01 - 2019-12-07 11:13 - 000000000 ____D C:\Windows\INF
2025-05-15 16:54 - 2023-09-25 12:23 - 000000000 __SHD C:\Users\Razer\IntelGraphicsProfiles
2025-05-15 16:53 - 2023-09-25 12:22 - 000000000 ____D C:\Intel
2025-05-15 16:53 - 2023-09-25 12:18 - 000000000 ____D C:\ProgramData\NVIDIA
2025-05-15 16:53 - 2023-09-25 12:08 - 000008192 ___SH C:\DumpStack.log.tmp
2025-05-15 16:53 - 2023-09-25 12:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2025-05-15 16:53 - 2019-12-07 11:03 - 000786432 _____ C:\Windows\system32\config\BBI
2025-05-15 16:28 - 2023-09-27 20:03 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps
2025-05-14 15:04 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\AppReadiness
2025-05-14 15:03 - 2023-09-25 12:08 - 000270032 _____ C:\Windows\system32\FNTCACHE.DAT
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\PrintDialog
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\setup
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SysWOW64\Dism
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\SystemResources
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\ShellExperiences
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\setup
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\SecureBootUpdates
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\PerceptionSimulation
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\oobe
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\system32\Dism
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellExperiences
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\ShellComponents
2025-05-14 15:02 - 2019-12-07 11:14 - 000000000 ____D C:\Windows\bcastdvr
2025-05-14 15:02 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\servicing
2025-05-14 12:33 - 2023-09-25 12:18 - 000000000 ____D C:\Windows\system32\MRT
2025-05-14 12:30 - 2023-09-25 12:17 - 214836568 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2025-05-14 11:33 - 2019-12-07 11:03 - 000000000 ____D C:\Windows\CbsTemp
2025-05-14 11:29 - 2023-09-25 12:11 - 003016192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\PrintConfig.dll
2025-05-13 21:34 - 2024-12-23 15:51 - 000000000 ____D C:\Program Files\CCleaner
2025-05-13 12:49 - 2019-12-07 11:14 - 000000000 ___HD C:\Program Files\WindowsApps
2025-05-12 16:52 - 2023-09-29 12:14 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Telegram Desktop
2025-05-12 16:52 - 2023-09-29 12:14 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop
2025-05-12 16:51 - 2025-01-24 21:30 - 000000000 ____D C:\Program Files\dotnet
2025-05-12 16:51 - 2023-09-27 19:52 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Zoom
2025-05-12 16:51 - 2023-09-25 12:28 - 000000000 ____D C:\ProgramData\Package Cache
2025-05-12 16:40 - 2023-12-26 22:55 - 000000000 ____D C:\Program Files (x86)\Steam
2025-05-12 16:40 - 2023-09-25 14:20 - 000000000 ____D C:\Users\Razer\AppData\Local\CrashDumps
2025-05-10 12:55 - 2023-09-25 12:08 - 000002436 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk
2025-05-07 22:26 - 2023-12-29 18:27 - 000000000 ____D C:\ProgramData\EA Desktop
2025-05-06 14:28 - 2023-09-25 12:13 - 000002395 _____ C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2025-05-02 14:12 - 2024-01-04 13:06 - 000002084 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk
2025-05-02 14:12 - 2024-01-04 13:06 - 000002073 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk
2025-04-26 19:54 - 2023-12-29 18:27 - 000000000 ____D C:\ProgramData\Packer
2025-04-25 21:40 - 2023-09-25 12:14 - 000000000 ____D C:\ProgramData\Packages
2025-04-25 21:39 - 2023-09-25 12:17 - 000000000 ____D C:\Users\Razer\AppData\Local\PlaceholderTileLogoFolder
2025-04-25 10:45 - 2023-10-31 09:40 - 000000000 ____D C:\Program Files\NordUpdater
2025-04-25 08:21 - 2023-09-27 19:38 - 000000000 ____D C:\Users\Razer\AppData\Local\NVIDIA
2025-04-17 21:22 - 2023-09-26 12:04 - 000000000 ____D C:\Users\Razer\AppData\Local\NVIDIA Corporation
2025-04-17 21:22 - 2023-09-25 12:18 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2025-04-17 21:22 - 2023-09-25 12:18 - 000000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2025-04-15 10:57 - 2023-09-25 12:08 - 000000000 ____D C:\Windows\system32\Drivers\wd
2025-04-15 10:48 - 2024-03-25 10:02 - 000000000 ____D C:\Users\Razer\AppData\Local\NotificationTemp
2025-04-15 10:47 - 2023-09-25 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon
2025-04-15 10:43 - 2024-12-22 23:12 - 000000000 ____D C:\ProgramData\Bitdefender
2025-04-15 10:42 - 2019-12-07 11:03 - 000032768 _____ C:\Windows\system32\config\ELAM
2025-04-15 09:28 - 2023-09-25 12:30 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex
2025-04-15 09:23 - 2023-09-25 12:18 - 000000000 ____D C:\ProgramData\NVIDIA Corporation
2025-04-15 09:17 - 2023-09-25 14:15 - 000000000 ____D C:\Windows\system32\Drivers\NVIDIA Corporation
2025-04-15 09:00 - 2023-12-29 18:29 - 000000000 ____D C:\Users\Razer\AppData\Roaming\Electronic Arts
2025-04-15 08:36 - 2023-12-29 18:29 - 000000000 ____D C:\ProgramData\Frostbite
==================== SigCheckExt =========================
2023-12-22 22:28 - 2023-10-26 03:31 - 002149184 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WUDFUpdate_01009.dll
2025-05-13 21:32 - 2025-05-13 21:32 - 001426275 _____ (<hxxps://furtivex.net>) C:\Users\Razer\Downloads\FMRS.exe
2025-05-13 18:55 - 2025-05-15 23:01 - 002405888 _____ (Farbar) C:\Users\Razer\Downloads\FRST64.exe
==================== SigCheck ============================
(Es ist kein automatischer Fix für Dateien vorhanden, die an der Verifikation gescheitert sind.)
==================== BCD ================================
Start-Manager für Firmware
--------------------------
Bezeichner {fwbootmgr}
displayorder {bootmgr}
{7c7acd1d-5b93-11ee-a718-e7988c26e0b6}
{a2cefc86-5b8b-11ee-b2e6-806e6f6e6963}
{a2cefc87-5b8b-11ee-b2e6-806e6f6e6963}
{a2cefc88-5b8b-11ee-b2e6-806e6f6e6963}
timeout 0
Windows-Start-Manager
---------------------
Bezeichner {bootmgr}
device partition=\Device\HarddiskVolume2
path \EFI\MICROSOFT\BOOT\BOOTMGFW.EFI
description Windows Boot Manager
locale de-DE
inherit {globalsettings}
default {current}
resumeobject {7c7acd1e-5b93-11ee-a718-e7988c26e0b6}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {7c7acd1d-5b93-11ee-a718-e7988c26e0b6}
device unknown
description UEFI: Intenso, Partition 1
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {a2cefc86-5b8b-11ee-b2e6-806e6f6e6963}
description UEFI:CD/DVD Drive
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {a2cefc87-5b8b-11ee-b2e6-806e6f6e6963}
description UEFI:Removable Device
Firmwareanwendung (101fffff)
----------------------------
Bezeichner {a2cefc88-5b8b-11ee-b2e6-806e6f6e6963}
description UEFI:Network Device
Windows-Startladeprogramm
-------------------------
Bezeichner {current}
device partition=C:
path \Windows\system32\winload.efi
description Windows 10
locale de-DE
inherit {bootloadersettings}
recoverysequence {7c7acd20-5b93-11ee-a718-e7988c26e0b6}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \Windows
resumeobject {7c7acd1e-5b93-11ee-a718-e7988c26e0b6}
nx OptIn
bootmenupolicy Standard
Windows-Startladeprogramm
-------------------------
Bezeichner {7c7acd20-5b93-11ee-a718-e7988c26e0b6}
device ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{7c7acd21-5b93-11ee-a718-e7988c26e0b6}
path \windows\system32\winload.efi
description Windows Recovery Environment
locale de-de
inherit {bootloadersettings}
displaymessage Recovery
osdevice ramdisk=[\Device\HarddiskVolume5]\Recovery\WindowsRE\Winre.wim,{7c7acd21-5b93-11ee-a718-e7988c26e0b6}
systemroot \windows
nx OptIn
bootmenupolicy Standard
winpe Yes
Wiederaufnahme aus dem Ruhezustand
----------------------------------
Bezeichner {7c7acd1e-5b93-11ee-a718-e7988c26e0b6}
device partition=C:
path \Windows\system32\winresume.efi
description Windows Resume Application
locale de-DE
inherit {resumeloadersettings}
recoverysequence {7c7acd20-5b93-11ee-a718-e7988c26e0b6}
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
filedevice partition=C:
filepath \hiberfil.sys
bootmenupolicy Standard
debugoptionenabled No
Windows-Speichertestprogramm
----------------------------
Bezeichner {memdiag}
device partition=\Device\HarddiskVolume2
path \EFI\Microsoft\Boot\memtest.efi
description Windows-Speicherdiagnose
locale de-DE
inherit {globalsettings}
badmemoryaccess Yes
EMS-Einstellungen
-----------------
Bezeichner {emssettings}
bootems No
Debuggereinstellungen
---------------------
Bezeichner {dbgsettings}
debugtype Local
RAM-Defekte
-----------
Bezeichner {badmemory}
Globale Einstellungen
---------------------
Bezeichner {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}
Startladeprogramm-Einstellungen
-------------------------------
Bezeichner {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}
Hypervisoreinstellungen
-----------------------
Bezeichner {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200
Einstellungen zur Ladeprogrammfortsetzung
-----------------------------------------
Bezeichner {resumeloadersettings}
inherit {globalsettings}
Geräteoptionen
--------------
Bezeichner {7c7acd21-5b93-11ee-a718-e7988c26e0b6}
description Windows Recovery
ramdisksdidevice partition=\Device\HarddiskVolume5
ramdisksdipath \Recovery\WindowsRE\boot.sdi
==================== Ende von FRST.txt ========================
Code:
ATTFilter Zusätzliches Untersuchungsergebnis von Farbar Recovery Scan Tool (x64) Version: 15-05-2025
durchgeführt von Razer (15-05-2025 23:04:41)
Gestartet von C:\Users\Razer\Downloads
Microsoft Windows 10 Home Version 22H2 19045.5854 (X64) (2023-09-25 10:09:55)
Start-Modus: Normal
==========================================================
==================== Konten: =============================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
Administrator (S-1-5-21-3644930430-3491832035-840970103-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3644930430-3491832035-840970103-503 - Limited - Disabled)
Gast (S-1-5-21-3644930430-3491832035-840970103-501 - Limited - Disabled)
Razer (S-1-5-21-3644930430-3491832035-840970103-1001 - Administrator - Enabled) => C:\Users\Razer
WDAGUtilityAccount (S-1-5-21-3644930430-3491832035-840970103-504 - Limited - Disabled)
==================== Sicherheits-Center ========================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
==================== Installierte Programme ======================
(Nur Adware-Programme mit dem Zusatz "Hidden" können in die Fixlist aufgenommen werden, um sie sichtbar zu machen. Die Adware-Programme sollten manuell deinstalliert werden.)
Absolute Uninstaller 6.0.1.17 (HKLM-x32\...\Absolute Uninstaller) (Version: 6.0.1.17 - Glarysoft Ltd)
Adobe Acrobat (64-bit) (HKLM\...\{AC76BA86-1033-FFFF-7760-BC15014EA700}) (Version: 25.001.20474 - Adobe)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 6.1.0.587 - Adobe Inc.)
Adobe Refresh Manager (HKLM-x32\...\{AC76BA86-0804-1033-1959-018244601110}) (Version: 1.8.0 - Adobe Systems Incorporated) Hidden
Backuptrans Android iPhone Viber Transfer + (x64) 3.1.86 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Backuptrans Android iPhone Viber Transfer + (x64)) (Version: 3.1.86 - Backuptrans)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 27.1.1.12 - Bitdefender)
Brave (HKLM-x32\...\BraveSoftware Brave-Browser) (Version: 136.1.78.102 - Die Brave-Autoren)
CCleaner (HKLM\...\CCleaner) (Version: 6.35 - Piriform)
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.6.5.1 - Dolby Laboratories Inc)
EA app (HKLM\...\{C2622085-ABD2-49E5-8AB9-D3D6A642C091}) (Version: 13.458.0.5971 - Electronic Arts) Hidden
EA app (HKLM-x32\...\{20a8704d-f282-4d39-b57c-177ec90557be}) (Version: 13.458.0.5971 - Electronic Arts)
f.lux (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\Flux) (Version: 4.134 - f.lux Software LLC)
Foxit PDF Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 2025.1.0.27937 - Foxit Software Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 136.0.7103.114 - Google LLC)
HiSuite (HKLM-x32\...\Hi Suite) (Version: 14.0.0.310 - Huawei Technologies Co., Ltd.)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 22.20.16.4815 - Intel Corporation)
Lunatask 1.7.9 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\288d4c26-e1c7-58e9-bf0f-d1c1f6fb9f59) (Version: 1.7.9 - Lunatask)
Malwarebytes version 5.2.11.183 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 5.2.11.183 - Malwarebytes)
Microsoft .NET Host - 8.0.15 (x64) (HKLM\...\{4C903F19-B4C3-4D0C-8CC9-D444C511AF1C}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft .NET Host FX Resolver - 8.0.15 (x64) (HKLM\...\{11CCC9F6-77AA-4421-9EAC-BAEC36D96817}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft .NET Runtime - 8.0.15 (x64) (HKLM\...\{8731E6E3-AF96-4515-ACEC-DBFB3DF55292}) (Version: 64.60.31149 - Microsoft Corporation) Hidden
Microsoft Edge (HKLM-x32\...\Microsoft Edge) (Version: 136.0.3240.64 - Microsoft Corporation)
Microsoft Edge WebView2-Laufzeit (HKLM-x32\...\Microsoft EdgeWebView) (Version: 136.0.3240.64 - Microsoft Corporation) Hidden
Microsoft OneDrive (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\OneDriveSetup.exe) (Version: 25.065.0406.0002 - Microsoft Corporation)
Microsoft Update Health Tools (HKLM\...\{1FC1A6C2-576E-489A-9B4A-92D21F542136}) (Version: 3.74.0.0 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.61030 (HKLM-x32\...\{B175520C-86A2-35A7-8619-86DC379688B9}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.61030 (HKLM-x32\...\{BD95A8CD-1D9F-35AD-981A-3E7925026EBB}) (Version: 11.0.61030 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40664 (HKLM-x32\...\{042d26ef-3dbe-4c25-95d3-4c1b11b235a7}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40664 (HKLM-x32\...\{9dff3540-fc85-4ed5-ac84-9e3c7fd8bece}) (Version: 12.0.40664.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.40664 (HKLM\...\{010792BA-551A-3AC0-A7EF-0FAB4156C382}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.40664 (HKLM\...\{53CF6934-A98D-3D84-9146-FC4EDF3D5641}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.40664 (HKLM-x32\...\{D401961D-3A20-3AC7-943B-6139D5BD490A}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.40664 (HKLM-x32\...\{8122DAB1-ED4D-3676-BB0A-CA368196543E}) (Version: 12.0.40664 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2015-2022 Redistributable (x64) - 14.42.34438 (HKLM-x32\...\{b49c10dd-4d54-45f8-ad13-fa25704456a4}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2015-2022 Redistributable (x86) - 14.42.34438 (HKLM-x32\...\{ba10fda9-f731-441f-a999-000bbb7ceec2}) (Version: 14.42.34438.0 - Microsoft Corporation)
Microsoft Visual C++ 2022 X64 Additional Runtime - 14.42.34438 (HKLM\...\{E528AD94-12D7-42C4-91A3-908BE28E9BD2}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X64 Minimum Runtime - 14.42.34438 (HKLM\...\{2E15F519-4FDA-4834-B4EE-7EFCE7D8D4EE}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Additional Runtime - 14.42.34438 (HKLM-x32\...\{A5592FEF-F948-4BA6-A066-8BBFC2DC7EE1}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Visual C++ 2022 X86 Minimum Runtime - 14.42.34438 (HKLM-x32\...\{5D0C4511-3CA1-4FF8-A4BA-C0E1957ABEEA}) (Version: 14.42.34438 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.15 (x64) (HKLM\...\{0E4A7820-FDA4-4250-B7AC-E7A2F7B43B64}) (Version: 64.60.31203 - Microsoft Corporation) Hidden
Microsoft Windows Desktop Runtime - 8.0.15 (x64) (HKLM-x32\...\{5625bb48-295c-4113-bc92-d6a69b19b04c}) (Version: 8.0.15.34718 - Microsoft Corporation)
NordUpdater (HKLM\...\{6E35DB82-3D19-4DD6-B8CB-F082815FDE18}_is1) (Version: 1.4.6.959 - Nord Security)
NordVPN (HKLM\...\{19465C24-3D5D-4327-B99F-3CC0A1D38151}_is1) (Version: 7.32.5.0 - Nord Security)
NordVPN network TAP (HKLM-x32\...\{97DEC5D6-2BE9-45BB-BFC5-274B851B486B}) (Version: 1.0.1 - NordVPN)
NVIDIA FrameView SDK 1.5.10920.35420203 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_FrameViewSdk) (Version: 1.5.10920.35420203 - NVIDIA Corporation)
NVIDIA Grafiktreiber 576.02 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 576.02 - NVIDIA Corporation)
NVIDIA HD-Audiotreiber 1.4.3.2 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.4.3.2 - NVIDIA Corporation)
NVIDIA PhysX-Systemsoftware 9.23.1019 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.23.1019 - NVIDIA Corporation)
NVIDIA-App 11.0.3.232 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NvApp) (Version: 11.0.3.232 - NVIDIA Corporation)
OBS Studio (HKLM-x32\...\OBS Studio) (Version: 29.1.3 - OBS Project)
PDF24 Creator (HKLM\...\{0C17F9F9-B9AF-483C-A44D-A916BD96D4D1}) (Version: 11.25.1 - geek software GmbH)
Razer Axon (HKLM\...\Razer Axon_is1) (Version: 2.2.1.0 - Razer Inc.)
Razer Chroma SDK Core Components (HKLM-x32\...\Razer Chroma SDK) (Version: 2.10.6 - Razer Inc.)
Razer Cortex (HKLM-x32\...\Razer Cortex_is1) (Version: 11.1.5.0 - Razer Inc.)
Razer Synapse (HKLM-x32\...\{0D78BEE2-F8FF-4498-AF1A-3FF81CED8AC6}) (Version: 2.21.24.41 - Razer Inc.)
Razer Synapse (HKLM-x32\...\Razer Synapse) (Version: 3.10.0315.031117 - Razer Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8245 - Realtek Semiconductor Corp.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Telegram Desktop (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\{53F49750-6209-4FBF-9CA8-7A333C87D1ED}_is1) (Version: 5.13.1 - Telegram FZ-LLC)
Todoist 9.4.0 (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\046cc9a8-e645-5367-8486-409093e0b69a) (Version: 9.4.0 - Doist)
Universal Adb Driver (HKLM-x32\...\{C0E08D8D-6076-4117-B644-2AF34F35B757}) (Version: 1.0.4 - ClockworkMod)
Update for x64-based Windows Systems (KB5001716) (HKLM\...\{DA80A019-4C3B-4DAA-ACA1-6937D7CAAF9E}) (Version: 8.94.0.0 - Microsoft Corporation)
VidJuice UniTube Version 6.3.0 (HKLM\...\VidJuice UniTube_is1) (Version: 6.3.0 - Mobee Technology Co., Limited)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.21 - VideoLAN)
Vulkan Run Time Libraries 1.0.54.1 (HKLM\...\VulkanRT1.0.54.1) (Version: 1.0.54.1 - LunarG, Inc.) Hidden
Vysor (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\vysor) (Version: 5.0.7 - Vysor Inc.)
WinRAR 6.23 (64-Bit) (HKLM\...\WinRAR archiver) (Version: 6.23.0 - win.rar GmbH)
Zoom Workplace (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\ZoomUMX) (Version: 6.4.6 (64360) - Zoom Communications, Inc.)
Chrome apps:
============
Do this to get fit (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\20e6337838ae477ae9341eac29308866) (Version: 1.0 - Google\Chrome)
Dokumente (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\720be21a2e6fc6834597b7f341384a96) (Version: 1.0 - Google\Chrome)
Gmail (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\13d13583ddb177c4c405f54cde512a21) (Version: 1.0 - Google\Chrome)
Google Drive (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\67de23052a953a94dbdeca31011ef84a) (Version: 1.0 - Google\Chrome)
Präsentationen (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\99d49a267397ad4733ccdff094476e82) (Version: 1.0 - Google\Chrome)
Sheets (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\fd72a94144682c8168ad4fe559194f89) (Version: 1.0 - Google\Chrome)
YouTube (HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\5442e3780cba0a36baf1951da45b0cdf) (Version: 1.0 - Google\Chrome)
Packages:
=========
Acrobat Notification Client -> C:\Program Files\WindowsApps\AcrobatNotificationClient_1.0.4.0_x86__e1rzdqpraam7r [2024-01-04] (Adobe Systems Incorporated)
Adobe Notification Client -> C:\Program Files\WindowsApps\AdobeNotificationClient_3.0.1.1_x86__enpm4xejd91yc [2024-01-04] (Adobe Systems Incorporated)
NVIDIA Control Panel -> C:\Program Files\WindowsApps\NVIDIACorp.NVIDIAControlPanel_8.1.967.0_x64__56jybvy8sckqj [2025-04-17] (NVIDIA Corp.)
Spotify – Musik und Podcasts -> C:\Program Files\WindowsApps\SpotifyAB.SpotifyMusic_1.263.394.0_x64__zpdnekdrzrea0 [2025-05-13] (Spotify AB) [Startup Task]
Trello -> C:\Program Files\WindowsApps\45273LiamForsyth.PawsforTrello_2.15.7.0_x64__7pb5ddty8z1pa [2025-02-14] (Trello, Inc.)
TvMate IPTV Pro -> C:\Program Files\WindowsApps\HFRTECHLLC.TiviMateIPTVPro_1.0.8.0_x64__ef2a51g56xear [2025-04-25] (HFR TECH LLC)
WhatsApp -> C:\Program Files\WindowsApps\5319275A.WhatsAppDesktop_2.2518.3.0_x64__cv1g1gvanyjgm [2025-05-13] (WhatsApp Inc.) [Startup Task]
==================== Benutzerdefinierte CLSID (Nicht auf der Ausnahmeliste): ==============
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{0E270DAA-1BE6-48F2-AC49-DE72DEDCB3B1} -> [Creative Cloud Files] => C:\Users\Razer\Creative Cloud Files [2024-01-04 12:55]
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{13357088-9834-0409-1600-134951500000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{2F81B25E-7507-4844-BFF2-77D2CC24CED4}\localserver32 -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc. -> Adobe Inc.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{38142727-3008-9161-1521-349515000000}\localserver32 -> C:\Program Files\Adobe\Acrobat DC\Acrobat\ADNotificationManager.exe (Adobe Inc. -> Adobe)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{4e6f7264-5650-4e00-0000-000000000000}\localserver32 -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn s.a. -> nordvpn S.A.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{995f8d89-8ab5-dd20-098d-b9419e93fd76}\localserver32 -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer USA Ltd. -> Razer Inc.)
CustomCLSID: HKU\S-1-5-21-3644930430-3491832035-840970103-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Inc. -> Adobe Systems)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers1: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers1: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-03-06] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => -> Keine Datei
ContextMenuHandlers5: [igfxDTCM] -> {9B5F5829-A529-4B12-814A-E81BCB8D93FC} => C:\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_69dab7507ba5b15d\igfxDTCM.dll [2022-05-09] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\System32\DriverStore\FileRepository\nvrzi.inf_amd64_8bf3a82766f072b2\nvshext.dll [2025-04-14] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [AccExt] -> {2A118EB5-5797-4F5E-8B3D-F4ECBA3C98E4} => C:\Program Files (x86)\Common Files\Adobe\CoreSyncExtension\CoreSync_x64.dll [2024-01-04] (Adobe Inc. -> )
ContextMenuHandlers6: [Adobe.Acrobat.ContextMenu] -> {A6595CD1-BF77-430A-A452-18696685F7C7} => C:\Program Files\Adobe\Acrobat DC\Acrobat Elements\ContextMenuShim64.dll [2025-03-06] (Adobe Inc. -> Adobe Systems Inc.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2024-12-22] (Malwarebytes Inc. -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2023-08-01] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Nicht auf der Ausnahmeliste) ====================
==================== Verknüpfungen & WMI ========================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
ShortcutWithArgument: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Phillip Marco - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Dokumente.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Präsentationen.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Sheets.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Profil 2 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
==================== Geladene Module (Nicht auf der Ausnahmeliste) =============
2025-04-24 23:54 - 2025-04-24 23:54 - 000025088 _____ (Adobe Systems Inc.) [Datei ist nicht signiert] C:\Program Files\Adobe\Acrobat DC\Acrobat\locale\de_de\Acrobat Elements\ContextMenuShim64.deu
2025-04-15 09:24 - 2025-04-15 09:24 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA App\MessageBusRouter.dll] C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\PlugIns\NVIDIA Overlay\MessageBusRouter.dll
2025-04-15 09:17 - 2025-04-15 09:24 - 000000000 ____L (NVIDIA Corporation) [symlink -> C:\Program Files\NVIDIA Corporation\NVIDIA App\MessageBus\NvMessageBusBroadcast.dll] C:\Program Files\NVIDIA Corporation\NvContainer\plugins\LocalSystem\NvMessageBusBroadcast.dll
==================== Alternate Data Streams (Nicht auf der Ausnahmeliste) ========
==================== Abgesicherter Modus (Nicht auf der Ausnahmeliste) ==================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Der Wert "AlternateShell" wird wiederhergestellt.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Verknüpfungen (Nicht auf der Ausnahmeliste) =================
==================== Internet Explorer (Nicht auf der Ausnahmeliste) =============
BHO: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
BHO-x32: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\x64\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\DC\AcroIEFavStub.dll [2025-04-24] (Adobe Inc. -> Adobe Systems Incorporated)
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt.)
IE trusted site: HKU\S-1-5-21-3644930430-3491832035-840970103-1001\...\localhost -> localhost
==================== Hosts Inhalt: =========================
(Wenn benötigt kann der Hosts: Schalter in die Fixlist aufgenommen werden um die Hosts Datei zurückzusetzen.)
2019-12-07 11:14 - 2025-05-15 16:28 - 000000027 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
2024-09-11 14:36 - 2024-09-11 14:36 - 000000374 _____ C:\Windows\system32\drivers\etc\hosts.ics
==================== Andere Bereiche ===========================
(Aktuell gibt es keinen automatisierten Fix für diesen Bereich.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\Razer Chroma SDK\bin;C:\Program Files\Razer Chroma SDK\bin;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files (x86)\NVIDIA Corporation\PhysX\Common;C:\Users\Razer\AppData\Local\Microsoft\WindowsApps;C:\Users\Razer\Desktop\scrcpy-win64-v2.3.1;C:\Program Files\dotnet\;C:\Program Files\NVIDIA Corporation\NVIDIA App\NvDLISR
HKU\S-1-5-21-3644930430-3491832035-840970103-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Razer\Downloads\just-do-it-and-polygon-nike-d53rzijay4tc4chh.jpg
DNS Servers: 192.168.178.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
ist aktiviert.
Network Binding:
=============
NordLynx: NordLynx Tunnel -> wireguard.sys
WLAN: Killer Wireless-n/a/ac 1535 Wireless Network Adapter -> Qcamain10x64.sys
LAN-Verbindung: TAP-NordVPN Windows Adapter V9 -> tapnordvpn.sys
OpenVPN Data Channel Offload for NordVPN: OpenVPN Data Channel Offload -> ovpn-dco.sys
Ethernet: Killer E2500 Gigabit Ethernet Controller -> e2xw10x64.sys
Bluetooth-Netzwerkverbindung: Bluetooth Device (Personal Area Network) -> bthpan.sys
NordLwf: NordVPN LightWeight Firewall
==================== MSCONFIG/TASK MANAGER Deaktivierte Einträge ==
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er entfernt.)
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Razer Synapse"
HKLM\...\StartupApproved\Run32: => "RazerCortex"
HKLM\...\StartupApproved\Run32: => "Adobe CCXProcess"
HKLM\...\StartupApproved\Run32: => "Adobe Creative Cloud"
==================== Firewall Regeln (Nicht auf der Ausnahmeliste) ================
(Wenn ein Eintrag in die Fixlist aufgenommen wird, wird er aus der Registry entfernt. Die Datei wird nicht verschoben solange sie nicht separat aufgelistet wird.)
FirewallRules: [TCP Query User{43F61300-8B18-427A-9BF6-C957A1AEF92F}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Block) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [UDP Query User{A7FF9341-7F0A-410C-AB87-EEDD37C81CCC}C:\program files\bravesoftware\brave-browser\application\brave.exe] => (Block) C:\program files\bravesoftware\brave-browser\application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [TCP Query User{DB77BF52-9014-446E-87E4-9564F0E97374}C:\users\razer\appdata\roaming\zoom\bin\zoom.exe] => (Block) C:\users\razer\appdata\roaming\zoom\bin\zoom.exe (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
FirewallRules: [UDP Query User{4B63423C-18A5-46D9-B1AB-E55D1FDCC21C}C:\users\razer\appdata\roaming\zoom\bin\zoom.exe] => (Block) C:\users\razer\appdata\roaming\zoom\bin\zoom.exe (Zoom Video Communications, Inc. -> Zoom Communications, Inc.)
FirewallRules: [{1AF1B879-2958-4F9B-BAE0-28966F74845A}] => (Allow) C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc. -> Brave Software, Inc.)
FirewallRules: [{93B39B0A-3397-42AD-B0BC-603359AB30E4}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Wiederherstellungspunkte =========================
04-05-2025 16:38:34 Geplanter Prüfpunkt
12-05-2025 14:55:18 Geplanter Prüfpunkt
12-05-2025 21:07:39 Piriform Driver Updater Restore Point
13-05-2025 21:34:00 Furtivex Malware Removal Script
14-05-2025 11:24:38 Windows Modules Installer
14-05-2025 11:25:38 Windows Modules Installer
==================== Fehlerhafte Geräte im Gerätemanager ============
Name: Qualcomm Atheros QCA61x4 Bluetooth
Description: Qualcomm Atheros QCA61x4 Bluetooth
Class Guid: {e0cbf06c-cd8b-4647-bb8a-263b43f0f974}
Manufacturer: Qualcomm
Service: BTHUSB
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver
==================== Fehlereinträge in der Ereignisanzeige: ========================
Applikationsfehler:
==================
Error: (05/15/2025 04:28:23 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Aufrufen von Routine "QueryFullProcessImageNameW" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070006, Das Handle ist ungültig..
Vorgang:
Asynchroner Vorgang wird ausgeführt
Kontext:
Aktueller Status: DoSnapshotSet
Error: (05/15/2025 04:28:10 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Volumeschattenkopie-Dienstfehler: Beim Abfragen nach der Schnittstelle "IVssWriterCallback" ist ein unerwarteter Fehler aufgetreten. hr = 0x80070005, Zugriff verweigert.Die Ursache hierfür ist oft eine falsche Sicherheitseinstellung im Schreib- oder Anfrageprozess.
Vorgang:
Generatordaten werden gesammelt
Kontext:
Generatorklassen-ID: {e8132975-6f93-4464-a53e-1050253ae220}
Generatorname: System Writer
Generatorinstanz-ID: {7469882b-78a2-42fb-8fd6-22dc14d51e2c}
Error: (05/14/2025 11:25:39 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddWin32ServiceFiles: Unable to back up image of service CCleaner Performance Optimizer Service since QueryServiceConfig API failed
System Error:
Das System kann die angegebene Datei nicht finden..
Error: (05/14/2025 11:24:40 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Fehler beim Kryptografiedienst während der Verarbeitung des "OnIdentity()"-Aufrufobjekts "System Writer".
Details:
AddWin32ServiceFiles: Unable to back up image of service CCleaner Performance Optimizer Service since QueryServiceConfig API failed
System Error:
Das System kann die angegebene Datei nicht finden..
Systemfehler:
=============
Error: (05/15/2025 11:01:21 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/15/2025 10:22:33 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/15/2025 09:12:40 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/15/2025 08:58:05 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/15/2025 08:47:35 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/15/2025 07:00:56 PM) (Source: DCOM) (EventID: 10010) (User: DESKTOP-HQE06JL)
Description: Der Server "{85DE1C45-2C66-101B-B02E-04021C009402}" konnte innerhalb des angegebenen Zeitabschnitts mit DCOM nicht registriert werden.
Error: (05/15/2025 04:58:57 PM) (Source: Microsoft-Windows-TPM-WMI) (EventID: 1796) (User: NT-AUTORITÄT)
Description: Das Secure Boot-Update konnte eine Secure Boot-Variable mit dem Fehler (-2147020471 = Sicheres Starten ist auf diesem Computer nicht aktiviert.) nicht aktualisieren. Weitere Informationen finden Sie unter https://go.microsoft.com/fwlink/?linkid=2169931
Error: (05/15/2025 04:56:02 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Der Dienst "Google Update-Dienst (gupdate)" wurde aufgrund folgenden Fehlers nicht gestartet:
Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Windows Defender:
================
Date: 2025-05-14 11:56:32
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-13 12:50:20
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-12 14:40:54
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-09 13:01:34
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Date: 2025-05-08 12:19:12
Description:
Microsoft Defender Antivirus scan has been stopped before completion.
Scan Type: Antimalware
Scan Parameters: Quick Scan
Event[0]:
Date: 2024-11-02 11:58:48
Description:
Microsoft Defender Antivirus has encountered an error trying to update security intelligence and will attempt to revert to a previous version.
Security intelligence Attempted: Aktuell
Error Code: 0x80501102
Error description: Unerwartetes Problem. Installieren Sie bei Bedarf verfügbare Updates, und starten Sie das Programm dann erneut. Informationen zum Installieren von Updates finden Sie unter "Hilfe und Support".
Security intelligence Version: 1.421.56.0;1.421.56.0
Engine Version: 1.1.24090.11
Date: 2023-10-28 22:47:00
Description:
Microsoft Defender Antivirus Real-Time Protection feature has encountered an error and failed.
Feature: Netzwerkinspektionssystem
Error Code: 0x8007041d
Error description: Der Dienst antwortete nicht rechtzeitig auf die Start- oder Steuerungsanforderung.
Reason: Dem System fehlen erforderliche Updates zum Ausführen des Netzwerkinspektionssystems. Installieren Sie die erforderlichen Updates, und starten Sie das Gerät neu.
CodeIntegrity:
===============
Date: 2025-04-15 10:49:15
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\ProgramData\Microsoft\Windows Defender\Platform\4.18.24090.11-0\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Windows\System32\DriverStore\FileRepository\igdlh64.inf_amd64_4a38014ac4bdce40\igd10iumd64.dll that did not meet the Custom 3 / Antimalware signing level requirements.
Date: 2025-02-09 11:05:28
Description:
Code Integrity determined that a process (\Device\HarddiskVolume4\Windows\System32\SIHClient.exe) attempted to load \Device\HarddiskVolume4\Program Files\Malwarebytes\Anti-Malware\mbamsi64.dll that did not meet the Windows signing level requirements.
==================== Speicherinformationen ===========================
BIOS: Razer 2.02 02/22/2018
Hauptplatine: Razer Blade Pro
Prozessor: Intel(R) Core(TM) i7-7700HQ CPU @ 2.80GHz
Prozentuale Nutzung des RAM: 48%
Installierter physikalischer RAM: 16273.64 MB
Verfügbarer physikalischer RAM: 8425.5 MB
Summe virtueller Speicher: 31633.64 MB
Verfügbarer virtueller Speicher: 20603.22 MB
==================== Laufwerke ================================
Drive c: () (Fixed) (Total:930.86 GB) (Free:564.53 GB) (Model: CT1000P3SSD8) NTFS
Drive d: (Blade Pro HDD) (Fixed) (Total:1863.02 GB) (Free:839.55 GB) (Model: ST2000LM015-2E8174) NTFS
\\?\Volume{5d2e59dd-e3c9-464c-99d4-d93203f4e136}\ () (Fixed) (Total:0.53 GB) (Free:0.08 GB) NTFS
\\?\Volume{8c4d2e74-a499-457d-bf77-d724eee8446c}\ () (Fixed) (Total:0.09 GB) (Free:0.07 GB) FAT32
==================== MBR & Partitionstabelle ====================
==========================================================
Disk: 0 (Size: 1863 GB) (Disk ID: 580F63EA)
Partition: GPT.
==========================================================
Disk: 1 (Protective MBR) (Size: 931.5 GB) (Disk ID: 00000000)
Partition: GPT.
==================== Ende von Addition.txt =======================
PPS: gibts evtl noch etwas das ich tun kann , installieren sollte oder dergleichen damit ich in zukunft besser geschützt bin. Sprich hast du noch tips, empfehlungen oder anweisungen? Sonnige Grüße und schönen start ins Wochenende morgen  |
|
Gestern, 22:29
| #14 |
| | Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös als ergänzung noch die shortcuts Code:
ATTFilter Untersuchungsergebnis der Verknüpfungen des Benutzers (x64) Version: 15-05-2025
durchgeführt von Razer (15-05-2025 23:05:58)
Gestartet von C:\Users\Razer\Downloads
Start-Modus: Normal
==================== Verknüpfungen =============================
(Die Einträge können gelistet werden, um sie zurückzusetzen oder zu entfernen.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Absolute Uninstaller.lnk -> C:\Program Files (x86)\Glarysoft\Absolute Uninstaller\unInstaler.exe (Glarysoft Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat Distiller.lnk -> C:\Program Files\Adobe\Acrobat DC\Acrobat\acrodist.exe (Adobe Systems Incorporated.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Acrobat.lnk -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Systems Incorporated)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Creative Cloud.lnk -> C:\Program Files\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe (Adobe Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Immersive Control Panel.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (Malwarebytes)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Launcher.lnk -> C:\Program Files\PDF24\pdf24-Launcher.exe (geek software GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PDF24 Toolbox.lnk -> C:\Program Files\PDF24\pdf24-Toolbox.exe (geek software GmbH)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VidJuice UniTube.lnk -> D:\vid ddl\VidJuice UniTube\VidJuice UniTube.exe (Keine Datei)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell ISE.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\PowerShell_ISE.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Documentation.lnk -> C:\Program Files\VideoLAN\VLC\Documentation.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\Release Notes.lnk -> C:\Program Files\VideoLAN\VLC\NEWS.txt ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VideoLAN Website.lnk -> C:\Program Files\VideoLAN\VLC\VideoLAN Website.url ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex\Razer Cortex.lnk -> C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe (Razer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex\Uninstall Razer Cortex.lnk -> C:\Program Files (x86)\Razer\Razer Cortex\unins000.exe (Razer Inc. )
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon\Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon\Uninstall Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\unins000.exe (Razer Inc. )
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer\Razer Synapse.lnk -> C:\Program Files (x86)\Razer\Synapse3\WPFUI\Framework\Razer Synapse 3 Host\Razer Synapse 3.exe (Razer Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio\OBS Studio (64bit).lnk -> C:\Program Files\obs-studio\bin\64bit\obs64.exe (OBS)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OBS Studio\Uninstall.lnk -> C:\Program Files\obs-studio\uninstall.exe (OBS Project)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation\NVIDIA App.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe (NVIDIA Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec\NordVPN Diagnostics.lnk -> C:\Program Files\NordVPN\Diagnostics\NordVpn.DiagnosticsTool.exe (NordVpn.DiagnosticsTool)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NordSec\NordVPN.lnk -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn S.A.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft\Absolute Uninstaller\Absolute Uninstaller.lnk -> C:\Program Files (x86)\Glarysoft\Absolute Uninstaller\unInstaler.exe (Glarysoft Ltd)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader\Foxit PDF Reader entfernen.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\unins000.exe ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Foxit PDF Reader\Foxit PDF Reader.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\EA app-Updater.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAUpdater.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\EA Error Reporter.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\ErrorReporter.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\EA Updater.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EAUpdater.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\EA.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe (Electronic Arts)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Gen Digital Inc.)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Component Services.lnk -> C:\Windows\System32\comexp.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\dfrgui.lnk -> C:\Windows\System32\dfrgui.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Disk Cleanup.lnk -> C:\Windows\System32\cleanmgr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\iSCSI Initiator.lnk -> C:\Windows\System32\iscsicpl.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Memory Diagnostics Tool.lnk -> C:\Windows\System32\MdSched.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (32-bit).lnk -> C:\Windows\SysWOW64\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\ODBC Data Sources (64-bit).lnk -> C:\Windows\System32\odbcad32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\RecoveryDrive.lnk -> C:\Windows\System32\RecoveryDrive.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Registry Editor.lnk -> C:\Windows\regedit.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk -> C:\Windows\System32\services.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Configuration.lnk -> C:\Windows\System32\msconfig.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\System Information.lnk -> C:\Windows\System32\msinfo32.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Windows Defender Firewall with Advanced Security.lnk -> C:\Windows\System32\WF.msc ()
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Math Input Panel.lnk -> C:\Program Files\Common Files\Microsoft Shared\ink\mip.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk -> C:\Windows\System32\notepad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Paint.lnk -> C:\Windows\System32\mspaint.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Quick Assist.lnk -> C:\Windows\System32\quickassist.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Remote Desktop Connection.lnk -> C:\Windows\System32\mstsc.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Snipping Tool.lnk -> C:\Windows\System32\SnippingTool.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Steps Recorder.lnk -> C:\Windows\System32\psr.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Fax and Scan.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Wordpad.lnk -> C:\Program Files\Windows NT\Accessories\wordpad.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Character Map.lnk -> C:\Windows\System32\charmap.exe (Microsoft Corporation)
Shortcut: C:\ProgramData\Microsoft\Internet Explorer\Quick Launch\Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.)
Shortcut: C:\ProgramData\Microsoft\Internet Explorer\Quick Launch\Razer Cortex.lnk -> C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe (Razer Inc.)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Razer\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
Shortcut: C:\Users\Public\Desktop\Foxit PDF Reader.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\Users\Public\Desktop\PDF24 Launcher.lnk -> C:\Program Files\PDF24\pdf24-Launcher.exe (geek software GmbH)
Shortcut: C:\Users\Public\Desktop\PDF24 Toolbox.lnk -> C:\Program Files\PDF24\pdf24-Toolbox.exe (geek software GmbH)
Shortcut: C:\Users\Public\Desktop\Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.)
Shortcut: C:\Users\Public\Desktop\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\Users\Razer\Links\Desktop.lnk -> C:\Users\Razer\Desktop ()
Shortcut: C:\Users\Razer\Links\Downloads.lnk -> C:\Users\Razer\Downloads ()
Shortcut: C:\Users\Razer\Downloads\Telegram Desktop\GMT20231022-060132_Recording_640x360 - Verknüpfung.lnk -> C:\Users\Razer\Downloads\Telegram Desktop\GMT20231022-060132_Recording_640x360.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\ESET Online Scanner.lnk -> C:\Users\Razer\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe (ESET)
Shortcut: C:\Users\Razer\Desktop\NVIDIA App (2).lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe (NVIDIA Corporation)
Shortcut: C:\Users\Razer\Desktop\Telegram.lnk -> C:\Users\Razer\AppData\Roaming\Telegram Desktop\Telegram.exe (Telegram FZ-LLC)
Shortcut: C:\Users\Razer\Desktop\Travel In A Space Pod.lnk -> C:\Users\Razer\Downloads\dragon ball saga zusammenfassungen\Travel In A Space Pod Deep Bass White Noise Dragon Ball Z Ambience_360p.mp4 ()
Shortcut: C:\Users\Razer\Desktop\Trojaner Board\Absolute Uninstaller.lnk -> C:\Program Files (x86)\Glarysoft\Absolute Uninstaller\unInstaler.exe (Glarysoft Ltd)
Shortcut: C:\Users\Razer\Desktop\Trojaner Board\KVRT2020_Data - Verknüpfung.lnk -> C:\KVRT2020_Data ()
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\PDF24 Launcher.lnk -> C:\Program Files\PDF24\pdf24-Launcher.exe (geek software GmbH)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\PDF24 Toolbox.lnk -> C:\Program Files\PDF24\pdf24-Toolbox.exe (geek software GmbH)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Adobe Acrobat.lnk -> C:\Program Files\Adobe\Acrobat DC\Acrobat\Acrobat.exe (Adobe Systems Incorporated)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Foxit PDF Reader.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\GeForce Experience.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\NordVPN.lnk -> C:\Program Files\NordVPN\NordVPN.exe (nordvpn S.A.)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Razer Cortex.lnk -> C:\Program Files (x86)\Razer\Razer Cortex\RazerCortex.exe (Razer Inc.)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Telegram Desktop - Verknüpfung.lnk -> C:\Users\Razer\Downloads\Telegram Desktop ()
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Todoist.lnk -> C:\Users\Razer\AppData\Local\Programs\todoist\Todoist.exe (Doist)
Shortcut: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\VidJuice UniTube.lnk -> D:\vid ddl\VidJuice UniTube\VidJuice UniTube.exe (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\Bitdefender.lnk -> C:\Program Files\Bitdefender\Bitdefender Security App\seccenter.exe (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\CCleaner.lnk -> C:\Program Files\CCleaner\CCleaner64.exe (Gen Digital Inc.)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\Malwarebytes.lnk -> C:\Program Files\Malwarebytes\Anti-Malware\Malwarebytes.exe (Malwarebytes)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\NVIDIA App.lnk -> C:\Program Files\NVIDIA Corporation\NVIDIA App\CEF\NVIDIA App.exe (NVIDIA Corporation)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\Razer Axon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\Videos\y2mate.com - Travel In A Space Pod Deep Bass White Noise Dragon Ball Z Ambience_360p - Verknüpfung.lnk -> C:\Users\Razer\Downloads\dragon ball saga zusammenfassungen\y2mate.com - Travel In A Space Pod Deep Bass White Noise Dragon Ball Z Ambience_360p.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\EA.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe (Electronic Arts)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\OBS Studio.lnk -> C:\Program Files\obs-studio\bin\64bit\obs64.exe (OBS)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\VLC media player.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN)
Shortcut: C:\Users\Razer\Desktop\PRIVAT\absolvierte workouts & programme\wait but why - Tabellenblatt1 - Verknüpfung.lnk -> C:\Users\Razer\Downloads\wait but why - Tabellenblatt1.pdf ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\Aufzeichnungen - Verknüpfung.lnk -> C:\Users\Razer\Videos\Captures ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\Travel In A Space Pod Deep Bass White Noise Dragon Ball Z Ambience_360p - Verknüpfung.lnk -> C:\Users\Razer\Downloads\dragon ball saga zusammenfassungen\Travel In A Space Pod Deep Bass White Noise Dragon Ball Z Ambience_360p.mp4 ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\23 Anlagen in einem Monat, Terminator Michael Mackenrodt erklärt wie! - Verknüpfung.lnk -> C:\Users\Razer\Downloads\23 Anlagen in einem Monat, Terminator Michael erklärt wie!.mp4 ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\aktueller_Rohertrag.csv - Verknüpfung.lnk -> C:\Users\Razer\Downloads\aktueller_Rohertrag.csv ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\Vid Juice ddl.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\Zoom - Verknüpfung.lnk -> C:\Users\Razer\Documents\Zoom ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\02.11.23 Sohrab call 2 - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\02.11.23 Sohrab call 2.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\03.11.23 Max böhm routine call - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\03.11.23 Max böhm routine call.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\17.10.23 Patrick Germer - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\17.10.23 Patrick Germer.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\18.10.23 Jan Papenhausen call 1 - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\18.10.23 Jan Papenhausen call 1.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\19.10.23 tillmann call delegieren - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\19.10.23 tillmann call delegieren.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\20.10.23 Sohrab call 1 - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\20.10.23 Sohrab call 1.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\22.10.23 Emad Call 1 - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\22.10.23 Emad Call 1.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\SOLAR PV VERKAUF\EKD\LGM videos\26.10.23 Emad 2ter call 0,1 prozent mehr - Verknüpfung.lnk -> C:\Users\Razer\Videos\VidJuice\Downloader\26.10.23 Emad 2ter call 0,1 prozent mehr.mp4 (Keine Datei)
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Black Hat Wizard - Cold Email Mastery small version - Verknüpfung.lnk -> D:\alle kurse und mehr\Black Hat Wizard - Cold Email Mastery small version ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\Notizen CALLs Aufzeichnung LERNEN\Aufzeichnungen - Verknüpfung.lnk -> C:\Users\Razer\Videos\Captures ()
Shortcut: C:\Users\Razer\Desktop\BERUFLICH\MACKENRODT VERKAUFS TRAINING\Musik - Verknüpfung.lnk -> C:\Users\Razer\Music ()
Shortcut: C:\Users\Razer\Creative Cloud Files\_Cloud documents.lnk -> C:\Program Files (x86)\Adobe\Adobe Sync\CoreSync\CoreSync.exe ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Energiefox Angebote.lnk -> C:\Users\Razer\Desktop\Energiefox Angebote (Keine Datei)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ESET Online Scanner.lnk -> C:\Users\Razer\AppData\Local\ESET\ESETOnlineScanner\ESETOnlineScanner.exe (ESET)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\f.lux.lnk -> C:\Users\Razer\AppData\Local\FluxSoftware\Flux\flux.exe (f.lux Software LLC)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HWiNFO64.lnk -> C:\Users\Razer\Downloads\hwi_763_5220\HWiNFO64.exe (Keine Datei)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lunatask.lnk -> C:\Users\Razer\AppData\Local\Programs\@lunataskelectron\Lunatask.exe (Lunatask)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk -> C:\Users\Razer\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Todoist.lnk -> C:\Users\Razer\AppData\Local\Programs\todoist\Todoist.exe (Doist)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Zoom Workplace.lnk -> C:\Users\Razer\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Communications, Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Benutzerhandbuch für die Konsolenversion von RAR.lnk -> C:\Program Files\WinRAR\Rar.txt ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Hilfe zu WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.chm ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Was ist neu in dieser Version.lnk -> C:\Program Files\WinRAR\WhatsNew.txt ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk -> C:\Program Files\WinRAR\WinRAR.exe (Alexander Roshal)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell (x86).lnk -> C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vysor Inc\Vysor.lnk -> C:\Users\Razer\AppData\Local\vysor\Vysor.exe (Vysor Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop\Telegram entfernen.lnk -> C:\Users\Razer\AppData\Roaming\Telegram Desktop\unins001.exe (Telegram FZ-LLC )
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Telegram Desktop\Telegram.lnk -> C:\Users\Razer\AppData\Roaming\Telegram Desktop\Telegram.exe (Telegram FZ-LLC)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\computer.lnk -> C:\Windows\explorer.exe,-30
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Control Panel.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Run.lnk -> C:\Windows\System32\shell32.dll (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiSuite\HiSuite.lnk -> C:\Program Files (x86)\HiSuite\HiSuite.exe (华为技术有限公司 版权所有)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiSuite\Uninstall.lnk -> C:\Program Files (x86)\HiSuite\uninst.exe ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Backuptrans Android iPhone Viber Transfer + (x64)\Backuptrans Android iPhone Viber Transfer + (x64).lnk -> C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\androidiPhoneViberTransferPlus.exe (Backuptrans Studio)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Backuptrans Android iPhone Viber Transfer + (x64)\Uninstall.lnk -> C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\uninst.exe (Backuptrans Studio)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Backuptrans Android iPhone Viber Transfer + (x64)\Website.lnk -> C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\Backuptrans Android iPhone Viber Transfer + (x64).url ()
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Internet Explorer.lnk -> C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Magnify.lnk -> C:\Windows\System32\Magnify.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\Narrator.lnk -> C:\Windows\System32\Narrator.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\On-Screen Keyboard.lnk -> C:\Windows\System32\osk.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\SendTo\Bluetooth-Dateiübertragung.LNK -> C:\Windows\System32\fsquirt.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Absolute Uninstaller.lnk -> C:\Program Files (x86)\Glarysoft\Absolute Uninstaller\unInstaler.exe (Glarysoft Ltd)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Foxit PDF Reader.lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk -> C:\Windows\System32\imageres.dll (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Brave.lnk -> C:\Program Files\BraveSoftware\Brave-Browser\Application\brave.exe (Brave Software, Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Do this to get fit.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\HWiNFO64.lnk -> C:\Users\Razer\Downloads\hwi_763_5220\HWiNFO64.exe (Keine Datei)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\PDF24 Toolbox.lnk -> C:\Program Files\PDF24\pdf24-Toolbox.exe (geek software GmbH)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Todoist.lnk -> C:\Users\Razer\AppData\Local\Programs\todoist\Todoist.exe (Doist)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Zoom.lnk -> C:\Users\Razer\AppData\Roaming\Zoom\bin\Zoom.exe (Zoom Communications, Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Tombstones\Foxit PDF Reader (2).lnk -> C:\Program Files (x86)\Foxit Software\Foxit PDF Reader\FoxitPDFReader.exe (Foxit Software Inc.)
Shortcut: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\d356105fac5527ef\Steam.lnk -> C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\01 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\01a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\02 - Command Prompt.lnk -> C:\Windows\System32\cmd.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\02a - Windows PowerShell.lnk -> C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\03 - Computer Management.lnk -> C:\Windows\System32\compmgmt.msc ()
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\04 - Disk Management.lnk -> C:\Windows\System32\diskmgmt.msc ()
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\07 - Event Viewer.lnk -> C:\Windows\System32\eventvwr.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\09 - Mobility Center.lnk -> C:\Windows\System32\mblctr.exe (Microsoft Corporation)
Shortcut: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group2\4 - Control Panel.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation)
ShortcutWithArgument: C:\ProgramData\Razer\RazerAxon\RazerAxon.lnk -> C:\Program Files (x86)\Razer\Razer Axon\RazerAxon.exe (Razer Inc.) -> -wrongaccess
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player - reset preferences and cache files.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> --reset-config --reset-plugins-cache vlc://quit
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN\VLC media player skinned.lnk -> C:\Program Files\VideoLAN\VLC\vlc.exe (VideoLAN) -> -Iskins
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /7
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer\Razer Synapse\Razer Synapse.lnk -> C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe (Razer Inc.) -> -launch
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\EA\App Recovery.lnk -> C:\Program Files\Electronic Arts\EA Desktop\EA Desktop\EALauncher.exe (Electronic Arts) -> -recovery
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Computer Management.lnk -> C:\Windows\System32\compmgmt.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Event Viewer.lnk -> C:\Windows\System32\eventvwr.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Performance Monitor.lnk -> C:\Windows\System32\perfmon.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Resource Monitor.lnk -> C:\Windows\System32\perfmon.exe (Microsoft Corporation) -> /res
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Task Scheduler.lnk -> C:\Windows\System32\taskschd.msc () -> /s
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\Windows Media Player.lnk -> C:\Program Files (x86)\Windows Media Player\wmplayer.exe (Microsoft Corporation) -> /prefetch:1
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Speech Recognition.lnk -> C:\Windows\Speech\Common\sapisvr.exe (Microsoft Corporation) -> -SpeechUX
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\ClockworkMod\Start ADB Server.lnk -> C:\Windows\Installer\{C0E08D8D-6076-4117-B644-2AF34F35B757}\_376EF0DA1723590BE67F63.exe () -> start-server
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Default\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Default\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Razer\Desktop\Tools - EXE Daten usw\exe data\Phillip Marco - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Default"
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Zoom\Uninstall Zoom Workplace.lnk -> C:\Users\Razer\AppData\Roaming\Zoom\uninstall\Installer.exe (Zoom Communications, Inc.) -> /uninstall
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Administrative Tools.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.AdministrativeTools
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Dokumente.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=mpnpojknpmmopombnjdcgaaiekajbnjb
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Gmail.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fmgjjmmmlfnkbppncabfkddbjimcfncm
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Google Drive.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=aghbiahbpaijignceidepookljebhfak
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Präsentationen.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=kefjledonklijopmnomlcbpllchaibag
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\Sheets.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=fhihpiojkbmbpdjeoajapmgkhlnakfjf
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome-Apps\YouTube.lnk -> C:\Program Files\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=agimnkijcaahngcdmfeangaknmldooml
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\SendTo\Fax Recipient.lnk -> C:\Windows\System32\WFS.exe (Microsoft Corporation) -> /SendTo
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Microsoft Edge.lnk -> C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe (Microsoft Corporation) -> --profile-directory=Default
ShortcutWithArgument: C:\Users\Razer\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\9501e18d7c2ab92e\Profil 2 - Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google LLC) -> --profile-directory="Profile 2"
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\04-1 - NetworkStatus.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageNetworkStatus
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\05 - Device Manager.lnk -> C:\Windows\System32\control.exe (Microsoft Corporation) -> /name Microsoft.DeviceManager
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\06 - SystemAbout.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPagePCSystemInfo
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\08 - PowerAndSleep.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageScreenPowerAndSleep
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group3\10 - AppsAndFeatures.lnk -> C:\Windows\ImmersiveControlPanel\systemsettings.exe (Microsoft Corporation) -> page=SettingsPageAppsSizes
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group2\1 - Run.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f3-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group2\2 - Search.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{2559a1f8-21d7-11d4-bdaf-00c04f60b9f0}
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group2\3 - Windows Explorer.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{52205fd8-5dfb-447d-801a-d0b52f2e83e1}
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group2\5 - Task Manager.lnk -> C:\Windows\System32\Taskmgr.exe (Microsoft Corporation) -> /0
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Microsoft\Windows\WinX\Group1\1 - Desktop.lnk -> C:\Windows\explorer.exe (Microsoft Corporation) -> shell:::{3080F90D-D7AD-11D9-BD98-0000947B0257}
ShortcutWithArgument: C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\Backuptrans Android iPhone Viber Transfer + (x64) -Legacy ADB.lnk -> C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\androidiPhoneViberTransferPlus.exe (Backuptrans Studio) -> adb=adb-legacy/adb
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Steam\Steam Support Center.url -> URL: hxxp://support.steampowered.com/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Cortex\Razer Cortex on the Web.url -> URL: hxxps://www.razer.com/cortex
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Razer Axon\Razer Axon on the Web.url -> URL: hxxps://www.razer.com/axon
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glarysoft\Absolute Uninstaller\Website.url -> URL: hxxp://www.glarysoft.com/absolute-uninstaller/
InternetURL: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner\CCleaner Homepage.url -> URL: hxxp://www.ccleaner.com/ccleaner
InternetURL: C:\Users\Razer\Favorites\Bing.url -> URL: hxxp://go.microsoft.com/fwlink/p/?LinkId=255142
InternetURL: C:\Users\Razer\Desktop\PRIVAT\EA SPORTS FC™ 25.url -> URL: steam://rungameid/2669320
InternetURL: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\EA SPORTS FC™ 24.url -> URL: steam://rungameid/2195250
InternetURL: C:\Users\Razer\Desktop\PRIVAT\steam Gaming\STAR WARS Jedi Fallen Order™.url -> URL: steam://rungameid/1172380
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 7 - scaling\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 6 - monetization module\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 5 - growth module\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 4 - making and uploading videos\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 3 - how to set your channel up for success\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 2 - choosing a niche\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\Desktop\BERUFLICH\ONLINE KURSE\Tube Mastery and Monetization\Tube Mastery and Monetization\module 1 - Overview of the blueprint\edollarearn.com.url -> URL: hxxp://www.edollarearn.com/forums/39-Giveaways
InternetURL: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\EA SPORTS FC™ 24.url -> URL: steam://rungameid/2195250
InternetURL: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\EA SPORTS FC™ 25.url -> URL: steam://rungameid/2669320
InternetURL: C:\Users\Razer\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam\STAR WARS Jedi Fallen Order™.url -> URL: steam://rungameid/1172380
InternetURL: C:\Users\Razer\AppData\Local\Backuptrans Android iPhone Viber Transfer + (x64)\Backuptrans Android iPhone Viber Transfer + (x64).url -> URL: hxxp://www.backuptrans.com/android-iphone-viber-transfer-plus.html
==================== Ende vom Shortcut.txt =============================
|
|
Heute, 16:21
| #15 |
| /// TB-Ausbilder | Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös Vielen Dank für das Feedback, es freut mich, dass das geklappt hat.  Die Logs sehen gut aus. Wir haben mit FRST ein paar unerwünchte Einstellungen und Dateien entfernt, die für das Problem verantwortlich waren. Das war schwer zu erkennen... quasi gut "getarnt"... in der Form hatte ich bisher auch noch nie, war quasi eine Premiere... aber man lernt ja bekanntlich nie aus.  Aber dadurch konnten wir auf die radikale Lösung verzichten. Bezüglich deiner Frage nach Tipps und einem Trinkgeld folgen noch ein paar Infos. Entfernung der verwendeten Tools Führe KpRm gemäß der bebilderten Anleitung aus und poste abschließend die Logdatei. Dann wären wir durch! Wenn du keine Probleme mehr mit Malware hast, dann sind wir hier fertig. Deine Logdateien sind sauber. Wenn Du möchtest, kannst Du hier sagen, ob du mit uns und unserer Hilfe zufrieden warst... Vielleicht möchtest du das Forum mit einer kleinen Spende  unterstützen. Zum Schluss bitte unbedingt die Sicherheitsmaßnahmen lesen und umsetzen: Hinweis: Bitte gib mir eine kurze Rückmeldung, sobald du die oben verlinkten Informationen gelesen hast, alles erledigt ist und keine Fragen mehr vorhanden sind, so dass ich dieses Thema aus meinen Abos löschen kann. |
|
| Themen zu Chrome Browser zeigt customsearch.webshoppers.co an bei Suche. Suchergebniss anzeige unseriös |
| antivirus, browser, computer, dringend, google, google custom search from chrome, home, homepage, internet, internet explorer, karte, port, problem, proxy, prozesse, realtek, registry, rundll, security, software, starten, suchmaschine, svchost.exe, system, werbung, windows |
Lesestoff:
Linear-Darstellung
